Mizící soubory knihoven

[stoker303]

Dobrý den,

mám prosbu, potýkám se s problémem, kdy z ničeho nic mi přestanou fungovat některé programy v notebooku. Problém je způsoben chybějící knihovnou DDComm.dll u jednoho programu a u druhého chybějící knihovnou cdlli40.dll. Mám podezření, že na pozadí počítače může proběhnout vždy nějaká aktualizace, která danou knihovnu přepíše. Děje se to pravidelně a jediná pomoc, jak tuto hlášku odstranit a program normálně spustit je jeho reinstalace. Díky za pomoc.

[Rudy]

Zdravím!
Zkoukneme, zda nemáte v PC nějaký malware. Dejte logy FRST+Addition: https://forum.viry.cz/viewtopic.php?f=13&t=154679 .

[stoker303]

RSIT:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03.03.2019
Ran by snejdar (administrator) on SINOP69 (07-03-2019 05:57:37)
Running from C:\Users\snejdar\Desktop
Loaded Profiles: snejdar (Available Profiles: sinop & dilna01e & snejdar & oem)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation -> ) C:\Windows\System32\nvwmi64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation -> ) C:\Windows\System32\nvwmi64.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\afwServ.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgAdminClientServicex.exe
(Dassault Systèmes) [File not signed] C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe
(Foxit Software Incorporated -> Foxit Software Inc.) C:\programy\Foxit Reader\Install\FoxitConnectedPDFService.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() [File not signed] C:\programy\Danfoss\MCT\Install\MCTServ.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
(OpenVPN Technologies, Inc. -> The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpnserv.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\x64\aswidsagenta.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Google Inc -> Google Inc.) C:\Users\snejdar\AppData\Local\Google\Update\GoogleUpdate.exe
(OpenVPN Technologies, Inc. -> ) C:\Program Files\OpenVPN\bin\openvpn-gui.exe
(NEC Electronics Corporation) [File not signed] C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc -> Google Inc.) C:\Users\snejdar\AppData\Local\Google\Update\GoogleUpdate.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation-Mobile Wireless Group -> Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel Corporation-Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAAnotif] => C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2015-06-02] (Intel Corporation -> Intel Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2174760 2010-06-04] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2727568 2015-06-02] (NVIDIA Corporation -> )
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [489472 2015-06-02] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [290064 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [NUSB3MON] => c:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [106496 2009-11-21] (NEC Electronics Corporation) [File not signed]
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [111640 2009-11-04] (Intel Corporation -> )
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [318128 2016-11-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\...\Run: [Google Update] => C:\Users\snejdar\AppData\Local\Google\Update\GoogleUpdate.exe [154440 2016-02-25] (Google Inc -> Google Inc.)
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\...\Run: [OPENVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [632448 2017-05-11] (OpenVPN Technologies, Inc. -> )
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\...\MountPoints2: D - D:\AK2Install.exe
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\...\MountPoints2: {b57b48b7-9e7f-11e7-a312-88ae1daac194} - D:\AK2Install.exe
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\...\MountPoints2: {e564ddf1-4bda-11e4-8afa-70f395801384} - D:\SISetup.exe
HKLM\...\Providers\Internet Print Provider: inetpp.dll
HKLM\...\Providers\LanMan Print Services: C:\Windows\SysWOW64\win32spl.dll [497664 2017-08-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [183808 2010-12-07] () [File not signed]
HKLM\...\Drivers32: [VIDC.YV12] => C:\Windows\SysWOW64\yv12vfw.dll [237568 2010-11-03] (http://www.helixcommunity.org) [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\SysWOW64\ac3acm.acm [151552 2010-01-17] (fccHandler) [File not signed]
HKLM\...\Drivers32: [msacm.lameacm] => C:\Windows\SysWOW64\lameACM.acm [839680 2008-09-24] (hxxp://www.mp3dev.org/) [File not signed]
HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\SysWOW64\ff_vfw.dll [80896 2010-12-27] () [File not signed]
HKLM\Software\...\AppCompatFlags\Custom\NB-Designer.exe: [{32d6b63a-91ea-4d13-8406-cabbc060ceca}.sdb] -> NB-Designer compatibility database
HKLM\Software\...\AppCompatFlags\Custom\s7hspinx.exe: [{4ac674af-8b5c-40f0-a03e-76624e329461}.sdb] -> SIMATIC STEP 7 Advanced Services
HKLM\Software\...\AppCompatFlags\Custom\S7HWCNFX.EXE: [{4ac674af-8b5c-40f0-a03e-76624e329461}.sdb] -> SIMATIC STEP 7 Advanced Services
HKLM\Software\...\AppCompatFlags\Custom\S7kafapx.exe: [{4ac674af-8b5c-40f0-a03e-76624e329461}.sdb] -> SIMATIC STEP 7 Advanced Services
HKLM\Software\...\AppCompatFlags\Custom\S7ntdapx.exe: [{4ac674af-8b5c-40f0-a03e-76624e329461}.sdb] -> SIMATIC STEP 7 Advanced Services
HKLM\Software\...\AppCompatFlags\Custom\S7tgtopx.exe: [{4ac674af-8b5c-40f0-a03e-76624e329461}.sdb] -> SIMATIC STEP 7 Advanced Services
HKLM\Software\...\AppCompatFlags\Custom\S7USFAPX.exe: [{4ac674af-8b5c-40f0-a03e-76624e329461}.sdb] -> SIMATIC STEP 7 Advanced Services
HKLM\Software\...\AppCompatFlags\Custom\S7usiapx.exe: [{4ac674af-8b5c-40f0-a03e-76624e329461}.sdb] -> SIMATIC STEP 7 Advanced Services
HKLM\Software\...\AppCompatFlags\Custom\s7utpapx.exe: [{4ac674af-8b5c-40f0-a03e-76624e329461}.sdb] -> SIMATIC STEP 7 Advanced Services
HKLM\Software\...\AppCompatFlags\Custom\Siemens.Simatic.Pct.ApplicationLoader.exe: [{15861d9f-b664-4b88-9140-dad52ba7ee41}.sdb] -> SIMATIC S7-PCT Advanced Services
HKLM\Software\...\AppCompatFlags\InstalledSDB\{15861d9f-b664-4b88-9140-dad52ba7ee41}: [DatabasePath] -> C:\windows\AppPatch\Custom\{15861d9f-b664-4b88-9140-dad52ba7ee41}.sdb [2010-06-08]
HKLM\Software\...\AppCompatFlags\InstalledSDB\{32d6b63a-91ea-4d13-8406-cabbc060ceca}: [DatabasePath] -> C:\Windows\AppPatch\Custom\{32d6b63a-91ea-4d13-8406-cabbc060ceca}.sdb [2016-04-06]
HKLM\Software\...\AppCompatFlags\InstalledSDB\{4ac674af-8b5c-40f0-a03e-76624e329461}: [DatabasePath] -> C:\windows\AppPatch\Custom\{4ac674af-8b5c-40f0-a03e-76624e329461}.sdb [2014-05-07]
HKLM\Software\Microsoft\Active Setup\Installed Components: [OpenVPN_UserSetup] -> reg add HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /t REG_SZ /d "C:\Program Files\OpenVPN\bin\openvpn-gui.exe" /f
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.121\Installer\chrmstp.exe [2019-03-06] (Google LLC -> Google Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2009-09-04] (Broadcom Corporation -> Broadcom Corporation.)
HKLM\Software\...\Authentication\Credential Providers: [{8bf9a910-a8ff-457f-999f-a5ca10b4a885}] -> C:\Windows\SysWOW64\SmartcardCredentialProvider.dll [2013-10-04] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{94596c7e-3744-41ce-893e-bbf09122f76a}] -> C:\Windows\SysWOW64\SmartcardCredentialProvider.dll [2013-10-04] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{0ACDD40C-75AC-47ab-BAA0-BF6DE7E7FE63}] -> C:\Windows\SysWOW64\wlgpclnt.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{0E28E245-9368-4853-AD84-6DA3BA35BB75}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{17D89FEC-5C44-4972-B12D-241CAEF74509}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{1A6364EB-776B-4120-ADE1-B63A406A76B5}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{25537BA6-77A8-11D2-9B6C-0000F8080861}] -> C:\Windows\SysWOW64\fdeploy.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{3A0DBA37-F8B2-4356-83DE-3E90BD5C261F}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{426031c0-0b47-4852-b0ca-ac3d37bfcb39}] -> C:\Windows\SysWOW64\gptext.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{42B5FAAE-6536-11d2-AE5A-0000F87571E3}] -> C:\Windows\SysWOW64\gpscript.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{5794DAFD-BE60-433f-88A2-1A31939AC01F}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{6232C319-91AC-4931-9385-E70C2B099F0E}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{6A4C88C6-C502-4f74-8F60-2CB23EDC24E2}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{7150F9BF-48AD-4da4-A49C-29EF4A8369BA}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{728EE579-943C-4519-9EF7-AB56765798ED}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{74EE6C03-5363-4554-B161-627540339CAB}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{827D319E-6EAC-11D2-A4EA-00C04F79F83A}] -> C:\Windows\SysWOW64\scecli.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{91FBB303-0CD5-4055-BF42-E512A681B325}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{A3F3E39B-5D83-4940-B954-28315B82F0A8}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{AADCED64-746C-4633-A97C-D61349046527}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{B087BE9D-ED37-454f-AF9C-04291E351182}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{B587E2B1-4D59-4e7e-AED9-22B9DF11D053}] -> C:\Windows\SysWOW64\dot3gpclnt.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{BC75B1ED-5833-4858-9BB8-CBF0B166DF9D}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{C418DD9D-0D14-4efb-8FBF-CFE535C8FAC7}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{c6dc5466-785a-11d2-84d0-00c04fb169f7}] -> C:\Windows\SysWOW64\appmgmts.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{cdeafc3d-948d-49dd-ab12-e578ba4af7aa}] -> C:\Windows\SysWOW64\gptext.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{E47248BA-94CC-49c4-BBB5-9EB7F05183D0}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{E4F48E54-F38D-4884-BFB9-D4D2E5729C18}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{E5094040-C46C-4115-B030-04FB2E545B00}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{E62688F0-25FD-4c90-BFF5-F508B9D2E31F}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{f3ccc681-b74c-4060-9f26-cd84525dca2a}] -> auditcse.dll
HKLM\Software\...\Winlogon\GPExtensions: [{F9C77450-3A41-477E-9310-9ACD617BD9E3}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{FB2CA36D-0B40-4307-821B-A13B252DE56C}] -> C:\Windows\SysWOW64\gptext.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{fbf687e6-f063-4d9f-9f4f-fd9a26acdd5f}] -> C:\Windows\SysWOW64\gptext.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)
Startup: C:\Users\snejdar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office Outlook 2007.lnk [2014-03-18]
ShortcutTarget: Microsoft Office Outlook 2007.lnk -> C:\Windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\outicon.exe (Microsoft Corporation -> )

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 87.197.157.13 xweb-server.87.197.157.13
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{50D20BE7-5096-4723-89B0-B16B95B22806}: [DhcpNameServer] 192.168.1.254

Internet Explorer:
==================
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.sinop.cz/
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com
SearchScopes: HKLM -> DefaultScope {80F13005-1D04-4230-B5F8-9E0C19246A9B} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {80F13005-1D04-4230-B5F8-9E0C19246A9B} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {80F13005-1D04-4230-B5F8-9E0C19246A9B} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {80F13005-1D04-4230-B5F8-9E0C19246A9B} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-1350338271-1762688309-1791207727-1488 -> DefaultScope {80F13005-1D04-4230-B5F8-9E0C19246A9B} URL =
BHO: No Name -> {4F524A2D-5637-4300-76A7-7A786E7484D7} -> No File
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_191\bin\ssv.dll [2018-11-26] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-11-26] (Oracle America, Inc. -> Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard Company -> Hewlett-Packard)
BHO-x32: SSVHelper Class -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll [2018-11-26] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Pomocník pro přihlášení ke službě Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-11-26] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard Company -> Hewlett-Packard)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Software Sarl -> Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\snejdar\AppData\Roaming\Mozilla\Firefox\Profiles\6z6r6mvy.default [2019-02-06]
FF Homepage: Mozilla\Firefox\Profiles\6z6r6mvy.default -> hxxp://www.sinop.cz/
FF Plugin: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-11-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-11-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-11-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-11-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc -> Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc -> Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-02-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1350338271-1762688309-1791207727-1488: @tools.google.com/Google Update;version=3 -> C:\Users\snejdar\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc -> Google Inc.)
FF Plugin HKU\S-1-5-21-1350338271-1762688309-1791207727-1488: @tools.google.com/Google Update;version=9 -> C:\Users\snejdar\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc -> Google Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Default [2019-03-07]
CHR Extension: (Docs) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Google Drive) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-26]
CHR Extension: (YouTube) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Google Search) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-02]
CHR Extension: (Google Docs Offline) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-23]
CHR Extension: (Video Adblocker for Youtube™ Extension) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Default\Extensions\hflefjhkfeiaignkclmphmokmmbhbhik [2018-12-25]
CHR Extension: (FormApps Extension) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2017-06-16]
CHR Extension: (Chrome Web Store Payments) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-04]
CHR Extension: (Gmail) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-01]
CHR Extension: (Chrome Media Router) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-02-15]
CHR Profile: C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-02-06]
CHR Profile: C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Profile 1 [2019-02-06]
CHR Extension: (Google Slides) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-12-19]
CHR Extension: (Google Docs) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2016-12-19]
CHR Extension: (Google Drive) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-19]
CHR Extension: (YouTube) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-19]
CHR Extension: (Google Sheets) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-12-19]
CHR Extension: (Google Docs Offline) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-12-19]
CHR Extension: (Chrome Web Store Payments) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-12-19]
CHR Extension: (Gmail) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-12-19]
CHR Extension: (Chrome Media Router) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-19]
CHR Profile: C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\System Profile [2019-02-06]
CHR Extension: (Google Slides) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-22]
CHR Extension: (Google Docs) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-22]
CHR Extension: (Google Drive) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-06-22]
CHR Extension: (YouTube) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-06-22]
CHR Extension: (Google Search) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-06-22]
CHR Extension: (Google Sheets) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-22]
CHR Extension: (Gmail) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-22]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 AESTFilters; C:\Program Files\IDT\WDM\AESTSr64.exe [89600 2015-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation)
S4 AgereModemAudio; C:\Program Files\LSI SoftModem\agr64svc.exe [16896 2009-08-03] (Microsoft Windows Hardware Compatibility Publisher -> LSI Corporation)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [324048 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 AVG Firewall; C:\Program Files\AVG\Antivirus\afwServ.exe [338688 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 avgAdminClient; C:\Program Files\AVG\Antivirus\avgAdminClientServicex.exe [77000 2018-12-11] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\x64\aswidsagenta.exe [8237160 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 DraftSight API Service; C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe [123392 2017-10-06] (Dassault Systèmes) [File not signed]
R2 FoxitReaderService; C:\programy\Foxit Reader\Install\FoxitConnectedPDFService.exe [1659592 2016-12-29] (Foxit Software Incorporated -> Foxit Software Inc.)
S4 hasplms; C:\windows\system32\hasplms.exe [4180576 2010-09-27] (SafeNet, Inc. -> SafeNet Inc.)
S4 HPSIService; C:\windows\system32\HPSIsvc.exe [126520 2009-12-03] (Hewlett-Packard Company -> HP)
S3 InforVisualDrillback; C:\Infor\VISUAL Enterprise\VISUAL Manufacturing\http2vm.exe [6971651 2009-10-14] () [File not signed]
R2 MCT10 Service; C:\programy\Danfoss\MCT\Install\MCTServ.exe [310784 2019-01-15] () [File not signed]
R2 MSSQL$WINCCFLEXEXPRESS; c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation -> Microsoft Corporation)
R2 NVWMI; C:\Windows\system32\nvwmi64.exe [2692296 2015-06-02] (NVIDIA Corporation -> )
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [15872 2016-11-25] ( ) [File not signed]
R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [72832 2017-05-11] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [72832 2017-05-11] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S4 s7hspsvx; C:\Program Files (x86)\Common Files\Siemens\bin\s7hspsvx.exe [32818 2014-05-07] (SIEMENS AG) [File not signed]
S4 s7oiehsx64; C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\s7oiehsx64.exe [144608 2014-03-19] (Siemens AG -> Siemens AG)
S4 S7TraceServiceX; C:\Program Files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceService64X.exe [472288 2014-03-19] (Siemens AG -> Siemens AG)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-07-22] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
S4 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [271360 2015-06-02] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer -> TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 abbdcdc_x64; C:\Windows\System32\DRIVERS\abbdcdc_x64.sys [76016 2017-05-12] (Thesycon Systemsoftware Consulting GmbH -> )
R3 Accelerometer; C:\Windows\System32\DRIVERS\Accelerometer.sys [43320 2011-05-13] (Hewlett-Packard Company -> Hewlett-Packard Company)
R3 AgereSoftModem; C:\Windows\System32\DRIVERS\agrsm64.sys [1208320 2009-08-03] (Microsoft Windows Hardware Compatibility Publisher -> LSI Corporation)
R2 aksdf; C:\windows\system32\drivers\aksdf.sys [75648 2010-07-27] (Microsoft Windows Hardware Compatibility Publisher -> SafeNet Inc.)
R2 aksfridge; C:\windows\system32\drivers\aksfridge.sys [131072 2010-09-27] (Microsoft Windows Hardware Compatibility Publisher -> SafeNet Inc.)
S3 akshasp; C:\Windows\System32\DRIVERS\akshasp.sys [53760 2009-03-13] (Microsoft Windows Hardware Compatibility Publisher -> Aladdin Knowledge Systems Ltd.)
S3 aksusb; C:\Windows\System32\DRIVERS\aksusb.sys [25344 2009-03-13] (Microsoft Windows Hardware Compatibility Publisher -> Aladdin Knowledge Systems Ltd.)
R3 AMPPAL; C:\Windows\System32\DRIVERS\AMPPAL.sys [198144 2012-03-15] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 AMPPALP; C:\Windows\System32\DRIVERS\amppal.sys [198144 2012-03-15] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [201504 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgbdisk; C:\Windows\System32\drivers\avgbdiska.sys [175536 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdrivera.sys [231104 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\Windows\System32\drivers\avgbidsha.sys [202528 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgblog; C:\Windows\System32\drivers\avgbloga.sys [346840 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\Windows\System32\drivers\avgbuniva.sys [59744 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
S3 avgHwid; C:\Windows\System32\drivers\avgHwid.sys [46648 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\Windows\System32\drivers\avgKbd.sys [42552 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [163256 2019-01-18] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R3 avgNetNd6; C:\Windows\System32\DRIVERS\avgNetNd6.sys [29944 2018-10-18] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
R1 avgNetSec; C:\Windows\System32\drivers\avgNetSec.sys [512104 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [112040 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [87680 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [1028920 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\Windows\System32\drivers\avgSP.sys [469520 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\Windows\System32\drivers\avgStm.sys [208712 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [380704 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R3 btwaudio; C:\Windows\System32\drivers\btwaudio.sys [98344 2009-09-17] (Broadcom Corporation -> Broadcom Corporation.)
R3 btwavdt; C:\Windows\System32\drivers\btwavdt.sys [132648 2009-09-17] (Broadcom Corporation -> Broadcom Corporation.)
R3 btwl2cap; C:\Windows\System32\DRIVERS\btwl2cap.sys [35104 2009-09-17] (Broadcom Corporation -> Broadcom Corporation.)
R3 btwrchid; C:\Windows\System32\DRIVERS\btwrchid.sys [21160 2009-09-17] (Broadcom Corporation -> Broadcom Corporation.)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [130688 2016-07-22] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 dpmconv; C:\Windows\System32\DRIVERS\dpmconv.sys [259584 2013-08-07] (Microsoft Windows Hardware Compatibility Publisher -> Siemens AG)
S3 FTDIBUS; C:\Windows\System32\drivers\ftdibus.sys [94704 2014-01-31] (Future Technology Devices International Ltd -> FTDI Ltd.)
S3 FTSER2K; C:\Windows\System32\drivers\ftser2k.sys [86896 2014-01-31] (Future Technology Devices International Ltd -> FTDI Ltd.)
S3 GTCUSBR; C:\Windows\System32\Drivers\GTCUSBR.SYS [25088 2009-10-19] (Graphtec Corporation -> Graphtec Corp.)
R2 hardlock; C:\windows\system32\drivers\hardlock.sys [318464 2009-03-13] (Microsoft Windows Hardware Compatibility Publisher -> Aladdin Knowledge Systems Ltd.)
R0 hpdskflt; C:\Windows\System32\DRIVERS\hpdskflt.sys [30008 2011-05-13] (Hewlett-Packard Company -> Hewlett-Packard Company)
R3 HpqKbFiltr; C:\Windows\System32\DRIVERS\HpqKbFiltr.sys [18432 2009-04-29] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Development Company, L.P.)
R3 Impcd; C:\Windows\System32\DRIVERS\Impcd.sys [151936 2009-10-26] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
S3 mvusbews; C:\Windows\System32\Drivers\mvusbews.sys [20480 2012-12-24] (Microsoft Windows Hardware Compatibility Publisher -> Marvell Semiconductor, Inc.)
S3 NETw5s64; C:\Windows\System32\DRIVERS\NETw5s64.sys [7675392 2010-01-13] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 NETwNs64; C:\Windows\System32\DRIVERS\NETwNs64.sys [8507392 2015-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 nusb3hub; C:\Windows\system32\DRIVERS\nusb3hub.sys [75776 2009-11-21] (Microsoft Windows Hardware Compatibility Publisher -> NEC Electronics Corporation)
R3 nusb3xhc; C:\Windows\system32\DRIVERS\nusb3xhc.sys [177152 2009-11-21] (Microsoft Windows Hardware Compatibility Publisher -> NEC Electronics Corporation)
R2 rimmptsk; C:\Windows\system32\DRIVERS\rimmpx64.sys [67584 2009-06-26] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
S2 rimspci; C:\Windows\system32\DRIVERS\rimspe64.sys [61952 2009-10-26] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
R2 rimsptsk; C:\Windows\system32\DRIVERS\rimspx64.sys [55296 2009-06-26] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
S2 risdpcie; C:\Windows\system32\DRIVERS\risdpe64.sys [79360 2009-10-29] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
R3 rismcx64; C:\Windows\System32\DRIVERS\rismcx64.sys [59008 2009-07-20] (Microsoft Windows Hardware Compatibility Publisher -> RICOH Company, Ltd.)
R2 rismxdp; C:\Windows\system32\DRIVERS\rixdpx64.sys [57856 2009-06-26] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
S2 rixdpcie; C:\Windows\system32\DRIVERS\rixdpe64.sys [55808 2009-09-29] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
R3 s7odpx2x64; C:\Windows\System32\DRIVERS\s7odpx2x64.sys [71168 2012-12-19] (Microsoft Windows Hardware Compatibility Publisher -> SIEMENS AG)
R3 s7oppinx64; C:\Windows\System32\DRIVERS\s7oppinx64.sys [107520 2012-07-24] (Microsoft Windows Hardware Compatibility Publisher -> SIEMENS AG)
R3 s7oserix64; C:\Windows\System32\Drivers\s7oserix64.sys [121856 2012-07-24] (Microsoft Windows Hardware Compatibility Publisher -> SIEMENS AG)
R3 s7osmcax64; C:\Windows\System32\DRIVERS\s7osmcax64.sys [199680 2012-07-24] (Microsoft Windows Hardware Compatibility Publisher -> SIEMENS AG)
R3 s7osobux64; C:\Windows\System32\DRIVERS\s7osobux64.sys [153600 2012-07-24] (Microsoft Windows Hardware Compatibility Publisher -> SIEMENS AG)
R3 s7otmcd64x; C:\Windows\System32\Drivers\s7otmcd64x.sys [199680 2012-07-24] (Microsoft Windows Hardware Compatibility Publisher -> SIEMENS AG)
R3 s7otranx64; C:\Windows\System32\DRIVERS\s7otranx64.sys [262656 2014-03-07] (Microsoft Windows Hardware Compatibility Publisher -> Siemens AG)
R3 s7otsadx64; C:\Windows\System32\DRIVERS\s7otsadx64.sys [196096 2012-07-24] (Microsoft Windows Hardware Compatibility Publisher -> SIEMENS AG)
R2 s7ousbu64x; C:\Windows\System32\DRIVERS\s7ousbu64x.sys [138240 2014-02-21] (Microsoft Windows Hardware Compatibility Publisher -> Siemens AG)
R2 s7sn2srtx; C:\Windows\System32\DRIVERS\s7sn2srtx.sys [83032 2012-05-09] (SIEMENS AG -> SIEMENS AG)
R3 sd0007322081041363_kcanv; C:\Windows\System32\DRIVERS\danfosskcanv.sys [68304 2014-07-11] (Kvaser AB -> Danfoss, SWEDEN)
S3 Ser2pl; C:\Windows\System32\DRIVERS\ser2pl64.sys [167936 2013-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Prolific Technology Inc.)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1798400 2009-12-18] (Microsoft Windows Hardware Compatibility Publisher -> )
R2 SNTIE; C:\Windows\System32\DRIVERS\sntie.sys [359648 2013-10-28] (Siemens AG -> Siemens AG)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [164992 2016-07-22] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 STHDA; C:\Windows\System32\DRIVERS\stwrt64.sys [515584 2015-06-02] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
R3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 vsnl2ada; C:\Windows\System32\DRIVERS\vsnl2ada.sys [128000 2013-08-07] (Microsoft Windows Hardware Compatibility Publisher -> SIEMENS AG)
S0 Avguniva; system32\DRIVERS\avguniva.sys [X]
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
U4 eabfiltr; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-03-07 05:57 - 2019-03-07 05:58 - 000043784 _____ C:\Users\snejdar\Desktop\FRST.txt
2019-03-07 05:55 - 2019-03-07 05:57 - 000000000 ____D C:\FRST
2019-03-07 05:55 - 2019-03-07 05:55 - 002434560 _____ (Farbar) C:\Users\snejdar\Desktop\FRST64.exe
2019-03-06 12:55 - 2019-03-06 12:56 - 008505335 _____ C:\Users\snejdar\Downloads\XC1000D-GB.pdf
2019-03-06 11:26 - 2019-03-06 11:26 - 000218589 _____ C:\Users\snejdar\Downloads\04_08-brezen-2019.pdf
2019-03-06 06:05 - 2019-03-06 06:05 - 000435571 _____ C:\Users\snejdar\Downloads\XEV22D_v13.pdf
2019-03-05 10:07 - 2019-03-05 10:07 - 000186810 _____ C:\Users\snejdar\Downloads\Podaci_listek_avizovani_vpis.pdf
2019-03-05 05:58 - 2019-03-05 05:58 - 000049693 _____ C:\Users\snejdar\Downloads\Vypis_z_uctu-2301305536_20190201-20190228_cislo-2.pdf
2019-03-04 19:41 - 2019-03-04 19:41 - 000137065 _____ C:\Users\snejdar\Downloads\5405_25.pdf
2019-03-04 13:59 - 2019-03-04 13:59 - 000511539 _____ C:\Users\snejdar\Downloads\haccp_20190304135929.pdf
2019-03-04 12:44 - 2019-03-04 12:44 - 000038191 _____ C:\Users\snejdar\Downloads\haccp_20190304124451.pdf
2019-03-04 12:43 - 2019-03-04 12:43 - 000040229 _____ C:\Users\snejdar\Downloads\fqr_20190304124333.pdf
2019-03-04 12:34 - 2019-03-04 12:34 - 000038191 _____ C:\Users\snejdar\Downloads\haccp_20190304123449.pdf
2019-03-04 12:31 - 2019-03-04 12:31 - 000039925 _____ C:\Users\snejdar\Downloads\export_20190303_20190304.csv
2019-03-04 12:29 - 2019-03-04 12:29 - 000154118 _____ C:\Users\snejdar\Downloads\haccp_20190304122859.pdf
2019-03-04 09:02 - 2019-03-04 09:02 - 000010987 _____ C:\Users\snejdar\Downloads\export_20190303_20190304.xlsx
2019-03-04 08:14 - 2019-03-04 08:14 - 003723777 _____ C:\Users\snejdar\Downloads\RS8FS402_AK-CC550A.pdf
2019-03-04 07:50 - 2019-03-04 07:50 - 011553027 _____ C:\Users\snejdar\Downloads\XWEB EVO uzivatelsky navod CZ 5.3.0 v3 (2).pdf
2019-03-02 13:27 - 2019-03-02 13:27 - 000101910 _____ C:\Users\snejdar\Downloads\2.pdf
2019-03-02 13:27 - 2019-03-02 13:27 - 000084661 _____ C:\Users\snejdar\Downloads\3.pdf
2019-03-02 13:27 - 2019-03-02 13:27 - 000075548 _____ C:\Users\snejdar\Downloads\1.pdf
2019-03-02 13:27 - 2019-03-02 13:27 - 000073596 _____ C:\Users\snejdar\Downloads\5.pdf
2019-03-02 13:27 - 2019-03-02 13:27 - 000067402 _____ C:\Users\snejdar\Downloads\4.pdf
2019-02-28 18:42 - 2017-11-02 18:01 - 000217600 _____ (Eaton Automation) C:\Users\snejdar\Desktop\RemoteClient.exe
2019-02-28 17:21 - 2019-02-28 17:21 - 000010337 _____ C:\Users\snejdar\Desktop\Auriga Report.xlsx
2019-02-23 20:44 - 2019-02-23 20:44 - 000766237 _____ C:\Users\snejdar\Downloads\duster-price.pdf
2019-02-22 18:08 - 2019-02-22 18:08 - 000833459 _____ C:\Users\snejdar\Downloads\MCX061V_DS_DKRCC.PD.RI0.F5.02_AZ.pdf
2019-02-22 16:53 - 2019-02-22 16:53 - 001365409 _____ C:\Users\snejdar\Downloads\AC_MCX061V_DKRCC.PD.RI0.F3.02_520H6595.pdf
2019-02-22 14:08 - 2019-02-22 14:08 - 001841421 _____ C:\Users\snejdar\Downloads\RI8PZ4ML_AK-PC551.pdf
2019-02-22 14:08 - 2019-02-22 14:08 - 001523179 _____ C:\Users\snejdar\Downloads\RS8GY202_AK-PC551 (1).pdf
2019-02-22 13:48 - 2019-02-22 13:48 - 006785449 _____ C:\Users\snejdar\Downloads\AK-SM 850 ENG.pdf
2019-02-22 13:45 - 2019-02-22 13:45 - 001523179 _____ C:\Users\snejdar\Downloads\RS8GY202_AK-PC551.pdf
2019-02-22 13:42 - 2019-02-22 13:42 - 005124532 _____ C:\Users\snejdar\Downloads\EM24DIN DUPLINE IM ML 061207.pdf
2019-02-22 13:42 - 2019-02-22 13:42 - 005124532 _____ C:\Users\snejdar\Downloads\EM24DIN DUPLINE IM ML 061207 (1).pdf
2019-02-22 13:41 - 2019-02-22 13:41 - 000941113 _____ C:\Users\snejdar\Downloads\em24dinds.pdf
2019-02-22 12:20 - 2019-02-22 12:20 - 001068095 _____ C:\Users\snejdar\Downloads\XR 170C,D,160C,D_v11.pdf
2019-02-21 17:14 - 2019-02-21 17:14 - 000228674 _____ C:\Users\snejdar\Downloads\18-19-rozhodnuti-dk-cslh-hc-zubr-prerov-nesportovni-chovani-divaku.pdf
2019-02-21 14:32 - 2019-02-21 14:33 - 012227497 _____ C:\Users\snejdar\Downloads\XWEB_EVO_5.3.0.STANDARD.6-28cbfd_300D_500D_500.zip
2019-02-20 16:39 - 2019-02-20 16:39 - 031645096 _____ C:\Users\snejdar\Downloads\AMWA_Organic-Rozsirena_VO_nabidka-barevnice.rar
2019-02-19 10:57 - 2019-02-19 10:57 - 003114813 _____ C:\Users\snejdar\Downloads\+0300055EN.pdf
2019-02-18 15:12 - 2019-02-18 15:12 - 005720715 _____ C:\Users\snejdar\Downloads\MG18C822.pdf
2019-02-16 14:54 - 2019-02-16 14:54 - 000242933 _____ C:\Users\snejdar\Downloads\priloha_649274008_0_výzva - SoP - SMj 13277_2019.pdf
2019-02-15 11:10 - 2019-02-15 11:10 - 004276939 _____ C:\Users\snejdar\Downloads\ba044_16_ec-endprodukte.pdf
2019-02-14 22:51 - 2019-02-14 22:51 - 000069796 _____ C:\Users\snejdar\Downloads\certifikat2017.pdf
2019-02-14 12:57 - 2019-02-14 12:57 - 001562422 _____ C:\Users\snejdar\Downloads\XC660D_eng.pdf
2019-02-14 12:56 - 2019-02-14 12:57 - 001541795 _____ C:\Users\snejdar\Downloads\XC660D-IT.pdf
2019-02-14 12:56 - 2019-02-14 12:56 - 001562422 _____ C:\Users\snejdar\Downloads\XC660D-GB.pdf
2019-02-14 12:03 - 2019-02-14 12:03 - 000037440 _____ C:\Users\snejdar\Downloads\qy6259327714.pdf
2019-02-14 12:02 - 2019-02-14 12:02 - 000037351 _____ C:\Users\snejdar\Downloads\dh8496977230.pdf
2019-02-13 16:05 - 2019-02-13 16:05 - 057224705 _____ C:\Users\snejdar\Downloads\TEASER V.2 - MOLD.mp4
2019-02-11 20:48 - 2019-02-11 20:48 - 055536462 _____ C:\Users\snejdar\Downloads\TEASER - MOLD.mp4
2019-02-11 12:22 - 2019-02-11 12:22 - 000046695 _____ C:\Users\snejdar\Downloads\Vypis_z_uctu-2301305536_20190101-20190131_cislo-1.pdf
2019-02-11 12:04 - 2019-02-11 12:04 - 000210069 _____ C:\Users\snejdar\Downloads\faktura_18 (1).pdf
2019-02-11 12:04 - 2019-02-11 12:04 - 000210014 _____ C:\Users\snejdar\Downloads\faktura_19.pdf
2019-02-11 09:00 - 2019-02-11 09:00 - 000565306 _____ C:\Users\snejdar\Downloads\Hometicket-31808945.pdf
2019-02-11 07:08 - 2019-02-11 07:08 - 000088991 _____ C:\Users\snejdar\Downloads\0703_001.pdf
2019-02-09 14:37 - 2019-02-09 14:37 - 046507300 _____ C:\Users\snejdar\Downloads\SE.rar
2019-02-09 14:36 - 2019-03-03 14:25 - 000000000 ____D C:\Users\snejdar\Downloads\SE
2019-02-08 09:20 - 2019-02-08 09:20 - 002233878 _____ C:\Users\snejdar\Downloads\780568.PDF
2019-02-06 21:03 - 2019-02-09 14:37 - 000000000 ____D C:\Users\snejdar\Downloads\MOLD_photoshoot
2019-02-06 21:02 - 2019-02-06 21:02 - 019948062 _____ C:\Users\snejdar\Downloads\MOLD_photoshoot.rar
2019-02-06 07:51 - 2019-02-06 07:52 - 000000000 ____D C:\ProgramData\Danfoss Drives
2019-02-06 07:39 - 2019-02-11 10:15 - 000000866 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-02-06 06:40 - 2019-02-05 16:01 - 003692287 _____ C:\Users\snejdar\Desktop\IMG_5651.MOV

