Udělal jsem sken a čištění s AdwCleaner - LOG:
# -------------------------------
# Malwarebytes AdwCleaner 7.2.7.0
# -------------------------------
# Build: 01-30-2019
# Database: 2019-01-31.3 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 02-06-2019
# Duration: 00:00:19
# OS: Windows 7 Home Premium
# Cleaned: 0
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1257 octets] - [06/02/2019 09:34:39]
AdwCleaner[S01].txt - [1318 octets] - [06/02/2019 09:36:17]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########
Poté LOG z FRST:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 4.02.2019
Ran by Martin (administrator) on MARTIN (06-02-2019 09:59:37)
Running from C:\Users\Martin\Desktop
Loaded Profiles: Martin (Available Profiles: Martin)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe
(AMD) C:\Windows\System32\atieclxx.exe
(DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Bitdefender) C:\Program Files\Bitdefender Antivirus Free\bdredline.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Inventor 2018\Moldflow\bin\mitsijm.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Bitdefender) C:\Program Files\Bitdefender Antivirus Free\updatesrv.exe
(Bitdefender) C:\Program Files\Bitdefender Antivirus Free\vsserv.exe
(Bitdefender) C:\Program Files\Bitdefender Antivirus Free\vsservppl.exe
(Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNAP2LAK.EXE
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNAP2RPK.EXE
(Akamai Technologies, Inc.) C:\Users\Martin\AppData\Local\Akamai\netsession_win.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Akamai Technologies, Inc.) C:\Users\Martin\AppData\Local\Akamai\netsession_win.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNABFSWK.EXE
(CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNABFSWK.EXE
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Bitdefender) C:\Program Files\Bitdefender Antivirus Free\bdagent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [BtTray] => C:\Program Files (x86)\Bluetooth Suite\BtTray.exe [764544 2012-09-14] (Qualcomm Atheros -> Qualcomm Atheros)
HKLM\...\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [127616 2012-09-14] (Qualcomm Atheros -> Qualcomm Atheros Commnucations)
HKLM\...\Run: [CNAP2 Launcher] => C:\Windows\system32\spool\DRIVERS\x64\3\CNAP2LAK.EXE [226784 2010-10-14] (CANON INC. -> CANON INC.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2833504 2017-08-26] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2011-01-26] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [NUSB3MON] => c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation -> Renesas Electronics Corporation)
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [319360 2012-03-14] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-04-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [1321984 2018-09-05] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
HKU\S-1-5-21-2789515162-1589937871-1642982174-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Martin\AppData\Local\Akamai\netsession_win.exe [4586456 2018-04-17] (Akamai Technologies, Inc. -> Akamai Technologies, Inc.)
HKU\S-1-5-21-2789515162-1589937871-1642982174-1000\...\Run: [HydraVisionDesktopManager] => C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [1967616 2014-04-17] (AMD)
HKU\S-1-5-21-2789515162-1589937871-1642982174-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-2789515162-1589937871-1642982174-1000\...\Run: [CNAP2 Launcher] => C:\Windows\system32\spool\DRIVERS\x64\3\CNAP2LAK.EXE [226784 2010-10-14] (CANON INC. -> CANON INC.)
