Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-07-2019 01
Ran by Ja (23-07-2019 00:31:21)
Running from C:\_SOFT PC\PC BEZPEČNOST\VIRY_CZ
Windows 7 Professional Service Pack 1 (X64) (2014-11-19 08:26:45)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3261876755-477165021-623360622-500 - Administrator - Disabled)
Guest (S-1-5-21-3261876755-477165021-623360622-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3261876755-477165021-623360622-1002 - Limited - Enabled)
Ja (S-1-5-21-3261876755-477165021-623360622-1001 - Administrator - Enabled) => C:\Users\Ja

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

(Driver Removal) (HKLM-x32\...\SLABCOMM&10C4&EA60) (Version:  - )
Adblock Plus for IE (32-bit and 64-bit) (HKLM\...\{36381D51-CC5E-4698-A0CC-E939C75EC9D8}) (Version: 1.5 - Eyeo GmbH)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.012.20035 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.223 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.223 - Adobe)
Aegisub 3.2.1 (HKLM-x32\...\{24BC8B57-716C-444F-B46B-A3349B9164C5}_is1) (Version: 3.2.1 - Aegisub Team)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.6.2383 - AVAST Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 75.0.1447.80 - Autoři prohlížeče Avast Secure Browser)
Blackmagic Fusion (HKLM\...\{7934F129-3C89-4C03-8D28-F8EB92DCEBCA}) (Version: 8.2.1 - Blackmagic Design)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.70.1080 - AB Team, d.o.o.)
CameraHelperMsi (HKLM-x32\...\{15634701-BACE-4449-8B25-1567DA8C9FD3}) (Version: 13.51.815.0 - Logitech) Hidden
Camtasia Studio 8 (HKLM-x32\...\{A7727F03-5311-4A12-9A63-2ACD20BA0497}) (Version: 8.2.1.1423 - TechSmith Corporation)
ClipToolz-Convert-V2 (HKLM\...\{FCB459DD-9FB7-4EC2-A335-3F1F5A3B4AF2}) (Version: 2.1.10 - ClipToolz.com)
Codec-TS SDK (HKLM-x32\...\{28FB7853-A6ED-4F67-8635-9F0E863FC0AD}) (Version:  - ArcSoft)
ConvertHelper 3.1.1 (HKLM\...\{27CC6AB1-E72B-4179-AF1A-EAE507EBAF52}}_is1) (Version:  - DownloadHelper)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
De-interlace SDK (HKLM-x32\...\{9A0E0340-C3D7-42D1-96D4-64179FD456AE}) (Version:  - ArcSoft)
Dragonframe (HKLM-x32\...\{F958567E-8F16-4A1E-9985-D3271E34951D}) (Version: 3.0.2 - DZED Systems LLC)
erLT (HKLM-x32\...\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}) (Version: 1.20.138.34 - Logitech, Inc.) Hidden
Fotogalerie (HKLM-x32\...\{F37D360D-9308-4BB1-8515-DC6B637B9486}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Free iTunes Backup Extractor version 6.0.3 (HKLM-x32\...\{F891E77B-EB1C-4035-BCC4-4DEF91EDD69E}_is1) (Version: 6.0.3 - HONGKONG JIHO CO., LIMITED)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 75.0.3770.142 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
GoPro (HKLM\...\{11994124-739A-42BB-A6D2-3AC95355BDC6}) (Version: 0.1.2371 - GoPro, Inc.) Hidden
GoPro for Desktop (HKLM-x32\...\{701bfbd9-f576-470f-8fd0-eca3e608bd97}) (Version: 0.1.0.2371 - GoPro, Inc.)
GoPro Studio (HKLM-x32\...\{BCBF5E75-C1AD-4169-A70C-3A0BD9A7F9CF}) (Version: 5.8.2371 - GoPro, Inc.) Hidden
HFSExplorer 0.23.1 (HKLM-x32\...\HFSExplorer) (Version: 0.23.1 - Catacombae Software)
Charger Monitor (HKLM-x32\...\Charger Monitor10.4.35) (Version: 10.4.35 - EV-Peak.com)
iBackupBot 5.4.4 (HKLM-x32\...\iBackupBot) (Version: 5.4.4 - VOWSoft, Ltd.)
iCloud (HKLM\...\{ADFDB647-35C0-4254-9EE6-2D9C3B7104BD}) (Version: 5.2.1.69 - Apple Inc.)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Driver Update Utility 2.0 (HKLM-x32\...\{59DB38EB-F864-4E10-841D-38CFBCF864B0}) (Version: 2.0.0.29 - Intel) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2993 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{7224B7CE-196C-4E2A-A1AE-1D7BF259FD36}) (Version: 3.4.1942 - Intel Corporation)
Intel® Driver Update Utility (HKLM-x32\...\{8409c4f7-2340-4933-a304-5d37db4fb48b}) (Version: 2.0.0.29 - Intel)
Intel® Chipset Device Software (HKLM-x32\...\{e48a2f61-851a-4155-82f9-af1b04db8c3b}) (Version: 10.0.13 - Intel(R) Corporation) Hidden
Intel® SSD Toolbox (HKLM-x32\...\{06D085C8-1F00-11B2-96A7-8f0CE39193ED}) (Version: 3.4.6.400 - Intel Corporation)
iOSinstaller (HKLM-x32\...\iOSinstaller) (Version:  - iosinstaller.com)
iTunes (HKLM\...\{9D0D2A8B-7E7B-4D88-8D50-24286ED6A5EB}) (Version: 12.5.5.5 - Apple Inc.)
Java 8 Update 211 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180211F0}) (Version: 8.0.2110.12 - Oracle Corporation)
