Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22-01-2021
Ran by HP (22-01-2021 13:04:23)
Running from e:\Stažené
Windows 10 Pro Version 1903 18362.1016 (X64) (2019-08-03 13:22:59)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1674953364-849228176-63381930-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1674953364-849228176-63381930-503 - Limited - Disabled)
Guest (S-1-5-21-1674953364-849228176-63381930-501 - Limited - Disabled)
HP (S-1-5-21-1674953364-849228176-63381930-1002 - Administrator - Enabled) => C:\Users\HP
WDAGUtilityAccount (S-1-5-21-1674953364-849228176-63381930-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ACDSee 20 (HKLM\...\{3A49B045-A8F9-47B7-83E9-7A7C6FAE9AB6}) (Version: 20.0.0.561 - ACD Systems International Inc.)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.465 - Adobe)
Any Video Converter 7.0.7 (HKLM-x32\...\Any Video Converter) (Version: 7.0.7 - Anvsoft)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{cf961541-ca37-4826-a285-3a9cb22cd5a2}) (Version: 21.40.2 - Intel Corporation)
ATMA V 5.05 (HKLM-x32\...\ATMA V) (Version: 5.05 - Yougen Kaisha)
CCleaner (HKLM\...\CCleaner) (Version: 5.76 - Piriform)
Conexant ISST Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 9.0.278.110 - Conexant)
Diablo II CZ verze 1.13c (HKLM-x32\...\{F380060E-D8AC-4823-91B8-71B9054C8DD2}_is1) (Version: 1.13c - )
Epson Connect Printer Setup (HKLM-x32\...\{D9B1D51B-EB56-410D-AEB5-1CCFAC4B6C8C}) (Version: 1.4.1 - Seiko Epson Corporation)
Epson Easy Photo Print 2 (HKLM-x32\...\{7E0261C4-8495-4365-BE48-647701D8B9BD}) (Version: 2.8.3.0 - Seiko Epson Corporation)
Epson Event Manager (HKLM-x32\...\{9F205E94-9E42-4486-A92A-DF3F6CB85444}) (Version: 3.10.0061 - Seiko Epson Corporation)
Epson E-Web Print (HKLM-x32\...\{6BF9F374-EC67-4808-A90C-F127DE6D989D}) (Version: 1.23.0000 - SEIKO EPSON CORPORATION)
Epson FAX Utility (HKLM-x32\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 3.02.00 - Seiko Epson Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
Epson Software Updater (HKLM-x32\...\{28C66F35-69BF-4376-BC80-4D5F4808FF3C}) (Version: 4.6.1 - Seiko Epson Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.6.0 - SEIKO EPSON CORPORATION)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 10.1.1.37576 - Foxit Software Inc.)
HP Client Security Manager (HKLM\...\HPProtectTools) (Version: 9.3.9.2559 - HP Inc.)
HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.16.0 - HP Inc.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
HP ePrint SW (HKLM-x32\...\{54da9769-2364-4bd3-8139-6400500778b3}) (Version: 5.3.22034 - HP Inc.)
HP JumpStart Apps (HKLM-x32\...\HP JumpStart Apps) (Version: 7.0.32 - HP Inc.)
HP JumpStart Bridge (HKLM-x32\...\{3FC961DB-BD36-4D8D-B276-0C456A2BB638}) (Version: 1.4.0.441 - HP Inc.)
HP JumpStart Launch (HKLM-x32\...\{F213102E-FD30-4E22-AF73-4C682D65FFEE}) (Version: 1.4.441.0 - HP Inc.)
HP MAC Address Manager (HKLM-x32\...\{21FA165F-905C-4DDA-B00A-00C3A5D17BBA}) (Version: 1.1.19.1 - HP Inc.)
HP Notifications (HKLM-x32\...\{FDBB153D-8F11-4C93-BC0A-9BBF95B26427}) (Version: 1.1.23.1 - HP)
HP SoftPaq Download Manager (HKLM-x32\...\{fc153673-e23b-4908-93b9-164cc056a3c4}) (Version: 4.3.19.0 - HP)
HP Support Assistant (HKLM-x32\...\{4AAC4B07-77EF-4BCF-88DC-D24E4DE683E8}) (Version: 8.8.34.31 - HP Inc.)
HP Support Solutions Framework (HKLM-x32\...\{6E46D147-D977-4034-BEE6-B2EB5A4BE2E3}) (Version: 12.18.34.21 - HP Inc.)
HP Velocity (HKLM\...\IPQ_NSIS) (Version: 3.2.0.24905 - HP Inc.)
HP Wireless Button Driver (HKLM-x32\...\{2EC9AB64-3ACA-460D-B309-0A7052B0C8C0}) (Version: 1.1.21.1 - HP)
HP WorkWise Service (HKLM-x32\...\{2EDE0C89-892C-4C3C-A922-C4DDE7C68EAE}) (Version: 2.2.32.1 - HP Inc.)
HPWorkWise64 (HKLM\...\{56051A5A-7A04-4CD4-A5CD-781F1AC10112}) (Version: 1.4.20.1 - HP Company) Hidden