HKLM\Software\...\Authentication\Credential Providers: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\Windows\system32\AthCredentialProvider.dll [2012-09-14] (Qualcomm Atheros -> Qualcomm Atheros Commnucations)
HKLM\Software\...\Authentication\Credential Provider Filters: [{ACFC407B-266C-8504-8DAE-F3E276336E4B}] -> C:\Windows\system32\AthCredentialProvider.dll [2012-09-14] (Qualcomm Atheros -> Qualcomm Atheros Commnucations)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{7D047CBF-39C7-4979-8911-A78C6E662A00}: [DhcpNameServer] 192.168.1.1 0.0.0.0
Internet Explorer:
==================
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2018-12-14] (Microsoft Corporation -> Microsoft Corporation)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-09-14] (Qualcomm Atheros -> Qualcomm Atheros Commnucations)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2019-01-29] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2018-11-14] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2019-01-30] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-01-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-01-30] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-01-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-01-30] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-01-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-01-30] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-01-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-01-30] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF DefaultProfile: 801e2m4h.default
FF ProfilePath: C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\801e2m4h.default [2019-02-06]
FF Extension: (uBlock Origin) - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\801e2m4h.default\Extensions\uBlock0@raymondhill.net.xpi [2019-02-05]
FF Extension: (Privacy Possum) - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\801e2m4h.default\Extensions\woop-NoopscooPsnSXQ@jetpack.xpi [2018-09-15]
FF Extension: (Image Search Options) - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\801e2m4h.default\Extensions\{4a313247-8330-4a81-948e-b79936516f78}.xpi [2018-09-15]
FF Extension: (strava-map-switcher) - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\801e2m4h.default\Extensions\{8bc8a884-a7db-45e3-84dd-963933a87d3c}.xpi [2018-10-21]
FF Extension: (StravistiX for Strava) - C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\801e2m4h.default\Extensions\{cacca57b-9e4d-46f2-8513-fb97e920d71c}.xpi [2018-10-21]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-09-15] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-12-14] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2018-09-15] (Microsoft Corporation)
FF Plugin-x32: @ptc.com/IsoView -> C:\Program Files (x86)\Common Files\PTC\npisoview.dll [2015-11-12] (PTC Inc.)
FF Plugin-x32: @ptc.com/ProductViewLite -> C:\Program Files (x86)\Common Files\PTC\np6_pvapplite9.dll [2015-11-12] (PTC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-12-04] (Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default [2018-10-21]
CHR Extension: (Prezentace) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-10-21]
CHR Extension: (Dokumenty) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-10-21]
CHR Extension: (Disk Google) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-21]
CHR Extension: (YouTube) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-10-21]
CHR Extension: (Tabulky) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-10-21]
CHR Extension: (Dokumenty Google offline) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-10-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-10-21]
CHR Extension: (Gmail) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-10-21]
CHR Extension: (Chrome Media Router) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-10-21]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1290744 2017-01-06] (Autodesk, Inc -> Autodesk Inc.)
R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [239616 2014-04-18] (Karl Sabo -> AMD)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [216192 2012-09-14] (Qualcomm Atheros -> Qualcomm Atheros Commnucations)
R2 bdredline; C:\Program Files\Bitdefender Antivirus Free\bdredline.exe [2195280 2018-03-22] (Bitdefender SRL -> Bitdefender)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11013496 2019-01-28] (Microsoft Corporation -> Microsoft Corporation)
R2 DisplayLinkService; C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe [8865320 2012-12-17] (DISPLAYLINK -> DisplayLink Corp.)
R2 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [365440 2012-03-14] (Hewlett-Packard Company -> Hewlett-Packard Company)
R2 mitsijm2018; C:\Program Files\Autodesk\Inventor 2018\Moldflow\bin\mitsijm.exe [967664 2016-09-26] (Autodesk, Inc -> Autodesk, Inc.)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1293936 2018-11-15] (Bitdefender SRL -> Bitdefender)
R2 updatesrv; C:\Program Files\Bitdefender Antivirus Free\updatesrv.exe [246688 2018-11-14] (Bitdefender SRL -> Bitdefender)
R2 vsserv; C:\Program Files\Bitdefender Antivirus Free\vsserv.exe [341136 2018-11-14] (Bitdefender SRL -> Bitdefender)
R2 vsservppl; C:\Program Files\Bitdefender Antivirus Free\vsservppl.exe [246688 2018-11-14] (Bitdefender SRL -> Bitdefender)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 WirelessKB850NotificationService; C:\Windows\system32\WirelessKB850NotificationService.exe [174256 2018-05-14] (Microsoft Corporation -> Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-09-14] (Atheros) [File not signed]
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 adp94xx; C:\Windows\system32\drivers\adp94xx.sys [491088 2009-07-14] (Microsoft Windows -> Adaptec, Inc.)
S3 adpahci; C:\Windows\system32\drivers\adpahci.sys [339536 2009-07-14] (Microsoft Windows -> Adaptec, Inc.)
S3 adpu320; C:\Windows\system32\drivers\adpu320.sys [182864 2009-07-14] (Microsoft Windows -> Adaptec, Inc.)
S3 aliide; C:\Windows\system32\drivers\aliide.sys [15440 2009-07-14] (Microsoft Windows -> Acer Laboratories Inc.)
