Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03.03.2019
Ran by Asus (09-03-2019 09:36:11)
Running from C:\Users\Asus\Desktop
Windows 10 Home Version 1803 17134.590 (X64) (2018-05-25 14:53:40)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1711663184-14711302-3313765518-500 - Administrator - Disabled)
Asus (S-1-5-21-1711663184-14711302-3313765518-1001 - Administrator - Enabled) => C:\Users\Asus
DefaultAccount (S-1-5-21-1711663184-14711302-3313765518-503 - Limited - Disabled)
Guest (S-1-5-21-1711663184-14711302-3313765518-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1711663184-14711302-3313765518-1005 - Limited - Enabled)
WDAGUtilityAccount (S-1-5-21-1711663184-14711302-3313765518-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

«Game of Thrones Telltale series» 1.0.0.1 (HKLM-x32\...\«Game of Thrones Telltale series»_is1) (Version: 1.0.0.1 - Telltale)
«The Sims 3 Deluxe Edition» (build 10.2) (HKLM-x32\...\«The Sims 3 Deluxe Edition»_is1) (Version:  - R.G. Catalyst)
«Witcher 3 - Wild Hunt» 1.0.2.0 (HKLM-x32\...\{BF679CAD-FE6D-4CBE-9E99-D7193809207A}_is1) (Version: 1.0.2.0 - CD Project RED)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.010.20098 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.142 - Adobe Systems Incorporated)
Aktualizace NVIDIA 31.1.10.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.1.10.0 - NVIDIA Corporation) Hidden
ArcGIS 10.2.2 for Desktop (HKLM-x32\...\{761CB033-D425-4A16-954D-EA8DEF4D053B}) (Version: 10.2.3552 - Environmental Systems Research Institute, Inc.) Hidden
ArcGIS 10.2.2 for Desktop (HKLM-x32\...\ArcGIS 10.2.2 for Desktop) (Version: 10.2.3552 - Environmental Systems Research Institute, Inc.)
ArcGIS 10.2.2 License Manager (HKLM-x32\...\{527DC263-3F5C-4333-A14B-5F88CD66AF6E}) (Version: 10.2.3552 - Environmental Systems Research Institute, Inc.) Hidden
ArcGIS 10.2.2 License Manager (HKLM-x32\...\ArcGIS 10.2.2 License Manager) (Version: 10.2.3552 - Environmental Systems Research Institute, Inc.)
ARK - Survival Evolved (HKLM-x32\...\ARK - Survival Evolved_is1) (Version: 0.2.3.8 - Instinct Games)
Assassin's Creed Origins (HKLM-x32\...\{DAC281DD-7006-49D4-905B-E8BDA474A230}_is1) (Version:  - Ubisoft)
ASUS GIFTBOX Desktop (HKLM-x32\...\{4701E5AB-AF91-4D40-8F18-358CC80E4E5B}) (Version: 1.1.5 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.12 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.13.0004 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0041 - ASUS)
Cities Skylines - All That Jazz (HKLM-x32\...\Cities Skylines - All That Jazz_is1) (Version: 1.9.3.1 - Colossal Order Ltd)
Cities: Skylines - ČEŠTINA (HKU\S-1-5-21-1711663184-14711302-3313765518-1001\...\Cities: Skylines - ČEŠTINA) (Version:  - )
Čeština pro ArcGIS 10.2 for Desktop (HKLM-x32\...\Čeština pro ArcGIS 10.2 for Desktop 1.0) (Version: 1.0 - ARCDATA PRAHA)
Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.2 - ASUSTek Computer Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 391.24 - NVIDIA Corporation) Hidden
Dragon Age - Origins - Ultimate Edition (HKLM-x32\...\1949616134_is1) (Version: 2.0.0.3 - GOG.com)
Dragon Age™: Inquisition (HKLM-x32\...\{DC4C36DC-4E5B-4262-B0C7-157DF534B969}) (Version: 1.0.0.12 - Electronic Arts)
Dragon.Age.2.V1.04+16DLC.Eng.Repack verze 1.04 (HKLM-x32\...\{AFA6B28F-B9AD-4573-A23F-0279DCEBEBFA}}_is1) (Version: 1.04 - Ali213.net)
ESET Security (HKLM\...\{BEFBE0CD-6723-4D98-8263-9A2C376BC6CD}) (Version: 11.1.54.0 - ESET, spol. s r.o.)
Farming Simulator 19 (HKLM-x32\...\Farming Simulator 19_is1) (Version:  - )
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10603.192 - Intel Corporation)
Intel(R) Chipset Device Software (HKLM-x32\...\{a2d9fda8-65eb-4c06-81ef-31e0a4daa335}) (Version: 10.1.1.11 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1169 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4550 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1519.7 - Intel Corporation)
Intel® CCF Manager (HKLM-x32\...\{0f3d8dd5-54af-4404-a01c-4967e485a065}) (Version: 3.0.13.2211 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
Jurassic World: Evolution (HKLM-x32\...\Jurassic World: Evolution_is1) (Version:  - )
Kingdom Come Deliverance Band of Bastards (HKLM-x32\...\Kingdom Come Deliverance Band of Bastards_is1) (Version:  - )
LogMeIn Hamachi (HKLM-x32\...\{1945856D-A68E-43D3-846D-F8DFDE4A69F7}) (Version: 2.2.0.630 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.630 - LogMeIn, Inc.)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1711663184-14711302-3313765518-1001\...\OneDriveSetup.exe) (Version: 19.002.0107.0008 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Mozilla Firefox 56.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 56.0 (x86 cs)) (Version: 56.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 56.0.0.6478 - Mozilla)
Mp3 Editor for Free v5.2.7 Build 79 (HKLM-x32\...\Mp3 Editor for Free_is1) (Version: 5.2.7 Build 79 - Mp3EditorforFree Ltd.)
NVIDIA GeForce Experience 3.13.1.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.13.1.30 - NVIDIA Corporation)
