Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-10-2019
Ran by Lukas (28-10-2019 17:43:31)
Running from G:\marvel ,DC
Windows 10 Home Version 1803 17134.1069 (X64) (2018-05-23 04:35:41)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-676012942-2397387924-1880445482-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-676012942-2397387924-1880445482-503 - Limited - Disabled)
Guest (S-1-5-21-676012942-2397387924-1880445482-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-676012942-2397387924-1880445482-1003 - Limited - Enabled)
Lukas (S-1-5-21-676012942-2397387924-1880445482-1000 - Administrator - Enabled) => C:\Users\Lukas
WDAGUtilityAccount (S-1-5-21-676012942-2397387924-1880445482-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {4FC75CA5-1654-5411-7CFB-1893D506BCF4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Antivirus (Enabled - Up to date) {F4A6BD41-306E-5B9F-464B-23E1AE81F649}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
4game (HKLM-x32\...\4game) (Version: 3.6.2.278 - Innova Systems)
4game (HKLM-x32\...\4game2.0) (Version: 1.0.0.94 - Innova Co. SARL)
4K Video Downloader 4.5 (HKLM\...\{180B9AE1-F87B-4107-8C68-4265E927D6A8}) (Version: 4.5.0.2482 - Open Media LLC)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.012.20034 - Adobe Systems Incorporated)
Adobe Flash Player 31 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 31.0.0.108 - Adobe Systems Incorporated)
AIDA64 Extreme v5.00 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.00 - FinalWire Ltd.)
Aktualizace NVIDIA 28.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 28.0.0.0 - NVIDIA Corporation) Hidden
AlphaGo (HKLM-x32\...\{118B6258-BF13-47C9-8D46-B2A349196B5D}) (Version: 1.0.0 - Default Company Name) <==== ATTENTION
AlphaGo (HKLM-x32\...\{2C652C0A-EC71-4797-8077-F67649177AB0}) (Version: 1.0.2 - Default Company Name) <==== ATTENTION
AlphaGo (HKLM-x32\...\{51639FCA-678F-4D71-8044-E16E3D49187F}) (Version: 1.0.7 - Default Company Name) <==== ATTENTION
AlphaGo (HKLM-x32\...\{97D2FBF4-72CF-4DD6-8DA8-26710BC7BE71}) (Version: 1.1.0 - Default Company Name) <==== ATTENTION
AlphaGo (HKLM-x32\...\{B20B3A3C-91E3-4326-8A0F-B3C012574F8C}) (Version: 1.1.2 - Default Company Name) <==== ATTENTION
AlphaGo (HKLM-x32\...\{B7CB7055-EFAE-4CD2-928A-15DB5F4FF7C7}) (Version: 1.2.5 - AlphaGo) <==== ATTENTION
AMD Catalyst Install Manager (HKLM\...\{E3C27552-F408-6465-3CA2-AA63826EC350}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMDProductVerification (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\4ecb547ba21a923a) (Version: 1.0.25.99 - AMDProductVerification)
amuleC (HKLM-x32\...\{0F7B5011-72EC-493D-A7BF-546591047E8E}) (Version: 1.0.2 - amuleC) <==== ATTENTION
amulesw (HKLM-x32\...\{3CC3DE19-E0B1-4D42-87AB-B5C61FE4BA58}) (Version: 1.0.6 - amules) <==== ATTENTION
Anno 1800 Open Beta (HKLM-x32\...\Uplay Install 13800) (Version: - Ubisoft)
Apple Mobile Device Support (HKLM\...\{B5A46811-3612-4DA5-8A5A-E6DED5D7C523}) (Version: 12.2.1.12 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Audiobook Downloader Pro 1.3 (HKLM-x32\...\Audiobook Downloader Pro) (Version: 1.3 - SuperUtils.com Software)
AVG AntiVirus FREE (HKLM-x32\...\AVG Antivirus) (Version: 19.8.3108 - AVG Technologies)
AVG Secure Browser (HKLM-x32\...\AVG Secure Browser) (Version: 77.1.1833.92 - Autoři prohlížeče AVG Secure Browser)
AVG Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.155.333 - AVG Technologies) Hidden
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.7.452 - AVG Technologies)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BikaQ Rss (HKLM-x32\...\{3678D164-84DB-4F73-AFD6-916342E10764}) (Version: 3.0.17 - BikaQ) <==== ATTENTION
Bing Bar (HKLM-x32\...\{16793295-2366-40F7-A045-A3E42A81365E}) (Version: 7.1.362.0 - Microsoft Corporation)
Bitcoin Core (64-bit) (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Bitcoin Core (64-bit)) (Version: 0.14.2 - Bitcoin Core project)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Booking (HKLM-x32\...\{13D4CD54-EA09-4FDB-B979-8B2BC0F020CA}_is1) (Version: 2.0.701 - Booking)
CamStudio 2.7.4 (HKLM\...\{04B83666-3A62-452B-85D3-70F8117F2329}_is1) (Version: 2.7.4 - CamStudio Open Source)
Car Mechanic Simulator 2018 (HKLM-x32\...\Car Mechanic Simulator 2018_is1) (Version: - )
Ceník stavebních prací 2.4 - aktualizace A (HKLM-x32\...\Ceník stavebních prací_is1) (Version: 2.4 - aktualizace A - Verlag Dashöfer s.r.o)
Cities In Motion (HKLM-x32\...\{15FA5ED6-2F98-4B5E-AF0B-18E5F4723FAD}_is1) (Version: - )
Cities XXL (HKLM-x32\...\Cities XXL_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter)
Cities: Skylines - ČEŠTINA (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Cities: Skylines - ČEŠTINA) (Version: - )
Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.62.0 - OEM) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.6.0.0283 - Disc Soft Ltd)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
DriverNavigator 3.6.9 (HKLM\...\DriverNavigator_is1) (Version: 3.6.9.0 - Easeware)
DVD Shrink 3.2 (HKLM-x32\...\DVD Shrink_is1) (Version: - DVD Shrink)
EVE Online (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\{5e6d5785-73e8-423f-a54c-b75cd3f5db13}) (Version: 1.0.0 - CCP)
Facebook Gameroom 1.20.6598.21896 (HKLM-x32\...\{C51FED78-02E5-4A80-B4D0-A4A474BB0CDD}) (Version: 1.20.6598.21896 - Facebook)
Far Cry 4 (HKLM-x32\...\Far Cry 4_is1) (Version: 1.4.0 - Ubisoft)
Farming Simulator 17 (HKLM\...\ZmFybWluZ3NpbXVsYXRvcjE3_is1) (Version: 1 - )
Farming Simulator 17 (HKLM-x32\...\{A82E512C-3BFB-43F8-B97F-8AA8F209B83B}) (Version: 1.2.0.0 - GIANTS Software) Hidden
Farming Simulator 17 (HKLM-x32\...\Farming Simulator 17 1.2.0.0) (Version: 1.2.0.0 - GIANTS Software)
Farming Simulator 19 (HKLM-x32\...\Farming Simulator 19_is1) (Version: - )
Firestorm Launcher version 1.3 (HKLM-x32\...\{008D5963-9A73-4472-8C16-A5BF04491B9D}_is1) (Version: 1.3 - Firestorm)
Flash Memory Toolkit trial 2.01 (HKLM-x32\...\Flash Memory Toolkit trial_is1) (Version: - EFD Software)
FORM studio (HKLM-x32\...\FSCZ_is1) (Version: - KASTNER software s.r.o.)
GitHub Desktop (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\GitHubDesktop) (Version: 1.0.11 - GitHub, Inc.)
Google Drive (HKLM-x32\...\{A1238426-ECDF-4639-BE2F-8D12A97AE23C}) (Version: 2.34.5075.1619 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 78.0.3904.70 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.301 - Google LLC) Hidden
Hearts of Iron IV (HKLM-x32\...\Hearts of Iron IV_is1) (Version: - )
HiSuite (HKLM-x32\...\Hi Suite) (Version: 9.0.3.300 - )
Charity Engine (HKLM-x32\...\{7309D717-F38D-436D-9537-066AA0AC7639}) (Version: 7.0.80 - Charity Engine)
iCloud (HKLM\...\{DA6D808E-3629-4933-8FB3-583F9BCB0DEF}) (Version: 7.12.0.14 - Apple Inc.)
iTunes (HKLM\...\{7B81A249-0187-436C-9738-AF82DAA54822}) (Version: 12.9.5.7 - Apple Inc.)
Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
Kerbal Space Program (HKLM-x32\...\Kerbal Space Program_is1) (Version: - )
Kingdom Come Deliverance (HKLM-x32\...\Kingdom Come Deliverance_is1) (Version: - )
LineageII EU (HKLM-x32\...\4game_lineage2eu) (Version: - Innova Systems)
Litecoin Core (64-bit) (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Litecoin Core (64-bit)) (Version: 0.14.2 - Litecoin Core project)
Mafia I - The City of Lost Heaven verze v1.3 (HKLM-x32\...\{360EBFE4-4591-4AE6-8D97-A58A43C15869}_is1) (Version: v1.3 - Danik1B9)
Malwarebytes Anti-Malware verze 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Math Problem Solver (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Math Problem Solver) (Version: - ) <==== ATTENTION
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{929CE49F-1CA7-4CF3-A9A1-6D757443C63F}) (Version: 1.2.0241 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.7.133.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\OneDriveSetup.exe) (Version: 19.174.0902.0013 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 53.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 53.0 (x86 cs)) (Version: 53.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 53.0 - Mozilla)
Mp3 Editor for Free v5.2.7 Build 79 (HKLM-x32\...\Mp3 Editor for Free_is1) (Version: 5.2.7 Build 79 - Mp3EditorforFree Ltd.)
NVIDIA GeForce Experience 3.9.0.97 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.9.0.97 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.13 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{D9559CE2-9C58-F414-43EA-F908FEA13BB8}) (Version: 1.00.0000 - Název společnosti:)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Opera Stable 55.0.2994.61 (HKLM-x32\...\Opera 55.0.2994.61) (Version: 55.0.2994.61 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.5.50.31938 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.13 - NVIDIA Corporation) Hidden
PDF To Excel Converter V3.0 (HKLM-x32\...\PDF To Excel Converter_is1) (Version: - hxxp://www.PDFExcelConverter.com)
Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.) Hidden
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{C1BCFECF-6EC2-4750-9072-5E2489423F8F}) (Version: 7.5 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{B202C7F5-7DE3-4FBF-B259-E70E625F56FC}) (Version: 7.5 - Apple Inc.)
Port Royale 3 (HKLM-x32\...\{68DED384-1F74-4AEE-8B8E-95AF15572FE3}) (Version: 1.0.0.0 - Gaming Minds Studios GmbH)
Qualcomm Atheros Bandwidth Control Filter Driver (HKLM\...\{C80C9B28-CF99-431C-88C8-8B1F9B6A182F}) (Version: 1.1.39.1040 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer E220x Drivers (HKLM\...\{DD2A85B3-64C5-4263-A7AF-4F61FA5F369A}) (Version: 1.1.39.1040 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer Network Manager Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.39.1040 - Qualcomm Atheros)
Qualcomm Atheros Network Manager (HKLM\...\{7364C716-1212-4EAE-B0C9-A31D1E797BF8}) (Version: 1.1.39.1040 - Qualcomm Atheros) Hidden
Railroad Tycoon II Platinum (HKLM-x32\...\1445250876_is1) (Version: 2.0.0.5 - GOG.com)
Railway Empire (HKLM-x32\...\1556481953_is1) (Version: 1.1.1.17568 - GOG.com)
RAUCAD-TechCON (7.2) (HKLM-x32\...\{889D28AD-3F0C-48CD-B9BA-95B89A848DD6}) (Version: 7.00.0715 - Atcon systems s.r.o.)
Realpolitiks version 1.3.4 (HKLM-x32\...\{728B7AF5-D053-4F1A-9C6A-019B1376D99C}_is1) (Version: 1.3.4 - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7780 - Realtek Semiconductor Corp.)
Risen 3 Titan Lords (HKLM-x32\...\{3E96DF21-CE2A-40EA-8BAD-2DE5D7132EBD}) (Version: 1.20 - Piranha Bytes SteveHood)
Safety Browsing (HKLM-x32\...\Safety Browsing) (Version: 2.1.0.1 - Balmain Management Ltd)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 1.05.45.00(23.5.2014) - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Samsung Universal Scan Driver (HKLM-x32\...\Samsung Universal Scan Driver) (Version: 1.2.19.0 - Samsung Electronics Co., Ltd.)
Search App by Ask (HKLM-x32\...\{4F524A2D-5350-4500-76A7-A758B70C2E03}) (Version: 12.46.3.4268 - APN, LLC) <==== ATTENTION
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Seznam Software (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\SeznamInstall) (Version: 2.1.32 - Seznam.cz)
Shockwave (HKLM-x32\...\Shockwave) (Version: - )
Sid Meier's Civilization: Beyond Earth Rising Tide Addon (HKLM\...\U2lkTWVpZXJzQ2l2aWxpemF0aW9uQmV5b25kRWFydGg=_is1) (Version: 1 - )
SketchUp 2016 (HKLM\...\{D87EE6DC-32BA-4219-AC75-0A6FD54ED058}) (Version: 16.0.19912 - Trimble Navigation Limited)
Skype HoloLens Add-In (HKLM-x32\...\{38A3693F-1954-450F-8E42-C0E6F9C1AE94}) (Version: 1.0.0.0 - Microsoft Corporation)
Skype Web Plugin (HKLM-x32\...\{CD62BCB9-02D2-443F-AC7A-443377DA5B38}) (Version: 7.31.0.56 - Skype Technologies S.A.)
Skype™ 7.38 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.38.101 - Skype Technologies S.A.)
SlimDrivers (HKLM-x32\...\{746AB259-6474-4111-8966-1C62F9A6E063}) (Version: 2.3.1 - SlimWare Utilities, Inc.)
Sony PC Companion (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.297 - Sony)
Sound Blaster Cinema 2 (HKLM-x32\...\{B4F6F8CC-2C61-42CC-A4CC-76621F25BDC7}) (Version: 1.00.06 - Creative Technology Limited)
SPORE™ (HKLM-x32\...\{9DF0196F-B6B8-4C3A-8790-DE42AA530101}) (Version: 1.00.0000 - Electronic Arts)
Star Conflict Launcher 1.0.1.34 (HKLM-x32\...\StarConflictLauncher_is1) (Version: - )
Star Stable Online (HKLM-x32\...\{8CD50415-04B7-459E-8CBD-DA96A9CDF98E}) (Version: 1.01.0000 - Star Stable Entertainment AB)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stellaris (HKLM-x32\...\Stellaris_is1) (Version: - )
Střechy a stěny TONDACH 2018 (HKLM-x32\...\Střechy a stěny TONDACH 2018_is1) (Version: - )
Sudden Strike II (HKLM-x32\...\Sudden Strike II) (Version: - )
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.132598 - TeamViewer)
Terela (HKLM-x32\...\{E2F7C535-0785-4C2D-B56F-016BFD02B010}) (Version: 1.1.6 - Terela)
The Elder Scrolls V Skyrim LE (HKLM-x32\...\The Elder Scrolls V Skyrim LE_is1) (Version: - )
TrafficGiant-Gold Edition (HKLM-x32\...\TrafficGiant-Gold Edition) (Version: - )
Transport Fever (HKLM-x32\...\1720767912_is1) (Version: 2.0.0.2 - GOG.com)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Update_msi (HKLM-x32\...\{59B5A9CD-253D-4C41-A073-B387D4C9672D}) (Version: 1.0.0 - Default Company Name)
Uplay (HKLM-x32\...\Uplay) (Version: 85.1 - Ubisoft)
USB PC Camera (ZS211) (HKLM-x32\...\{44D02D8B-FFB3-4245-8D26-68D10B4C4023}) (Version: 1.00.000 - )
VIA Platforma Ovladače zařízení (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
WarThunder (HKLM-x32\...\WarThunder) (Version: - ) <==== ATTENTION
WhatsApp (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\WhatsApp) (Version: 0.3.3793 - WhatsApp)
Win10 Spy Disabler v1.4 (HKLM\...\Win10 Spy Disabler_is1) (Version: 1.4.0.0 - site2unblock.com)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{3577E42B-3347-4EB8-BFDA-D36E8ED3C519}) (Version: 1.0.24.0 - Microsoft Corporation)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
WinRAR 5.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
WinSetupFromUSB (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\WinSetupFromUSB) (Version: - )
WinSnare (HKLM-x32\...\{BB26F52E-34C5-4937-9240-471C59CC81E6}) (Version: 4.4.5 - WinSnare) <==== ATTENTION
Wondershare MobileGo(Version 8.5.0) (HKLM-x32\...\{1E04C795-7359-4E05-8A0E-5644F777AA09}_is1) (Version: 8.5.0 - Wondershare)
World of Tanks (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1) (Version: - Wargaming.net)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
youndoo - Uninstall (HKLM-x32\...\{2AEE6375-5F4E-4EF3-82AE-68CCB56539EF}) (Version: - ) <==== ATTENTION
Packages:
=========
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.150.300.0_x86__kgqvnymyfvs32 [2019-10-16] (king.com)
Messenger -> C:\Program Files\WindowsApps\Facebook.317180B0BB486_196.2292.59195.0_x86__8xx8rvfyw5nnt [2019-05-20] (Facebook Inc)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-20] (Microsoft Corporation) [MS Ad]
Microsoft Průvodce pro telefon -> C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1802.311.0_x64__8wekyb3d8bbwe [2018-02-13] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.10022.0_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Studios) [MS Ad]
Microsoft Telefon -> C:\Program Files\WindowsApps\Microsoft.CommsPhone_3.43.20002.1000_x64__8wekyb3d8bbwe [2018-09-09] (Microsoft Corporation)
MSN Money -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-20] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-20] (Microsoft Corporation) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-20] (Microsoft Corporation) [MS Ad]
Pošta a Kalendář -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe [2019-09-25] (Microsoft Corporation) [MS Ad]
Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2017-09-06] (Samsung Electronics Co. Ltd.)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-09] (Twitter Inc.)
WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x64__8wekyb3d8bbwe [2016-05-19] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\ChromeHTML: -> C:\Program Files (x86)\Footjane\Application\chrome.exe (Google Inc -> Google Inc.) <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-676012942-2397387924-1880445482-1000_Classes\CLSID\{E5A7A7B5-9D06-4DBE-BAC0-04B69FF070B5}\InprocServer32 -> C:\Users\Lukas\AppData\Local\SkypePlugin\7.31.0.56\GatewayActiveX-x64.dll (Microsoft Corporation -> Skype Technologies S.A.)
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6671064 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks: No Name - {D7743BB4-F774-11E6-8881-64006A5CFC23} - -> No File
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-03-21] (Google Inc -> Google)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2019-05-08] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-03-21] (Google Inc -> Google)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\atiacm64.dll [2015-06-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2011-02-18] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2011-02-18] (Electronic Arts -> On2.com)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\Lukas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files (x86)\Firefox\Firefox.exe (Mozilla Corporation)
Shortcut: C:\Users\Lukas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d2f3fe59963baaac\Google Chrome.lnk -> C:\Program Files (x86)\Footjane\Application\chrome.exe (Google Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Firefox\Firefox.exe (Mozilla Corporation)
Shortcut: C:\Users\Public\Desktop\Mozilla Firefox.lnk -> C:\Program Files (x86)\Firefox\Firefox.exe (Mozilla Corporation)
ShortcutWithArgument: C:\Users\Lukas\Desktop\BigFarm.lnk -> C:\Program Files (x86)\Footjane\Application\chrome.exe (Google Inc.) -> hxxp://bigfarm.goodgamestudios.com/?w=239064
ShortcutWithArgument: C:\Users\Lukas\Desktop\big_bang_empire.lnk -> C:\Program Files (x86)\Footjane\Application\chrome.exe (Google Inc.) -> hxxp://www.bigbangempire.com/?ref=281-000-000-005
ShortcutWithArgument: C:\Users\Lukas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\555427c6daa071de\Google Chrome.lnk -> C:\Program Files (x86)\Footjane\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData
==================== Loaded Modules (Whitelisted) =============
2015-02-07 18:44 - 2014-01-02 10:19 - 000040960 ____N ( ) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\Interop.CTSndCr.dll
2015-10-20 09:18 - 2015-10-20 09:18 - 000714240 _____ () [File not signed] C:\Program Files (x86)\4game\3.6.2.278\PocoNet.dll
2015-10-20 09:17 - 2015-10-20 09:17 - 000242176 _____ () [File not signed] C:\Program Files (x86)\4game\3.6.2.278\PocoUtil.dll
2015-10-20 09:16 - 2015-10-20 09:16 - 000394240 _____ () [File not signed] C:\Program Files (x86)\4game\3.6.2.278\PocoXML.dll
2015-07-25 23:38 - 2016-07-20 20:41 - 000266240 _____ () [File not signed] C:\Program Files (x86)\Origin\imageformats\qmng.dll
2017-01-11 19:42 - 2019-10-16 17:25 - 000015360 _____ () [File not signed] C:\Program Files (x86)\Origin\libEGL.DLL
2017-01-11 19:42 - 2019-10-16 17:25 - 003090944 _____ () [File not signed] C:\Program Files (x86)\Origin\libGLESv2.dll
2011-11-13 14:30 - 2011-11-13 14:30 - 000676864 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2012-05-04 15:41 - 2012-05-04 15:41 - 000211968 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2011-11-13 14:31 - 2011-11-13 14:31 - 003643392 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2018-01-23 22:01 - 2018-01-23 22:01 - 000774656 _____ () [File not signed] C:\Users\Lukas\AppData\Local\Facebook\Games\CefSharp.BrowserSubprocess.Core.dll
2018-01-23 22:01 - 2018-01-23 22:01 - 001184256 _____ () [File not signed] C:\Users\Lukas\AppData\Local\Facebook\Games\CefSharp.Core.dll
2018-01-23 22:01 - 2018-01-23 22:01 - 070447616 _____ () [File not signed] C:\Users\Lukas\AppData\Local\Facebook\Games\libcef.dll
2018-01-23 22:01 - 2018-01-23 22:01 - 000078848 _____ () [File not signed] C:\Users\Lukas\AppData\Local\Facebook\Games\libegl.dll
2018-01-23 22:01 - 2018-01-23 22:01 - 003149824 _____ () [File not signed] C:\Users\Lukas\AppData\Local\Facebook\Games\libglesv2.dll
2019-10-28 17:32 - 2019-10-28 17:32 - 000088064 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\_ctypes.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000128512 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\_elementtree.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000914432 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\_hashlib.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000027648 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\_multiprocessing.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000036864 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\_psutil_windows.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000046080 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\_socket.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 001303552 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\_ssl.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000020480 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\_yappi.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000012800 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\common.time34.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000007168 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\hashobjs_ext.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000127488 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\pyexpat.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000682496 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\pysqlite2._sqlite.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000364544 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\pythoncom27.dll
2019-10-28 17:32 - 2019-10-28 17:32 - 000110080 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\pywintypes27.dll
2019-10-28 17:32 - 2019-10-28 17:32 - 000010240 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\select.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000017920 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\thumbnails_ext.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000686080 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\unicodedata.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000088064 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\usb_ext.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000098816 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\win32api.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000320512 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\win32com.shell.shell.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000011264 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\win32crypt.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000018432 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\win32event.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000119808 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\win32file.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000167936 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\win32gui.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000038912 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\win32inet.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000025600 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\win32pdh.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000024064 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\win32pipe.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000035840 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\win32process.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000017408 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\win32profile.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000108544 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\win32security.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000022528 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\win32ts.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000078848 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\wx._animate.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 001067008 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\wx._controls_.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 001176576 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\wx._core_.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000806400 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\wx._gdi_.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000077312 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\wx._html2.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000733184 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\wx._misc_.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000816128 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\wx._windows_.pyd
2019-10-28 17:32 - 2019-10-28 17:32 - 000123392 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\wx._wizard.pyd
2015-02-07 18:44 - 2014-02-21 11:19 - 000366080 _____ () [File not signed] C:\Windows\SYSTEM32\APOMgr64.DLL
2015-02-07 18:44 - 2014-02-21 11:21 - 000089600 _____ () [File not signed] C:\Windows\SYSTEM32\CmdRtr64.DLL
2015-10-20 09:18 - 2015-10-20 09:18 - 000089600 _____ (Applied Informatics Software Engineering GmbH) [File not signed] C:\Program Files (x86)\4game\3.6.2.278\PocoCrypto.dll
2015-10-20 09:15 - 2015-10-20 09:15 - 001193472 _____ (Applied Informatics Software Engineering GmbH) [File not signed] C:\Program Files (x86)\4game\3.6.2.278\PocoFoundation.dll
2015-10-20 09:19 - 2015-10-20 09:19 - 000176128 _____ (Applied Informatics Software Engineering GmbH) [File not signed] C:\Program Files (x86)\4game\3.6.2.278\PocoNetSSL.dll
2015-02-07 18:44 - 2012-04-27 10:26 - 000529920 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\CTAudEp.dll
2015-02-07 18:44 - 2011-09-22 19:04 - 000238080 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\CTLoadRs.dll
2015-02-07 18:44 - 2014-02-21 11:03 - 000991232 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\en-US\SBCinema2.resources.dll
2015-02-07 18:44 - 2013-08-22 10:36 - 000249344 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\HKDetect.dll
2017-04-25 19:24 - 2017-04-25 03:00 - 000352768 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\freebl3.dll
2017-04-25 19:24 - 2017-04-25 02:59 - 000049664 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\lgpllibs.dll
2017-04-25 19:24 - 2017-04-25 02:59 - 000017408 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\libEGL.dll
2017-04-25 19:24 - 2017-04-25 02:59 - 001489920 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\mozavcodec.dll
2017-04-25 19:24 - 2017-04-25 02:59 - 000150528 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\mozavutil.dll
2017-04-25 19:24 - 2017-04-25 02:59 - 000107520 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\mozglue.dll
2017-04-25 19:24 - 2017-04-25 03:00 - 001209856 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\nss3.dll
2017-04-25 19:24 - 2017-04-25 03:00 - 000405504 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\nssckbi.dll
2017-04-25 19:24 - 2017-04-25 03:00 - 000088576 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\nssdbm3.dll
2017-04-25 19:24 - 2017-04-25 03:00 - 000141824 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\softokn3.dll
2017-04-25 19:24 - 2017-04-25 03:05 - 051872256 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\xul.dll
2017-12-18 18:39 - 2015-02-27 10:35 - 000489984 _____ (Newtonsoft) [File not signed] C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\Newtonsoft.Json.dll
2019-08-10 16:48 - 2017-10-27 17:06 - 000760032 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI.dll
2019-08-10 16:48 - 2017-10-27 17:06 - 000874368 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI64.dll
2019-08-10 16:48 - 2017-10-27 17:06 - 000339256 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\NvStereo\_nvstapisvr64.dll
2019-10-28 17:32 - 2019-10-28 17:32 - 002459648 ____R (Python Software Foundation) [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\python27.dll
2013-11-26 10:07 - 2013-11-26 10:07 - 000112128 _____ (Samsung Electronics Co., Ltd.) [File not signed] C:\Program Files (x86)\Samsung\Easy Printer Manager\SmartScreenPrint\CDAKEYMonitor.dll
2018-01-23 22:01 - 2018-01-23 22:01 - 000433664 _____ (The Chromium Authors) [File not signed] C:\Users\Lukas\AppData\Local\Facebook\Games\chrome_elf.dll
2017-08-30 20:17 - 2019-10-16 17:25 - 000002560 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\Origin\icudt58.dll
2017-08-30 20:17 - 2019-10-16 17:25 - 001252864 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\Origin\icuuc58.dll
2015-07-09 15:45 - 2015-07-09 15:45 - 001260544 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\4game\3.6.2.278\LIBEAY32.dll
2015-07-09 15:45 - 2015-07-09 15:45 - 000295936 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\4game\3.6.2.278\SSLEAY32.dll
2015-07-25 23:38 - 2019-10-16 17:25 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2017-01-11 19:42 - 2019-10-16 17:25 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2015-07-25 23:38 - 2019-10-16 17:25 - 000030208 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qgif.dll
2015-07-25 23:38 - 2019-10-16 17:25 - 000032768 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qico.dll
2015-07-25 23:38 - 2019-10-16 17:25 - 000256512 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2015-07-25 23:38 - 2019-10-16 17:25 - 000026112 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qtga.dll
2015-07-25 23:38 - 2019-10-16 17:25 - 000305152 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2015-07-25 23:38 - 2019-10-16 17:25 - 000025600 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qwbmp.dll
2016-07-27 11:08 - 2019-10-16 17:25 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2019-04-02 17:05 - 2019-10-16 17:25 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2019-04-02 17:05 - 2019-10-16 17:25 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2019-04-02 17:05 - 2019-10-16 17:25 - 000709120 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Multimedia.dll
2019-04-02 17:05 - 2019-10-16 17:25 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2019-04-02 17:05 - 2019-10-16 17:25 - 000207360 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Positioning.dll
2019-04-02 17:05 - 2019-10-16 17:25 - 000310272 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5PrintSupport.dll
2019-04-02 17:05 - 2019-10-16 17:25 - 003513344 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Qml.dll
2019-04-02 17:05 - 2019-10-16 17:25 - 003390976 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Quick.dll
2019-04-02 17:05 - 2019-10-16 17:25 - 000068096 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5QuickWidgets.dll
2019-04-02 17:05 - 2019-10-16 17:25 - 000045568 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5TextToSpeech.dll
2019-04-02 17:05 - 2019-10-16 17:25 - 054071296 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebEngineCore.dll
2019-04-02 17:05 - 2019-10-16 17:25 - 000211456 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebEngineWidgets.dll
2019-04-02 17:05 - 2019-10-16 17:25 - 000116224 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebChannel.dll
2019-04-02 17:05 - 2019-10-16 17:25 - 000146432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2019-04-02 17:05 - 2019-10-16 17:25 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2019-04-02 17:05 - 2019-10-16 17:25 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
2017-12-18 18:39 - 2017-06-01 17:31 - 000047104 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Wondershare\MobileGo\COM.Net.dll
2017-12-18 18:39 - 2017-03-20 16:13 - 000087552 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppCollect.dll
2017-12-18 18:39 - 2017-03-20 16:13 - 000197632 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppCommon.dll
2019-10-28 17:32 - 2019-10-28 17:32 - 000155136 ____R (wxWidgets development team) [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\wxbase30u_net_vc90.dll
2019-10-28 17:32 - 2019-10-28 17:32 - 002030592 ____R (wxWidgets development team) [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\wxbase30u_vc90.dll
2019-10-28 17:32 - 2019-10-28 17:32 - 001251328 ____R (wxWidgets development team) [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\wxmsw30u_adv_vc90.dll
2019-10-28 17:32 - 2019-10-28 17:32 - 004796928 ____R (wxWidgets development team) [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\wxmsw30u_core_vc90.dll
2019-10-28 17:32 - 2019-10-28 17:32 - 000601088 ____R (wxWidgets development team) [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\wxmsw30u_html_vc90.dll
2019-10-28 17:32 - 2019-10-28 17:32 - 000110080 ____R (wxWidgets development team) [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI116082\wxmsw30u_webview_vc90.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0]
AlternateDataStreams: C:\Users\Lukas\OneDrive:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity [108]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2018-12-18 21:17 - 000000864 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 validation.sls.microsoft.com
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\AMD APP\bin\x86_64;C:\Program Files (x86)\AMD APP\bin\x86;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Skype\Phone\;C:\Program Files (x86)\AMD\ATI.ACE\Core-Static;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
DNS Servers: 192.168.8.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{E8261C4A-5748-4FAB-BFB7-57C014C2F580}H:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) H:\games\kingdom come deliverance\bin\win64\kingdomcome.exe No File
FirewallRules: [TCP Query User{5F82500E-6BD6-43D4-B594-9119D5ADEB5D}H:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) H:\games\kingdom come deliverance\bin\win64\kingdomcome.exe No File
FirewallRules: [{3E6BAF4B-19DA-4C54-833F-FD154DE90925}] => (Allow) H:\Program Files (x86)\SteamLibrary\steamapps\common\star conflict\game.exe No File
FirewallRules: [{576DE4BB-9B0D-46E5-B361-162018E2F13B}] => (Allow) H:\Program Files (x86)\SteamLibrary\steamapps\common\star conflict\game.exe No File
FirewallRules: [UDP Query User{5673BEC2-A4F2-4F0A-AC2D-707C1F07870C}H:\gog games\railway empire\railwayempire.exe] => (Allow) H:\gog games\railway empire\railwayempire.exe No File
FirewallRules: [TCP Query User{4C07B869-37F5-4F44-907E-BC68ED984A26}H:\gog games\railway empire\railwayempire.exe] => (Allow) H:\gog games\railway empire\railwayempire.exe No File
FirewallRules: [UDP Query User{4E691515-6FC1-43C8-81C6-DBB1B7F8F75B}C:\program files\bitcoin\bitcoin-qt.exe] => (Allow) C:\program files\bitcoin\bitcoin-qt.exe () [File not signed]
FirewallRules: [TCP Query User{15440FDB-4B6F-48A1-824C-7A84E96D09B6}C:\program files\bitcoin\bitcoin-qt.exe] => (Allow) C:\program files\bitcoin\bitcoin-qt.exe () [File not signed]
FirewallRules: [UDP Query User{143DC50B-219C-4114-8E8F-E8BC0D6B35DE}C:\program files\litecoin\litecoin-qt.exe] => (Allow) C:\program files\litecoin\litecoin-qt.exe () [File not signed]
FirewallRules: [TCP Query User{B74490D4-05D2-4AB0-BD77-2A277BA7545F}C:\program files\litecoin\litecoin-qt.exe] => (Allow) C:\program files\litecoin\litecoin-qt.exe () [File not signed]
FirewallRules: [UDP Query User{0E663628-B912-4F04-AF44-0E8053FE27A4}F:\hry\far cry 4\bin\farcry4.exe] => (Allow) F:\hry\far cry 4\bin\farcry4.exe No File
FirewallRules: [TCP Query User{7ECEE922-8938-4821-BD5B-D9D82254E135}F:\hry\far cry 4\bin\farcry4.exe] => (Allow) F:\hry\far cry 4\bin\farcry4.exe No File
FirewallRules: [{F390154F-D3AE-4BD8-8EFF-BAE4A668F41E}] => (Allow) C:\Program Files (x86)\Footjane\Application\chrome.exe (Google Inc -> Google Inc.)