HPWorkWise64 (HKLM\...\{8BD52DCC-C02C-4435-8AC8-1FAA0846C393}) (Version: 2.2.32.1 - HP Company) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.5.10103.7263 - Intel Corporation)
Intel(R) Chipset Device Software (HKLM-x32\...\{f3b1c211-1159-4262-bb97-84150cda9096}) (Version: 10.1.18243.8188 - Intel(R) Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2044.15.0.1951 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.9.3.1026 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1914.3 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.62.321.1 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{c3964069-17c1-45dd-85a5-949576ceeaa3}) (Version: 1.62.321.1 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000070-0200-1029-84C8-B8D95FA3C8C3}) (Version: 20.70.0 - Intel Corporation)
JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Medal of Honor - Allied Assault (CZ Dabing + Texty) (HKLM-x32\...\FPD_MoH-AA_is1) (Version: 1.0 - Fénix ProDabing)
Medal of Honor - Allied Assault War Chest (HKLM-x32\...\GOGPACKMEDALOFHONORPACK_is1) (Version: 2.0.0.21 - GOG.com)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.75 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.71 - )
Microsoft OneDrive (HKU\S-1-5-21-1674953364-849228176-63381930-1002\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325 (HKLM-x32\...\{6c6356fe-cbfa-4944-9bed-a9e99f45cb7a}) (Version: 14.11.25325.0 - Microsoft Corporation)
Mozilla Firefox 84.0.2 (x64 cs) (HKLM\...\Mozilla Firefox 84.0.2 (x64 cs)) (Version: 84.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 78.2.0 - Mozilla)
Mozilla Thunderbird 78.6.1 (x64 cs) (HKLM\...\Mozilla Thunderbird 78.6.1 (x64 cs)) (Version: 78.6.1 - Mozilla)
mRemoteNG (HKLM-x32\...\{381B1560-3850-4E80-BD01-781486364F7B}) (Version: 1.76.20.24615 - Next Generation Software)
Nagstamon 3.4.1 (HKLM\...\{44F7CFFB-4776-4DA4-9930-A07178069517}_is1) (Version:  - )
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.9.1 - Notepad++ Team)
Odinstalace tiskárny EPSON WF-7610 Series (HKLM\...\EPSON WF-7610 Series) (Version:  - SEIKO EPSON Corporation)
OpenOffice 4.1.5 (HKLM-x32\...\{2FEA9841-64DE-4FA5-A36F-1CD23E2790EB}) (Version: 4.15.9789 - Apache Software Foundation)
Pidgin (HKLM-x32\...\Pidgin) (Version: 2.14.1 - )
PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 201209 - Kakao Corp.)
Příručky společnosti EPSON (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.57.0.0 - Seiko Epson Corporation)
PuTTY release 0.70 (64-bit) (HKLM\...\{45B3032F-22CC-40CD-9E97-4DA7095FA5A2}) (Version: 0.70.0.0 - Simon Tatham)
Railroad Tycoon 2 Platinum (HKLM-x32\...\{0C0A2941-33BC-46B3-98A2-A567C41BCA7E}) (Version: 1.56 - )
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.370.154 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.23.1003.2017 - Realtek)
Realtek USB Audio (HKLM-x32\...\{0A46A65D-89AC-464C-8026-3CD44960BD04}) (Version: 6.3.9600.130 - Realtek Semiconductor Corp.)
Sweet Home 3D version 6.4.2 (HKLM\...\Sweet Home 3D_is1) (Version: 6.4.2 - eTeks)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.4.3.166 - Synaptics Incorporated)
Synaptics WBF Fingerprint Reader (HKLM\...\{27C0EFD7-75C6-46E9-86EC-9033B2D1F49F}) (Version: 4.5.351.0 - Synaptics)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.13.6 - TeamViewer)
Thunderbird Import Wizard (HKLM-x32\...\Thunderbird Import Wizard_is1) (Version:  - Thunderbird Import Wizard)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.21a - Ghisler Software GmbH)
UpdateAssistant (HKLM\...\{52C1DD03-104E-4AC6-9DC6-21D585721ED1}) (Version: 1.19.0.0 - Microsoft Corporation) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version:  - )
WinRAR 5.60 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.60.0 - win.rar GmbH)