NVIDIA PhysX (Legacy) (HKLM-x32\...\{FAAC26AD-73BA-40CE-86AA-C9213F9E064A}) (Version: 9.13.0604 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.35.22222 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 391.24 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 391.24 - NVIDIA Corporation) Hidden
Planet Coaster (HKLM-x32\...\Planet Coaster_is1) (Version:  - )
Power Sound Editor Free (HKLM-x32\...\Power Sound Editor Free) (Version:  - FAE Inc.)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 10.0.1.2 - Qualcomm Atheros)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31233 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.8.311.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7571 - Realtek Semiconductor Corp.)
Sid.Meiers.Civilization.VI.Deluxe.Edition+7DLC verze 1.0 (HKLM-x32\...\{2335A5A4-3ECA-4716-8D24-D57F6589D3E5}}_is1) (Version: 1.0 - Ali213.net)
SimCity (HKLM-x32\...\SimCity_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, markfiter)
STCServ (HKLM\...\{A954D353-9DAF-4916-8E71-F1E959EBCD1E}) (Version: 3.0.0.1783 - Intel Corporation) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
The Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.63.4 - Electronic Arts)
The Sims™ 3 Diesel Каталог (HKLM-x32\...\{1C9B6173-6DC9-4EEE-9EFC-6BA115CFBE43}) (Version: 14.0.48 - Electronic Arts)
The Sims™ 3 В сумерках (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.5.1 - Electronic Arts)
The Sims™ 3 Времена года (HKLM-x32\...\{3DE92282-CB49-434F-81BF-94E5B380E889}) (Version: 16.0.136 - Electronic Arts)
The Sims™ 3 Все возрасты (HKLM-x32\...\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}) (Version: 8.0.152 - Electronic Arts)
The Sims™ 3 Городская жизнь Каталог (HKLM-x32\...\{7B11296A-F894-449C-8DF6-6AAAA7D4D118}) (Version: 9.0.73 - Electronic Arts)
The Sims™ 3 Изысканная спальня Каталог (HKLM-x32\...\{08A25478-C5DD-4EA7-B168-3D687CA987FF}) (Version: 11.0.84 - Electronic Arts)
The Sims™ 3 Карьера (HKLM-x32\...\{910F4A29-1134-49E0-AD8B-56E4A3152BD1}) (Version: 4.10.1 - Electronic Arts)
The Sims™ 3 Кино Каталог (HKLM-x32\...\{D0087539-3C57-44E0-BEE7-D779D546CBE1}) (Version: 20.0.53 - Electronic Arts)
The Sims™ 3 Мир приключений (HKLM-x32\...\{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}) (Version: 2.9.10 - Electronic Arts)
The Sims™ 3 Отдых на природе Каталог (HKLM-x32\...\{117B6BF6-82C3-420C-B284-9247C8568E53}) (Version: 7.3.2 - Electronic Arts)
The Sims™ 3 Питомцы (HKLM-x32\...\{C12631C6-804D-4B32-B0DD-8A496462F106}) (Version: 10.0.96 - Electronic Arts)
The Sims™ 3 Райские острова (HKLM-x32\...\{DB21639E-FE55-432C-BCA2-0C5249E3F79E}) (Version: 19.0.101 - Electronic Arts)
The Sims™ 3 Скоростной режим Каталог (HKLM-x32\...\{ED436EA8-4145-4703-AE5D-4D09DD24AF5A}) (Version: 5.8.1 - Electronic Arts)
The Sims™ 3 Современная роскошь Каталог (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.9.6 - Electronic Arts)
The Sims™ 3 Студенческая жизнь (HKLM-x32\...\{F26DE8EF-F2CF-40DC-8CDA-CC0D82D11B36}) (Version: 18.0.126 - Electronic Arts)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.0a - Ghisler Software GmbH)
Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.8.8 - Tunngle.net GmbH)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{1FD817A6-63E1-4519-BFD4-228DABB7AB6B}) (Version: 2.55.0.0 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Wargaming.net Game Center (HKU\S-1-5-21-1711663184-14711302-3313765518-1001\...\Wargaming.net Game Center) (Version: 19.0.0.3507 - Wargaming.net)
webiums modpack 1.4.0.1 v01 (HKLM-x32\...\{B64D8CE9-11B2-469D-A347-9A13C2BCA423}_is1) (Version: 01 - myWOTmods.com)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666  - Nullsoft, Inc)
Windows Driver Package - ASUS (AsusSGDrv) Mouse  (10/06/2015 8.0.0.23) (HKLM\...\DA2E0A005E6CD7900733D89DA6D9F31585E338DF) (Version: 10/06/2015 8.0.0.23 - ASUS)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.0.2 - ASUS)
WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
World of Tanks EU (HKU\S-1-5-21-1711663184-14711302-3313765518-1001\...\WOT.EU.PRODUCTION) (Version:  - Wargaming.net)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1711663184-14711302-3313765518-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET NOD32 Antivirus\shellExt.dll [2018-12-13] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-04] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET NOD32 Antivirus\shellExt.dll [2018-12-13] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igfxDTCM.dll [2016-11-30] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-03-15] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> No File
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET NOD32 Antivirus\shellExt.dll [2018-12-13] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} =>  -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-04] (win.rar GmbH -> Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {029A291A-EE3E-48E9-84CA-B44D6D1C893E} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_142_Plugin.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {1546A40D-5BD4-4CAE-A5C7-F554926CDBFD} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1DE209DF-1256-4012-84E6-237577EDB527} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {233AB008-4AF0-438E-92A5-9A9782F7E51A} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {2548A5C3-DDA3-4F5D-8595-4FA121B6529F} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {2842FC28-4F8C-47E2-A17E-6DF1A7A22A56} - System32\Tasks\{12DA8503-FBF2-446F-894D-472B41387E50} => C:\WINDOWS\system32\pcalua.exe -a C:\PROGRA~2\COMMON~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe -d C:\Windows\ImmersiveControlPanel -c /M{B406605B-45FE-4D8F-8250-1E77479583AE}