FirewallRules: [UDP Query User{63AD808D-CC87-4219-88B7-7BE762270A2C}C:\eve\sharedcache\tq\bin\exefile.exe] => (Allow) C:\eve\sharedcache\tq\bin\exefile.exe No File
FirewallRules: [TCP Query User{6ED1EDF2-E5F4-4AF0-A9A7-EDFC80ECFB12}C:\eve\sharedcache\tq\bin\exefile.exe] => (Allow) C:\eve\sharedcache\tq\bin\exefile.exe No File
FirewallRules: [{EED20502-C8FA-4B72-AC6A-45BD7CA5EE9E}] => (Allow) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe No File
FirewallRules: [{13B162CC-5652-4035-970B-1EAB3997C13E}] => (Allow) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe No File
FirewallRules: [{00752B97-585D-4A9E-A497-3B8F44572B70}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe No File
FirewallRules: [{99883171-2257-4C99-A926-B12BF06FDF60}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe No File
FirewallRules: [UDP Query User{1F44A342-9A6B-4023-ADA8-494D9D4765E7}F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe] => (Block) F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe No File
FirewallRules: [TCP Query User{96386857-DD26-4E60-A873-DBD070CC7483}F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe] => (Block) F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe No File
FirewallRules: [{254ABB7F-4B65-4FF3-833C-6CCD9B21161D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{68AEACA6-E17D-43DA-A82E-86BCE6DFE2DF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F0EFC15F-081B-4C87-B78E-28DC8A8FA7CD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe No File
FirewallRules: [{505521F3-1C64-430C-B5BB-51A319E628FE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{06AAB67F-D7A5-42D7-857E-4CA5F8B70B29}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{4129F8ED-0F5C-4199-937A-4E4C2804F230}C:\users\lukas\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\lukas\appdata\local\skypeplugin\pluginhost.exe (Microsoft Corporation -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{0F2FD01A-1A4B-4FBE-ACBC-B84F9A3DC462}C:\users\lukas\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\lukas\appdata\local\skypeplugin\pluginhost.exe (Microsoft Corporation -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{B9687B0E-2356-4DE1-B208-60B713D9DFC1}C:\games\world_of_warships\wowslauncher.exe] => (Allow) C:\games\world_of_warships\wowslauncher.exe No File
FirewallRules: [TCP Query User{47D8C302-1908-419B-81B7-5A50EDECA69A}C:\games\world_of_warships\wowslauncher.exe] => (Allow) C:\games\world_of_warships\wowslauncher.exe No File
FirewallRules: [{36E3EE67-A14A-4941-89C5-043791297B29}] => (Allow) F:\Program Files (x86)\Kalypso Media\Port Royale 3\PortRoyale3.exe No File
FirewallRules: [UDP Query User{D0F79A5B-0D88-4073-BFB1-C4220B5549CE}F:\filmy\search_tool_win_xp\searchtool.exe] => (Allow) F:\filmy\search_tool_win_xp\searchtool.exe No File
FirewallRules: [TCP Query User{874E3214-D56E-463B-8840-3B0C257EEE87}F:\filmy\search_tool_win_xp\searchtool.exe] => (Allow) F:\filmy\search_tool_win_xp\searchtool.exe No File
FirewallRules: [UDP Query User{D35D7E93-6FA3-4B03-9A87-83A97389E84C}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [TCP Query User{D7A3574E-9AA7-4D54-82F2-FE458591B551}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [{26BE49B9-7A60-4054-9EF1-A6D3327EF645}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\For Honor Open Beta\forhonor.exe (Blue Byte GmbH -> Ubisoft)
FirewallRules: [{94EA2475-27CF-4B88-80D3-8741570D47B9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\For Honor Open Beta\forhonor.exe (Blue Byte GmbH -> Ubisoft)
FirewallRules: [{FFE8D1A7-30C9-4559-B973-C78137D2CA6B}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{9BC97502-B126-4A7E-861A-72AF65D380A8}F:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Block) F:\program files (x86)\diablo iii\x64\diablo iii64.exe No File
FirewallRules: [TCP Query User{912E7446-9068-49F4-9A6B-7B9165A69EA8}F:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Block) F:\program files (x86)\diablo iii\x64\diablo iii64.exe No File
FirewallRules: [{BB474CBD-1BE6-4CAA-9977-89113D6E6F1E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{7D5CC98B-8FB0-4AF0-ACC4-90492FD07ED9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{57B0BCBD-ECAF-45C4-9783-EA09231719F3}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe No File
FirewallRules: [{D532212F-0629-43BD-A934-B9E7F9028012}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe No File
FirewallRules: [UDP Query User{67E833A5-ED03-4C72-B458-1EB7AE5BF74B}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe (Wargaming.net LLP -> Wargaming.net) [File not signed]
FirewallRules: [TCP Query User{6A2F8193-C0B5-4883-A50F-97A3FB023CFE}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe (Wargaming.net LLP -> Wargaming.net) [File not signed]
FirewallRules: [UDP Query User{66EDF803-6279-4014-B0ED-A17592AA88E0}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe (Wargaming PCL -> Wargaming.net)
FirewallRules: [TCP Query User{5CE1E5F5-A3A0-4F1D-B57A-57DD8C2F0CA5}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe (Wargaming PCL -> Wargaming.net)
FirewallRules: [UDP Query User{07D65D27-6C38-425C-A61C-631B7250E22C}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [TCP Query User{AE17E1C3-96A7-486A-9ACF-DE1BB8BF9AAA}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{C4E2F052-AC12-4D2D-B390-0F81C790FEBA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{89281832-930A-42B9-BF8D-99BCA790AE49}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{958EF457-2D5E-4FCE-9D49-96479D289517}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{208103E8-707C-4A3C-A135-668B704FDFCE}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{3BEF6539-7729-4A96-A48D-2D74F93A6142}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{A28056B1-E948-4F3F-84D8-6529B09B4987}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{E9B7C25D-730E-4FE8-AB5A-623EF5ABD91B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Might & Magic - Duel of Champions\Game.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{04EC1888-4546-4999-B251-571845B7116D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Might & Magic - Duel of Champions\Game.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{2651B740-9EAF-4566-B748-147B780B3188}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cryptic Studios\Neverwinter.exe (Cryptic Studios Inc. -> )
FirewallRules: [{FB68EFF4-B072-43E3-BADD-8DF55D32809C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cryptic Studios\Neverwinter.exe (Cryptic Studios Inc. -> )
FirewallRules: [{C2131B8B-B1CB-433D-97AA-2F76325FACFE}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{9047606F-C417-41AD-BB3F-81EF7E3B47B0}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{CAED66B1-28EE-4EC9-9265-55B844F9FBC8}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ICCUpdater.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{C271645F-7A20-46F0-8E1E-144A4DC0D3F3}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ICCUpdater.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{71ED3801-6FB1-4256-AA70-33FD6B92224F}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{F72EBBB8-6BF7-467B-8BB1-4570B7B545BA}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{ED3AD914-89AF-4C1C-AB7C-FA962EDBBB67}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\Scan2PCNotify.exe (Samsung Electronics CO., LTD. -> Scan2PCNotify)
FirewallRules: [{72B6BCD1-0D46-4AA1-BFDE-3EC7D7C270BE}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\Scan2PCNotify.exe (Samsung Electronics CO., LTD. -> Scan2PCNotify)
FirewallRules: [{BFEB002B-F6D2-425E-8907-CB854F6B6657}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\ScanProcess.exe (Samsung Electronics CO., LTD. -> ScanProcess)
FirewallRules: [{62ED1F89-78BE-423A-BCF0-FF308DEF6DCA}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\ScanProcess.exe (Samsung Electronics CO., LTD. -> ScanProcess)
FirewallRules: [{C16EE9D5-7673-4D13-8A79-C195DA888425}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{C5D9088C-95F6-40F4-9C8A-A2BBC9C07CBE}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{98B322AA-6545-448D-AB25-386816CAC5F9}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe (Samsung Electronics Co., Ltd.) [File not signed]
FirewallRules: [{D37D00D8-6E22-4E5E-87F6-90FB8C2C1A02}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe (Samsung Electronics Co., Ltd.) [File not signed]
FirewallRules: [{35E0C492-E1D0-42CF-82F4-B7DB2AE00F3A}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{4BCC85D2-A491-4553-A3B4-BB700FBBF452}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{09611358-6852-4166-9F26-F5942B9C7100}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{72DCC175-2194-4250-BAFD-7261F55BD575}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{5E3CA82C-0DBF-4B8E-9CED-869A62BB3CBB}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{84A008EB-78B4-488F-A5AF-EDED4211562C}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{82631BE1-F8E1-4898-8D54-691166802885}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{29871937-8A62-42BD-97D0-8B8F90B1BF60}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{873DC531-8A81-4912-8608-E3F08B3F9B9D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{E4543782-368D-4C24-8730-C380C2169CDE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{81FA5270-87DE-49B8-84E0-1ACED452FBD6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Star Trek Online\Star Trek Online.exe (Cryptic Studios Inc. -> )
FirewallRules: [{E0C73EC5-E891-4622-965D-62EDA31DD5AE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Star Trek Online\Star Trek Online.exe (Cryptic Studios Inc. -> )
FirewallRules: [{7F552DA7-05F5-4655-8F66-A507358920B9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{D7863895-4454-4622-BC78-FD9BD3AAA12B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{30DF629E-E1AC-4615-9101-FD1B72BEFE00}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{437741F8-DC38-4756-8486-49CA834A4A58}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{D8DE7BD4-C0B4-4581-A588-8B4885033DD3}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe No File
FirewallRules: [{08FD462A-5499-4456-9B6C-AD9225442DC6}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe No File
FirewallRules: [{9202BDE5-E1B4-4FC5-9D9D-C33ACC4F8E9F}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe No File
FirewallRules: [{D7BEA8A0-6367-450C-8A4D-A16CB4416369}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe No File
FirewallRules: [{E6F4CA2F-A49B-48E0-82DC-19A9EB09E42B}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe No File
FirewallRules: [{95D3D029-3D86-4AB1-9A43-5D4990CD05FB}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe No File
FirewallRules: [{23969D2D-5CCA-4B42-9221-6405D8EB6AAB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B76CA01C-67C2-438D-938A-572919039813}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D24236C4-B694-401B-9235-95C112EBE35D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D52DA489-F743-48FF-8257-225F9D34343C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{AE180C12-5F81-448F-8C53-25FA05A978DB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{2454C648-F7F9-42F1-81A4-769676D713AF}H:\program files\farming simulator 17\dedicatedserver.exe] => (Allow) H:\program files\farming simulator 17\dedicatedserver.exe No File
FirewallRules: [UDP Query User{180C8FD2-D3D5-4633-850D-3194AB6945DC}H:\program files\farming simulator 17\dedicatedserver.exe] => (Allow) H:\program files\farming simulator 17\dedicatedserver.exe No File
FirewallRules: [TCP Query User{C127EBBE-1051-4C68-9B52-51D2C36700BD}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [UDP Query User{B8283334-7E0D-46D0-B95D-959B0ED7FDC4}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [TCP Query User{26A307CE-F98D-4A1A-B5C3-594AEB4CCA12}C:\program files (x86)\wondershare\mobilego\mobilego.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilego.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [UDP Query User{533919E2-AB5A-4F7B-8798-7EBFCEC66EEF}C:\program files (x86)\wondershare\mobilego\mobilego.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilego.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [{CADB1CC0-D762-4C5F-9CB8-B2F5FBF14B43}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{2523E2E9-1A5A-4CEB-A014-990EB35E177B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{990E1485-6B97-485F-B0B9-911982F2D86B}] => (Allow) C:\Program Files (x86)\Opera\55.0.2994.44\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{DED48896-3952-4AF6-A273-5391CE980C48}] => (Allow) C:\Program Files (x86)\MIO\loader\kingstonxsv300s37a240g_50026b774b03171a.dat () [File not signed]
FirewallRules: [{ABA3BAC5-8750-4860-B256-3CED950DE7C1}] => (Allow) C:\Program Files (x86)\MIO\loader\kingstonxsv300s37a240g_50026b774b03171a.dat () [File not signed]
FirewallRules: [{148806E8-47F6-437D-9899-75DA7E5F20E7}] => (Allow) C:\Program Files (x86)\Opera\55.0.2994.61\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{018D2ADC-3AEE-4C6C-BFC2-5033D65E5EA9}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{BE391B67-CE55-4CCA-A199-C043B8EB741F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4F9F4F93-FA9F-4824-91DA-A39D562245B3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{FBBF796E-2987-457E-BDAD-8097B223710A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{36DCBBDD-26D1-4F18-A0F7-EDBF8144C18E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3521D0DB-E53D-4002-8E5B-785432CA59AD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{87FB5B77-2A10-42C5-A922-109BBE49DB88}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{58837D82-61CD-4248-A985-2A5C7642B49E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{824DBECC-930A-4B75-9973-9EA55BC1C311}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [TCP Query User{5212072F-78EE-4DC8-A70F-691ADC90A335}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Block) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [UDP Query User{26AAA118-D790-4881-96AD-CCF81F2CB7AF}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Block) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [TCP Query User{C47647E8-5D84-46B8-A307-442BFC404B42}C:\program files (x86)\firefox\firefox.exe] => (Block) C:\program files (x86)\firefox\firefox.exe (Mozilla Corporation) [File not signed]
FirewallRules: [UDP Query User{D2AA78C7-80AE-426B-BE14-937BCA673CF0}C:\program files (x86)\firefox\firefox.exe] => (Block) C:\program files (x86)\firefox\firefox.exe (Mozilla Corporation) [File not signed]
FirewallRules: [{E74CA79D-6821-4895-A0DB-03B6E2B917D6}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D2363450-E3DB-4F82-A51F-CC2302DB6520}] => (Allow) C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe (AVG Technologies USA, Inc. -> AVG Technologies)
FirewallRules: [{6189079A-30EA-4E67-9893-E6D10A21125A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
21-10-2019 18:56:35 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (10/28/2019 05:29:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_wuauserv, verze: 10.0.17134.556, časové razítko: 0xf23cada5
Název chybujícího modulu: AppXDeploymentClient.dll, verze: 10.0.17134.1006, časové razítko: 0xfcecf4f3
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000000b002
ID chybujícího procesu: 0x2430
Čas spuštění chybující aplikace: 0x01d58a929416c228
Cesta k chybující aplikaci: c:\windows\system32\svchost.exe
Cesta k chybujícímu modulu: C:\Windows\System32\AppXDeploymentClient.dll
ID zprávy: 06972dd6-851d-47b0-b081-8fcf6f857c0b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/28/2019 05:25:57 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů W3SVC. První čtyři bajty (DWORD) datové sekce obsahují kód chyby systému Windows.
Error: (10/28/2019 05:25:57 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů rdyboost. První čtyři bajty (DWORD) datové sekce obsahují kód chyby systému Windows.
Error: (10/28/2019 05:25:56 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu BITS v knihovně DLL C:\Windows\System32\bitsperf.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (10/28/2019 05:25:56 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu aspnet_state v knihovně DLL C:\Windows\System32\aspnet_counters.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (10/28/2019 05:25:56 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu ASP.NET_4.0.30319 v knihovně DLL C:\Windows\System32\aspnet_counters.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (10/28/2019 05:25:56 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu ASP.NET v knihovně DLL C:\Windows\System32\aspnet_counters.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (10/28/2019 05:22:01 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 16 E.D.5.B.7.F.1.6.6.9.8.F.9.6.D.2.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR Lukas-PC.local.
System errors:
=============
Error: (10/28/2019 05:34:29 PM) (Source: DCOM) (EventID: 10016) (User: Lukas-PC)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli Lukas-PC\Lukas (SID: S-1-5-21-676012942-2397387924-1880445482-1000) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (10/28/2019 05:34:21 PM) (Source: DCOM) (EventID: 10016) (User: Lukas-PC)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli Lukas-PC\Lukas (SID: S-1-5-21-676012942-2397387924-1880445482-1000) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (10/28/2019 05:32:50 PM) (Source: DCOM) (EventID: 10016) (User: Lukas-PC)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli Lukas-PC\Lukas (SID: S-1-5-21-676012942-2397387924-1880445482-1000) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (10/28/2019 05:32:49 PM) (Source: DCOM) (EventID: 10016) (User: Lukas-PC)
Description: Nastavení oprávnění výchozí pro počítač neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C}
a APPID
{CE79BC8B-2980-4CA9-9570-6E0BF5B93BF2}
uživateli Lukas-PC\Lukas (SID: S-1-5-21-676012942-2397387924-1880445482-1000) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (10/28/2019 05:32:12 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (19:44:03, 27.10.2019) bylo neočekávané.
Error: (10/28/2019 05:29:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Update byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.
Error: (10/28/2019 05:29:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Update Orchestrator Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.
Error: (10/28/2019 05:24:49 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x8024001e): 9WZDNCRFJ3P2-MICROSOFT.ZUNEVIDEO.
CodeIntegrity:
===================================
Date: 2019-10-28 17:41:41.395
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-10-28 17:41:41.394
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-10-28 17:41:21.935
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-10-28 17:41:21.933
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-10-28 17:41:14.601
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-10-28 17:41:14.598
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-10-28 17:37:01.299
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-10-28 17:37:01.297
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. V22.2 12/16/2014
Motherboard: MSI 970 GAMING (MS-7693)
Processor: AMD FX(tm)-6300 Six-Core Processor
Percentage of memory in use: 47%
Total physical RAM: 8140.3 MB
Available physical RAM: 4257.64 MB
Total Virtual: 16332.3 MB
Available Virtual: 12072.89 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:223.03 GB) (Free:27.95 GB) NTFS
Drive e: (Farming Simulator 19) (CDROM) (Total:6.98 GB) (Free:0 GB) UDF
Drive f: (Workers & Resources_ Soviet Repu) (CDROM) (Total:1.76 GB) (Free:0 GB) UDF
Drive g: (Nový svazek) (Fixed) (Total:1863.01 GB) (Free:1025.64 GB) NTFS
\\?\Volume{abf0bd6b-aeee-11e4-85dd-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.05 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 2FCFA4CA)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=223 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 7F220C19)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
pomoct s PC
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: pomoct s PC
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-10-2019
Ran by Lukas (administrator) on LUKAS-PC (MSI MS-7693) (28-10-2019 17:41:51)
Running from G:\marvel ,DC
Loaded Profiles: Lukas (Available Profiles: Lukas)
Platform: Windows 10 Home Version 1803 17134.1069 (X64) Language: Čeština (Česko)
Default browser: "C:\Program Files (x86)\Footjane\Application\chrome.exe" "%1"
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(AVG Netherlands B.V. -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.4.155.333\AVGBrowserCrashHandler.exe
(AVG Netherlands B.V. -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.4.155.333\AVGBrowserCrashHandler64.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe
(Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe
(Disc Soft Ltd -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Disc Soft Ltd -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Even Balance, Inc. -> ) C:\WINDOWS\SysWOW64\PnkBstrA.exe
(Facebook, Inc. -> Facebook) [File not signed] C:\Users\Lukas\AppData\Local\Facebook\Games\FacebookGameroom.exe
(Facebook, Inc. -> The CefSharp Authors) [File not signed] C:\Users\Lukas\AppData\Local\Facebook\Games\Facebook Gameroom Browser.exe
(Gaijin Network LTD -> Gaijin Entertainment) C:\Users\Lukas\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe
(Google Inc -> Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Google Inc -> Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Innova Co S.a r.l. -> Innova Co S.a r.l.) [File not signed] C:\Program Files (x86)\4game\3.6.2.278\4game-service.exe
(Microsoft Corporation -> © 2015 Microsoft Corporation) C:\Users\Lukas\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Lukas\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\WINDOWS\System32\WirelessKB850NotificationService.exe
(Microsoft Corporation -> Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.EXE
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19072.18011.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\smartscreen.exe
(Mozilla Corporation) [File not signed] C:\Program Files (x86)\Firefox\Firefox.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Qualcomm Atheros) [File not signed] C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Samsung Electronics CO., LTD. -> ) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Seznam.cz, a.s. -> ) C:\Users\Lukas\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(Seznam.cz, a.s. -> ) C:\Users\Lukas\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(University of California, Berkeley -> Charity Engine) C:\Program Files (x86)\BOINC\boinctray.exe
(VIA Technologies, Inc.) [File not signed] C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\MobileGo\MobileGoService.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [MBCfg64] => C:\Windows\system32\MBCfg64.dll [41088 2014-02-21] (Creative Technology Ltd -> Creative Technology Ltd.)
HKLM\...\Run: [VIAxHCUtl] => C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe [331776 2011-07-12] (VIA Technologies, Inc.) [File not signed]
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [462712 2012-03-09] (Samsung Electronics CO., LTD. -> )
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\nvspcap64.dll [1923008 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [316336 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8845528 2000-01-01] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-05-07] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [Sound Blaster Cinema 2] => C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe [1440768 2014-02-24] (Creative Technology Ltd) [File not signed]
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.) [File not signed]
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] (Seznam.cz, a.s. -> )
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-03-07] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [boinctray] => C:\Program Files (x86)\BOINC\boinctray.exe [71312 2014-03-07] (University of California, Berkeley -> Charity Engine)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-06-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKLM\...\Policies\Explorer: [NoInstrumentation] 1
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3211040 2019-10-02] (Valve -> Valve Corporation)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Lukas\AppData\Roaming\Seznam.cz\szninstall.exe [1069296 2018-03-27] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Lukas\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [109808 2018-03-27] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3115792 2019-10-16] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23819304 2017-03-21] (Google Inc -> Google)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [BingSvc] => C:\Users\Lukas\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (Microsoft Corporation -> © 2015 Microsoft Corporation)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [World of Warships] => C:\Games\World_of_Warships\WargamingGameUpdater.exe [3140384 2018-01-25] (Wargaming PCL -> Wargaming.net)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4836032 2017-08-14] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-05-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [721504 2015-09-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [Gaijin.Net Updater] => C:\Users\Lukas\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2123008 2019-09-20] (Gaijin Network LTD -> Gaijin Entertainment)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [SRDownloader] => G:\marvel ,DC\FSDownloader.exe [1537024 2019-06-08] (File-share.top) [File not signed]
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Policies\system: [Shell] <==== ATTENTION
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\MountPoints2: {d62cd0d9-d38d-11e7-a610-d8cb8a13fec7} - "E:\setup.exe"
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\MountPoints2: {def9fec5-a11b-11e7-a5f6-d8cb8a13fec7} - "E:\setup.exe"
HKLM\...\Providers\l9olaieg: C:\Program Files (x86)\Khagetheputain Renew\local64spl.dll <==== ATTENTION
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.70\Installer\chrmstp.exe [2019-10-22] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{48F69C39-1356-4A7B-A899-70E3539D4982}] -> C:\Program Files (x86)\AVG\Browser\Application\77.1.1833.92\Installer\chrmstp.exe [2019-10-16] (AVG Technologies USA, Inc. -> AVG Technologies)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MobileGo Service.lnk [2017-12-18]
ShortcutTarget: MobileGo Service.lnk -> C:\Program Files (x86)\Wondershare\MobileGo\MobileGoService.exe (Wondershare Technology Co.,Ltd -> Wondershare)
Startup: C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2018-02-14]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\Lukas\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook, Inc. -> Facebook) [File not signed]
Startup: C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\tmp8B80.tmp.vbs [2015-11-26] ()
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {00C68D1E-0792-4737-ABE6-11A23C0E148C} - System32\Tasks\GoogleUpdateTaskMachineUA1d08feffd8759fd => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {057F0FDB-4D54-433E-B0E7-DA7189E9A45D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [1540544 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {078F5A49-EB5F-47D1-8AAC-D7DB43920F91} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {08398CB9-4B31-4A24-8B44-EB9BB625BA92} - System32\Tasks\GoogleUpdateTaskMachineUA1d0bf8240b41a2d => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {0964DD9B-4BFD-47A1-A51E-8B74F3977239} - System32\Tasks\Math Problem Solver CPU => C:\Users\Lukas\AppData\Local\Math Problem Solver\cpu\Solve.exe <==== ATTENTION
Task: {0A3ADA6A-7D6B-48BE-B3EE-7CAFCB01D806} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {0AB50D89-FFF4-45DA-A27F-F78224C73B18} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {0DCD5721-E663-4739-8799-D538A118462C} - System32\Tasks\Khagetheputain Renew => C:\Program Files (x86)\Hubishrwoy\danudle.exe
Task: {0DF81F83-AAE4-4D9D-AD21-1C085FB4F3CD} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0F2160CC-1C14-402D-AD23-A12D04C235E8} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {14141500-8981-4403-B402-EA338C0793AC} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {160FF8F5-CC06-4540-9129-09EE6E5519F1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {166C21CD-A7AE-44C6-9267-F23A9BD448EF} - System32\Tasks\GoogleUpdateTaskMachineUA1d0f1cdabb0a60b => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {1AC7B678-A9D3-4A29-92DC-D8F4EBF554F7} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {1CEA203A-C150-4652-AABB-7ACA3A05E166} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1D16E514-8B2B-401C-A57A-94F5BDE2C6C6} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [947136 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1E30E266-381A-446D-8258-14AA8981822C} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {1FD4545D-449E-4498-A28F-6A70BBB6E717} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {21B0555E-5B6E-4A33-8B94-554BA363328C} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {23BDB7CB-960B-44D3-AE0C-CF01B7DBFB52} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1905072 2019-09-20] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {27084B0C-A17D-4BE6-B8AF-7BC269C6D899} - System32\Tasks\SlimDrivers Startup => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe [29780248 2015-08-19] (Slimware Utilities Holdings, Inc. -> SlimWare Utilities, Inc.)
Task: {2855507F-5693-4716-8CFD-A9C7EC3608E1} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {300BD167-058E-4DF4-A7BE-2E53BB8E2972} - System32\Tasks\Opera scheduled Autoupdate 1447089322 => C:\Program Files (x86)\Opera\launcher.exe [1139800 2018-09-13] (Opera Software AS -> Opera Software)
Task: {31BE7BED-2F8C-44D1-BD22-11E99C2B41D6} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {331DDBCD-B400-4A52-8AA3-1827C9BCD258} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {39258C28-7A3C-4300-A3DC-4E16322E23F7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {3AEA29CC-B5AD-4AD2-BC6D-909CC4F0BB1C} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {3D4E9D09-C002-4945-AC40-392F521B8371} - System32\Tasks\Milimili => C:\Program Files (x86)\MIO\MIO.exe [282168 2017-05-17] (Tencent Technology(Shenzhen) Company Limited -> ) <==== ATTENTION
Task: {41E30C1E-4367-4961-83E7-F77ACA6B8A7D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {44043342-7AEF-45A6-BE72-1C5E0973F9B7} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [651200 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {474D443B-B2A3-4499-A248-66AC6D63CC22} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [3981232 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {4767975C-6E0E-4FAA-8A88-B2977101B326} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {478A9481-F90E-4304-A5F6-68A3C6FACA5E} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {4D624449-4D60-4D19-9387-2E5BF8C036BD} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {50FC92D3-BD00-47CB-A315-A89F04ED71E1} - System32\Tasks\GoogleUpdateTaskMachineCore1d0f1cdab88d226 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {56B0A61C-507F-433D-954C-C486D2189B72} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {5A1966A9-CEB3-41A9-AE16-6BC5ABAD319F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {614E6F12-9484-46EE-9A73-6D7224A2D4B4} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [436160 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6482D3E7-3339-4124-B13F-E53C041CFA06} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {656F2A16-EFDE-4862-8AFD-D8B5E81C281C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {65F86154-AB5D-4337-8D93-BAF90FA4D306} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1670432 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {663E99B4-CA4D-4E7C-91C1-EABB63BABB64} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {66F06E9E-DF0A-433D-83B5-C509AEC75A95} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {6703186A-0465-4C3E-A08A-443207902793} - System32\Tasks\GoogleUpdateTaskMachineUA1d12ebc6be85ef3 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {693DC29A-0A62-4D8A-AC5E-76EF209789E6} - System32\Tasks\Math Problem Solver Optimize => C:\Users\Lukas\AppData\Local\Math Problem Solver\Optimize.exe [67740 2014-01-20] () [File not signed] <==== ATTENTION
Task: {69D2C974-CF78-415C-8191-C7DC384676E6} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7910D104-F17E-49AB-8776-6C77A50BAC04} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2018-09-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {7A837A76-486D-42A1-97E8-360C058D8954} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {7C8C0D84-7FDF-4498-A416-73AD7EA30569} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {7DB680EE-23B1-48F0-9859-CDA2BEC008FB} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2227488 2015-12-09] (Microsoft Corporation -> Microsoft)
Task: {82468688-DA9F-4710-B706-424D84B066D0} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {85175350-6DD5-4C07-ABAB-38D7F203636C} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {8542E702-570F-4417-9906-6350AF0591E3} - System32\Tasks\BikaQ_FetchAndUpgrade_CanBeDel => C:\Program Files (x86)\BikaQRss\BikaQ.exe <==== ATTENTION
Task: {85780FD9-7FC6-440E-B945-27134F55C731} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {863E957B-FB85-4851-BDDB-29304749D0CD} - System32\Tasks\AVG Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [1873000 2019-09-25] (AVG Technologies USA, Inc. -> AVG Technologies)
Task: {883BFE7D-F5FC-4F29-B091-38E4C517B2FD} - System32\Tasks\AVGUpdateTaskMachineCore => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [165520 2018-10-27] (AVG Netherlands B.V. -> AVG Technologies)
Task: {897F1BF5-3093-47B4-B81B-DCD2D9897417} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_108_Plugin.exe [1454080 2018-09-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {8A047119-D9E5-477C-B68D-D5DA2A5D8150} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {973F4372-6F08-4918-8421-4E9AB460F9B7} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {98C3B48E-7621-455F-A8EE-90C73D02E404} - System32\Tasks\AVG Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [1873000 2019-09-25] (AVG Technologies USA, Inc. -> AVG Technologies)
Task: {99A527D5-9275-472A-9145-E6AE919E91E4} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {99FFD4B3-E3F9-4747-9619-D3070128EA7D} - System32\Tasks\AVGUpdateTaskMachineUA => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [165520 2018-10-27] (AVG Netherlands B.V. -> AVG Technologies)
Task: {9AE63F0F-455B-4671-B91D-FC96318A4D32} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2212128 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {9F51F8E6-34D8-4E87-AE46-DCC8FF65A6CA} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {AC1769AE-9049-4FAA-BCA1-EF24AE7E0B26} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [651200 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B50B0A88-6F32-4525-A344-20D1804D3764} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {B59AA759-2158-4CEA-A134-4EFB287168F1} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {B65417F6-37D2-4862-84FE-ADD7DD7BA31B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {BBC89AE6-9F6E-45EF-8F63-55A8B55BC2DB} - System32\Tasks\{1A6294B2-88B2-4000-982C-50EE66BDD741} => C:\WINDOWS\system32\pcalua.exe -a "F:\intuix_cd\Intuix CD\setup.exe" -d "F:\intuix_cd\Intuix CD"
Task: {C5110754-6125-4583-93E9-90A2E8B93F9B} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1670432 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {C68AFC55-BC6B-4932-8422-FDCAE9D0228E} - System32\Tasks\GoogleUpdateTaskMachineCore1d0e311c2edf531 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {C79F4485-F979-4998-A686-7527DFE38288} - System32\Tasks\{E9D3D202-8BE7-4283-9C8E-DB1ADD4A305D} => C:\Windows\system32\pcalua.exe -a K:\_AUTORUN\AUTORUN.EXE -d K:\
Task: {C8440877-31C2-4D5A-B13D-B78D1A784C64} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {CE403273-6ABC-4EDB-B60E-418EE36DE211} - System32\Tasks\{D082DED7-9F54-4072-B23C-9015685838FF} => C:\WINDOWS\system32\pcalua.exe -a "F:\Program Files (x86)\Mafia I - The City of Lost Heaven\Game.exe" -d "F:\Program Files (x86)\Mafia I - The City of Lost Heaven"
Task: {D6CA3431-FF1A-4CB8-9146-6B78F0BBF8E6} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {D6F88AA6-B7B7-4C2D-BFD8-16DFDE83FA22} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2212128 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {D99CF7B4-C34D-47D3-9CD0-C486F7CE1434} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DDDA9FC3-1F1A-4C8C-A95A-47E751E16E56} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DE10E964-9B25-4F6E-9EDC-CD783AF08FE4} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [722880 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DEE2560C-3FA2-499E-8DAF-184D35357BCB} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {E140E31A-0C7F-4FFA-89E9-C6D582D94CC7} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [722880 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E55F4541-8AA4-486D-A31F-8D7584FF968D} - System32\Tasks\GoogleUpdateTaskMachineCore1d08feffd709d58 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {E7DB25D7-9344-4C16-B621-DE4DA8BD66B4} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {E81AB3AC-3816-4EBE-A8D5-0C27174B539B} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E95DA03C-4020-4063-B2FC-DF9CC9D202BD} - System32\Tasks\GoogleUpdateTaskMachineCore1d0bf824092886a => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {EF259B98-F640-49BA-8E8A-3ACAE1C31C5F} - System32\Tasks\{91840007-F1F0-480C-8352-3A5360385E8C} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Railroad Tycoon 3\UNINSTX.EXE"
Task: {EF7CE8FE-FF1D-4CE4-98B5-AEEE09AF4843} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {FD539483-AC5F-43E5-A5A4-CBB51614FEBE} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {FD77CB7B-62D4-4956-841B-D5C6D9E7F315} - System32\Tasks\GoogleUpdateTaskMachineCore1d12ebc6bce6df2 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d08feffd709d58.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0bf824092886a.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0e311c2edf531.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0f1cdab88d226.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d08feffd8759fd.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0bf8240b41a2d.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0f1cdabb0a60b.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\SlimDrivers Startup.job => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 127.0.0.1 validation.sls.microsoft.com
Tcpip\Parameters: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{0c602eed-9ac2-4542-ac7f-b6924786abc0}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{65eee1d5-a9d8-425b-8d5e-4166b6418b14}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{9226fc84-2a17-4d77-8b05-e13aee4900e5}: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{9335ad66-4c3b-44d6-8b35-4cf661d0f1d3}: [DhcpNameServer] 172.20.10.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617912&ResetID=132151946241391219&GUID=09B1574E-8886-4A52-9C34-8AE3E62B20AA
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.ourluckysites.com/search/?type=ds&t ... earchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.ourluckysites.com/?type=hp&ts=14924 ... 774B03171A
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.ourluckysites.com/search/?type=ds&t ... earchTerms}
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.startpageing123.com/search/?type=ds ... earchTerms}
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.ourluckysites.com/?type=hp&ts=14924 ... 774B03171A
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.ourluckysites.com/?type=hp&ts=14924 ... 774B03171A
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.startpageing123.com/search/?type=ds ... earchTerms}
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.ourluckysites.com/search/?type=ds&t ... earchTerms}
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {0EDBD3F4-E096-4846-B9DE-D691BA3103C6} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {1C50BAAC-C45F-46AA-B7B2-79617F444A02} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {21B2B49F-F4DA-49CE-A9FC-C3EDE1E86455} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.ourluckysites.com/search/?type=ds&t ... earchTerms}
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {431AAD9A-2776-4129-A644-3F9F151176C4} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {76DEFAE6-09B2-40B2-8F8A-5A6A5D5CE4EB} URL = hxxps://search.yahoo.com/search/?toggle=1&cop=mss&ei=UTF-8&fr=vmn&type=auslog_yaapp6_adw_ch&p={searchTerms}
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {937BFC8E-BC6F-43FE-8828-A0617CFC8708} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {9D8DD67D-8298-4DF4-BD42-61842EC96EEE} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {AEBA1B1E-35FE-4762-AC9C-6B81DE0B8AF7} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {D742AC74-BBC6-48E1-A0C2-E8A528458B67} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_13415
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.3.7.452\AVG Web TuneUp.dll [2017-02-23] (AVG Technologies CZ, s.r.o. -> AVG)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-04] (Google Inc -> Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation -> Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation -> Microsoft Corporation.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-04] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)
Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> hxxp://www.startpageing123.com/?type=hp&ts=148 ... 774B03171A
FireFox:
========
FF DefaultProfile: ixqmgx8f.default
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\naweriweentcofise\Profiles\ixqmgx8f.default\Profiles\ixqmgx8f.default [not found] <==== ATTENTION
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\naweriweentcofise\Profiles\ixqmgx8f.default\Profiles\ixqmgx8f.default [not found] <==== ATTENTION
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default [2017-09-22]
FF DownloadDir: F:\filmy
FF Homepage: Mozilla\Firefox\Profiles\ixqmgx8f.default -> hxxp://www.ourluckysites.com/?type=hp&ts=14924 ... 774B03171A
FF Extension: (AVG Web TuneUp) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\Extensions\avg@toolbar.xpi [2017-01-21] [Legacy]
FF Extension: (Bing Search) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\Extensions\bingsearch.full@microsoft.com.xpi [2017-02-05] [Legacy]
FF Extension: (Seznam doplněk - Esko) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\Extensions\sko-extension@firma.seznam.cz [2018-04-05]
FF Extension: (Search App by Ask) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\Extensions\toolbar_ORJ-SPE@apn.ask.com.xpi [2017-01-26] [Legacy]
FF Extension: (Seznam lištička) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2018-04-05] [Legacy]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\searchplugins\bing-.xml [2017-02-05]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\searchplugins\l9olaieg.xml [2017-02-27]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\searchplugins\ourluckysites.xml [2017-04-17]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\searchplugins\startpageing123.xml [2017-03-27]
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default [2019-10-28] <==== ATTENTION
FF DownloadDir: G:\marvel ,DC
FF Homepage: Firefox\Firefox\Profiles\ixqmgx8f.default -> hxxp://www.searchinme.com//?type=hp&ts=1493919 ... 774B03171A
FF Extension: (SimilarWeb) - C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default\Extensions\@DA3566E2-F709-11E5-8E87-A604BC8E7F8B.xpi [2017-03-03] [Legacy] [not signed]
FF Extension: (FF Adr) - C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default\Extensions\@H99KV4DO-UCCF-9PFO-9ZLK-8RRP4FVOKD9O.xpi [2017-06-05] [not signed]
FF Extension: (AVG Web TuneUp) - C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default\Extensions\avg@toolbar.xpi [2017-01-21] [Legacy]
FF Extension: (Bing Search) - C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default\Extensions\bingsearch.full@microsoft.com.xpi [2017-02-05] [Legacy]
FF Extension: (Český slovník pro kontrolu pravopisu (bez diakritiky)) - C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default\Extensions\cs2@dictionaries.addons.mozilla.org [2018-03-19] [Legacy]
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default\Extensions\cs@dictionaries.addons.mozilla.org [2018-03-19] [Legacy]
FF Extension: (Czech (CZ) Language Pack) - C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default\Extensions\langpack-cs@firefox.mozilla.org.xpi [2017-04-25] [Legacy] [not signed]
FF Extension: (Search App by Ask) - C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default\Extensions\toolbar_ORJ-SPE@apn.ask.com.xpi [2018-08-05] [UpdateUrl:hxxps://secure-apnmedia.ask.com/media/toolbar/everest/partners/ORJ-SPE/YY/update.json]
FF Extension: (Seznam lištička) - C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2017-10-05] [Legacy]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default\searchplugins\ask-search.xml [2015-04-02]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default\searchplugins\bing-.xml [2017-02-05]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default\searchplugins\l9olaieg.xml [2017-02-27]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default\searchplugins\startpageing123.xml [2017-03-03]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default\searchplugins\startsearch.xml [2017-04-25]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_31_0_0_108.dll [2018-09-12] (Adobe Systems Incorporated -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @4game.com/plugin -> C:\Program Files (x86)\4game\3.6.2.278\npplugin4game.dll [2018-11-02] (Innova Co S.a r.l. -> Innova Co S.a r.l.) [File not signed]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_108.dll [2018-09-12] (Adobe Systems Incorporated -> )
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.7\\npsitesafety.dll [No File]
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.301\npGoogleUpdate3.dll [2019-10-10] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.301\npGoogleUpdate3.dll [2019-10-10] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-03] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-676012942-2397387924-1880445482-1000: SkypePlugin -> C:\Users\Lukas\AppData\Local\SkypePlugin\7.31.0.56\npGatewayNpapi.dll [2017-02-03] (Microsoft Corporation -> Skype Technologies S.A.)
FF Plugin HKU\S-1-5-21-676012942-2397387924-1880445482-1000: SkypePlugin64 -> C:\Users\Lukas\AppData\Local\SkypePlugin\7.31.0.56\npGatewayNpapi-x64.dll [2017-02-03] (Microsoft Corporation -> Skype Technologies S.A.)
StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox\firefox.exe hxxp://www.ourluckysites.com/?type=sc&ts=14962 ... 774B03171A
Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR HomePage: ChromeDefaultData -> mysearch.avg.com
CHR StartupUrls: ChromeDefaultData -> "hxxp://www.ourluckysites.com/?type=hp&ts=14924 ... 774B03171A"
CHR DefaultSearchURL: ChromeDefaultData -> hxxp://www.ourluckysites.com/search/?type=ds&t ... earchTerms}
CHR DefaultSearchKeyword: ChromeDefaultData -> ourluckysites
CHR Profile: C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2019-10-28] <==== ATTENTION
CHR DownloadDir: E:\
CHR Extension: (Prezentace) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-10-11]
CHR Extension: (Dokumenty) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2019-10-11]
CHR Extension: (Disk Google) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-07]
CHR Extension: (YouTube) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (AVG Secure Search) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2019-10-11]
CHR Extension: (Vyhledávání Google) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-07]
CHR Extension: (Adobe Acrobat) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-10-11]
CHR Extension: (MSN Homepage & Bing Search Engine) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2019-10-11]
CHR Extension: (Tabulky) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-10-11]
CHR Extension: (Dokumenty Google offline) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-10-11]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-01-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-11]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2019-10-11]
CHR Extension: (Gmail) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-10-11]
CHR Extension: (Chrome Media Router) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-10-23]
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [chfdnecihphmhljaaejmgoiahnihplgn] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak] - hxxps://clients2.google.com/service/update2/crx
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\StartMenuInternet\ChromeHTML: -> C:\Program Files (x86)\Footjane\Application\chrome.exe (Google Inc -> Google Inc.) <==== ATTENTION
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 4game-service; C:\Program Files (x86)\4game\3.6.2.278\4game-service.exe [1686008 2018-11-02] (Innova Co S.a r.l. -> Innova Co S.a r.l.) [File not signed]
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-05-04] (Advanced Micro Devices, Inc.) [File not signed]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-04-29] (Apple Inc. -> Apple Inc.)
S2 avg; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [165520 2018-10-27] (AVG Netherlands B.V. -> AVG Technologies)
R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [996928 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe [6133752 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
S3 avgm; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [165520 2018-10-27] (AVG Netherlands B.V. -> AVG Technologies)
S3 AVGSecureBrowserElevationService; C:\Program Files (x86)\AVG\Browser\Application\77.1.1833.92\elevation_service.exe [984976 2019-09-25] (AVG Technologies USA, Inc. -> AVG Technologies)
R2 AvgWscReporter; C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe [110560 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
S4 BIT; C:\ProgramData\BIT\BIT.dll [1812992 2017-06-16] () [File not signed] <==== ATTENTION
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291904 2017-08-14] (Disc Soft Ltd -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [392976 2017-02-10] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2018-12-12] (Huawei Technologies Co., Ltd. -> ) [File not signed]
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2348336 2019-10-16] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3228976 2019-10-16] (Electronic Arts, Inc. -> Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-03-15] (Even Balance, Inc. -> )
R2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [344576 2014-01-22] (Qualcomm Atheros) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10803440 2018-09-28] (TeamViewer GmbH -> TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4413440 2019-03-14] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [107160 2019-02-16] (Microsoft Corporation -> Microsoft Corporation)
R2 WirelessKB850NotificationService; C:\WINDOWS\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe [473312 2017-03-20] (Wondershare Technology Co.,Ltd -> Wondershare)
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\MobileGo\DriverInstall.exe [101152 2017-06-01] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 NvContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
S3 NvContainerNetworkService; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdiox64; C:\WINDOWS\System32\drivers\amdiox64.sys [46136 2010-02-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [79488 2011-04-15] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [40064 2011-04-15] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [55936 2011-11-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R0 avgArDisk; C:\WINDOWS\System32\drivers\avgArDisk.sys [37880 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [205600 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [275232 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [210328 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [65376 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [16520 2019-10-08] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [43512 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [171784 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [111096 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [84560 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [848688 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [461216 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [236288 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [317304 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 BfLwf; C:\WINDOWS\system32\DRIVERS\bflwfx64.sys [80080 2013-11-08] (Qualcomm Atheros, Inc. -> Qualcomm Atheros, Inc.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-02-27] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-02-27] (Disc Soft Ltd -> Disc Soft Ltd)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2018-12-12] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 KillerEth; C:\WINDOWS\System32\drivers\e2xw10x64.sys [145920 2018-04-12] (Microsoft Windows -> Qualcomm Atheros, Inc.)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-02-07] (Malwarebytes Corporation -> Malwarebytes Corporation)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2018-05-04] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_2e7fa54192fe16d0\nvlddmkm.sys [16936048 2017-11-09] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48064 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
R1 sbnetsys; C:\WINDOWS\system32\DRIVERS\sbnetsys.sys [44648 2015-04-17] (Mainline Net Holdings Limited -> NT Kernel Resources)
S3 SWDUMon; C:\WINDOWS\system32\DRIVERS\SWDUMon.sys [16056 2018-09-21] (Slimware Utilities Holdings, Inc. -> SlimWare Utilities, Inc.)
R3 usbfilter; C:\WINDOWS\system32\DRIVERS\usbfilter.sys [61464 2000-01-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [22016 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
S3 WUDFWpdComp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [264192 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
U3 aspnet_state; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-10-24 18:35 - 2019-10-24 18:35 - 000000000 ___HD C:\$WINDOWS.~BT
2019-10-16 17:31 - 2019-10-16 17:31 - 000000000 ____D C:\Users\Lukas\AppData\Local\OneDrive
2019-10-11 16:45 - 2019-10-11 16:45 - 000000165 ____H C:\Users\Lukas\Documents\~$tomáš rodiče osb.xlsx
2019-10-10 16:45 - 2019-10-13 20:46 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-10-10 16:25 - 2019-10-02 12:10 - 004527072 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-10-10 16:25 - 2019-10-02 06:04 - 007519896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-10-10 16:25 - 2019-10-02 05:47 - 006564368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-10-10 16:25 - 2019-10-02 05:40 - 025857024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-10-10 16:25 - 2019-10-02 05:32 - 022735872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-10-10 16:25 - 2019-09-10 08:17 - 023862272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-10-10 16:24 - 2019-10-06 02:43 - 000783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-10-10 16:24 - 2019-10-06 02:43 - 000674304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-10-10 16:24 - 2019-10-02 12:14 - 000349216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-10-10 16:24 - 2019-10-02 12:10 - 001640376 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-10-10 16:24 - 2019-10-02 12:10 - 001616608 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-10-10 16:24 - 2019-10-02 12:08 - 002394960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2019-10-10 16:24 - 2019-10-02 12:08 - 001047568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2019-10-10 16:24 - 2019-10-02 11:53 - 004852736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-10-10 16:24 - 2019-10-02 11:53 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-10-10 16:24 - 2019-10-02 11:52 - 012835840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-10-10 16:24 - 2019-10-02 11:52 - 008627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-10-10 16:24 - 2019-10-02 11:50 - 004491264 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2019-10-10 16:24 - 2019-10-02 11:50 - 002019840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-10-10 16:24 - 2019-10-02 11:50 - 000810496 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2019-10-10 16:24 - 2019-10-02 11:49 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2019-10-10 16:24 - 2019-10-02 11:48 - 000678400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2019-10-10 16:24 - 2019-10-02 11:48 - 000625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2019-10-10 16:24 - 2019-10-02 11:48 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-10-10 16:24 - 2019-10-02 11:47 - 000957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-10-10 16:24 - 2019-10-02 11:47 - 000878592 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-10-10 16:24 - 2019-10-02 11:47 - 000488960 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-10-10 16:24 - 2019-10-02 11:46 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-10-10 16:24 - 2019-10-02 11:46 - 001289216 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-10-10 16:24 - 2019-10-02 11:46 - 000740864 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2019-10-10 16:24 - 2019-10-02 11:46 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-10-10 16:24 - 2019-10-02 11:45 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-10-10 16:24 - 2019-10-02 11:45 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2019-10-10 16:24 - 2019-10-02 09:56 - 001628488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-10-10 16:24 - 2019-10-02 09:53 - 000917816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2019-10-10 16:24 - 2019-10-02 09:52 - 002206424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2019-10-10 16:24 - 2019-10-02 09:46 - 012037120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-10-10 16:24 - 2019-10-02 09:44 - 007991296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-10-10 16:24 - 2019-10-02 09:42 - 003397120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2019-10-10 16:24 - 2019-10-02 09:42 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-10-10 16:24 - 2019-10-02 09:41 - 000901120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2019-10-10 16:24 - 2019-10-02 09:41 - 000704000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-10-10 16:24 - 2019-10-02 09:41 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-10-10 16:24 - 2019-10-02 06:21 - 002417744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2019-10-10 16:24 - 2019-10-02 06:20 - 003180080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2019-10-10 16:24 - 2019-10-02 06:19 - 000374584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-10-10 16:24 - 2019-10-02 06:05 - 000092472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2019-10-10 16:24 - 2019-10-02 06:04 - 002774120 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-10-10 16:24 - 2019-10-02 06:04 - 001098064 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-10-10 16:24 - 2019-10-02 06:04 - 001035040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-10-10 16:24 - 2019-10-02 06:04 - 000494096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-10-10 16:24 - 2019-10-02 06:03 - 000778024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-10-10 16:24 - 2019-10-02 06:03 - 000193040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-10-10 16:24 - 2019-10-02 06:02 - 004404720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-10-10 16:24 - 2019-10-02 06:02 - 001219896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-10-10 16:24 - 2019-10-02 06:02 - 001027384 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-10-10 16:24 - 2019-10-02 06:02 - 000568104 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-10-10 16:24 - 2019-10-02 06:02 - 000210448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2019-10-10 16:24 - 2019-10-02 06:02 - 000194352 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 002468048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 001288928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 000723728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 000722744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 000527160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2019-10-10 16:24 - 2019-10-02 06:01 - 000491208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 000439504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 000435728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 000159864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2019-10-10 16:24 - 2019-10-02 06:00 - 009080632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-10-10 16:24 - 2019-10-02 06:00 - 002570824 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-10-10 16:24 - 2019-10-02 06:00 - 002371504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-10-10 16:24 - 2019-10-02 06:00 - 000433168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-10-10 16:24 - 2019-10-02 06:00 - 000248880 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2019-10-10 16:24 - 2019-10-02 06:00 - 000209936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-10-10 16:24 - 2019-10-02 06:00 - 000039032 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll
2019-10-10 16:24 - 2019-10-02 05:59 - 001784696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-10-10 16:24 - 2019-10-02 05:59 - 001459120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-10-10 16:24 - 2019-10-02 05:59 - 001260776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-10-10 16:24 - 2019-10-02 05:59 - 001141504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-10-10 16:24 - 2019-10-02 05:59 - 000983936 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-10-10 16:24 - 2019-10-02 05:59 - 000930616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2019-10-10 16:24 - 2019-10-02 05:59 - 000604984 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-10-10 16:24 - 2019-10-02 05:59 - 000260800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-10-10 16:24 - 2019-10-02 05:49 - 000550512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2019-10-10 16:24 - 2019-10-02 05:49 - 000434728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-10-10 16:24 - 2019-10-02 05:49 - 000385000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-10-10 16:24 - 2019-10-02 05:49 - 000191800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-10-10 16:24 - 2019-10-02 05:49 - 000146712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2019-10-10 16:24 - 2019-10-02 05:48 - 002331480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-10-10 16:24 - 2019-10-02 05:48 - 001990056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-10-10 16:24 - 2019-10-02 05:48 - 000666248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-10-10 16:24 - 2019-10-02 05:48 - 000380216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-10-10 16:24 - 2019-10-02 05:48 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NtlmShared.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 004789944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 002260928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 001979752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 001380312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 001130784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 001020280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 000829752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2019-10-10 16:24 - 2019-10-02 05:47 - 000607248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 000129088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2019-10-10 16:24 - 2019-10-02 05:38 - 022016000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-10-10 16:24 - 2019-10-02 05:32 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-10-10 16:24 - 2019-10-02 05:31 - 008189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-10-10 16:24 - 2019-10-02 05:31 - 004388864 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-10-10 16:24 - 2019-10-02 05:30 - 019385856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-10-10 16:24 - 2019-10-02 05:30 - 003403264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-10-10 16:24 - 2019-10-02 05:29 - 003392000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-10-10 16:24 - 2019-10-02 05:29 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-10-10 16:24 - 2019-10-02 05:29 - 000038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 007573504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 004771840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 002929152 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 001827328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-10-10 16:24 - 2019-10-02 05:27 - 005769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-10-10 16:24 - 2019-10-02 05:27 - 003554304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2019-10-10 16:24 - 2019-10-02 05:27 - 002126336 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2019-10-10 16:24 - 2019-10-02 05:27 - 001308160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2019-10-10 16:24 - 2019-10-02 05:27 - 000929280 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-10-10 16:24 - 2019-10-02 05:27 - 000487936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-10-10 16:24 - 2019-10-02 05:27 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-10-10 16:24 - 2019-10-02 05:27 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-10-10 16:24 - 2019-10-02 05:27 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-10-10 16:24 - 2019-10-02 05:26 - 000908800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2019-10-10 16:24 - 2019-10-02 05:26 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-10-10 16:24 - 2019-10-02 05:26 - 000468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-10-10 16:24 - 2019-10-02 05:26 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-10-10 16:24 - 2019-10-02 05:26 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-10-10 16:24 - 2019-10-02 05:26 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 003091456 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 002738688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 002179072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 001862656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 001295360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2019-10-10 16:24 - 2019-10-02 05:24 - 002379264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-10-10 16:24 - 2019-10-02 05:24 - 001563648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-10-10 16:24 - 2019-10-02 05:24 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-10-10 16:24 - 2019-10-02 05:24 - 000857088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2019-10-10 16:24 - 2019-10-02 05:24 - 000582144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2019-10-10 16:24 - 2019-10-02 05:24 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2019-10-10 16:24 - 2019-10-02 05:23 - 004938240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-10-10 16:24 - 2019-10-02 05:23 - 004517376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-10-10 16:24 - 2019-10-02 05:23 - 002166272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-10-10 16:24 - 2019-10-02 05:23 - 001724928 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-10-10 16:24 - 2019-10-02 05:23 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-10-10 16:24 - 2019-10-02 05:23 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2019-10-10 16:24 - 2019-10-02 05:23 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-10-10 16:24 - 2019-10-02 05:23 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-10-10 16:24 - 2019-10-02 05:23 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-10-10 16:24 - 2019-10-02 05:22 - 001418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2019-10-10 16:24 - 2019-10-02 05:22 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-10-10 16:24 - 2019-10-02 05:22 - 000545280 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-10-10 16:24 - 2019-10-02 05:22 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-10-10 16:24 - 2019-10-02 05:22 - 000506368 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-10-10 16:24 - 2019-10-02 05:22 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-10-10 16:24 - 2019-10-02 05:22 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-10-10 16:24 - 2019-10-02 05:22 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-10-10 16:24 - 2019-10-02 04:05 - 000001312 _____ C:\WINDOWS\system32\tcbres.wim
2019-10-10 16:24 - 2019-09-19 08:02 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-10-10 16:24 - 2019-09-13 12:03 - 000586680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2019-10-10 16:24 - 2019-09-13 12:02 - 004040008 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-10-10 16:24 - 2019-09-13 11:57 - 021409376 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-10-10 16:24 - 2019-09-13 11:57 - 001517480 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-10-10 16:24 - 2019-09-13 11:57 - 001375456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-10-10 16:24 - 2019-09-13 11:56 - 000341392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2019-10-10 16:24 - 2019-09-13 11:47 - 006588416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-10-10 16:24 - 2019-09-13 11:44 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2019-10-10 16:24 - 2019-09-13 11:44 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2019-10-10 16:24 - 2019-09-13 11:41 - 001644032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2019-10-10 16:24 - 2019-09-13 11:41 - 001127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2019-10-10 16:24 - 2019-09-13 11:40 - 003614208 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-10-10 16:24 - 2019-09-13 11:40 - 001725952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-10-10 16:24 - 2019-09-13 11:40 - 000806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2019-10-10 16:24 - 2019-09-13 11:40 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2019-10-10 16:24 - 2019-09-13 11:40 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2019-10-10 16:24 - 2019-09-13 11:40 - 000351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe
2019-10-10 16:24 - 2019-09-13 11:40 - 000326656 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2019-10-10 16:24 - 2019-09-13 11:39 - 002085888 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2019-10-10 16:24 - 2019-09-13 11:39 - 001262592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-10-10 16:24 - 2019-09-13 11:39 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2019-10-10 16:24 - 2019-09-13 10:18 - 000470512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2019-10-10 16:24 - 2019-09-13 10:17 - 001026280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-10-10 16:24 - 2019-09-13 10:16 - 001320128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-10-10 16:24 - 2019-09-13 10:15 - 020400656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-10-10 16:24 - 2019-09-13 10:15 - 003701184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-10-10 16:24 - 2019-09-13 10:05 - 005659136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-10-10 16:24 - 2019-09-13 10:01 - 001300480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2019-10-10 16:24 - 2019-09-13 10:01 - 000622592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2019-10-10 16:24 - 2019-09-13 10:00 - 002882048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-10-10 16:24 - 2019-09-13 10:00 - 001530880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-10-10 16:24 - 2019-09-13 09:59 - 002017280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2019-10-10 16:24 - 2019-09-13 05:58 - 007900880 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2019-10-10 16:24 - 2019-09-13 05:58 - 001613096 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2019-10-10 16:24 - 2019-09-13 05:56 - 005821448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2019-10-10 16:24 - 2019-09-13 05:56 - 001299472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2019-10-10 16:24 - 2019-09-13 05:49 - 005627280 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-10-10 16:24 - 2019-09-13 05:49 - 000274792 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2019-10-10 16:24 - 2019-09-13 05:48 - 003290584 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-10-10 16:24 - 2019-09-13 05:48 - 001659704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2019-10-10 16:24 - 2019-09-13 05:48 - 001363536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2019-10-10 16:24 - 2019-09-13 05:48 - 000722744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-10-10 16:24 - 2019-09-13 05:48 - 000710240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-10-10 16:24 - 2019-09-13 05:48 - 000170296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-10-10 16:24 - 2019-09-13 05:47 - 007445856 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-10-10 16:24 - 2019-09-13 05:47 - 001947168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2019-10-10 16:24 - 2019-09-13 05:47 - 000713272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2019-10-10 16:24 - 2019-09-13 05:47 - 000275768 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-10-10 16:24 - 2019-09-13 05:47 - 000081720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-10-10 16:24 - 2019-09-13 05:47 - 000039736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2019-10-10 16:24 - 2019-09-13 05:36 - 002478152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-10-10 16:24 - 2019-09-13 05:36 - 001252152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2019-10-10 16:24 - 2019-09-13 05:35 - 006052272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-10-10 16:24 - 2019-09-13 05:35 - 001559272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2019-10-10 16:24 - 2019-09-13 05:27 - 016598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-10-10 16:24 - 2019-09-13 05:24 - 013878784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-10-10 16:24 - 2019-09-13 05:23 - 000149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-10-10 16:24 - 2019-09-13 05:21 - 000153600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-10-10 16:24 - 2019-09-13 05:21 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2019-10-10 16:24 - 2019-09-13 05:21 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2019-10-10 16:24 - 2019-09-13 05:21 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpnotify.exe
2019-10-10 16:24 - 2019-09-13 05:21 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2019-10-10 16:24 - 2019-09-13 05:20 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2019-10-10 16:24 - 2019-09-13 05:20 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-10-10 16:24 - 2019-09-13 05:20 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2019-10-10 16:24 - 2019-09-13 05:20 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2019-10-10 16:24 - 2019-09-13 05:19 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-10-10 16:24 - 2019-09-13 05:18 - 000567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-10-10 16:24 - 2019-09-13 05:18 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2019-10-10 16:24 - 2019-09-13 05:17 - 003148288 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2019-10-10 16:24 - 2019-09-13 05:17 - 000761344 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-10-10 16:24 - 2019-09-13 05:17 - 000267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-10-10 16:24 - 2019-09-13 05:17 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2019-10-10 16:24 - 2019-09-13 05:17 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2019-10-10 16:24 - 2019-09-13 05:17 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2019-10-10 16:24 - 2019-09-13 05:16 - 000910336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2019-10-10 16:24 - 2019-09-13 05:16 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 002913792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 001023488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 000517120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 000504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\DavSyncProvider.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2019-10-10 16:24 - 2019-09-13 05:14 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-10-10 16:24 - 2019-09-13 05:14 - 001809408 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-10-10 16:24 - 2019-09-13 05:14 - 001222144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-10-10 16:24 - 2019-09-13 05:14 - 000848384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2019-10-10 16:24 - 2019-09-13 05:14 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-10-10 16:24 - 2019-09-13 05:14 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-10-10 16:24 - 2019-09-13 05:14 - 000257536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2019-10-10 16:24 - 2019-09-13 05:13 - 002893312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2019-10-10 16:24 - 2019-09-13 05:13 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2019-10-10 16:24 - 2019-09-13 05:13 - 001154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-10-10 16:24 - 2019-09-13 05:13 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2019-10-10 16:24 - 2019-09-13 05:13 - 000910848 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-10-10 16:24 - 2019-09-13 05:13 - 000845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2019-10-10 16:24 - 2019-09-13 05:13 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-10-10 16:24 - 2019-09-13 05:12 - 001634304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-10-10 16:24 - 2019-09-13 05:12 - 000627712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2019-10-10 16:24 - 2019-09-13 05:12 - 000372736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2019-10-10 16:24 - 2019-09-13 05:12 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2019-10-10 16:24 - 2019-09-13 05:11 - 000979456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2019-10-10 16:24 - 2019-09-13 05:11 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-10-10 16:24 - 2019-09-13 05:11 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2019-10-10 16:24 - 2019-09-13 05:11 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2019-10-10 16:24 - 2019-09-13 05:11 - 000536576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-10-10 16:24 - 2019-09-13 05:11 - 000346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DavSyncProvider.dll
2019-10-10 16:24 - 2019-09-10 08:16 - 019525632 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-10-10 16:24 - 2019-09-10 07:56 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-10-10 16:24 - 2019-09-10 02:20 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-10-10 16:24 - 2019-09-10 02:20 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2019-10-10 16:24 - 2019-08-13 15:42 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-10-10 16:23 - 2019-10-11 17:53 - 000002332 _____ C:\Users\Lukas\Desktop\Google Chrome.lnk
2019-10-08 16:27 - 2019-10-08 16:27 - 000355760 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2019-10-08 16:27 - 2019-10-08 16:27 - 000236288 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys
2019-10-08 16:27 - 2019-10-08 16:27 - 000171784 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2019-10-05 16:07 - 2019-10-08 16:27 - 000052376 _____ () C:\WINDOWS\system32\Drivers\staport.sys
2019-09-29 14:39 - 2019-03-28 10:11 - 000029232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2019-09-29 14:39 - 2019-03-28 10:11 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100_clr0400.dll
2019-09-29 14:39 - 2019-03-28 10:09 - 000032816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2019-09-29 14:39 - 2019-03-28 10:09 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100_clr0400.dll
2019-09-29 14:39 - 2019-03-28 07:35 - 000772176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_clr0400.dll
2019-09-29 14:39 - 2019-03-28 07:35 - 000702400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase_clr0400.dll
2019-09-29 14:39 - 2019-03-28 07:35 - 000622832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140_clr0400.dll
2019-09-29 14:39 - 2019-03-28 07:35 - 000433448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140_clr0400.dll
2019-09-29 14:39 - 2019-03-28 07:35 - 000087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140_clr0400.dll
2019-09-29 14:39 - 2019-03-28 07:35 - 000083768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcruntime140_clr0400.dll
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-10-28 17:42 - 2017-03-21 09:38 - 000000000 ____D C:\FRST
2019-10-28 17:41 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-10-28 17:37 - 2015-02-08 18:13 - 000000000 ____D C:\Users\Lukas\AppData\Roaming\Seznam.cz
2019-10-28 17:33 - 2016-11-18 11:12 - 000000000 ____D C:\Users\Lukas\AppData\LocalLow\Mozilla
2019-10-28 17:33 - 2015-12-30 10:01 - 000001312 _____ C:\Users\Lukas\AppData\Local\FSDownloader.nast
2019-10-28 17:33 - 2015-07-25 23:37 - 000000000 ____D C:\ProgramData\Origin
2019-10-28 17:33 - 2015-02-08 17:51 - 000000000 ____D C:\Program Files (x86)\Steam
2019-10-28 17:32 - 2018-05-23 05:35 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-10-28 17:32 - 2018-05-23 05:25 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-10-28 17:32 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-10-28 17:32 - 2017-09-06 13:29 - 000000000 ____D C:\ProgramData\NVIDIA
2019-10-28 17:24 - 2018-09-13 21:31 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2019-10-28 17:24 - 2018-05-23 05:35 - 000003432 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA1d12ebc6be85ef3
2019-10-28 17:24 - 2018-05-23 05:35 - 000003262 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2019-10-28 17:24 - 2018-05-23 05:35 - 000003208 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore1d12ebc6bce6df2
2019-10-28 17:24 - 2018-05-23 05:35 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-676012942-2397387924-1880445482-1000
2019-10-27 16:05 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-10-27 15:53 - 2017-02-09 21:12 - 000000000 ____D C:\Users\Lukas\AppData\Local\CrashDumps
2019-10-24 19:29 - 2018-05-23 05:27 - 000006172 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-10-24 19:29 - 2018-04-12 16:50 - 000824734 _____ C:\WINDOWS\system32\perfh005.dat
2019-10-24 19:29 - 2018-04-12 16:50 - 000184268 _____ C:\WINDOWS\system32\perfc005.dat
2019-10-24 18:36 - 2018-05-14 19:41 - 000000000 ___DC C:\WINDOWS\Panther
2019-10-24 18:26 - 2015-12-30 10:01 - 000010705 _____ C:\Users\Lukas\AppData\Local\FSDownloader.err
2019-10-23 18:31 - 2018-05-23 05:28 - 000002399 _____ C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-10-23 18:31 - 2016-05-18 05:04 - 000000000 ___RD C:\Users\Lukas\OneDrive
2019-10-22 22:52 - 2015-02-07 18:44 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-10-22 22:52 - 2015-02-07 18:44 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-10-22 18:56 - 2017-02-24 09:58 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2019-10-21 18:23 - 2018-05-23 05:28 - 000000000 ____D C:\Users\Lukas
2019-10-18 16:45 - 2018-04-11 22:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-10-18 16:13 - 2018-04-12 00:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-10-16 17:37 - 2019-07-09 16:21 - 000011434 _____ C:\Users\Lukas\Desktop\střecha veletov.xlsx
2019-10-16 17:33 - 2019-09-26 21:50 - 000000000 ____D C:\Users\Lukas\Desktop\rozpočty
2019-10-16 17:25 - 2015-07-25 23:37 - 000000000 ____D C:\Program Files (x86)\Origin
2019-10-16 17:24 - 2019-04-26 15:46 - 000003826 _____ C:\WINDOWS\system32\Tasks\AVG Secure Browser Heartbeat Task (Hourly)
2019-10-16 17:24 - 2019-04-26 15:46 - 000003242 _____ C:\WINDOWS\system32\Tasks\AVG Secure Browser Heartbeat Task (Logon)
2019-10-16 17:24 - 2018-10-27 15:02 - 000002375 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Secure Browser.lnk
2019-10-16 17:24 - 2018-10-27 15:02 - 000002340 _____ C:\Users\Public\Desktop\AVG Secure Browser.lnk
2019-10-13 20:46 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF
2019-10-13 20:30 - 2019-07-27 16:50 - 000010795 _____ C:\Users\Lukas\Documents\tomáš rodiče osb.xlsx
2019-10-13 16:53 - 2018-02-08 20:43 - 000000000 ____D C:\Users\Lukas\Desktop\vyuctovaní 2018
2019-10-11 17:25 - 2018-04-03 19:24 - 000000803 _____ C:\Users\Lukas\Desktop\Stellaris.lnk
2019-10-10 16:48 - 2016-05-19 19:45 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-10-10 16:47 - 2018-05-23 05:25 - 000411536 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-10-10 16:47 - 2016-06-30 18:23 - 000000000 ___RD C:\Users\Lukas\3D Objects
2019-10-10 16:47 - 2016-02-13 14:12 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-10-10 16:45 - 2018-04-12 00:38 - 000017800 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2019-10-10 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-10-10 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2019-10-10 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-10-10 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2019-10-10 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-10-10 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-10-10 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-10-10 16:45 - 2018-04-11 22:04 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-10-10 16:45 - 2015-02-07 18:44 - 000000000 ____D C:\Program Files (x86)\Google
2019-10-10 16:23 - 2017-03-01 12:51 - 000000000 ____D C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
2019-10-10 16:19 - 2016-05-19 19:45 - 127230528 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-10-08 16:27 - 2019-02-02 12:42 - 000275232 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys
2019-10-08 16:27 - 2019-01-27 03:10 - 000210328 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsh.sys
2019-10-08 16:27 - 2019-01-27 03:10 - 000065376 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniv.sys
2019-10-08 16:27 - 2019-01-27 03:10 - 000037880 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArDisk.sys
2019-10-08 16:27 - 2018-10-25 20:17 - 000043512 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys
2019-10-08 16:27 - 2018-07-23 19:34 - 000016520 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgElam.sys
2019-10-08 16:27 - 2018-04-12 00:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-10-08 16:27 - 2017-11-27 21:14 - 000205600 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2019-10-08 16:27 - 2017-04-22 16:33 - 000848688 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2019-10-08 16:27 - 2017-04-22 16:33 - 000461216 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2019-10-08 16:27 - 2017-04-22 16:33 - 000317304 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2019-10-08 16:27 - 2017-04-22 16:33 - 000111096 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2019-10-08 16:27 - 2017-04-22 16:33 - 000084560 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2019-09-29 14:37 - 2018-01-18 07:04 - 000000000 ____D C:\Users\Lukas\AppData\Local\Packages
==================== Files in the root of some directories ========
2017-03-13 08:15 - 2017-05-11 19:36 - 000011188 _____ () C:\Program Files (x86)\metadata
2017-03-13 08:15 - 2017-05-11 19:36 - 000000040 _____ () C:\Program Files (x86)\settings.dat
2017-03-01 12:53 - 2017-03-01 12:53 - 000000046 _____ () C:\Users\Lukas\AppData\Roaming\Camdata.ini
2017-03-01 12:53 - 2017-03-01 12:53 - 000000408 _____ () C:\Users\Lukas\AppData\Roaming\CamLayout.ini
2017-03-01 12:53 - 2017-03-01 12:53 - 000000408 _____ () C:\Users\Lukas\AppData\Roaming\CamShapes.ini
2017-03-01 12:53 - 2017-03-01 12:53 - 000004536 _____ () C:\Users\Lukas\AppData\Roaming\CamStudio.cfg
2017-03-01 12:51 - 2017-03-01 12:51 - 000000096 _____ () C:\Users\Lukas\AppData\Roaming\version2.xml
2017-03-16 11:48 - 2017-03-16 11:48 - 000000000 _____ () C:\Users\Lukas\AppData\Local\Driver_LOM_8161Present.flag
2015-12-30 10:01 - 2019-10-24 18:26 - 000010705 _____ () C:\Users\Lukas\AppData\Local\FSDownloader.err
2015-12-30 10:01 - 2019-10-28 17:33 - 000001312 _____ () C:\Users\Lukas\AppData\Local\FSDownloader.nast
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Ran by Lukas (administrator) on LUKAS-PC (MSI MS-7693) (28-10-2019 17:41:51)
Running from G:\marvel ,DC
Loaded Profiles: Lukas (Available Profiles: Lukas)
Platform: Windows 10 Home Version 1803 17134.1069 (X64) Language: Čeština (Česko)
Default browser: "C:\Program Files (x86)\Footjane\Application\chrome.exe" "%1"
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(AVG Netherlands B.V. -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.4.155.333\AVGBrowserCrashHandler.exe
(AVG Netherlands B.V. -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.4.155.333\AVGBrowserCrashHandler64.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe
(Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe
(Disc Soft Ltd -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Disc Soft Ltd -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Even Balance, Inc. -> ) C:\WINDOWS\SysWOW64\PnkBstrA.exe
(Facebook, Inc. -> Facebook) [File not signed] C:\Users\Lukas\AppData\Local\Facebook\Games\FacebookGameroom.exe
(Facebook, Inc. -> The CefSharp Authors) [File not signed] C:\Users\Lukas\AppData\Local\Facebook\Games\Facebook Gameroom Browser.exe
(Gaijin Network LTD -> Gaijin Entertainment) C:\Users\Lukas\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe
(Google Inc -> Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Google Inc -> Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Innova Co S.a r.l. -> Innova Co S.a r.l.) [File not signed] C:\Program Files (x86)\4game\3.6.2.278\4game-service.exe
(Microsoft Corporation -> © 2015 Microsoft Corporation) C:\Users\Lukas\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Lukas\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\WINDOWS\System32\WirelessKB850NotificationService.exe
(Microsoft Corporation -> Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.EXE
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19072.18011.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\smartscreen.exe
(Mozilla Corporation) [File not signed] C:\Program Files (x86)\Firefox\Firefox.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Qualcomm Atheros) [File not signed] C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Samsung Electronics CO., LTD. -> ) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Seznam.cz, a.s. -> ) C:\Users\Lukas\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(Seznam.cz, a.s. -> ) C:\Users\Lukas\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(University of California, Berkeley -> Charity Engine) C:\Program Files (x86)\BOINC\boinctray.exe
(VIA Technologies, Inc.) [File not signed] C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\MobileGo\MobileGoService.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [MBCfg64] => C:\Windows\system32\MBCfg64.dll [41088 2014-02-21] (Creative Technology Ltd -> Creative Technology Ltd.)
HKLM\...\Run: [VIAxHCUtl] => C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe [331776 2011-07-12] (VIA Technologies, Inc.) [File not signed]
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [462712 2012-03-09] (Samsung Electronics CO., LTD. -> )
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\nvspcap64.dll [1923008 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [316336 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8845528 2000-01-01] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-05-07] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [Sound Blaster Cinema 2] => C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe [1440768 2014-02-24] (Creative Technology Ltd) [File not signed]
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.) [File not signed]
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] (Seznam.cz, a.s. -> )
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-03-07] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [boinctray] => C:\Program Files (x86)\BOINC\boinctray.exe [71312 2014-03-07] (University of California, Berkeley -> Charity Engine)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-06-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKLM\...\Policies\Explorer: [NoInstrumentation] 1
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3211040 2019-10-02] (Valve -> Valve Corporation)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Lukas\AppData\Roaming\Seznam.cz\szninstall.exe [1069296 2018-03-27] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Lukas\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [109808 2018-03-27] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3115792 2019-10-16] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23819304 2017-03-21] (Google Inc -> Google)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [BingSvc] => C:\Users\Lukas\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (Microsoft Corporation -> © 2015 Microsoft Corporation)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [World of Warships] => C:\Games\World_of_Warships\WargamingGameUpdater.exe [3140384 2018-01-25] (Wargaming PCL -> Wargaming.net)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4836032 2017-08-14] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-05-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [721504 2015-09-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [Gaijin.Net Updater] => C:\Users\Lukas\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2123008 2019-09-20] (Gaijin Network LTD -> Gaijin Entertainment)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [SRDownloader] => G:\marvel ,DC\FSDownloader.exe [1537024 2019-06-08] (File-share.top) [File not signed]
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Policies\system: [Shell] <==== ATTENTION
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\MountPoints2: {d62cd0d9-d38d-11e7-a610-d8cb8a13fec7} - "E:\setup.exe"
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\MountPoints2: {def9fec5-a11b-11e7-a5f6-d8cb8a13fec7} - "E:\setup.exe"
HKLM\...\Providers\l9olaieg: C:\Program Files (x86)\Khagetheputain Renew\local64spl.dll <==== ATTENTION
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.70\Installer\chrmstp.exe [2019-10-22] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{48F69C39-1356-4A7B-A899-70E3539D4982}] -> C:\Program Files (x86)\AVG\Browser\Application\77.1.1833.92\Installer\chrmstp.exe [2019-10-16] (AVG Technologies USA, Inc. -> AVG Technologies)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MobileGo Service.lnk [2017-12-18]
ShortcutTarget: MobileGo Service.lnk -> C:\Program Files (x86)\Wondershare\MobileGo\MobileGoService.exe (Wondershare Technology Co.,Ltd -> Wondershare)
Startup: C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2018-02-14]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\Lukas\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook, Inc. -> Facebook) [File not signed]
Startup: C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\tmp8B80.tmp.vbs [2015-11-26] ()
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {00C68D1E-0792-4737-ABE6-11A23C0E148C} - System32\Tasks\GoogleUpdateTaskMachineUA1d08feffd8759fd => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {057F0FDB-4D54-433E-B0E7-DA7189E9A45D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [1540544 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {078F5A49-EB5F-47D1-8AAC-D7DB43920F91} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {08398CB9-4B31-4A24-8B44-EB9BB625BA92} - System32\Tasks\GoogleUpdateTaskMachineUA1d0bf8240b41a2d => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {0964DD9B-4BFD-47A1-A51E-8B74F3977239} - System32\Tasks\Math Problem Solver CPU => C:\Users\Lukas\AppData\Local\Math Problem Solver\cpu\Solve.exe <==== ATTENTION
Task: {0A3ADA6A-7D6B-48BE-B3EE-7CAFCB01D806} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {0AB50D89-FFF4-45DA-A27F-F78224C73B18} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {0DCD5721-E663-4739-8799-D538A118462C} - System32\Tasks\Khagetheputain Renew => C:\Program Files (x86)\Hubishrwoy\danudle.exe
Task: {0DF81F83-AAE4-4D9D-AD21-1C085FB4F3CD} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0F2160CC-1C14-402D-AD23-A12D04C235E8} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {14141500-8981-4403-B402-EA338C0793AC} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {160FF8F5-CC06-4540-9129-09EE6E5519F1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {166C21CD-A7AE-44C6-9267-F23A9BD448EF} - System32\Tasks\GoogleUpdateTaskMachineUA1d0f1cdabb0a60b => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {1AC7B678-A9D3-4A29-92DC-D8F4EBF554F7} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {1CEA203A-C150-4652-AABB-7ACA3A05E166} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1D16E514-8B2B-401C-A57A-94F5BDE2C6C6} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [947136 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1E30E266-381A-446D-8258-14AA8981822C} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {1FD4545D-449E-4498-A28F-6A70BBB6E717} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {21B0555E-5B6E-4A33-8B94-554BA363328C} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {23BDB7CB-960B-44D3-AE0C-CF01B7DBFB52} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1905072 2019-09-20] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {27084B0C-A17D-4BE6-B8AF-7BC269C6D899} - System32\Tasks\SlimDrivers Startup => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe [29780248 2015-08-19] (Slimware Utilities Holdings, Inc. -> SlimWare Utilities, Inc.)