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-03-07 05:52 - 2013-10-23 07:29 - 000000112 _____ C:\Windows\system32\config\netlogon.ftl
2019-03-07 05:52 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-03-06 22:06 - 2010-04-07 01:54 - 000719094 _____ C:\Windows\system32\perfh005.dat
2019-03-06 22:06 - 2010-04-07 01:54 - 000160952 _____ C:\Windows\system32\perfc005.dat
2019-03-06 22:06 - 2009-07-14 06:13 - 001725364 _____ C:\Windows\system32\PerfStringBackup.INI
2019-03-06 22:06 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2019-03-06 22:05 - 2016-02-25 09:46 - 000000970 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488UA.job
2019-03-06 21:18 - 2013-10-23 07:27 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-03-06 21:15 - 2009-07-14 05:45 - 000020944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-03-06 21:15 - 2009-07-14 05:45 - 000020944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-03-06 12:19 - 2014-08-22 10:30 - 000000000 ____D C:\Users\snejdar\Documents\Ostatni
2019-03-06 12:00 - 2018-01-29 07:17 - 000000000 ____D C:\Users\snejdar\AppData\LocalLow\Mozilla
2019-03-06 10:26 - 2015-05-25 12:19 - 000000000 ____D C:\Users\snejdar\AppData\Local\Eplan Interface Manager
2019-03-06 07:05 - 2016-02-25 09:46 - 000000918 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488Core.job
2019-03-05 20:38 - 2014-07-01 10:39 - 000000340 _____ C:\Windows\Tasks\HPCeeScheduleForsnejdar.job
2019-03-05 11:48 - 2014-07-01 10:39 - 000003198 _____ C:\Windows\System32\Tasks\HPCeeScheduleForsnejdar
2019-03-05 10:28 - 2014-04-08 12:38 - 000000000 ____D C:\Users\snejdar\Documents\Kusovky
2019-03-01 23:53 - 2018-12-08 21:53 - 000000000 ____D C:\Users\snejdar\AppData\Roaming\Kodi
2019-02-28 18:07 - 2016-03-02 14:34 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2019-02-23 22:29 - 2015-11-09 06:17 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-02-23 20:10 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\NDF
2019-02-22 18:39 - 2019-01-14 11:12 - 000000000 ____D C:\Users\snejdar\AppData\Roaming\MCXShape
2019-02-22 12:04 - 2014-04-22 09:19 - 000000000 ____D C:\Users\snejdar\Documents\Nastaveni menicu
2019-02-20 06:45 - 2018-10-18 10:37 - 000004162 _____ C:\Windows\System32\Tasks\Antivirus Emergency Update
2019-02-19 17:13 - 2009-07-14 06:08 - 000032542 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2019-02-18 09:15 - 2015-04-01 08:25 - 000000000 ____D C:\Users\snejdar\Documents\Nastaveni_regulatoru
2019-02-14 14:05 - 2015-01-05 07:57 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2019-02-06 17:19 - 2009-07-14 05:45 - 000408560 _____ C:\Windows\system32\FNTCACHE.DAT
2019-02-06 14:57 - 2014-03-18 14:29 - 000110192 _____ C:\Users\snejdar\AppData\Local\GDIPFONTCACHEV1.DAT
2019-02-06 07:52 - 2013-11-01 08:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Danfoss Drives
2019-02-06 07:39 - 2018-12-10 15:27 - 000003870 _____ C:\Windows\System32\Tasks\CCleaner Update
2019-02-06 07:39 - 2018-11-23 06:46 - 000000000 ____D C:\Users\snejdar\AppData\Roaming\vlc
2019-02-06 07:39 - 2014-04-28 10:55 - 000000000 ____D C:\Users\snejdar\AppData\Roaming\Media Player Classic
2019-02-05 05:54 - 2014-02-20 06:28 - 000000000 ____D C:\Program Files\CCleaner

==================== Files in the root of some directories =======

2018-03-01 09:37 - 2019-02-07 13:48 - 000017836 _____ () C:\Users\snejdar\AppData\Roaming\pCOload.0.log
2016-03-03 09:06 - 2017-05-26 13:06 - 000000600 _____ () C:\Users\snejdar\AppData\Roaming\winscp.rnd
2014-03-18 14:29 - 2014-03-18 14:29 - 000000000 _____ () C:\Users\snejdar\AppData\Local\AtStart.txt
2014-03-18 14:29 - 2014-03-18 14:29 - 000000000 _____ () C:\Users\snejdar\AppData\Local\DSwitch.txt
2016-03-03 09:06 - 2016-03-24 15:40 - 000000600 _____ () C:\Users\snejdar\AppData\Local\PUTTY.RND
2014-03-18 14:29 - 2014-03-18 14:29 - 000000000 _____ () C:\Users\snejdar\AppData\Local\QSwitch.txt

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\dllhost.exe => File is digitally signed
C:\Windows\SysWOW64\dllhost.exe => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


ATTENTION: ==> Could not access BCD.

LastRegBack: 2019-03-04 07:07

==================== End of FRST.txt ============================

RSIT Addition:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03.03.2019
Ran by snejdar (07-03-2019 05:58:47)
Running from C:\Users\snejdar\Desktop
Windows 7 Professional Service Pack 1 (X64) (2013-10-21 14:38:23)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2040571901-3754613886-2050062914-500 - Administrator - Disabled)
Guest (S-1-5-21-2040571901-3754613886-2050062914-501 - Limited - Disabled)
oem (S-1-5-21-2040571901-3754613886-2050062914-1000 - Administrator - Enabled) => C:\Users\oem

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: AVG Antivirus (Enabled - Up to date) {4FC75CA5-1654-5411-7CFB-1893D506BCF4}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Antivirus (Enabled - Up to date) {F4A6BD41-306E-5B9F-464B-23E1AE81F649}
FW: AVG Antivirus (Disabled) {77FCDD80-5C3B-5549-57A4-B1A62BD5FB8F}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