Logitech SetPoint 6.65 (HKLM\...\sp6) (Version: 6.65.62 - Logitech)
Logitech Unifying Software 2.50 (HKLM\...\Logitech Unifying) (Version: 2.50.25 - Logitech)
Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.)
Malwarebytes verze 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)
M-Audio Axiom AIR Mini 32 1.0.1 (x64) (HKLM\...\{613163E3-0FC3-4CA3-8835-05D2D6C03523}) (Version: 1.0.1 - M-Audio)
M-Audio Legacy Keyboard Driver 5.0.0 (x64) (HKLM\...\{2CA9F96F-AFFC-4D41-B781-47EBD2378DB8}) (Version: 5.0.0 - M-Audio)
MediaInfo 17.12 (HKLM\...\MediaInfo) (Version: 17.12 - MediaArea.net)
Melodyne Runtime 4.1 (x64) (HKLM\...\{53EE2829-E9DB-4913-B3EA-96F10F84E98B}) (Version: 1.0.1 - Celemony Software GmbH)
Microsoft .NET Framework 4.5 CSY Language Pack (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{3D2CF65C-B544-4308-B996-700D3E5F6C4C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.0 - Mozilla)
NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.18.0 - NEC Electronics Corporation) Hidden
NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.18.0 - NEC Electronics Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Phoenix R/C® (HKLM-x32\...\PhoenixRC) (Version: 5.0.p - Runtime Games Ltd)
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{9BA1A894-B42F-4805-BC8C-349C905A3930}) (Version: 5.3.1 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{7EAC8A42-9FAC-4F6B-AABF-C08C9F2E0F13}) (Version: 5.3.1 - Apple Inc.)
ProgDVB x64 (HKLM\...\ProgDVB) (Version: 7.x - Prog)
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 4.0 r2746 - )
Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.17.304.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6066 - Realtek Semiconductor Corp.)
Remote Mouse version 2.70 (HKLM-x32\...\{01E4BC6D-3ACC-45E1-8928-C2FF626F63F3}_is1) (Version: 2.70 - Remote Mouse)
R-Studio 7.2 (HKLM-x32\...\R-Studio 7.2NSIS) (Version: 7.2.155105 - R-Tools Technology Inc.)
SafeZone Stable 3.55.2393.607 (HKLM-x32\...\SafeZone 3.55.2393.607) (Version: 3.55.2393.607 - Avast Software) Hidden
SketchUp 2016 (HKLM\...\{D87EE6DC-32BA-4219-AC75-0A6FD54ED058}) (Version: 16.0.19912 - Trimble Navigation Limited)
SketchUp 2017 (HKLM\...\{E59BD84C-169B-4F3F-AC5D-85127CF67051}) (Version: 17.2.2555 - Trimble, Inc.)
Synthesia (HKLM-x32\...\Synthesia) (Version: 9 - Synthesia LLC)
TT-SB SDK (HKLM-x32\...\{AF9848E2-5F19-4E49-9E6E-044FBDC28404}) (Version:  - ArcSoft)
VFW_Codec32 (HKLM-x32\...\{32223B55-ECE6-4093-971B-D176C4A4C89A}) (Version: 0.1.160.0 - GoPro, Inc.) Hidden
VFW_Codec64 (HKLM\...\{C75FFC1A-4578-4D11-BC60-188BDD72A668}) (Version: 0.1.160.0 - GoPro, Inc.) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.7.1 - VideoLAN)
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.3.25-5 - Wacom Technology Corp.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinFast Multimedia Driver Installation (HKLM-x32\...\{418EC9DD-25EE-4C3F-8827-B7AA9B26405B}) (Version: 7.5.2.4 - Leadtek Research Inc.)
WinFast PVR2 (HKU\S-1-5-21-3261876755-477165021-623360622-1001\...\{C92C584E-C781-475E-A8E2-C67D993A6B95}) (Version: 2.0.3.36 - Leadtek)
WinFast PVR2 (HKU\S-1-5-21-3261876755-477165021-623360622-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07232019002703873\...\{C92C584E-C781-475E-A8E2-C67D993A6B95}) (Version: 2.0.3.36 - Leadtek)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Your Uninstaller! 7 (HKLM-x32\...\YU2010_is1) (Version: 7.5.2014.3 - URSoft, Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3261876755-477165021-623360622-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07232019002703873_Classes\CLSID\{869C14C8-1830-491F-B575-5F9AB40D2B42}\InprocServer32 -> C:\Program Files\MediaInfo\MediaInfo_InfoTip.dll (MediaArea.net -> MediaArea.net)
CustomCLSID: HKU\S-1-5-21-3261876755-477165021-623360622-1001_Classes\CLSID\{869C14C8-1830-491F-B575-5F9AB40D2B42}\InprocServer32 -> C:\Program Files\MediaInfo\MediaInfo_InfoTip.dll (MediaArea.net -> MediaArea.net)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-07-17] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-07-17] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-07-17] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2016-04-22] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-07-17] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2013-02-19] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-07-17] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) ==============