Task: {2AAB5F0B-3879-4038-B725-FB9C8150D1BB} - System32\Tasks\IntelBootstrapCCDashExe => C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe (Intel® Corporation) [File not signed]
Task: {3EC6355D-BF2D-4A37-B899-9CC884E13AAD} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe (ASUS) [File not signed]
Task: {523C42D6-8C9F-4B70-B3DC-CB13CB6B9F95} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {5DBAA902-D4E4-4DA8-9341-F116F6A30025} - System32\Tasks\Update Manager => C:\Users\Asus\AppData\Roaming\Sid.Meiers.Civilization.VI.Deluxe.Edition+7DLC\kyclgt.exe
Task: {5E4589D4-23A0-4593-A9E4-ADB09DDB8336} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {5FD96F9E-7643-4DD1-8E0D-F635D537BF8E} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6CCD1E85-FA33-4DC3-832D-317412DA7D77} - System32\Tasks\{CD9AA429-6BE4-499A-A931-B1D65B89A464} => C:\WINDOWS\system32\pcalua.exe -a "C:\GOG Games\The Settlers 6\extra1\bin\Settlers6.exe" -d "C:\GOG Games\The Settlers 6\extra1\bin"
Task: {72905A96-779B-4C62-9A13-59EC7A3143DC} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {818327B9-A3D9-4B16-A94E-D5A457389E04} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {83F9D4BD-521B-40DE-A204-B6C8543DD3E7} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {85934321-7340-42B5-8743-E657F55381B0} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe (ASUSTeK Computer Inc. -> AsusTek)
Task: {881BDB0B-6091-4F7E-A89F-C74101F442C0} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {9F72CF51-7AFB-4901-B7CF-2B1E2C877ABA} - \CCleanerSkipUAC -> No File <==== ATTENTION
Task: {AF7E7051-3CE0-41A5-B41C-4932AF0F5638} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [File not signed]
Task: {B6C6017B-8EE7-46DA-94BA-09BDD4B71418} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {C2689A8B-6E24-4F01-823A-F21E55C4FBAF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {D7C257EA-458E-4BCF-9DFB-D83DD8D2F7AB} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EC528CBC-E0A4-4D69-8D76-A498BCD23E77} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F46D978F-5B35-43E1-BB6D-DEA7646BE8C2} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F819505D-4064-4C65-8E76-0D7F95E9FF99} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2015-07-29 21:36 - 2015-07-29 21:36 - 000323152 _____ (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) [File not signed] C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
2015-06-12 15:16 - 2015-06-12 15:16 - 000313488 _____ (ASUSTeK Computer Inc. -> ASUS) [File not signed] C:\Program Files (x86)\ASUS\ASUS GIFTBOX Desktop\ASUSGIFTBOXDesktop.exe
2015-05-19 10:11 - 2015-05-19 10:11 - 000007680 _____ () [File not signed] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
2015-08-25 10:40 - 2015-08-25 10:40 - 000055296 _____ (ASUS) [File not signed] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
2014-02-13 22:49 - 2014-01-10 15:54 - 001680248 _____ (Environmental Systems Research Institute Inc. -> ESRI) [File not signed] C:\Program Files (x86)\ArcGIS\License10.2\bin\ARCGIS.exe
2015-08-25 10:40 - 2015-08-25 10:40 - 000027648 _____ () [File not signed] C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2015-08-25 10:40 - 2015-08-25 10:40 - 000164864 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\Splendid\ColorU.dll
2015-08-25 10:40 - 2015-08-25 10:40 - 001680384 _____ (ASUS TeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\Splendid\ApplyLUT.dll
2015-08-25 10:40 - 2015-08-25 10:40 - 000124928 _____ () [File not signed] C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2015-08-25 10:40 - 2015-08-25 10:40 - 000178688 _____ (ASUS TeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\Splendid\GenLUT.dll
2013-09-11 17:34 - 2013-09-11 17:34 - 004763648 _____ (Flexera Software LLC) [File not signed] C:\Program Files (x86)\ArcGIS\License10.2\bin\ARCGIS_libFNP.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-07-10 12:04 - 2016-02-22 16:35 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1711663184-14711302-3313765518-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Asus\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{0a3cd33f-b450-4256-8999-662169acaba7}.JPG
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\Services: wuauserv => 3
HKLM\...\StartupApproved\Run: => "Connectify Hotspot"
HKLM\...\StartupApproved\Run: => "NvBackend"
HKLM\...\StartupApproved\Run: => "AutoKMS"
HKLM\...\StartupApproved\Run: => "IntelConnectCenter"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run32: => "BCSSync"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-1711663184-14711302-3313765518-1001\...\StartupApproved\StartupFolder: => "esat.exe"