2007 Microsoft Office system (HKLM-x32\...\PROHYBRIDR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.010.20098 - Adobe Systems Incorporated)
Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.0.32.18 - Adobe Systems Incorporated)
Advanced IP Scanner v1.4 (HKLM-x32\...\Advanced IP Scanner v1.4) (Version: - )
AK-PT_50 (HKLM-x32\...\Danfoss AK-PT 50_is1) (Version: 3.05 - Danfoss)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_PROHYBRIDR_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_PROHYBRIDR_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_PROHYBRIDR_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Asistent pro přihlášení ke službě Windows Live (HKLM-x32\...\{3E62B27C-342F-4B44-9331-CA4BC59A586F}) (Version: 5.000.818.5 - Microsoft Corporation)
AUCOTEC ELCAD CZ 7.8.0 Complete (HKLM-x32\...\{CA19B79F-76F7-4273-8B55-0E7E07E505AC}) (Version: 7.8.0 - TECHNODAT Elektro, s.r.o, Zlín)
AVG Business Security (HKLM-x32\...\AVG Antivirus) (Version: 18.8.3071 - AVG Technologies)
Balíček ovladače systému Windows - FTDI CDM Driver Package - Bus/D2XX Driver (04/10/2012 2.08.24) (HKLM\...\4C8545EEB6143B6AD3858B5D1E0AEE76040B1435) (Version: 04/10/2012 2.08.24 - FTDI)
Balíček ovladače systému Windows - FTDI CDM Driver Package - VCP Driver (04/10/2012 2.08.24) (HKLM\...\6849F67BACD4DA5A5B9D46803E6850D0BE8B3826) (Version: 04/10/2012 2.08.24 - FTDI)
Balíček ovladače systému Windows - Graphtec (GTCUSBR) USB (10/19/2009 2.0.3.0) (HKLM\...\DBB540E290A1AF1407001DF811ED2EF01C511790) (Version: 10/19/2009 2.0.3.0 - Graphtec)
Balíček ovladače systému Windows - Lodam electronics (usbser) Ports (06/28/2016 1.0.0.1) (HKLM\...\0BD2EB9F5ABCE1F04B2E835CB3370BD7D1727463) (Version: 06/28/2016 1.0.0.1 - Lodam electronics)
Balíček ovladače systému Windows - Lodam electronics (usbser) Ports (06/28/2016 1.0.0.1) (HKLM\...\1968355851993B1ED7141CEDA97472FA1F13D42E) (Version: 06/28/2016 1.0.0.1 - Lodam electronics)
BEST (HKLM-x32\...\LodamBEST_is1) (Version: 2.8.229.0 - BITZER)
CCleaner (HKLM\...\CCleaner) (Version: 5.52 - Piriform)
cdc_driver_x64 (HKLM-x32\...\{CB348D2E-D720-4B25-BAB6-ED9E9996DB7E}) (Version: 1.00.0000 - Danfoss Drives) Hidden
cdc_driver_x64 (HKLM-x32\...\InstallShield_{CB348D2E-D720-4B25-BAB6-ED9E9996DB7E}) (Version: 1.00.0000 - Danfoss Drives)
CLIP PROJECT marking 8.8 (HKLM-x32\...\{0AB953ED-D2CC-4EBC-8A56-967D47B4045C}) (Version: 8.8.8966 - Phoenix Contact)
Communication Module Runtime 1.0.1901.1502 (HKLM-x32\...\Communication Module Runtime_is1) (Version: - Danfoss Drives A/S)
ComTool (HKLM-x32\...\{B2E9C412-5CE2-4B94-8578-439C61E2BCDA}) (Version: 1.0.0.0 - )
DBF Converter (HKLM-x32\...\DBF Converter) (Version: - )
DraftSight 2018 SP0 x64 (HKLM\...\{99275069-64ED-476E-A87B-756DC6C8BA59}) (Version: 18.0.2051 - Dassault Systemes)
Drive composer entry (HKLM-x32\...\{EA956CFE-674A-43CB-93D5-FF027548B00F}) (Version: 2.1.0.1 - ABB)
Drive Composer Entry Installer (HKLM-x32\...\{43c69626-d9cc-43b2-9f56-ca158343c4e0}) (Version: 2.1.0.1 - ABB)
FormApps Signing Extension (HKLM-x32\...\{ACA43D91-8B42-4D42-8C8B-A893BD6AA40D}) (Version: 2.8.2.28 - Software602 a.s.)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 8.2.0.2051 - Foxit Software Inc.)
Galileo V8.1.4 (12383) (HKLM-x32\...\Galileo8.1.4.12383_is1) (Version: 8.1.4.12383 - Eaton Automation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 72.0.3626.121 - Google Inc.)
Google Photos Backup (HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\...\Google Photos Backup) (Version: 1.1.2.13 - Google, Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Gupta Runtime 4.0 (HKLM-x32\...\{A22AD9CB-45C1-4EF1-A6A1-615CF87A0B9C}) (Version: 4.00 - Gupta Corp)
Hewlett-Packard ACLM.NET v1.2.1.1 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM\...\{D805D22C-3C4B-47CD-A11D-912816288EE0}) (Version: 4.1.10.1 - Hewlett-Packard Company)
HP Business Card Reader (HKLM-x32\...\{FD8234FF-A70D-4632-B146-F41AB37C0B24}) (Version: 0.6.3.0 - Hewlett-Packard)
HP Common Access Service Library (HKLM-x32\...\{58215966-9BA6-485D-B8DA-4AE31150B92E}) (Version: 3.0.37.1 - Hewlett-Packard)
HP ESU for Microsoft Windows 7 (HKLM-x32\...\{68BAA445-7269-4139-A79C-8C834708D2C2}) (Version: 1.1.13.2 - Hewlett-Packard Company)
HP Integrated Module with Bluetooth wireless technology (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.1.500 - Broadcom Corporation)
HP LaserJet Professional M1130-M1210 MFP Series (HKLM\...\HP LaserJet Professional M1130-M1210 MFP Series) (Version: - )
HP Power Assistant (HKLM\...\{BD7AB0B9-4491-4642-B6BB-2560648A0A22}) (Version: 1.0.2.4 - Hewlett-Packard)
HP Power Data (HKLM\...\{AFCB591A-D4FF-4670-824C-970932809DED}) (Version: 1.0.27.174 - Hewlett-Packard)
HP Quick Launch Buttons (HKLM-x32\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.16.1 - Hewlett-Packard Company)
HP QuickLook (HKLM-x32\...\{47FA17A8-50B8-4448-9BDD-8B001EB13F43}) (Version: 3.1.0.4 - Hewlett-Packard)
HP QuickWeb (HKLM-x32\...\{7861911B-4270-498A-8F7A-FCF0570F484B}) (Version: 1.0.1.48 - DeviceVM, Inc.)
HP QuickWeb (HKLM-x32\...\{7861911B-4270-498A-8F7A-FCF0570F48E3}) (Version: 1.0.1.74 - DeviceVM, Inc.)
HP Setup (HKLM-x32\...\{1E6219D4-027E-47EE-AB83-DD2F26E31A32}) (Version: 1.2.3557.3169 - Hewlett-Packard)
HP SoftPaq Download Manager (HKLM-x32\...\{CDA8E6D8-C735-4B9C-AC0C-A8B80C3D9449}) (Version: 3.0.8.0 - Hewlett-Packard Company)
HP Software Setup (HKLM-x32\...\{04801E42-B1A6-4C52-9F3D-CADB5A050433}) (Version: 7.0.1.5 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}) (Version: 7.0.39.15 - Hewlett-Packard Company)
HP User Guides 0159 (HKLM-x32\...\{5D205683-5AC7-4BBA-B45F-EC31DF297643}) (Version: 1.01.0000 - Hewlett-Packard)
HP Wallpaper (HKLM-x32\...\{F173C2B3-296F-458C-98FF-1676A42EBA02}) (Version: 1.0.1.3 - Hewlett-Packard Company)
HP Webcam (HKLM-x32\...\{1D61E881-43CD-447B-9E6B-D2C6138B2862}) (Version: 1.0 - Roxio)
HP Webcam Driver (HKLM-x32\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 5.8.50009.5 - Sonix)
HP Wireless Assistant (HKLM\...\{518C838E-A21C-40BE-B844-648040C2491D}) (Version: 4.0.2.4 - Hewlett-Packard)
I/O Station Configurator (HKLM-x32\...\{6C7B209B-E7B3-45BB-AEFB-8AB0636DB2C2}) (Version: 2.7.47.0 - PHOENIX CONTACT GmbH & Co. KG) Hidden
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6300.0 - IDT)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 16.3 - Intel)
Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed (HKLM\...\{BEE86606-EFB5-4353-9F34-29E0C59CDCFA}) (Version: 15.2.0.0284 - Intel Corporation)
Intel(R) Turbo Boost Technology Driver (HKLM-x32\...\{D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}) (Version: 01.00.01.1002 - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
J2SE Runtime Environment 5.0 Update 12 (HKLM-x32\...\{3248F0A8-6813-11D6-A77B-00B0D0150120}) (Version: 1.5.0.120 - Sun Microsystems, Inc.)
Java 8 Update 191 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
Java 8 Update 191 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
Java SE Development Kit 8 Update 191 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180191}) (Version: 8.0.1910.12 - Oracle Corporation)
K-Lite Codec Pack 6.7.0 (Full) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 6.7.0 - )
Kodi (HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\...\Kodi) (Version: - XBMC-Foundation)
Layout Editor 1.3.0 (HKLM-x32\...\Layout Editor) (Version: 1.3.0 - Carel Industries S.p.A.)
LOGO!Soft Comfort V7.0 (HKLM\...\LOGO!Soft Comfort V7.0 ) (Version: 7.0.0.0 - Siemens AG)
LOGO!Soft Comfort V8.0 (HKLM\...\LOGO!Soft Comfort V8.0 ) (Version: 8.0.0.0 - Siemens AG)
LSI HDA Modem (HKLM\...\LSI Soft Modem) (Version: 2.2.97 - LSI Corporation)
MCT 10 Set-up Software (HKLM-x32\...\{1ADAC261-0A9B-4672-A048-A423F5ACA4D2}) (Version: 4.40.4679 - Danfoss Drives)
MCX Shape (HKLM-x32\...\MCXShape_is1) (Version: - Danfoss)
Microsoft .NET Framework 4.7 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Report Viewer 2012 Runtime (HKLM-x32\...\{C58378BC-0B7B-474E-855C-9D02E5E75D71}) (Version: 11.1.3452.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SOAP Toolkit 3.0 (HKLM-x32\...\{BCB4C18A-ACA6-4383-8688-E19933A705DD}) (Version: 3.0.1325.4 - Microsoft Corporation)
Microsoft SQL Server 2005 (HKLM-x32\...\Microsoft SQL Server 2005) (Version: - Microsoft Corporation)
Microsoft SQL Server Native Client (HKLM\...\{9ACF3FDB-C8E6-444C-8C64-13A221F7BFFD}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server Setup Support Files (English) (HKLM-x32\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{B636C9B9-A3F2-4DCE-ADCC-72E095018385}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft Sync Framework Runtime Native v1.0 (x86) (HKLM-x32\...\{8A74E887-8F0F-4017-AF53-CBA42211AAA5}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Sync Framework Services Native v1.0 (x86) (HKLM-x32\...\{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (HKLM-x32\...\{CD5AAE18-1DF8-4D7B-8B99-9071D7D36126}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft XML Parser and SDK (HKLM-x32\...\{35343FF7-939B-401A-87B3-FF90A5123D88}) (Version: 4.10.9404.0 - Microsoft Corporation)
Mozilla Firefox 44.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 44.0 (x86 cs)) (Version: 44.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.0.5866 - Mozilla)
MPC-HC 1.7.1 (HKLM-x32\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.1.0 - MPC-HC Team)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.6 - F.J. Wechselberger)
Nástroj pro odesílání služby Windows Live (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
NB-Designer_v1.360 (HKLM-x32\...\{B0418750-63CD-4B1E-8465-3D05C4760B8A}) (Version: 1.36.0000 - OMRON)
NCDrive (HKLM-x32\...\NCDrive) (Version: - )
NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.18.0 - NEC Electronics Corporation) Hidden
NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.18.0 - NEC Electronics Corporation)
NVIDIA nView 141.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 141.36 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 341.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.44 - NVIDIA Corporation)
NVIDIA WMI 2.18.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVWMI) (Version: 2.18.0 - NVIDIA Corporation)
Odinstalovat ovladač tiskárny UFR II (HKLM\...\Canon UFR II Printer Driver) (Version: 5, 4, 0, 0 - Canon Inc.)
OpenOffice.org 3.4.1 (HKLM-x32\...\{1E0AF527-0B8E-4F8A-BA27-CB3C359998C6}) (Version: 3.41.9593 - Apache Software Foundation)
OpenVPN 2.4.2-I601 (HKLM\...\OpenVPN) (Version: 2.4.2-I601 - OpenVPN Technologies, Inc.)
OPS022 Install Program (HKLM-x32\...\{A2B1D187-4123-458D-8CC3-5EF305FE47AE}) (Version: 2.11 - peritec)
Ovládací panel NVIDIA 341.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 341.44 - NVIDIA Corporation) Hidden
P8_AddInManager_OnlineUpdate (HKLM-x32\...\{09C785A2-B911-4EEF-A3FB-23120AFEAD6B}) (Version: 1.2.234 - eplan) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.1.2 - pdfforge)
PKZIP Server for Windows 12.40.0008 (HKLM-x32\...\{134A51EB-1BBB-4249-BAF5-494C3D186A06}) (Version: 12.40.0008 - PKWARE, Inc)
PL-2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.9.0 - Prolific Technology INC)
pRack Manager 1.3.12.0 (HKLM-x32\...\pRack Manager) (Version: 1.3.12.0 - Carel Industries S.p.A.)
P-Set (HKLM-x32\...\{CC5344F7-7EFA-457F-BC7C-2E3256EDB2B5}) (Version: 1.00.0000 - BD SENSORS)
QLBCASL (HKLM-x32\...\{F1D7AC58-554A-4A58-B784-B61558B1449A}) (Version: 6.40.17.2 - Hewlett-Packard) Hidden
RICOH Media Driver (HKLM-x32\...\{F5CC2EF8-20A4-4366-A681-3FE849E65809}) (Version: 2.13.00.05 - RICOH)
Samsung Data Migration (HKLM-x32\...\{3B304604-0BF5-488E-AB95-F2F2E31206F3}) (Version: 3.0 - Samsung)
Samsung Kies (HKLM-x32\...\{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.4.16113.3 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.4.16113.3 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.61.0 - Samsung Electronics Co., Ltd.)
Scan To (HKLM\...\{E8A34AC8-0137-4515-A94B-0A0946DDC251}) (Version: 1.0.1 - HP)
SDFormatter (HKLM-x32\...\{179324FF-7B16-4BA8-9836-055CAAEE4F08}) (Version: 4.0.0 - SD Association)
Selection Software 7.7 (HKLM-x32\...\{99209AB9-D16B-452D-B608-73954A7A5ABA}) (Version: 7.7 - Emerson Climate Technologies GmbH)
Sentinel HASP Run-time (HKLM-x32\...\{2A414CBE-CDF3-48C6-A91B-D3D4522F8EB5}) (Version: 5.10.1.17163 - SafeNet Inc.)
ServiceTool (HKLM-x32\...\{4310C0BC-7F6F-4E44-99A9-7F6775CDCF87}) (Version: 3.20 Build 12.09.14 - ADAP-KOOL)
Silicon Laboratories CP210x USB to UART Bridge (Driver Removal) (HKLM-x32\...\SLABCOMM&10C4&EA60) (Version: - Silicon Laboratories)
Silicon Laboratories CP210x VCP Drivers for Windows XP/2003 Server/Vista/7 (HKLM-x32\...\{53CB995C-DC26-4528-A427-98126FDD173D}) (Version: 6.2.00 - Silicon Laboratories, Inc.)
Silicon Laboratories CP210x VCP Drivers for Windows XP/2003 Server/Vista/7_2 (c:\SiLabs\MCU\CP210x\Windows_XP_S2K3_Vista_7_2) (HKLM-x32\...\{29ECE78D-A715-483F-B445-E1F219EFF380}) (Version: 6.2.00 - Silicon Laboratories, Inc.)
SIMATIC STEP 7 (HKLM-x32\...\{F294AB40-F065-4E65-B510-4EB239B02D70}) (Version: 05.05.0400 - Siemens AG) Hidden
SIMATIC STEP 7 V5.5 + SP4 Professional 2010 SR4 (HKLM-x32\...\{F294AB40-F065-4E65-B510-4EB239B02D70}STEP7) (Version: 05.05.0400 - Siemens AG)
SIMATIC Device Drivers (HKLM\...\{CCC01ADD-3A54-15D6-92A8-00A0245B3AC6}) (Version: 01.02.0400 - Siemens AG) Hidden
SIMATIC Device Drivers WoW (HKLM-x32\...\{CCC01ADD-3A54-11D6-92A8-00A0245B3AC6}) (Version: 20.02.0400 - Siemens AG) Hidden
SIMATIC HMI License Manager Panel Plugin (x64) (HKLM\...\{CCC230DD-3A54-11D6-92A8-00A0245B3AC6}) (Version: 11.00.0100 - Siemens AG) Hidden
SIMATIC NCM FWL 64 (HKLM\...\{CCC31FDD-3A54-11D6-92A8-00A0245B3AC6}) (Version: 05.05.0400 - Siemens AG) Hidden
SIMATIC Prosave (HKLM-x32\...\{AE533A06-4655-41E8-88BB-48293AAF1FA0}) (Version: 09.00.0300 - Siemens AG) Hidden
SIMATIC Prosave V9.0 incl. SP3 (HKLM-x32\...\{AE533A06-4655-41E8-88BB-48293AAF1FA0}Prosave) (Version: 09.00.0300 - Siemens AG)
SIMATIC S7-PCT (HKLM-x32\...\{23037B92-E705-49FF-9584-F8C628A4697B}) (Version: 03.02.0000 - Siemens AG) Hidden
SIMATIC S7-PCT V3.2 Professional 2010 SR4 (HKLM-x32\...\{23037B92-E705-49FF-9584-F8C628A4697B}S7PCT) (Version: 03.02.0000 - Siemens AG)
SIMATIC Version View (HKLM-x32\...\{CCC07ADD-3A54-11D6-92A8-00A0245B3AC6}) (Version: 01.07.0900 - Siemens AG) Hidden
SIMATIC WinCC flexible Micro 2008 SP3 (HKLM-x32\...\InstallShield_{4859C171-B826-4B74-ABCE-501B4C725EA2}) (Version: 01.04.0000 - Siemens AG)
SIMATIC WinCC flexible OCX (HKLM-x32\...\{CCC16FDD-3A54-11D6-92A8-00A0245B3AC6}) (Version: 01.04.0000 - Siemens AG) Hidden
Skype™ 6.20 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.20.104 - Skype Technologies S.A.)
STEP 7 MicroWIN V4.0.9.25 (HKLM-x32\...\{EA5E7DD4-D9AC-406B-9233-9B3E65C1DBA2}) (Version: 4.0.9 - Siemens)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.24.0 - Synaptics Incorporated)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TD Keypad Designer V1.0.9.25 (HKLM-x32\...\{3A3DCADC-703E-4D52-A40B-0A4A3381E503}) (Version: 1.0.9 - Siemens)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.47484 - TeamViewer)
Tecumseh Europe Selection Software (HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\...\Tecumseh Europe Selection Software) (Version: - Tecumseh Europe)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Validity Fingerprint Driver (HKLM\...\{BE9ED4AF-949C-4B95-B2FD-0A2F228A7689}) (Version: 4.0.8.0 - Validity Sensors, Inc.)
VCBinaries For 1tool - Release (HKLM-x32\...\{573B551F-7715-4708-ADF4-297EAA231F82}) (Version: 1.0.0 - Carel)
VISUAL Enterprise 6.5.4 SP2 (HKLM-x32\...\{B5925F48-958B-4929-A783-CCF810F3DF1B}) (Version: 1.02.0000 - Infor Global Solutions)
Visual Parameter Manager 3.6.7.0 (HKLM-x32\...\Visual Parameter Manager) (Version: 3.6.7.0 - Carel Industries S.p.A.)
Visual SIOX 3.1:001 (HKLM-x32\...\Visual SIOX 3.1:001) (Version: - )
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.4 - VideoLAN)
WinCC flexible (HKLM-x32\...\{4859C171-B826-4B74-ABCE-501B4C725EA2}) (Version: 01.04.0000 - Siemens AG) Hidden
WinCC flexible Graphics (HKLM-x32\...\{2838043E-63EF-44A4-B3A8-17B8129BD5BD}) (Version: 1.04.0000 - Siemens AG) Hidden
WinCC flexible Graphics (HKLM-x32\...\InstallShield_{2838043E-63EF-44A4-B3A8-17B8129BD5BD}) (Version: 1.04.0000 - Siemens AG) Hidden
Windows 7 Default Setting (HKLM-x32\...\{5BF8E079-D6E2-4323-B794-75152371122A}) (Version: 1.0.1.5 - Hewlett-Packard Company)
Windows Driver Package - ABB (abbdcdc_x64) Ports (04/15/2014 3.0.1.0) (HKLM\...\BF5A5F51A020AA3B06FACCA9A0DAEB5894E18674) (Version: 04/15/2014 3.0.1.0 - ABB)
Windows Driver Package - ABB ABB BCBL-01 Serial Converter driver (06/20/2016 2.12.10) (HKLM\...\A1C1B59CC56D2A8727E3119FA039FB72C9799F0E) (Version: 06/20/2016 2.12.10 - ABB)
Windows Driver Package - ABB ABB BCBL-01 Serial Converter driver (10/28/2015 2.12.10) (HKLM\...\8CEC8202860B24B43F48096A1EA2D628DFC42A80) (Version: 10/28/2015 2.12.10 - ABB)
Windows Driver Package - Broadcom Bluetooth (06/15/2009 6.2.0.9000) (HKLM\...\6B8550A319DDC8B17F35F4A89988705E4592349B) (Version: 06/15/2009 6.2.0.9000 - Broadcom)
Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405) (HKLM\...\6B6B5E96843E55CF5CF8C7E45FB457F1FE642FF1) (Version: 07/30/2009 6.2.0.9405 - Broadcom)
Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) (HKLM\...\3BA80AB4C7E9F8497C115C844953A3D4BEB84D21) (Version: 07/28/2009 6.2.0.9800 - Broadcom)
Windows Driver Package - CDC Driver (usbser) Ports (10/15/2009 1.0.0.0) (HKLM\...\456AC481285C2C461242E956AA274969F1F53C67) (Version: 10/15/2009 1.0.0.0 - CDC Driver)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8089.0726 - Microsoft Corporation)
WinRAR 5.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
Wizmate (HKLM-x32\...\{CFAE4038-1D52-4957-9F6B-EE12612C0F89}) (Version: 1.2.0.65 - Dixell) Hidden
Wizmate (HKLM-x32\...\Wizmate) (Version: 1.2.0.65 - Dixell)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1350338271-1762688309-1791207727-1488_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\snejdar\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-1350338271-1762688309-1791207727-1488_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\snejdar\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll (Google Inc -> Google Inc.)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShA64.dll [2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\programy\Foxit Reader\Install\plugins\ConvertToPDFShellExtension_x64.dll [2016-12-23] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers1-x32: [MyPhoneExplorer] -> {A372C6DF-7A85-41B1-B3B0-D1E24073DCBF} => C:\programy\Synchro\Install\MyPhoneExplorer\DLL\ShellMgr.dll [2010-03-30] (F.J. Wechselberger) [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2014-08-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2014-08-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers5: [00nView] -> {1E9B04FB-F9E5-4718-997B-B8DA88302A48} => C:\windows\system32\nvshell.dll [2010-02-25] (NVIDIA Corporation -> )
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2015-02-04] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShA64.dll [2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\programy\Foxit Reader\Install\plugins\ConvertToPDFShellExtension_x64.dll [2016-12-23] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2014-08-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2014-08-27] (win.rar GmbH -> Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {2C51F11E-E919-4A0C-BDBF-619D56873B1F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {365AC854-1EE6-42C6-9494-88F27C3C1B88} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {37B73E95-7B8C-4642-989D-01399FC1E26F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFReport.exe (Hewlett-Packard Company -> Hewlett-Packard)
Task: {425E6B2B-6D70-4F65-9B5A-9F6116E54591} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe (Hewlett Packard -> HP Inc.)
Task: {5D556924-1D82-4D76-A5D9-64C151780DF1} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {5F256C22-448F-4A78-B4CE-9E5E6C498FBF} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488UA => C:\Users\snejdar\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {61A9DC16-BC4E-4A81-87EB-ED4678B3D30C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe (HP Inc. -> HP Inc.)
Task: {62F5D309-F69B-45D6-AC17-CC90694F51DA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {75775DF0-251E-46D1-9618-A4AA6F2C8195} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {79237460-2A1E-4E2A-A4C4-8BF655A6FFCE} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488Core => C:\Users\snejdar\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {7F98FDDB-421E-4F66-B677-F87E8B01398B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {8943705C-2FEE-4D51-8F25-E347F22A9B78} - System32\Tasks\{B3CEED0C-8C74-4B9B-A0E3-0BB86660B39D} => C:\Windows\system32\pcalua.exe -a C:\Users\snejdar\AppData\Local\Temp\jre-8u101-windows-au.exe -d "C:\Program Files\Java\jre1.8.0_73\bin" -c /installmethod=jau-m FAMILYUPGRADE=1 <==== ATTENTION
Task: {9D5FEC5E-9DD1-4752-A7E0-91FD24F1A6EA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe (Hewlett-Packard Company -> Microsoft)
Task: {A1F26C42-7443-461D-AC69-F3F70BB90578} - System32\Tasks\Registration => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe (Hewlett-Packard Company -> )
Task: {A20BB704-D29A-4671-8C03-3C89CD804F25} - System32\Tasks\{6D224F73-4F5F-4D9D-B01B-D990EEC428A1} => C:\Windows\system32\pcalua.exe -a "C:\Users\snejdar\AppData\Local\Tecumseh Europe\Selection Software\Uninstall.exe"
Task: {A7E244FE-9006-48C1-9D8A-1FDFC83E3F47} - System32\Tasks\{EABB7189-980D-479E-BD23-337E31F45885} => C:\Windows\system32\pcalua.exe -a D:\desktop\Setup.exe -d D:\desktop
Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - System32\Tasks\Microsoft\Windows\Application Experience\AitAgent => aitagent.exe <==== ATTENTION
Task: {C1A81887-77D1-4A00-8C72-FD50CABEDD09} - System32\Tasks\{67B040D0-2D26-4DF4-9E1C-4F55307E91C8} => C:\Windows\system32\pcalua.exe -a "C:\Users\snejdar\Documents\Danfoss\Danfoss Service Tool\ST\AK-ST 500_3.43Update\setup.exe" -d "C:\Users\snejdar\Documents\Danfoss\Danfoss Service Tool\ST\AK-ST 500_3.43Update"
Task: {C3F7E6E6-3F8A-4A2C-A8B9-781578EACA14} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {DC187FBB-29E8-43E5-9D74-C46669E8206A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {DF2346E0-C78E-4EB9-8229-A26B6DA94E8D} - System32\Tasks\{DFAFE8BD-510D-4F65-A15C-E739C425CB3A} => "C:\Program Files\Internet Explorer\iexplore.exe" hxxp://ui.skype.com/ui/0/6.10.0.104/cs/abandoninstall?source=lightinstaller&page=tsBing
Task: {E3163C33-301D-4730-A266-5518C5ED3967} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => C:\Windows\SysWOW64\BthUdTask.exe (Microsoft Windows -> Microsoft Corporation)
Task: {F03BA2D8-6413-429C-8EE3-73FEE7CAC0CF} - System32\Tasks\HPCeeScheduleForsnejdar => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe (Hewlett-Packard Company -> Hewlett-Packard)
Task: {F03D7ACA-F933-4C25-BB76-0D46A024611C} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Ltd)
Task: {F4E07D44-E60F-49CA-A054-8FD8E9C181F4} - System32\Tasks\{D17D8D12-2BC8-4C3C-AD5C-8EF48B9EE561} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{4310C0BC-7F6F-4E44-99A9-7F6775CDCF87}\setup.exe" -c -runfromtemp -l0x0009 -removeonly

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488Core.job => C:\Users\snejdar\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488UA.job => C:\Users\snejdar\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForsnejdar.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


ShortcutWithArgument: C:\Users\snejdar\Desktop\Osoba 1 - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Default"

==================== Loaded Modules (Whitelisted) ==============

2017-10-06 15:40 - 2017-10-06 15:40 - 000123392 _____ (Dassault Systèmes) [File not signed] C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe
2017-10-06 15:40 - 2017-10-06 15:40 - 001065472 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Dassault Systemes\DraftSight\bin\Qt5Network.dll
2017-10-06 15:40 - 2017-10-06 15:40 - 005584896 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Dassault Systemes\DraftSight\bin\Qt5Core.dll
2017-10-06 15:40 - 2017-10-06 15:40 - 000193536 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Dassault Systemes\DraftSight\bin\Qt5Xml.dll
2019-01-15 14:26 - 2019-01-15 14:26 - 000310784 _____ () [File not signed] C:\programy\Danfoss\MCT\Install\MCTServ.exe
2018-10-18 10:37 - 2018-10-18 10:37 - 000023336 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-crt-runtime-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 001001264 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\ucrtbase.DLL
2018-10-18 10:37 - 2018-10-18 10:37 - 000021296 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-core-localization-l1-2-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000019248 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-core-processthreads-l1-1-1.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000018728 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-core-file-l1-2-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000018736 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-core-timezone-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000018736 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-core-file-l2-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000019248 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-core-synch-l1-2-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000024880 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-crt-string-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000019752 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-crt-heap-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000024880 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-crt-stdio-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000022832 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-crt-convert-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000019248 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-crt-locale-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000027952 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-crt-math-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000026928 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-crt-multibyte-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000021296 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-crt-time-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000020784 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-crt-filesystem-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000019248 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-crt-environment-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000019248 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-crt-utility-l1-1-0.dll
2009-11-21 04:17 - 2009-11-21 04:17 - 000106496 _____ (NEC Electronics Corporation) [File not signed] C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
2013-10-21 15:43 - 2009-11-04 22:33 - 000013824 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\AMT_COM_InterfaceLib.dll
2013-10-21 15:43 - 2009-11-04 22:34 - 000217088 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\cs-CZ\PrivacyIconClient.resources.dll
2013-10-21 15:43 - 2009-11-04 21:37 - 000438272 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\AMT_SW_GUI.dll
2012-03-15 05:00 - 2012-03-15 05:00 - 000105472 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\BluetoothHS\UsR3IoPort.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000022832 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-runtime-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 001142064 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\ucrtbase.DLL
2018-10-18 10:37 - 2018-10-18 10:37 - 000020784 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-core-localization-l1-2-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000018736 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-core-processthreads-l1-1-1.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000018224 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-core-file-l1-2-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000018224 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-core-timezone-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000018224 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-core-file-l2-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000018736 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-core-synch-l1-2-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000024368 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-string-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000019248 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-heap-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000024368 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-stdio-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000022320 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-convert-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000018736 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-locale-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000028968 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-math-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000026416 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-multibyte-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000020784 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-time-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000020272 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-filesystem-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000018736 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-environment-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000018736 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-utility-l1-1-0.dll
2010-04-07 01:20 - 2015-06-02 13:06 - 000208896 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ISDI.dll
2010-04-07 01:20 - 2015-06-02 13:06 - 000118784 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CSY\PlugInRAID_CSY.dll
2010-04-07 01:20 - 2015-06-02 13:06 - 000073728 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CSY\IAAMon_CSY.dll
2009-11-21 04:17 - 2009-11-21 04:17 - 000086016 _____ (NEC Electronics Corporation) [File not signed] C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.dll
2017-07-10 11:33 - 2016-05-18 13:49 - 004659712 _____ (Dmitry Streblechenko) [File not signed] C:\Windows\SysWOW64\Redemption.dll
2009-11-12 13:11 - 2009-11-12 13:11 - 001089536 _____ (Hewlett-Packard Development Company, L.P.) [File not signed] c:\Program Files (x86)\Hewlett-Packard\HP QuickLook\PimOutlookAddin.dll
2014-03-27 11:32 - 2014-03-27 11:32 - 001093120 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80U.DLL
2014-03-27 11:32 - 2014-03-27 11:32 - 000097280 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.DLL
2016-11-16 13:58 - 2016-11-16 13:58 - 000250368 _____ (Windows (R) Codename Longhorn DDK provider) [File not signed] C:\Program Files (x86)\Samsung\Kies\External\DeviceModules\UPNPDevice_Kies.dll
2013-10-21 15:43 - 2009-11-04 21:30 - 000069632 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\StatusStrings.dll
2013-10-21 15:43 - 2009-11-04 21:37 - 001892352 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\xerces-c_2_7.dll
2013-10-21 15:43 - 2009-11-04 21:37 - 000077824 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\DTMessageLib.dll
2000-01-01 01:00 - 2019-02-15 06:52 - 001376768 _____ (Mozilla Corporation) [File not signed] C:\Users\snejdar\Desktop\Tor Browser\Browser\firefox.exe
2000-01-01 01:00 - 2019-02-15 06:52 - 000977920 _____ (Mozilla Foundation) [File not signed] C:\Users\snejdar\Desktop\Tor Browser\Browser\mozglue.dll
2000-01-01 01:00 - 2019-02-15 06:52 - 000224768 _____ (Mozilla Foundation) [File not signed] C:\Users\snejdar\Desktop\Tor Browser\Browser\lgpllibs.dll
2000-01-01 01:00 - 2019-02-15 06:52 - 001739264 _____ (Mozilla Foundation) [File not signed] C:\Users\snejdar\Desktop\Tor Browser\Browser\nss3.dll
2000-01-01 01:00 - 2019-02-15 06:52 - 082877983 _____ (Mozilla Foundation) [File not signed] C:\Users\snejdar\Desktop\Tor Browser\Browser\xul.dll
2000-01-01 01:00 - 2019-02-15 06:52 - 000200192 _____ (Mozilla Foundation) [File not signed] C:\Users\snejdar\Desktop\Tor Browser\Browser\softokn3.dll
2000-01-01 01:00 - 2019-02-15 06:52 - 000488960 _____ (Mozilla Foundation) [File not signed] C:\Users\snejdar\Desktop\Tor Browser\Browser\freebl3.dll
2000-01-01 01:00 - 2019-02-15 06:52 - 000365568 _____ (Mozilla Foundation) [File not signed] C:\Users\snejdar\Desktop\Tor Browser\Browser\nssckbi.dll
2000-01-01 01:00 - 2019-01-30 08:17 - 003791360 _____ () [File not signed] C:\Users\snejdar\Desktop\Tor Browser\Browser\TorBrowser\Tor\tor.exe
2000-01-01 01:00 - 2018-09-07 04:53 - 000107520 _____ () [File not signed] C:\Users\snejdar\Desktop\Tor Browser\Browser\TorBrowser\Tor\zlib1.dll
2000-01-01 01:00 - 2018-09-07 04:53 - 000278533 _____ () [File not signed] C:\Users\snejdar\Desktop\Tor Browser\Browser\TorBrowser\Tor\libssp-0.dll
2018-09-07 04:53 - 2018-09-07 04:53 - 000860748 _____ () [File not signed] C:\Users\snejdar\Desktop\Tor Browser\Browser\TorBrowser\Tor\libevent-2-1-6.dll
2000-01-01 01:00 - 2018-09-07 04:53 - 000991228 _____ () [File not signed] C:\Users\snejdar\Desktop\Tor Browser\Browser\TorBrowser\Tor\libgcc_s_sjlj-1.dll
2018-09-07 04:53 - 2018-09-07 04:53 - 000511930 _____ (MingW-W64 Project. All rights reserved.) [File not signed] C:\Users\snejdar\Desktop\Tor Browser\Browser\TorBrowser\Tor\libwinpthread-1.dll
2000-01-01 01:00 - 2018-12-12 07:05 - 002585371 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Users\snejdar\Desktop\Tor Browser\Browser\TorBrowser\Tor\LIBEAY32.dll
2000-01-01 01:00 - 2018-12-12 07:05 - 000788352 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Users\snejdar\Desktop\Tor Browser\Browser\TorBrowser\Tor\SSLEAY32.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2019-03-04 06:36 - 000000866 _____ C:\Windows\system32\drivers\etc\hosts