2017-01-01 16:00 - 2017-01-01 16:00 - 000023040 _____ () [File not signed] C:\Program Files\Rainmeter\Plugins\InputText.dll
2017-01-01 15:59 - 2017-01-01 15:59 - 000096256 _____ () [File not signed] C:\Program Files\Rainmeter\Plugins\PerfMon.DLL
2017-01-01 15:59 - 2017-01-01 15:59 - 000136704 _____ () [File not signed] C:\Program Files\Rainmeter\Plugins\Win7AudioPlugin.DLL
2015-01-29 19:21 - 2010-11-15 12:05 - 000073728 _____ () [File not signed] C:\Program Files\WinFast\WFDTV\RCConfig\RCKeysInfoIO.dll
2015-01-29 19:21 - 2009-04-01 15:07 - 000303188 _____ () [File not signed] C:\Program Files\WinFast\WFDTV\RTL283XACCESS.dll
2015-01-29 19:21 - 2008-12-02 12:04 - 000007680 _____ () [File not signed] C:\Program Files\WinFast\WFDTV\WIZLANGCZE.dll
2015-01-29 19:21 - 2010-03-22 13:02 - 000094208 _____ (afa) [File not signed] C:\Program Files\WinFast\WFDTV\AF15BDAEX.dll
2015-04-08 16:11 - 2015-04-08 16:11 - 000165376 _____ (iOSinstaller.com) [File not signed] C:\Program Files (x86)\iOSinstaller\updater.exe
2015-01-29 19:21 - 2010-03-01 11:05 - 000049152 _____ (ITE Technologies, Inc.) [File not signed] C:\Program Files\WinFast\WFDTV\AF9100EX.dll
2015-01-29 19:21 - 2011-01-12 11:05 - 000101888 _____ (Leadtek Research Inc.) [File not signed] C:\Program Files\WinFast\WFDTV\DTVSchdl.exe
2015-01-29 19:21 - 2010-08-11 17:11 - 002920448 _____ (Leadtek Research Inc.) [File not signed] C:\Program Files\WinFast\WFDTV\WFWIZ.exe
2015-11-22 13:44 - 2015-11-22 13:44 - 001093120 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80U.DLL
2017-09-03 23:13 - 2017-05-12 17:58 - 001648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2010-11-21 05:24 - 2010-11-21 05:24 - 000342016 _____ (Microsoft Windows -> Microsoft Corporation) [File not signed] C:\Windows\system32\apphelp.dll
2009-07-14 02:33 - 2009-07-14 03:31 - 009892864 _____ (Microsoft Windows -> Microsoft Corporation) [File not signed] C:\Windows\System32\NLSLexicons000a.dll
2009-11-20 13:17 - 2009-11-20 13:17 - 000086016 _____ (NEC Electronics Corporation) [File not signed] C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.dll
2009-11-20 13:17 - 2009-11-20 13:17 - 000106496 _____ (NEC Electronics Corporation) [File not signed] C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
2015-01-29 19:21 - 2004-12-13 05:34 - 000049152 ____N (Ulead Systems, Inc.) [File not signed] C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0]
AlternateDataStreams: C:\ProgramData\TEMP:1CE11B51 [152]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\54616392.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\58715664.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mbamchameleon => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\54616392.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\58715664.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mbamchameleon => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2019-01-05 01:21 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Kingston SSD Toolbox;C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\ArcSoft\Bin;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\QuickTime\QTSystem\;C:\Program Files (x86)\Windows Live\Shared
HKU\S-1-5-21-3261876755-477165021-623360622-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Ja\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-3261876755-477165021-623360622-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07232019002703873\Control Panel\Desktop\\Wallpaper -> C:\Users\Ja\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 213.46.172.36 - 213.46.172.37
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{40C03F33-FBA2-4B5A-BCB0-4DC35F642C03}C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe No File
FirewallRules: [UDP Query User{BD632344-130D-4166-9312-3CAC5BD4002C}C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe No File