R3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [15376384 2014-04-18] (Karl Sabo -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [638976 2014-04-18] (Karl Sabo -> Advanced Micro Devices, Inc.)
R0 amdkmpfd; C:\Windows\System32\DRIVERS\amdkmpfd.sys [36608 2013-12-12] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 arc; C:\Windows\system32\drivers\arc.sys [87632 2009-07-14] (Microsoft Windows -> Adaptec, Inc.)
S3 arcsas; C:\Windows\system32\drivers\arcsas.sys [97856 2009-07-14] (Microsoft Windows -> Adaptec, Inc.)
R1 atc; C:\Windows\System32\DRIVERS\atc.sys [1423680 2019-01-30] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA)
R3 athr; C:\Windows\System32\DRIVERS\athrx.sys [3837440 2012-12-20] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros Communications, Inc.)
S3 b06bdrv; C:\Windows\system32\drivers\bxvbda.sys [468480 2009-06-10] (Microsoft Windows -> Broadcom Corporation)
S3 b57nd60a; C:\Windows\System32\DRIVERS\b57nd60a.sys [270848 2009-06-10] (Microsoft Windows -> Broadcom Corporation)
R2 BdDci; C:\Windows\System32\DRIVERS\bddci.sys [367096 2019-01-30] (Bitdefender SRL -> Bitdefender)
S3 BrFiltLo; C:\Windows\system32\drivers\BrFiltLo.sys [18432 2009-06-10] (Microsoft Windows -> Brother Industries, Ltd.)
S3 BrFiltUp; C:\Windows\system32\drivers\BrFiltUp.sys [8704 2009-06-10] (Microsoft Windows -> Brother Industries, Ltd.)
S3 Brserid; C:\Windows\System32\Drivers\Brserid.sys [286720 2009-07-14] (Microsoft Windows -> Brother Industries Ltd.)
S3 BrSerWdm; C:\Windows\System32\Drivers\BrSerWdm.sys [47104 2009-06-10] (Microsoft Windows -> Brother Industries Ltd.)
S3 BrUsbMdm; C:\Windows\System32\Drivers\BrUsbMdm.sys [14976 2009-06-10] (Microsoft Windows -> Brother Industries Ltd.)
S3 BrUsbSer; C:\Windows\System32\Drivers\BrUsbSer.sys [14720 2009-06-10] (Microsoft Windows -> Brother Industries Ltd.)
S3 cmdide; C:\Windows\system32\drivers\cmdide.sys [17488 2009-07-14] (Microsoft Windows -> CMD Technology, Inc.)
R3 edrsensor; C:\Windows\System32\DRIVERS\edrsensor.sys [290688 2019-01-30] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA)
S3 elxstor; C:\Windows\system32\drivers\elxstor.sys [530496 2009-07-14] (Microsoft Windows -> Emulex)
R1 Gemma; C:\Windows\System32\DRIVERS\Gemma.sys [374632 2019-01-30] (Bitdefender SRL -> BitDefender S.R.L. Bucharest, ROMANIA)
R0 gzflt; C:\Windows\System32\drivers\gzflt.sys [201000 2019-01-30] (Bitdefender SRL -> BitDefender LLC)
S3 hcw85cir; C:\Windows\system32\drivers\hcw85cir.sys [31232 2009-06-10] (Microsoft Windows -> Hauppauge Computer Works, Inc.)
R3 igfx; C:\Windows\System32\DRIVERS\igdkmd64.sys [5363520 2014-03-20] (Karl Sabo -> Intel Corporation)
R3 IntcDAud; C:\Windows\System32\DRIVERS\IntcDAud.sys [342528 2014-03-26] (Microsoft Windows Hardware Compatibility Publisher -> Intel(R) Corporation)
S3 intelkmd; C:\Windows\System32\DRIVERS\igdpmd64.sys [12306848 2011-08-31] (Intel Corporation) [File not signed]
S3 nfrd960; C:\Windows\system32\drivers\nfrd960.sys [51264 2009-07-14] (Microsoft Windows -> IBM Corporation)
R3 nusb3hub; C:\Windows\System32\DRIVERS\nusb3hub.sys [97792 2012-05-10] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
R3 nusb3xhc; C:\Windows\System32\DRIVERS\nusb3xhc.sys [217600 2012-05-10] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 ql2300; C:\Windows\system32\drivers\ql2300.sys [1524816 2009-07-14] (Microsoft Windows -> QLogic Corporation)
S3 ql40xx; C:\Windows\system32\drivers\ql40xx.sys [128592 2009-07-14] (Microsoft Windows -> QLogic Corporation)
S4 secdrv; C:\Windows\System32\Drivers\secdrv.sys [23040 2009-06-10] (Microsoft Windows -> Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [2621128 2015-07-15] (Sonix Technology CO., LTD -> Sonix Tech. Co., Ltd.)