87.197.157.13 xweb-server.87.197.157.13

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\ADAP-KOOL\ServiceTool\SysDll;;C:\Program Files (x86)\Danfoss Drives\Communication Module\bin
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\Control Panel\Desktop\\Wallpaper -> C:\Users\snejdar\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AESTFilters => 2
MSCONFIG\Services: AgereModemAudio => 2
MSCONFIG\Services: btwdins => 2
MSCONFIG\Services: Com4QLBEx => 3
MSCONFIG\Services: DraftSight API Service => 2
MSCONFIG\Services: FLEXnet Licensing Service => 3
MSCONFIG\Services: FLEXnet Licensing Service 64 => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: hasplms => 2
MSCONFIG\Services: HP Power Assistant Service => 2
MSCONFIG\Services: HP Support Assistant Service => 2
MSCONFIG\Services: HP Wireless Assistant Service => 2
MSCONFIG\Services: HPDrvMntSvc.exe => 2
MSCONFIG\Services: hpqwmiex => 3
MSCONFIG\Services: HPSIService => 2
MSCONFIG\Services: hpsrv => 2
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: s7hspsvx => 2
MSCONFIG\Services: s7oiehsx64 => 2
MSCONFIG\Services: S7TraceServiceX => 2
MSCONFIG\Services: STacSV => 2
MSCONFIG\Services: TeamViewer => 2
MSCONFIG\Services: vcsFPService => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk => C:\Windows\pss\Bluetooth.lnk.CommonStartup
MSCONFIG\startupreg: Google Photos Backup => "C:\Users\snejdar\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe" /autostart
MSCONFIG\startupreg: HPPowerAssistant => C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe /hidden
MSCONFIG\startupreg: HPWirelessAssistant => C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe /hidden
MSCONFIG\startupreg: QlbCtrl.exe => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
MSCONFIG\startupreg: S7UB Start => "C:\Program Files (x86)\Common Files\Siemens\S7ubtoox\s7ubtstx.exe" -StartDB
MSCONFIG\startupreg: WinCC flexible Smart Start => "C:\Program Files (x86)\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008 Micro\HmiSmartStart.exe" /startup

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{B7E4C8EA-DFD7-43CE-8113-AA1FA458F3A0}] => (Allow) C:\windows\system32\hasplms.exe (SafeNet, Inc. -> SafeNet Inc.)
FirewallRules: [{F6A43008-F2E2-404D-9E01-5E329505B693}] => (Allow) C:\Users\dilna01e\Desktop\my\Prog\skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7E93919C-9A2F-4087-8CB3-4388E37E34C4}] => (Allow) C:\Program Files (x86)\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008 Micro\HmiES.exe (SIEMENS AG) [File not signed]
FirewallRules: [{1B9DE1B4-EB44-4C77-8F27-1A1104D9F5E0}] => (Allow) C:\Program Files (x86)\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008 Micro\TraceServer.exe (SIEMENS AG) [File not signed]
FirewallRules: [TCP Query User{197EBFA6-36B8-4181-92E6-5D88E717EA74}C:\program files (x86)\microsoft office\office12\outlook.exe] => (Block) C:\program files (x86)\microsoft office\office12\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{B4E0B513-2C72-457E-A985-9CB9992C07C9}C:\program files (x86)\microsoft office\office12\outlook.exe] => (Block) C:\program files (x86)\microsoft office\office12\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{BCD684C4-1C58-4A84-A19C-996E88B08A34}C:\programy\synchro\install\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\programy\synchro\install\myphoneexplorer\myphoneexplorer.exe (Franz Josef Wechselberger -> F.J. Wechselberger)
FirewallRules: [UDP Query User{E194B84A-E29E-4504-A3EB-A59215673F5C}C:\programy\synchro\install\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\programy\synchro\install\myphoneexplorer\myphoneexplorer.exe (Franz Josef Wechselberger -> F.J. Wechselberger)
FirewallRules: [{E172646B-D17D-47A2-9AF2-EA34C81FB689}] => (Allow) C:\Program Files (x86)\Common Files\Siemens\SQLANY\Dbsrv9.exe (iAnywhere Solutions, Inc. -> iAnywhere Solutions, Inc.)
FirewallRules: [{3BCE2F36-07E7-418C-A40D-3D96A7D63301}] => (Allow) C:\Program Files (x86)\Common Files\Siemens\SQLANY\Dbeng9.exe (iAnywhere Solutions, Inc. -> iAnywhere Solutions, Inc.)
FirewallRules: [{EAD2A583-F2E5-436A-8EE3-27EA3EFE8412}] => (Allow) C:\windows\SysWOW64\S7otbxsx.exe (Siemens AG -> Siemens AG)
FirewallRules: [{6EDB9A80-EA01-4904-843B-F3E44E08E1BE}] => (Allow) C:\Program Files (x86)\Siemens\Step7\S7INF\S7usiapx.exe (SIEMENS AG) [File not signed]
FirewallRules: [{A5778E11-64A4-42FF-AC30-1994F031C674}] => (Allow) C:\Program Files (x86)\Siemens\Step7\S7BIN\S7tgtopx.exe (Siemens AG -> SIEMENS AG)
FirewallRules: [{39708E90-C18D-4069-917A-6A5BB9A52C4B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1F42C241-F897-4A1D-9BB5-0861B170138E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{7EE3C438-54C0-4CAD-8AD1-DCFAB59964EB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer -> TeamViewer GmbH)
FirewallRules: [{F1A517D7-0454-4B94-980A-34A7DFA2F1AD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer -> TeamViewer GmbH)
FirewallRules: [{E52F25AE-2C60-498A-9CBE-3D830B36F0B4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer -> TeamViewer GmbH)
FirewallRules: [{9A078529-35A4-47E9-BAAB-D36E5E64DE7F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer -> TeamViewer GmbH)
FirewallRules: [{3C4D8C9C-26B3-494A-909C-701AC030C0ED}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer -> TeamViewer GmbH)
FirewallRules: [{C0EF5495-99CE-4C90-B339-5F7990A230C0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer -> TeamViewer GmbH)
FirewallRules: [{E71F2D2A-92D4-4B4E-8FF8-E965F5CCFC4B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer -> TeamViewer GmbH)
FirewallRules: [{767F4A13-6490-473A-90B9-3178494733E0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer -> TeamViewer GmbH)
FirewallRules: [{C8D71D02-CC1B-48A7-8F1A-4E0397F10F1C}] => (Allow) C:\Program Files (x86)\Common Files\Siemens\SQLANY\dbsrv9.exe (iAnywhere Solutions, Inc. -> iAnywhere Solutions, Inc.)
FirewallRules: [{EFECF3E2-84C8-4BC3-9D65-C9696EA8D872}] => (Allow) C:\Program Files (x86)\Common Files\Siemens\SQLANY\dbsrv9.exe (iAnywhere Solutions, Inc. -> iAnywhere Solutions, Inc.)
FirewallRules: [{46C8A18C-1544-4D59-91AC-76FD94B2FFAA}] => (Allow) C:\Program Files (x86)\Siemens\Step7\S7BIN\S7tgtopx.exe (Siemens AG -> SIEMENS AG)
FirewallRules: [{E66AC050-6872-4639-80E4-B035D6755EF5}] => (Allow) C:\Program Files (x86)\Siemens\Step7\S7BIN\S7tgtopx.exe (Siemens AG -> SIEMENS AG)
FirewallRules: [{AA7A5FDF-665C-490A-A810-2AF26716199D}] => (Allow) C:\Program Files (x86)\Siemens\Step7\S7INF\S7usiapx.exe (SIEMENS AG) [File not signed]
FirewallRules: [{A79923BE-C849-4D63-AF1A-8A9941CC9459}] => (Allow) C:\Program Files (x86)\Siemens\Step7\S7INF\S7usiapx.exe (SIEMENS AG) [File not signed]
FirewallRules: [{8EA8C556-C35E-4EC8-AFDA-890474E96B80}] => (Allow) C:\Windows\SysWOW64\s7otbxsx.exe (Siemens AG -> Siemens AG)
FirewallRules: [{9D033443-3AC0-4D01-8128-85A9786825E4}] => (Allow) C:\Windows\SysWOW64\s7otbxsx.exe (Siemens AG -> Siemens AG)
FirewallRules: [TCP Query User{644975F6-7915-43E5-BE45-6FC256316978}C:\program files (x86)\java\jre1.5.0_12\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.5.0_12\bin\javaw.exe
FirewallRules: [UDP Query User{32CBB1FA-3EEA-4189-B24F-C2DBA9F959C6}C:\program files (x86)\java\jre1.5.0_12\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.5.0_12\bin\javaw.exe
FirewallRules: [TCP Query User{536BFA3D-70A9-464C-9D93-6B150C1B9E41}C:\program files (x86)\java\jre1.5.0_12\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.5.0_12\bin\javaw.exe
FirewallRules: [UDP Query User{AA78DF8B-5A22-4B39-91E8-5DDF75DD3AD7}C:\program files (x86)\java\jre1.5.0_12\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.5.0_12\bin\javaw.exe
FirewallRules: [TCP Query User{C4FB832A-AEF3-4FDB-AEAE-3FDFF2231BC0}C:\ncengine\nctools\ncdrive\ncdrive.exe] => (Allow) C:\ncengine\nctools\ncdrive\ncdrive.exe (Vacon Plc) [File not signed]
FirewallRules: [UDP Query User{9D6A1D29-BFB1-4CC7-9D62-6417FFD96EB2}C:\ncengine\nctools\ncdrive\ncdrive.exe] => (Allow) C:\ncengine\nctools\ncdrive\ncdrive.exe (Vacon Plc) [File not signed]
FirewallRules: [{A133D9FD-E60A-4DE7-9B1F-E2BD3C10AE3A}] => (Allow) C:\Program Files (x86)\Lodam\BEST\BEST.exe (BITZER Kühlmaschinenbau GmbH) [File not signed]
FirewallRules: [{D543B9C2-5D53-46D2-B74A-E7506AEF2154}] => (Allow) C:\Program Files (x86)\Lodam\BEST\BEST.exe (BITZER Kühlmaschinenbau GmbH) [File not signed]
FirewallRules: [{57406A2D-D189-46AA-B605-20B037CFFA76}] => (Allow) C:\Program Files\AVG\Antivirus\avgAdminClientServicex.exe (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{1F07481A-5AB4-48D5-B239-DC69A0E3BF6F}] => (Allow) C:\Program Files\AVG\Antivirus\AvEmUpdate.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{7DBB6F98-1EA6-4A10-9138-9546D689626F}] => (Allow) C:\Program Files\AVG\Antivirus\AvEmUpdate.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{CB125519-75CC-4E73-9B4A-B110201FBE48}] => (Allow) C:\Program Files\AVG\Antivirus\avgAdminClientServicex.exe (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
FirewallRules: [TCP Query User{9F9F83B2-C6C2-44F5-B617-3E70E8461034}C:\program files (x86)\phoenix contact\clip project\marking\8.8.0\clipprojectmarking.exe] => (Allow) C:\program files (x86)\phoenix contact\clip project\marking\8.8.0\clipprojectmarking.exe (Phoenix Contact) [File not signed]
FirewallRules: [UDP Query User{3E905C04-A2F0-43A4-A01D-25367A261D1A}C:\program files (x86)\phoenix contact\clip project\marking\8.8.0\clipprojectmarking.exe] => (Allow) C:\program files (x86)\phoenix contact\clip project\marking\8.8.0\clipprojectmarking.exe (Phoenix Contact) [File not signed]
FirewallRules: [TCP Query User{583A30F1-10E7-44ED-A37A-FB129CA6A47C}C:\program files (x86)\phoenix contact\clip project\marking\8.8.0\clipprojectmarking.exe] => (Allow) C:\program files (x86)\phoenix contact\clip project\marking\8.8.0\clipprojectmarking.exe (Phoenix Contact) [File not signed]
FirewallRules: [UDP Query User{129B38CC-5206-4C87-8772-021322C4F075}C:\program files (x86)\phoenix contact\clip project\marking\8.8.0\clipprojectmarking.exe] => (Allow) C:\program files (x86)\phoenix contact\clip project\marking\8.8.0\clipprojectmarking.exe (Phoenix Contact) [File not signed]
FirewallRules: [TCP Query User{DCDAB355-2337-4F23-8537-DFE4758160BA}C:\program files\java\jdk1.8.0_191\bin\jmc.exe] => (Allow) C:\program files\java\jdk1.8.0_191\bin\jmc.exe (Oracle America, Inc. -> )
FirewallRules: [UDP Query User{6B715088-179B-4593-982B-1BF0494E5EAB}C:\program files\java\jdk1.8.0_191\bin\jmc.exe] => (Allow) C:\program files\java\jdk1.8.0_191\bin\jmc.exe (Oracle America, Inc. -> )
FirewallRules: [TCP Query User{A93791C4-1728-4683-BCC8-45E97FCAB195}C:\programy\nhl\mlbamproxy\x64\mlbamproxy.exe] => (Allow) C:\programy\nhl\mlbamproxy\x64\mlbamproxy.exe () [File not signed]
FirewallRules: [UDP Query User{E3258741-742D-4222-B85F-E417D03F4A66}C:\programy\nhl\mlbamproxy\x64\mlbamproxy.exe] => (Allow) C:\programy\nhl\mlbamproxy\x64\mlbamproxy.exe () [File not signed]
FirewallRules: [TCP Query User{745E321B-C56F-409E-97E1-1DD67A7E753B}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe (XBMC-Foundation) [File not signed]
FirewallRules: [UDP Query User{1C6C79A3-EB28-40EA-924F-773F781EF1BD}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe (XBMC-Foundation) [File not signed]
FirewallRules: [{F595DF84-966F-49B7-9E6A-31CAB2622D9F}] => (Allow) C:\Program Files\AVG\Antivirus\AvEmUpdate.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{B5860C8C-08BB-4495-B7F7-CC982C390AD1}] => (Allow) C:\Program Files\AVG\Antivirus\AvEmUpdate.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{9D869BFF-C241-484F-A885-1FB4B026A050}] => (Allow) C:\Program Files\AVG\Antivirus\avgAdminClientServicex.exe (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{7B2DB333-876F-4F0F-B243-2F21E7FFB687}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Ltd)
FirewallRules: [{191ECAD1-649B-4849-9CEA-A42552ACA740}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Ltd)
FirewallRules: [{FECBFBA9-25F3-4DCC-A1FF-38CAF0641928}] => (Allow) C:\programy\Danfoss\MCT\Install\MCT 10 Set-up Software.exe (Danfoss Drives, Inc.) [File not signed]
FirewallRules: [{7ADD1361-AC3A-45CA-B877-57DD30EAA705}] => (Allow) C:\programy\Danfoss\MCT\Install\MCT 10 Set-up Software.exe (Danfoss Drives, Inc.) [File not signed]
FirewallRules: [TCP Query User{CCF90F5F-AFFF-478F-A0F3-0D420F12E6A9}C:\program files (x86)\danfoss turbocor\tt service monitoring tools\315\bin\remoteserialmultiplexer.exe] => (Block) C:\program files (x86)\danfoss turbocor\tt service monitoring tools\315\bin\remoteserialmultiplexer.exe (Danfoss Turbocor) [File not signed]
FirewallRules: [UDP Query User{078E4770-4128-4083-BD8B-967DD24499CD}C:\program files (x86)\danfoss turbocor\tt service monitoring tools\315\bin\remoteserialmultiplexer.exe] => (Block) C:\program files (x86)\danfoss turbocor\tt service monitoring tools\315\bin\remoteserialmultiplexer.exe (Danfoss Turbocor) [File not signed]
FirewallRules: [{592178FE-CB82-47E5-BEDE-93D5F7396143}] => (Allow) C:\programy\Danfoss\MCT\Install\MCT 10 Set-up Software.exe (Danfoss Drives, Inc.) [File not signed]
FirewallRules: [{E5D42526-458F-47A8-88C1-52056313FC1A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)

==================== Restore Points =========================


==================== Faulty Device Manager Devices =============

Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (03/07/2019 05:52:46 AM) (Source: openvpnserv) (EventID: 0) (User: )
Description: Event-ID 0

Error: (03/06/2019 09:07:43 PM) (Source: openvpnserv) (EventID: 0) (User: )
Description: Event-ID 0

Error: (03/06/2019 11:08:42 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).

Error: (03/06/2019 05:51:08 AM) (Source: openvpnserv) (EventID: 0) (User: )
Description: Event-ID 0

Error: (03/05/2019 08:38:41 PM) (Source: openvpnserv) (EventID: 0) (User: )
Description: Event-ID 0

Error: (03/05/2019 11:47:40 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: hpasset.exe, verze: 3.0.8.1, časové razítko: 0x55b7ca1f
Název chybujícího modulu: hpasset.exe, verze: 3.0.8.1, časové razítko: 0x55b7ca1f
Kód výjimky: 0xc0000005
Posun chyby: 0x0000c557
ID chybujícího procesu: 0x1dfc
Čas spuštění chybující aplikace: 0x01d4d340d998065b
Cesta k chybující aplikaci: C:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPAsset\hpasset.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPAsset\hpasset.exe
ID zprávy: 188d07d3-3f34-11e9-85af-70f395801384

Error: (03/05/2019 11:47:11 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: hpasset.exe, verze: 3.0.8.1, časové razítko: 0x55b7ca1f
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.23915, časové razítko: 0x59b94a16
Kód výjimky: 0xc0000374
Posun chyby: 0x000ce85b
ID chybujícího procesu: 0x5e8
Čas spuštění chybující aplikace: 0x01d4d340c7ebaa48
Cesta k chybující aplikaci: C:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPAsset\hpasset.exe
Cesta k chybujícímu modulu: C:\Windows\SysWOW64\ntdll.dll
ID zprávy: 0752f1b1-3f34-11e9-85af-70f395801384

Error: (03/05/2019 07:42:33 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).


System errors:
=============
Error: (03/07/2019 05:52:55 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
Avguniva

Error: (03/07/2019 05:52:46 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba rixdpcie neuspěla při spuštění v důsledku následující chyby:
Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.

Error: (03/07/2019 05:52:46 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba risdpcie neuspěla při spuštění v důsledku následující chyby:
Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.

Error: (03/07/2019 05:52:46 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba rimspci neuspěla při spuštění v důsledku následující chyby:
Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.

Error: (03/07/2019 05:52:45 AM) (Source: Microsoft-Windows-GroupPolicy) (EventID: 1055) (User: NT AUTHORITY)
Description: Zpracování zásad skupiny selhalo. Systém Windows nerozpoznal název počítače. Může to být způsobeno jedním nebo více z následujících důvodů:
a) Selhal překlad IP adres v aktuálním řadiči domény.
b) Čekací doba replikace služby Active Directory (účet vytvořený na jiném řadiči domény nebyl replikován na aktuální řadič domény).

Error: (03/07/2019 05:52:45 AM) (Source: NETLOGON) (EventID: 5719) (User: )
Description: Tento počítač nemohl nastavit zabezpečenou relaci s řadičem
domény v doméně SINOP z následujícího důvodu:
Pro vyřízení žádosti o přihlášení nejsou nyní k dispozici žádné přihlašovací servery.


To může vést k potížím při ověřování. Přesvědčte se, zda je tento
počítač připojen k síti. Pokud potíže trvají,
obraťte se na správce domény.



DALŠÍ INFORMACE

Pokud je tento počítač řadičem domény pro určenou doménu,
nastaví zabezpečenou relaci s emulátorem primárního řadiče domény v určené
doméně. V opačném případě tento počítač nastaví zabezpečenou relaci s libovolným řadičem domény
v určené doméně.

Error: (03/06/2019 09:08:32 PM) (Source: Microsoft-Windows-GroupPolicy) (EventID: 1129) (User: SINOP)
Description: Zpracování zásad skupiny selhalo v důsledku toho, že se nebylo v síti možné připojit k řadiči domény. Může se jednat o přechodný stav. Po připojení počítače k řadiči domény a úspěšném zpracování zásad skupiny bude odeslána zpráva o úspěšné provedení těchto akcí. Pokud se tato zpráva nezobrazí během několika hodin, obraťte se na správce.

Error: (03/06/2019 09:07:52 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
Avguniva


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5 CPU M 520 @ 2.40GHz
Percentage of memory in use: 80%
Total physical RAM: 6005.33 MB
Available physical RAM: 1189.69 MB
Total Virtual: 12008.84 MB
Available Virtual: 6853.73 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.66 GB) (Free:339.35 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive i: (DATA_FIRMA) (Network) (Total:300 GB) (Free:74.25 GB) NTFS
Drive k: (DATA_01_2) (Network) (Total:400 GB) (Free:81.68 GB) NTFS
Drive r: (DATA_01_4) (Network) (Total:1000 GB) (Free:104.27 GB) NTFS
Drive s: (DATA_01_1) (Network) (Total:999.87 GB) (Free:385.4 GB) NTFS
Drive u: (USER_DISKY) (Network) (Total:8999.87 GB) (Free:662.4 GB) NTFS

\\?\Volume{9a43eba1-c4c5-11e5-b6f5-806e6f6e6963}\ () (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 96BF0845)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

[Rudy]

Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

[stoker303]

# -------------------------------
# Malwarebytes AdwCleaner 7.2.7.0
# -------------------------------
# Build: 01-30-2019
# Database: 2019-03-04.3 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 03-08-2019
# Duration: 00:00:01
# OS: Windows 7 Professional
# Cleaned: 10
# Failed: 4


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\ProgramData\apn

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKU\S-1-5-18\Software\AskPartnerNetwork
Deleted HKU\.DEFAULT\Software\AskPartnerNetwork
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{7697BC38-D0FA-454B-AC75-968B4CCABFCE}
Deleted HKLM\Software\Classes\Interface\{7697BC38-D0FA-454B-AC75-968B4CCABFCE}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4F524A2D-5637-4300-76A7-7A786E7484D7}
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4F524A2D-5637-4300-76A7-7A786E7484D7}

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

Not Deleted http://www.slunecnice.cz/vyhledavani/
Not Deleted slunecnice.cz
Not Deleted http://www.slunecnice.cz/vyhledavani/
Not Deleted http://www.slunecnice.cz/vyhledavani/


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [2451 octets] - [08/03/2019 09:18:13]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

[Rudy]

Dejte nové logy FRST+Addition.