Packages:
=========
HP JumpStart -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStart_1.4.464.0_x86__v10z8vjag6ke6 [2052-09-26] (HP Inc.)
HP Power Manager -> C:\Program Files\WindowsApps\AD2F1837.HPPowerManager_2.1.11.0_x64__v10z8vjag6ke6 [2020-07-08] (HP Inc.)
HP System Information -> C:\Program Files\WindowsApps\AD2F1837.HPSystemInformation_7.0.15.0_x64__v10z8vjag6ke6 [2019-09-25] (HP Inc.)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2018-10-16] (LinkedIn)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-22] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-22] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8042.0_x64__8wekyb3d8bbwe [2020-08-07] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-26] (Microsoft Corporation) [MS Ad]
Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2018-11-05] (Samsung Electronics Co. Ltd.)
Váš telefon -> C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20071.95.0_x64__8wekyb3d8bbwe [2020-07-28] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2020-11-02] (Notepad++ -> )
ContextMenuHandlers1: [PicaViewCtxMenuShlExt] -> {F3CBBA61-EE3F-4D6D-B1C6-B3474E579936} => C:\Program Files\Common Files\ACD Systems\PicaView\ACDSeePV.dll [2015-08-28] (ACD Systems International -> ACD Systems International Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_968d2e53c8174e28\igfxDTCM.dll [2020-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2020-06-11 10:44 - 2020-06-11 10:44 - 000671031 _____ () [File not signed] C:\Program Files (x86)\Pidgin\exchndl.dll
2018-10-16 15:49 - 2018-10-16 15:49 - 000553382 _____ () [File not signed] C:\Program Files (x86)\Pidgin\Gtk\bin\freetype6.dll
2018-10-16 15:49 - 2018-10-16 15:49 - 000904525 _____ () [File not signed] C:\Program Files (x86)\Pidgin\Gtk\bin\libcairo-2.dll
2018-10-16 15:49 - 2018-10-16 15:49 - 000177586 _____ () [File not signed] C:\Program Files (x86)\Pidgin\Gtk\bin\libexpat-1.dll
2018-10-16 15:49 - 2018-10-16 15:49 - 000279059 _____ () [File not signed] C:\Program Files (x86)\Pidgin\Gtk\bin\libfontconfig-1.dll
2018-10-16 15:49 - 2018-10-16 15:49 - 000216992 _____ () [File not signed] C:\Program Files (x86)\Pidgin\Gtk\bin\libpng14-14.dll
2018-10-16 15:49 - 2018-10-16 15:49 - 000118272 _____ () [File not signed] C:\Program Files (x86)\Pidgin\Gtk\bin\zlib1.dll
2018-10-16 15:49 - 2018-10-16 15:49 - 000090496 _____ () [File not signed] C:\Program Files (x86)\Pidgin\Gtk\lib\gtk-2.0\2.10.0\engines\libwimp.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000421049 _____ () [File not signed] C:\Program Files (x86)\Pidgin\libjabber.dll
2020-10-18 09:30 - 2020-10-18 09:26 - 000375498 _____ () [File not signed] C:\Program Files (x86)\Pidgin\libjson-glib-1.0.dll
2020-06-11 10:42 - 2020-06-11 10:42 - 000152852 _____ () [File not signed] C:\Program Files (x86)\Pidgin\libmeanwhile-1.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000315811 _____ () [File not signed] C:\Program Files (x86)\Pidgin\liboscar.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000128694 _____ () [File not signed] C:\Program Files (x86)\Pidgin\libsasl2-3.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000868705 _____ () [File not signed] C:\Program Files (x86)\Pidgin\libsilc-1-1-4.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000225616 _____ () [File not signed] C:\Program Files (x86)\Pidgin\libsilcclient-1-1-4.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000036878 _____ () [File not signed] C:\Program Files (x86)\Pidgin\libssp-0.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 001136034 _____ () [File not signed] C:\Program Files (x86)\Pidgin\libxml2-2.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000020997 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\autoaccept.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000013253 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\buddynote.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000024924 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\convcolors.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000015702 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\extplacement.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000014147 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\gtkbuddynote.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000018882 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\history.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000012865 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\iconaway.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000019043 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\idle.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000018564 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\joinpart.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000015074 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\libaim.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000092999 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\libbonjour.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000332219 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\libgg.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000016005 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\libicq.dll