Task: {2855507F-5693-4716-8CFD-A9C7EC3608E1} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {300BD167-058E-4DF4-A7BE-2E53BB8E2972} - System32\Tasks\Opera scheduled Autoupdate 1447089322 => C:\Program Files (x86)\Opera\launcher.exe [1139800 2018-09-13] (Opera Software AS -> Opera Software)
Task: {31BE7BED-2F8C-44D1-BD22-11E99C2B41D6} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {331DDBCD-B400-4A52-8AA3-1827C9BCD258} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {39258C28-7A3C-4300-A3DC-4E16322E23F7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {3AEA29CC-B5AD-4AD2-BC6D-909CC4F0BB1C} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {3D4E9D09-C002-4945-AC40-392F521B8371} - System32\Tasks\Milimili => C:\Program Files (x86)\MIO\MIO.exe [282168 2017-05-17] (Tencent Technology(Shenzhen) Company Limited -> ) <==== ATTENTION
Task: {41E30C1E-4367-4961-83E7-F77ACA6B8A7D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {44043342-7AEF-45A6-BE72-1C5E0973F9B7} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [651200 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {474D443B-B2A3-4499-A248-66AC6D63CC22} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [3981232 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {4767975C-6E0E-4FAA-8A88-B2977101B326} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {478A9481-F90E-4304-A5F6-68A3C6FACA5E} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {4D624449-4D60-4D19-9387-2E5BF8C036BD} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {50FC92D3-BD00-47CB-A315-A89F04ED71E1} - System32\Tasks\GoogleUpdateTaskMachineCore1d0f1cdab88d226 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {56B0A61C-507F-433D-954C-C486D2189B72} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {5A1966A9-CEB3-41A9-AE16-6BC5ABAD319F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {614E6F12-9484-46EE-9A73-6D7224A2D4B4} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [436160 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6482D3E7-3339-4124-B13F-E53C041CFA06} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {656F2A16-EFDE-4862-8AFD-D8B5E81C281C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {65F86154-AB5D-4337-8D93-BAF90FA4D306} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1670432 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {663E99B4-CA4D-4E7C-91C1-EABB63BABB64} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {66F06E9E-DF0A-433D-83B5-C509AEC75A95} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {6703186A-0465-4C3E-A08A-443207902793} - System32\Tasks\GoogleUpdateTaskMachineUA1d12ebc6be85ef3 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {693DC29A-0A62-4D8A-AC5E-76EF209789E6} - System32\Tasks\Math Problem Solver Optimize => C:\Users\Lukas\AppData\Local\Math Problem Solver\Optimize.exe [67740 2014-01-20] () [File not signed] <==== ATTENTION
Task: {69D2C974-CF78-415C-8191-C7DC384676E6} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7910D104-F17E-49AB-8776-6C77A50BAC04} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2018-09-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {7A837A76-486D-42A1-97E8-360C058D8954} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {7C8C0D84-7FDF-4498-A416-73AD7EA30569} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {7DB680EE-23B1-48F0-9859-CDA2BEC008FB} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2227488 2015-12-09] (Microsoft Corporation -> Microsoft)
Task: {82468688-DA9F-4710-B706-424D84B066D0} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {85175350-6DD5-4C07-ABAB-38D7F203636C} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {8542E702-570F-4417-9906-6350AF0591E3} - System32\Tasks\BikaQ_FetchAndUpgrade_CanBeDel => C:\Program Files (x86)\BikaQRss\BikaQ.exe <==== ATTENTION
Task: {85780FD9-7FC6-440E-B945-27134F55C731} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {863E957B-FB85-4851-BDDB-29304749D0CD} - System32\Tasks\AVG Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [1873000 2019-09-25] (AVG Technologies USA, Inc. -> AVG Technologies)
Task: {883BFE7D-F5FC-4F29-B091-38E4C517B2FD} - System32\Tasks\AVGUpdateTaskMachineCore => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [165520 2018-10-27] (AVG Netherlands B.V. -> AVG Technologies)
Task: {897F1BF5-3093-47B4-B81B-DCD2D9897417} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_108_Plugin.exe [1454080 2018-09-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {8A047119-D9E5-477C-B68D-D5DA2A5D8150} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {973F4372-6F08-4918-8421-4E9AB460F9B7} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {98C3B48E-7621-455F-A8EE-90C73D02E404} - System32\Tasks\AVG Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [1873000 2019-09-25] (AVG Technologies USA, Inc. -> AVG Technologies)
Task: {99A527D5-9275-472A-9145-E6AE919E91E4} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {99FFD4B3-E3F9-4747-9619-D3070128EA7D} - System32\Tasks\AVGUpdateTaskMachineUA => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [165520 2018-10-27] (AVG Netherlands B.V. -> AVG Technologies)
Task: {9AE63F0F-455B-4671-B91D-FC96318A4D32} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2212128 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {9F51F8E6-34D8-4E87-AE46-DCC8FF65A6CA} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {AC1769AE-9049-4FAA-BCA1-EF24AE7E0B26} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [651200 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B50B0A88-6F32-4525-A344-20D1804D3764} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {B59AA759-2158-4CEA-A134-4EFB287168F1} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {B65417F6-37D2-4862-84FE-ADD7DD7BA31B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {BBC89AE6-9F6E-45EF-8F63-55A8B55BC2DB} - System32\Tasks\{1A6294B2-88B2-4000-982C-50EE66BDD741} => C:\WINDOWS\system32\pcalua.exe -a "F:\intuix_cd\Intuix CD\setup.exe" -d "F:\intuix_cd\Intuix CD"
Task: {C5110754-6125-4583-93E9-90A2E8B93F9B} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1670432 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {C68AFC55-BC6B-4932-8422-FDCAE9D0228E} - System32\Tasks\GoogleUpdateTaskMachineCore1d0e311c2edf531 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {C79F4485-F979-4998-A686-7527DFE38288} - System32\Tasks\{E9D3D202-8BE7-4283-9C8E-DB1ADD4A305D} => C:\Windows\system32\pcalua.exe -a K:\_AUTORUN\AUTORUN.EXE -d K:\
Task: {C8440877-31C2-4D5A-B13D-B78D1A784C64} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {CE403273-6ABC-4EDB-B60E-418EE36DE211} - System32\Tasks\{D082DED7-9F54-4072-B23C-9015685838FF} => C:\WINDOWS\system32\pcalua.exe -a "F:\Program Files (x86)\Mafia I - The City of Lost Heaven\Game.exe" -d "F:\Program Files (x86)\Mafia I - The City of Lost Heaven"
Task: {D6CA3431-FF1A-4CB8-9146-6B78F0BBF8E6} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {D6F88AA6-B7B7-4C2D-BFD8-16DFDE83FA22} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2212128 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {D99CF7B4-C34D-47D3-9CD0-C486F7CE1434} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DDDA9FC3-1F1A-4C8C-A95A-47E751E16E56} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DE10E964-9B25-4F6E-9EDC-CD783AF08FE4} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [722880 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DEE2560C-3FA2-499E-8DAF-184D35357BCB} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {E140E31A-0C7F-4FFA-89E9-C6D582D94CC7} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [722880 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E55F4541-8AA4-486D-A31F-8D7584FF968D} - System32\Tasks\GoogleUpdateTaskMachineCore1d08feffd709d58 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {E7DB25D7-9344-4C16-B621-DE4DA8BD66B4} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {E81AB3AC-3816-4EBE-A8D5-0C27174B539B} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E95DA03C-4020-4063-B2FC-DF9CC9D202BD} - System32\Tasks\GoogleUpdateTaskMachineCore1d0bf824092886a => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {EF259B98-F640-49BA-8E8A-3ACAE1C31C5F} - System32\Tasks\{91840007-F1F0-480C-8352-3A5360385E8C} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Railroad Tycoon 3\UNINSTX.EXE"
Task: {EF7CE8FE-FF1D-4CE4-98B5-AEEE09AF4843} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {FD539483-AC5F-43E5-A5A4-CBB51614FEBE} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {FD77CB7B-62D4-4956-841B-D5C6D9E7F315} - System32\Tasks\GoogleUpdateTaskMachineCore1d12ebc6bce6df2 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d08feffd709d58.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0bf824092886a.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0e311c2edf531.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0f1cdab88d226.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d08feffd8759fd.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0bf8240b41a2d.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0f1cdabb0a60b.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\SlimDrivers Startup.job => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 127.0.0.1 validation.sls.microsoft.com
Tcpip\Parameters: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{0c602eed-9ac2-4542-ac7f-b6924786abc0}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{65eee1d5-a9d8-425b-8d5e-4166b6418b14}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{9226fc84-2a17-4d77-8b05-e13aee4900e5}: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{9335ad66-4c3b-44d6-8b35-4cf661d0f1d3}: [DhcpNameServer] 172.20.10.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617912&ResetID=132151946241391219&GUID=09B1574E-8886-4A52-9C34-8AE3E62B20AA
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.ourluckysites.com/search/?type=ds&t ... earchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.ourluckysites.com/?type=hp&ts=14924 ... 774B03171A
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.ourluckysites.com/search/?type=ds&t ... earchTerms}
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.startpageing123.com/search/?type=ds ... earchTerms}
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.ourluckysites.com/?type=hp&ts=14924 ... 774B03171A
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.ourluckysites.com/?type=hp&ts=14924 ... 774B03171A
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.startpageing123.com/search/?type=ds ... earchTerms}
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.ourluckysites.com/search/?type=ds&t ... earchTerms}
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {0EDBD3F4-E096-4846-B9DE-D691BA3103C6} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {1C50BAAC-C45F-46AA-B7B2-79617F444A02} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {21B2B49F-F4DA-49CE-A9FC-C3EDE1E86455} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.ourluckysites.com/search/?type=ds&t ... earchTerms}
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {431AAD9A-2776-4129-A644-3F9F151176C4} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {76DEFAE6-09B2-40B2-8F8A-5A6A5D5CE4EB} URL = hxxps://search.yahoo.com/search/?toggle=1&cop=mss&ei=UTF-8&fr=vmn&type=auslog_yaapp6_adw_ch&p={searchTerms}
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {937BFC8E-BC6F-43FE-8828-A0617CFC8708} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {9D8DD67D-8298-4DF4-BD42-61842EC96EEE} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {AEBA1B1E-35FE-4762-AC9C-6B81DE0B8AF7} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {D742AC74-BBC6-48E1-A0C2-E8A528458B67} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_13415
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.3.7.452\AVG Web TuneUp.dll [2017-02-23] (AVG Technologies CZ, s.r.o. -> AVG)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-04] (Google Inc -> Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation -> Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation -> Microsoft Corporation.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-04] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)
Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> hxxp://www.startpageing123.com/?type=hp&ts=148 ... 774B03171A
FireFox:
========
FF DefaultProfile: ixqmgx8f.default
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\naweriweentcofise\Profiles\ixqmgx8f.default\Profiles\ixqmgx8f.default [not found] <==== ATTENTION
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\naweriweentcofise\Profiles\ixqmgx8f.default\Profiles\ixqmgx8f.default [not found] <==== ATTENTION
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default [2017-09-22]
FF DownloadDir: F:\filmy
FF Homepage: Mozilla\Firefox\Profiles\ixqmgx8f.default -> hxxp://www.ourluckysites.com/?type=hp&ts=14924 ... 774B03171A
FF Extension: (AVG Web TuneUp) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\Extensions\avg@toolbar.xpi [2017-01-21] [Legacy]
FF Extension: (Bing Search) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\Extensions\bingsearch.full@microsoft.com.xpi [2017-02-05] [Legacy]
FF Extension: (Seznam doplněk - Esko) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\Extensions\sko-extension@firma.seznam.cz [2018-04-05]
FF Extension: (Search App by Ask) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\Extensions\toolbar_ORJ-SPE@apn.ask.com.xpi [2017-01-26] [Legacy]
FF Extension: (Seznam lištička) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2018-04-05] [Legacy]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\searchplugins\bing-.xml [2017-02-05]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\searchplugins\l9olaieg.xml [2017-02-27]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\searchplugins\ourluckysites.xml [2017-04-17]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\searchplugins\startpageing123.xml [2017-03-27]
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default [2019-10-28] <==== ATTENTION
FF DownloadDir: G:\marvel ,DC
FF Homepage: Firefox\Firefox\Profiles\ixqmgx8f.default -> hxxp://www.searchinme.com//?type=hp&ts=1493919 ... 774B03171A
FF Extension: (SimilarWeb) - C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default\Extensions\@DA3566E2-F709-11E5-8E87-A604BC8E7F8B.xpi [2017-03-03] [Legacy] [not signed]
FF Extension: (FF Adr) - C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default\Extensions\@H99KV4DO-UCCF-9PFO-9ZLK-8RRP4FVOKD9O.xpi [2017-06-05] [not signed]
FF Extension: (AVG Web TuneUp) - C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default\Extensions\avg@toolbar.xpi [2017-01-21] [Legacy]
FF Extension: (Bing Search) - C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default\Extensions\bingsearch.full@microsoft.com.xpi [2017-02-05] [Legacy]
FF Extension: (Český slovník pro kontrolu pravopisu (bez diakritiky)) - C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default\Extensions\cs2@dictionaries.addons.mozilla.org [2018-03-19] [Legacy]
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default\Extensions\cs@dictionaries.addons.mozilla.org [2018-03-19] [Legacy]
FF Extension: (Czech (CZ) Language Pack) - C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default\Extensions\langpack-cs@firefox.mozilla.org.xpi [2017-04-25] [Legacy] [not signed]
FF Extension: (Search App by Ask) - C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default\Extensions\toolbar_ORJ-SPE@apn.ask.com.xpi [2018-08-05] [UpdateUrl:hxxps://secure-apnmedia.ask.com/media/toolbar/everest/partners/ORJ-SPE/YY/update.json]
FF Extension: (Seznam lištička) - C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2017-10-05] [Legacy]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default\searchplugins\ask-search.xml [2015-04-02]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default\searchplugins\bing-.xml [2017-02-05]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default\searchplugins\l9olaieg.xml [2017-02-27]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default\searchplugins\startpageing123.xml [2017-03-03]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ixqmgx8f.default\searchplugins\startsearch.xml [2017-04-25]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_31_0_0_108.dll [2018-09-12] (Adobe Systems Incorporated -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @4game.com/plugin -> C:\Program Files (x86)\4game\3.6.2.278\npplugin4game.dll [2018-11-02] (Innova Co S.a r.l. -> Innova Co S.a r.l.) [File not signed]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_108.dll [2018-09-12] (Adobe Systems Incorporated -> )
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.7\\npsitesafety.dll [No File]
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.301\npGoogleUpdate3.dll [2019-10-10] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.301\npGoogleUpdate3.dll [2019-10-10] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-03] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-676012942-2397387924-1880445482-1000: SkypePlugin -> C:\Users\Lukas\AppData\Local\SkypePlugin\7.31.0.56\npGatewayNpapi.dll [2017-02-03] (Microsoft Corporation -> Skype Technologies S.A.)
FF Plugin HKU\S-1-5-21-676012942-2397387924-1880445482-1000: SkypePlugin64 -> C:\Users\Lukas\AppData\Local\SkypePlugin\7.31.0.56\npGatewayNpapi-x64.dll [2017-02-03] (Microsoft Corporation -> Skype Technologies S.A.)
StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox\firefox.exe hxxp://www.ourluckysites.com/?type=sc&ts=14962 ... 774B03171A
Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR HomePage: ChromeDefaultData -> mysearch.avg.com
CHR StartupUrls: ChromeDefaultData -> "hxxp://www.ourluckysites.com/?type=hp&ts=14924 ... 774B03171A"
CHR DefaultSearchURL: ChromeDefaultData -> hxxp://www.ourluckysites.com/search/?type=ds&t ... earchTerms}
CHR DefaultSearchKeyword: ChromeDefaultData -> ourluckysites
CHR Profile: C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2019-10-28] <==== ATTENTION
CHR DownloadDir: E:\
CHR Extension: (Prezentace) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-10-11]
CHR Extension: (Dokumenty) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2019-10-11]
CHR Extension: (Disk Google) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-07]
CHR Extension: (YouTube) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (AVG Secure Search) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2019-10-11]
CHR Extension: (Vyhledávání Google) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-07]
CHR Extension: (Adobe Acrobat) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-10-11]
CHR Extension: (MSN Homepage & Bing Search Engine) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2019-10-11]
CHR Extension: (Tabulky) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-10-11]
CHR Extension: (Dokumenty Google offline) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-10-11]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-01-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-11]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2019-10-11]
CHR Extension: (Gmail) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-10-11]
CHR Extension: (Chrome Media Router) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-10-23]
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [chfdnecihphmhljaaejmgoiahnihplgn] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak] - hxxps://clients2.google.com/service/update2/crx
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\StartMenuInternet\ChromeHTML: -> C:\Program Files (x86)\Footjane\Application\chrome.exe (Google Inc -> Google Inc.) <==== ATTENTION
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 4game-service; C:\Program Files (x86)\4game\3.6.2.278\4game-service.exe [1686008 2018-11-02] (Innova Co S.a r.l. -> Innova Co S.a r.l.) [File not signed]
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-05-04] (Advanced Micro Devices, Inc.) [File not signed]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-04-29] (Apple Inc. -> Apple Inc.)
S2 avg; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [165520 2018-10-27] (AVG Netherlands B.V. -> AVG Technologies)
R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [996928 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe [6133752 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
S3 avgm; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [165520 2018-10-27] (AVG Netherlands B.V. -> AVG Technologies)
S3 AVGSecureBrowserElevationService; C:\Program Files (x86)\AVG\Browser\Application\77.1.1833.92\elevation_service.exe [984976 2019-09-25] (AVG Technologies USA, Inc. -> AVG Technologies)
R2 AvgWscReporter; C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe [110560 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
S4 BIT; C:\ProgramData\BIT\BIT.dll [1812992 2017-06-16] () [File not signed] <==== ATTENTION
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291904 2017-08-14] (Disc Soft Ltd -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [392976 2017-02-10] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2018-12-12] (Huawei Technologies Co., Ltd. -> ) [File not signed]
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2348336 2019-10-16] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3228976 2019-10-16] (Electronic Arts, Inc. -> Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-03-15] (Even Balance, Inc. -> )
R2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [344576 2014-01-22] (Qualcomm Atheros) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10803440 2018-09-28] (TeamViewer GmbH -> TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4413440 2019-03-14] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [107160 2019-02-16] (Microsoft Corporation -> Microsoft Corporation)
R2 WirelessKB850NotificationService; C:\WINDOWS\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe [473312 2017-03-20] (Wondershare Technology Co.,Ltd -> Wondershare)
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\MobileGo\DriverInstall.exe [101152 2017-06-01] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 NvContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
S3 NvContainerNetworkService; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdiox64; C:\WINDOWS\System32\drivers\amdiox64.sys [46136 2010-02-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [79488 2011-04-15] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [40064 2011-04-15] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [55936 2011-11-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R0 avgArDisk; C:\WINDOWS\System32\drivers\avgArDisk.sys [37880 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [205600 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [275232 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [210328 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [65376 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [16520 2019-10-08] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [43512 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [171784 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [111096 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [84560 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [848688 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [461216 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [236288 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [317304 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 BfLwf; C:\WINDOWS\system32\DRIVERS\bflwfx64.sys [80080 2013-11-08] (Qualcomm Atheros, Inc. -> Qualcomm Atheros, Inc.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-02-27] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-02-27] (Disc Soft Ltd -> Disc Soft Ltd)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2018-12-12] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 KillerEth; C:\WINDOWS\System32\drivers\e2xw10x64.sys [145920 2018-04-12] (Microsoft Windows -> Qualcomm Atheros, Inc.)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-02-07] (Malwarebytes Corporation -> Malwarebytes Corporation)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2018-05-04] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_2e7fa54192fe16d0\nvlddmkm.sys [16936048 2017-11-09] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48064 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
R1 sbnetsys; C:\WINDOWS\system32\DRIVERS\sbnetsys.sys [44648 2015-04-17] (Mainline Net Holdings Limited -> NT Kernel Resources)
S3 SWDUMon; C:\WINDOWS\system32\DRIVERS\SWDUMon.sys [16056 2018-09-21] (Slimware Utilities Holdings, Inc. -> SlimWare Utilities, Inc.)
R3 usbfilter; C:\WINDOWS\system32\DRIVERS\usbfilter.sys [61464 2000-01-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [22016 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
S3 WUDFWpdComp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [264192 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
U3 aspnet_state; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-10-24 18:35 - 2019-10-24 18:35 - 000000000 ___HD C:\$WINDOWS.~BT
2019-10-16 17:31 - 2019-10-16 17:31 - 000000000 ____D C:\Users\Lukas\AppData\Local\OneDrive
2019-10-11 16:45 - 2019-10-11 16:45 - 000000165 ____H C:\Users\Lukas\Documents\~$tomáš rodiče osb.xlsx
2019-10-10 16:45 - 2019-10-13 20:46 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-10-10 16:25 - 2019-10-02 12:10 - 004527072 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-10-10 16:25 - 2019-10-02 06:04 - 007519896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-10-10 16:25 - 2019-10-02 05:47 - 006564368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-10-10 16:25 - 2019-10-02 05:40 - 025857024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-10-10 16:25 - 2019-10-02 05:32 - 022735872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-10-10 16:25 - 2019-09-10 08:17 - 023862272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-10-10 16:24 - 2019-10-06 02:43 - 000783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-10-10 16:24 - 2019-10-06 02:43 - 000674304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-10-10 16:24 - 2019-10-02 12:14 - 000349216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-10-10 16:24 - 2019-10-02 12:10 - 001640376 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-10-10 16:24 - 2019-10-02 12:10 - 001616608 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-10-10 16:24 - 2019-10-02 12:08 - 002394960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2019-10-10 16:24 - 2019-10-02 12:08 - 001047568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2019-10-10 16:24 - 2019-10-02 11:53 - 004852736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-10-10 16:24 - 2019-10-02 11:53 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-10-10 16:24 - 2019-10-02 11:52 - 012835840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-10-10 16:24 - 2019-10-02 11:52 - 008627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-10-10 16:24 - 2019-10-02 11:50 - 004491264 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2019-10-10 16:24 - 2019-10-02 11:50 - 002019840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-10-10 16:24 - 2019-10-02 11:50 - 000810496 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2019-10-10 16:24 - 2019-10-02 11:49 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2019-10-10 16:24 - 2019-10-02 11:48 - 000678400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2019-10-10 16:24 - 2019-10-02 11:48 - 000625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2019-10-10 16:24 - 2019-10-02 11:48 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-10-10 16:24 - 2019-10-02 11:47 - 000957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-10-10 16:24 - 2019-10-02 11:47 - 000878592 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-10-10 16:24 - 2019-10-02 11:47 - 000488960 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-10-10 16:24 - 2019-10-02 11:46 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-10-10 16:24 - 2019-10-02 11:46 - 001289216 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-10-10 16:24 - 2019-10-02 11:46 - 000740864 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2019-10-10 16:24 - 2019-10-02 11:46 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-10-10 16:24 - 2019-10-02 11:45 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-10-10 16:24 - 2019-10-02 11:45 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2019-10-10 16:24 - 2019-10-02 09:56 - 001628488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-10-10 16:24 - 2019-10-02 09:53 - 000917816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2019-10-10 16:24 - 2019-10-02 09:52 - 002206424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2019-10-10 16:24 - 2019-10-02 09:46 - 012037120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-10-10 16:24 - 2019-10-02 09:44 - 007991296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-10-10 16:24 - 2019-10-02 09:42 - 003397120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2019-10-10 16:24 - 2019-10-02 09:42 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-10-10 16:24 - 2019-10-02 09:41 - 000901120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2019-10-10 16:24 - 2019-10-02 09:41 - 000704000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-10-10 16:24 - 2019-10-02 09:41 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-10-10 16:24 - 2019-10-02 06:21 - 002417744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2019-10-10 16:24 - 2019-10-02 06:20 - 003180080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2019-10-10 16:24 - 2019-10-02 06:19 - 000374584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-10-10 16:24 - 2019-10-02 06:05 - 000092472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2019-10-10 16:24 - 2019-10-02 06:04 - 002774120 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-10-10 16:24 - 2019-10-02 06:04 - 001098064 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-10-10 16:24 - 2019-10-02 06:04 - 001035040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-10-10 16:24 - 2019-10-02 06:04 - 000494096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-10-10 16:24 - 2019-10-02 06:03 - 000778024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-10-10 16:24 - 2019-10-02 06:03 - 000193040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-10-10 16:24 - 2019-10-02 06:02 - 004404720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-10-10 16:24 - 2019-10-02 06:02 - 001219896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-10-10 16:24 - 2019-10-02 06:02 - 001027384 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-10-10 16:24 - 2019-10-02 06:02 - 000568104 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-10-10 16:24 - 2019-10-02 06:02 - 000210448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2019-10-10 16:24 - 2019-10-02 06:02 - 000194352 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 002468048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 001288928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 000723728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 000722744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 000527160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2019-10-10 16:24 - 2019-10-02 06:01 - 000491208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 000439504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 000435728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 000159864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2019-10-10 16:24 - 2019-10-02 06:00 - 009080632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-10-10 16:24 - 2019-10-02 06:00 - 002570824 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-10-10 16:24 - 2019-10-02 06:00 - 002371504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-10-10 16:24 - 2019-10-02 06:00 - 000433168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-10-10 16:24 - 2019-10-02 06:00 - 000248880 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2019-10-10 16:24 - 2019-10-02 06:00 - 000209936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-10-10 16:24 - 2019-10-02 06:00 - 000039032 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll
2019-10-10 16:24 - 2019-10-02 05:59 - 001784696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-10-10 16:24 - 2019-10-02 05:59 - 001459120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-10-10 16:24 - 2019-10-02 05:59 - 001260776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-10-10 16:24 - 2019-10-02 05:59 - 001141504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-10-10 16:24 - 2019-10-02 05:59 - 000983936 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-10-10 16:24 - 2019-10-02 05:59 - 000930616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2019-10-10 16:24 - 2019-10-02 05:59 - 000604984 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-10-10 16:24 - 2019-10-02 05:59 - 000260800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-10-10 16:24 - 2019-10-02 05:49 - 000550512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2019-10-10 16:24 - 2019-10-02 05:49 - 000434728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-10-10 16:24 - 2019-10-02 05:49 - 000385000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-10-10 16:24 - 2019-10-02 05:49 - 000191800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-10-10 16:24 - 2019-10-02 05:49 - 000146712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2019-10-10 16:24 - 2019-10-02 05:48 - 002331480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-10-10 16:24 - 2019-10-02 05:48 - 001990056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-10-10 16:24 - 2019-10-02 05:48 - 000666248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-10-10 16:24 - 2019-10-02 05:48 - 000380216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-10-10 16:24 - 2019-10-02 05:48 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NtlmShared.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 004789944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 002260928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 001979752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 001380312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 001130784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 001020280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 000829752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2019-10-10 16:24 - 2019-10-02 05:47 - 000607248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 000129088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2019-10-10 16:24 - 2019-10-02 05:38 - 022016000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-10-10 16:24 - 2019-10-02 05:32 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-10-10 16:24 - 2019-10-02 05:31 - 008189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-10-10 16:24 - 2019-10-02 05:31 - 004388864 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-10-10 16:24 - 2019-10-02 05:30 - 019385856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-10-10 16:24 - 2019-10-02 05:30 - 003403264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-10-10 16:24 - 2019-10-02 05:29 - 003392000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-10-10 16:24 - 2019-10-02 05:29 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-10-10 16:24 - 2019-10-02 05:29 - 000038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 007573504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 004771840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 002929152 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 001827328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-10-10 16:24 - 2019-10-02 05:27 - 005769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-10-10 16:24 - 2019-10-02 05:27 - 003554304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2019-10-10 16:24 - 2019-10-02 05:27 - 002126336 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2019-10-10 16:24 - 2019-10-02 05:27 - 001308160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2019-10-10 16:24 - 2019-10-02 05:27 - 000929280 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-10-10 16:24 - 2019-10-02 05:27 - 000487936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-10-10 16:24 - 2019-10-02 05:27 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-10-10 16:24 - 2019-10-02 05:27 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-10-10 16:24 - 2019-10-02 05:27 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-10-10 16:24 - 2019-10-02 05:26 - 000908800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2019-10-10 16:24 - 2019-10-02 05:26 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-10-10 16:24 - 2019-10-02 05:26 - 000468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-10-10 16:24 - 2019-10-02 05:26 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-10-10 16:24 - 2019-10-02 05:26 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-10-10 16:24 - 2019-10-02 05:26 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 003091456 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 002738688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 002179072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 001862656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 001295360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2019-10-10 16:24 - 2019-10-02 05:24 - 002379264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-10-10 16:24 - 2019-10-02 05:24 - 001563648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-10-10 16:24 - 2019-10-02 05:24 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-10-10 16:24 - 2019-10-02 05:24 - 000857088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2019-10-10 16:24 - 2019-10-02 05:24 - 000582144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2019-10-10 16:24 - 2019-10-02 05:24 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2019-10-10 16:24 - 2019-10-02 05:23 - 004938240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-10-10 16:24 - 2019-10-02 05:23 - 004517376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-10-10 16:24 - 2019-10-02 05:23 - 002166272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-10-10 16:24 - 2019-10-02 05:23 - 001724928 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-10-10 16:24 - 2019-10-02 05:23 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-10-10 16:24 - 2019-10-02 05:23 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2019-10-10 16:24 - 2019-10-02 05:23 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-10-10 16:24 - 2019-10-02 05:23 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-10-10 16:24 - 2019-10-02 05:23 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-10-10 16:24 - 2019-10-02 05:22 - 001418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2019-10-10 16:24 - 2019-10-02 05:22 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-10-10 16:24 - 2019-10-02 05:22 - 000545280 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-10-10 16:24 - 2019-10-02 05:22 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-10-10 16:24 - 2019-10-02 05:22 - 000506368 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-10-10 16:24 - 2019-10-02 05:22 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-10-10 16:24 - 2019-10-02 05:22 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-10-10 16:24 - 2019-10-02 05:22 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-10-10 16:24 - 2019-10-02 04:05 - 000001312 _____ C:\WINDOWS\system32\tcbres.wim
2019-10-10 16:24 - 2019-09-19 08:02 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-10-10 16:24 - 2019-09-13 12:03 - 000586680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2019-10-10 16:24 - 2019-09-13 12:02 - 004040008 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-10-10 16:24 - 2019-09-13 11:57 - 021409376 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-10-10 16:24 - 2019-09-13 11:57 - 001517480 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-10-10 16:24 - 2019-09-13 11:57 - 001375456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-10-10 16:24 - 2019-09-13 11:56 - 000341392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2019-10-10 16:24 - 2019-09-13 11:47 - 006588416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-10-10 16:24 - 2019-09-13 11:44 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2019-10-10 16:24 - 2019-09-13 11:44 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2019-10-10 16:24 - 2019-09-13 11:41 - 001644032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2019-10-10 16:24 - 2019-09-13 11:41 - 001127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2019-10-10 16:24 - 2019-09-13 11:40 - 003614208 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-10-10 16:24 - 2019-09-13 11:40 - 001725952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-10-10 16:24 - 2019-09-13 11:40 - 000806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2019-10-10 16:24 - 2019-09-13 11:40 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2019-10-10 16:24 - 2019-09-13 11:40 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2019-10-10 16:24 - 2019-09-13 11:40 - 000351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe
2019-10-10 16:24 - 2019-09-13 11:40 - 000326656 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2019-10-10 16:24 - 2019-09-13 11:39 - 002085888 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2019-10-10 16:24 - 2019-09-13 11:39 - 001262592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-10-10 16:24 - 2019-09-13 11:39 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2019-10-10 16:24 - 2019-09-13 10:18 - 000470512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2019-10-10 16:24 - 2019-09-13 10:17 - 001026280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-10-10 16:24 - 2019-09-13 10:16 - 001320128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-10-10 16:24 - 2019-09-13 10:15 - 020400656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-10-10 16:24 - 2019-09-13 10:15 - 003701184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-10-10 16:24 - 2019-09-13 10:05 - 005659136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-10-10 16:24 - 2019-09-13 10:01 - 001300480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2019-10-10 16:24 - 2019-09-13 10:01 - 000622592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2019-10-10 16:24 - 2019-09-13 10:00 - 002882048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-10-10 16:24 - 2019-09-13 10:00 - 001530880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-10-10 16:24 - 2019-09-13 09:59 - 002017280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2019-10-10 16:24 - 2019-09-13 05:58 - 007900880 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2019-10-10 16:24 - 2019-09-13 05:58 - 001613096 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2019-10-10 16:24 - 2019-09-13 05:56 - 005821448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2019-10-10 16:24 - 2019-09-13 05:56 - 001299472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2019-10-10 16:24 - 2019-09-13 05:49 - 005627280 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-10-10 16:24 - 2019-09-13 05:49 - 000274792 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2019-10-10 16:24 - 2019-09-13 05:48 - 003290584 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-10-10 16:24 - 2019-09-13 05:48 - 001659704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2019-10-10 16:24 - 2019-09-13 05:48 - 001363536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2019-10-10 16:24 - 2019-09-13 05:48 - 000722744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-10-10 16:24 - 2019-09-13 05:48 - 000710240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-10-10 16:24 - 2019-09-13 05:48 - 000170296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-10-10 16:24 - 2019-09-13 05:47 - 007445856 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-10-10 16:24 - 2019-09-13 05:47 - 001947168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2019-10-10 16:24 - 2019-09-13 05:47 - 000713272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2019-10-10 16:24 - 2019-09-13 05:47 - 000275768 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-10-10 16:24 - 2019-09-13 05:47 - 000081720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-10-10 16:24 - 2019-09-13 05:47 - 000039736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2019-10-10 16:24 - 2019-09-13 05:36 - 002478152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-10-10 16:24 - 2019-09-13 05:36 - 001252152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2019-10-10 16:24 - 2019-09-13 05:35 - 006052272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-10-10 16:24 - 2019-09-13 05:35 - 001559272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2019-10-10 16:24 - 2019-09-13 05:27 - 016598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-10-10 16:24 - 2019-09-13 05:24 - 013878784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-10-10 16:24 - 2019-09-13 05:23 - 000149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-10-10 16:24 - 2019-09-13 05:21 - 000153600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-10-10 16:24 - 2019-09-13 05:21 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2019-10-10 16:24 - 2019-09-13 05:21 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2019-10-10 16:24 - 2019-09-13 05:21 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpnotify.exe
2019-10-10 16:24 - 2019-09-13 05:21 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2019-10-10 16:24 - 2019-09-13 05:20 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2019-10-10 16:24 - 2019-09-13 05:20 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-10-10 16:24 - 2019-09-13 05:20 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2019-10-10 16:24 - 2019-09-13 05:20 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2019-10-10 16:24 - 2019-09-13 05:19 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-10-10 16:24 - 2019-09-13 05:18 - 000567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-10-10 16:24 - 2019-09-13 05:18 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2019-10-10 16:24 - 2019-09-13 05:17 - 003148288 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2019-10-10 16:24 - 2019-09-13 05:17 - 000761344 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-10-10 16:24 - 2019-09-13 05:17 - 000267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-10-10 16:24 - 2019-09-13 05:17 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2019-10-10 16:24 - 2019-09-13 05:17 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2019-10-10 16:24 - 2019-09-13 05:17 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2019-10-10 16:24 - 2019-09-13 05:16 - 000910336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2019-10-10 16:24 - 2019-09-13 05:16 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 002913792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 001023488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 000517120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 000504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\DavSyncProvider.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2019-10-10 16:24 - 2019-09-13 05:14 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-10-10 16:24 - 2019-09-13 05:14 - 001809408 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-10-10 16:24 - 2019-09-13 05:14 - 001222144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-10-10 16:24 - 2019-09-13 05:14 - 000848384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2019-10-10 16:24 - 2019-09-13 05:14 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-10-10 16:24 - 2019-09-13 05:14 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-10-10 16:24 - 2019-09-13 05:14 - 000257536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2019-10-10 16:24 - 2019-09-13 05:13 - 002893312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2019-10-10 16:24 - 2019-09-13 05:13 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2019-10-10 16:24 - 2019-09-13 05:13 - 001154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-10-10 16:24 - 2019-09-13 05:13 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2019-10-10 16:24 - 2019-09-13 05:13 - 000910848 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-10-10 16:24 - 2019-09-13 05:13 - 000845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2019-10-10 16:24 - 2019-09-13 05:13 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-10-10 16:24 - 2019-09-13 05:12 - 001634304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-10-10 16:24 - 2019-09-13 05:12 - 000627712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2019-10-10 16:24 - 2019-09-13 05:12 - 000372736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2019-10-10 16:24 - 2019-09-13 05:12 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2019-10-10 16:24 - 2019-09-13 05:11 - 000979456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2019-10-10 16:24 - 2019-09-13 05:11 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-10-10 16:24 - 2019-09-13 05:11 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2019-10-10 16:24 - 2019-09-13 05:11 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2019-10-10 16:24 - 2019-09-13 05:11 - 000536576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-10-10 16:24 - 2019-09-13 05:11 - 000346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DavSyncProvider.dll
2019-10-10 16:24 - 2019-09-10 08:16 - 019525632 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-10-10 16:24 - 2019-09-10 07:56 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-10-10 16:24 - 2019-09-10 02:20 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-10-10 16:24 - 2019-09-10 02:20 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2019-10-10 16:24 - 2019-08-13 15:42 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-10-10 16:23 - 2019-10-11 17:53 - 000002332 _____ C:\Users\Lukas\Desktop\Google Chrome.lnk
2019-10-08 16:27 - 2019-10-08 16:27 - 000355760 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2019-10-08 16:27 - 2019-10-08 16:27 - 000236288 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys
2019-10-08 16:27 - 2019-10-08 16:27 - 000171784 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2019-10-05 16:07 - 2019-10-08 16:27 - 000052376 _____ () C:\WINDOWS\system32\Drivers\staport.sys
2019-09-29 14:39 - 2019-03-28 10:11 - 000029232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2019-09-29 14:39 - 2019-03-28 10:11 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100_clr0400.dll
2019-09-29 14:39 - 2019-03-28 10:09 - 000032816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2019-09-29 14:39 - 2019-03-28 10:09 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100_clr0400.dll
2019-09-29 14:39 - 2019-03-28 07:35 - 000772176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_clr0400.dll
2019-09-29 14:39 - 2019-03-28 07:35 - 000702400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase_clr0400.dll
2019-09-29 14:39 - 2019-03-28 07:35 - 000622832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140_clr0400.dll
2019-09-29 14:39 - 2019-03-28 07:35 - 000433448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140_clr0400.dll
2019-09-29 14:39 - 2019-03-28 07:35 - 000087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140_clr0400.dll
2019-09-29 14:39 - 2019-03-28 07:35 - 000083768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcruntime140_clr0400.dll
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-10-28 17:42 - 2017-03-21 09:38 - 000000000 ____D C:\FRST
2019-10-28 17:41 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-10-28 17:37 - 2015-02-08 18:13 - 000000000 ____D C:\Users\Lukas\AppData\Roaming\Seznam.cz
2019-10-28 17:33 - 2016-11-18 11:12 - 000000000 ____D C:\Users\Lukas\AppData\LocalLow\Mozilla
2019-10-28 17:33 - 2015-12-30 10:01 - 000001312 _____ C:\Users\Lukas\AppData\Local\FSDownloader.nast
2019-10-28 17:33 - 2015-07-25 23:37 - 000000000 ____D C:\ProgramData\Origin
2019-10-28 17:33 - 2015-02-08 17:51 - 000000000 ____D C:\Program Files (x86)\Steam
2019-10-28 17:32 - 2018-05-23 05:35 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-10-28 17:32 - 2018-05-23 05:25 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-10-28 17:32 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-10-28 17:32 - 2017-09-06 13:29 - 000000000 ____D C:\ProgramData\NVIDIA
2019-10-28 17:24 - 2018-09-13 21:31 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2019-10-28 17:24 - 2018-05-23 05:35 - 000003432 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA1d12ebc6be85ef3
2019-10-28 17:24 - 2018-05-23 05:35 - 000003262 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2019-10-28 17:24 - 2018-05-23 05:35 - 000003208 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore1d12ebc6bce6df2
2019-10-28 17:24 - 2018-05-23 05:35 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-676012942-2397387924-1880445482-1000
2019-10-27 16:05 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-10-27 15:53 - 2017-02-09 21:12 - 000000000 ____D C:\Users\Lukas\AppData\Local\CrashDumps
2019-10-24 19:29 - 2018-05-23 05:27 - 000006172 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-10-24 19:29 - 2018-04-12 16:50 - 000824734 _____ C:\WINDOWS\system32\perfh005.dat
2019-10-24 19:29 - 2018-04-12 16:50 - 000184268 _____ C:\WINDOWS\system32\perfc005.dat
2019-10-24 18:36 - 2018-05-14 19:41 - 000000000 ___DC C:\WINDOWS\Panther
2019-10-24 18:26 - 2015-12-30 10:01 - 000010705 _____ C:\Users\Lukas\AppData\Local\FSDownloader.err
2019-10-23 18:31 - 2018-05-23 05:28 - 000002399 _____ C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-10-23 18:31 - 2016-05-18 05:04 - 000000000 ___RD C:\Users\Lukas\OneDrive
2019-10-22 22:52 - 2015-02-07 18:44 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-10-22 22:52 - 2015-02-07 18:44 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-10-22 18:56 - 2017-02-24 09:58 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2019-10-21 18:23 - 2018-05-23 05:28 - 000000000 ____D C:\Users\Lukas
2019-10-18 16:45 - 2018-04-11 22:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-10-18 16:13 - 2018-04-12 00:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-10-16 17:37 - 2019-07-09 16:21 - 000011434 _____ C:\Users\Lukas\Desktop\střecha veletov.xlsx
2019-10-16 17:33 - 2019-09-26 21:50 - 000000000 ____D C:\Users\Lukas\Desktop\rozpočty
2019-10-16 17:25 - 2015-07-25 23:37 - 000000000 ____D C:\Program Files (x86)\Origin
2019-10-16 17:24 - 2019-04-26 15:46 - 000003826 _____ C:\WINDOWS\system32\Tasks\AVG Secure Browser Heartbeat Task (Hourly)
2019-10-16 17:24 - 2019-04-26 15:46 - 000003242 _____ C:\WINDOWS\system32\Tasks\AVG Secure Browser Heartbeat Task (Logon)
2019-10-16 17:24 - 2018-10-27 15:02 - 000002375 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Secure Browser.lnk
2019-10-16 17:24 - 2018-10-27 15:02 - 000002340 _____ C:\Users\Public\Desktop\AVG Secure Browser.lnk
2019-10-13 20:46 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF
2019-10-13 20:30 - 2019-07-27 16:50 - 000010795 _____ C:\Users\Lukas\Documents\tomáš rodiče osb.xlsx
2019-10-13 16:53 - 2018-02-08 20:43 - 000000000 ____D C:\Users\Lukas\Desktop\vyuctovaní 2018
2019-10-11 17:25 - 2018-04-03 19:24 - 000000803 _____ C:\Users\Lukas\Desktop\Stellaris.lnk
2019-10-10 16:48 - 2016-05-19 19:45 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-10-10 16:47 - 2018-05-23 05:25 - 000411536 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-10-10 16:47 - 2016-06-30 18:23 - 000000000 ___RD C:\Users\Lukas\3D Objects
2019-10-10 16:47 - 2016-02-13 14:12 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-10-10 16:45 - 2018-04-12 00:38 - 000017800 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2019-10-10 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-10-10 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2019-10-10 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-10-10 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2019-10-10 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-10-10 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-10-10 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-10-10 16:45 - 2018-04-11 22:04 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-10-10 16:45 - 2015-02-07 18:44 - 000000000 ____D C:\Program Files (x86)\Google
2019-10-10 16:23 - 2017-03-01 12:51 - 000000000 ____D C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
2019-10-10 16:19 - 2016-05-19 19:45 - 127230528 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-10-08 16:27 - 2019-02-02 12:42 - 000275232 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys
2019-10-08 16:27 - 2019-01-27 03:10 - 000210328 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsh.sys
2019-10-08 16:27 - 2019-01-27 03:10 - 000065376 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniv.sys
2019-10-08 16:27 - 2019-01-27 03:10 - 000037880 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArDisk.sys
2019-10-08 16:27 - 2018-10-25 20:17 - 000043512 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys
2019-10-08 16:27 - 2018-07-23 19:34 - 000016520 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgElam.sys
2019-10-08 16:27 - 2018-04-12 00:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-10-08 16:27 - 2017-11-27 21:14 - 000205600 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2019-10-08 16:27 - 2017-04-22 16:33 - 000848688 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2019-10-08 16:27 - 2017-04-22 16:33 - 000461216 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2019-10-08 16:27 - 2017-04-22 16:33 - 000317304 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2019-10-08 16:27 - 2017-04-22 16:33 - 000111096 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2019-10-08 16:27 - 2017-04-22 16:33 - 000084560 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2019-09-29 14:37 - 2018-01-18 07:04 - 000000000 ____D C:\Users\Lukas\AppData\Local\Packages
==================== Files in the root of some directories ========
2017-03-13 08:15 - 2017-05-11 19:36 - 000011188 _____ () C:\Program Files (x86)\metadata
2017-03-13 08:15 - 2017-05-11 19:36 - 000000040 _____ () C:\Program Files (x86)\settings.dat
2017-03-01 12:53 - 2017-03-01 12:53 - 000000046 _____ () C:\Users\Lukas\AppData\Roaming\Camdata.ini
2017-03-01 12:53 - 2017-03-01 12:53 - 000000408 _____ () C:\Users\Lukas\AppData\Roaming\CamLayout.ini
2017-03-01 12:53 - 2017-03-01 12:53 - 000000408 _____ () C:\Users\Lukas\AppData\Roaming\CamShapes.ini
2017-03-01 12:53 - 2017-03-01 12:53 - 000004536 _____ () C:\Users\Lukas\AppData\Roaming\CamStudio.cfg
2017-03-01 12:51 - 2017-03-01 12:51 - 000000096 _____ () C:\Users\Lukas\AppData\Roaming\version2.xml
2017-03-16 11:48 - 2017-03-16 11:48 - 000000000 _____ () C:\Users\Lukas\AppData\Local\Driver_LOM_8161Present.flag
2015-12-30 10:01 - 2019-10-24 18:26 - 000010705 _____ () C:\Users\Lukas\AppData\Local\FSDownloader.err
2015-12-30 10:01 - 2019-10-28 17:33 - 000001312 _____ () C:\Users\Lukas\AppData\Local\FSDownloader.nast
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
-
Rudy
- Site Admin
- Příspěvky: 118274
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomoct s PC
Zdravím!