HKU\S-1-5-21-1711663184-14711302-3313765518-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1711663184-14711302-3313765518-1001\...\StartupApproved\Run: => "World of Tanks"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{6D6C03F9-F910-46E2-B508-D48867151CB8}D:\games\wot test\worldoftanks.exe] => (Allow) D:\games\wot test\worldoftanks.exe No File
FirewallRules: [TCP Query User{8DFE073C-545D-4FE2-990D-6D885BE800B3}D:\games\wot test\worldoftanks.exe] => (Allow) D:\games\wot test\worldoftanks.exe No File
FirewallRules: [UDP Query User{89787CAE-65BF-4924-A577-9EA0EC5B2F04}D:\games\wot test\wotlauncher.exe] => (Allow) D:\games\wot test\wotlauncher.exe No File
FirewallRules: [TCP Query User{D94F8C6D-737A-42C9-AA2D-7E16A253705D}D:\games\wot test\wotlauncher.exe] => (Allow) D:\games\wot test\wotlauncher.exe No File
FirewallRules: [{A46E3CF8-EF7E-4E8F-BFD4-7F4239421E88}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{31CCA4C4-73DF-469A-8B4A-FEACFE654892}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{69A33E02-9AC0-47ED-8075-CC8960739484}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{66B47AB6-6B73-43F6-8D2D-1226FFEE18BF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2A9F7A8D-AF3A-4D1A-B076-2EC5936CCC81}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{32E45BDF-9A8D-4E1B-9471-A1A705D568DA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{53BC8D0E-B283-4BEA-9317-224F59DE889C}C:\gog games\dragon age origins\bin_ship\daorigins.exe] => (Allow) C:\gog games\dragon age origins\bin_ship\daorigins.exe (BioWare) [File not signed]
FirewallRules: [TCP Query User{EB269B34-D235-45D0-B2AA-E7D909469700}C:\gog games\dragon age origins\bin_ship\daorigins.exe] => (Allow) C:\gog games\dragon age origins\bin_ship\daorigins.exe (BioWare) [File not signed]
FirewallRules: [UDP Query User{CD247B4F-BD3B-46B4-B524-FE7440C63D34}D:\games\grand theft auto v\gta5.exe] => (Allow) D:\games\grand theft auto v\gta5.exe No File
FirewallRules: [TCP Query User{7EE237A4-6221-4B47-B9EE-65C5DF33ADE3}D:\games\grand theft auto v\gta5.exe] => (Allow) D:\games\grand theft auto v\gta5.exe No File
FirewallRules: [UDP Query User{788A9A56-D51F-4E30-9946-4015DAA7748B}D:\games\ark\steamapps\common\ark\shootergame\binaries\win64\shootergameserver.exe] => (Allow) D:\games\ark\steamapps\common\ark\shootergame\binaries\win64\shootergameserver.exe (Wildcard Properties LLC -> Epic Games, Inc.)
FirewallRules: [TCP Query User{F88E11C1-B714-4D9C-90C2-B84C5DC24054}D:\games\ark\steamapps\common\ark\shootergame\binaries\win64\shootergameserver.exe] => (Allow) D:\games\ark\steamapps\common\ark\shootergame\binaries\win64\shootergameserver.exe (Wildcard Properties LLC -> Epic Games, Inc.)
FirewallRules: [{1572219D-5567-404D-BF3B-AD5F4896A281}] => (Allow) D:\Games\Ark\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe (Wildcard Properties LLC -> Epic Games, Inc.)
FirewallRules: [{206612EF-996A-47C0-BE83-9E63E2A07ABC}] => (Allow) D:\Games\Ark\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe (Wildcard Properties LLC -> Epic Games, Inc.)
FirewallRules: [{22C9752D-F2D7-4BF4-9E31-A93C47EAA53D}] => (Allow) D:\Games\Ark\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{EC3B7A0A-089C-48BD-9549-1980FDC2C254}] => (Allow) D:\Games\Ark\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{F93822A3-3AC3-4E35-B88C-BCDB91433931}] => (Allow) C:\Users\Asus\Desktop\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{D8071037-E7DC-4103-BB22-9A8271B51F75}] => (Allow) C:\Users\Asus\Desktop\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{88F33D83-49E3-4063-8152-40234BBDE697}] => (Allow) C:\Users\Asus\Desktop\Steam.exe No File
FirewallRules: [{31933291-655A-49A8-9CFC-5504AACC5B22}] => (Allow) C:\Users\Asus\Desktop\Steam.exe No File
FirewallRules: [UDP Query User{51741A9B-06D0-4255-BD9B-5CE093E11DD8}D:\games\sid meiers civilization vi\base\binaries\win64steam\civilizationvi.exe] => (Allow) D:\games\sid meiers civilization vi\base\binaries\win64steam\civilizationvi.exe No File
FirewallRules: [TCP Query User{EB1E8D6D-2C37-43DF-80F7-DF604BD08A22}D:\games\sid meiers civilization vi\base\binaries\win64steam\civilizationvi.exe] => (Allow) D:\games\sid meiers civilization vi\base\binaries\win64steam\civilizationvi.exe No File
FirewallRules: [{D2354239-2435-4406-98BE-EAFC49BA9943}] => (Allow) D:\Games\SimCity\SimCity\SimCity.exe No File
FirewallRules: [{02A8C915-D949-4241-A8EA-9DB435F3F1DE}] => (Allow) D:\Games\SimCity\SimCity\SimCity.exe No File
FirewallRules: [UDP Query User{93C3A060-E227-4059-9478-572319CE5670}D:\games\settlers 5\bin\settlershok.exe] => (Allow) D:\games\settlers 5\bin\settlershok.exe No File
FirewallRules: [TCP Query User{8254E024-7B88-40DC-BEA6-68AEFAF4A3E6}D:\games\settlers 5\bin\settlershok.exe] => (Allow) D:\games\settlers 5\bin\settlershok.exe No File
FirewallRules: [UDP Query User{59A0A0A4-0815-4523-88AA-9EFD74AD4E5A}C:\gog games\the settlers 6\base\bin\settlers6.exe] => (Allow) C:\gog games\the settlers 6\base\bin\settlers6.exe No File
FirewallRules: [TCP Query User{D2658920-1A2A-4F0E-86C7-AE0D55E97351}C:\gog games\the settlers 6\base\bin\settlers6.exe] => (Allow) C:\gog games\the settlers 6\base\bin\settlers6.exe No File