FirewallRules: [TCP Query User{BBEB5900-F0B3-4B95-BED3-F49D1829F9A9}C:\users\ja\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ja\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{FDC36610-3F89-4D38-9445-C64C499E327A}C:\users\ja\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ja\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{703D4769-03C8-4EC0-A4DE-093E16B21A47}C:\program files (x86)\java\jre1.8.0_25\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_25\launch4j-tmp\frd.exe (Oracle America, Inc. -> Oracle Corporation)
FirewallRules: [UDP Query User{A60DE5D6-0C1E-47EC-9D72-3D69062148E8}C:\program files (x86)\java\jre1.8.0_25\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_25\launch4j-tmp\frd.exe (Oracle America, Inc. -> Oracle Corporation)
FirewallRules: [TCP Query User{BFF9CC14-A03E-4C1B-A574-EF051123D9D8}C:\_soft pc\grafika\aftry x problem\after effects cc 2014 portable\adobe after effects cc 2014.exe] => (Allow) C:\_soft pc\grafika\aftry x problem\after effects cc 2014 portable\adobe after effects cc 2014.exe (Adobe Systems Incorporated) [File not signed]
FirewallRules: [UDP Query User{EEB4760A-0FE7-4337-AFE2-72045979B625}C:\_soft pc\grafika\aftry x problem\after effects cc 2014 portable\adobe after effects cc 2014.exe] => (Allow) C:\_soft pc\grafika\aftry x problem\after effects cc 2014 portable\adobe after effects cc 2014.exe (Adobe Systems Incorporated) [File not signed]
FirewallRules: [TCP Query User{B4838671-C1C9-48A9-ADEF-B6C464CA7739}C:\users\ja\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ja\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{98FF6CA6-7083-4820-878F-F58398F3055A}C:\users\ja\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ja\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{0519F281-C5CF-4835-88FD-B6605EECAAFD}] => (Allow) C:\Users\Ja\AppData\Local\Temp\nsbEEF3.tmp\CnetInstaller-76098611.exe No File
FirewallRules: [{FE39E671-A4E0-4AFB-8A4E-F05B11B6ABAA}] => (Allow) C:\Users\Ja\AppData\Local\Temp\nsbEEF3.tmp\CnetInstaller-76098611.exe No File
FirewallRules: [TCP Query User{47622900-BAE0-4063-8E2B-9445A85EB9EE}C:\program files (x86)\java\jre1.8.0_31\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_31\launch4j-tmp\frd.exe (Oracle America, Inc. -> Oracle Corporation)
FirewallRules: [UDP Query User{A48CE42D-4390-443D-B975-B5025974059F}C:\program files (x86)\java\jre1.8.0_31\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_31\launch4j-tmp\frd.exe (Oracle America, Inc. -> Oracle Corporation)
FirewallRules: [{8D4666FB-9FBD-453B-8481-BC7647D40F76}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0E6B03FF-9291-4DC6-8C1E-7D3C6AF7CA17}] => (Allow) LPort=2869
FirewallRules: [{5406F6E0-FA0D-48EA-B36F-7D62E8EE7F11}] => (Allow) LPort=1900
FirewallRules: [{FCD8E465-7083-41AC-94F0-B2721E6BE0D2}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe (RemoteMouse.net) [File not signed]
FirewallRules: [{4A93DB40-DB68-44A4-B2BB-9CE493544209}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe (RemoteMouse.net) [File not signed]
FirewallRules: [TCP Query User{0A68A2CE-A196-4A71-80E0-79FB31FDA0BB}C:\program files (x86)\remote mouse\remotemouse.exe] => (Allow) C:\program files (x86)\remote mouse\remotemouse.exe (RemoteMouse.net) [File not signed]
FirewallRules: [UDP Query User{E8E1242B-33E0-491D-88E8-0A052AF00DD7}C:\program files (x86)\remote mouse\remotemouse.exe] => (Allow) C:\program files (x86)\remote mouse\remotemouse.exe (RemoteMouse.net) [File not signed]
FirewallRules: [{C89A516E-C4C4-4354-AF8A-5D3A18E283C8}] => (Allow) LPort=8317
FirewallRules: [{B05013B7-3CC3-41D7-95A9-769B963B4C5F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1DB52751-732E-4F67-A37B-198545E0BBDC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F9ADF310-5877-45B2-980D-46513188D1E8}] => (Allow) C:\Program Files (x86)\iOSinstaller\iOSinstaller.exe (iosinstaller.com) [File not signed]
FirewallRules: [{1C210EB4-7B20-48F4-ADAA-B85D2CBF024E}] => (Allow) C:\Program Files (x86)\iOSinstaller\iOSinstaller.exe (iosinstaller.com) [File not signed]