Píšete "pomoct s PC". Jaký máte konkrétní problém?
Píšete "pomoct s PC". Jaký máte konkrétní problém?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomoct s PC
dobrý den mám problém že počítač je zpomalený ,zamrzá
-
Rudy
- Site Admin
- Příspěvky: 118274
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomoct s PC
OK. Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomoct s PC
# -------------------------------
# Malwarebytes AdwCleaner 7.4.2.0
# -------------------------------
# Build: 10-21-2019
# Database: 2019-10-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-28-2019
# Duration: 00:00:13
# OS: Windows 10 Home
# Cleaned: 216
# Failed: 3
***** [ Services ] *****
Deleted BIT
***** [ Folders ] *****
Deleted C:\Insist
Deleted C:\Program Files (x86)\AlphaGo
Deleted C:\Program Files (x86)\AskPartnerNetwork
Deleted C:\Program Files (x86)\BikaQRss
Deleted C:\Program Files (x86)\Common Files\AVG Secure Search
Deleted C:\Program Files (x86)\Company Name
Deleted C:\Program Files (x86)\Footjane
Deleted C:\Program Files (x86)\Seznam.cz
Deleted C:\Program Files (x86)\SlimDrivers
Deleted C:\Program Files (x86)\WINSNARE(4.4.5)
Deleted C:\Program Files (x86)\amuleCexx
Deleted C:\Program Files (x86)\avg web tuneup
Deleted C:\Program Files (x86)\deskapp
Deleted C:\Program Files (x86)\reports
Deleted C:\Program Files\Common Files\AVG Secure Search
Deleted C:\Program Files\avg web tuneup
Deleted C:\ProgramData\AVG Secure Search
Deleted C:\ProgramData\AVG_UPDATE_0816TB
Deleted C:\ProgramData\BSD\DriverHive
Deleted C:\ProgramData\BSD\DriverHiveEngine
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BikaQ
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverNavigator
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimDrivers
Deleted C:\ProgramData\SlimWare Utilities, Inc
Deleted C:\ProgramData\avg web tuneup
Deleted C:\Terward
Deleted C:\Users\Lukas\AppData\Local\Footjane
Deleted C:\Users\Lukas\AppData\Local\Math Problem Solver
Deleted C:\Users\Lukas\AppData\Local\Packages\windows_ie_ac_001\AC\AVG Web TuneUp
Deleted C:\Users\Lukas\AppData\Local\WANARE
Deleted C:\Users\Lukas\AppData\Local\avg web tuneup
Deleted C:\Users\Lukas\AppData\Local\slimware utilities inc
Deleted C:\Users\Lukas\AppData\Roaming\Company Name
Deleted C:\Users\Lukas\AppData\Roaming\Firefox
Deleted C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\naweriweentcofise
Deleted C:\Users\Lukas\AppData\Roaming\Footjane
Deleted C:\Users\Lukas\AppData\Roaming\Kyubey
Deleted C:\Users\Lukas\AppData\Roaming\RHEng
Deleted C:\Users\Lukas\AppData\Roaming\SafetyBrowsing
Deleted C:\Users\Lukas\AppData\Roaming\Seznam.cz
Deleted C:\Users\Lukas\AppData\Roaming\WinSAPSvc
Deleted C:\Users\Lukas\AppData\Roaming\aMule
***** [ Files ] *****
Deleted C:\Program Files (x86)\settings.dat
Deleted C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\searchplugins\ourluckysites.xml
Deleted C:\Users\Lukas\Desktop\BigFarm.lnk
Deleted C:\Users\Lukas\Desktop\big_bang_empire.lnk
Deleted C:\Users\Public\Desktop\SlimDrivers.lnk
Deleted C:\Users\Public\Documents\report.dat
Deleted C:\Users\Public\Documents\temp.dat
Deleted C:\Windows\System32\drivers\swdumon.sys
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
Deleted C:\Windows\System32\Tasks\BIKAQ_FETCHANDUPGRADE_CANBEDEL
Deleted C:\Windows\System32\Tasks\MATH PROBLEM SOLVER CPU
Deleted C:\Windows\System32\Tasks\MATH PROBLEM SOLVER OPTIMIZE
Deleted C:\Windows\System32\Tasks\SLIMDRIVERS STARTUP
Deleted C:\Windows\Tasks\SLIMDRIVERS STARTUP.JOB
***** [ Registry ] *****
Deleted HKCU\SOFTWARE\46ae0141873269dd6ee0635531f68b73
Deleted HKCU\SOFTWARE\7f828ce78bc4ad3018cbbea48fe2cacc
Deleted HKCU\SOFTWARE\7fce2c61e6a58b35905b9cc1a607399f
Deleted HKCU\SOFTWARE\C61B20A81C236FF7A11C651D0B6DBE04
Deleted HKCU\SOFTWARE\b650513380abe22b6c039e8fa372013f
Deleted HKCU\Software\AskPartnerNetwork
Deleted HKCU\Software\BSD
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\startpageing123.com
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\www.startpageing123.com
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\startpageing123.com
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\www.startpageing123.com
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Main|HomeButtonPage
Deleted HKCU\Software\Footjane
Deleted HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
Deleted HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
Deleted HKCU\Software\Microsoft\Internet Explorer\Main|Default_Page_URL
Deleted HKCU\Software\Microsoft\Internet Explorer\Main|Default_Search_URL
Deleted HKCU\Software\Microsoft\Internet Explorer\Main|Search Page
Deleted HKCU\Software\Microsoft\Internet Explorer\Main|Start Page
Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|WeatherBug
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|cz.seznam.software.autoupdate
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|cz.seznam.software.szndesktop
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Run|cz.seznam.software.autoupdate
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Run|cz.seznam.software.szndesktop
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SeznamInstall
Deleted HKCU\Software\Mozilla\NativeMessagingHosts\sznpp_nm
Deleted HKCU\Software\PRODUCTSETUP
Deleted HKCU\Software\Safety Browsing
Deleted HKCU\Software\Seznam.cz
Deleted HKCU\Software\SlimWare Utilities Inc
Deleted HKCU\Software\csastats
Deleted HKLM\SOFTWARE\C61B20A81C236FF7A11C651D0B6DBE04
Deleted HKLM\SOFTWARE\Classes\AppID\NCTAudioCDGrabber2.DLL
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{8542E702-570F-4417-9906-6350AF0591E3}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0964DD9B-4BFD-47A1-A51E-8B74F3977239}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0964DD9B-4BFD-47A1-A51E-8B74F3977239}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{27084B0C-A17D-4BE6-B8AF-7BC269C6D899}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{693DC29A-0A62-4D8A-AC5E-76EF209789E6}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8542E702-570F-4417-9906-6350AF0591E3}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BikaQ_FetchAndUpgrade_CanBeDel
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Math Problem Solver CPU
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Math Problem Solver Optimize
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SlimDrivers Startup
Deleted HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Reason\ReasonByteFence
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{F390154F-D3AE-4BD8-8EFF-BAE4A668F41E}
Deleted HKLM\SYSTEM\Setup\FirstBoot\Services\SWDUMon
Deleted HKLM\Software\Classes\Installer\Features\952BA647474611149866C1269F6A0E36
Deleted HKLM\Software\Classes\Installer\Products\952BA647474611149866C1269F6A0E36
Deleted HKLM\Software\Classes\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF
Deleted HKLM\Software\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Deleted HKLM\Software\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Deleted HKLM\Software\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Deleted HKLM\Software\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Deleted HKLM\Software\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Deleted HKLM\Software\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Deleted HKLM\Software\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Deleted HKLM\Software\Classes\TypeLib\{4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7}
Deleted HKLM\Software\Classes\TypeLib\{81CA8FCD-1420-4A07-B47D-B30F3DDA79E1}
Deleted HKLM\Software\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Deleted HKLM\Software\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Deleted HKLM\Software\InterSect Alliance
Deleted HKLM\Software\Microsoft\Internet Explorer\Main|Default_Page_URL
Deleted HKLM\Software\Microsoft\Internet Explorer\Main|Default_Search_URL
Deleted HKLM\Software\Microsoft\Internet Explorer\Main|Search Page
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|ApnTBMon
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|seznam-listicka-distribuce
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\158D6D9E3FE81fa428925F22ACB3A965
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\15E6C514FEFC09f45BAFAAE1D7546ED4
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1DB42320A8525634AA089F0BEC86473B
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\22468B0D6050b2e46B9C4B67A8F59577
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2251BF05A2F606d43BB064BD63CBD87E
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3255D95681398614190EDF0A4F3F77DB
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3CDF313E9B28c944FBC7579CF4949414
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\71E54748EDD3dc1468548785DC856EDA
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\754590DD06DE8d249B526503432F99D4
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8036C72171EF4ba46856BF57969F6A36
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\89BB7852687BDC34B9A81E01C7FF9173
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CBC85D72B148084ABE8C2F072F781F4
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CC5A38A64D6098468BC8395BA0EFF03
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8DF9A1AC557F56c49B56F6B83E293C15
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A97C590397DCC454AA8923563BAB10E4
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B08932C78B697C244BE7BA3E6FF09B62
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D14A7F65792054F418578C78367D13F7
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DFE9F0BD163D827438CB6AD6B100EC48
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F739A19A8327dc64C9A8B641A9E89646
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\952BA647474611149866C1269F6A0E36
Deleted HKLM\Software\Wow6432Node\AVG Tuneup
Deleted HKLM\Software\Wow6432Node\AskPartnerNetwork
Deleted HKLM\Software\Wow6432Node\BSD
Deleted HKLM\Software\Wow6432Node\C61B20A81C236FF7A11C651D0B6DBE04
Deleted HKLM\Software\Wow6432Node\Footjane
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4F524A2D-5350-4500-76A7-A758B70C2E03}|InstallSource
Deleted HKLM\Software\Wow6432Node\SLIMWARE UTILITIES, INC.
Deleted HKLM\Software\Wow6432Node\Safety Browsing
Deleted HKLM\Software\Wow6432Node\ScreenShot
Deleted HKLM\Software\Wow6432Node\SlimWare Utilities Inc
Deleted HKLM\Software\Wow6432Node\TWEAKBIT
Deleted HKLM\Software\Wow6432Node\\Classes\AppID\NCTAudioCDGrabber2.DLL
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{5EB0259D-AB79-4AE6-A6E6-24FFE21C3DA4}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{81CA8FCD-1420-4A07-B47D-B30F3DDA79E1}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Deleted HKLM\Software\Wow6432Node\\Google\Chrome\NativeMessagingHosts\avgsh
Deleted HKLM\Software\Wow6432Node\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION|ByteFence.exe
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows NT\CurrentVersion\Svchost|BIT
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|seznam-listicka-distribuce
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Safety Browsing
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\WarThunder
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{118B6258-BF13-47C9-8D46-B2A349196B5D}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{2C652C0A-EC71-4797-8077-F67649177AB0}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{51639FCA-678F-4D71-8044-E16E3D49187F}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{59B5A9CD-253D-4C41-A073-B387D4C9672D}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{746AB259-6474-4111-8966-1C62F9A6E063}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{97D2FBF4-72CF-4DD6-8DA8-26710BC7BE71}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{B7CB7055-EFAE-4CD2-928A-15DB5F4FF7C7}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{BB26F52E-34C5-4937-9240-471C59CC81E6}
Deleted HKLM\Software\Wow6432Node\ecb`nl
Deleted HKLM\Software\Wow6432Node\msServer
Deleted HKLM\Software\Wow6432Node\ompndb
Deleted HKLM\Software\Wow6432Node\ourluckysitesSoftware
Deleted HKLM\Software\Wow6432Node\startpageing123Software
Deleted HKLM\Software\Wow6432Node\youndooSoftware
Deleted HKLM\Software\ecb`nl
Deleted HKLM\Software\ompndb
Deleted HKLM\System\CurrentControlSet\Services\EventLog\Application\SafetyBrowsingService
Deleted HKLM\System\CurrentControlSet\Services\EventLog\Application\WANARE
Deleted HKU\.DEFAULT\Software\AskPartnerNetwork
Deleted HKU\.DEFAULT\Software\ByteFence
Deleted HKU\.DEFAULT\Software\ecb`nl
Deleted HKU\.DEFAULT\Software\ompndb
Deleted HKU\S-1-5-18\Software\AskPartnerNetwork
Deleted HKU\S-1-5-18\Software\ByteFence
Deleted HKU\S-1-5-18\Software\ecb`nl
Deleted HKU\S-1-5-18\Software\ompndb
***** [ Chromium (and derivatives) ] *****
Deleted AVG Web TuneUp
Deleted MSN Homepage & Bing Search Engine
Deleted Seznam doplněk - Esko
***** [ Chromium URLs ] *****
Deleted http://www.ourluckysites.com/?type=hp&t ... 774B03171A
Deleted http://www.ourluckysites.com/?type=hp&t ... 774B03171A
Deleted mystarting123
Deleted mystarting123
Deleted ourluckysites
Deleted ourluckysites
***** [ Firefox (and derivatives) ] *****
Deleted AVG Web TuneUp
Deleted Search App by Ask
***** [ Firefox URLs ] *****
Deleted http://www.ourluckysites.com/?type=hp&t ... 774B03171A
Not Deleted ourluckysites.com
Not Deleted startpageing123.com
Not Deleted youndoo.com
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner_Debug.log - [459344 octets] - [28/10/2019 19:42:26]
AdwCleaner[S00].txt - [23131 octets] - [28/10/2019 19:45:52]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
# Malwarebytes AdwCleaner 7.4.2.0
# -------------------------------
# Build: 10-21-2019
# Database: 2019-10-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-28-2019
# Duration: 00:00:13
# OS: Windows 10 Home
# Cleaned: 216
# Failed: 3
***** [ Services ] *****
Deleted BIT
***** [ Folders ] *****
Deleted C:\Insist
Deleted C:\Program Files (x86)\AlphaGo
Deleted C:\Program Files (x86)\AskPartnerNetwork
Deleted C:\Program Files (x86)\BikaQRss
Deleted C:\Program Files (x86)\Common Files\AVG Secure Search
Deleted C:\Program Files (x86)\Company Name
Deleted C:\Program Files (x86)\Footjane
Deleted C:\Program Files (x86)\Seznam.cz
Deleted C:\Program Files (x86)\SlimDrivers
Deleted C:\Program Files (x86)\WINSNARE(4.4.5)
Deleted C:\Program Files (x86)\amuleCexx
Deleted C:\Program Files (x86)\avg web tuneup
Deleted C:\Program Files (x86)\deskapp
Deleted C:\Program Files (x86)\reports
Deleted C:\Program Files\Common Files\AVG Secure Search
Deleted C:\Program Files\avg web tuneup
Deleted C:\ProgramData\AVG Secure Search
Deleted C:\ProgramData\AVG_UPDATE_0816TB
Deleted C:\ProgramData\BSD\DriverHive
Deleted C:\ProgramData\BSD\DriverHiveEngine
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BikaQ
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverNavigator
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimDrivers
Deleted C:\ProgramData\SlimWare Utilities, Inc
Deleted C:\ProgramData\avg web tuneup
Deleted C:\Terward
Deleted C:\Users\Lukas\AppData\Local\Footjane
Deleted C:\Users\Lukas\AppData\Local\Math Problem Solver
Deleted C:\Users\Lukas\AppData\Local\Packages\windows_ie_ac_001\AC\AVG Web TuneUp
Deleted C:\Users\Lukas\AppData\Local\WANARE
Deleted C:\Users\Lukas\AppData\Local\avg web tuneup
Deleted C:\Users\Lukas\AppData\Local\slimware utilities inc
Deleted C:\Users\Lukas\AppData\Roaming\Company Name
Deleted C:\Users\Lukas\AppData\Roaming\Firefox
Deleted C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\naweriweentcofise
Deleted C:\Users\Lukas\AppData\Roaming\Footjane
Deleted C:\Users\Lukas\AppData\Roaming\Kyubey
Deleted C:\Users\Lukas\AppData\Roaming\RHEng
Deleted C:\Users\Lukas\AppData\Roaming\SafetyBrowsing
Deleted C:\Users\Lukas\AppData\Roaming\Seznam.cz
Deleted C:\Users\Lukas\AppData\Roaming\WinSAPSvc
Deleted C:\Users\Lukas\AppData\Roaming\aMule
***** [ Files ] *****
Deleted C:\Program Files (x86)\settings.dat
Deleted C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\searchplugins\ourluckysites.xml
Deleted C:\Users\Lukas\Desktop\BigFarm.lnk
Deleted C:\Users\Lukas\Desktop\big_bang_empire.lnk
Deleted C:\Users\Public\Desktop\SlimDrivers.lnk
Deleted C:\Users\Public\Documents\report.dat
Deleted C:\Users\Public\Documents\temp.dat
Deleted C:\Windows\System32\drivers\swdumon.sys
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
Deleted C:\Windows\System32\Tasks\BIKAQ_FETCHANDUPGRADE_CANBEDEL
Deleted C:\Windows\System32\Tasks\MATH PROBLEM SOLVER CPU
Deleted C:\Windows\System32\Tasks\MATH PROBLEM SOLVER OPTIMIZE
Deleted C:\Windows\System32\Tasks\SLIMDRIVERS STARTUP
Deleted C:\Windows\Tasks\SLIMDRIVERS STARTUP.JOB
***** [ Registry ] *****
Deleted HKCU\SOFTWARE\46ae0141873269dd6ee0635531f68b73
Deleted HKCU\SOFTWARE\7f828ce78bc4ad3018cbbea48fe2cacc
Deleted HKCU\SOFTWARE\7fce2c61e6a58b35905b9cc1a607399f
Deleted HKCU\SOFTWARE\C61B20A81C236FF7A11C651D0B6DBE04
Deleted HKCU\SOFTWARE\b650513380abe22b6c039e8fa372013f
Deleted HKCU\Software\AskPartnerNetwork
Deleted HKCU\Software\BSD
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\startpageing123.com
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\www.startpageing123.com
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\startpageing123.com
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\www.startpageing123.com
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Main|HomeButtonPage
Deleted HKCU\Software\Footjane
Deleted HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
Deleted HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
Deleted HKCU\Software\Microsoft\Internet Explorer\Main|Default_Page_URL
Deleted HKCU\Software\Microsoft\Internet Explorer\Main|Default_Search_URL
Deleted HKCU\Software\Microsoft\Internet Explorer\Main|Search Page
Deleted HKCU\Software\Microsoft\Internet Explorer\Main|Start Page
Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|WeatherBug
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|cz.seznam.software.autoupdate
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|cz.seznam.software.szndesktop
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Run|cz.seznam.software.autoupdate
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Run|cz.seznam.software.szndesktop
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SeznamInstall
Deleted HKCU\Software\Mozilla\NativeMessagingHosts\sznpp_nm
Deleted HKCU\Software\PRODUCTSETUP
Deleted HKCU\Software\Safety Browsing
Deleted HKCU\Software\Seznam.cz
Deleted HKCU\Software\SlimWare Utilities Inc
Deleted HKCU\Software\csastats
Deleted HKLM\SOFTWARE\C61B20A81C236FF7A11C651D0B6DBE04
Deleted HKLM\SOFTWARE\Classes\AppID\NCTAudioCDGrabber2.DLL
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{8542E702-570F-4417-9906-6350AF0591E3}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0964DD9B-4BFD-47A1-A51E-8B74F3977239}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0964DD9B-4BFD-47A1-A51E-8B74F3977239}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{27084B0C-A17D-4BE6-B8AF-7BC269C6D899}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{693DC29A-0A62-4D8A-AC5E-76EF209789E6}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8542E702-570F-4417-9906-6350AF0591E3}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BikaQ_FetchAndUpgrade_CanBeDel
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Math Problem Solver CPU
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Math Problem Solver Optimize
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SlimDrivers Startup
Deleted HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Reason\ReasonByteFence
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{F390154F-D3AE-4BD8-8EFF-BAE4A668F41E}
Deleted HKLM\SYSTEM\Setup\FirstBoot\Services\SWDUMon
Deleted HKLM\Software\Classes\Installer\Features\952BA647474611149866C1269F6A0E36
Deleted HKLM\Software\Classes\Installer\Products\952BA647474611149866C1269F6A0E36
Deleted HKLM\Software\Classes\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF
Deleted HKLM\Software\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Deleted HKLM\Software\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Deleted HKLM\Software\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Deleted HKLM\Software\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Deleted HKLM\Software\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Deleted HKLM\Software\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Deleted HKLM\Software\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Deleted HKLM\Software\Classes\TypeLib\{4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7}
Deleted HKLM\Software\Classes\TypeLib\{81CA8FCD-1420-4A07-B47D-B30F3DDA79E1}
Deleted HKLM\Software\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Deleted HKLM\Software\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Deleted HKLM\Software\InterSect Alliance
Deleted HKLM\Software\Microsoft\Internet Explorer\Main|Default_Page_URL
Deleted HKLM\Software\Microsoft\Internet Explorer\Main|Default_Search_URL
Deleted HKLM\Software\Microsoft\Internet Explorer\Main|Search Page
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|ApnTBMon
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|seznam-listicka-distribuce
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\158D6D9E3FE81fa428925F22ACB3A965
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\15E6C514FEFC09f45BAFAAE1D7546ED4
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1DB42320A8525634AA089F0BEC86473B
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\22468B0D6050b2e46B9C4B67A8F59577
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2251BF05A2F606d43BB064BD63CBD87E
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3255D95681398614190EDF0A4F3F77DB
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3CDF313E9B28c944FBC7579CF4949414
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\71E54748EDD3dc1468548785DC856EDA
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\754590DD06DE8d249B526503432F99D4
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8036C72171EF4ba46856BF57969F6A36
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\89BB7852687BDC34B9A81E01C7FF9173
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CBC85D72B148084ABE8C2F072F781F4
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8CC5A38A64D6098468BC8395BA0EFF03
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8DF9A1AC557F56c49B56F6B83E293C15
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A97C590397DCC454AA8923563BAB10E4
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B08932C78B697C244BE7BA3E6FF09B62
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D14A7F65792054F418578C78367D13F7
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DFE9F0BD163D827438CB6AD6B100EC48
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F739A19A8327dc64C9A8B641A9E89646
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\952BA647474611149866C1269F6A0E36
Deleted HKLM\Software\Wow6432Node\AVG Tuneup
Deleted HKLM\Software\Wow6432Node\AskPartnerNetwork
Deleted HKLM\Software\Wow6432Node\BSD
Deleted HKLM\Software\Wow6432Node\C61B20A81C236FF7A11C651D0B6DBE04
Deleted HKLM\Software\Wow6432Node\Footjane
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4F524A2D-5350-4500-76A7-A758B70C2E03}|InstallSource
Deleted HKLM\Software\Wow6432Node\SLIMWARE UTILITIES, INC.
Deleted HKLM\Software\Wow6432Node\Safety Browsing
Deleted HKLM\Software\Wow6432Node\ScreenShot
Deleted HKLM\Software\Wow6432Node\SlimWare Utilities Inc
Deleted HKLM\Software\Wow6432Node\TWEAKBIT
Deleted HKLM\Software\Wow6432Node\\Classes\AppID\NCTAudioCDGrabber2.DLL
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{5EB0259D-AB79-4AE6-A6E6-24FFE21C3DA4}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}
Deleted HKLM\Software\Wow6432Node\\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{81CA8FCD-1420-4A07-B47D-B30F3DDA79E1}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Deleted HKLM\Software\Wow6432Node\\Google\Chrome\NativeMessagingHosts\avgsh
Deleted HKLM\Software\Wow6432Node\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION|ByteFence.exe
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows NT\CurrentVersion\Svchost|BIT
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|seznam-listicka-distribuce
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Safety Browsing
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\WarThunder
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{118B6258-BF13-47C9-8D46-B2A349196B5D}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{2C652C0A-EC71-4797-8077-F67649177AB0}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{51639FCA-678F-4D71-8044-E16E3D49187F}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{59B5A9CD-253D-4C41-A073-B387D4C9672D}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{746AB259-6474-4111-8966-1C62F9A6E063}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{97D2FBF4-72CF-4DD6-8DA8-26710BC7BE71}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{B7CB7055-EFAE-4CD2-928A-15DB5F4FF7C7}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{BB26F52E-34C5-4937-9240-471C59CC81E6}
Deleted HKLM\Software\Wow6432Node\ecb`nl
Deleted HKLM\Software\Wow6432Node\msServer
Deleted HKLM\Software\Wow6432Node\ompndb
Deleted HKLM\Software\Wow6432Node\ourluckysitesSoftware
Deleted HKLM\Software\Wow6432Node\startpageing123Software
Deleted HKLM\Software\Wow6432Node\youndooSoftware
Deleted HKLM\Software\ecb`nl
Deleted HKLM\Software\ompndb
Deleted HKLM\System\CurrentControlSet\Services\EventLog\Application\SafetyBrowsingService
Deleted HKLM\System\CurrentControlSet\Services\EventLog\Application\WANARE
Deleted HKU\.DEFAULT\Software\AskPartnerNetwork
Deleted HKU\.DEFAULT\Software\ByteFence
Deleted HKU\.DEFAULT\Software\ecb`nl
Deleted HKU\.DEFAULT\Software\ompndb
Deleted HKU\S-1-5-18\Software\AskPartnerNetwork
Deleted HKU\S-1-5-18\Software\ByteFence
Deleted HKU\S-1-5-18\Software\ecb`nl
Deleted HKU\S-1-5-18\Software\ompndb
***** [ Chromium (and derivatives) ] *****
Deleted AVG Web TuneUp
Deleted MSN Homepage & Bing Search Engine
Deleted Seznam doplněk - Esko
***** [ Chromium URLs ] *****
Deleted http://www.ourluckysites.com/?type=hp&t ... 774B03171A
Deleted http://www.ourluckysites.com/?type=hp&t ... 774B03171A
Deleted mystarting123
Deleted mystarting123
Deleted ourluckysites
Deleted ourluckysites
***** [ Firefox (and derivatives) ] *****
Deleted AVG Web TuneUp
Deleted Search App by Ask
***** [ Firefox URLs ] *****
Deleted http://www.ourluckysites.com/?type=hp&t ... 774B03171A
Not Deleted ourluckysites.com
Not Deleted startpageing123.com
Not Deleted youndoo.com
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner_Debug.log - [459344 octets] - [28/10/2019 19:42:26]
AdwCleaner[S00].txt - [23131 octets] - [28/10/2019 19:45:52]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 118274
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomoct s PC
Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomoct s PC
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-10-2019
Ran by Lukas (28-10-2019 20:10:37)
Running from C:\Users\Lukas\Downloads
Windows 10 Home Version 1803 17134.1069 (X64) (2018-05-23 04:35:41)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-676012942-2397387924-1880445482-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-676012942-2397387924-1880445482-503 - Limited - Disabled)
Guest (S-1-5-21-676012942-2397387924-1880445482-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-676012942-2397387924-1880445482-1003 - Limited - Enabled)
Lukas (S-1-5-21-676012942-2397387924-1880445482-1000 - Administrator - Enabled) => C:\Users\Lukas
WDAGUtilityAccount (S-1-5-21-676012942-2397387924-1880445482-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {4FC75CA5-1654-5411-7CFB-1893D506BCF4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Antivirus (Enabled - Up to date) {F4A6BD41-306E-5B9F-464B-23E1AE81F649}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
4game (HKLM-x32\...\4game) (Version: 3.6.2.278 - Innova Systems)
4game (HKLM-x32\...\4game2.0) (Version: 1.0.0.94 - Innova Co. SARL)
4K Video Downloader 4.5 (HKLM\...\{180B9AE1-F87B-4107-8C68-4265E927D6A8}) (Version: 4.5.0.2482 - Open Media LLC)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.012.20034 - Adobe Systems Incorporated)
Adobe Flash Player 31 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 31.0.0.108 - Adobe Systems Incorporated)
AIDA64 Extreme v5.00 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.00 - FinalWire Ltd.)