[stoker303]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03.03.2019
Ran by snejdar (administrator) on SINOP69 (08-03-2019 10:27:54)
Running from C:\Users\snejdar\Desktop
Loaded Profiles: snejdar (Available Profiles: sinop & dilna01e & snejdar & oem)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation -> ) C:\Windows\System32\nvwmi64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation -> ) C:\Windows\System32\nvwmi64.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\afwServ.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgAdminClientServicex.exe
(Dassault Systèmes) [File not signed] C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe
(Foxit Software Incorporated -> Foxit Software Inc.) C:\programy\Foxit Reader\Install\FoxitConnectedPDFService.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() [File not signed] C:\programy\Danfoss\MCT\Install\MCTServ.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
(OpenVPN Technologies, Inc. -> The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpnserv.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\x64\aswidsagenta.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Google Inc -> Google Inc.) C:\Users\snejdar\AppData\Local\Google\Update\GoogleUpdate.exe
(OpenVPN Technologies, Inc. -> ) C:\Program Files\OpenVPN\bin\openvpn-gui.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe
(NEC Electronics Corporation) [File not signed] C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Google Inc -> Google Inc.) C:\Users\snejdar\AppData\Local\Google\Update\GoogleUpdate.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation-Mobile Wireless Group -> Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel Corporation-Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAAnotif] => C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2015-06-02] (Intel Corporation -> Intel Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2174760 2010-06-04] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2727568 2015-06-02] (NVIDIA Corporation -> )
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [489472 2015-06-02] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [290064 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [NUSB3MON] => c:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [106496 2009-11-21] (NEC Electronics Corporation) [File not signed]
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [111640 2009-11-04] (Intel Corporation -> )
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [318128 2016-11-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\...\Run: [Google Update] => C:\Users\snejdar\AppData\Local\Google\Update\GoogleUpdate.exe [154440 2016-02-25] (Google Inc -> Google Inc.)
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\...\Run: [OPENVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [632448 2017-05-11] (OpenVPN Technologies, Inc. -> )
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\...\MountPoints2: D - D:\AK2Install.exe
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\...\MountPoints2: {b57b48b7-9e7f-11e7-a312-88ae1daac194} - D:\AK2Install.exe
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\...\MountPoints2: {e564ddf1-4bda-11e4-8afa-70f395801384} - D:\SISetup.exe
HKLM\...\Providers\Internet Print Provider: inetpp.dll
HKLM\...\Providers\LanMan Print Services: C:\Windows\SysWOW64\win32spl.dll [497664 2017-08-11] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [183808 2010-12-07] () [File not signed]
HKLM\...\Drivers32: [VIDC.YV12] => C:\Windows\SysWOW64\yv12vfw.dll [237568 2010-11-03] (www.helixcommunity.org) [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\SysWOW64\ac3acm.acm [151552 2010-01-17] (fccHandler) [File not signed]
HKLM\...\Drivers32: [msacm.lameacm] => C:\Windows\SysWOW64\lameACM.acm [839680 2008-09-24] (hxxp://www.mp3dev.org/) [File not signed]
HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\SysWOW64\ff_vfw.dll [80896 2010-12-27] () [File not signed]
HKLM\Software\...\AppCompatFlags\Custom\NB-Designer.exe: [{32d6b63a-91ea-4d13-8406-cabbc060ceca}.sdb] -> NB-Designer compatibility database
HKLM\Software\...\AppCompatFlags\Custom\s7hspinx.exe: [{4ac674af-8b5c-40f0-a03e-76624e329461}.sdb] -> SIMATIC STEP 7 Advanced Services
HKLM\Software\...\AppCompatFlags\Custom\S7HWCNFX.EXE: [{4ac674af-8b5c-40f0-a03e-76624e329461}.sdb] -> SIMATIC STEP 7 Advanced Services
HKLM\Software\...\AppCompatFlags\Custom\S7kafapx.exe: [{4ac674af-8b5c-40f0-a03e-76624e329461}.sdb] -> SIMATIC STEP 7 Advanced Services
HKLM\Software\...\AppCompatFlags\Custom\S7ntdapx.exe: [{4ac674af-8b5c-40f0-a03e-76624e329461}.sdb] -> SIMATIC STEP 7 Advanced Services
HKLM\Software\...\AppCompatFlags\Custom\S7tgtopx.exe: [{4ac674af-8b5c-40f0-a03e-76624e329461}.sdb] -> SIMATIC STEP 7 Advanced Services
HKLM\Software\...\AppCompatFlags\Custom\S7USFAPX.exe: [{4ac674af-8b5c-40f0-a03e-76624e329461}.sdb] -> SIMATIC STEP 7 Advanced Services
HKLM\Software\...\AppCompatFlags\Custom\S7usiapx.exe: [{4ac674af-8b5c-40f0-a03e-76624e329461}.sdb] -> SIMATIC STEP 7 Advanced Services
HKLM\Software\...\AppCompatFlags\Custom\s7utpapx.exe: [{4ac674af-8b5c-40f0-a03e-76624e329461}.sdb] -> SIMATIC STEP 7 Advanced Services
HKLM\Software\...\AppCompatFlags\Custom\Siemens.Simatic.Pct.ApplicationLoader.exe: [{15861d9f-b664-4b88-9140-dad52ba7ee41}.sdb] -> SIMATIC S7-PCT Advanced Services
HKLM\Software\...\AppCompatFlags\InstalledSDB\{15861d9f-b664-4b88-9140-dad52ba7ee41}: [DatabasePath] -> C:\windows\AppPatch\Custom\{15861d9f-b664-4b88-9140-dad52ba7ee41}.sdb [2010-06-08]
HKLM\Software\...\AppCompatFlags\InstalledSDB\{32d6b63a-91ea-4d13-8406-cabbc060ceca}: [DatabasePath] -> C:\Windows\AppPatch\Custom\{32d6b63a-91ea-4d13-8406-cabbc060ceca}.sdb [2016-04-06]
HKLM\Software\...\AppCompatFlags\InstalledSDB\{4ac674af-8b5c-40f0-a03e-76624e329461}: [DatabasePath] -> C:\windows\AppPatch\Custom\{4ac674af-8b5c-40f0-a03e-76624e329461}.sdb [2014-05-07]
HKLM\Software\Microsoft\Active Setup\Installed Components: [OpenVPN_UserSetup] -> reg add HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /t REG_SZ /d "C:\Program Files\OpenVPN\bin\openvpn-gui.exe" /f
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.121\Installer\chrmstp.exe [2019-03-06] (Google LLC -> Google Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2009-09-04] (Broadcom Corporation -> Broadcom Corporation.)
HKLM\Software\...\Authentication\Credential Providers: [{8bf9a910-a8ff-457f-999f-a5ca10b4a885}] -> C:\Windows\SysWOW64\SmartcardCredentialProvider.dll [2013-10-04] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{94596c7e-3744-41ce-893e-bbf09122f76a}] -> C:\Windows\SysWOW64\SmartcardCredentialProvider.dll [2013-10-04] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{0ACDD40C-75AC-47ab-BAA0-BF6DE7E7FE63}] -> C:\Windows\SysWOW64\wlgpclnt.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{0E28E245-9368-4853-AD84-6DA3BA35BB75}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{17D89FEC-5C44-4972-B12D-241CAEF74509}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{1A6364EB-776B-4120-ADE1-B63A406A76B5}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{25537BA6-77A8-11D2-9B6C-0000F8080861}] -> C:\Windows\SysWOW64\fdeploy.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{3A0DBA37-F8B2-4356-83DE-3E90BD5C261F}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{426031c0-0b47-4852-b0ca-ac3d37bfcb39}] -> C:\Windows\SysWOW64\gptext.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{42B5FAAE-6536-11d2-AE5A-0000F87571E3}] -> C:\Windows\SysWOW64\gpscript.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{5794DAFD-BE60-433f-88A2-1A31939AC01F}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{6232C319-91AC-4931-9385-E70C2B099F0E}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{6A4C88C6-C502-4f74-8F60-2CB23EDC24E2}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{7150F9BF-48AD-4da4-A49C-29EF4A8369BA}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{728EE579-943C-4519-9EF7-AB56765798ED}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{74EE6C03-5363-4554-B161-627540339CAB}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{827D319E-6EAC-11D2-A4EA-00C04F79F83A}] -> C:\Windows\SysWOW64\scecli.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{91FBB303-0CD5-4055-BF42-E512A681B325}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{A3F3E39B-5D83-4940-B954-28315B82F0A8}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{AADCED64-746C-4633-A97C-D61349046527}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{B087BE9D-ED37-454f-AF9C-04291E351182}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{B587E2B1-4D59-4e7e-AED9-22B9DF11D053}] -> C:\Windows\SysWOW64\dot3gpclnt.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{BC75B1ED-5833-4858-9BB8-CBF0B166DF9D}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{C418DD9D-0D14-4efb-8FBF-CFE535C8FAC7}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{c6dc5466-785a-11d2-84d0-00c04fb169f7}] -> C:\Windows\SysWOW64\appmgmts.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{cdeafc3d-948d-49dd-ab12-e578ba4af7aa}] -> C:\Windows\SysWOW64\gptext.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{E47248BA-94CC-49c4-BBB5-9EB7F05183D0}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{E4F48E54-F38D-4884-BFB9-D4D2E5729C18}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{E5094040-C46C-4115-B030-04FB2E545B00}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{E62688F0-25FD-4c90-BFF5-F508B9D2E31F}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{f3ccc681-b74c-4060-9f26-cd84525dca2a}] -> auditcse.dll
HKLM\Software\...\Winlogon\GPExtensions: [{F9C77450-3A41-477E-9310-9ACD617BD9E3}] -> C:\Windows\SysWOW64\gpprefcl.dll [2016-05-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{FB2CA36D-0B40-4307-821B-A13B252DE56C}] -> C:\Windows\SysWOW64\gptext.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{fbf687e6-f063-4d9f-9f4f-fd9a26acdd5f}] -> C:\Windows\SysWOW64\gptext.dll [2009-07-14] (Microsoft Windows -> Microsoft Corporation)
Startup: C:\Users\snejdar\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office Outlook 2007.lnk [2014-03-18]
ShortcutTarget: Microsoft Office Outlook 2007.lnk -> C:\Windows\Installer\{91120000-0031-0000-0000-0000000FF1CE}\outicon.exe (Microsoft Corporation -> )

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 87.197.157.13 xweb-server.87.197.157.13
Tcpip\..\Interfaces\{50D20BE7-5096-4723-89B0-B16B95B22806}: [DhcpNameServer] 192.168.1.254

Internet Explorer:
==================
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.sinop.cz/
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com
SearchScopes: HKLM -> DefaultScope {80F13005-1D04-4230-B5F8-9E0C19246A9B} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {80F13005-1D04-4230-B5F8-9E0C19246A9B} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {80F13005-1D04-4230-B5F8-9E0C19246A9B} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {80F13005-1D04-4230-B5F8-9E0C19246A9B} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-1350338271-1762688309-1791207727-1488 -> DefaultScope {80F13005-1D04-4230-B5F8-9E0C19246A9B} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_191\bin\ssv.dll [2018-11-26] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-11-26] (Oracle America, Inc. -> Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard Company -> Hewlett-Packard)
BHO-x32: SSVHelper Class -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll [2018-11-26] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Pomocník pro přihlášení ke službě Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-11-26] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard Company -> Hewlett-Packard)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Software Sarl -> Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\snejdar\AppData\Roaming\Mozilla\Firefox\Profiles\6z6r6mvy.default [2019-02-06]
FF Homepage: Mozilla\Firefox\Profiles\6z6r6mvy.default -> hxxp://www.sinop.cz/
FF Plugin: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-11-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-11-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-11-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-11-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc -> Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc -> Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-02-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1350338271-1762688309-1791207727-1488: @tools.google.com/Google Update;version=3 -> C:\Users\snejdar\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc -> Google Inc.)
FF Plugin HKU\S-1-5-21-1350338271-1762688309-1791207727-1488: @tools.google.com/Google Update;version=9 -> C:\Users\snejdar\AppData\Local\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc -> Google Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Default [2019-03-08]
CHR Extension: (Docs) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Google Drive) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-26]
CHR Extension: (YouTube) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Google Search) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-02]
CHR Extension: (Google Docs Offline) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-23]
CHR Extension: (Video Adblocker for Youtube™ Extension) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Default\Extensions\hflefjhkfeiaignkclmphmokmmbhbhik [2018-12-25]
CHR Extension: (FormApps Extension) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2017-06-16]
CHR Extension: (Chrome Web Store Payments) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-04]
CHR Extension: (Gmail) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-01]
CHR Extension: (Chrome Media Router) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-02-15]
CHR Profile: C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-02-06]
CHR Profile: C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Profile 1 [2019-02-06]
CHR Extension: (Google Slides) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-12-19]
CHR Extension: (Google Docs) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2016-12-19]
CHR Extension: (Google Drive) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-19]
CHR Extension: (YouTube) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-19]
CHR Extension: (Google Sheets) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-12-19]
CHR Extension: (Google Docs Offline) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-12-19]
CHR Extension: (Chrome Web Store Payments) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-12-19]
CHR Extension: (Gmail) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-12-19]
CHR Extension: (Chrome Media Router) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-19]
CHR Profile: C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\System Profile [2019-02-06]
CHR Extension: (Google Slides) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-22]
CHR Extension: (Google Docs) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-22]
CHR Extension: (Google Drive) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-06-22]
CHR Extension: (YouTube) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-06-22]
CHR Extension: (Google Search) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-06-22]
CHR Extension: (Google Sheets) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-22]
CHR Extension: (Gmail) - C:\Users\snejdar\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-22]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 AESTFilters; C:\Program Files\IDT\WDM\AESTSr64.exe [89600 2015-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Andrea Electronics Corporation)
S4 AgereModemAudio; C:\Program Files\LSI SoftModem\agr64svc.exe [16896 2009-08-03] (Microsoft Windows Hardware Compatibility Publisher -> LSI Corporation)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [324048 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 AVG Firewall; C:\Program Files\AVG\Antivirus\afwServ.exe [338688 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 avgAdminClient; C:\Program Files\AVG\Antivirus\avgAdminClientServicex.exe [77000 2018-12-11] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\x64\aswidsagenta.exe [8237160 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 DraftSight API Service; C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe [123392 2017-10-06] (Dassault Systèmes) [File not signed]
R2 FoxitReaderService; C:\programy\Foxit Reader\Install\FoxitConnectedPDFService.exe [1659592 2016-12-29] (Foxit Software Incorporated -> Foxit Software Inc.)
S4 hasplms; C:\windows\system32\hasplms.exe [4180576 2010-09-27] (SafeNet, Inc. -> SafeNet Inc.)
S4 HPSIService; C:\windows\system32\HPSIsvc.exe [126520 2009-12-03] (Hewlett-Packard Company -> HP)
S3 InforVisualDrillback; C:\Infor\VISUAL Enterprise\VISUAL Manufacturing\http2vm.exe [6971651 2009-10-14] () [File not signed]
R2 MCT10 Service; C:\programy\Danfoss\MCT\Install\MCTServ.exe [310784 2019-01-15] () [File not signed]
R2 MSSQL$WINCCFLEXEXPRESS; c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation -> Microsoft Corporation)
R2 NVWMI; C:\Windows\system32\nvwmi64.exe [2692296 2015-06-02] (NVIDIA Corporation -> )
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [15872 2016-11-25] ( ) [File not signed]
R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [72832 2017-05-11] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [72832 2017-05-11] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S4 s7hspsvx; C:\Program Files (x86)\Common Files\Siemens\bin\s7hspsvx.exe [32818 2014-05-07] (SIEMENS AG) [File not signed]
S4 s7oiehsx64; C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\s7oiehsx64.exe [144608 2014-03-19] (Siemens AG -> Siemens AG)
S4 S7TraceServiceX; C:\Program Files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceService64X.exe [472288 2014-03-19] (Siemens AG -> Siemens AG)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-07-22] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
S4 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [271360 2015-06-02] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer -> TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 abbdcdc_x64; C:\Windows\System32\DRIVERS\abbdcdc_x64.sys [76016 2017-05-12] (Thesycon Systemsoftware Consulting GmbH -> )
R3 Accelerometer; C:\Windows\System32\DRIVERS\Accelerometer.sys [43320 2011-05-13] (Hewlett-Packard Company -> Hewlett-Packard Company)
R3 AgereSoftModem; C:\Windows\System32\DRIVERS\agrsm64.sys [1208320 2009-08-03] (Microsoft Windows Hardware Compatibility Publisher -> LSI Corporation)
R2 aksdf; C:\windows\system32\drivers\aksdf.sys [75648 2010-07-27] (Microsoft Windows Hardware Compatibility Publisher -> SafeNet Inc.)
R2 aksfridge; C:\windows\system32\drivers\aksfridge.sys [131072 2010-09-27] (Microsoft Windows Hardware Compatibility Publisher -> SafeNet Inc.)
S3 akshasp; C:\Windows\System32\DRIVERS\akshasp.sys [53760 2009-03-13] (Microsoft Windows Hardware Compatibility Publisher -> Aladdin Knowledge Systems Ltd.)
S3 aksusb; C:\Windows\System32\DRIVERS\aksusb.sys [25344 2009-03-13] (Microsoft Windows Hardware Compatibility Publisher -> Aladdin Knowledge Systems Ltd.)
R3 AMPPAL; C:\Windows\System32\DRIVERS\AMPPAL.sys [198144 2012-03-15] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 AMPPALP; C:\Windows\System32\DRIVERS\amppal.sys [198144 2012-03-15] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [201504 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgbdisk; C:\Windows\System32\drivers\avgbdiska.sys [175536 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdrivera.sys [231104 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\Windows\System32\drivers\avgbidsha.sys [202528 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgblog; C:\Windows\System32\drivers\avgbloga.sys [346840 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\Windows\System32\drivers\avgbuniva.sys [59744 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
S3 avgHwid; C:\Windows\System32\drivers\avgHwid.sys [46648 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\Windows\System32\drivers\avgKbd.sys [42552 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [163256 2019-01-18] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R3 avgNetNd6; C:\Windows\System32\DRIVERS\avgNetNd6.sys [29944 2018-10-18] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
R1 avgNetSec; C:\Windows\System32\drivers\avgNetSec.sys [512104 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [112040 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [87680 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [1028920 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\Windows\System32\drivers\avgSP.sys [469520 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\Windows\System32\drivers\avgStm.sys [208712 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [380704 2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R3 btwaudio; C:\Windows\System32\drivers\btwaudio.sys [98344 2009-09-17] (Broadcom Corporation -> Broadcom Corporation.)
R3 btwavdt; C:\Windows\System32\drivers\btwavdt.sys [132648 2009-09-17] (Broadcom Corporation -> Broadcom Corporation.)
R3 btwl2cap; C:\Windows\System32\DRIVERS\btwl2cap.sys [35104 2009-09-17] (Broadcom Corporation -> Broadcom Corporation.)
R3 btwrchid; C:\Windows\System32\DRIVERS\btwrchid.sys [21160 2009-09-17] (Broadcom Corporation -> Broadcom Corporation.)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [130688 2016-07-22] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 dpmconv; C:\Windows\System32\DRIVERS\dpmconv.sys [259584 2013-08-07] (Microsoft Windows Hardware Compatibility Publisher -> Siemens AG)
S3 FTDIBUS; C:\Windows\System32\drivers\ftdibus.sys [94704 2014-01-31] (Future Technology Devices International Ltd -> FTDI Ltd.)
S3 FTSER2K; C:\Windows\System32\drivers\ftser2k.sys [86896 2014-01-31] (Future Technology Devices International Ltd -> FTDI Ltd.)
S3 GTCUSBR; C:\Windows\System32\Drivers\GTCUSBR.SYS [25088 2009-10-19] (Graphtec Corporation -> Graphtec Corp.)
R2 hardlock; C:\windows\system32\drivers\hardlock.sys [318464 2009-03-13] (Microsoft Windows Hardware Compatibility Publisher -> Aladdin Knowledge Systems Ltd.)
R0 hpdskflt; C:\Windows\System32\DRIVERS\hpdskflt.sys [30008 2011-05-13] (Hewlett-Packard Company -> Hewlett-Packard Company)
R3 HpqKbFiltr; C:\Windows\System32\DRIVERS\HpqKbFiltr.sys [18432 2009-04-29] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Development Company, L.P.)
R3 Impcd; C:\Windows\System32\DRIVERS\Impcd.sys [151936 2009-10-26] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
S3 mvusbews; C:\Windows\System32\Drivers\mvusbews.sys [20480 2012-12-24] (Microsoft Windows Hardware Compatibility Publisher -> Marvell Semiconductor, Inc.)
S3 NETw5s64; C:\Windows\System32\DRIVERS\NETw5s64.sys [7675392 2010-01-13] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 NETwNs64; C:\Windows\System32\DRIVERS\NETwNs64.sys [8507392 2015-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
R3 nusb3hub; C:\Windows\system32\DRIVERS\nusb3hub.sys [75776 2009-11-21] (Microsoft Windows Hardware Compatibility Publisher -> NEC Electronics Corporation)
R3 nusb3xhc; C:\Windows\system32\DRIVERS\nusb3xhc.sys [177152 2009-11-21] (Microsoft Windows Hardware Compatibility Publisher -> NEC Electronics Corporation)
R2 rimmptsk; C:\Windows\system32\DRIVERS\rimmpx64.sys [67584 2009-06-26] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
S2 rimspci; C:\Windows\system32\DRIVERS\rimspe64.sys [61952 2009-10-26] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
R2 rimsptsk; C:\Windows\system32\DRIVERS\rimspx64.sys [55296 2009-06-26] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
S2 risdpcie; C:\Windows\system32\DRIVERS\risdpe64.sys [79360 2009-10-29] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
R3 rismcx64; C:\Windows\System32\DRIVERS\rismcx64.sys [59008 2009-07-20] (Microsoft Windows Hardware Compatibility Publisher -> RICOH Company, Ltd.)
R2 rismxdp; C:\Windows\system32\DRIVERS\rixdpx64.sys [57856 2009-06-26] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
S2 rixdpcie; C:\Windows\system32\DRIVERS\rixdpe64.sys [55808 2009-09-29] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
R3 s7odpx2x64; C:\Windows\System32\DRIVERS\s7odpx2x64.sys [71168 2012-12-19] (Microsoft Windows Hardware Compatibility Publisher -> SIEMENS AG)
R3 s7oppinx64; C:\Windows\System32\DRIVERS\s7oppinx64.sys [107520 2012-07-24] (Microsoft Windows Hardware Compatibility Publisher -> SIEMENS AG)
R3 s7oserix64; C:\Windows\System32\Drivers\s7oserix64.sys [121856 2012-07-24] (Microsoft Windows Hardware Compatibility Publisher -> SIEMENS AG)
R3 s7osmcax64; C:\Windows\System32\DRIVERS\s7osmcax64.sys [199680 2012-07-24] (Microsoft Windows Hardware Compatibility Publisher -> SIEMENS AG)
R3 s7osobux64; C:\Windows\System32\DRIVERS\s7osobux64.sys [153600 2012-07-24] (Microsoft Windows Hardware Compatibility Publisher -> SIEMENS AG)
R3 s7otmcd64x; C:\Windows\System32\Drivers\s7otmcd64x.sys [199680 2012-07-24] (Microsoft Windows Hardware Compatibility Publisher -> SIEMENS AG)
R3 s7otranx64; C:\Windows\System32\DRIVERS\s7otranx64.sys [262656 2014-03-07] (Microsoft Windows Hardware Compatibility Publisher -> Siemens AG)
R3 s7otsadx64; C:\Windows\System32\DRIVERS\s7otsadx64.sys [196096 2012-07-24] (Microsoft Windows Hardware Compatibility Publisher -> SIEMENS AG)
R2 s7ousbu64x; C:\Windows\System32\DRIVERS\s7ousbu64x.sys [138240 2014-02-21] (Microsoft Windows Hardware Compatibility Publisher -> Siemens AG)
R2 s7sn2srtx; C:\Windows\System32\DRIVERS\s7sn2srtx.sys [83032 2012-05-09] (SIEMENS AG -> SIEMENS AG)
R3 sd0007322081041363_kcanv; C:\Windows\System32\DRIVERS\danfosskcanv.sys [68304 2014-07-11] (Kvaser AB -> Danfoss, SWEDEN)
R3 Ser2pl; C:\Windows\System32\DRIVERS\ser2pl64.sys [167936 2013-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Prolific Technology Inc.)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1798400 2009-12-18] (Microsoft Windows Hardware Compatibility Publisher -> )
R2 SNTIE; C:\Windows\System32\DRIVERS\sntie.sys [359648 2013-10-28] (Siemens AG -> Siemens AG)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [164992 2016-07-22] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 STHDA; C:\Windows\System32\DRIVERS\stwrt64.sys [515584 2015-06-02] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
R3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 vsnl2ada; C:\Windows\System32\DRIVERS\vsnl2ada.sys [128000 2013-08-07] (Microsoft Windows Hardware Compatibility Publisher -> SIEMENS AG)
S0 Avguniva; system32\DRIVERS\avguniva.sys [X]
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
U4 eabfiltr; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-03-08 09:17 - 2019-03-08 09:22 - 000000000 ____D C:\AdwCleaner
2019-03-08 09:17 - 2019-03-08 09:17 - 007316688 _____ (Malwarebytes) C:\Users\snejdar\Desktop\adwcleaner_7.2.7.0.exe
2019-03-08 05:56 - 2019-03-08 05:56 - 000053725 _____ C:\Users\snejdar\Downloads\haccp_20190308055630.pdf
2019-03-07 10:12 - 2019-03-07 10:12 - 011553027 _____ C:\Users\snejdar\Downloads\XWEB EVO uzivatelsky navod CZ 5.3.0 v3 (4).pdf
2019-03-07 08:58 - 2019-03-07 08:58 - 011553027 _____ C:\Users\snejdar\Downloads\XWEB EVO uzivatelsky navod CZ 5.3.0 v3 (3).pdf
2019-03-07 05:57 - 2019-03-08 10:28 - 000041270 _____ C:\Users\snejdar\Desktop\FRST.txt
2019-03-07 05:55 - 2019-03-08 10:27 - 000000000 ____D C:\FRST
2019-03-07 05:55 - 2019-03-07 05:55 - 002434560 _____ (Farbar) C:\Users\snejdar\Desktop\FRST64.exe
2019-03-06 12:55 - 2019-03-06 12:56 - 008505335 _____ C:\Users\snejdar\Downloads\XC1000D-GB.pdf
2019-03-06 11:26 - 2019-03-06 11:26 - 000218589 _____ C:\Users\snejdar\Downloads\04_08-brezen-2019.pdf
2019-03-06 06:05 - 2019-03-06 06:05 - 000435571 _____ C:\Users\snejdar\Downloads\XEV22D_v13.pdf
2019-03-05 10:07 - 2019-03-05 10:07 - 000186810 _____ C:\Users\snejdar\Downloads\Podaci_listek_avizovani_vpis.pdf
2019-03-05 05:58 - 2019-03-05 05:58 - 000049693 _____ C:\Users\snejdar\Downloads\Vypis_z_uctu-2301305536_20190201-20190228_cislo-2.pdf
2019-03-04 19:41 - 2019-03-04 19:41 - 000137065 _____ C:\Users\snejdar\Downloads\5405_25.pdf
2019-03-04 12:43 - 2019-03-04 12:43 - 000040229 _____ C:\Users\snejdar\Downloads\fqr_20190304124333.pdf
2019-03-04 12:31 - 2019-03-04 12:31 - 000039925 _____ C:\Users\snejdar\Downloads\export_20190303_20190304.csv
2019-03-04 09:02 - 2019-03-04 09:02 - 000010987 _____ C:\Users\snejdar\Downloads\export_20190303_20190304.xlsx
2019-03-04 08:14 - 2019-03-04 08:14 - 003723777 _____ C:\Users\snejdar\Downloads\RS8FS402_AK-CC550A.pdf
2019-03-04 07:50 - 2019-03-04 07:50 - 011553027 _____ C:\Users\snejdar\Downloads\XWEB EVO uzivatelsky navod CZ 5.3.0 v3 (2).pdf
2019-03-02 13:27 - 2019-03-02 13:27 - 000101910 _____ C:\Users\snejdar\Downloads\2.pdf
2019-03-02 13:27 - 2019-03-02 13:27 - 000084661 _____ C:\Users\snejdar\Downloads\3.pdf
2019-03-02 13:27 - 2019-03-02 13:27 - 000075548 _____ C:\Users\snejdar\Downloads\1.pdf
2019-03-02 13:27 - 2019-03-02 13:27 - 000073596 _____ C:\Users\snejdar\Downloads\5.pdf
2019-03-02 13:27 - 2019-03-02 13:27 - 000067402 _____ C:\Users\snejdar\Downloads\4.pdf
2019-02-28 18:42 - 2017-11-02 18:01 - 000217600 _____ (Eaton Automation) C:\Users\snejdar\Desktop\RemoteClient.exe
2019-02-28 17:21 - 2019-02-28 17:21 - 000010337 _____ C:\Users\snejdar\Desktop\Auriga Report.xlsx
2019-02-23 20:44 - 2019-02-23 20:44 - 000766237 _____ C:\Users\snejdar\Downloads\duster-price.pdf
2019-02-22 18:08 - 2019-02-22 18:08 - 000833459 _____ C:\Users\snejdar\Downloads\MCX061V_DS_DKRCC.PD.RI0.F5.02_AZ.pdf
2019-02-22 16:53 - 2019-02-22 16:53 - 001365409 _____ C:\Users\snejdar\Downloads\AC_MCX061V_DKRCC.PD.RI0.F3.02_520H6595.pdf
2019-02-22 14:08 - 2019-02-22 14:08 - 001841421 _____ C:\Users\snejdar\Downloads\RI8PZ4ML_AK-PC551.pdf
2019-02-22 14:08 - 2019-02-22 14:08 - 001523179 _____ C:\Users\snejdar\Downloads\RS8GY202_AK-PC551 (1).pdf
2019-02-22 13:48 - 2019-02-22 13:48 - 006785449 _____ C:\Users\snejdar\Downloads\AK-SM 850 ENG.pdf
2019-02-22 13:45 - 2019-02-22 13:45 - 001523179 _____ C:\Users\snejdar\Downloads\RS8GY202_AK-PC551.pdf
2019-02-22 13:42 - 2019-02-22 13:42 - 005124532 _____ C:\Users\snejdar\Downloads\EM24DIN DUPLINE IM ML 061207.pdf
2019-02-22 13:42 - 2019-02-22 13:42 - 005124532 _____ C:\Users\snejdar\Downloads\EM24DIN DUPLINE IM ML 061207 (1).pdf
2019-02-22 13:41 - 2019-02-22 13:41 - 000941113 _____ C:\Users\snejdar\Downloads\em24dinds.pdf
2019-02-22 12:20 - 2019-02-22 12:20 - 001068095 _____ C:\Users\snejdar\Downloads\XR 170C,D,160C,D_v11.pdf
2019-02-21 17:14 - 2019-02-21 17:14 - 000228674 _____ C:\Users\snejdar\Downloads\18-19-rozhodnuti-dk-cslh-hc-zubr-prerov-nesportovni-chovani-divaku.pdf
2019-02-21 14:32 - 2019-02-21 14:33 - 012227497 _____ C:\Users\snejdar\Downloads\XWEB_EVO_5.3.0.STANDARD.6-28cbfd_300D_500D_500.zip
2019-02-20 16:39 - 2019-02-20 16:39 - 031645096 _____ C:\Users\snejdar\Downloads\AMWA_Organic-Rozsirena_VO_nabidka-barevnice.rar
2019-02-19 10:57 - 2019-02-19 10:57 - 003114813 _____ C:\Users\snejdar\Downloads\+0300055EN.pdf
2019-02-18 15:12 - 2019-02-18 15:12 - 005720715 _____ C:\Users\snejdar\Downloads\MG18C822.pdf
2019-02-16 14:54 - 2019-02-16 14:54 - 000242933 _____ C:\Users\snejdar\Downloads\priloha_649274008_0_výzva - SoP - SMj 13277_2019.pdf
2019-02-15 11:10 - 2019-02-15 11:10 - 004276939 _____ C:\Users\snejdar\Downloads\ba044_16_ec-endprodukte.pdf
2019-02-14 22:51 - 2019-02-14 22:51 - 000069796 _____ C:\Users\snejdar\Downloads\certifikat2017.pdf
2019-02-14 12:57 - 2019-02-14 12:57 - 001562422 _____ C:\Users\snejdar\Downloads\XC660D_eng.pdf
2019-02-14 12:56 - 2019-02-14 12:57 - 001541795 _____ C:\Users\snejdar\Downloads\XC660D-IT.pdf
2019-02-14 12:56 - 2019-02-14 12:56 - 001562422 _____ C:\Users\snejdar\Downloads\XC660D-GB.pdf
2019-02-14 12:03 - 2019-02-14 12:03 - 000037440 _____ C:\Users\snejdar\Downloads\qy6259327714.pdf
2019-02-14 12:02 - 2019-02-14 12:02 - 000037351 _____ C:\Users\snejdar\Downloads\dh8496977230.pdf
2019-02-13 16:05 - 2019-02-13 16:05 - 057224705 _____ C:\Users\snejdar\Downloads\TEASER V.2 - MOLD.mp4
2019-02-11 20:48 - 2019-02-11 20:48 - 055536462 _____ C:\Users\snejdar\Downloads\TEASER - MOLD.mp4
2019-02-11 12:22 - 2019-02-11 12:22 - 000046695 _____ C:\Users\snejdar\Downloads\Vypis_z_uctu-2301305536_20190101-20190131_cislo-1.pdf
2019-02-11 12:04 - 2019-02-11 12:04 - 000210069 _____ C:\Users\snejdar\Downloads\faktura_18 (1).pdf
2019-02-11 12:04 - 2019-02-11 12:04 - 000210014 _____ C:\Users\snejdar\Downloads\faktura_19.pdf
2019-02-11 07:08 - 2019-02-11 07:08 - 000088991 _____ C:\Users\snejdar\Downloads\0703_001.pdf
2019-02-09 14:37 - 2019-02-09 14:37 - 046507300 _____ C:\Users\snejdar\Downloads\SE.rar
2019-02-09 14:36 - 2019-03-03 14:25 - 000000000 ____D C:\Users\snejdar\Downloads\SE
2019-02-08 09:20 - 2019-02-08 09:20 - 002233878 _____ C:\Users\snejdar\Downloads\780568.PDF
2019-02-06 21:03 - 2019-02-09 14:37 - 000000000 ____D C:\Users\snejdar\Downloads\MOLD_photoshoot
2019-02-06 21:02 - 2019-02-06 21:02 - 019948062 _____ C:\Users\snejdar\Downloads\MOLD_photoshoot.rar
2019-02-06 07:51 - 2019-02-06 07:52 - 000000000 ____D C:\ProgramData\Danfoss Drives
2019-02-06 07:39 - 2019-02-11 10:15 - 000000866 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-02-06 06:40 - 2019-02-05 16:01 - 003692287 _____ C:\Users\snejdar\Desktop\IMG_5651.MOV