FirewallRules: [UDP Query User{8002B633-50F4-47A4-A28F-6399519D64F7}C:\gog games\the settlers 6\extra1\bin\settlers6.exe] => (Allow) C:\gog games\the settlers 6\extra1\bin\settlers6.exe No File
FirewallRules: [TCP Query User{7D9EA231-E7E0-4852-BE72-F98A0049EC04}C:\gog games\the settlers 6\extra1\bin\settlers6.exe] => (Allow) C:\gog games\the settlers 6\extra1\bin\settlers6.exe No File
FirewallRules: [UDP Query User{5ED48CB2-D3CC-4499-BD39-6AC69B58C500}D:\games\far cry primal\far cry primal\bin\fcprimal.exe] => (Allow) D:\games\far cry primal\far cry primal\bin\fcprimal.exe No File
FirewallRules: [TCP Query User{6183032C-EB36-4E75-A3AF-50C556F375CA}D:\games\far cry primal\far cry primal\bin\fcprimal.exe] => (Allow) D:\games\far cry primal\far cry primal\bin\fcprimal.exe No File
FirewallRules: [{6D0A0219-29BD-41CC-B925-51E6B289CFE9}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe (Tunngle.net GmbH -> Tunngle.net GmbH) [File not signed]
FirewallRules: [{8A56446E-C71E-4215-8102-540CD18E0B1F}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe (Tunngle.net GmbH -> Tunngle.net GmbH) [File not signed]
FirewallRules: [{3FABC2D5-2E38-4D17-B8D1-D1E30D0A70F1}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe (Tunngle.net GmbH -> Tunngle.net GmbH) [File not signed]
FirewallRules: [{4C5BF5B7-19B3-41EF-A211-6DC58EA902A8}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe (Tunngle.net GmbH -> Tunngle.net GmbH) [File not signed]
FirewallRules: [{227E2B8B-67E4-4270-B7A1-42A3836CF95C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{6C7DD95F-81A9-40F9-ACBC-340394F4FA02}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{C6E00E58-C038-4EEB-98FD-6A36B1C2BC02}] => (Allow) D:\Games\Zoo Tycoon 2\zt.exe No File
FirewallRules: [{06C70F61-6BEA-451F-B691-48148EB9A37D}] => (Allow) D:\Games\Zoo Tycoon 2\zt.exe No File
FirewallRules: [{212136E0-A7FA-4330-85DC-92AE821020EA}] => (Allow) D:\Games\zt.exe No File
FirewallRules: [{7C40834E-5146-462F-8526-75485CCDBEA0}] => (Allow) D:\Games\zt.exe No File
FirewallRules: [{C75EB4A0-2E02-4F16-A0D5-E8BABF418518}] => (Allow) C:\Program Files\Intel\STCServ\STCServ.exe (Intel(R) iCDG WINS WSS CCF -> Intel Corporation)
FirewallRules: [{7A74E6BE-514E-493B-9DF5-C319BFB7959E}] => (Allow) C:\Program Files\Intel\STCServ\STCServ.exe (Intel(R) iCDG WINS WSS CCF -> Intel Corporation)
FirewallRules: [{CF562600-3C3F-4158-BE63-C4A2ED81507D}] => (Allow) C:\Program Files (x86)\ASUS\Share Link\ShareLink.exe No File
FirewallRules: [{E3F4BDC7-DDD6-4FC1-8783-34AFCEE93BAF}] => (Allow) C:\Program Files\Intel\STCServ\STCServ.exe (Intel(R) iCDG WINS WSS CCF -> Intel Corporation)
FirewallRules: [{4F2193A0-331C-4604-92E0-6BD67A306FA9}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{B123C1C9-A953-464C-B0CE-FEB95089C853}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [UDP Query User{B38BD7AA-2772-4F76-9C9B-7598F42CD4B5}D:\games\far cry 4\bin\farcry4.exe] => (Allow) D:\games\far cry 4\bin\farcry4.exe No File
FirewallRules: [TCP Query User{9886C7E8-CF50-4625-84CA-9593002994E9}D:\games\far cry 4\bin\farcry4.exe] => (Allow) D:\games\far cry 4\bin\farcry4.exe No File
FirewallRules: [UDP Query User{2B953DE5-F45A-407C-BA0F-B1C4B2E3ABEC}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe No File
FirewallRules: [TCP Query User{4A6A607B-D46B-4D5E-BBFD-398936E15A47}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe No File
FirewallRules: [UDP Query User{AB098A4A-18F1-40B0-A79D-33E46D6C55C9}C:\program files (x86)\connectify\connectify.exe] => (Allow) C:\program files (x86)\connectify\connectify.exe No File
FirewallRules: [TCP Query User{C4702945-8D24-4541-BA15-E1346907F44E}C:\program files (x86)\connectify\connectify.exe] => (Allow) C:\program files (x86)\connectify\connectify.exe No File
FirewallRules: [{F1F19BD4-C9A7-4BBB-B461-B0AAADBDEAB1}] => (Allow) %ProgramFiles% (x86)\Far Cry Primal\bin\FCPrimal.exe No File
FirewallRules: [UDP Query User{55B747D6-5407-4C58-AD90-BF5858933FB2}C:\program files (x86)\civilization v - brave new world\civilizationv_dx11.exe] => (Allow) C:\program files (x86)\civilization v - brave new world\civilizationv_dx11.exe (Valve Corporation -> Firaxis Games) [File not signed]
FirewallRules: [TCP Query User{A136A51D-6976-4BBF-BA53-CD2D21638D81}C:\program files (x86)\civilization v - brave new world\civilizationv_dx11.exe] => (Allow) C:\program files (x86)\civilization v - brave new world\civilizationv_dx11.exe (Valve Corporation -> Firaxis Games) [File not signed]
FirewallRules: [UDP Query User{75E30B37-53BA-473C-86B4-E89A47AC35F4}C:\users\asus\appdata\roaming\microsoft\windows\start menu\programs\startup\esat.exe] => (Allow) C:\users\asus\appdata\roaming\microsoft\windows\start menu\programs\startup\esat.exe No File
FirewallRules: [TCP Query User{3D922F40-0EC4-474F-AA6C-29AB0AA5A292}C:\users\asus\appdata\roaming\microsoft\windows\start menu\programs\startup\esat.exe] => (Allow) C:\users\asus\appdata\roaming\microsoft\windows\start menu\programs\startup\esat.exe No File
FirewallRules: [UDP Query User{8653960C-3EDB-4794-8378-3531524F202B}C:\users\asus\appdata\roaming\microsoft\windows\start menu\programs\startup\esat.exe] => (Block) C:\users\asus\appdata\roaming\microsoft\windows\start menu\programs\startup\esat.exe No File