R2 trufos; C:\Windows\System32\drivers\trufos.sys [610640 2019-01-30] (Bitdefender SRL -> Bitdefender)
S3 vpnva; C:\Windows\System32\DRIVERS\vpnva64-6.sys [73616 2018-09-05] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-02-06 09:59 - 2019-02-06 10:00 - 000021595 _____ C:\Users\Martin\Desktop\FRST.txt
2019-02-06 09:59 - 2019-02-06 09:59 - 000000000 ____D C:\FRST
2019-02-06 09:33 - 2019-02-06 09:34 - 000000000 ____D C:\AdwCleaner
2019-02-06 09:31 - 2019-02-06 09:31 - 007316688 _____ (Malwarebytes) C:\Users\Martin\Desktop\adwcleaner_7.2.7.0.exe
2019-02-06 09:30 - 2019-02-06 09:30 - 002433024 _____ (Farbar) C:\Users\Martin\Desktop\FRST64.exe
2019-02-06 08:12 - 2019-02-06 08:12 - 000000000 ___HD C:\OneDriveTemp
2019-01-31 16:29 - 2019-01-31 18:40 - 000000000 ____D C:\Users\Martin\Downloads\Tlačná stanice
2019-01-31 16:28 - 2019-01-31 16:29 - 054801058 _____ C:\Users\Martin\Downloads\Tlačná stanice.rar
2019-01-31 16:25 - 2019-01-31 16:26 - 000001695 _____ C:\Users\Martin\Downloads\140089509.htm
2019-01-30 20:33 - 2019-01-30 20:46 - 000000000 ____D C:\Users\Martin\Desktop\slozka
2019-01-30 20:18 - 2019-01-30 20:18 - 000506368 _____ C:\Users\Martin\Downloads\KCI-SS-01-RÁM.idw
2019-01-30 20:18 - 2019-01-30 20:18 - 000347648 _____ C:\Users\Martin\Downloads\KCI-VV-13-Hřídel.idw
2019-01-30 20:18 - 2019-01-30 20:18 - 000347136 _____ C:\Users\Martin\Downloads\KCI-VV-01-Těleso.idw
2019-01-30 20:18 - 2019-01-30 20:18 - 000317440 _____ C:\Users\Martin\Downloads\KCI-VV-03-Zkl-deska.idw
2019-01-30 18:42 - 2019-01-30 20:50 - 000000000 ____D C:\Users\Martin\Desktop\Nová složka
2019-01-29 17:43 - 2019-01-29 17:43 - 000001541 _____ C:\Users\Martin\Desktop\Docházka_2019 – zástupce.lnk
2019-01-29 17:42 - 2019-01-29 17:42 - 000049674 _____ C:\Users\Martin\Downloads\Docházka_2019(1).xlsx
2019-01-29 17:30 - 2019-01-29 17:30 - 000000000 ____D C:\ProgramData\Mozilla
2019-01-22 18:43 - 2019-01-22 18:43 - 000028680 _____ C:\Users\Martin\Downloads\Docházka_2019.xlsx
2019-01-08 12:00 - 2019-01-08 12:00 - 000076732 _____ C:\ProgramData\agent.update.1546945173.bdinstall.v2.bin
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-02-06 10:00 - 2018-09-15 18:12 - 000000000 ____D C:\Program Files\Bitdefender Antivirus Free
2019-02-06 09:58 - 2018-09-15 19:53 - 000007622 _____ C:\Users\Martin\AppData\Local\Resmon.ResmonCfg
2019-02-06 09:58 - 2018-09-14 20:12 - 000000000 ____D C:\Users\Martin\AppData\LocalLow\Mozilla
2019-02-06 09:56 - 2018-09-15 10:28 - 000000000 ___RD C:\Users\Martin\OneDrive
2019-02-06 09:48 - 2009-07-14 05:45 - 000021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-02-06 09:48 - 2009-07-14 05:45 - 000021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-02-06 09:40 - 2018-09-15 18:08 - 000003648 _____ C:\Windows\System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2019-02-06 09:38 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-02-05 18:10 - 2018-09-15 12:38 - 000003170 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2789515162-1589937871-1642982174-1000