2020-10-18 09:30 - 2020-10-18 09:26 - 000257774 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\libicyque.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000109082 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\libirc.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000123549 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\libnovell.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000116080 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\libsametime.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000171091 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\libsilc.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000055889 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\libsimple.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000021346 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\libxmpp.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000047943 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\log_reader.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000021795 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\markerline.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000013456 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\newline.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000029778 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\notify.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000021075 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\nss-prefs.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000017023 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\offlinemsg.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000029256 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\pidginrc.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000015380 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\psychic.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000015470 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\relnot.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000015045 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\sendbutton.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000069634 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\spellchk.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000012004 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\ssl.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000031379 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\ssl-nss.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000015978 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\statenotify.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000030353 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\themeedit.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000032020 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\ticker.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000018399 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\timestamp.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000023855 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\timestamp_format.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000029583 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\transparency.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000030771 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\winprefs.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000037200 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\xmppconsole.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000044494 _____ () [File not signed] C:\Program Files (x86)\Pidgin\plugins\xmppdisco.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000048402 _____ () [File not signed] C:\Program Files (x86)\Pidgin\sasl2\libanonymous-3.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000049962 _____ () [File not signed] C:\Program Files (x86)\Pidgin\sasl2\libcrammd5-3.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000079858 _____ () [File not signed] C:\Program Files (x86)\Pidgin\sasl2\libdigestmd5-3.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000048907 _____ () [File not signed] C:\Program Files (x86)\Pidgin\sasl2\libplain-3.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000475580 _____ () [File not signed] C:\Program Files (x86)\Pidgin\spellcheck\libgtkspell-0.dll