FirewallRules: [TCP Query User{368CBE1A-E031-4B9C-9035-D2251E0F9D09}C:\users\asus\appdata\roaming\microsoft\windows\start menu\programs\startup\esat.exe] => (Block) C:\users\asus\appdata\roaming\microsoft\windows\start menu\programs\startup\esat.exe No File
FirewallRules: [{675550E2-70BB-4E35-9E6E-2E9223D3DD17}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe No File
FirewallRules: [{029F0732-B25F-4031-8FDC-AB6AC9905330}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe No File
FirewallRules: [{0105C814-3A49-4FEF-B2E4-E277A4AF76DD}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe No File
FirewallRules: [{BE6C6833-8E0D-406B-A4E7-BE0B27F20B33}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe No File
FirewallRules: [UDP Query User{0F55F76B-5A79-4E63-ABB0-F736EE84F094}C:\users\asus\desktop\connectify\connectify\connectify.exe] => (Allow) C:\users\asus\desktop\connectify\connectify\connectify.exe No File
FirewallRules: [TCP Query User{818144BB-A02A-42A8-8B2C-1CB20A5F6C9D}C:\users\asus\desktop\connectify\connectify\connectify.exe] => (Allow) C:\users\asus\desktop\connectify\connectify\connectify.exe No File
FirewallRules: [UDP Query User{06589FC5-1647-4DF5-8D00-B3043579A36A}C:\users\asus\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\asus\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{A2D5EBBD-5864-42ED-9119-CBC78AF95AE5}C:\users\asus\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\asus\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{8A9155AD-A4B9-4C91-8CF2-EFF98BA868EC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{14EFFD7F-FA09-4614-A92B-113000A0B7F7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{70248A8A-270E-428A-B159-9B1D323FF4F3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{3BF46B8C-5CE7-495E-B4E6-EB6C44156EBC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{F38668CC-54A6-4D49-B690-CA023E5B04DB}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe No File
FirewallRules: [{FA124352-4594-4388-AD48-EA0919452A95}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe No File
FirewallRules: [TCP Query User{78334962-A116-46A5-B448-F0069B6DFEDF}C:\games\world_of_tanks_ct\wotlauncher.exe] => (Allow) C:\games\world_of_tanks_ct\wotlauncher.exe No File
FirewallRules: [UDP Query User{2D47D9BE-6082-49E6-96FC-22B37DC91F7B}C:\games\world_of_tanks_ct\wotlauncher.exe] => (Allow) C:\games\world_of_tanks_ct\wotlauncher.exe No File
FirewallRules: [TCP Query User{29081D29-A0E1-44B7-910E-D4A8F836FB3A}C:\games\world_of_tanks_ct\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_ct\worldoftanks.exe No File
FirewallRules: [UDP Query User{9DA2949A-D560-4D4F-AFB1-C892FC24D56D}C:\games\world_of_tanks_ct\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_ct\worldoftanks.exe No File
FirewallRules: [{EDD4CF63-9834-40F9-8E80-FF02D9641D20}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{EE943476-9D99-4BBA-90C7-56274CE06087}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{8BC19872-F2BF-45E2-BC9E-8B22461F4AC3}D:\games\kingdom come - deliverance\bin\win64\kingdomcome.exe] => (Allow) D:\games\kingdom come - deliverance\bin\win64\kingdomcome.exe No File
FirewallRules: [UDP Query User{75B3ADEB-5A5F-4423-8A1C-CC2A21FA3919}D:\games\kingdom come - deliverance\bin\win64\kingdomcome.exe] => (Allow) D:\games\kingdom come - deliverance\bin\win64\kingdomcome.exe No File
FirewallRules: [TCP Query User{EC148B76-E53C-41F3-A98A-06C23D7413A8}D:\games\farming simulator 19\x64\farmingsimulator2019game.exe] => (Allow) D:\games\farming simulator 19\x64\farmingsimulator2019game.exe No File
FirewallRules: [UDP Query User{18A51619-09A0-4C03-A893-DE95E284DB8C}D:\games\farming simulator 19\x64\farmingsimulator2019game.exe] => (Allow) D:\games\farming simulator 19\x64\farmingsimulator2019game.exe No File
FirewallRules: [{54A2340B-EB5D-43C9-B0BA-5C8FF83AA800}] => (Allow) D:\Games\Dragon Age Inquisition\DragonAgeInquisition.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [{88AD89FB-660A-4794-996A-62AE77564EF2}] => (Allow) D:\Games\Dragon Age Inquisition\DragonAgeInquisition.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [TCP Query User{58EC0529-5B3C-4B30-8896-F4B2759D082B}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{7CCEF702-63C7-41BC-B688-8DA4A6213035}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{3E48DFA9-2519-4933-85BF-6E8EA211C765}D:\games\kingdom come deliverance band of bastards\bin\win64\kingdomcome.exe] => (Allow) D:\games\kingdom come deliverance band of bastards\bin\win64\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [UDP Query User{960E7CFE-6D1B-4093-92B5-715E08E3F3F3}D:\games\kingdom come deliverance band of bastards\bin\win64\kingdomcome.exe] => (Allow) D:\games\kingdom come deliverance band of bastards\bin\win64\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [TCP Query User{AA1EAF7C-0F34-4EC0-86D5-231FEC8A19B7}D:\games\wot\world_of_tanks_eu\worldoftanks.exe] => (Allow) D:\games\wot\world_of_tanks_eu\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{79015DA2-FEE0-40EC-8A63-3C6BBEC87217}D:\games\wot\world_of_tanks_eu\worldoftanks.exe] => (Allow) D:\games\wot\world_of_tanks_eu\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)