FirewallRules: [TCP Query User{773EF673-513B-4A6B-9422-A7B1C1C3E4B3}C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\frd.exe (Oracle America, Inc. -> Oracle Corporation)
FirewallRules: [UDP Query User{4C0CEC21-7DA7-4D01-A3AC-AF40D4298652}C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\frd.exe (Oracle America, Inc. -> Oracle Corporation)
FirewallRules: [{B95E26BE-43C3-437A-AB72-B18D3CBB573A}] => (Allow) C:\Users\Ja\AppData\Local\Hola\firefox\app\hola_plugin.exe (Hola Networks Ltd. -> Hola Networks Ltd.)
FirewallRules: [{9E9DD1AF-2939-4B92-BE5F-AC8EE277C4FF}] => (Allow) C:\Users\Ja\AppData\Local\Hola\firefox\app\hola_plugin.exe (Hola Networks Ltd. -> Hola Networks Ltd.)
FirewallRules: [{12FDE850-1C7C-49DD-8102-0D3E3DE5962A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A2C5BC15-D162-4C74-96A6-A8F31991B0BD}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A6306971-0620-4827-849C-F82D2DE7B3F5}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6095D3D7-36EB-473C-B514-EBFCDC6F76DF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5828C1B8-F617-4057-BBDD-6951165A0BEE}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoPro.exe (GoPro, Inc. -> )
FirewallRules: [{CCDF53C2-2C22-420E-AF55-DD499D39CD8B}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProMsgBus.exe (GoPro, Inc. -> )
FirewallRules: [{E678B5D4-7288-488D-BD96-229C6FCEF271}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProIDService.exe (GoPro, Inc. -> )
FirewallRules: [{041A729B-02F2-4D8B-B41B-3EC0AACBFD8F}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProLauncher.exe (GoPro, Inc. -> )
FirewallRules: [{C60849F9-0AA7-4B56-A38A-D993A8ABA51E}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe No File
FirewallRules: [{A3320806-C6DC-4012-9BB9-91DE7E7C88D7}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe No File
FirewallRules: [TCP Query User{A4D54680-5E5D-4724-AC30-460A20CB7289}C:\program files (x86)\java\jre1.8.0_91\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_91\launch4j-tmp\frd.exe No File
FirewallRules: [UDP Query User{970CB559-F0D1-495C-8F14-37D934BAA207}C:\program files (x86)\java\jre1.8.0_91\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_91\launch4j-tmp\frd.exe No File
FirewallRules: [{FD1F9AAE-43E7-4D2E-A887-AC3278E82340}] => (Allow) C:\Program Files (x86)\Hobbyist Software\VLC Setup Helper\VLC Setup Helper.exe No File
FirewallRules: [{F2A075AF-70BE-4716-8EC0-14D2162A4977}] => (Allow) C:\Program Files (x86)\Hobbyist Software\VLC Setup Helper\mDNSResponder.exe No File
FirewallRules: [{7F4EC7DC-2898-4E06-8FAA-6D86D93C446E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe\Bonjour\mDNSResponder.exe No File
FirewallRules: [{09BB85D7-B08B-41A9-B932-1D8419C4118E}] => (Allow) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{55D2A1C9-66F4-4F77-93ED-D504FF4E977D}] => (Allow) C:\Program Files\VideoLAN\VLC\vlc.exe No File
FirewallRules: [{7E457129-5D62-4C19-B754-7D84D3FB27ED}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe No File
FirewallRules: [{D54A4C2C-6ECB-4BD8-93C4-9F3404FD75CE}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe No File
FirewallRules: [{BB1F53D6-28F7-4A96-BF38-B6DC37EEF28D}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe No File
FirewallRules: [{6BE1ED98-F62B-40FE-A153-7D64F4F7CE4F}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe No File
FirewallRules: [{83D80450-8777-4BBF-9783-2B5274002538}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe No File
FirewallRules: [{EEE45D9A-EE54-45CD-B643-62C7AC734D4F}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe No File
FirewallRules: [{89CF0B96-AFC9-412B-B472-E72A5D885B7C}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DPDecoder.exe No File
FirewallRules: [{51EBAF45-C2F6-4348-A15D-1942BC601741}] => (Allow) C:\ProgramData\Blackmagic Design\DaVinci Resolve\Support\QtDecoder\QTDecoder.exe No File
FirewallRules: [TCP Query User{E80F1798-1388-41E1-AF79-900854AB8DE4}C:\program files (x86)\dzed\dragonframe\dragonframe.exe] => (Allow) C:\program files (x86)\dzed\dragonframe\dragonframe.exe () [File not signed]