Aktualizace NVIDIA 28.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 28.0.0.0 - NVIDIA Corporation) Hidden
AlphaGo (HKLM-x32\...\{B20B3A3C-91E3-4326-8A0F-B3C012574F8C}) (Version: 1.1.2 - Default Company Name) <==== ATTENTION
AMD Catalyst Install Manager (HKLM\...\{E3C27552-F408-6465-3CA2-AA63826EC350}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMDProductVerification (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\4ecb547ba21a923a) (Version: 1.0.25.99 - AMDProductVerification)
amuleC (HKLM-x32\...\{0F7B5011-72EC-493D-A7BF-546591047E8E}) (Version: 1.0.2 - amuleC) <==== ATTENTION
amulesw (HKLM-x32\...\{3CC3DE19-E0B1-4D42-87AB-B5C61FE4BA58}) (Version: 1.0.6 - amules) <==== ATTENTION
Anno 1800 Open Beta (HKLM-x32\...\Uplay Install 13800) (Version: - Ubisoft)
Apple Mobile Device Support (HKLM\...\{B5A46811-3612-4DA5-8A5A-E6DED5D7C523}) (Version: 12.2.1.12 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Audiobook Downloader Pro 1.3 (HKLM-x32\...\Audiobook Downloader Pro) (Version: 1.3 - SuperUtils.com Software)
AVG AntiVirus FREE (HKLM-x32\...\AVG Antivirus) (Version: 19.8.3108 - AVG Technologies)
AVG Secure Browser (HKLM-x32\...\AVG Secure Browser) (Version: 77.1.1833.92 - Autoři prohlížeče AVG Secure Browser)
AVG Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.155.333 - AVG Technologies) Hidden
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.7.452 - AVG Technologies)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BikaQ Rss (HKLM-x32\...\{3678D164-84DB-4F73-AFD6-916342E10764}) (Version: 3.0.17 - BikaQ) <==== ATTENTION
Bing Bar (HKLM-x32\...\{16793295-2366-40F7-A045-A3E42A81365E}) (Version: 7.1.362.0 - Microsoft Corporation)
Bitcoin Core (64-bit) (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Bitcoin Core (64-bit)) (Version: 0.14.2 - Bitcoin Core project)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Booking (HKLM-x32\...\{13D4CD54-EA09-4FDB-B979-8B2BC0F020CA}_is1) (Version: 2.0.701 - Booking)
CamStudio 2.7.4 (HKLM\...\{04B83666-3A62-452B-85D3-70F8117F2329}_is1) (Version: 2.7.4 - CamStudio Open Source)
Car Mechanic Simulator 2018 (HKLM-x32\...\Car Mechanic Simulator 2018_is1) (Version: - )
Ceník stavebních prací 2.4 - aktualizace A (HKLM-x32\...\Ceník stavebních prací_is1) (Version: 2.4 - aktualizace A - Verlag Dashöfer s.r.o)
Cities In Motion (HKLM-x32\...\{15FA5ED6-2F98-4B5E-AF0B-18E5F4723FAD}_is1) (Version: - )
Cities XXL (HKLM-x32\...\Cities XXL_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter)
Cities: Skylines - ČEŠTINA (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Cities: Skylines - ČEŠTINA) (Version: - )
Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.62.0 - OEM) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.6.0.0283 - Disc Soft Ltd)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
DriverNavigator 3.6.9 (HKLM\...\DriverNavigator_is1) (Version: 3.6.9.0 - Easeware)
DVD Shrink 3.2 (HKLM-x32\...\DVD Shrink_is1) (Version: - DVD Shrink)
EVE Online (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\{5e6d5785-73e8-423f-a54c-b75cd3f5db13}) (Version: 1.0.0 - CCP)
Facebook Gameroom 1.20.6598.21896 (HKLM-x32\...\{C51FED78-02E5-4A80-B4D0-A4A474BB0CDD}) (Version: 1.20.6598.21896 - Facebook)
Far Cry 4 (HKLM-x32\...\Far Cry 4_is1) (Version: 1.4.0 - Ubisoft)
Farming Simulator 17 (HKLM\...\ZmFybWluZ3NpbXVsYXRvcjE3_is1) (Version: 1 - )
Farming Simulator 17 (HKLM-x32\...\{A82E512C-3BFB-43F8-B97F-8AA8F209B83B}) (Version: 1.2.0.0 - GIANTS Software) Hidden
Farming Simulator 17 (HKLM-x32\...\Farming Simulator 17 1.2.0.0) (Version: 1.2.0.0 - GIANTS Software)
Farming Simulator 19 (HKLM-x32\...\Farming Simulator 19_is1) (Version: - )
Firestorm Launcher version 1.3 (HKLM-x32\...\{008D5963-9A73-4472-8C16-A5BF04491B9D}_is1) (Version: 1.3 - Firestorm)
Flash Memory Toolkit trial 2.01 (HKLM-x32\...\Flash Memory Toolkit trial_is1) (Version: - EFD Software)
FORM studio (HKLM-x32\...\FSCZ_is1) (Version: - KASTNER software s.r.o.)
GitHub Desktop (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\GitHubDesktop) (Version: 1.0.11 - GitHub, Inc.)
Google Drive (HKLM-x32\...\{A1238426-ECDF-4639-BE2F-8D12A97AE23C}) (Version: 2.34.5075.1619 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 78.0.3904.70 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.301 - Google LLC) Hidden
Hearts of Iron IV (HKLM-x32\...\Hearts of Iron IV_is1) (Version: - )
HiSuite (HKLM-x32\...\Hi Suite) (Version: 9.0.3.300 - )
Charity Engine (HKLM-x32\...\{7309D717-F38D-436D-9537-066AA0AC7639}) (Version: 7.0.80 - Charity Engine)
iCloud (HKLM\...\{DA6D808E-3629-4933-8FB3-583F9BCB0DEF}) (Version: 7.12.0.14 - Apple Inc.)
iTunes (HKLM\...\{7B81A249-0187-436C-9738-AF82DAA54822}) (Version: 12.9.5.7 - Apple Inc.)
Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
Kerbal Space Program (HKLM-x32\...\Kerbal Space Program_is1) (Version: - )
Kingdom Come Deliverance (HKLM-x32\...\Kingdom Come Deliverance_is1) (Version: - )
LineageII EU (HKLM-x32\...\4game_lineage2eu) (Version: - Innova Systems)
Litecoin Core (64-bit) (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Litecoin Core (64-bit)) (Version: 0.14.2 - Litecoin Core project)
Mafia I - The City of Lost Heaven verze v1.3 (HKLM-x32\...\{360EBFE4-4591-4AE6-8D97-A58A43C15869}_is1) (Version: v1.3 - Danik1B9)
Malwarebytes Anti-Malware verze 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Math Problem Solver (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Math Problem Solver) (Version: - ) <==== ATTENTION
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{929CE49F-1CA7-4CF3-A9A1-6D757443C63F}) (Version: 1.2.0241 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.7.133.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\OneDriveSetup.exe) (Version: 19.174.0902.0013 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 70.0 (x64 en-US) (HKLM\...\Mozilla Firefox 70.0 (x64 en-US)) (Version: 70.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 70.0 - Mozilla)
Mp3 Editor for Free v5.2.7 Build 79 (HKLM-x32\...\Mp3 Editor for Free_is1) (Version: 5.2.7 Build 79 - Mp3EditorforFree Ltd.)
NVIDIA GeForce Experience 3.9.0.97 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.9.0.97 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.13 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{D9559CE2-9C58-F414-43EA-F908FEA13BB8}) (Version: 1.00.0000 - Název společnosti:)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Opera Stable 55.0.2994.61 (HKLM-x32\...\Opera 55.0.2994.61) (Version: 55.0.2994.61 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.5.50.31938 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.13 - NVIDIA Corporation) Hidden
PDF To Excel Converter V3.0 (HKLM-x32\...\PDF To Excel Converter_is1) (Version: - hxxp://www.PDFExcelConverter.com)
Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.) Hidden
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{C1BCFECF-6EC2-4750-9072-5E2489423F8F}) (Version: 7.5 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{B202C7F5-7DE3-4FBF-B259-E70E625F56FC}) (Version: 7.5 - Apple Inc.)
Port Royale 3 (HKLM-x32\...\{68DED384-1F74-4AEE-8B8E-95AF15572FE3}) (Version: 1.0.0.0 - Gaming Minds Studios GmbH)
Qualcomm Atheros Bandwidth Control Filter Driver (HKLM\...\{C80C9B28-CF99-431C-88C8-8B1F9B6A182F}) (Version: 1.1.39.1040 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer E220x Drivers (HKLM\...\{DD2A85B3-64C5-4263-A7AF-4F61FA5F369A}) (Version: 1.1.39.1040 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer Network Manager Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.39.1040 - Qualcomm Atheros)
Qualcomm Atheros Network Manager (HKLM\...\{7364C716-1212-4EAE-B0C9-A31D1E797BF8}) (Version: 1.1.39.1040 - Qualcomm Atheros) Hidden
Railroad Tycoon II Platinum (HKLM-x32\...\1445250876_is1) (Version: 2.0.0.5 - GOG.com)
Railway Empire (HKLM-x32\...\1556481953_is1) (Version: 1.1.1.17568 - GOG.com)
RAUCAD-TechCON (7.2) (HKLM-x32\...\{889D28AD-3F0C-48CD-B9BA-95B89A848DD6}) (Version: 7.00.0715 - Atcon systems s.r.o.)
Realpolitiks version 1.3.4 (HKLM-x32\...\{728B7AF5-D053-4F1A-9C6A-019B1376D99C}_is1) (Version: 1.3.4 - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7780 - Realtek Semiconductor Corp.)
Risen 3 Titan Lords (HKLM-x32\...\{3E96DF21-CE2A-40EA-8BAD-2DE5D7132EBD}) (Version: 1.20 - Piranha Bytes SteveHood)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 1.05.45.00(23.5.2014) - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Samsung Universal Scan Driver (HKLM-x32\...\Samsung Universal Scan Driver) (Version: 1.2.19.0 - Samsung Electronics Co., Ltd.)
Search App by Ask (HKLM-x32\...\{4F524A2D-5350-4500-76A7-A758B70C2E03}) (Version: 12.46.3.4268 - APN, LLC) <==== ATTENTION
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Shockwave (HKLM-x32\...\Shockwave) (Version: - )
Sid Meier's Civilization: Beyond Earth Rising Tide Addon (HKLM\...\U2lkTWVpZXJzQ2l2aWxpemF0aW9uQmV5b25kRWFydGg=_is1) (Version: 1 - )
SketchUp 2016 (HKLM\...\{D87EE6DC-32BA-4219-AC75-0A6FD54ED058}) (Version: 16.0.19912 - Trimble Navigation Limited)
Skype HoloLens Add-In (HKLM-x32\...\{38A3693F-1954-450F-8E42-C0E6F9C1AE94}) (Version: 1.0.0.0 - Microsoft Corporation)
Skype Web Plugin (HKLM-x32\...\{CD62BCB9-02D2-443F-AC7A-443377DA5B38}) (Version: 7.31.0.56 - Skype Technologies S.A.)
Skype™ 7.38 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.38.101 - Skype Technologies S.A.)
Sony PC Companion (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.297 - Sony)
Sound Blaster Cinema 2 (HKLM-x32\...\{B4F6F8CC-2C61-42CC-A4CC-76621F25BDC7}) (Version: 1.00.06 - Creative Technology Limited)
SPORE™ (HKLM-x32\...\{9DF0196F-B6B8-4C3A-8790-DE42AA530101}) (Version: 1.00.0000 - Electronic Arts)
Star Conflict Launcher 1.0.1.34 (HKLM-x32\...\StarConflictLauncher_is1) (Version: - )
Star Stable Online (HKLM-x32\...\{8CD50415-04B7-459E-8CBD-DA96A9CDF98E}) (Version: 1.01.0000 - Star Stable Entertainment AB)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stellaris (HKLM-x32\...\Stellaris_is1) (Version: - )
Střechy a stěny TONDACH 2018 (HKLM-x32\...\Střechy a stěny TONDACH 2018_is1) (Version: - )
Sudden Strike II (HKLM-x32\...\Sudden Strike II) (Version: - )
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.132598 - TeamViewer)
Terela (HKLM-x32\...\{E2F7C535-0785-4C2D-B56F-016BFD02B010}) (Version: 1.1.6 - Terela)
The Elder Scrolls V Skyrim LE (HKLM-x32\...\The Elder Scrolls V Skyrim LE_is1) (Version: - )
TrafficGiant-Gold Edition (HKLM-x32\...\TrafficGiant-Gold Edition) (Version: - )
Transport Fever (HKLM-x32\...\1720767912_is1) (Version: 2.0.0.2 - GOG.com)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 85.1 - Ubisoft)
USB PC Camera (ZS211) (HKLM-x32\...\{44D02D8B-FFB3-4245-8D26-68D10B4C4023}) (Version: 1.00.000 - )
VIA Platforma Ovladače zařízení (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
WhatsApp (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\WhatsApp) (Version: 0.3.3793 - WhatsApp)
Win10 Spy Disabler v1.4 (HKLM\...\Win10 Spy Disabler_is1) (Version: 1.4.0.0 - site2unblock.com)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{3577E42B-3347-4EB8-BFDA-D36E8ED3C519}) (Version: 1.0.24.0 - Microsoft Corporation)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
WinRAR 5.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
WinSetupFromUSB (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\WinSetupFromUSB) (Version: - )
Wondershare MobileGo(Version 8.5.0) (HKLM-x32\...\{1E04C795-7359-4E05-8A0E-5644F777AA09}_is1) (Version: 8.5.0 - Wondershare)
World of Tanks (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1) (Version: - Wargaming.net)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
youndoo - Uninstall (HKLM-x32\...\{2AEE6375-5F4E-4EF3-82AE-68CCB56539EF}) (Version: - ) <==== ATTENTION
Packages:
=========
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.150.300.0_x86__kgqvnymyfvs32 [2019-10-16] (king.com)
Messenger -> C:\Program Files\WindowsApps\Facebook.317180B0BB486_196.2292.59195.0_x86__8xx8rvfyw5nnt [2019-05-20] (Facebook Inc)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-20] (Microsoft Corporation) [MS Ad]
Microsoft Průvodce pro telefon -> C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1802.311.0_x64__8wekyb3d8bbwe [2018-02-13] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.10022.0_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Studios) [MS Ad]
Microsoft Telefon -> C:\Program Files\WindowsApps\Microsoft.CommsPhone_3.43.20002.1000_x64__8wekyb3d8bbwe [2018-09-09] (Microsoft Corporation)
MSN Money -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-20] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-20] (Microsoft Corporation) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-20] (Microsoft Corporation) [MS Ad]
Pošta a Kalendář -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe [2019-09-25] (Microsoft Corporation) [MS Ad]
Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2017-09-06] (Samsung Electronics Co. Ltd.)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-09] (Twitter Inc.)
WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x64__8wekyb3d8bbwe [2016-05-19] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\ChromeHTML: -> "C:\Program Files (x86)\Footjane\Application\chrome.exe" "%1" <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-676012942-2397387924-1880445482-1000_Classes\CLSID\{E5A7A7B5-9D06-4DBE-BAC0-04B69FF070B5}\InprocServer32 -> C:\Users\Lukas\AppData\Local\SkypePlugin\7.31.0.56\GatewayActiveX-x64.dll (Microsoft Corporation -> Skype Technologies S.A.)
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6671064 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks: No Name - {D7743BB4-F774-11E6-8881-64006A5CFC23} - -> No File
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-03-21] (Google Inc -> Google)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2019-05-08] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-03-21] (Google Inc -> Google)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\atiacm64.dll [2015-06-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2011-02-18] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2011-02-18] (Electronic Arts -> On2.com)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\Lukas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files (x86)\Firefox\Firefox.exe (Mozilla Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Firefox\Firefox.exe (Mozilla Corporation)
Shortcut: C:\Users\Public\Desktop\Mozilla Firefox.lnk -> C:\Program Files (x86)\Firefox\Firefox.exe (Mozilla Corporation)
==================== Loaded Modules (Whitelisted) =============
2015-02-07 18:44 - 2014-01-02 10:19 - 000040960 ____N ( ) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\Interop.CTSndCr.dll
2015-10-20 09:18 - 2015-10-20 09:18 - 000714240 _____ () [File not signed] C:\Program Files (x86)\4game\3.6.2.278\PocoNet.dll
2015-10-20 09:17 - 2015-10-20 09:17 - 000242176 _____ () [File not signed] C:\Program Files (x86)\4game\3.6.2.278\PocoUtil.dll
2015-10-20 09:16 - 2015-10-20 09:16 - 000394240 _____ () [File not signed] C:\Program Files (x86)\4game\3.6.2.278\PocoXML.dll
2011-11-13 14:30 - 2011-11-13 14:30 - 000676864 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2012-05-04 15:41 - 2012-05-04 15:41 - 000211968 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2011-11-13 14:31 - 2011-11-13 14:31 - 003643392 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2018-01-23 22:01 - 2018-01-23 22:01 - 000774656 _____ () [File not signed] C:\Users\Lukas\AppData\Local\Facebook\Games\CefSharp.BrowserSubprocess.Core.dll
2018-01-23 22:01 - 2018-01-23 22:01 - 001184256 _____ () [File not signed] C:\Users\Lukas\AppData\Local\Facebook\Games\CefSharp.Core.dll
2018-01-23 22:01 - 2018-01-23 22:01 - 070447616 _____ () [File not signed] C:\Users\Lukas\AppData\Local\Facebook\Games\libcef.dll
2018-01-23 22:01 - 2018-01-23 22:01 - 000078848 _____ () [File not signed] C:\Users\Lukas\AppData\Local\Facebook\Games\libegl.dll
2018-01-23 22:01 - 2018-01-23 22:01 - 003149824 _____ () [File not signed] C:\Users\Lukas\AppData\Local\Facebook\Games\libglesv2.dll
2019-10-28 19:47 - 2019-10-28 19:47 - 000088064 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\_ctypes.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000128512 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\_elementtree.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000914432 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\_hashlib.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000027648 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\_multiprocessing.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000036864 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\_psutil_windows.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000046080 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\_socket.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 001303552 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\_ssl.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000020480 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\_yappi.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000012800 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\common.time34.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000007168 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\hashobjs_ext.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000127488 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\pyexpat.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000682496 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\pysqlite2._sqlite.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000364544 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\pythoncom27.dll
2019-10-28 19:47 - 2019-10-28 19:47 - 000110080 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\pywintypes27.dll
2019-10-28 19:47 - 2019-10-28 19:47 - 000010240 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\select.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000017920 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\thumbnails_ext.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000686080 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\unicodedata.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000088064 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\usb_ext.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000098816 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\win32api.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000320512 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\win32com.shell.shell.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000011264 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\win32crypt.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000018432 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\win32event.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000119808 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\win32file.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000167936 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\win32gui.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000038912 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\win32inet.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000025600 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\win32pdh.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000024064 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\win32pipe.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000035840 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\win32process.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000017408 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\win32profile.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000108544 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\win32security.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000022528 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\win32ts.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000078848 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\wx._animate.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 001067008 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\wx._controls_.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 001176576 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\wx._core_.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000806400 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\wx._gdi_.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000077312 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\wx._html2.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000733184 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\wx._misc_.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000816128 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\wx._windows_.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000123392 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\wx._wizard.pyd
2015-02-07 18:44 - 2014-02-21 11:19 - 000366080 _____ () [File not signed] C:\Windows\SYSTEM32\APOMgr64.DLL
2015-02-07 18:44 - 2014-02-21 11:21 - 000089600 _____ () [File not signed] C:\Windows\SYSTEM32\CmdRtr64.DLL
2015-10-20 09:18 - 2015-10-20 09:18 - 000089600 _____ (Applied Informatics Software Engineering GmbH) [File not signed] C:\Program Files (x86)\4game\3.6.2.278\PocoCrypto.dll
2015-10-20 09:15 - 2015-10-20 09:15 - 001193472 _____ (Applied Informatics Software Engineering GmbH) [File not signed] C:\Program Files (x86)\4game\3.6.2.278\PocoFoundation.dll
2015-10-20 09:19 - 2015-10-20 09:19 - 000176128 _____ (Applied Informatics Software Engineering GmbH) [File not signed] C:\Program Files (x86)\4game\3.6.2.278\PocoNetSSL.dll
2015-02-07 18:44 - 2012-04-27 10:26 - 000529920 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\CTAudEp.dll
2015-02-07 18:44 - 2011-09-22 19:04 - 000238080 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\CTLoadRs.dll
2015-02-07 18:44 - 2014-02-21 11:03 - 000991232 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\en-US\SBCinema2.resources.dll
2015-02-07 18:44 - 2013-08-22 10:36 - 000249344 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\HKDetect.dll
2017-04-25 19:24 - 2017-04-25 03:00 - 000352768 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\freebl3.dll
2017-04-25 19:24 - 2017-04-25 02:59 - 000049664 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\lgpllibs.dll
2017-04-25 19:24 - 2017-04-25 02:59 - 000017408 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\libEGL.dll
2017-04-25 19:24 - 2017-04-25 02:59 - 001489920 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\mozavcodec.dll
2017-04-25 19:24 - 2017-04-25 02:59 - 000150528 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\mozavutil.dll
2017-04-25 19:24 - 2017-04-25 02:59 - 000107520 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\mozglue.dll
2017-04-25 19:24 - 2017-04-25 03:00 - 001209856 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\nss3.dll
2017-04-25 19:24 - 2017-04-25 03:00 - 000405504 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\nssckbi.dll
2017-04-25 19:24 - 2017-04-25 03:00 - 000088576 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\nssdbm3.dll
2017-04-25 19:24 - 2017-04-25 03:00 - 000141824 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\softokn3.dll
2017-04-25 19:24 - 2017-04-25 03:05 - 051872256 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\xul.dll
2017-12-18 18:39 - 2015-02-27 10:35 - 000489984 _____ (Newtonsoft) [File not signed] C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\Newtonsoft.Json.dll
2019-08-10 16:48 - 2017-10-27 17:06 - 000760032 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI.dll
2019-08-10 16:48 - 2017-10-27 17:06 - 000874368 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI64.dll
2019-08-10 16:48 - 2017-10-27 17:06 - 000339256 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\NvStereo\_nvstapisvr64.dll
2019-10-28 19:47 - 2019-10-28 19:47 - 002459648 ____R (Python Software Foundation) [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\python27.dll
2013-11-26 10:07 - 2013-11-26 10:07 - 000112128 _____ (Samsung Electronics Co., Ltd.) [File not signed] C:\Program Files (x86)\Samsung\Easy Printer Manager\SmartScreenPrint\CDAKEYMonitor.dll
2018-01-23 22:01 - 2018-01-23 22:01 - 000433664 _____ (The Chromium Authors) [File not signed] C:\Users\Lukas\AppData\Local\Facebook\Games\chrome_elf.dll
2015-07-09 15:45 - 2015-07-09 15:45 - 001260544 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\4game\3.6.2.278\LIBEAY32.dll
2015-07-09 15:45 - 2015-07-09 15:45 - 000295936 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\4game\3.6.2.278\SSLEAY32.dll
2015-07-25 23:38 - 2019-10-16 17:25 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2017-01-11 19:42 - 2019-10-16 17:25 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2016-07-27 11:08 - 2019-10-16 17:25 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2019-04-02 17:05 - 2019-10-16 17:25 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2019-04-02 17:05 - 2019-10-16 17:25 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2019-04-02 17:05 - 2019-10-16 17:25 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2019-04-02 17:05 - 2019-10-16 17:25 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2019-04-02 17:05 - 2019-10-16 17:25 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
2017-12-18 18:39 - 2017-06-01 17:31 - 000047104 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Wondershare\MobileGo\COM.Net.dll
2017-12-18 18:39 - 2017-03-20 16:13 - 000087552 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppCollect.dll
2017-12-18 18:39 - 2017-03-20 16:13 - 000197632 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppCommon.dll
2019-10-28 19:47 - 2019-10-28 19:47 - 000155136 ____R (wxWidgets development team) [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\wxbase30u_net_vc90.dll
2019-10-28 19:47 - 2019-10-28 19:47 - 002030592 ____R (wxWidgets development team) [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\wxbase30u_vc90.dll
2019-10-28 19:47 - 2019-10-28 19:47 - 001251328 ____R (wxWidgets development team) [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\wxmsw30u_adv_vc90.dll
2019-10-28 19:47 - 2019-10-28 19:47 - 004796928 ____R (wxWidgets development team) [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\wxmsw30u_core_vc90.dll
2019-10-28 19:47 - 2019-10-28 19:47 - 000601088 ____R (wxWidgets development team) [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\wxmsw30u_html_vc90.dll
2019-10-28 19:47 - 2019-10-28 19:47 - 000110080 ____R (wxWidgets development team) [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\wxmsw30u_webview_vc90.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0]
AlternateDataStreams: C:\Users\Lukas\OneDrive:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity [108]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2018-12-18 21:17 - 000000864 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 validation.sls.microsoft.com
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\AMD APP\bin\x86_64;C:\Program Files (x86)\AMD APP\bin\x86;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Skype\Phone\;C:\Program Files (x86)\AMD\ATI.ACE\Core-Static;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
DNS Servers: 192.168.8.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{E8261C4A-5748-4FAB-BFB7-57C014C2F580}H:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) H:\games\kingdom come deliverance\bin\win64\kingdomcome.exe No File
FirewallRules: [TCP Query User{5F82500E-6BD6-43D4-B594-9119D5ADEB5D}H:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) H:\games\kingdom come deliverance\bin\win64\kingdomcome.exe No File
FirewallRules: [{3E6BAF4B-19DA-4C54-833F-FD154DE90925}] => (Allow) H:\Program Files (x86)\SteamLibrary\steamapps\common\star conflict\game.exe No File
FirewallRules: [{576DE4BB-9B0D-46E5-B361-162018E2F13B}] => (Allow) H:\Program Files (x86)\SteamLibrary\steamapps\common\star conflict\game.exe No File
FirewallRules: [UDP Query User{5673BEC2-A4F2-4F0A-AC2D-707C1F07870C}H:\gog games\railway empire\railwayempire.exe] => (Allow) H:\gog games\railway empire\railwayempire.exe No File
FirewallRules: [TCP Query User{4C07B869-37F5-4F44-907E-BC68ED984A26}H:\gog games\railway empire\railwayempire.exe] => (Allow) H:\gog games\railway empire\railwayempire.exe No File
FirewallRules: [UDP Query User{4E691515-6FC1-43C8-81C6-DBB1B7F8F75B}C:\program files\bitcoin\bitcoin-qt.exe] => (Allow) C:\program files\bitcoin\bitcoin-qt.exe () [File not signed]
FirewallRules: [TCP Query User{15440FDB-4B6F-48A1-824C-7A84E96D09B6}C:\program files\bitcoin\bitcoin-qt.exe] => (Allow) C:\program files\bitcoin\bitcoin-qt.exe () [File not signed]
FirewallRules: [UDP Query User{143DC50B-219C-4114-8E8F-E8BC0D6B35DE}C:\program files\litecoin\litecoin-qt.exe] => (Allow) C:\program files\litecoin\litecoin-qt.exe () [File not signed]
FirewallRules: [TCP Query User{B74490D4-05D2-4AB0-BD77-2A277BA7545F}C:\program files\litecoin\litecoin-qt.exe] => (Allow) C:\program files\litecoin\litecoin-qt.exe () [File not signed]
FirewallRules: [UDP Query User{0E663628-B912-4F04-AF44-0E8053FE27A4}F:\hry\far cry 4\bin\farcry4.exe] => (Allow) F:\hry\far cry 4\bin\farcry4.exe No File
FirewallRules: [TCP Query User{7ECEE922-8938-4821-BD5B-D9D82254E135}F:\hry\far cry 4\bin\farcry4.exe] => (Allow) F:\hry\far cry 4\bin\farcry4.exe No File
FirewallRules: [UDP Query User{63AD808D-CC87-4219-88B7-7BE762270A2C}C:\eve\sharedcache\tq\bin\exefile.exe] => (Allow) C:\eve\sharedcache\tq\bin\exefile.exe No File
FirewallRules: [TCP Query User{6ED1EDF2-E5F4-4AF0-A9A7-EDFC80ECFB12}C:\eve\sharedcache\tq\bin\exefile.exe] => (Allow) C:\eve\sharedcache\tq\bin\exefile.exe No File
FirewallRules: [{EED20502-C8FA-4B72-AC6A-45BD7CA5EE9E}] => (Allow) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe No File
FirewallRules: [{13B162CC-5652-4035-970B-1EAB3997C13E}] => (Allow) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe No File
FirewallRules: [{00752B97-585D-4A9E-A497-3B8F44572B70}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe No File
FirewallRules: [{99883171-2257-4C99-A926-B12BF06FDF60}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe No File
FirewallRules: [UDP Query User{1F44A342-9A6B-4023-ADA8-494D9D4765E7}F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe] => (Block) F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe No File
FirewallRules: [TCP Query User{96386857-DD26-4E60-A873-DBD070CC7483}F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe] => (Block) F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe No File
FirewallRules: [{254ABB7F-4B65-4FF3-833C-6CCD9B21161D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{68AEACA6-E17D-43DA-A82E-86BCE6DFE2DF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F0EFC15F-081B-4C87-B78E-28DC8A8FA7CD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe No File
FirewallRules: [{505521F3-1C64-430C-B5BB-51A319E628FE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{06AAB67F-D7A5-42D7-857E-4CA5F8B70B29}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{4129F8ED-0F5C-4199-937A-4E4C2804F230}C:\users\lukas\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\lukas\appdata\local\skypeplugin\pluginhost.exe (Microsoft Corporation -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{0F2FD01A-1A4B-4FBE-ACBC-B84F9A3DC462}C:\users\lukas\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\lukas\appdata\local\skypeplugin\pluginhost.exe (Microsoft Corporation -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{B9687B0E-2356-4DE1-B208-60B713D9DFC1}C:\games\world_of_warships\wowslauncher.exe] => (Allow) C:\games\world_of_warships\wowslauncher.exe No File
FirewallRules: [TCP Query User{47D8C302-1908-419B-81B7-5A50EDECA69A}C:\games\world_of_warships\wowslauncher.exe] => (Allow) C:\games\world_of_warships\wowslauncher.exe No File
FirewallRules: [{36E3EE67-A14A-4941-89C5-043791297B29}] => (Allow) F:\Program Files (x86)\Kalypso Media\Port Royale 3\PortRoyale3.exe No File
FirewallRules: [UDP Query User{D0F79A5B-0D88-4073-BFB1-C4220B5549CE}F:\filmy\search_tool_win_xp\searchtool.exe] => (Allow) F:\filmy\search_tool_win_xp\searchtool.exe No File
FirewallRules: [TCP Query User{874E3214-D56E-463B-8840-3B0C257EEE87}F:\filmy\search_tool_win_xp\searchtool.exe] => (Allow) F:\filmy\search_tool_win_xp\searchtool.exe No File
FirewallRules: [UDP Query User{D35D7E93-6FA3-4B03-9A87-83A97389E84C}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [TCP Query User{D7A3574E-9AA7-4D54-82F2-FE458591B551}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [{26BE49B9-7A60-4054-9EF1-A6D3327EF645}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\For Honor Open Beta\forhonor.exe (Blue Byte GmbH -> Ubisoft)
FirewallRules: [{94EA2475-27CF-4B88-80D3-8741570D47B9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\For Honor Open Beta\forhonor.exe (Blue Byte GmbH -> Ubisoft)
FirewallRules: [{FFE8D1A7-30C9-4559-B973-C78137D2CA6B}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{9BC97502-B126-4A7E-861A-72AF65D380A8}F:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Block) F:\program files (x86)\diablo iii\x64\diablo iii64.exe No File
FirewallRules: [TCP Query User{912E7446-9068-49F4-9A6B-7B9165A69EA8}F:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Block) F:\program files (x86)\diablo iii\x64\diablo iii64.exe No File
FirewallRules: [{BB474CBD-1BE6-4CAA-9977-89113D6E6F1E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{7D5CC98B-8FB0-4AF0-ACC4-90492FD07ED9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{57B0BCBD-ECAF-45C4-9783-EA09231719F3}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe No File
FirewallRules: [{D532212F-0629-43BD-A934-B9E7F9028012}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe No File
FirewallRules: [UDP Query User{67E833A5-ED03-4C72-B458-1EB7AE5BF74B}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe (Wargaming.net LLP -> Wargaming.net) [File not signed]
FirewallRules: [TCP Query User{6A2F8193-C0B5-4883-A50F-97A3FB023CFE}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe (Wargaming.net LLP -> Wargaming.net) [File not signed]
FirewallRules: [UDP Query User{66EDF803-6279-4014-B0ED-A17592AA88E0}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe (Wargaming PCL -> Wargaming.net)
FirewallRules: [TCP Query User{5CE1E5F5-A3A0-4F1D-B57A-57DD8C2F0CA5}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe (Wargaming PCL -> Wargaming.net)
FirewallRules: [UDP Query User{07D65D27-6C38-425C-A61C-631B7250E22C}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [TCP Query User{AE17E1C3-96A7-486A-9ACF-DE1BB8BF9AAA}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{C4E2F052-AC12-4D2D-B390-0F81C790FEBA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{89281832-930A-42B9-BF8D-99BCA790AE49}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{958EF457-2D5E-4FCE-9D49-96479D289517}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{208103E8-707C-4A3C-A135-668B704FDFCE}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{3BEF6539-7729-4A96-A48D-2D74F93A6142}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{A28056B1-E948-4F3F-84D8-6529B09B4987}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{E9B7C25D-730E-4FE8-AB5A-623EF5ABD91B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Might & Magic - Duel of Champions\Game.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{04EC1888-4546-4999-B251-571845B7116D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Might & Magic - Duel of Champions\Game.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{2651B740-9EAF-4566-B748-147B780B3188}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cryptic Studios\Neverwinter.exe (Cryptic Studios Inc. -> )
FirewallRules: [{FB68EFF4-B072-43E3-BADD-8DF55D32809C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cryptic Studios\Neverwinter.exe (Cryptic Studios Inc. -> )
FirewallRules: [{C2131B8B-B1CB-433D-97AA-2F76325FACFE}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{9047606F-C417-41AD-BB3F-81EF7E3B47B0}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{CAED66B1-28EE-4EC9-9265-55B844F9FBC8}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ICCUpdater.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{C271645F-7A20-46F0-8E1E-144A4DC0D3F3}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ICCUpdater.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{71ED3801-6FB1-4256-AA70-33FD6B92224F}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{F72EBBB8-6BF7-467B-8BB1-4570B7B545BA}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{ED3AD914-89AF-4C1C-AB7C-FA962EDBBB67}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\Scan2PCNotify.exe (Samsung Electronics CO., LTD. -> Scan2PCNotify)
FirewallRules: [{72B6BCD1-0D46-4AA1-BFDE-3EC7D7C270BE}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\Scan2PCNotify.exe (Samsung Electronics CO., LTD. -> Scan2PCNotify)
FirewallRules: [{BFEB002B-F6D2-425E-8907-CB854F6B6657}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\ScanProcess.exe (Samsung Electronics CO., LTD. -> ScanProcess)
FirewallRules: [{62ED1F89-78BE-423A-BCF0-FF308DEF6DCA}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\ScanProcess.exe (Samsung Electronics CO., LTD. -> ScanProcess)
FirewallRules: [{C16EE9D5-7673-4D13-8A79-C195DA888425}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{C5D9088C-95F6-40F4-9C8A-A2BBC9C07CBE}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{98B322AA-6545-448D-AB25-386816CAC5F9}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe (Samsung Electronics Co., Ltd.) [File not signed]
FirewallRules: [{D37D00D8-6E22-4E5E-87F6-90FB8C2C1A02}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe (Samsung Electronics Co., Ltd.) [File not signed]
FirewallRules: [{35E0C492-E1D0-42CF-82F4-B7DB2AE00F3A}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{4BCC85D2-A491-4553-A3B4-BB700FBBF452}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{09611358-6852-4166-9F26-F5942B9C7100}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{72DCC175-2194-4250-BAFD-7261F55BD575}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{5E3CA82C-0DBF-4B8E-9CED-869A62BB3CBB}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{84A008EB-78B4-488F-A5AF-EDED4211562C}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{82631BE1-F8E1-4898-8D54-691166802885}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{29871937-8A62-42BD-97D0-8B8F90B1BF60}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{873DC531-8A81-4912-8608-E3F08B3F9B9D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{E4543782-368D-4C24-8730-C380C2169CDE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{81FA5270-87DE-49B8-84E0-1ACED452FBD6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Star Trek Online\Star Trek Online.exe (Cryptic Studios Inc. -> )
FirewallRules: [{E0C73EC5-E891-4622-965D-62EDA31DD5AE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Star Trek Online\Star Trek Online.exe (Cryptic Studios Inc. -> )
FirewallRules: [{7F552DA7-05F5-4655-8F66-A507358920B9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{D7863895-4454-4622-BC78-FD9BD3AAA12B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{30DF629E-E1AC-4615-9101-FD1B72BEFE00}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{437741F8-DC38-4756-8486-49CA834A4A58}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{D8DE7BD4-C0B4-4581-A588-8B4885033DD3}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe No File
FirewallRules: [{08FD462A-5499-4456-9B6C-AD9225442DC6}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe No File
FirewallRules: [{9202BDE5-E1B4-4FC5-9D9D-C33ACC4F8E9F}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe No File
FirewallRules: [{D7BEA8A0-6367-450C-8A4D-A16CB4416369}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe No File
FirewallRules: [{E6F4CA2F-A49B-48E0-82DC-19A9EB09E42B}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe No File
FirewallRules: [{95D3D029-3D86-4AB1-9A43-5D4990CD05FB}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe No File
FirewallRules: [{23969D2D-5CCA-4B42-9221-6405D8EB6AAB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B76CA01C-67C2-438D-938A-572919039813}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D24236C4-B694-401B-9235-95C112EBE35D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D52DA489-F743-48FF-8257-225F9D34343C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{AE180C12-5F81-448F-8C53-25FA05A978DB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{2454C648-F7F9-42F1-81A4-769676D713AF}H:\program files\farming simulator 17\dedicatedserver.exe] => (Allow) H:\program files\farming simulator 17\dedicatedserver.exe No File
FirewallRules: [UDP Query User{180C8FD2-D3D5-4633-850D-3194AB6945DC}H:\program files\farming simulator 17\dedicatedserver.exe] => (Allow) H:\program files\farming simulator 17\dedicatedserver.exe No File
FirewallRules: [TCP Query User{C127EBBE-1051-4C68-9B52-51D2C36700BD}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [UDP Query User{B8283334-7E0D-46D0-B95D-959B0ED7FDC4}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [TCP Query User{26A307CE-F98D-4A1A-B5C3-594AEB4CCA12}C:\program files (x86)\wondershare\mobilego\mobilego.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilego.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [UDP Query User{533919E2-AB5A-4F7B-8798-7EBFCEC66EEF}C:\program files (x86)\wondershare\mobilego\mobilego.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilego.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [{CADB1CC0-D762-4C5F-9CB8-B2F5FBF14B43}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{2523E2E9-1A5A-4CEB-A014-990EB35E177B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{990E1485-6B97-485F-B0B9-911982F2D86B}] => (Allow) C:\Program Files (x86)\Opera\55.0.2994.44\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{DED48896-3952-4AF6-A273-5391CE980C48}] => (Allow) C:\Program Files (x86)\MIO\loader\kingstonxsv300s37a240g_50026b774b03171a.dat () [File not signed]
FirewallRules: [{ABA3BAC5-8750-4860-B256-3CED950DE7C1}] => (Allow) C:\Program Files (x86)\MIO\loader\kingstonxsv300s37a240g_50026b774b03171a.dat () [File not signed]
FirewallRules: [{148806E8-47F6-437D-9899-75DA7E5F20E7}] => (Allow) C:\Program Files (x86)\Opera\55.0.2994.61\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{018D2ADC-3AEE-4C6C-BFC2-5033D65E5EA9}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{BE391B67-CE55-4CCA-A199-C043B8EB741F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4F9F4F93-FA9F-4824-91DA-A39D562245B3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{FBBF796E-2987-457E-BDAD-8097B223710A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{36DCBBDD-26D1-4F18-A0F7-EDBF8144C18E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3521D0DB-E53D-4002-8E5B-785432CA59AD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{87FB5B77-2A10-42C5-A922-109BBE49DB88}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{58837D82-61CD-4248-A985-2A5C7642B49E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{824DBECC-930A-4B75-9973-9EA55BC1C311}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [TCP Query User{5212072F-78EE-4DC8-A70F-691ADC90A335}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Block) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [UDP Query User{26AAA118-D790-4881-96AD-CCF81F2CB7AF}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Block) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [TCP Query User{C47647E8-5D84-46B8-A307-442BFC404B42}C:\program files (x86)\firefox\firefox.exe] => (Block) C:\program files (x86)\firefox\firefox.exe (Mozilla Corporation) [File not signed]
FirewallRules: [UDP Query User{D2AA78C7-80AE-426B-BE14-937BCA673CF0}C:\program files (x86)\firefox\firefox.exe] => (Block) C:\program files (x86)\firefox\firefox.exe (Mozilla Corporation) [File not signed]
FirewallRules: [{E74CA79D-6821-4895-A0DB-03B6E2B917D6}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D2363450-E3DB-4F82-A51F-CC2302DB6520}] => (Allow) C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe (AVG Technologies USA, Inc. -> AVG Technologies)
FirewallRules: [{6189079A-30EA-4E67-9893-E6D10A21125A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
21-10-2019 18:56:35 Naplánovaný kontrolní bod
28-10-2019 19:22:02 Windows Update
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (10/28/2019 07:53:41 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.