==================== Restore Points =========================

13-02-2019 21:16:49 Windows Update
24-02-2019 12:47:34 Naplánovaný kontrolní bod
01-03-2019 17:06:33 Windows Update
08-03-2019 21:22:39 AA11

==================== Faulty Device Manager Devices =============

Name: LogMeIn Hamachi Virtual Ethernet Adapter
Description: LogMeIn Hamachi Virtual Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn Inc.
Service: Hamachi
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (03/09/2019 07:27:34 AM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Při aktualizaci stavu  na SECURITY_PRODUCT_STATE_OFF došlo k chybě.

Error: (03/09/2019 07:17:46 AM) (Source: ESENT) (EventID: 104) (User: )
Description: SettingSyncHost (9000,T,97) {3F0838B8-E863-47B5-A649-274FB4E811EF}: Databázový stroj zastavil instanci (0) s chybou (-1090).



Sekvence interního načasování: 
[1] 0.000006 +J(0)
[2] 0.000016 +J(0) +M(C:0K, Fs:3, WS:12K # 0K, PF:0K # 0K, P:0K)
[3] 0.000004 +J(0)
[4] 0.000015 +J(0) +M(C:0K, Fs:4, WS:16K # 0K, PF:0K # 0K, P:0K)
[5] 0.000001 +J(0)
[6] 0.000010 +J(0) +M(C:0K, Fs:2, WS:8K # 0K, PF:0K # 0K, P:0K)
[7] -
[8] 0.000006 +J(0) +M(C:0K, Fs:1, WS:4K # 0K, PF:0K # 0K, P:0K)
[9] 0.000049 +J(0) +M(C:0K, Fs:6, WS:24K # 0K, PF:0K # 0K, P:0K)
[10] -
[11] 0.000014 +J(0) +M(C:0K, Fs:4, WS:16K # 0K, PF:0K # 0K, P:0K)
[12] -
[13] 0.000053 +J(0) +M(C:0K, Fs:3, WS:8K # 0K, PF:-4K # 0K, P:-4K)
[14] 20.977527 +J(0) +M(C:0K, Fs:3, WS:-528K # 0K, PF:0K # 0K, P:0K)
[15] 0.000055 +J(0) +M(C:0K, Fs:2, WS:4K # 0K, PF:-16K # 0K, P:-16K)
[16] 0.000006 +J(0).

Error: (03/09/2019 07:16:55 AM) (Source: ESENT) (EventID: 470) (User: )
Description: SettingSyncHost (9000,D,50) {3F0838B8-E863-47B5-A649-274FB4E811EF}: Databáze C:\Users\Asus\AppData\Local\Microsoft\Windows\SettingSync\metastore\meta.edb je částečně připojená. Fáze připojení: 2. Chyba: -1032

Error: (03/09/2019 07:16:55 AM) (Source: ESENT) (EventID: 490) (User: )
Description: SettingSyncHost (9000,D,50) {3F0838B8-E863-47B5-A649-274FB4E811EF}: Pokus o otevření souboru C:\Users\Asus\AppData\Local\Microsoft\Windows\SettingSync\metastore\meta.edb pro čtení nebo zápis selhal. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru selže a dojde k chybě -1032 (0xfffffbf8).

Error: (03/09/2019 07:08:04 AM) (Source: COM) (EventID: 10031) (User: )
Description: Při zrušení zařazení vlastního zařazeného objektu byla provedena kontrola zásad zrušení zařazení a třída {41FD88F7-F295-4D39-91AC-A85F3149A05B} byla odmítnuta.

Error: (03/09/2019 07:08:04 AM) (Source: COM) (EventID: 10031) (User: )
Description: Při zrušení zařazení vlastního zařazeného objektu byla provedena kontrola zásad zrušení zařazení a třída {95CABCC9-BC57-4C12-B8DF-BA193232AA01} byla odmítnuta.