2020-06-11 10:42 - 2020-06-11 10:42 - 000554496 _____ () [File not signed] C:\Program Files (x86)\Pidgin\sqlite3.dll
2018-12-27 15:44 - 2020-01-24 16:13 - 000180224 _____ () [File not signed] C:\Program Files\Nagstamon\_cffi_backend.cp37-win_amd64.pyd
2018-12-27 15:44 - 2020-01-24 16:13 - 000022016 _____ () [File not signed] C:\Program Files\Nagstamon\cryptography\hazmat\bindings\_constant_time.cp37-win_amd64.pyd
2018-12-27 15:44 - 2020-01-24 16:13 - 000158720 _____ () [File not signed] C:\Program Files\Nagstamon\lxml\_elementpath.cp37-win_amd64.pyd
2018-12-27 15:44 - 2020-01-24 16:13 - 004072448 _____ () [File not signed] C:\Program Files\Nagstamon\lxml\etree.cp37-win_amd64.pyd
2018-12-27 15:44 - 2020-01-24 16:13 - 000074752 _____ () [File not signed] C:\Program Files\Nagstamon\psutil\_psutil_windows.cp37-win_amd64.pyd
2018-12-27 15:44 - 2020-01-24 16:13 - 002331136 _____ () [File not signed] C:\Program Files\Nagstamon\PyQt5\QtCore.pyd
2018-12-27 15:44 - 2020-01-24 16:13 - 002340352 _____ () [File not signed] C:\Program Files\Nagstamon\PyQt5\QtGui.pyd
2018-12-27 15:44 - 2020-01-24 16:13 - 000524800 _____ () [File not signed] C:\Program Files\Nagstamon\PyQt5\QtMultimedia.pyd
2018-12-27 15:44 - 2020-01-24 16:13 - 000665088 _____ () [File not signed] C:\Program Files\Nagstamon\PyQt5\QtNetwork.pyd
2018-12-27 15:44 - 2020-01-24 16:13 - 000108544 _____ () [File not signed] C:\Program Files\Nagstamon\PyQt5\QtSvg.pyd
2018-12-27 15:44 - 2020-01-24 16:13 - 004809216 _____ () [File not signed] C:\Program Files\Nagstamon\PyQt5\QtWidgets.pyd
2019-12-27 08:26 - 2020-01-24 16:13 - 000128512 _____ () [File not signed] C:\Program Files\Nagstamon\PyQt5\sip.cp37-win_amd64.pyd
2018-12-27 15:44 - 2020-01-24 16:13 - 000553984 _____ () [File not signed] C:\Program Files\Nagstamon\pythoncom37.dll
2018-12-27 15:44 - 2020-01-24 16:13 - 000139264 _____ () [File not signed] C:\Program Files\Nagstamon\pywintypes37.dll
2018-10-16 15:49 - 2020-01-24 16:13 - 000132608 _____ () [File not signed] C:\Program Files\Nagstamon\win32api.pyd
2018-10-16 15:49 - 2020-01-24 16:13 - 000034816 _____ () [File not signed] C:\Program Files\Nagstamon\win32cred.pyd
2018-12-27 15:44 - 2020-01-24 16:13 - 000035840 _____ () [File not signed] C:\Program Files\Nagstamon\winkerberos.cp37-win_amd64.pyd
2052-09-26 02:13 - 2052-09-26 02:13 - 010496000 _____ () [File not signed] C:\Program Files\WindowsApps\AD2F1837.HPJumpStart_1.4.464.0_x86__v10z8vjag6ke6\HPJumpStart.dll
2020-08-14 16:32 - 2020-08-14 16:32 - 000160768 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\BRIDGECommon\2875e4d41ebc2c2392066cfab4091457\BRIDGECommon.ni.dll
2020-08-14 16:34 - 2020-08-14 16:34 - 000125440 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\BridgeExtension\dcbd23458ecb39a15c9c0b9a792b883f\BridgeExtension.ni.dll
2020-08-14 16:34 - 2020-08-14 16:34 - 000395264 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CleanStartController\5c35978e788ca0d3c5b90d9c5ecb50f6\CleanStartController.ni.dll
2020-08-14 16:34 - 2020-08-14 16:34 - 000145920 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Registratio4eabc192#\184eefd8f099acb63e295af507e9b3b9\RegistrationUtilities.ni.dll
2016-09-08 14:18 - 2016-09-24 21:47 - 000529352 ____R (ACD Systems) [File not signed] C:\Program Files (x86)\ACD Systems\ACDSee\20.0\1033\acdIDInTouch2.exe.dll
2020-10-18 10:29 - 2019-10-04 13:51 - 001370112 _____ (Conexant Systems LLC.) [File not signed] C:\Program Files\Conexant\SA3\HP-NB-AIO\CxHDAudioAPI.dll
2017-11-08 08:39 - 2017-11-08 08:39 - 000382464 _____ (Crossmatch, Inc.) [File not signed] c:\Program Files\HP\HP ProtectTools Security Manager\Bin\DPCPFelica.dll
2017-11-08 08:38 - 2017-11-08 08:38 - 000338432 _____ (Crossmatch, Inc.) [File not signed] c:\Program Files\HP\HP ProtectTools Security Manager\Bin\DPDevice2.dll
2017-11-08 08:36 - 2017-11-08 08:36 - 000456192 _____ (Crossmatch, Inc.) [File not signed] c:\Program Files\HP\HP ProtectTools Security Manager\Bin\DPDevice5.dll
2018-10-16 15:49 - 2018-10-16 15:49 - 000152489 _____ (Free Software Foundation) [File not signed] C:\Program Files (x86)\Pidgin\Gtk\bin\intl.dll
2020-08-14 16:34 - 2020-08-14 16:34 - 000136192 _____ (HP Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CommonPortable\9583ae05d206a7c410f3d3b846178a80\CommonPortable.ni.dll
2020-06-11 10:42 - 2020-06-11 10:42 - 000315392 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Pidgin\freebl3.dll
2020-06-11 10:42 - 2020-06-11 10:42 - 000202752 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Pidgin\libnspr4.dll
2020-06-11 10:42 - 2020-06-11 10:42 - 000015872 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Pidgin\libplc4.dll
2020-06-11 10:42 - 2020-06-11 10:42 - 000014336 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Pidgin\libplds4.dll
2020-06-11 10:42 - 2020-06-11 10:42 - 000791040 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Pidgin\nss3.dll