Error: (10/28/2019 07:53:41 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.
Error: (10/28/2019 07:53:41 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.
Error: (10/28/2019 06:03:03 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.
Error: (10/28/2019 06:03:03 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.
Error: (10/28/2019 06:03:03 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.
Error: (10/28/2019 05:29:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_wuauserv, verze: 10.0.17134.556, časové razítko: 0xf23cada5
Název chybujícího modulu: AppXDeploymentClient.dll, verze: 10.0.17134.1006, časové razítko: 0xfcecf4f3
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000000b002
ID chybujícího procesu: 0x2430
Čas spuštění chybující aplikace: 0x01d58a929416c228
Cesta k chybující aplikaci: c:\windows\system32\svchost.exe
Cesta k chybujícímu modulu: C:\Windows\System32\AppXDeploymentClient.dll
ID zprávy: 06972dd6-851d-47b0-b081-8fcf6f857c0b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/28/2019 05:25:57 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů W3SVC. První čtyři bajty (DWORD) datové sekce obsahují kód chyby systému Windows.
System errors:
=============
Error: (10/28/2019 08:02:30 PM) (Source: DCOM) (EventID: 10016) (User: Lukas-PC)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli Lukas-PC\Lukas (SID: S-1-5-21-676012942-2397387924-1880445482-1000) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (10/28/2019 08:02:30 PM) (Source: DCOM) (EventID: 10016) (User: Lukas-PC)
Description: Nastavení oprávnění výchozí pro počítač neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C}
a APPID
{CE79BC8B-2980-4CA9-9570-6E0BF5B93BF2}
uživateli Lukas-PC\Lukas (SID: S-1-5-21-676012942-2397387924-1880445482-1000) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (10/28/2019 07:47:54 PM) (Source: DCOM) (EventID: 10016) (User: Lukas-PC)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli Lukas-PC\Lukas (SID: S-1-5-21-676012942-2397387924-1880445482-1000) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (10/28/2019 07:47:54 PM) (Source: DCOM) (EventID: 10016) (User: Lukas-PC)
Description: Nastavení oprávnění výchozí pro počítač neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C}
a APPID
{CE79BC8B-2980-4CA9-9570-6E0BF5B93BF2}
uživateli Lukas-PC\Lukas (SID: S-1-5-21-676012942-2397387924-1880445482-1000) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (10/28/2019 07:46:27 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Origin Web Helper Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/28/2019 07:46:26 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA LocalSystem Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.
Error: (10/28/2019 07:46:26 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Disc Soft Lite Bus Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/28/2019 07:46:26 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba 4game-service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10 milisekund: Restartovat službu.
CodeIntegrity:
===================================
Date: 2019-10-28 20:04:37.015
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-10-28 20:04:37.013
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-10-28 19:50:24.455
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-10-28 19:50:24.454
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-10-28 19:50:18.779
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-10-28 19:50:18.778
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-10-28 19:49:50.349
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-10-28 19:49:50.347
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. V22.2 12/16/2014
Motherboard: MSI 970 GAMING (MS-7693)
Processor: AMD FX(tm)-6300 Six-Core Processor
Percentage of memory in use: 50%
Total physical RAM: 8140.3 MB
Available physical RAM: 3989.2 MB
Total Virtual: 16332.3 MB
Available Virtual: 11543.43 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:223.03 GB) (Free:24.76 GB) NTFS
Drive e: (Farming Simulator 19) (CDROM) (Total:6.98 GB) (Free:0 GB) UDF
Drive f: (Workers & Resources_ Soviet Repu) (CDROM) (Total:1.76 GB) (Free:0 GB) UDF
Drive g: (Nový svazek) (Fixed) (Total:1863.01 GB) (Free:1024.49 GB) NTFS
\\?\Volume{abf0bd6b-aeee-11e4-85dd-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.05 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 2FCFA4CA)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=223 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 7F220C19)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Ran by Lukas (28-10-2019 20:10:37)
Running from C:\Users\Lukas\Downloads
Windows 10 Home Version 1803 17134.1069 (X64) (2018-05-23 04:35:41)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-676012942-2397387924-1880445482-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-676012942-2397387924-1880445482-503 - Limited - Disabled)
Guest (S-1-5-21-676012942-2397387924-1880445482-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-676012942-2397387924-1880445482-1003 - Limited - Enabled)
Lukas (S-1-5-21-676012942-2397387924-1880445482-1000 - Administrator - Enabled) => C:\Users\Lukas
WDAGUtilityAccount (S-1-5-21-676012942-2397387924-1880445482-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {4FC75CA5-1654-5411-7CFB-1893D506BCF4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Antivirus (Enabled - Up to date) {F4A6BD41-306E-5B9F-464B-23E1AE81F649}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
4game (HKLM-x32\...\4game) (Version: 3.6.2.278 - Innova Systems)
4game (HKLM-x32\...\4game2.0) (Version: 1.0.0.94 - Innova Co. SARL)
4K Video Downloader 4.5 (HKLM\...\{180B9AE1-F87B-4107-8C68-4265E927D6A8}) (Version: 4.5.0.2482 - Open Media LLC)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.012.20034 - Adobe Systems Incorporated)
Adobe Flash Player 31 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 31.0.0.108 - Adobe Systems Incorporated)
AIDA64 Extreme v5.00 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.00 - FinalWire Ltd.)
Aktualizace NVIDIA 28.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 28.0.0.0 - NVIDIA Corporation) Hidden
AlphaGo (HKLM-x32\...\{B20B3A3C-91E3-4326-8A0F-B3C012574F8C}) (Version: 1.1.2 - Default Company Name) <==== ATTENTION
AMD Catalyst Install Manager (HKLM\...\{E3C27552-F408-6465-3CA2-AA63826EC350}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMDProductVerification (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\4ecb547ba21a923a) (Version: 1.0.25.99 - AMDProductVerification)
amuleC (HKLM-x32\...\{0F7B5011-72EC-493D-A7BF-546591047E8E}) (Version: 1.0.2 - amuleC) <==== ATTENTION
amulesw (HKLM-x32\...\{3CC3DE19-E0B1-4D42-87AB-B5C61FE4BA58}) (Version: 1.0.6 - amules) <==== ATTENTION
Anno 1800 Open Beta (HKLM-x32\...\Uplay Install 13800) (Version: - Ubisoft)
Apple Mobile Device Support (HKLM\...\{B5A46811-3612-4DA5-8A5A-E6DED5D7C523}) (Version: 12.2.1.12 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Audiobook Downloader Pro 1.3 (HKLM-x32\...\Audiobook Downloader Pro) (Version: 1.3 - SuperUtils.com Software)
AVG AntiVirus FREE (HKLM-x32\...\AVG Antivirus) (Version: 19.8.3108 - AVG Technologies)
AVG Secure Browser (HKLM-x32\...\AVG Secure Browser) (Version: 77.1.1833.92 - Autoři prohlížeče AVG Secure Browser)
AVG Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.155.333 - AVG Technologies) Hidden
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.7.452 - AVG Technologies)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BikaQ Rss (HKLM-x32\...\{3678D164-84DB-4F73-AFD6-916342E10764}) (Version: 3.0.17 - BikaQ) <==== ATTENTION
Bing Bar (HKLM-x32\...\{16793295-2366-40F7-A045-A3E42A81365E}) (Version: 7.1.362.0 - Microsoft Corporation)
Bitcoin Core (64-bit) (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Bitcoin Core (64-bit)) (Version: 0.14.2 - Bitcoin Core project)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Booking (HKLM-x32\...\{13D4CD54-EA09-4FDB-B979-8B2BC0F020CA}_is1) (Version: 2.0.701 - Booking)
CamStudio 2.7.4 (HKLM\...\{04B83666-3A62-452B-85D3-70F8117F2329}_is1) (Version: 2.7.4 - CamStudio Open Source)
Car Mechanic Simulator 2018 (HKLM-x32\...\Car Mechanic Simulator 2018_is1) (Version: - )
Ceník stavebních prací 2.4 - aktualizace A (HKLM-x32\...\Ceník stavebních prací_is1) (Version: 2.4 - aktualizace A - Verlag Dashöfer s.r.o)
Cities In Motion (HKLM-x32\...\{15FA5ED6-2F98-4B5E-AF0B-18E5F4723FAD}_is1) (Version: - )
Cities XXL (HKLM-x32\...\Cities XXL_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter)
Cities: Skylines - ČEŠTINA (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Cities: Skylines - ČEŠTINA) (Version: - )
Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.62.0 - OEM) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.6.0.0283 - Disc Soft Ltd)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
DriverNavigator 3.6.9 (HKLM\...\DriverNavigator_is1) (Version: 3.6.9.0 - Easeware)
DVD Shrink 3.2 (HKLM-x32\...\DVD Shrink_is1) (Version: - DVD Shrink)
EVE Online (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\{5e6d5785-73e8-423f-a54c-b75cd3f5db13}) (Version: 1.0.0 - CCP)
Facebook Gameroom 1.20.6598.21896 (HKLM-x32\...\{C51FED78-02E5-4A80-B4D0-A4A474BB0CDD}) (Version: 1.20.6598.21896 - Facebook)
Far Cry 4 (HKLM-x32\...\Far Cry 4_is1) (Version: 1.4.0 - Ubisoft)
Farming Simulator 17 (HKLM\...\ZmFybWluZ3NpbXVsYXRvcjE3_is1) (Version: 1 - )
Farming Simulator 17 (HKLM-x32\...\{A82E512C-3BFB-43F8-B97F-8AA8F209B83B}) (Version: 1.2.0.0 - GIANTS Software) Hidden
Farming Simulator 17 (HKLM-x32\...\Farming Simulator 17 1.2.0.0) (Version: 1.2.0.0 - GIANTS Software)
Farming Simulator 19 (HKLM-x32\...\Farming Simulator 19_is1) (Version: - )
Firestorm Launcher version 1.3 (HKLM-x32\...\{008D5963-9A73-4472-8C16-A5BF04491B9D}_is1) (Version: 1.3 - Firestorm)
Flash Memory Toolkit trial 2.01 (HKLM-x32\...\Flash Memory Toolkit trial_is1) (Version: - EFD Software)
FORM studio (HKLM-x32\...\FSCZ_is1) (Version: - KASTNER software s.r.o.)
GitHub Desktop (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\GitHubDesktop) (Version: 1.0.11 - GitHub, Inc.)
Google Drive (HKLM-x32\...\{A1238426-ECDF-4639-BE2F-8D12A97AE23C}) (Version: 2.34.5075.1619 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 78.0.3904.70 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.301 - Google LLC) Hidden
Hearts of Iron IV (HKLM-x32\...\Hearts of Iron IV_is1) (Version: - )
HiSuite (HKLM-x32\...\Hi Suite) (Version: 9.0.3.300 - )
Charity Engine (HKLM-x32\...\{7309D717-F38D-436D-9537-066AA0AC7639}) (Version: 7.0.80 - Charity Engine)
iCloud (HKLM\...\{DA6D808E-3629-4933-8FB3-583F9BCB0DEF}) (Version: 7.12.0.14 - Apple Inc.)
iTunes (HKLM\...\{7B81A249-0187-436C-9738-AF82DAA54822}) (Version: 12.9.5.7 - Apple Inc.)
Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
Kerbal Space Program (HKLM-x32\...\Kerbal Space Program_is1) (Version: - )
Kingdom Come Deliverance (HKLM-x32\...\Kingdom Come Deliverance_is1) (Version: - )
LineageII EU (HKLM-x32\...\4game_lineage2eu) (Version: - Innova Systems)
Litecoin Core (64-bit) (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Litecoin Core (64-bit)) (Version: 0.14.2 - Litecoin Core project)
Mafia I - The City of Lost Heaven verze v1.3 (HKLM-x32\...\{360EBFE4-4591-4AE6-8D97-A58A43C15869}_is1) (Version: v1.3 - Danik1B9)
Malwarebytes Anti-Malware verze 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Math Problem Solver (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Math Problem Solver) (Version: - ) <==== ATTENTION
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{929CE49F-1CA7-4CF3-A9A1-6D757443C63F}) (Version: 1.2.0241 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.7.133.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\OneDriveSetup.exe) (Version: 19.174.0902.0013 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 70.0 (x64 en-US) (HKLM\...\Mozilla Firefox 70.0 (x64 en-US)) (Version: 70.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 70.0 - Mozilla)
Mp3 Editor for Free v5.2.7 Build 79 (HKLM-x32\...\Mp3 Editor for Free_is1) (Version: 5.2.7 Build 79 - Mp3EditorforFree Ltd.)
NVIDIA GeForce Experience 3.9.0.97 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.9.0.97 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.13 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{D9559CE2-9C58-F414-43EA-F908FEA13BB8}) (Version: 1.00.0000 - Název společnosti:)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Opera Stable 55.0.2994.61 (HKLM-x32\...\Opera 55.0.2994.61) (Version: 55.0.2994.61 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.5.50.31938 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.13 - NVIDIA Corporation) Hidden
PDF To Excel Converter V3.0 (HKLM-x32\...\PDF To Excel Converter_is1) (Version: - hxxp://www.PDFExcelConverter.com)
Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.) Hidden
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{C1BCFECF-6EC2-4750-9072-5E2489423F8F}) (Version: 7.5 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{B202C7F5-7DE3-4FBF-B259-E70E625F56FC}) (Version: 7.5 - Apple Inc.)
Port Royale 3 (HKLM-x32\...\{68DED384-1F74-4AEE-8B8E-95AF15572FE3}) (Version: 1.0.0.0 - Gaming Minds Studios GmbH)
Qualcomm Atheros Bandwidth Control Filter Driver (HKLM\...\{C80C9B28-CF99-431C-88C8-8B1F9B6A182F}) (Version: 1.1.39.1040 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer E220x Drivers (HKLM\...\{DD2A85B3-64C5-4263-A7AF-4F61FA5F369A}) (Version: 1.1.39.1040 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer Network Manager Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.39.1040 - Qualcomm Atheros)
Qualcomm Atheros Network Manager (HKLM\...\{7364C716-1212-4EAE-B0C9-A31D1E797BF8}) (Version: 1.1.39.1040 - Qualcomm Atheros) Hidden
Railroad Tycoon II Platinum (HKLM-x32\...\1445250876_is1) (Version: 2.0.0.5 - GOG.com)
Railway Empire (HKLM-x32\...\1556481953_is1) (Version: 1.1.1.17568 - GOG.com)
RAUCAD-TechCON (7.2) (HKLM-x32\...\{889D28AD-3F0C-48CD-B9BA-95B89A848DD6}) (Version: 7.00.0715 - Atcon systems s.r.o.)
Realpolitiks version 1.3.4 (HKLM-x32\...\{728B7AF5-D053-4F1A-9C6A-019B1376D99C}_is1) (Version: 1.3.4 - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7780 - Realtek Semiconductor Corp.)
Risen 3 Titan Lords (HKLM-x32\...\{3E96DF21-CE2A-40EA-8BAD-2DE5D7132EBD}) (Version: 1.20 - Piranha Bytes SteveHood)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 1.05.45.00(23.5.2014) - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Samsung Universal Scan Driver (HKLM-x32\...\Samsung Universal Scan Driver) (Version: 1.2.19.0 - Samsung Electronics Co., Ltd.)
Search App by Ask (HKLM-x32\...\{4F524A2D-5350-4500-76A7-A758B70C2E03}) (Version: 12.46.3.4268 - APN, LLC) <==== ATTENTION
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Shockwave (HKLM-x32\...\Shockwave) (Version: - )
Sid Meier's Civilization: Beyond Earth Rising Tide Addon (HKLM\...\U2lkTWVpZXJzQ2l2aWxpemF0aW9uQmV5b25kRWFydGg=_is1) (Version: 1 - )
SketchUp 2016 (HKLM\...\{D87EE6DC-32BA-4219-AC75-0A6FD54ED058}) (Version: 16.0.19912 - Trimble Navigation Limited)
Skype HoloLens Add-In (HKLM-x32\...\{38A3693F-1954-450F-8E42-C0E6F9C1AE94}) (Version: 1.0.0.0 - Microsoft Corporation)
Skype Web Plugin (HKLM-x32\...\{CD62BCB9-02D2-443F-AC7A-443377DA5B38}) (Version: 7.31.0.56 - Skype Technologies S.A.)
Skype™ 7.38 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.38.101 - Skype Technologies S.A.)
Sony PC Companion (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.297 - Sony)
Sound Blaster Cinema 2 (HKLM-x32\...\{B4F6F8CC-2C61-42CC-A4CC-76621F25BDC7}) (Version: 1.00.06 - Creative Technology Limited)
SPORE™ (HKLM-x32\...\{9DF0196F-B6B8-4C3A-8790-DE42AA530101}) (Version: 1.00.0000 - Electronic Arts)
Star Conflict Launcher 1.0.1.34 (HKLM-x32\...\StarConflictLauncher_is1) (Version: - )
Star Stable Online (HKLM-x32\...\{8CD50415-04B7-459E-8CBD-DA96A9CDF98E}) (Version: 1.01.0000 - Star Stable Entertainment AB)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stellaris (HKLM-x32\...\Stellaris_is1) (Version: - )
Střechy a stěny TONDACH 2018 (HKLM-x32\...\Střechy a stěny TONDACH 2018_is1) (Version: - )
Sudden Strike II (HKLM-x32\...\Sudden Strike II) (Version: - )
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.132598 - TeamViewer)
Terela (HKLM-x32\...\{E2F7C535-0785-4C2D-B56F-016BFD02B010}) (Version: 1.1.6 - Terela)
The Elder Scrolls V Skyrim LE (HKLM-x32\...\The Elder Scrolls V Skyrim LE_is1) (Version: - )
TrafficGiant-Gold Edition (HKLM-x32\...\TrafficGiant-Gold Edition) (Version: - )
Transport Fever (HKLM-x32\...\1720767912_is1) (Version: 2.0.0.2 - GOG.com)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 85.1 - Ubisoft)
USB PC Camera (ZS211) (HKLM-x32\...\{44D02D8B-FFB3-4245-8D26-68D10B4C4023}) (Version: 1.00.000 - )
VIA Platforma Ovladače zařízení (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
WhatsApp (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\WhatsApp) (Version: 0.3.3793 - WhatsApp)
Win10 Spy Disabler v1.4 (HKLM\...\Win10 Spy Disabler_is1) (Version: 1.4.0.0 - site2unblock.com)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{3577E42B-3347-4EB8-BFDA-D36E8ED3C519}) (Version: 1.0.24.0 - Microsoft Corporation)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
WinRAR 5.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
WinSetupFromUSB (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\WinSetupFromUSB) (Version: - )
Wondershare MobileGo(Version 8.5.0) (HKLM-x32\...\{1E04C795-7359-4E05-8A0E-5644F777AA09}_is1) (Version: 8.5.0 - Wondershare)
World of Tanks (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1) (Version: - Wargaming.net)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
youndoo - Uninstall (HKLM-x32\...\{2AEE6375-5F4E-4EF3-82AE-68CCB56539EF}) (Version: - ) <==== ATTENTION
Packages:
=========
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.150.300.0_x86__kgqvnymyfvs32 [2019-10-16] (king.com)
Messenger -> C:\Program Files\WindowsApps\Facebook.317180B0BB486_196.2292.59195.0_x86__8xx8rvfyw5nnt [2019-05-20] (Facebook Inc)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-20] (Microsoft Corporation) [MS Ad]
Microsoft Průvodce pro telefon -> C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1802.311.0_x64__8wekyb3d8bbwe [2018-02-13] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.10022.0_x64__8wekyb3d8bbwe [2019-10-08] (Microsoft Studios) [MS Ad]
Microsoft Telefon -> C:\Program Files\WindowsApps\Microsoft.CommsPhone_3.43.20002.1000_x64__8wekyb3d8bbwe [2018-09-09] (Microsoft Corporation)
MSN Money -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-20] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-20] (Microsoft Corporation) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-20] (Microsoft Corporation) [MS Ad]
Pošta a Kalendář -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe [2019-09-25] (Microsoft Corporation) [MS Ad]
Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2017-09-06] (Samsung Electronics Co. Ltd.)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-09] (Twitter Inc.)
WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x64__8wekyb3d8bbwe [2016-05-19] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\ChromeHTML: -> "C:\Program Files (x86)\Footjane\Application\chrome.exe" "%1" <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-676012942-2397387924-1880445482-1000_Classes\CLSID\{E5A7A7B5-9D06-4DBE-BAC0-04B69FF070B5}\InprocServer32 -> C:\Users\Lukas\AppData\Local\SkypePlugin\7.31.0.56\GatewayActiveX-x64.dll (Microsoft Corporation -> Skype Technologies S.A.)
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6671064 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks: No Name - {D7743BB4-F774-11E6-8881-64006A5CFC23} - -> No File
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-03-21] (Google Inc -> Google)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2019-05-08] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-03-21] (Google Inc -> Google)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\atiacm64.dll [2015-06-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2011-02-18] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2011-02-18] (Electronic Arts -> On2.com)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\Lukas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files (x86)\Firefox\Firefox.exe (Mozilla Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Firefox\Firefox.exe (Mozilla Corporation)
Shortcut: C:\Users\Public\Desktop\Mozilla Firefox.lnk -> C:\Program Files (x86)\Firefox\Firefox.exe (Mozilla Corporation)
==================== Loaded Modules (Whitelisted) =============
2015-02-07 18:44 - 2014-01-02 10:19 - 000040960 ____N ( ) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\Interop.CTSndCr.dll
2015-10-20 09:18 - 2015-10-20 09:18 - 000714240 _____ () [File not signed] C:\Program Files (x86)\4game\3.6.2.278\PocoNet.dll
2015-10-20 09:17 - 2015-10-20 09:17 - 000242176 _____ () [File not signed] C:\Program Files (x86)\4game\3.6.2.278\PocoUtil.dll
2015-10-20 09:16 - 2015-10-20 09:16 - 000394240 _____ () [File not signed] C:\Program Files (x86)\4game\3.6.2.278\PocoXML.dll
2011-11-13 14:30 - 2011-11-13 14:30 - 000676864 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2012-05-04 15:41 - 2012-05-04 15:41 - 000211968 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2011-11-13 14:31 - 2011-11-13 14:31 - 003643392 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2018-01-23 22:01 - 2018-01-23 22:01 - 000774656 _____ () [File not signed] C:\Users\Lukas\AppData\Local\Facebook\Games\CefSharp.BrowserSubprocess.Core.dll
2018-01-23 22:01 - 2018-01-23 22:01 - 001184256 _____ () [File not signed] C:\Users\Lukas\AppData\Local\Facebook\Games\CefSharp.Core.dll
2018-01-23 22:01 - 2018-01-23 22:01 - 070447616 _____ () [File not signed] C:\Users\Lukas\AppData\Local\Facebook\Games\libcef.dll
2018-01-23 22:01 - 2018-01-23 22:01 - 000078848 _____ () [File not signed] C:\Users\Lukas\AppData\Local\Facebook\Games\libegl.dll
2018-01-23 22:01 - 2018-01-23 22:01 - 003149824 _____ () [File not signed] C:\Users\Lukas\AppData\Local\Facebook\Games\libglesv2.dll
2019-10-28 19:47 - 2019-10-28 19:47 - 000088064 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\_ctypes.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000128512 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\_elementtree.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000914432 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\_hashlib.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000027648 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\_multiprocessing.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000036864 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\_psutil_windows.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000046080 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\_socket.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 001303552 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\_ssl.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000020480 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\_yappi.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000012800 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\common.time34.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000007168 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\hashobjs_ext.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000127488 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\pyexpat.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000682496 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\pysqlite2._sqlite.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000364544 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\pythoncom27.dll
2019-10-28 19:47 - 2019-10-28 19:47 - 000110080 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\pywintypes27.dll
2019-10-28 19:47 - 2019-10-28 19:47 - 000010240 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\select.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000017920 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\thumbnails_ext.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000686080 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\unicodedata.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000088064 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\usb_ext.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000098816 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\win32api.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000320512 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\win32com.shell.shell.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000011264 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\win32crypt.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000018432 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\win32event.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000119808 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\win32file.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000167936 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\win32gui.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000038912 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\win32inet.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000025600 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\win32pdh.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000024064 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\win32pipe.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000035840 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\win32process.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000017408 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\win32profile.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000108544 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\win32security.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000022528 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\win32ts.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000078848 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\wx._animate.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 001067008 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\wx._controls_.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 001176576 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\wx._core_.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000806400 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\wx._gdi_.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000077312 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\wx._html2.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000733184 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\wx._misc_.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000816128 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\wx._windows_.pyd
2019-10-28 19:47 - 2019-10-28 19:47 - 000123392 ____R () [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\wx._wizard.pyd
2015-02-07 18:44 - 2014-02-21 11:19 - 000366080 _____ () [File not signed] C:\Windows\SYSTEM32\APOMgr64.DLL
2015-02-07 18:44 - 2014-02-21 11:21 - 000089600 _____ () [File not signed] C:\Windows\SYSTEM32\CmdRtr64.DLL
2015-10-20 09:18 - 2015-10-20 09:18 - 000089600 _____ (Applied Informatics Software Engineering GmbH) [File not signed] C:\Program Files (x86)\4game\3.6.2.278\PocoCrypto.dll
2015-10-20 09:15 - 2015-10-20 09:15 - 001193472 _____ (Applied Informatics Software Engineering GmbH) [File not signed] C:\Program Files (x86)\4game\3.6.2.278\PocoFoundation.dll
2015-10-20 09:19 - 2015-10-20 09:19 - 000176128 _____ (Applied Informatics Software Engineering GmbH) [File not signed] C:\Program Files (x86)\4game\3.6.2.278\PocoNetSSL.dll
2015-02-07 18:44 - 2012-04-27 10:26 - 000529920 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\CTAudEp.dll
2015-02-07 18:44 - 2011-09-22 19:04 - 000238080 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\CTLoadRs.dll
2015-02-07 18:44 - 2014-02-21 11:03 - 000991232 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\en-US\SBCinema2.resources.dll
2015-02-07 18:44 - 2013-08-22 10:36 - 000249344 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\HKDetect.dll
2017-04-25 19:24 - 2017-04-25 03:00 - 000352768 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\freebl3.dll
2017-04-25 19:24 - 2017-04-25 02:59 - 000049664 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\lgpllibs.dll
2017-04-25 19:24 - 2017-04-25 02:59 - 000017408 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\libEGL.dll
2017-04-25 19:24 - 2017-04-25 02:59 - 001489920 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\mozavcodec.dll
2017-04-25 19:24 - 2017-04-25 02:59 - 000150528 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\mozavutil.dll
2017-04-25 19:24 - 2017-04-25 02:59 - 000107520 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\mozglue.dll
2017-04-25 19:24 - 2017-04-25 03:00 - 001209856 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\nss3.dll
2017-04-25 19:24 - 2017-04-25 03:00 - 000405504 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\nssckbi.dll
2017-04-25 19:24 - 2017-04-25 03:00 - 000088576 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\nssdbm3.dll
2017-04-25 19:24 - 2017-04-25 03:00 - 000141824 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\softokn3.dll
2017-04-25 19:24 - 2017-04-25 03:05 - 051872256 _____ (Mozilla Foundation) [File not signed] C:\Program Files (x86)\Firefox\xul.dll
2017-12-18 18:39 - 2015-02-27 10:35 - 000489984 _____ (Newtonsoft) [File not signed] C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\Newtonsoft.Json.dll
2019-08-10 16:48 - 2017-10-27 17:06 - 000760032 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI.dll
2019-08-10 16:48 - 2017-10-27 17:06 - 000874368 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI64.dll
2019-08-10 16:48 - 2017-10-27 17:06 - 000339256 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\NvStereo\_nvstapisvr64.dll
2019-10-28 19:47 - 2019-10-28 19:47 - 002459648 ____R (Python Software Foundation) [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\python27.dll
2013-11-26 10:07 - 2013-11-26 10:07 - 000112128 _____ (Samsung Electronics Co., Ltd.) [File not signed] C:\Program Files (x86)\Samsung\Easy Printer Manager\SmartScreenPrint\CDAKEYMonitor.dll
2018-01-23 22:01 - 2018-01-23 22:01 - 000433664 _____ (The Chromium Authors) [File not signed] C:\Users\Lukas\AppData\Local\Facebook\Games\chrome_elf.dll
2015-07-09 15:45 - 2015-07-09 15:45 - 001260544 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\4game\3.6.2.278\LIBEAY32.dll
2015-07-09 15:45 - 2015-07-09 15:45 - 000295936 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\4game\3.6.2.278\SSLEAY32.dll
2015-07-25 23:38 - 2019-10-16 17:25 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2017-01-11 19:42 - 2019-10-16 17:25 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2016-07-27 11:08 - 2019-10-16 17:25 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2019-04-02 17:05 - 2019-10-16 17:25 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2019-04-02 17:05 - 2019-10-16 17:25 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2019-04-02 17:05 - 2019-10-16 17:25 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2019-04-02 17:05 - 2019-10-16 17:25 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2019-04-02 17:05 - 2019-10-16 17:25 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
2017-12-18 18:39 - 2017-06-01 17:31 - 000047104 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Wondershare\MobileGo\COM.Net.dll
2017-12-18 18:39 - 2017-03-20 16:13 - 000087552 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppCollect.dll
2017-12-18 18:39 - 2017-03-20 16:13 - 000197632 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppCommon.dll
2019-10-28 19:47 - 2019-10-28 19:47 - 000155136 ____R (wxWidgets development team) [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\wxbase30u_net_vc90.dll
2019-10-28 19:47 - 2019-10-28 19:47 - 002030592 ____R (wxWidgets development team) [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\wxbase30u_vc90.dll
2019-10-28 19:47 - 2019-10-28 19:47 - 001251328 ____R (wxWidgets development team) [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\wxmsw30u_adv_vc90.dll
2019-10-28 19:47 - 2019-10-28 19:47 - 004796928 ____R (wxWidgets development team) [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\wxmsw30u_core_vc90.dll
2019-10-28 19:47 - 2019-10-28 19:47 - 000601088 ____R (wxWidgets development team) [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\wxmsw30u_html_vc90.dll
2019-10-28 19:47 - 2019-10-28 19:47 - 000110080 ____R (wxWidgets development team) [File not signed] C:\Users\Lukas\AppData\Local\Temp\_MEI108202\wxmsw30u_webview_vc90.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0]
AlternateDataStreams: C:\Users\Lukas\OneDrive:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity [108]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2018-12-18 21:17 - 000000864 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 validation.sls.microsoft.com
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\AMD APP\bin\x86_64;C:\Program Files (x86)\AMD APP\bin\x86;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Skype\Phone\;C:\Program Files (x86)\AMD\ATI.ACE\Core-Static;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
DNS Servers: 192.168.8.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{E8261C4A-5748-4FAB-BFB7-57C014C2F580}H:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) H:\games\kingdom come deliverance\bin\win64\kingdomcome.exe No File
FirewallRules: [TCP Query User{5F82500E-6BD6-43D4-B594-9119D5ADEB5D}H:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) H:\games\kingdom come deliverance\bin\win64\kingdomcome.exe No File
FirewallRules: [{3E6BAF4B-19DA-4C54-833F-FD154DE90925}] => (Allow) H:\Program Files (x86)\SteamLibrary\steamapps\common\star conflict\game.exe No File
FirewallRules: [{576DE4BB-9B0D-46E5-B361-162018E2F13B}] => (Allow) H:\Program Files (x86)\SteamLibrary\steamapps\common\star conflict\game.exe No File
FirewallRules: [UDP Query User{5673BEC2-A4F2-4F0A-AC2D-707C1F07870C}H:\gog games\railway empire\railwayempire.exe] => (Allow) H:\gog games\railway empire\railwayempire.exe No File
FirewallRules: [TCP Query User{4C07B869-37F5-4F44-907E-BC68ED984A26}H:\gog games\railway empire\railwayempire.exe] => (Allow) H:\gog games\railway empire\railwayempire.exe No File
FirewallRules: [UDP Query User{4E691515-6FC1-43C8-81C6-DBB1B7F8F75B}C:\program files\bitcoin\bitcoin-qt.exe] => (Allow) C:\program files\bitcoin\bitcoin-qt.exe () [File not signed]
FirewallRules: [TCP Query User{15440FDB-4B6F-48A1-824C-7A84E96D09B6}C:\program files\bitcoin\bitcoin-qt.exe] => (Allow) C:\program files\bitcoin\bitcoin-qt.exe () [File not signed]
FirewallRules: [UDP Query User{143DC50B-219C-4114-8E8F-E8BC0D6B35DE}C:\program files\litecoin\litecoin-qt.exe] => (Allow) C:\program files\litecoin\litecoin-qt.exe () [File not signed]
FirewallRules: [TCP Query User{B74490D4-05D2-4AB0-BD77-2A277BA7545F}C:\program files\litecoin\litecoin-qt.exe] => (Allow) C:\program files\litecoin\litecoin-qt.exe () [File not signed]
FirewallRules: [UDP Query User{0E663628-B912-4F04-AF44-0E8053FE27A4}F:\hry\far cry 4\bin\farcry4.exe] => (Allow) F:\hry\far cry 4\bin\farcry4.exe No File
FirewallRules: [TCP Query User{7ECEE922-8938-4821-BD5B-D9D82254E135}F:\hry\far cry 4\bin\farcry4.exe] => (Allow) F:\hry\far cry 4\bin\farcry4.exe No File
FirewallRules: [UDP Query User{63AD808D-CC87-4219-88B7-7BE762270A2C}C:\eve\sharedcache\tq\bin\exefile.exe] => (Allow) C:\eve\sharedcache\tq\bin\exefile.exe No File
FirewallRules: [TCP Query User{6ED1EDF2-E5F4-4AF0-A9A7-EDFC80ECFB12}C:\eve\sharedcache\tq\bin\exefile.exe] => (Allow) C:\eve\sharedcache\tq\bin\exefile.exe No File
FirewallRules: [{EED20502-C8FA-4B72-AC6A-45BD7CA5EE9E}] => (Allow) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe No File
FirewallRules: [{13B162CC-5652-4035-970B-1EAB3997C13E}] => (Allow) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe No File
FirewallRules: [{00752B97-585D-4A9E-A497-3B8F44572B70}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe No File
FirewallRules: [{99883171-2257-4C99-A926-B12BF06FDF60}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe No File
FirewallRules: [UDP Query User{1F44A342-9A6B-4023-ADA8-494D9D4765E7}F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe] => (Block) F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe No File
FirewallRules: [TCP Query User{96386857-DD26-4E60-A873-DBD070CC7483}F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe] => (Block) F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe No File
FirewallRules: [{254ABB7F-4B65-4FF3-833C-6CCD9B21161D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{68AEACA6-E17D-43DA-A82E-86BCE6DFE2DF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F0EFC15F-081B-4C87-B78E-28DC8A8FA7CD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe No File
FirewallRules: [{505521F3-1C64-430C-B5BB-51A319E628FE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{06AAB67F-D7A5-42D7-857E-4CA5F8B70B29}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{4129F8ED-0F5C-4199-937A-4E4C2804F230}C:\users\lukas\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\lukas\appdata\local\skypeplugin\pluginhost.exe (Microsoft Corporation -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{0F2FD01A-1A4B-4FBE-ACBC-B84F9A3DC462}C:\users\lukas\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\lukas\appdata\local\skypeplugin\pluginhost.exe (Microsoft Corporation -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{B9687B0E-2356-4DE1-B208-60B713D9DFC1}C:\games\world_of_warships\wowslauncher.exe] => (Allow) C:\games\world_of_warships\wowslauncher.exe No File
FirewallRules: [TCP Query User{47D8C302-1908-419B-81B7-5A50EDECA69A}C:\games\world_of_warships\wowslauncher.exe] => (Allow) C:\games\world_of_warships\wowslauncher.exe No File
FirewallRules: [{36E3EE67-A14A-4941-89C5-043791297B29}] => (Allow) F:\Program Files (x86)\Kalypso Media\Port Royale 3\PortRoyale3.exe No File
FirewallRules: [UDP Query User{D0F79A5B-0D88-4073-BFB1-C4220B5549CE}F:\filmy\search_tool_win_xp\searchtool.exe] => (Allow) F:\filmy\search_tool_win_xp\searchtool.exe No File
FirewallRules: [TCP Query User{874E3214-D56E-463B-8840-3B0C257EEE87}F:\filmy\search_tool_win_xp\searchtool.exe] => (Allow) F:\filmy\search_tool_win_xp\searchtool.exe No File
FirewallRules: [UDP Query User{D35D7E93-6FA3-4B03-9A87-83A97389E84C}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [TCP Query User{D7A3574E-9AA7-4D54-82F2-FE458591B551}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [{26BE49B9-7A60-4054-9EF1-A6D3327EF645}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\For Honor Open Beta\forhonor.exe (Blue Byte GmbH -> Ubisoft)
FirewallRules: [{94EA2475-27CF-4B88-80D3-8741570D47B9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\For Honor Open Beta\forhonor.exe (Blue Byte GmbH -> Ubisoft)
FirewallRules: [{FFE8D1A7-30C9-4559-B973-C78137D2CA6B}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{9BC97502-B126-4A7E-861A-72AF65D380A8}F:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Block) F:\program files (x86)\diablo iii\x64\diablo iii64.exe No File
FirewallRules: [TCP Query User{912E7446-9068-49F4-9A6B-7B9165A69EA8}F:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Block) F:\program files (x86)\diablo iii\x64\diablo iii64.exe No File