FirewallRules: [UDP Query User{7E0C0178-2D01-4529-A070-AED2031C07BE}C:\program files (x86)\dzed\dragonframe\dragonframe.exe] => (Allow) C:\program files (x86)\dzed\dragonframe\dragonframe.exe () [File not signed]
FirewallRules: [{90DC8807-67C9-4521-8DB2-8E4B59408289}] => (Allow) C:\Program Files (x86)\PhoenixRC\phoenixRC.exe () [File not signed]
FirewallRules: [{A215AB5D-362F-446D-A5EB-71DC29B37B56}] => (Allow) C:\Program Files (x86)\PhoenixRC\phoenixRC.exe () [File not signed]
FirewallRules: [TCP Query User{53DF792D-AE29-4D45-B69D-EA9427BE4C35}C:\_soft pc\vlc-3.0.0-20170116-0444-git-win64\vlc-3.0.0-git\vlc.exe] => (Allow) C:\_soft pc\vlc-3.0.0-20170116-0444-git-win64\vlc-3.0.0-git\vlc.exe No File
FirewallRules: [UDP Query User{652493B0-6F19-475A-AA92-4489ABD5E256}C:\_soft pc\vlc-3.0.0-20170116-0444-git-win64\vlc-3.0.0-git\vlc.exe] => (Allow) C:\_soft pc\vlc-3.0.0-20170116-0444-git-win64\vlc-3.0.0-git\vlc.exe No File
FirewallRules: [TCP Query User{351DE25C-C97E-4D26-A084-8B57B7D2B069}C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe No File
FirewallRules: [UDP Query User{AE4B61DA-5976-4E54-96FC-8D27F51B8214}C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe No File
FirewallRules: [{F4D62EB6-41F6-4666-A291-13D06D483525}] => (Allow) F:\iTunes\iTunes.exe No File
FirewallRules: [TCP Query User{396BD5D6-139D-4038-A289-9EBD9100623C}C:\program files (x86)\java\jre1.8.0_121\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_121\launch4j-tmp\frd.exe No File
FirewallRules: [UDP Query User{F813EB4D-F2FB-4E9D-9348-28F64406244C}C:\program files (x86)\java\jre1.8.0_121\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_121\launch4j-tmp\frd.exe No File
FirewallRules: [TCP Query User{20A99507-F779-438D-9600-FB1E9F6B887D}C:\program files (x86)\java\jre1.8.0_131\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_131\launch4j-tmp\frd.exe No File
FirewallRules: [UDP Query User{6BA52F5E-3399-4EF5-8F4F-3694094B1B90}C:\program files (x86)\java\jre1.8.0_131\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_131\launch4j-tmp\frd.exe No File
FirewallRules: [{275FFE89-C1EA-4149-9290-127F6617AC62}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596\SZBrowser.exe No File
FirewallRules: [{C603C0AB-6178-46DE-A2F7-A5BCDDDBEEEC}] => (Allow) C:\Program Files\Blackmagic Design\Fusion 8\FuScript.exe (Blackmagic Design Pty. Ltd.) [File not signed]
FirewallRules: [{D3510149-7A4D-4BE0-B922-E71B0476C126}] => (Allow) C:\Program Files\Blackmagic Design\Fusion 8\Fusion.exe (Blackmagic Design Pty. Ltd.) [File not signed]
FirewallRules: [{F5CBB2CD-F322-407D-9345-7782D8ED5C3E}] => (Allow) C:\Program Files\Blackmagic Design\Fusion 8\FusionServer.exe (Blackmagic Design Pty. Ltd.) [File not signed]
FirewallRules: [{11F7B0FF-A1D7-4871-8FED-4DAE293D20D3}] => (Allow) C:\Program Files\Blackmagic Design\Fusion 8\QTServer\FusionQTServer.exe (Blackmagic Design Pty. Ltd.) [File not signed]
FirewallRules: [TCP Query User{4BB6168A-B1FA-4B37-A28F-7F487818B55B}C:\program files (x86)\java\jre1.8.0_144\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_144\launch4j-tmp\frd.exe No File
FirewallRules: [UDP Query User{C0A1D4F3-9B46-4936-89A2-5BF43A7CFFCC}C:\program files (x86)\java\jre1.8.0_144\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_144\launch4j-tmp\frd.exe No File
FirewallRules: [TCP Query User{E06D8E5B-7B66-4CA6-943B-6810F13610F1}C:\program files (x86)\java\jre1.8.0_151\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_151\launch4j-tmp\frd.exe No File
FirewallRules: [UDP Query User{D8391A38-4019-4AE1-A43F-9A5651248218}C:\program files (x86)\java\jre1.8.0_151\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_151\launch4j-tmp\frd.exe No File
FirewallRules: [{562CFCC6-A420-401B-8901-59317BDDAC8E}] => (Allow) D:\_SOFT\_HRY\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe No File
FirewallRules: [{8E2CD145-DE24-41D5-9976-AC0CC0D82768}] => (Allow) D:\_SOFT\_HRY\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe No File