2020-06-11 10:42 - 2020-06-11 10:42 - 000116224 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Pidgin\nssutil3.dll
2020-06-11 10:42 - 2020-06-11 10:42 - 000102400 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Pidgin\smime3.dll
2020-06-11 10:42 - 2020-06-11 10:42 - 000168960 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Pidgin\softokn3.dll
2020-06-11 10:42 - 2020-06-11 10:42 - 000249856 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Pidgin\ssl3.dll
2020-08-14 16:32 - 2020-08-14 16:32 - 002306560 _____ (Newtonsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\c9502c47bee7daf651fe8646a52c6cb7\Newtonsoft.Json.ni.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000178644 _____ (none) [File not signed] C:\Program Files (x86)\Pidgin\spellcheck\libenchant.dll
2018-10-16 15:49 - 2018-10-16 15:49 - 000365856 _____ (Red Hat Software) [File not signed] C:\Program Files (x86)\Pidgin\Gtk\bin\libpango-1.0-0.dll
2018-10-16 15:49 - 2018-10-16 15:49 - 000110219 _____ (Red Hat Software) [File not signed] C:\Program Files (x86)\Pidgin\Gtk\bin\libpangocairo-1.0-0.dll
2018-10-16 15:49 - 2018-10-16 15:49 - 000931437 _____ (Red Hat Software) [File not signed] C:\Program Files (x86)\Pidgin\Gtk\bin\libpangoft2-1.0-0.dll
2018-10-16 15:49 - 2018-10-16 15:49 - 000114349 _____ (Red Hat Software) [File not signed] C:\Program Files (x86)\Pidgin\Gtk\bin\libpangowin32-1.0-0.dll
2020-10-18 10:29 - 2019-12-05 10:40 - 001431552 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files\CONEXANT\Flow\x64\SQLite.Interop.dll
2015-12-17 10:11 - 2015-12-17 10:11 - 000132096 _____ (Seiko Epson Corporation) [File not signed] C:\Program Files (x86)\Epson Software\Event Manager\epnsm.dll
2009-10-21 16:39 - 2009-10-21 16:39 - 000291328 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\Epson Software\Event Manager\LcMgr.dll
2018-10-17 08:45 - 2012-11-12 14:15 - 000558592 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\WINDOWS\System32\enppmon.dll
2018-10-17 08:45 - 2012-10-22 16:19 - 000219648 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\WINDOWS\System32\enpres.dll
2018-10-16 15:49 - 2018-10-16 15:49 - 000163476 _____ (Sun Microsystems Inc.) [File not signed] C:\Program Files (x86)\Pidgin\Gtk\bin\libatk-1.0-0.dll
2018-10-16 15:49 - 2018-10-16 15:49 - 001222182 _____ (The GLib developer community) [File not signed] C:\Program Files (x86)\Pidgin\Gtk\bin\libgio-2.0-0.dll
2018-10-16 15:49 - 2018-10-16 15:49 - 001242929 _____ (The GLib developer community) [File not signed] C:\Program Files (x86)\Pidgin\Gtk\bin\libglib-2.0-0.dll
2018-10-16 15:49 - 2018-10-16 15:49 - 000036986 _____ (The GLib developer community) [File not signed] C:\Program Files (x86)\Pidgin\Gtk\bin\libgmodule-2.0-0.dll
2018-10-16 15:49 - 2018-10-16 15:49 - 000341594 _____ (The GLib developer community) [File not signed] C:\Program Files (x86)\Pidgin\Gtk\bin\libgobject-2.0-0.dll
2018-10-16 15:49 - 2018-10-16 15:49 - 000044287 _____ (The GLib developer community) [File not signed] C:\Program Files (x86)\Pidgin\Gtk\bin\libgthread-2.0-0.dll
2018-10-16 15:49 - 2018-10-16 15:49 - 000252150 _____ (The GTK developer community) [File not signed] C:\Program Files (x86)\Pidgin\Gtk\bin\libgdk_pixbuf-2.0-0.dll
2018-10-16 15:49 - 2018-10-16 15:49 - 000827670 _____ (The GTK developer community) [File not signed] C:\Program Files (x86)\Pidgin\Gtk\bin\libgdk-win32-2.0-0.dll
2018-10-16 15:49 - 2018-10-16 15:49 - 004740156 _____ (The GTK developer community) [File not signed] C:\Program Files (x86)\Pidgin\Gtk\bin\libgtk-win32-2.0-0.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 000858912 _____ (The Pidgin developer community) [File not signed] C:\Program Files (x86)\Pidgin\libpurple.dll
2020-06-11 10:44 - 2020-06-11 10:44 - 001159507 _____ (The Pidgin developer community) [File not signed] C:\Program Files (x86)\Pidgin\pidgin.dll
2018-10-16 15:49 - 2020-01-24 16:13 - 006021752 _____ (The Qt Company Oy -> The Qt Company Ltd.) [File not signed] C:\Program Files\Nagstamon\Qt5Core.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-1674953364-849228176-63381930-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-1674953364-849228176-63381930-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2017-10-27] (HP Inc. -> HP Inc.)
BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2017-10-27] (HP Inc. -> HP Inc.)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-09-29 14:46 - 2021-01-04 11:25 - 000000888 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1674953364-849228176-63381930-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\HP\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\475264.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: LiveQoS NDIS 6 Filter Driver -> ipeak_ipeakLWF (enabled) 
Wi-Fi: LiveQoS NDIS 6 Filter Driver -> ipeak_ipeakLWF (enabled) 