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-03-08 10:05 - 2016-02-25 09:46 - 000000970 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488UA.job
2019-03-08 09:47 - 2018-01-29 07:17 - 000000000 ____D C:\Users\snejdar\AppData\LocalLow\Mozilla
2019-03-08 09:31 - 2018-10-18 10:37 - 000004162 _____ C:\Windows\System32\Tasks\Antivirus Emergency Update
2019-03-08 09:31 - 2009-07-14 05:45 - 000020944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-03-08 09:31 - 2009-07-14 05:45 - 000020944 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-03-08 09:27 - 2010-04-07 01:54 - 000719094 _____ C:\Windows\system32\perfh005.dat
2019-03-08 09:27 - 2010-04-07 01:54 - 000160952 _____ C:\Windows\system32\perfc005.dat
2019-03-08 09:27 - 2009-07-14 06:13 - 001725364 _____ C:\Windows\system32\PerfStringBackup.INI
2019-03-08 09:27 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2019-03-08 09:23 - 2013-10-23 07:29 - 000000112 _____ C:\Windows\system32\config\netlogon.ftl
2019-03-08 09:23 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-03-08 07:05 - 2016-02-25 09:46 - 000000918 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488Core.job
2019-03-08 06:12 - 2014-04-08 12:38 - 000000000 ____D C:\Users\snejdar\Documents\Kusovky
2019-03-07 18:55 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\NDF
2019-03-07 15:56 - 2018-12-10 15:27 - 000004128 _____ C:\Windows\System32\Tasks\CCleaner Update
2019-03-06 21:18 - 2013-10-23 07:27 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-03-06 12:19 - 2014-08-22 10:30 - 000000000 ____D C:\Users\snejdar\Documents\Ostatni
2019-03-06 10:26 - 2015-05-25 12:19 - 000000000 ____D C:\Users\snejdar\AppData\Local\Eplan Interface Manager
2019-03-05 20:38 - 2014-07-01 10:39 - 000000340 _____ C:\Windows\Tasks\HPCeeScheduleForsnejdar.job
2019-03-05 11:48 - 2014-07-01 10:39 - 000003198 _____ C:\Windows\System32\Tasks\HPCeeScheduleForsnejdar
2019-03-01 23:53 - 2018-12-08 21:53 - 000000000 ____D C:\Users\snejdar\AppData\Roaming\Kodi
2019-02-28 18:07 - 2016-03-02 14:34 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2019-02-23 22:29 - 2015-11-09 06:17 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-02-22 18:39 - 2019-01-14 11:12 - 000000000 ____D C:\Users\snejdar\AppData\Roaming\MCXShape
2019-02-22 12:04 - 2014-04-22 09:19 - 000000000 ____D C:\Users\snejdar\Documents\Nastaveni menicu
2019-02-19 17:13 - 2009-07-14 06:08 - 000032542 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2019-02-18 09:15 - 2015-04-01 08:25 - 000000000 ____D C:\Users\snejdar\Documents\Nastaveni_regulatoru
2019-02-14 14:05 - 2015-01-05 07:57 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2019-02-06 17:19 - 2009-07-14 05:45 - 000408560 _____ C:\Windows\system32\FNTCACHE.DAT
2019-02-06 14:57 - 2014-03-18 14:29 - 000110192 _____ C:\Users\snejdar\AppData\Local\GDIPFONTCACHEV1.DAT
2019-02-06 07:52 - 2013-11-01 08:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Danfoss Drives
2019-02-06 07:39 - 2018-11-23 06:46 - 000000000 ____D C:\Users\snejdar\AppData\Roaming\vlc
2019-02-06 07:39 - 2014-04-28 10:55 - 000000000 ____D C:\Users\snejdar\AppData\Roaming\Media Player Classic

==================== Files in the root of some directories =======

2018-03-01 09:37 - 2019-02-07 13:48 - 000017836 _____ () C:\Users\snejdar\AppData\Roaming\pCOload.0.log
2016-03-03 09:06 - 2017-05-26 13:06 - 000000600 _____ () C:\Users\snejdar\AppData\Roaming\winscp.rnd
2014-03-18 14:29 - 2014-03-18 14:29 - 000000000 _____ () C:\Users\snejdar\AppData\Local\AtStart.txt
2014-03-18 14:29 - 2014-03-18 14:29 - 000000000 _____ () C:\Users\snejdar\AppData\Local\DSwitch.txt
2016-03-03 09:06 - 2016-03-24 15:40 - 000000600 _____ () C:\Users\snejdar\AppData\Local\PUTTY.RND
2014-03-18 14:29 - 2014-03-18 14:29 - 000000000 _____ () C:\Users\snejdar\AppData\Local\QSwitch.txt

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\dllhost.exe => File is digitally signed
C:\Windows\SysWOW64\dllhost.exe => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


ATTENTION: ==> Could not access BCD.

LastRegBack: 2019-03-04 07:07

==================== End of FRST.txt ============================

Addition:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03.03.2019
Ran by snejdar (08-03-2019 10:29:05)
Running from C:\Users\snejdar\Desktop
Windows 7 Professional Service Pack 1 (X64) (2013-10-21 14:38:23)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2040571901-3754613886-2050062914-500 - Administrator - Disabled)
Guest (S-1-5-21-2040571901-3754613886-2050062914-501 - Limited - Disabled)
oem (S-1-5-21-2040571901-3754613886-2050062914-1000 - Administrator - Enabled) => C:\Users\oem

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: AVG Antivirus (Enabled - Up to date) {4FC75CA5-1654-5411-7CFB-1893D506BCF4}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Antivirus (Enabled - Up to date) {F4A6BD41-306E-5B9F-464B-23E1AE81F649}
FW: AVG Antivirus (Disabled) {77FCDD80-5C3B-5549-57A4-B1A62BD5FB8F}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