FirewallRules: [{6BC0EDC8-74F3-4703-8E2C-4DDED039DB06}] => (Allow) D:\_SOFT\_HRY\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe No File
FirewallRules: [{102FBA5C-B1D0-4548-940D-DB0F2808FA01}] => (Allow) D:\_SOFT\_HRY\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe No File
FirewallRules: [TCP Query User{88E8DCDD-4B5B-4DF6-9096-170650BBAED4}C:\program files (x86)\java\jre1.8.0_161\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_161\launch4j-tmp\frd.exe No File
FirewallRules: [UDP Query User{BD2DA1BD-E081-4147-BB6C-BCB4F60FEF78}C:\program files (x86)\java\jre1.8.0_161\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_161\launch4j-tmp\frd.exe No File
FirewallRules: [TCP Query User{91BE9934-6150-4558-8CF8-C2ED012AABEC}C:\program files (x86)\java\jre1.8.0_171\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_171\launch4j-tmp\frd.exe No File
FirewallRules: [UDP Query User{E3318915-4F49-4B52-88F1-0815B2D94850}C:\program files (x86)\java\jre1.8.0_171\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_171\launch4j-tmp\frd.exe No File
FirewallRules: [TCP Query User{614A3402-BEAB-4830-A98B-F059630578B5}C:\program files (x86)\java\jre1.8.0_171\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_171\launch4j-tmp\frd.exe No File
FirewallRules: [UDP Query User{6406CA34-04A9-4C6C-8F23-5E3C73BB7FF1}C:\program files (x86)\java\jre1.8.0_171\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_171\launch4j-tmp\frd.exe No File
FirewallRules: [TCP Query User{A0DA9FC9-3213-4A9D-9699-9B0DF74448B6}C:\program files (x86)\java\jre1.8.0_181\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_181\launch4j-tmp\frd.exe No File
FirewallRules: [UDP Query User{70831743-CAC5-48C2-A234-D5AB8E050742}C:\program files (x86)\java\jre1.8.0_181\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_181\launch4j-tmp\frd.exe No File
FirewallRules: [{96660A5C-A9EC-4D2A-A261-4A514060809C}] => (Block) C:\program files (x86)\java\jre1.8.0_181\launch4j-tmp\frd.exe No File
FirewallRules: [{D400B5D3-C980-4A1F-A9D8-2E857EEA2180}] => (Block) C:\program files (x86)\java\jre1.8.0_181\launch4j-tmp\frd.exe No File
FirewallRules: [{4CC09516-C820-467E-8D54-B779D350FF12}] => (Allow) C:\Users\Ja\AppData\Roaming\uTorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{B402A643-6EE8-4555-A2E2-936A44458328}] => (Allow) C:\Users\Ja\AppData\Roaming\uTorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{8B1FDFF3-D94C-48C9-9BD7-B2433A8C7BE1}C:\program files (x86)\java\jre1.8.0_201\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_201\launch4j-tmp\frd.exe No File
FirewallRules: [UDP Query User{9A2D953A-305C-4CE3-B5FF-8C34D33F11F9}C:\program files (x86)\java\jre1.8.0_201\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_201\launch4j-tmp\frd.exe No File
FirewallRules: [TCP Query User{8CA2A93D-A941-49FF-834F-117730348314}C:\program files (x86)\java\jre1.8.0_211\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_211\launch4j-tmp\frd.exe (Oracle America, Inc. -> Oracle Corporation)
FirewallRules: [UDP Query User{828B6660-E233-4858-BF41-D9B79102A9B7}C:\program files (x86)\java\jre1.8.0_211\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_211\launch4j-tmp\frd.exe (Oracle America, Inc. -> Oracle Corporation)
FirewallRules: [{7AAE174C-FDC0-4DB1-B96B-6B472CB4CCE5}] => (Block) C:\program files (x86)\java\jre1.8.0_211\launch4j-tmp\frd.exe (Oracle America, Inc. -> Oracle Corporation)
FirewallRules: [{E3546E95-F6AA-4019-867B-07C4CC45C719}] => (Block) C:\program files (x86)\java\jre1.8.0_211\launch4j-tmp\frd.exe (Oracle America, Inc. -> Oracle Corporation)
FirewallRules: [{A22BDB55-82A7-4DD5-8691-0102F8CA57CF}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{2833DB0F-1B7D-47D5-A7B2-D9C78E768D16}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{58E826A1-2CAD-4DFA-8100-84D299A7554B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe No File
FirewallRules: [{7A5BC40E-3069-407E-8C00-1686E7CBDAE6}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe No File