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run32: => "FUFAXRCV"
HKLM\...\StartupApproved\Run32: => "FUFAXSTM"
HKU\S-1-5-21-1674953364-849228176-63381930-1002\...\StartupApproved\Run: => "OneDrive"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{C4BBDCFD-31FA-4410-8231-03BEBFA00010}C:\users\hp\appdata\local\jdownloader 2.0\jdownloader2.exe] => (Allow) C:\users\hp\appdata\local\jdownloader 2.0\jdownloader2.exe (Appwork GmbH -> AppWork GmbH)
FirewallRules: [TCP Query User{2E117548-ED2E-42C0-98F2-0A2CD8E8ED9E}C:\users\hp\appdata\local\jdownloader 2.0\jdownloader2.exe] => (Allow) C:\users\hp\appdata\local\jdownloader 2.0\jdownloader2.exe (Appwork GmbH -> AppWork GmbH)
FirewallRules: [{64F45AFF-63DD-4494-A922-6AFFBD36A004}] => (Block) C:\Program Files (x86)\ACD Systems\ACDSee\20.0\ACDSee20.exe (ACD Systems International -> ACD Systems International Inc.) [File not signed]
FirewallRules: [UDP Query User{2D4FBB52-CD0D-4A6D-BCEB-3F140C1AA2B0}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [TCP Query User{2A0E2721-29B2-450F-9A49-BA63E72C277B}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [{77A4B325-BB0C-4947-B1F2-18627EB163A9}] => (Allow) C:\Program Files (x86)\Epson Software\ECPrinterSetup\ENPApp.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
FirewallRules: [{15CA48F2-E186-4E6B-B66B-289C20C645F0}] => (Allow) C:\Program Files (x86)\Epson Software\ECPrinterSetup\ENPApp.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
FirewallRules: [{9F433B68-F073-4732-A481-B6C68B4B8D51}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{86DFBC98-0331-4588-B605-6531FCF36A9F}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{2C76D689-DA89-469A-816D-AE0D04900715}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1A875302-23CB-4897-B155-102936778DF6}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{3CBC26CB-E88E-4B8B-9E04-919ECC0D0830}E:\stažené\anydesk.exe] => (Allow) E:\stažené\anydesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [UDP Query User{20B1BEAE-B6E0-4FE2-A597-82CE5C379CDB}E:\stažené\anydesk.exe] => (Allow) E:\stažené\anydesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [TCP Query User{B6A42997-5076-433E-A7EE-CEF62EC92C5F}C:\gog games\medal of honor - allied assault war chest\mohaa.exe] => (Allow) C:\gog games\medal of honor - allied assault war chest\mohaa.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [UDP Query User{7295A4EE-4572-4473-BF20-75F2F08027AA}C:\gog games\medal of honor - allied assault war chest\mohaa.exe] => (Allow) C:\gog games\medal of honor - allied assault war chest\mohaa.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [{B8C81B02-14AB-4EB0-88C1-4206275FBD72}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{212C3867-F36F-4E42-BCB9-8F867423F608}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E973D09E-6222-41B3-93DE-21FFEBF38C53}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D58BDFB6-C9EA-49FA-9D83-7A2BE62C987F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{0D137FA5-CFBC-431C-A3DA-949FCDF3281F}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{DAE41D14-6381-4B1B-9EC8-367BD2CC102F}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{FA66CAD1-35A6-4CB6-9C7E-5747B715D917}C:\program files (x86)\akella games\oil tycoon 2\game.exe] => (Block) C:\program files (x86)\akella games\oil tycoon 2\game.exe => No File
FirewallRules: [UDP Query User{0F2C4704-535F-4BA8-B495-070EB717B0A2}C:\program files (x86)\akella games\oil tycoon 2\game.exe] => (Block) C:\program files (x86)\akella games\oil tycoon 2\game.exe => No File
FirewallRules: [{4DE33479-3F22-49EB-857B-15B28DEBE2A0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{BAD081FC-60C3-4840-A1AB-37B50A5B277A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{5BE91DBE-2F0E-4AA9-99F5-35E315A734DB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{15B170DA-7891-4F4B-A020-907686353157}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)