2007 Microsoft Office system (HKLM-x32\...\PROHYBRIDR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.010.20098 - Adobe Systems Incorporated)
Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.0.32.18 - Adobe Systems Incorporated)
Advanced IP Scanner v1.4 (HKLM-x32\...\Advanced IP Scanner v1.4) (Version: - )
AK-PT_50 (HKLM-x32\...\Danfoss AK-PT 50_is1) (Version: 3.05 - Danfoss)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_PROHYBRIDR_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_PROHYBRIDR_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_PROHYBRIDR_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Asistent pro přihlášení ke službě Windows Live (HKLM-x32\...\{3E62B27C-342F-4B44-9331-CA4BC59A586F}) (Version: 5.000.818.5 - Microsoft Corporation)
AUCOTEC ELCAD CZ 7.8.0 Complete (HKLM-x32\...\{CA19B79F-76F7-4273-8B55-0E7E07E505AC}) (Version: 7.8.0 - TECHNODAT Elektro, s.r.o, Zlín)
AVG Business Security (HKLM-x32\...\AVG Antivirus) (Version: 18.8.3071 - AVG Technologies)
Balíček ovladače systému Windows - FTDI CDM Driver Package - Bus/D2XX Driver (04/10/2012 2.08.24) (HKLM\...\4C8545EEB6143B6AD3858B5D1E0AEE76040B1435) (Version: 04/10/2012 2.08.24 - FTDI)
Balíček ovladače systému Windows - FTDI CDM Driver Package - VCP Driver (04/10/2012 2.08.24) (HKLM\...\6849F67BACD4DA5A5B9D46803E6850D0BE8B3826) (Version: 04/10/2012 2.08.24 - FTDI)
Balíček ovladače systému Windows - Graphtec (GTCUSBR) USB (10/19/2009 2.0.3.0) (HKLM\...\DBB540E290A1AF1407001DF811ED2EF01C511790) (Version: 10/19/2009 2.0.3.0 - Graphtec)
Balíček ovladače systému Windows - Lodam electronics (usbser) Ports (06/28/2016 1.0.0.1) (HKLM\...\0BD2EB9F5ABCE1F04B2E835CB3370BD7D1727463) (Version: 06/28/2016 1.0.0.1 - Lodam electronics)
Balíček ovladače systému Windows - Lodam electronics (usbser) Ports (06/28/2016 1.0.0.1) (HKLM\...\1968355851993B1ED7141CEDA97472FA1F13D42E) (Version: 06/28/2016 1.0.0.1 - Lodam electronics)
BEST (HKLM-x32\...\LodamBEST_is1) (Version: 2.8.229.0 - BITZER)
CCleaner (HKLM\...\CCleaner) (Version: 5.52 - Piriform)
cdc_driver_x64 (HKLM-x32\...\{CB348D2E-D720-4B25-BAB6-ED9E9996DB7E}) (Version: 1.00.0000 - Danfoss Drives) Hidden
cdc_driver_x64 (HKLM-x32\...\InstallShield_{CB348D2E-D720-4B25-BAB6-ED9E9996DB7E}) (Version: 1.00.0000 - Danfoss Drives)
CLIP PROJECT marking 8.8 (HKLM-x32\...\{0AB953ED-D2CC-4EBC-8A56-967D47B4045C}) (Version: 8.8.8966 - Phoenix Contact)
Communication Module Runtime 1.0.1901.1502 (HKLM-x32\...\Communication Module Runtime_is1) (Version: - Danfoss Drives A/S)
ComTool (HKLM-x32\...\{B2E9C412-5CE2-4B94-8578-439C61E2BCDA}) (Version: 1.0.0.0 - )
DBF Converter (HKLM-x32\...\DBF Converter) (Version: - )
DraftSight 2018 SP0 x64 (HKLM\...\{99275069-64ED-476E-A87B-756DC6C8BA59}) (Version: 18.0.2051 - Dassault Systemes)
Drive composer entry (HKLM-x32\...\{EA956CFE-674A-43CB-93D5-FF027548B00F}) (Version: 2.1.0.1 - ABB)
Drive Composer Entry Installer (HKLM-x32\...\{43c69626-d9cc-43b2-9f56-ca158343c4e0}) (Version: 2.1.0.1 - ABB)
FormApps Signing Extension (HKLM-x32\...\{ACA43D91-8B42-4D42-8C8B-A893BD6AA40D}) (Version: 2.8.2.28 - Software602 a.s.)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 8.2.0.2051 - Foxit Software Inc.)
Galileo V8.1.4 (12383) (HKLM-x32\...\Galileo8.1.4.12383_is1) (Version: 8.1.4.12383 - Eaton Automation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 72.0.3626.121 - Google Inc.)
Google Photos Backup (HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\...\Google Photos Backup) (Version: 1.1.2.13 - Google, Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Gupta Runtime 4.0 (HKLM-x32\...\{A22AD9CB-45C1-4EF1-A6A1-615CF87A0B9C}) (Version: 4.00 - Gupta Corp)
Hewlett-Packard ACLM.NET v1.2.1.1 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM\...\{D805D22C-3C4B-47CD-A11D-912816288EE0}) (Version: 4.1.10.1 - Hewlett-Packard Company)
HP Business Card Reader (HKLM-x32\...\{FD8234FF-A70D-4632-B146-F41AB37C0B24}) (Version: 0.6.3.0 - Hewlett-Packard)
HP Common Access Service Library (HKLM-x32\...\{58215966-9BA6-485D-B8DA-4AE31150B92E}) (Version: 3.0.37.1 - Hewlett-Packard)
HP ESU for Microsoft Windows 7 (HKLM-x32\...\{68BAA445-7269-4139-A79C-8C834708D2C2}) (Version: 1.1.13.2 - Hewlett-Packard Company)
HP Integrated Module with Bluetooth wireless technology (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.1.500 - Broadcom Corporation)
HP LaserJet Professional M1130-M1210 MFP Series (HKLM\...\HP LaserJet Professional M1130-M1210 MFP Series) (Version: - )
HP Power Assistant (HKLM\...\{BD7AB0B9-4491-4642-B6BB-2560648A0A22}) (Version: 1.0.2.4 - Hewlett-Packard)
HP Power Data (HKLM\...\{AFCB591A-D4FF-4670-824C-970932809DED}) (Version: 1.0.27.174 - Hewlett-Packard)
HP Quick Launch Buttons (HKLM-x32\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.16.1 - Hewlett-Packard Company)
HP QuickLook (HKLM-x32\...\{47FA17A8-50B8-4448-9BDD-8B001EB13F43}) (Version: 3.1.0.4 - Hewlett-Packard)
HP QuickWeb (HKLM-x32\...\{7861911B-4270-498A-8F7A-FCF0570F484B}) (Version: 1.0.1.48 - DeviceVM, Inc.)
HP QuickWeb (HKLM-x32\...\{7861911B-4270-498A-8F7A-FCF0570F48E3}) (Version: 1.0.1.74 - DeviceVM, Inc.)
HP Setup (HKLM-x32\...\{1E6219D4-027E-47EE-AB83-DD2F26E31A32}) (Version: 1.2.3557.3169 - Hewlett-Packard)
HP SoftPaq Download Manager (HKLM-x32\...\{CDA8E6D8-C735-4B9C-AC0C-A8B80C3D9449}) (Version: 3.0.8.0 - Hewlett-Packard Company)
HP Software Setup (HKLM-x32\...\{04801E42-B1A6-4C52-9F3D-CADB5A050433}) (Version: 7.0.1.5 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}) (Version: 7.0.39.15 - Hewlett-Packard Company)
HP User Guides 0159 (HKLM-x32\...\{5D205683-5AC7-4BBA-B45F-EC31DF297643}) (Version: 1.01.0000 - Hewlett-Packard)
HP Wallpaper (HKLM-x32\...\{F173C2B3-296F-458C-98FF-1676A42EBA02}) (Version: 1.0.1.3 - Hewlett-Packard Company)
HP Webcam (HKLM-x32\...\{1D61E881-43CD-447B-9E6B-D2C6138B2862}) (Version: 1.0 - Roxio)
HP Webcam Driver (HKLM-x32\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 5.8.50009.5 - Sonix)
HP Wireless Assistant (HKLM\...\{518C838E-A21C-40BE-B844-648040C2491D}) (Version: 4.0.2.4 - Hewlett-Packard)
I/O Station Configurator (HKLM-x32\...\{6C7B209B-E7B3-45BB-AEFB-8AB0636DB2C2}) (Version: 2.7.47.0 - PHOENIX CONTACT GmbH & Co. KG) Hidden
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6300.0 - IDT)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 16.3 - Intel)
Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed (HKLM\...\{BEE86606-EFB5-4353-9F34-29E0C59CDCFA}) (Version: 15.2.0.0284 - Intel Corporation)
Intel(R) Turbo Boost Technology Driver (HKLM-x32\...\{D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}) (Version: 01.00.01.1002 - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
J2SE Runtime Environment 5.0 Update 12 (HKLM-x32\...\{3248F0A8-6813-11D6-A77B-00B0D0150120}) (Version: 1.5.0.120 - Sun Microsystems, Inc.)
Java 8 Update 191 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
Java 8 Update 191 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
Java SE Development Kit 8 Update 191 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180191}) (Version: 8.0.1910.12 - Oracle Corporation)
K-Lite Codec Pack 6.7.0 (Full) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 6.7.0 - )
Kodi (HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\...\Kodi) (Version: - XBMC-Foundation)
Layout Editor 1.3.0 (HKLM-x32\...\Layout Editor) (Version: 1.3.0 - Carel Industries S.p.A.)
LOGO!Soft Comfort V7.0 (HKLM\...\LOGO!Soft Comfort V7.0 ) (Version: 7.0.0.0 - Siemens AG)
LOGO!Soft Comfort V8.0 (HKLM\...\LOGO!Soft Comfort V8.0 ) (Version: 8.0.0.0 - Siemens AG)
LSI HDA Modem (HKLM\...\LSI Soft Modem) (Version: 2.2.97 - LSI Corporation)
MCT 10 Set-up Software (HKLM-x32\...\{1ADAC261-0A9B-4672-A048-A423F5ACA4D2}) (Version: 4.40.4679 - Danfoss Drives)
MCX Shape (HKLM-x32\...\MCXShape_is1) (Version: - Danfoss)
Microsoft .NET Framework 4.7 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Report Viewer 2012 Runtime (HKLM-x32\...\{C58378BC-0B7B-474E-855C-9D02E5E75D71}) (Version: 11.1.3452.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SOAP Toolkit 3.0 (HKLM-x32\...\{BCB4C18A-ACA6-4383-8688-E19933A705DD}) (Version: 3.0.1325.4 - Microsoft Corporation)
Microsoft SQL Server 2005 (HKLM-x32\...\Microsoft SQL Server 2005) (Version: - Microsoft Corporation)
Microsoft SQL Server Native Client (HKLM\...\{9ACF3FDB-C8E6-444C-8C64-13A221F7BFFD}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server Setup Support Files (English) (HKLM-x32\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{B636C9B9-A3F2-4DCE-ADCC-72E095018385}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft Sync Framework Runtime Native v1.0 (x86) (HKLM-x32\...\{8A74E887-8F0F-4017-AF53-CBA42211AAA5}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Sync Framework Services Native v1.0 (x86) (HKLM-x32\...\{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (HKLM-x32\...\{CD5AAE18-1DF8-4D7B-8B99-9071D7D36126}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft XML Parser and SDK (HKLM-x32\...\{35343FF7-939B-401A-87B3-FF90A5123D88}) (Version: 4.10.9404.0 - Microsoft Corporation)
Mozilla Firefox 44.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 44.0 (x86 cs)) (Version: 44.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.0.5866 - Mozilla)
MPC-HC 1.7.1 (HKLM-x32\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.1.0 - MPC-HC Team)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.6 - F.J. Wechselberger)
Nástroj pro odesílání služby Windows Live (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
NB-Designer_v1.360 (HKLM-x32\...\{B0418750-63CD-4B1E-8465-3D05C4760B8A}) (Version: 1.36.0000 - OMRON)
NCDrive (HKLM-x32\...\NCDrive) (Version: - )
NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.18.0 - NEC Electronics Corporation) Hidden
NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.18.0 - NEC Electronics Corporation)
NVIDIA nView 141.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 141.36 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 341.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.44 - NVIDIA Corporation)
NVIDIA WMI 2.18.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVWMI) (Version: 2.18.0 - NVIDIA Corporation)
Odinstalovat ovladač tiskárny UFR II (HKLM\...\Canon UFR II Printer Driver) (Version: 5, 4, 0, 0 - Canon Inc.)
OpenOffice.org 3.4.1 (HKLM-x32\...\{1E0AF527-0B8E-4F8A-BA27-CB3C359998C6}) (Version: 3.41.9593 - Apache Software Foundation)
OpenVPN 2.4.2-I601 (HKLM\...\OpenVPN) (Version: 2.4.2-I601 - OpenVPN Technologies, Inc.)
OPS022 Install Program (HKLM-x32\...\{A2B1D187-4123-458D-8CC3-5EF305FE47AE}) (Version: 2.11 - peritec)
Ovládací panel NVIDIA 341.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 341.44 - NVIDIA Corporation) Hidden
P8_AddInManager_OnlineUpdate (HKLM-x32\...\{09C785A2-B911-4EEF-A3FB-23120AFEAD6B}) (Version: 1.2.234 - eplan) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.1.2 - pdfforge)
PKZIP Server for Windows 12.40.0008 (HKLM-x32\...\{134A51EB-1BBB-4249-BAF5-494C3D186A06}) (Version: 12.40.0008 - PKWARE, Inc)
PL-2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.9.0 - Prolific Technology INC)
pRack Manager 1.3.12.0 (HKLM-x32\...\pRack Manager) (Version: 1.3.12.0 - Carel Industries S.p.A.)
P-Set (HKLM-x32\...\{CC5344F7-7EFA-457F-BC7C-2E3256EDB2B5}) (Version: 1.00.0000 - BD SENSORS)
QLBCASL (HKLM-x32\...\{F1D7AC58-554A-4A58-B784-B61558B1449A}) (Version: 6.40.17.2 - Hewlett-Packard) Hidden
RICOH Media Driver (HKLM-x32\...\{F5CC2EF8-20A4-4366-A681-3FE849E65809}) (Version: 2.13.00.05 - RICOH)
Samsung Data Migration (HKLM-x32\...\{3B304604-0BF5-488E-AB95-F2F2E31206F3}) (Version: 3.0 - Samsung)
Samsung Kies (HKLM-x32\...\{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.4.16113.3 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.4.16113.3 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.61.0 - Samsung Electronics Co., Ltd.)
Scan To (HKLM\...\{E8A34AC8-0137-4515-A94B-0A0946DDC251}) (Version: 1.0.1 - HP)
SDFormatter (HKLM-x32\...\{179324FF-7B16-4BA8-9836-055CAAEE4F08}) (Version: 4.0.0 - SD Association)
Selection Software 7.7 (HKLM-x32\...\{99209AB9-D16B-452D-B608-73954A7A5ABA}) (Version: 7.7 - Emerson Climate Technologies GmbH)
Sentinel HASP Run-time (HKLM-x32\...\{2A414CBE-CDF3-48C6-A91B-D3D4522F8EB5}) (Version: 5.10.1.17163 - SafeNet Inc.)
ServiceTool (HKLM-x32\...\{4310C0BC-7F6F-4E44-99A9-7F6775CDCF87}) (Version: 3.20 Build 12.09.14 - ADAP-KOOL)
Silicon Laboratories CP210x USB to UART Bridge (Driver Removal) (HKLM-x32\...\SLABCOMM&10C4&EA60) (Version: - Silicon Laboratories)
Silicon Laboratories CP210x VCP Drivers for Windows XP/2003 Server/Vista/7 (HKLM-x32\...\{53CB995C-DC26-4528-A427-98126FDD173D}) (Version: 6.2.00 - Silicon Laboratories, Inc.)
Silicon Laboratories CP210x VCP Drivers for Windows XP/2003 Server/Vista/7_2 (c:\SiLabs\MCU\CP210x\Windows_XP_S2K3_Vista_7_2) (HKLM-x32\...\{29ECE78D-A715-483F-B445-E1F219EFF380}) (Version: 6.2.00 - Silicon Laboratories, Inc.)
SIMATIC STEP 7 (HKLM-x32\...\{F294AB40-F065-4E65-B510-4EB239B02D70}) (Version: 05.05.0400 - Siemens AG) Hidden
SIMATIC STEP 7 V5.5 + SP4 Professional 2010 SR4 (HKLM-x32\...\{F294AB40-F065-4E65-B510-4EB239B02D70}STEP7) (Version: 05.05.0400 - Siemens AG)
SIMATIC Device Drivers (HKLM\...\{CCC01ADD-3A54-15D6-92A8-00A0245B3AC6}) (Version: 01.02.0400 - Siemens AG) Hidden
SIMATIC Device Drivers WoW (HKLM-x32\...\{CCC01ADD-3A54-11D6-92A8-00A0245B3AC6}) (Version: 20.02.0400 - Siemens AG) Hidden
SIMATIC HMI License Manager Panel Plugin (x64) (HKLM\...\{CCC230DD-3A54-11D6-92A8-00A0245B3AC6}) (Version: 11.00.0100 - Siemens AG) Hidden
SIMATIC NCM FWL 64 (HKLM\...\{CCC31FDD-3A54-11D6-92A8-00A0245B3AC6}) (Version: 05.05.0400 - Siemens AG) Hidden
SIMATIC Prosave (HKLM-x32\...\{AE533A06-4655-41E8-88BB-48293AAF1FA0}) (Version: 09.00.0300 - Siemens AG) Hidden
SIMATIC Prosave V9.0 incl. SP3 (HKLM-x32\...\{AE533A06-4655-41E8-88BB-48293AAF1FA0}Prosave) (Version: 09.00.0300 - Siemens AG)
SIMATIC S7-PCT (HKLM-x32\...\{23037B92-E705-49FF-9584-F8C628A4697B}) (Version: 03.02.0000 - Siemens AG) Hidden
SIMATIC S7-PCT V3.2 Professional 2010 SR4 (HKLM-x32\...\{23037B92-E705-49FF-9584-F8C628A4697B}S7PCT) (Version: 03.02.0000 - Siemens AG)
SIMATIC Version View (HKLM-x32\...\{CCC07ADD-3A54-11D6-92A8-00A0245B3AC6}) (Version: 01.07.0900 - Siemens AG) Hidden
SIMATIC WinCC flexible Micro 2008 SP3 (HKLM-x32\...\InstallShield_{4859C171-B826-4B74-ABCE-501B4C725EA2}) (Version: 01.04.0000 - Siemens AG)
SIMATIC WinCC flexible OCX (HKLM-x32\...\{CCC16FDD-3A54-11D6-92A8-00A0245B3AC6}) (Version: 01.04.0000 - Siemens AG) Hidden
Skype™ 6.20 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.20.104 - Skype Technologies S.A.)
STEP 7 MicroWIN V4.0.9.25 (HKLM-x32\...\{EA5E7DD4-D9AC-406B-9233-9B3E65C1DBA2}) (Version: 4.0.9 - Siemens)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.24.0 - Synaptics Incorporated)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TD Keypad Designer V1.0.9.25 (HKLM-x32\...\{3A3DCADC-703E-4D52-A40B-0A4A3381E503}) (Version: 1.0.9 - Siemens)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.47484 - TeamViewer)
Tecumseh Europe Selection Software (HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\...\Tecumseh Europe Selection Software) (Version: - Tecumseh Europe)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Validity Fingerprint Driver (HKLM\...\{BE9ED4AF-949C-4B95-B2FD-0A2F228A7689}) (Version: 4.0.8.0 - Validity Sensors, Inc.)
VCBinaries For 1tool - Release (HKLM-x32\...\{573B551F-7715-4708-ADF4-297EAA231F82}) (Version: 1.0.0 - Carel)
VISUAL Enterprise 6.5.4 SP2 (HKLM-x32\...\{B5925F48-958B-4929-A783-CCF810F3DF1B}) (Version: 1.02.0000 - Infor Global Solutions)
Visual Parameter Manager 3.6.7.0 (HKLM-x32\...\Visual Parameter Manager) (Version: 3.6.7.0 - Carel Industries S.p.A.)
Visual SIOX 3.1:001 (HKLM-x32\...\Visual SIOX 3.1:001) (Version: - )
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.4 - VideoLAN)
WinCC flexible (HKLM-x32\...\{4859C171-B826-4B74-ABCE-501B4C725EA2}) (Version: 01.04.0000 - Siemens AG) Hidden
WinCC flexible Graphics (HKLM-x32\...\{2838043E-63EF-44A4-B3A8-17B8129BD5BD}) (Version: 1.04.0000 - Siemens AG) Hidden
WinCC flexible Graphics (HKLM-x32\...\InstallShield_{2838043E-63EF-44A4-B3A8-17B8129BD5BD}) (Version: 1.04.0000 - Siemens AG) Hidden
Windows 7 Default Setting (HKLM-x32\...\{5BF8E079-D6E2-4323-B794-75152371122A}) (Version: 1.0.1.5 - Hewlett-Packard Company)
Windows Driver Package - ABB (abbdcdc_x64) Ports (04/15/2014 3.0.1.0) (HKLM\...\BF5A5F51A020AA3B06FACCA9A0DAEB5894E18674) (Version: 04/15/2014 3.0.1.0 - ABB)
Windows Driver Package - ABB ABB BCBL-01 Serial Converter driver (06/20/2016 2.12.10) (HKLM\...\A1C1B59CC56D2A8727E3119FA039FB72C9799F0E) (Version: 06/20/2016 2.12.10 - ABB)
Windows Driver Package - ABB ABB BCBL-01 Serial Converter driver (10/28/2015 2.12.10) (HKLM\...\8CEC8202860B24B43F48096A1EA2D628DFC42A80) (Version: 10/28/2015 2.12.10 - ABB)
Windows Driver Package - Broadcom Bluetooth (06/15/2009 6.2.0.9000) (HKLM\...\6B8550A319DDC8B17F35F4A89988705E4592349B) (Version: 06/15/2009 6.2.0.9000 - Broadcom)
Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405) (HKLM\...\6B6B5E96843E55CF5CF8C7E45FB457F1FE642FF1) (Version: 07/30/2009 6.2.0.9405 - Broadcom)
Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) (HKLM\...\3BA80AB4C7E9F8497C115C844953A3D4BEB84D21) (Version: 07/28/2009 6.2.0.9800 - Broadcom)
Windows Driver Package - CDC Driver (usbser) Ports (10/15/2009 1.0.0.0) (HKLM\...\456AC481285C2C461242E956AA274969F1F53C67) (Version: 10/15/2009 1.0.0.0 - CDC Driver)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8089.0726 - Microsoft Corporation)
WinRAR 5.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
Wizmate (HKLM-x32\...\{CFAE4038-1D52-4957-9F6B-EE12612C0F89}) (Version: 1.2.0.65 - Dixell) Hidden
Wizmate (HKLM-x32\...\Wizmate) (Version: 1.2.0.65 - Dixell)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1350338271-1762688309-1791207727-1488_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\snejdar\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-1350338271-1762688309-1791207727-1488_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\snejdar\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll (Google Inc -> Google Inc.)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShA64.dll [2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\programy\Foxit Reader\Install\plugins\ConvertToPDFShellExtension_x64.dll [2016-12-23] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers1-x32: [MyPhoneExplorer] -> {A372C6DF-7A85-41B1-B3B0-D1E24073DCBF} => C:\programy\Synchro\Install\MyPhoneExplorer\DLL\ShellMgr.dll [2010-03-30] (F.J. Wechselberger) [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2014-08-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2014-08-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers5: [00nView] -> {1E9B04FB-F9E5-4718-997B-B8DA88302A48} => C:\windows\system32\nvshell.dll [2010-02-25] (NVIDIA Corporation -> )
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2015-02-04] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShA64.dll [2018-12-11] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\programy\Foxit Reader\Install\plugins\ConvertToPDFShellExtension_x64.dll [2016-12-23] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2014-08-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2014-08-27] (win.rar GmbH -> Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {2C51F11E-E919-4A0C-BDBF-619D56873B1F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {365AC854-1EE6-42C6-9494-88F27C3C1B88} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {37B73E95-7B8C-4642-989D-01399FC1E26F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFReport.exe (Hewlett-Packard Company -> Hewlett-Packard)
Task: {425E6B2B-6D70-4F65-9B5A-9F6116E54591} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe (Hewlett Packard -> HP Inc.)
Task: {5D556924-1D82-4D76-A5D9-64C151780DF1} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {5F256C22-448F-4A78-B4CE-9E5E6C498FBF} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488UA => C:\Users\snejdar\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {61A9DC16-BC4E-4A81-87EB-ED4678B3D30C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe (HP Inc. -> HP Inc.)
Task: {62F5D309-F69B-45D6-AC17-CC90694F51DA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {75775DF0-251E-46D1-9618-A4AA6F2C8195} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {79237460-2A1E-4E2A-A4C4-8BF655A6FFCE} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488Core => C:\Users\snejdar\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {7F98FDDB-421E-4F66-B677-F87E8B01398B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {8943705C-2FEE-4D51-8F25-E347F22A9B78} - System32\Tasks\{B3CEED0C-8C74-4B9B-A0E3-0BB86660B39D} => C:\Windows\system32\pcalua.exe -a C:\Users\snejdar\AppData\Local\Temp\jre-8u101-windows-au.exe -d "C:\Program Files\Java\jre1.8.0_73\bin" -c /installmethod=jau-m FAMILYUPGRADE=1 <==== ATTENTION
Task: {9D5FEC5E-9DD1-4752-A7E0-91FD24F1A6EA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe (Hewlett-Packard Company -> Microsoft)
Task: {A1F26C42-7443-461D-AC69-F3F70BB90578} - System32\Tasks\Registration => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe (Hewlett-Packard Company -> )
Task: {A20BB704-D29A-4671-8C03-3C89CD804F25} - System32\Tasks\{6D224F73-4F5F-4D9D-B01B-D990EEC428A1} => C:\Windows\system32\pcalua.exe -a "C:\Users\snejdar\AppData\Local\Tecumseh Europe\Selection Software\Uninstall.exe"
Task: {A7E244FE-9006-48C1-9D8A-1FDFC83E3F47} - System32\Tasks\{EABB7189-980D-479E-BD23-337E31F45885} => C:\Windows\system32\pcalua.exe -a D:\desktop\Setup.exe -d D:\desktop
Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - System32\Tasks\Microsoft\Windows\Application Experience\AitAgent => aitagent.exe <==== ATTENTION
Task: {C1A81887-77D1-4A00-8C72-FD50CABEDD09} - System32\Tasks\{67B040D0-2D26-4DF4-9E1C-4F55307E91C8} => C:\Windows\system32\pcalua.exe -a "C:\Users\snejdar\Documents\Danfoss\Danfoss Service Tool\ST\AK-ST 500_3.43Update\setup.exe" -d "C:\Users\snejdar\Documents\Danfoss\Danfoss Service Tool\ST\AK-ST 500_3.43Update"
Task: {C3F7E6E6-3F8A-4A2C-A8B9-781578EACA14} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {DC187FBB-29E8-43E5-9D74-C46669E8206A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {DF2346E0-C78E-4EB9-8229-A26B6DA94E8D} - System32\Tasks\{DFAFE8BD-510D-4F65-A15C-E739C425CB3A} => "C:\Program Files\Internet Explorer\iexplore.exe" hxxp://ui.skype.com/ui/0/6.10.0.104/cs/abandoninstall?source=lightinstaller&page=tsBing
Task: {E3163C33-301D-4730-A266-5518C5ED3967} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => C:\Windows\SysWOW64\BthUdTask.exe (Microsoft Windows -> Microsoft Corporation)
Task: {F03BA2D8-6413-429C-8EE3-73FEE7CAC0CF} - System32\Tasks\HPCeeScheduleForsnejdar => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe (Hewlett-Packard Company -> Hewlett-Packard)
Task: {F03D7ACA-F933-4C25-BB76-0D46A024611C} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Ltd)
Task: {F4E07D44-E60F-49CA-A054-8FD8E9C181F4} - System32\Tasks\{D17D8D12-2BC8-4C3C-AD5C-8EF48B9EE561} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{4310C0BC-7F6F-4E44-99A9-7F6775CDCF87}\setup.exe" -c -runfromtemp -l0x0009 -removeonly

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488Core.job => C:\Users\snejdar\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488UA.job => C:\Users\snejdar\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForsnejdar.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


ShortcutWithArgument: C:\Users\snejdar\Desktop\Osoba 1 - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Default"

==================== Loaded Modules (Whitelisted) ==============

2017-10-06 15:40 - 2017-10-06 15:40 - 000123392 _____ (Dassault Systèmes) [File not signed] C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe
2017-10-06 15:40 - 2017-10-06 15:40 - 001065472 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Dassault Systemes\DraftSight\bin\Qt5Network.dll
2017-10-06 15:40 - 2017-10-06 15:40 - 005584896 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Dassault Systemes\DraftSight\bin\Qt5Core.dll
2017-10-06 15:40 - 2017-10-06 15:40 - 000193536 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Dassault Systemes\DraftSight\bin\Qt5Xml.dll
2019-01-15 14:26 - 2019-01-15 14:26 - 000310784 _____ () [File not signed] C:\programy\Danfoss\MCT\Install\MCTServ.exe
2018-10-18 10:37 - 2018-10-18 10:37 - 000023336 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-crt-runtime-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 001001264 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\ucrtbase.DLL
2018-10-18 10:37 - 2018-10-18 10:37 - 000021296 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-core-localization-l1-2-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000019248 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-core-processthreads-l1-1-1.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000018728 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-core-file-l1-2-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000018736 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-core-timezone-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000018736 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-core-file-l2-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000019248 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-core-synch-l1-2-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000024880 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-crt-string-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000019752 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-crt-heap-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000024880 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-crt-stdio-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000022832 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-crt-convert-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000019248 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-crt-locale-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000027952 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-crt-math-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000026928 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-crt-multibyte-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000021296 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-crt-time-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000020784 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-crt-filesystem-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000019248 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-crt-environment-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000019248 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_6bbcfeb7d72790b2\api-ms-win-crt-utility-l1-1-0.dll
2009-11-21 04:17 - 2009-11-21 04:17 - 000106496 _____ (NEC Electronics Corporation) [File not signed] C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
2013-10-21 15:43 - 2009-11-04 22:33 - 000013824 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\AMT_COM_InterfaceLib.dll
2013-10-21 15:43 - 2009-11-04 22:34 - 000217088 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\cs-CZ\PrivacyIconClient.resources.dll
2013-10-21 15:43 - 2009-11-04 21:37 - 000438272 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\AMT_SW_GUI.dll
2012-03-15 05:00 - 2012-03-15 05:00 - 000105472 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\BluetoothHS\UsR3IoPort.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000022832 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-runtime-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 001142064 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\ucrtbase.DLL
2018-10-18 10:37 - 2018-10-18 10:37 - 000020784 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-core-localization-l1-2-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000018736 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-core-processthreads-l1-1-1.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000018224 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-core-file-l1-2-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000018224 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-core-timezone-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000018224 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-core-file-l2-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000018736 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-core-synch-l1-2-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000024368 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-string-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000019248 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-heap-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000024368 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-stdio-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000022320 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-convert-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000018736 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-locale-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000028968 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-math-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000026416 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-multibyte-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000020784 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-time-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000020272 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-filesystem-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000018736 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-environment-l1-1-0.dll
2018-10-18 10:37 - 2018-10-18 10:37 - 000018736 _____ (Microsoft Corporation -> Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_avg.vc140.crt_f92d94485545da78_14.0.25325.0_none_b36a358eeba3b9b8\api-ms-win-crt-utility-l1-1-0.dll
2010-04-07 01:20 - 2015-06-02 13:06 - 000208896 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ISDI.dll
2010-04-07 01:20 - 2015-06-02 13:06 - 000118784 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CSY\PlugInRAID_CSY.dll
2010-04-07 01:20 - 2015-06-02 13:06 - 000073728 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CSY\IAAMon_CSY.dll
2009-11-21 04:17 - 2009-11-21 04:17 - 000086016 _____ (NEC Electronics Corporation) [File not signed] C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.dll
2016-11-16 13:58 - 2016-11-16 13:58 - 000250368 _____ (Windows (R) Codename Longhorn DDK provider) [File not signed] C:\Program Files (x86)\Samsung\Kies\External\DeviceModules\UPNPDevice_Kies.dll
2013-10-21 15:43 - 2009-11-04 21:30 - 000069632 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\StatusStrings.dll
2013-10-21 15:43 - 2009-11-04 21:37 - 001892352 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\xerces-c_2_7.dll
2013-10-21 15:43 - 2009-11-04 21:37 - 000077824 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\DTMessageLib.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2019-03-04 06:36 - 000000866 _____ C:\Windows\system32\drivers\etc\hosts

87.197.157.13 xweb-server.87.197.157.13

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\ADAP-KOOL\ServiceTool\SysDll;
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\Control Panel\Desktop\\Wallpaper -> C:\Users\snejdar\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AESTFilters => 2
MSCONFIG\Services: AgereModemAudio => 2
MSCONFIG\Services: btwdins => 2
MSCONFIG\Services: Com4QLBEx => 3
MSCONFIG\Services: DraftSight API Service => 2
MSCONFIG\Services: FLEXnet Licensing Service => 3
MSCONFIG\Services: FLEXnet Licensing Service 64 => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: hasplms => 2
MSCONFIG\Services: HP Power Assistant Service => 2
MSCONFIG\Services: HP Support Assistant Service => 2
MSCONFIG\Services: HP Wireless Assistant Service => 2
MSCONFIG\Services: HPDrvMntSvc.exe => 2
MSCONFIG\Services: hpqwmiex => 3
MSCONFIG\Services: HPSIService => 2
MSCONFIG\Services: hpsrv => 2
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: s7hspsvx => 2
MSCONFIG\Services: s7oiehsx64 => 2
MSCONFIG\Services: S7TraceServiceX => 2
MSCONFIG\Services: STacSV => 2
MSCONFIG\Services: TeamViewer => 2
MSCONFIG\Services: vcsFPService => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk => C:\Windows\pss\Bluetooth.lnk.CommonStartup
MSCONFIG\startupreg: Google Photos Backup => "C:\Users\snejdar\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe" /autostart
MSCONFIG\startupreg: HPPowerAssistant => C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe /hidden
MSCONFIG\startupreg: HPWirelessAssistant => C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe /hidden
MSCONFIG\startupreg: QlbCtrl.exe => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
MSCONFIG\startupreg: S7UB Start => "C:\Program Files (x86)\Common Files\Siemens\S7ubtoox\s7ubtstx.exe" -StartDB
MSCONFIG\startupreg: WinCC flexible Smart Start => "C:\Program Files (x86)\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008 Micro\HmiSmartStart.exe" /startup