2019-02-05 18:09 - 2018-09-15 10:28 - 000002185 _____ C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2019-02-04 08:33 - 2018-09-15 10:19 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-02-04 08:30 - 2018-09-15 10:01 - 000000000 ____D C:\Program Files\Microsoft Office
2019-01-31 22:44 - 2018-09-15 13:25 - 000000000 ____D C:\Users\Public\Documents\.forever
2019-01-31 16:01 - 2009-07-14 06:08 - 000032630 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2019-01-30 19:04 - 2018-10-10 10:08 - 000374632 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:\Windows\system32\Drivers\gemma.sys
2019-01-30 19:04 - 2018-09-15 18:21 - 001423680 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:\Windows\system32\Drivers\atc.sys
2019-01-30 19:04 - 2018-09-15 18:21 - 000367096 _____ (Bitdefender) C:\Windows\system32\Drivers\bddci.sys
2019-01-30 19:04 - 2018-09-15 18:21 - 000290688 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:\Windows\system32\Drivers\edrsensor.sys
2019-01-30 19:04 - 2018-09-15 18:21 - 000201000 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys
2019-01-30 19:04 - 2018-09-15 18:13 - 000610640 _____ (Bitdefender) C:\Windows\system32\Drivers\trufos.sys
2019-01-30 18:52 - 2009-07-14 04:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2019-01-30 18:33 - 2018-09-14 20:12 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-01-30 18:33 - 2018-09-14 20:12 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-01-29 18:39 - 2011-04-12 09:34 - 000668376 _____ C:\Windows\system32\perfh005.dat
2019-01-29 18:39 - 2011-04-12 09:34 - 000141004 _____ C:\Windows\system32\perfc005.dat
2019-01-29 18:39 - 2009-07-14 06:13 - 001582262 _____ C:\Windows\system32\PerfStringBackup.INI
2019-01-29 18:39 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2019-01-08 12:00 - 2018-09-15 18:06 - 000000000 ____D C:\Program Files\Bitdefender Agent
2019-01-07 10:56 - 2018-09-15 10:16 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
==================== Files in the root of some directories =======
2019-01-04 14:46 - 2019-01-04 14:46 - 000001480 _____ () C:\Users\Martin\AppData\Local\recently-used.xbel
2018-09-15 19:53 - 2019-02-06 09:58 - 000007622 _____ () C:\Users\Martin\AppData\Local\Resmon.ResmonCfg
Some files in TEMP:
====================
2018-09-15 17:42 - 2017-01-18 03:50 - 000066472 _____ (Autodesk, Inc.) C:\Users\Martin\AppData\Local\Temp\AcDeltree.exe
Some zero byte size files/folders:
==========================
C:\Windows\SysWOW64\dlumd10.dll
C:\Windows\SysWOW64\dlumd11.dll
C:\Windows\SysWOW64\dlumd9.dll
C:\Windows\SysWOW64\dlumdfb10.dll
C:\Windows\SysWOW64\dlumdfb11.dll
C:\Windows\SysWOW64\dlumdfb9.dll
C:\Windows\System32\dlumd10.dll
C:\Windows\System32\dlumd11.dll
C:\Windows\System32\dlumd9.dll
C:\Windows\System32\dlumdfb10.dll
C:\Windows\System32\dlumdfb11.dll
C:\Windows\System32\dlumdfb9.dll
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\dllhost.exe => File is digitally signed
C:\Windows\SysWOW64\dllhost.exe => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2019-02-05 19:43
==================== End of FRST.txt ============================