==================== Restore Points =========================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (07/23/2019 12:30:35 AM) (Source: ESENT) (EventID: 454) (User: )
Description: wuaueng.dll (6648) SUS20ClientDataStore: Při zotavení či obnovení databáze došlo k neočekávané chybě -501.

Error: (07/23/2019 12:30:35 AM) (Source: ESENT) (EventID: 477) (User: )
Description: wuaueng.dll (6648) SUS20ClientDataStore: Ověření načtení rozsahu protokolu ze souboru C:\Windows\SoftwareDistribution\DataStore\Logs\edb00301.log s posunem 518144 (0x000000000007e800) o 257024 (0x0003ec00) bajtů se nezdařilo. Došlo k neshodě kontrolního součtu rozsahu. Byl očekáván kontrolní součet 3722185596 (0xdddc0b7c), ale skutečný kontrolní součet byl 3722185580 (0xdddc0b6c). Operace čtení se nezdaří a dojde k chybě -501 (0xfffffe0b). Pokud tento stav potrvá, obnovte soubor protokolu z předchozí zálohy.

Error: (07/23/2019 12:30:30 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Došlo k chybě: Neplatné údaje.
.

Error: (07/23/2019 12:30:30 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Došlo k chybě: Neplatné údaje.
.

Error: (07/23/2019 12:30:16 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Došlo k chybě: Neplatné údaje.
.

Error: (07/23/2019 12:30:16 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Došlo k chybě: Neplatné údaje.
.

Error: (07/23/2019 12:30:16 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Došlo k chybě: Neplatné údaje.
.

Error: (07/23/2019 12:30:16 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Došlo k chybě: Neplatné údaje.
.


System errors:
=============
Error: (07/23/2019 12:31:34 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Správce služeb se pokusil o opravnou akci (Restartovat službu) po nečekaném ukončení služby Služba WMI, ale tato akce selhala kvůli následující chybě: 
Instance této služby je již spuštěna.

Error: (07/23/2019 12:29:34 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Update byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (07/23/2019 12:29:34 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba WMI byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Error: (07/23/2019 12:29:34 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Motivy byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (07/23/2019 12:29:34 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Rozpoznávání hardwaru byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (07/23/2019 12:29:34 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba oznamování událostí systému byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Error: (07/23/2019 12:29:34 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Plánovač úloh byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (07/23/2019 12:29:34 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Profil uživatele byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.


Windows Defender:
===================================
Date: 2017-04-05 01:18:14.598
Description: 
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{4FA53B93-3B88-4F7D-A914-E57A3F41AF34}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:Klumpik\Ja

Date: 2016-12-31 02:34:57.515
Description: 
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{EB70CF80-A6C9-4ED8-A484-B1F4490A3D5C}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE

Date: 2015-10-02 05:39:03.399
Description: 
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{A148D147-7081-4721-B3FF-889511D73621}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE

CodeIntegrity:
===================================

Date: 2019-07-17 02:46:04.738
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSP.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-07-17 02:46:04.707
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSP.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-07-17 01:48:23.456
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSP.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-07-17 01:48:23.424
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSP.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-07-17 00:39:08.532
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSP.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-07-17 00:39:08.501
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSP.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-07-17 00:11:14.738
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSP.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-07-17 00:11:14.707
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\aswSP.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info =========================== 

BIOS: Award Software International, Inc. F2 01/06/2010
Motherboard: Gigabyte Technology Co., Ltd. H55M-USB3
Processor: Intel(R) Core(TM) i3 CPU 530 @ 2.93GHz
Percentage of memory in use: 44%
Total physical RAM: 12091.48 MB
Available physical RAM: 6768.75 MB
Total Virtual: 24181.15 MB
Available Virtual: 18937.21 MB

==================== Drives ================================

Drive c: (Céčko) (Fixed) (Total:111.79 GB) (Free:17.37 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive e: (Nalezenec) (Fixed) (Total:149.05 GB) (Free:28.83 GB) NTFS


==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 149.1 GB) (Disk ID: A942A942)
Partition 1: (Active) - (Size=149 GB) - (Type=06)

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: C281F686)
Partition 1: (Active) - (Size=111.8 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================