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{B7E4C8EA-DFD7-43CE-8113-AA1FA458F3A0}] => (Allow) C:\windows\system32\hasplms.exe (SafeNet, Inc. -> SafeNet Inc.)
FirewallRules: [{F6A43008-F2E2-404D-9E01-5E329505B693}] => (Allow) C:\Users\dilna01e\Desktop\my\Prog\skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7E93919C-9A2F-4087-8CB3-4388E37E34C4}] => (Allow) C:\Program Files (x86)\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008 Micro\HmiES.exe (SIEMENS AG) [File not signed]
FirewallRules: [{1B9DE1B4-EB44-4C77-8F27-1A1104D9F5E0}] => (Allow) C:\Program Files (x86)\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008 Micro\TraceServer.exe (SIEMENS AG) [File not signed]
FirewallRules: [TCP Query User{197EBFA6-36B8-4181-92E6-5D88E717EA74}C:\program files (x86)\microsoft office\office12\outlook.exe] => (Block) C:\program files (x86)\microsoft office\office12\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{B4E0B513-2C72-457E-A985-9CB9992C07C9}C:\program files (x86)\microsoft office\office12\outlook.exe] => (Block) C:\program files (x86)\microsoft office\office12\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{BCD684C4-1C58-4A84-A19C-996E88B08A34}C:\programy\synchro\install\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\programy\synchro\install\myphoneexplorer\myphoneexplorer.exe (Franz Josef Wechselberger -> F.J. Wechselberger)
FirewallRules: [UDP Query User{E194B84A-E29E-4504-A3EB-A59215673F5C}C:\programy\synchro\install\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\programy\synchro\install\myphoneexplorer\myphoneexplorer.exe (Franz Josef Wechselberger -> F.J. Wechselberger)
FirewallRules: [{E172646B-D17D-47A2-9AF2-EA34C81FB689}] => (Allow) C:\Program Files (x86)\Common Files\Siemens\SQLANY\Dbsrv9.exe (iAnywhere Solutions, Inc. -> iAnywhere Solutions, Inc.)
FirewallRules: [{3BCE2F36-07E7-418C-A40D-3D96A7D63301}] => (Allow) C:\Program Files (x86)\Common Files\Siemens\SQLANY\Dbeng9.exe (iAnywhere Solutions, Inc. -> iAnywhere Solutions, Inc.)
FirewallRules: [{EAD2A583-F2E5-436A-8EE3-27EA3EFE8412}] => (Allow) C:\windows\SysWOW64\S7otbxsx.exe (Siemens AG -> Siemens AG)
FirewallRules: [{6EDB9A80-EA01-4904-843B-F3E44E08E1BE}] => (Allow) C:\Program Files (x86)\Siemens\Step7\S7INF\S7usiapx.exe (SIEMENS AG) [File not signed]
FirewallRules: [{A5778E11-64A4-42FF-AC30-1994F031C674}] => (Allow) C:\Program Files (x86)\Siemens\Step7\S7BIN\S7tgtopx.exe (Siemens AG -> SIEMENS AG)
FirewallRules: [{39708E90-C18D-4069-917A-6A5BB9A52C4B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1F42C241-F897-4A1D-9BB5-0861B170138E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{7EE3C438-54C0-4CAD-8AD1-DCFAB59964EB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer -> TeamViewer GmbH)
FirewallRules: [{F1A517D7-0454-4B94-980A-34A7DFA2F1AD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer -> TeamViewer GmbH)
FirewallRules: [{E52F25AE-2C60-498A-9CBE-3D830B36F0B4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer -> TeamViewer GmbH)
FirewallRules: [{9A078529-35A4-47E9-BAAB-D36E5E64DE7F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer -> TeamViewer GmbH)
FirewallRules: [{3C4D8C9C-26B3-494A-909C-701AC030C0ED}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer -> TeamViewer GmbH)
FirewallRules: [{C0EF5495-99CE-4C90-B339-5F7990A230C0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer -> TeamViewer GmbH)
FirewallRules: [{E71F2D2A-92D4-4B4E-8FF8-E965F5CCFC4B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer -> TeamViewer GmbH)
FirewallRules: [{767F4A13-6490-473A-90B9-3178494733E0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer -> TeamViewer GmbH)
FirewallRules: [{C8D71D02-CC1B-48A7-8F1A-4E0397F10F1C}] => (Allow) C:\Program Files (x86)\Common Files\Siemens\SQLANY\dbsrv9.exe (iAnywhere Solutions, Inc. -> iAnywhere Solutions, Inc.)
FirewallRules: [{EFECF3E2-84C8-4BC3-9D65-C9696EA8D872}] => (Allow) C:\Program Files (x86)\Common Files\Siemens\SQLANY\dbsrv9.exe (iAnywhere Solutions, Inc. -> iAnywhere Solutions, Inc.)
FirewallRules: [{46C8A18C-1544-4D59-91AC-76FD94B2FFAA}] => (Allow) C:\Program Files (x86)\Siemens\Step7\S7BIN\S7tgtopx.exe (Siemens AG -> SIEMENS AG)
FirewallRules: [{E66AC050-6872-4639-80E4-B035D6755EF5}] => (Allow) C:\Program Files (x86)\Siemens\Step7\S7BIN\S7tgtopx.exe (Siemens AG -> SIEMENS AG)
FirewallRules: [{AA7A5FDF-665C-490A-A810-2AF26716199D}] => (Allow) C:\Program Files (x86)\Siemens\Step7\S7INF\S7usiapx.exe (SIEMENS AG) [File not signed]
FirewallRules: [{A79923BE-C849-4D63-AF1A-8A9941CC9459}] => (Allow) C:\Program Files (x86)\Siemens\Step7\S7INF\S7usiapx.exe (SIEMENS AG) [File not signed]
FirewallRules: [{8EA8C556-C35E-4EC8-AFDA-890474E96B80}] => (Allow) C:\Windows\SysWOW64\s7otbxsx.exe (Siemens AG -> Siemens AG)
FirewallRules: [{9D033443-3AC0-4D01-8128-85A9786825E4}] => (Allow) C:\Windows\SysWOW64\s7otbxsx.exe (Siemens AG -> Siemens AG)
FirewallRules: [TCP Query User{644975F6-7915-43E5-BE45-6FC256316978}C:\program files (x86)\java\jre1.5.0_12\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.5.0_12\bin\javaw.exe
FirewallRules: [UDP Query User{32CBB1FA-3EEA-4189-B24F-C2DBA9F959C6}C:\program files (x86)\java\jre1.5.0_12\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.5.0_12\bin\javaw.exe
FirewallRules: [TCP Query User{536BFA3D-70A9-464C-9D93-6B150C1B9E41}C:\program files (x86)\java\jre1.5.0_12\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.5.0_12\bin\javaw.exe
FirewallRules: [UDP Query User{AA78DF8B-5A22-4B39-91E8-5DDF75DD3AD7}C:\program files (x86)\java\jre1.5.0_12\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.5.0_12\bin\javaw.exe
FirewallRules: [TCP Query User{C4FB832A-AEF3-4FDB-AEAE-3FDFF2231BC0}C:\ncengine\nctools\ncdrive\ncdrive.exe] => (Allow) C:\ncengine\nctools\ncdrive\ncdrive.exe (Vacon Plc) [File not signed]
FirewallRules: [UDP Query User{9D6A1D29-BFB1-4CC7-9D62-6417FFD96EB2}C:\ncengine\nctools\ncdrive\ncdrive.exe] => (Allow) C:\ncengine\nctools\ncdrive\ncdrive.exe (Vacon Plc) [File not signed]
FirewallRules: [{A133D9FD-E60A-4DE7-9B1F-E2BD3C10AE3A}] => (Allow) C:\Program Files (x86)\Lodam\BEST\BEST.exe (BITZER Kühlmaschinenbau GmbH) [File not signed]
FirewallRules: [{D543B9C2-5D53-46D2-B74A-E7506AEF2154}] => (Allow) C:\Program Files (x86)\Lodam\BEST\BEST.exe (BITZER Kühlmaschinenbau GmbH) [File not signed]
FirewallRules: [{57406A2D-D189-46AA-B605-20B037CFFA76}] => (Allow) C:\Program Files\AVG\Antivirus\avgAdminClientServicex.exe (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{1F07481A-5AB4-48D5-B239-DC69A0E3BF6F}] => (Allow) C:\Program Files\AVG\Antivirus\AvEmUpdate.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{7DBB6F98-1EA6-4A10-9138-9546D689626F}] => (Allow) C:\Program Files\AVG\Antivirus\AvEmUpdate.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{CB125519-75CC-4E73-9B4A-B110201FBE48}] => (Allow) C:\Program Files\AVG\Antivirus\avgAdminClientServicex.exe (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
FirewallRules: [TCP Query User{9F9F83B2-C6C2-44F5-B617-3E70E8461034}C:\program files (x86)\phoenix contact\clip project\marking\8.8.0\clipprojectmarking.exe] => (Allow) C:\program files (x86)\phoenix contact\clip project\marking\8.8.0\clipprojectmarking.exe (Phoenix Contact) [File not signed]
FirewallRules: [UDP Query User{3E905C04-A2F0-43A4-A01D-25367A261D1A}C:\program files (x86)\phoenix contact\clip project\marking\8.8.0\clipprojectmarking.exe] => (Allow) C:\program files (x86)\phoenix contact\clip project\marking\8.8.0\clipprojectmarking.exe (Phoenix Contact) [File not signed]
FirewallRules: [TCP Query User{583A30F1-10E7-44ED-A37A-FB129CA6A47C}C:\program files (x86)\phoenix contact\clip project\marking\8.8.0\clipprojectmarking.exe] => (Allow) C:\program files (x86)\phoenix contact\clip project\marking\8.8.0\clipprojectmarking.exe (Phoenix Contact) [File not signed]
FirewallRules: [UDP Query User{129B38CC-5206-4C87-8772-021322C4F075}C:\program files (x86)\phoenix contact\clip project\marking\8.8.0\clipprojectmarking.exe] => (Allow) C:\program files (x86)\phoenix contact\clip project\marking\8.8.0\clipprojectmarking.exe (Phoenix Contact) [File not signed]
FirewallRules: [TCP Query User{DCDAB355-2337-4F23-8537-DFE4758160BA}C:\program files\java\jdk1.8.0_191\bin\jmc.exe] => (Allow) C:\program files\java\jdk1.8.0_191\bin\jmc.exe (Oracle America, Inc. -> )
FirewallRules: [UDP Query User{6B715088-179B-4593-982B-1BF0494E5EAB}C:\program files\java\jdk1.8.0_191\bin\jmc.exe] => (Allow) C:\program files\java\jdk1.8.0_191\bin\jmc.exe (Oracle America, Inc. -> )
FirewallRules: [TCP Query User{A93791C4-1728-4683-BCC8-45E97FCAB195}C:\programy\nhl\mlbamproxy\x64\mlbamproxy.exe] => (Allow) C:\programy\nhl\mlbamproxy\x64\mlbamproxy.exe () [File not signed]
FirewallRules: [UDP Query User{E3258741-742D-4222-B85F-E417D03F4A66}C:\programy\nhl\mlbamproxy\x64\mlbamproxy.exe] => (Allow) C:\programy\nhl\mlbamproxy\x64\mlbamproxy.exe () [File not signed]
FirewallRules: [TCP Query User{745E321B-C56F-409E-97E1-1DD67A7E753B}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe (XBMC-Foundation) [File not signed]
FirewallRules: [UDP Query User{1C6C79A3-EB28-40EA-924F-773F781EF1BD}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe (XBMC-Foundation) [File not signed]
FirewallRules: [{F595DF84-966F-49B7-9E6A-31CAB2622D9F}] => (Allow) C:\Program Files\AVG\Antivirus\AvEmUpdate.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{B5860C8C-08BB-4495-B7F7-CC982C390AD1}] => (Allow) C:\Program Files\AVG\Antivirus\AvEmUpdate.exe (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{9D869BFF-C241-484F-A885-1FB4B026A050}] => (Allow) C:\Program Files\AVG\Antivirus\avgAdminClientServicex.exe (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
FirewallRules: [{7B2DB333-876F-4F0F-B243-2F21E7FFB687}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Ltd)
FirewallRules: [{191ECAD1-649B-4849-9CEA-A42552ACA740}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Ltd)
FirewallRules: [{FECBFBA9-25F3-4DCC-A1FF-38CAF0641928}] => (Allow) C:\programy\Danfoss\MCT\Install\MCT 10 Set-up Software.exe (Danfoss Drives, Inc.) [File not signed]
FirewallRules: [{7ADD1361-AC3A-45CA-B877-57DD30EAA705}] => (Allow) C:\programy\Danfoss\MCT\Install\MCT 10 Set-up Software.exe (Danfoss Drives, Inc.) [File not signed]
FirewallRules: [TCP Query User{CCF90F5F-AFFF-478F-A0F3-0D420F12E6A9}C:\program files (x86)\danfoss turbocor\tt service monitoring tools\315\bin\remoteserialmultiplexer.exe] => (Block) C:\program files (x86)\danfoss turbocor\tt service monitoring tools\315\bin\remoteserialmultiplexer.exe (Danfoss Turbocor) [File not signed]
FirewallRules: [UDP Query User{078E4770-4128-4083-BD8B-967DD24499CD}C:\program files (x86)\danfoss turbocor\tt service monitoring tools\315\bin\remoteserialmultiplexer.exe] => (Block) C:\program files (x86)\danfoss turbocor\tt service monitoring tools\315\bin\remoteserialmultiplexer.exe (Danfoss Turbocor) [File not signed]
FirewallRules: [{592178FE-CB82-47E5-BEDE-93D5F7396143}] => (Allow) C:\programy\Danfoss\MCT\Install\MCT 10 Set-up Software.exe (Danfoss Drives, Inc.) [File not signed]
FirewallRules: [{E5D42526-458F-47A8-88C1-52056313FC1A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)

==================== Restore Points =========================


==================== Faulty Device Manager Devices =============

Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (03/08/2019 10:24:41 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation; Popis = Naplánovaný kontrolní bod; Chyba = 0x80070422).

Error: (03/08/2019 09:23:13 AM) (Source: openvpnserv) (EventID: 0) (User: )
Description: Event-ID 0

Error: (03/08/2019 05:48:36 AM) (Source: openvpnserv) (EventID: 0) (User: )
Description: Event-ID 0

Error: (03/07/2019 06:58:45 PM) (Source: openvpnserv) (EventID: 0) (User: )
Description: Event-ID 0

Error: (03/07/2019 06:51:08 PM) (Source: openvpnserv) (EventID: 0) (User: )
Description: Event-ID 0

Error: (03/07/2019 12:44:18 PM) (Source: openvpnserv) (EventID: 0) (User: )
Description: Event-ID 0

Error: (03/07/2019 09:48:38 AM) (Source: openvpnserv) (EventID: 0) (User: )
Description: Event-ID 0

Error: (03/07/2019 05:52:46 AM) (Source: openvpnserv) (EventID: 0) (User: )
Description: Event-ID 0


System errors:
=============
Error: (03/08/2019 09:23:23 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
Avguniva

Error: (03/08/2019 09:23:13 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba rixdpcie neuspěla při spuštění v důsledku následující chyby:
Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.

Error: (03/08/2019 09:23:13 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba risdpcie neuspěla při spuštění v důsledku následující chyby:
Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.

Error: (03/08/2019 09:23:13 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba rimspci neuspěla při spuštění v důsledku následující chyby:
Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.

Error: (03/08/2019 09:23:12 AM) (Source: Microsoft-Windows-GroupPolicy) (EventID: 1055) (User: NT AUTHORITY)
Description: Zpracování zásad skupiny selhalo. Systém Windows nerozpoznal název počítače. Může to být způsobeno jedním nebo více z následujících důvodů:
a) Selhal překlad IP adres v aktuálním řadiči domény.
b) Čekací doba replikace služby Active Directory (účet vytvořený na jiném řadiči domény nebyl replikován na aktuální řadič domény).

Error: (03/08/2019 09:23:12 AM) (Source: NETLOGON) (EventID: 5719) (User: )
Description: Tento počítač nemohl nastavit zabezpečenou relaci s řadičem
domény v doméně SINOP z následujícího důvodu:
Pro vyřízení žádosti o přihlášení nejsou nyní k dispozici žádné přihlašovací servery.


To může vést k potížím při ověřování. Přesvědčte se, zda je tento
počítač připojen k síti. Pokud potíže trvají,
obraťte se na správce domény.



DALŠÍ INFORMACE

Pokud je tento počítač řadičem domény pro určenou doménu,
nastaví zabezpečenou relaci s emulátorem primárního řadiče domény v určené
doméně. V opačném případě tento počítač nastaví zabezpečenou relaci s libovolným řadičem domény
v určené doméně.

Error: (03/08/2019 09:22:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba SQL Server (WINCCFLEXEXPRESS) byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (03/08/2019 09:22:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba MCT10 Service byla neočekávaně ukončena. Tento stav nastal již 1krát.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5 CPU M 520 @ 2.40GHz
Percentage of memory in use: 57%
Total physical RAM: 6005.33 MB
Available physical RAM: 2529.99 MB
Total Virtual: 12008.84 MB
Available Virtual: 8554.45 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.66 GB) (Free:339.51 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive i: (DATA_FIRMA) (Network) (Total:300 GB) (Free:74.25 GB) NTFS
Drive k: (DATA_01_2) (Network) (Total:400 GB) (Free:81.53 GB) NTFS
Drive r: (DATA_01_4) (Network) (Total:1000 GB) (Free:103.63 GB) NTFS
Drive s: (DATA_01_1) (Network) (Total:999.87 GB) (Free:381.48 GB) NTFS
Drive u: (USER_DISKY) (Network) (Total:8999.87 GB) (Free:645.82 GB) NTFS

\\?\Volume{9a43eba1-c4c5-11e5-b6f5-806e6f6e6963}\ () (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 96BF0845)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

[Rudy]

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\...\MountPoints2: D - D:\AK2Install.exe
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\...\MountPoints2: {b57b48b7-9e7f-11e7-a312-88ae1daac194} - D:\AK2Install.exe
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\...\MountPoints2: {e564ddf1-4bda-11e4-8afa-70f395801384} - D:\SISetup.exe
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com
SearchScopes: HKLM -> DefaultScope {80F13005-1D04-4230-B5F8-9E0C19246A9B} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {80F13005-1D04-4230-B5F8-9E0C19246A9B} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {80F13005-1D04-4230-B5F8-9E0C19246A9B} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {80F13005-1D04-4230-B5F8-9E0C19246A9B} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-1350338271-1762688309-1791207727-1488 -> DefaultScope {80F13005-1D04-4230-B5F8-9E0C19246A9B} URL =
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
U4 eabfiltr; no ImagePath
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488UA.job
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488Core.job
CustomCLSID: HKU\S-1-5-21-1350338271-1762688309-1791207727-1488_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\snejdar\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-1350338271-1762688309-1791207727-1488_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\snejdar\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll (Google Inc -> Google Inc.)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
Task: {5F256C22-448F-4A78-B4CE-9E5E6C498FBF} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488UA => C:\Users\snejdar\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {79237460-2A1E-4E2A-A4C4-8BF655A6FFCE} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488Core => C:\Users\snejdar\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {8943705C-2FEE-4D51-8F25-E347F22A9B78} - System32\Tasks\{B3CEED0C-8C74-4B9B-A0E3-0BB86660B39D} => C:\Windows\system32\pcalua.exe -a C:\Users\snejdar\AppData\Local\Temp\jre-8u101-windows-au.exe -d "C:\Program Files\Java\jre1.8.0_73\bin" -c /installmethod=jau-m FAMILYUPGRADE=1 <==== ATTENTION
Task: {A20BB704-D29A-4671-8C03-3C89CD804F25} - System32\Tasks\{6D224F73-4F5F-4D9D-B01B-D990EEC428A1} => C:\Windows\system32\pcalua.exe -a "C:\Users\snejdar\AppData\Local\Tecumseh Europe\Selection Software\Uninstall.exe"
Task: {A7E244FE-9006-48C1-9D8A-1FDFC83E3F47} - System32\Tasks\{EABB7189-980D-479E-BD23-337E31F45885} => C:\Windows\system32\pcalua.exe -a D:\desktop\Setup.exe -d D:\desktop
Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - System32\Tasks\Microsoft\Windows\Application Experience\AitAgent => aitagent.exe <==== ATTENTION
Task: {C1A81887-77D1-4A00-8C72-FD50CABEDD09} - System32\Tasks\{67B040D0-2D26-4DF4-9E1C-4F55307E91C8} => C:\Windows\system32\pcalua.exe -a "C:\Users\snejdar\Documents\Danfoss\Danfoss Service Tool\ST\AK-ST 500_3.43Update\setup.exe" -d "C:\Users\snejdar\Documents\Danfoss\Danfoss Service Tool\ST\AK-ST 500_3.43Update"
Task: {F4E07D44-E60F-49CA-A054-8FD8E9C181F4} - System32\Tasks\{D17D8D12-2BC8-4C3C-AD5C-8EF48B9EE561} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{4310C0BC-7F6F-4E44-99A9-7F6775CDCF87}\setup.exe" -c -runfromtemp -l0x0009 -removeonly
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488Core.job => C:\Users\snejdar\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488UA.job => C:\Users\snejdar\AppData\Local\Google\Update\GoogleUpdate.exe

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[stoker303]

Fix result of Farbar Recovery Scan Tool (x64) Version: 09.03.2019
Ran by snejdar (09-03-2019 14:47:30) Run:1
Running from C:\Users\snejdar\Desktop
Loaded Profiles: snejdar (Available Profiles: snejdar & oem)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\...\MountPoints2: D - D:\AK2Install.exe
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\...\MountPoints2: {b57b48b7-9e7f-11e7-a312-88ae1daac194} - D:\AK2Install.exe
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\...\MountPoints2: {e564ddf1-4bda-11e4-8afa-70f395801384} - D:\SISetup.exe
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com
SearchScopes: HKLM -> DefaultScope {80F13005-1D04-4230-B5F8-9E0C19246A9B} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {80F13005-1D04-4230-B5F8-9E0C19246A9B} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {80F13005-1D04-4230-B5F8-9E0C19246A9B} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {80F13005-1D04-4230-B5F8-9E0C19246A9B} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-1350338271-1762688309-1791207727-1488 -> DefaultScope {80F13005-1D04-4230-B5F8-9E0C19246A9B} URL =
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
U4 eabfiltr; no ImagePath
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488UA.job
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488Core.job
CustomCLSID: HKU\S-1-5-21-1350338271-1762688309-1791207727-1488_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\snejdar\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll (Google Inc -> Google Inc.)
CustomCLSID: HKU\S-1-5-21-1350338271-1762688309-1791207727-1488_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\snejdar\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll (Google Inc -> Google Inc.)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
Task: {5F256C22-448F-4A78-B4CE-9E5E6C498FBF} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488UA => C:\Users\snejdar\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {79237460-2A1E-4E2A-A4C4-8BF655A6FFCE} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488Core => C:\Users\snejdar\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {8943705C-2FEE-4D51-8F25-E347F22A9B78} - System32\Tasks\{B3CEED0C-8C74-4B9B-A0E3-0BB86660B39D} => C:\Windows\system32\pcalua.exe -a C:\Users\snejdar\AppData\Local\Temp\jre-8u101-windows-au.exe -d "C:\Program Files\Java\jre1.8.0_73\bin" -c /installmethod=jau-m FAMILYUPGRADE=1 <==== ATTENTION
Task: {A20BB704-D29A-4671-8C03-3C89CD804F25} - System32\Tasks\{6D224F73-4F5F-4D9D-B01B-D990EEC428A1} => C:\Windows\system32\pcalua.exe -a "C:\Users\snejdar\AppData\Local\Tecumseh Europe\Selection Software\Uninstall.exe"
Task: {A7E244FE-9006-48C1-9D8A-1FDFC83E3F47} - System32\Tasks\{EABB7189-980D-479E-BD23-337E31F45885} => C:\Windows\system32\pcalua.exe -a D:\desktop\Setup.exe -d D:\desktop
Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - System32\Tasks\Microsoft\Windows\Application Experience\AitAgent => aitagent.exe <==== ATTENTION
Task: {C1A81887-77D1-4A00-8C72-FD50CABEDD09} - System32\Tasks\{67B040D0-2D26-4DF4-9E1C-4F55307E91C8} => C:\Windows\system32\pcalua.exe -a "C:\Users\snejdar\Documents\Danfoss\Danfoss Service Tool\ST\AK-ST 500_3.43Update\setup.exe" -d "C:\Users\snejdar\Documents\Danfoss\Danfoss Service Tool\ST\AK-ST 500_3.43Update"
Task: {F4E07D44-E60F-49CA-A054-8FD8E9C181F4} - System32\Tasks\{D17D8D12-2BC8-4C3C-AD5C-8EF48B9EE561} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{4310C0BC-7F6F-4E44-99A9-7F6775CDCF87}\setup.exe" -c -runfromtemp -l0x0009 -removeonly
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488Core.job => C:\Users\snejdar\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488UA.job => C:\Users\snejdar\AppData\Local\Google\Update\GoogleUpdate.exe

EmptyTemp:
End


*****************

Processes closed successfully.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\D => removed successfully
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b57b48b7-9e7f-11e7-a312-88ae1daac194} => removed successfully
HKLM\Software\Classes\CLSID\{b57b48b7-9e7f-11e7-a312-88ae1daac194} => not found
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e564ddf1-4bda-11e4-8afa-70f395801384} => removed successfully
HKLM\Software\Classes\CLSID\{e564ddf1-4bda-11e4-8afa-70f395801384} => not found
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
HKLM\Software\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => not found
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{80F13005-1D04-4230-B5F8-9E0C19246A9B} => removed successfully
HKLM\Software\Classes\CLSID\{80F13005-1D04-4230-B5F8-9E0C19246A9B} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{80F13005-1D04-4230-B5F8-9E0C19246A9B} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{80F13005-1D04-4230-B5F8-9E0C19246A9B} => not found
"HKU\S-1-5-21-1350338271-1762688309-1791207727-1488\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\System\CurrentControlSet\Services\eabfiltr => removed successfully
eabfiltr => service removed successfully
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488UA.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488Core.job => moved successfully
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856} => removed successfully
HKU\S-1-5-21-1350338271-1762688309-1791207727-1488_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F} => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg => removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => not found
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\00avg => removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5F256C22-448F-4A78-B4CE-9E5E6C498FBF}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5F256C22-448F-4A78-B4CE-9E5E6C498FBF}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488UA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488UA" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{79237460-2A1E-4E2A-A4C4-8BF655A6FFCE}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{79237460-2A1E-4E2A-A4C4-8BF655A6FFCE}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488Core => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488Core" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8943705C-2FEE-4D51-8F25-E347F22A9B78}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8943705C-2FEE-4D51-8F25-E347F22A9B78}" => removed successfully
C:\Windows\System32\Tasks\{B3CEED0C-8C74-4B9B-A0E3-0BB86660B39D} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B3CEED0C-8C74-4B9B-A0E3-0BB86660B39D}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A20BB704-D29A-4671-8C03-3C89CD804F25}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A20BB704-D29A-4671-8C03-3C89CD804F25}" => removed successfully
C:\Windows\System32\Tasks\{6D224F73-4F5F-4D9D-B01B-D990EEC428A1} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{6D224F73-4F5F-4D9D-B01B-D990EEC428A1}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A7E244FE-9006-48C1-9D8A-1FDFC83E3F47}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A7E244FE-9006-48C1-9D8A-1FDFC83E3F47}" => removed successfully
C:\Windows\System32\Tasks\{EABB7189-980D-479E-BD23-337E31F45885} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{EABB7189-980D-479E-BD23-337E31F45885}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AC4E5ACF-89F7-4220-BA21-81EE183975E2}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AC4E5ACF-89F7-4220-BA21-81EE183975E2}" => removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\Application Experience\AitAgent => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Application Experience\AitAgent" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C1A81887-77D1-4A00-8C72-FD50CABEDD09}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C1A81887-77D1-4A00-8C72-FD50CABEDD09}" => removed successfully
C:\Windows\System32\Tasks\{67B040D0-2D26-4DF4-9E1C-4F55307E91C8} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{67B040D0-2D26-4DF4-9E1C-4F55307E91C8}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F4E07D44-E60F-49CA-A054-8FD8E9C181F4}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F4E07D44-E60F-49CA-A054-8FD8E9C181F4}" => removed successfully
C:\Windows\System32\Tasks\{D17D8D12-2BC8-4C3C-AD5C-8EF48B9EE561} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{D17D8D12-2BC8-4C3C-AD5C-8EF48B9EE561}" => removed successfully
"C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488Core.job" => not found
"C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1350338271-1762688309-1791207727-1488UA.job" => not found

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 15802871 B
Java, Flash, Steam htmlcache => 419 B
Windows/system/drivers => -4675563 B
Edge => 0 B
Chrome => 454828674 B
Firefox => 11099751 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 66228 B
Public => 0 B
ProgramData => 0 B
systemprofile => 83760 B
systemprofile32 => 25009244 B
LocalService => 66228 B
NetworkService => 66228 B
sinop => 70784 B
dilna01e => 307307 B
snejdar => 166111887 B
oem => 49649 B

RecycleBin => 0 B
EmptyTemp: => 645.9 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 14:48:07 ====

[Rudy]

Smazáno. Nastala nějaká změna?

[stoker303]

Bohužel, stále mi knihovna mizí, mohu ještě zkusit reinstal programu a vyčkat nějaký čas, zda po posledním vymazání havěti bude stav lepší a knihovna mizet přestane.

[Rudy]

To jistě zkuste. Jinak ještě můžete spustit hloubkový sken AVPTool: http://www.viry.cz/forum/viewtopic.php?f=29&t=58179 . Utilitu stáhněte, spusťte, nechte pracovat a po skočení akce smažte vše, co najde.