==================== Restore Points =========================

03-01-2021 14:58:54 Naplánovaný kontrolní bod
11-01-2021 14:41:52 Naplánovaný kontrolní bod
20-01-2021 15:18:37 Instalační služba modulů systému Windows
21-01-2021 23:47:05 Odstraněno FormApps Signing Extension.

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (01/22/2021 01:00:41 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (564,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (01/22/2021 12:51:30 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (10736,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (01/22/2021 12:39:52 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3972,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (01/22/2021 12:25:27 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8524,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (01/22/2021 11:17:03 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (9200,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (01/22/2021 11:03:26 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8368,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (01/22/2021 10:38:26 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8560,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (01/22/2021 10:14:21 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (700,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).


System errors:
=============
Error: (01/22/2021 01:03:21 PM) (Source: DCOM) (EventID: 10010) (User: BOTA-HP)
Description: Server Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/22/2021 01:02:52 PM) (Source: DCOM) (EventID: 10010) (User: BOTA-HP)
Description: Server Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/22/2021 01:01:10 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Služba DigitalPersona Authentication Service se po přijetí pokynu pro vypnutí neukončila správně.

Error: (01/22/2021 01:00:52 PM) (Source: DCOM) (EventID: 10010) (User: BOTA-HP)
Description: Server Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/22/2021 12:32:29 PM) (Source: DCOM) (EventID: 10010) (User: BOTA-HP)
Description: Server Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/22/2021 12:31:51 PM) (Source: DCOM) (EventID: 10010) (User: BOTA-HP)
Description: Server Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/22/2021 11:31:02 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (01/22/2021 10:26:01 AM) (Source: DCOM) (EventID: 10010) (User: BOTA-HP)
Description: Server Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.


Windows Defender:
===================================
Date: 2021-01-22 12:17:03.129
Description: 
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Keygen&threatid=2147593794&enterprise=0
Název: HackTool:Win32/Keygen
ID: 2147593794
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_E:\Stažené\ACDSee 20.0 build 561 (x32x64) CZ\acdsee.20.x.unipatch.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: BOTA-HP\HP
Název procesu: C:\Program Files (x86)\Outbyte\PC Repair\PCRepair.exe
Verze bezpečnostních informací: AV: 1.329.2595.0, AS: 1.329.2595.0, NIS: 1.329.2595.0
Verze modulu: AM: 1.1.17700.4, NIS: 1.1.17700.4

Date: 2021-01-19 17:36:17.630
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {ADB80F67-04AB-4883-873A-EC81DE368EFE}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-01-18 15:27:09.564
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {A383E840-137C-41E0-B505-311449808EE2}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-01-17 13:30:44.988
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {AC79B90F-5988-4EA7-958B-898533AB5828}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-01-16 11:16:25.578
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {1052CC48-101B-4B56-8271-972622B95ABB}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-01-22 12:41:02.480
Description: 
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 
Předchozí verze bezpečnostních informací: 1.329.2595.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 
Předchozí verze modulu: 1.1.17700.4
Kód chyby: 0x80070422
Popis chyby: Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení. 

Date: 2021-01-22 10:06:10.198
Description: 
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 
Předchozí verze bezpečnostních informací: 1.329.2595.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 
Předchozí verze modulu: 1.1.17700.4
Kód chyby: 0x80070422
Popis chyby: Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení. 

Date: 2021-01-22 08:55:07.455
Description: 
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 
Předchozí verze bezpečnostních informací: 1.329.2595.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 
Předchozí verze modulu: 1.1.17700.4
Kód chyby: 0x80070422
Popis chyby: Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení. 

Date: 2021-01-21 23:43:08.534
Description: 
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 
Předchozí verze bezpečnostních informací: 1.329.2454.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 
Předchozí verze modulu: 1.1.17700.4
Kód chyby: 0x80070422
Popis chyby: Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení. 

Date: 2021-01-20 15:56:26.046
Description: 
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 
Předchozí verze bezpečnostních informací: 1.329.2454.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 
Předchozí verze modulu: 1.1.17700.4
Kód chyby: 0x80070422
Popis chyby: Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení. 

CodeIntegrity:
===================================

Date: 2021-01-22 08:44:56.232
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-20 16:03:21.321
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2021-01-06 07:26:55.763
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2021-01-06 07:26:55.748
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2021-01-06 07:26:51.467
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2021-01-06 07:26:51.452
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\FlightSettings.dll because the set of per-page image hashes could not be found on the system.

Date: 2021-01-06 07:26:51.402
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsreg.dll because the set of per-page image hashes could not be found on the system.

Date: 2021-01-06 07:26:51.374
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsreg.dll because the set of per-page image hashes could not be found on the system.

==================== Memory info =========================== 

BIOS: HP Q85 Ver. 01.14.01 10/19/2020
Motherboard: HP 837D
Processor: Intel(R) Core(TM) i5-8250U CPU @ 1.60GHz
Percentage of memory in use: 46%
Total physical RAM: 8083.21 MB
Available physical RAM: 4360.03 MB
Total Virtual: 14483.21 MB
Available Virtual: 10580.69 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:217.63 GB) (Free:113.04 GB) NTFS
Drive d: (Recovery Image) (Fixed) (Total:18.69 GB) (Free:2.43 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive e: (DATADRIVE1) (Fixed) (Total:931.39 GB) (Free:606.15 GB) NTFS

\\?\Volume{f6780e87-84bf-40fc-a234-d5833812ef42}\ (Windows RE tools) (Fixed) (Total:1.68 GB) (Free:1.04 GB) NTFS
\\?\Volume{8d73ddb3-473c-49a8-affd-42dfeda32d48}\ (SYSTEM) (Fixed) (Total:0.35 GB) (Free:0.27 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: 10451FAE)

Partition: GPT.

==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 210B6DC7)

Partition: GPT.

==================== End of Addition.txt =======================