Error: (03/09/2019 07:06:32 AM) (Source: COM) (EventID: 10031) (User: )
Description: Při zrušení zařazení vlastního zařazeného objektu byla provedena kontrola zásad zrušení zařazení a třída {95CABCC9-BC57-4C12-B8DF-BA193232AA01} byla odmítnuta.

Error: (03/08/2019 10:41:03 PM) (Source: ESENT) (EventID: 470) (User: )
Description: svchost (3428,D,50) SRUJet: Databáze C:\WINDOWS\system32\SRU\SRUDB.dat je částečně připojená. Fáze připojení: 2. Chyba: -1032


System errors:
=============
Error: (03/09/2019 09:24:09 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID 
Windows.SecurityCenter.WscBrokerManager
 a APPID 
Není k dispozici
 uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/09/2019 09:24:07 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Intel(R) Common Connectivity Framework neuspěla při spuštění v důsledku následující chyby: 
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (03/09/2019 09:24:07 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby STCServ bylo dosaženo časového limitu (30000 ms).

Error: (03/09/2019 09:20:49 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Origin Web Helper Service neuspěla při spuštění v důsledku následující chyby: 
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (03/09/2019 09:20:49 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Origin Web Helper Service bylo dosaženo časového limitu (30000 ms).

Error: (03/09/2019 09:19:03 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 a APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/09/2019 09:13:40 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID 
Windows.SecurityCenter.WscBrokerManager
 a APPID 
Není k dispozici
 uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/09/2019 09:13:40 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID 
Windows.SecurityCenter.WscDataProtection
 a APPID 
Není k dispozici
 uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.


Windows Defender:
===================================
Date: 2019-03-09 09:04:38.186
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Dynamer!rfn&threatid=2147721515&enterprise=0
Název: Trojan:Win32/Dynamer!rfn
ID: 2147721515
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\Asus\Desktop\AdwCleaner 6.030 download.exe
Původ zjišťování: Místní počítač
Typ zjišťování: FastPath
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: DESKTOP-G5PUIAO\Asus
Název procesu: C:\Windows\explorer.exe
Verze podpisu: AV: 1.287.171.0, AS: 1.287.171.0, NIS: 1.287.171.0
Verze modulu: AM: 1.1.15700.8, NIS: 1.1.15700.8

Date: 2019-03-09 09:04:37.985
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Detplock&threatid=2147680291&enterprise=0
Název: Trojan:Win32/Detplock
ID: 2147680291
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\Asus\Desktop\HijackThis.exe
Původ zjišťování: Místní počítač
Typ zjišťování: FastPath
Zdroj zjišťování: Systém
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: Unknown
Verze podpisu: AV: 1.287.171.0, AS: 1.287.171.0, NIS: 1.287.171.0
Verze modulu: AM: 1.1.15700.8, NIS: 1.1.15700.8

Date: 2019-03-09 09:03:36.013
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Dynamer!rfn&threatid=2147721515&enterprise=0
Název: Trojan:Win32/Dynamer!rfn
ID: 2147721515
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\Asus\Desktop\AdwCleaner 6.030 download.exe
Původ zjišťování: Místní počítač
Typ zjišťování: FastPath
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: DESKTOP-G5PUIAO\Asus
Název procesu: C:\Windows\explorer.exe
Verze podpisu: AV: 1.287.171.0, AS: 1.287.171.0, NIS: 1.287.171.0
Verze modulu: AM: 1.1.15700.8, NIS: 1.1.15700.8

Date: 2019-03-09 09:03:20.265
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Dynamer!rfn&threatid=2147721515&enterprise=0
Název: Trojan:Win32/Dynamer!rfn
ID: 2147721515
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\Asus\Desktop\AdwCleaner 6.030 download.exe
Původ zjišťování: Místní počítač
Typ zjišťování: FastPath
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: DESKTOP-G5PUIAO\Asus
Název procesu: C:\Windows\System32\PickerHost.exe
Verze podpisu: AV: 1.287.171.0, AS: 1.287.171.0, NIS: 1.287.171.0
Verze modulu: AM: 1.1.15700.8, NIS: 1.1.15700.8

Date: 2019-03-09 09:01:41.920
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Dynamer!rfn&threatid=2147721515&enterprise=0
Název: Trojan:Win32/Dynamer!rfn
ID: 2147721515
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\Asus\Desktop\AdwCleaner 6.030 download.exe
Původ zjišťování: Místní počítač
Typ zjišťování: FastPath
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: DESKTOP-G5PUIAO\Asus
Název procesu: C:\Windows\explorer.exe
Verze podpisu: AV: 1.287.171.0, AS: 1.287.171.0, NIS: 1.287.171.0
Verze modulu: AM: 1.1.15700.8, NIS: 1.1.15700.8

==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-6200U CPU @ 2.30GHz
Percentage of memory in use: 30%
Total physical RAM: 8091.29 MB
Available physical RAM: 5644.64 MB
Total Virtual: 9371.29 MB
Available Virtual: 7068.41 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:371.49 GB) (Free:61.82 GB) NTFS
Drive d: (DATA) (Fixed) (Total:558.91 GB) (Free:191.45 GB) NTFS

\\?\Volume{224447f7-056c-4360-bd6a-f1c6911c6e26}\ () (Fixed) (Total:0.84 GB) (Free:0.45 GB) NTFS
\\?\Volume{a2da5b11-1a83-44a1-afcc-1b2875333063}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 1684927D)

Partition: GPT.

==================== End of Addition.txt ============================