FirewallRules: [{BB474CBD-1BE6-4CAA-9977-89113D6E6F1E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{7D5CC98B-8FB0-4AF0-ACC4-90492FD07ED9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{57B0BCBD-ECAF-45C4-9783-EA09231719F3}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe No File
FirewallRules: [{D532212F-0629-43BD-A934-B9E7F9028012}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe No File
FirewallRules: [UDP Query User{67E833A5-ED03-4C72-B458-1EB7AE5BF74B}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe (Wargaming.net LLP -> Wargaming.net) [File not signed]
FirewallRules: [TCP Query User{6A2F8193-C0B5-4883-A50F-97A3FB023CFE}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe (Wargaming.net LLP -> Wargaming.net) [File not signed]
FirewallRules: [UDP Query User{66EDF803-6279-4014-B0ED-A17592AA88E0}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe (Wargaming PCL -> Wargaming.net)
FirewallRules: [TCP Query User{5CE1E5F5-A3A0-4F1D-B57A-57DD8C2F0CA5}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe (Wargaming PCL -> Wargaming.net)
FirewallRules: [UDP Query User{07D65D27-6C38-425C-A61C-631B7250E22C}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [TCP Query User{AE17E1C3-96A7-486A-9ACF-DE1BB8BF9AAA}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{C4E2F052-AC12-4D2D-B390-0F81C790FEBA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{89281832-930A-42B9-BF8D-99BCA790AE49}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{958EF457-2D5E-4FCE-9D49-96479D289517}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{208103E8-707C-4A3C-A135-668B704FDFCE}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{3BEF6539-7729-4A96-A48D-2D74F93A6142}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{A28056B1-E948-4F3F-84D8-6529B09B4987}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{E9B7C25D-730E-4FE8-AB5A-623EF5ABD91B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Might & Magic - Duel of Champions\Game.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{04EC1888-4546-4999-B251-571845B7116D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Might & Magic - Duel of Champions\Game.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{2651B740-9EAF-4566-B748-147B780B3188}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cryptic Studios\Neverwinter.exe (Cryptic Studios Inc. -> )
FirewallRules: [{FB68EFF4-B072-43E3-BADD-8DF55D32809C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cryptic Studios\Neverwinter.exe (Cryptic Studios Inc. -> )
FirewallRules: [{C2131B8B-B1CB-433D-97AA-2F76325FACFE}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{9047606F-C417-41AD-BB3F-81EF7E3B47B0}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{CAED66B1-28EE-4EC9-9265-55B844F9FBC8}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ICCUpdater.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{C271645F-7A20-46F0-8E1E-144A4DC0D3F3}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ICCUpdater.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{71ED3801-6FB1-4256-AA70-33FD6B92224F}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{F72EBBB8-6BF7-467B-8BB1-4570B7B545BA}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{ED3AD914-89AF-4C1C-AB7C-FA962EDBBB67}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\Scan2PCNotify.exe (Samsung Electronics CO., LTD. -> Scan2PCNotify)
FirewallRules: [{72B6BCD1-0D46-4AA1-BFDE-3EC7D7C270BE}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\Scan2PCNotify.exe (Samsung Electronics CO., LTD. -> Scan2PCNotify)
FirewallRules: [{BFEB002B-F6D2-425E-8907-CB854F6B6657}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\ScanProcess.exe (Samsung Electronics CO., LTD. -> ScanProcess)
FirewallRules: [{62ED1F89-78BE-423A-BCF0-FF308DEF6DCA}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\ScanProcess.exe (Samsung Electronics CO., LTD. -> ScanProcess)
FirewallRules: [{C16EE9D5-7673-4D13-8A79-C195DA888425}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{C5D9088C-95F6-40F4-9C8A-A2BBC9C07CBE}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{98B322AA-6545-448D-AB25-386816CAC5F9}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe (Samsung Electronics Co., Ltd.) [File not signed]
FirewallRules: [{D37D00D8-6E22-4E5E-87F6-90FB8C2C1A02}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe (Samsung Electronics Co., Ltd.) [File not signed]
FirewallRules: [{35E0C492-E1D0-42CF-82F4-B7DB2AE00F3A}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{4BCC85D2-A491-4553-A3B4-BB700FBBF452}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{09611358-6852-4166-9F26-F5942B9C7100}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{72DCC175-2194-4250-BAFD-7261F55BD575}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{5E3CA82C-0DBF-4B8E-9CED-869A62BB3CBB}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{84A008EB-78B4-488F-A5AF-EDED4211562C}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{82631BE1-F8E1-4898-8D54-691166802885}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{29871937-8A62-42BD-97D0-8B8F90B1BF60}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{873DC531-8A81-4912-8608-E3F08B3F9B9D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{E4543782-368D-4C24-8730-C380C2169CDE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{81FA5270-87DE-49B8-84E0-1ACED452FBD6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Star Trek Online\Star Trek Online.exe (Cryptic Studios Inc. -> )
FirewallRules: [{E0C73EC5-E891-4622-965D-62EDA31DD5AE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Star Trek Online\Star Trek Online.exe (Cryptic Studios Inc. -> )
FirewallRules: [{7F552DA7-05F5-4655-8F66-A507358920B9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{D7863895-4454-4622-BC78-FD9BD3AAA12B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{30DF629E-E1AC-4615-9101-FD1B72BEFE00}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{437741F8-DC38-4756-8486-49CA834A4A58}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{D8DE7BD4-C0B4-4581-A588-8B4885033DD3}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe No File
FirewallRules: [{08FD462A-5499-4456-9B6C-AD9225442DC6}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe No File
FirewallRules: [{9202BDE5-E1B4-4FC5-9D9D-C33ACC4F8E9F}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe No File
FirewallRules: [{D7BEA8A0-6367-450C-8A4D-A16CB4416369}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe No File
FirewallRules: [{E6F4CA2F-A49B-48E0-82DC-19A9EB09E42B}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe No File
FirewallRules: [{95D3D029-3D86-4AB1-9A43-5D4990CD05FB}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe No File
FirewallRules: [{23969D2D-5CCA-4B42-9221-6405D8EB6AAB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B76CA01C-67C2-438D-938A-572919039813}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D24236C4-B694-401B-9235-95C112EBE35D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D52DA489-F743-48FF-8257-225F9D34343C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{AE180C12-5F81-448F-8C53-25FA05A978DB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{2454C648-F7F9-42F1-81A4-769676D713AF}H:\program files\farming simulator 17\dedicatedserver.exe] => (Allow) H:\program files\farming simulator 17\dedicatedserver.exe No File
FirewallRules: [UDP Query User{180C8FD2-D3D5-4633-850D-3194AB6945DC}H:\program files\farming simulator 17\dedicatedserver.exe] => (Allow) H:\program files\farming simulator 17\dedicatedserver.exe No File
FirewallRules: [TCP Query User{C127EBBE-1051-4C68-9B52-51D2C36700BD}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [UDP Query User{B8283334-7E0D-46D0-B95D-959B0ED7FDC4}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [TCP Query User{26A307CE-F98D-4A1A-B5C3-594AEB4CCA12}C:\program files (x86)\wondershare\mobilego\mobilego.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilego.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [UDP Query User{533919E2-AB5A-4F7B-8798-7EBFCEC66EEF}C:\program files (x86)\wondershare\mobilego\mobilego.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilego.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [{CADB1CC0-D762-4C5F-9CB8-B2F5FBF14B43}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{2523E2E9-1A5A-4CEB-A014-990EB35E177B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{990E1485-6B97-485F-B0B9-911982F2D86B}] => (Allow) C:\Program Files (x86)\Opera\55.0.2994.44\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{DED48896-3952-4AF6-A273-5391CE980C48}] => (Allow) C:\Program Files (x86)\MIO\loader\kingstonxsv300s37a240g_50026b774b03171a.dat () [File not signed]
FirewallRules: [{ABA3BAC5-8750-4860-B256-3CED950DE7C1}] => (Allow) C:\Program Files (x86)\MIO\loader\kingstonxsv300s37a240g_50026b774b03171a.dat () [File not signed]
FirewallRules: [{148806E8-47F6-437D-9899-75DA7E5F20E7}] => (Allow) C:\Program Files (x86)\Opera\55.0.2994.61\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{018D2ADC-3AEE-4C6C-BFC2-5033D65E5EA9}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{BE391B67-CE55-4CCA-A199-C043B8EB741F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4F9F4F93-FA9F-4824-91DA-A39D562245B3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{FBBF796E-2987-457E-BDAD-8097B223710A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{36DCBBDD-26D1-4F18-A0F7-EDBF8144C18E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3521D0DB-E53D-4002-8E5B-785432CA59AD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{87FB5B77-2A10-42C5-A922-109BBE49DB88}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{58837D82-61CD-4248-A985-2A5C7642B49E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{824DBECC-930A-4B75-9973-9EA55BC1C311}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [TCP Query User{5212072F-78EE-4DC8-A70F-691ADC90A335}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Block) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [UDP Query User{26AAA118-D790-4881-96AD-CCF81F2CB7AF}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Block) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [TCP Query User{C47647E8-5D84-46B8-A307-442BFC404B42}C:\program files (x86)\firefox\firefox.exe] => (Block) C:\program files (x86)\firefox\firefox.exe (Mozilla Corporation) [File not signed]
FirewallRules: [UDP Query User{D2AA78C7-80AE-426B-BE14-937BCA673CF0}C:\program files (x86)\firefox\firefox.exe] => (Block) C:\program files (x86)\firefox\firefox.exe (Mozilla Corporation) [File not signed]
FirewallRules: [{E74CA79D-6821-4895-A0DB-03B6E2B917D6}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D2363450-E3DB-4F82-A51F-CC2302DB6520}] => (Allow) C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe (AVG Technologies USA, Inc. -> AVG Technologies)
FirewallRules: [{6189079A-30EA-4E67-9893-E6D10A21125A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
21-10-2019 18:56:35 Naplánovaný kontrolní bod
28-10-2019 19:22:02 Windows Update
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (10/28/2019 07:53:41 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.
Error: (10/28/2019 07:53:41 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.
Error: (10/28/2019 07:53:41 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.
Error: (10/28/2019 06:03:03 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.
Error: (10/28/2019 06:03:03 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.
Error: (10/28/2019 06:03:03 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.
Error: (10/28/2019 05:29:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_wuauserv, verze: 10.0.17134.556, časové razítko: 0xf23cada5
Název chybujícího modulu: AppXDeploymentClient.dll, verze: 10.0.17134.1006, časové razítko: 0xfcecf4f3
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000000b002
ID chybujícího procesu: 0x2430
Čas spuštění chybující aplikace: 0x01d58a929416c228
Cesta k chybující aplikaci: c:\windows\system32\svchost.exe
Cesta k chybujícímu modulu: C:\Windows\System32\AppXDeploymentClient.dll
ID zprávy: 06972dd6-851d-47b0-b081-8fcf6f857c0b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/28/2019 05:25:57 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů W3SVC. První čtyři bajty (DWORD) datové sekce obsahují kód chyby systému Windows.
System errors:
=============
Error: (10/28/2019 08:02:30 PM) (Source: DCOM) (EventID: 10016) (User: Lukas-PC)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli Lukas-PC\Lukas (SID: S-1-5-21-676012942-2397387924-1880445482-1000) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (10/28/2019 08:02:30 PM) (Source: DCOM) (EventID: 10016) (User: Lukas-PC)
Description: Nastavení oprávnění výchozí pro počítač neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C}
a APPID
{CE79BC8B-2980-4CA9-9570-6E0BF5B93BF2}
uživateli Lukas-PC\Lukas (SID: S-1-5-21-676012942-2397387924-1880445482-1000) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (10/28/2019 07:47:54 PM) (Source: DCOM) (EventID: 10016) (User: Lukas-PC)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli Lukas-PC\Lukas (SID: S-1-5-21-676012942-2397387924-1880445482-1000) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (10/28/2019 07:47:54 PM) (Source: DCOM) (EventID: 10016) (User: Lukas-PC)
Description: Nastavení oprávnění výchozí pro počítač neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{5DC4F9AD-3A2B-4DF4-AC39-3FF5A19FCF4C}
a APPID
{CE79BC8B-2980-4CA9-9570-6E0BF5B93BF2}
uživateli Lukas-PC\Lukas (SID: S-1-5-21-676012942-2397387924-1880445482-1000) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (10/28/2019 07:46:27 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Origin Web Helper Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/28/2019 07:46:26 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA LocalSystem Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.
Error: (10/28/2019 07:46:26 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Disc Soft Lite Bus Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/28/2019 07:46:26 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba 4game-service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10 milisekund: Restartovat službu.
CodeIntegrity:
===================================
Date: 2019-10-28 20:04:37.015
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-10-28 20:04:37.013
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-10-28 19:50:24.455
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-10-28 19:50:24.454
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-10-28 19:50:18.779
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-10-28 19:50:18.778
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-10-28 19:49:50.349
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-10-28 19:49:50.347
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. V22.2 12/16/2014
Motherboard: MSI 970 GAMING (MS-7693)
Processor: AMD FX(tm)-6300 Six-Core Processor
Percentage of memory in use: 50%
Total physical RAM: 8140.3 MB
Available physical RAM: 3989.2 MB
Total Virtual: 16332.3 MB
Available Virtual: 11543.43 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:223.03 GB) (Free:24.76 GB) NTFS
Drive e: (Farming Simulator 19) (CDROM) (Total:6.98 GB) (Free:0 GB) UDF
Drive f: (Workers & Resources_ Soviet Repu) (CDROM) (Total:1.76 GB) (Free:0 GB) UDF
Drive g: (Nový svazek) (Fixed) (Total:1863.01 GB) (Free:1024.49 GB) NTFS
\\?\Volume{abf0bd6b-aeee-11e4-85dd-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.05 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 2FCFA4CA)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=223 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 7F220C19)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Re: pomoct s PC
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-10-2019
Ran by Lukas (administrator) on LUKAS-PC (MSI MS-7693) (28-10-2019 20:09:23)
Running from C:\Users\Lukas\Downloads
Loaded Profiles: Lukas (Available Profiles: Lukas)
Platform: Windows 10 Home Version 1803 17134.1069 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(AVG Netherlands B.V. -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.4.155.333\AVGBrowserCrashHandler.exe
(AVG Netherlands B.V. -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.4.155.333\AVGBrowserCrashHandler64.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe
(Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe
(Disc Soft Ltd -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Disc Soft Ltd -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Even Balance, Inc. -> ) C:\WINDOWS\SysWOW64\PnkBstrA.exe
(Facebook, Inc. -> Facebook) [File not signed] C:\Users\Lukas\AppData\Local\Facebook\Games\FacebookGameroom.exe
(Facebook, Inc. -> The CefSharp Authors) [File not signed] C:\Users\Lukas\AppData\Local\Facebook\Games\Facebook Gameroom Browser.exe
(Gaijin Network LTD -> Gaijin Entertainment) C:\Users\Lukas\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe
(Google Inc -> Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Google Inc -> Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Innova Co S.a r.l. -> Innova Co S.a r.l.) [File not signed] C:\Program Files (x86)\4game\3.6.2.278\4game-service.exe
(Malwarebytes Inc -> Malwarebytes) G:\marvel ,DC\AdwCleaner.exe
(Microsoft Corporation -> © 2015 Microsoft Corporation) C:\Users\Lukas\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Lukas\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\WINDOWS\System32\WirelessKB850NotificationService.exe
(Microsoft Corporation -> Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.EXE
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19072.18011.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\SysWOW64\wbem\WmiPrvSE.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) [File not signed] C:\Program Files (x86)\Firefox\Firefox.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Qualcomm Atheros) [File not signed] C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Samsung Electronics CO., LTD. -> ) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(University of California, Berkeley -> Charity Engine) C:\Program Files (x86)\BOINC\boinctray.exe
(VIA Technologies, Inc.) [File not signed] C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\MobileGo\MobileGoService.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [MBCfg64] => C:\Windows\system32\MBCfg64.dll [41088 2014-02-21] (Creative Technology Ltd -> Creative Technology Ltd.)
HKLM\...\Run: [VIAxHCUtl] => C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe [331776 2011-07-12] (VIA Technologies, Inc.) [File not signed]
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [462712 2012-03-09] (Samsung Electronics CO., LTD. -> )
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\nvspcap64.dll [1923008 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [316336 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8845528 2000-01-01] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-05-07] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [Sound Blaster Cinema 2] => C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe [1440768 2014-02-24] (Creative Technology Ltd) [File not signed]
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.) [File not signed]
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-03-07] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [boinctray] => C:\Program Files (x86)\BOINC\boinctray.exe [71312 2014-03-07] (University of California, Berkeley -> Charity Engine)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-06-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKLM\...\Policies\Explorer: [NoInstrumentation] 1
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3211040 2019-10-02] (Valve -> Valve Corporation)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3115792 2019-10-16] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23819304 2017-03-21] (Google Inc -> Google)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [BingSvc] => C:\Users\Lukas\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (Microsoft Corporation -> © 2015 Microsoft Corporation)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [World of Warships] => C:\Games\World_of_Warships\WargamingGameUpdater.exe [3140384 2018-01-25] (Wargaming PCL -> Wargaming.net)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4836032 2017-08-14] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-05-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [721504 2015-09-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [Gaijin.Net Updater] => C:\Users\Lukas\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2123008 2019-09-20] (Gaijin Network LTD -> Gaijin Entertainment)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [SRDownloader] => G:\marvel ,DC\FSDownloader.exe [1537024 2019-06-08] (File-share.top) [File not signed]
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Policies\system: [Shell] <==== ATTENTION
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\MountPoints2: {d62cd0d9-d38d-11e7-a610-d8cb8a13fec7} - "E:\setup.exe"
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\MountPoints2: {def9fec5-a11b-11e7-a5f6-d8cb8a13fec7} - "E:\setup.exe"
HKLM\...\Providers\l9olaieg: C:\Program Files (x86)\Khagetheputain Renew\local64spl.dll <==== ATTENTION
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.70\Installer\chrmstp.exe [2019-10-22] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{48F69C39-1356-4A7B-A899-70E3539D4982}] -> C:\Program Files (x86)\AVG\Browser\Application\77.1.1833.92\Installer\chrmstp.exe [2019-10-16] (AVG Technologies USA, Inc. -> AVG Technologies)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MobileGo Service.lnk [2017-12-18]
ShortcutTarget: MobileGo Service.lnk -> C:\Program Files (x86)\Wondershare\MobileGo\MobileGoService.exe (Wondershare Technology Co.,Ltd -> Wondershare)
Startup: C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2018-02-14]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\Lukas\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook, Inc. -> Facebook) [File not signed]
Startup: C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\tmp8B80.tmp.vbs [2015-11-26] ()
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {00C68D1E-0792-4737-ABE6-11A23C0E148C} - System32\Tasks\GoogleUpdateTaskMachineUA1d08feffd8759fd => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {057F0FDB-4D54-433E-B0E7-DA7189E9A45D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [1540544 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {078F5A49-EB5F-47D1-8AAC-D7DB43920F91} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {08398CB9-4B31-4A24-8B44-EB9BB625BA92} - System32\Tasks\GoogleUpdateTaskMachineUA1d0bf8240b41a2d => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {0A3ADA6A-7D6B-48BE-B3EE-7CAFCB01D806} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {0AB50D89-FFF4-45DA-A27F-F78224C73B18} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {0DCD5721-E663-4739-8799-D538A118462C} - System32\Tasks\Khagetheputain Renew => C:\Program Files (x86)\Hubishrwoy\danudle.exe
Task: {0DF81F83-AAE4-4D9D-AD21-1C085FB4F3CD} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0F2160CC-1C14-402D-AD23-A12D04C235E8} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {14141500-8981-4403-B402-EA338C0793AC} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {160FF8F5-CC06-4540-9129-09EE6E5519F1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {166C21CD-A7AE-44C6-9267-F23A9BD448EF} - System32\Tasks\GoogleUpdateTaskMachineUA1d0f1cdabb0a60b => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {1AC7B678-A9D3-4A29-92DC-D8F4EBF554F7} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {1CEA203A-C150-4652-AABB-7ACA3A05E166} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1D16E514-8B2B-401C-A57A-94F5BDE2C6C6} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [947136 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1E30E266-381A-446D-8258-14AA8981822C} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {1FD4545D-449E-4498-A28F-6A70BBB6E717} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {21B0555E-5B6E-4A33-8B94-554BA363328C} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {23BDB7CB-960B-44D3-AE0C-CF01B7DBFB52} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1905072 2019-09-20] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {2855507F-5693-4716-8CFD-A9C7EC3608E1} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {300BD167-058E-4DF4-A7BE-2E53BB8E2972} - System32\Tasks\Opera scheduled Autoupdate 1447089322 => C:\Program Files (x86)\Opera\launcher.exe [1139800 2018-09-13] (Opera Software AS -> Opera Software)
Task: {31BE7BED-2F8C-44D1-BD22-11E99C2B41D6} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {331DDBCD-B400-4A52-8AA3-1827C9BCD258} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {39258C28-7A3C-4300-A3DC-4E16322E23F7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {3AEA29CC-B5AD-4AD2-BC6D-909CC4F0BB1C} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {3D4E9D09-C002-4945-AC40-392F521B8371} - System32\Tasks\Milimili => C:\Program Files (x86)\MIO\MIO.exe [282168 2017-05-17] (Tencent Technology(Shenzhen) Company Limited -> ) <==== ATTENTION
Task: {41E30C1E-4367-4961-83E7-F77ACA6B8A7D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {44043342-7AEF-45A6-BE72-1C5E0973F9B7} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [651200 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {474D443B-B2A3-4499-A248-66AC6D63CC22} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [3981232 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {4767975C-6E0E-4FAA-8A88-B2977101B326} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {478A9481-F90E-4304-A5F6-68A3C6FACA5E} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {4D624449-4D60-4D19-9387-2E5BF8C036BD} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {50FC92D3-BD00-47CB-A315-A89F04ED71E1} - System32\Tasks\GoogleUpdateTaskMachineCore1d0f1cdab88d226 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {56B0A61C-507F-433D-954C-C486D2189B72} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {5A1966A9-CEB3-41A9-AE16-6BC5ABAD319F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {614E6F12-9484-46EE-9A73-6D7224A2D4B4} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [436160 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6482D3E7-3339-4124-B13F-E53C041CFA06} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {656F2A16-EFDE-4862-8AFD-D8B5E81C281C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {65F86154-AB5D-4337-8D93-BAF90FA4D306} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1670432 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {663E99B4-CA4D-4E7C-91C1-EABB63BABB64} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {66F06E9E-DF0A-433D-83B5-C509AEC75A95} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {6703186A-0465-4C3E-A08A-443207902793} - System32\Tasks\GoogleUpdateTaskMachineUA1d12ebc6be85ef3 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {69D2C974-CF78-415C-8191-C7DC384676E6} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7910D104-F17E-49AB-8776-6C77A50BAC04} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2018-09-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {7A837A76-486D-42A1-97E8-360C058D8954} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {7C8C0D84-7FDF-4498-A416-73AD7EA30569} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {7DB680EE-23B1-48F0-9859-CDA2BEC008FB} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2227488 2015-12-09] (Microsoft Corporation -> Microsoft)
Task: {82468688-DA9F-4710-B706-424D84B066D0} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {85175350-6DD5-4C07-ABAB-38D7F203636C} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {85780FD9-7FC6-440E-B945-27134F55C731} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {863E957B-FB85-4851-BDDB-29304749D0CD} - System32\Tasks\AVG Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [1873000 2019-09-25] (AVG Technologies USA, Inc. -> AVG Technologies)
Task: {883BFE7D-F5FC-4F29-B091-38E4C517B2FD} - System32\Tasks\AVGUpdateTaskMachineCore => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [165520 2018-10-27] (AVG Netherlands B.V. -> AVG Technologies)
Task: {897F1BF5-3093-47B4-B81B-DCD2D9897417} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_108_Plugin.exe [1454080 2018-09-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {8A047119-D9E5-477C-B68D-D5DA2A5D8150} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {973F4372-6F08-4918-8421-4E9AB460F9B7} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {98C3B48E-7621-455F-A8EE-90C73D02E404} - System32\Tasks\AVG Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [1873000 2019-09-25] (AVG Technologies USA, Inc. -> AVG Technologies)
Task: {99A527D5-9275-472A-9145-E6AE919E91E4} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {99FFD4B3-E3F9-4747-9619-D3070128EA7D} - System32\Tasks\AVGUpdateTaskMachineUA => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [165520 2018-10-27] (AVG Netherlands B.V. -> AVG Technologies)
Task: {9AE63F0F-455B-4671-B91D-FC96318A4D32} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2212128 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {9F51F8E6-34D8-4E87-AE46-DCC8FF65A6CA} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {AC1769AE-9049-4FAA-BCA1-EF24AE7E0B26} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [651200 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B50B0A88-6F32-4525-A344-20D1804D3764} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {B59AA759-2158-4CEA-A134-4EFB287168F1} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {B65417F6-37D2-4862-84FE-ADD7DD7BA31B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {BBC89AE6-9F6E-45EF-8F63-55A8B55BC2DB} - System32\Tasks\{1A6294B2-88B2-4000-982C-50EE66BDD741} => C:\WINDOWS\system32\pcalua.exe -a "F:\intuix_cd\Intuix CD\setup.exe" -d "F:\intuix_cd\Intuix CD"
Task: {C5110754-6125-4583-93E9-90A2E8B93F9B} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1670432 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {C68AFC55-BC6B-4932-8422-FDCAE9D0228E} - System32\Tasks\GoogleUpdateTaskMachineCore1d0e311c2edf531 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {C79F4485-F979-4998-A686-7527DFE38288} - System32\Tasks\{E9D3D202-8BE7-4283-9C8E-DB1ADD4A305D} => C:\Windows\system32\pcalua.exe -a K:\_AUTORUN\AUTORUN.EXE -d K:\
Task: {C8440877-31C2-4D5A-B13D-B78D1A784C64} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {CE403273-6ABC-4EDB-B60E-418EE36DE211} - System32\Tasks\{D082DED7-9F54-4072-B23C-9015685838FF} => C:\WINDOWS\system32\pcalua.exe -a "F:\Program Files (x86)\Mafia I - The City of Lost Heaven\Game.exe" -d "F:\Program Files (x86)\Mafia I - The City of Lost Heaven"
Task: {D6CA3431-FF1A-4CB8-9146-6B78F0BBF8E6} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {D6F88AA6-B7B7-4C2D-BFD8-16DFDE83FA22} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2212128 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {D99CF7B4-C34D-47D3-9CD0-C486F7CE1434} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DDDA9FC3-1F1A-4C8C-A95A-47E751E16E56} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DE10E964-9B25-4F6E-9EDC-CD783AF08FE4} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [722880 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DEE2560C-3FA2-499E-8DAF-184D35357BCB} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {E140E31A-0C7F-4FFA-89E9-C6D582D94CC7} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [722880 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E55F4541-8AA4-486D-A31F-8D7584FF968D} - System32\Tasks\GoogleUpdateTaskMachineCore1d08feffd709d58 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {E7DB25D7-9344-4C16-B621-DE4DA8BD66B4} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {E81AB3AC-3816-4EBE-A8D5-0C27174B539B} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E95DA03C-4020-4063-B2FC-DF9CC9D202BD} - System32\Tasks\GoogleUpdateTaskMachineCore1d0bf824092886a => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {EF259B98-F640-49BA-8E8A-3ACAE1C31C5F} - System32\Tasks\{91840007-F1F0-480C-8352-3A5360385E8C} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Railroad Tycoon 3\UNINSTX.EXE"
Task: {EF7CE8FE-FF1D-4CE4-98B5-AEEE09AF4843} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {FD539483-AC5F-43E5-A5A4-CBB51614FEBE} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {FD77CB7B-62D4-4956-841B-D5C6D9E7F315} - System32\Tasks\GoogleUpdateTaskMachineCore1d12ebc6bce6df2 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d08feffd709d58.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0bf824092886a.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0e311c2edf531.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0f1cdab88d226.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d08feffd8759fd.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0bf8240b41a2d.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0f1cdabb0a60b.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 127.0.0.1 validation.sls.microsoft.com
Tcpip\Parameters: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{0c602eed-9ac2-4542-ac7f-b6924786abc0}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{65eee1d5-a9d8-425b-8d5e-4166b6418b14}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{9226fc84-2a17-4d77-8b05-e13aee4900e5}: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{9335ad66-4c3b-44d6-8b35-4cf661d0f1d3}: [DhcpNameServer] 172.20.10.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617912&ResetID=132151946241391219&GUID=09B1574E-8886-4A52-9C34-8AE3E62B20AA
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {0EDBD3F4-E096-4846-B9DE-D691BA3103C6} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {1C50BAAC-C45F-46AA-B7B2-79617F444A02} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {21B2B49F-F4DA-49CE-A9FC-C3EDE1E86455} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {431AAD9A-2776-4129-A644-3F9F151176C4} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {76DEFAE6-09B2-40B2-8F8A-5A6A5D5CE4EB} URL = hxxps://search.yahoo.com/search/?toggle=1&cop=mss&ei=UTF-8&fr=vmn&type=auslog_yaapp6_adw_ch&p={searchTerms}
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {937BFC8E-BC6F-43FE-8828-A0617CFC8708} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {9D8DD67D-8298-4DF4-BD42-61842EC96EEE} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {AEBA1B1E-35FE-4762-AC9C-6B81DE0B8AF7} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {D742AC74-BBC6-48E1-A0C2-E8A528458B67} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_13415
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.3.7.452\AVG Web TuneUp.dll => No File
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-04] (Google Inc -> Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation -> Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation -> Microsoft Corporation.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-04] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)
FireFox:
========
FF DefaultProfile: ixqmgx8f.default
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\naweriweentcofise\Profiles\ixqmgx8f.default\Profiles\ixqmgx8f.default [not found] <==== ATTENTION
FF DefaultProfile: v6xu30ay.default
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default [2019-10-28]
FF DownloadDir: F:\filmy
FF Homepage: Mozilla\Firefox\Profiles\ixqmgx8f.default -> hxxps://www.google.com/
FF Extension: (No Name) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [not found]
FF Extension: (No Name) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\extensions\sko-extension@firma.seznam.cz [not found]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\searchplugins\bing-.xml [2017-02-05]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\searchplugins\l9olaieg.xml [2017-02-27]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\searchplugins\startpageing123.xml [2017-03-27]
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\v6xu30ay.default [2019-10-28] <==== ATTENTION
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_31_0_0_108.dll [2018-09-12] (Adobe Systems Incorporated -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @4game.com/plugin -> C:\Program Files (x86)\4game\3.6.2.278\npplugin4game.dll [2018-11-02] (Innova Co S.a r.l. -> Innova Co S.a r.l.) [File not signed]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_108.dll [2018-09-12] (Adobe Systems Incorporated -> )
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.7\\npsitesafety.dll [No File]
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.301\npGoogleUpdate3.dll [2019-10-10] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.301\npGoogleUpdate3.dll [2019-10-10] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-03] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-676012942-2397387924-1880445482-1000: SkypePlugin -> C:\Users\Lukas\AppData\Local\SkypePlugin\7.31.0.56\npGatewayNpapi.dll [2017-02-03] (Microsoft Corporation -> Skype Technologies S.A.)
FF Plugin HKU\S-1-5-21-676012942-2397387924-1880445482-1000: SkypePlugin64 -> C:\Users\Lukas\AppData\Local\SkypePlugin\7.31.0.56\npGatewayNpapi-x64.dll [2017-02-03] (Microsoft Corporation -> Skype Technologies S.A.)
Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR HomePage: ChromeDefaultData -> hxxps://www.google.com/
CHR StartupUrls: ChromeDefaultData -> "hxxps://www.google.com/"
CHR DefaultSearchURL: ChromeDefaultData -> hxxp://www.ourluckysites.com/search/?type=ds&t ... earchTerms}
CHR DefaultSearchKeyword: ChromeDefaultData -> ourluckysites
CHR Profile: C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2019-10-28] <==== ATTENTION
CHR DownloadDir: E:\
CHR Extension: (Prezentace) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-10-11]
CHR Extension: (Dokumenty) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2019-10-11]
CHR Extension: (Disk Google) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-07]
CHR Extension: (YouTube) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (AVG Web TuneUp) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2019-10-11]
CHR Extension: (Vyhledávání Google) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-07]
CHR Extension: (Adobe Acrobat) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-10-11]
CHR Extension: (MSN Homepage & Bing Search Engine) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2019-10-11]
CHR Extension: (Tabulky) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-10-11]
CHR Extension: (Dokumenty Google offline) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-10-11]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-01-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-11]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2019-10-11]
CHR Extension: (Gmail) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-10-11]
CHR Extension: (Chrome Media Router) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-10-23]
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [chfdnecihphmhljaaejmgoiahnihplgn] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak] - hxxps://clients2.google.com/service/update2/crx
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\StartMenuInternet\ChromeHTML: -> C:\Program Files (x86)\Footjane\Application\chrome.exe <==== ATTENTION
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 4game-service; C:\Program Files (x86)\4game\3.6.2.278\4game-service.exe [1686008 2018-11-02] (Innova Co S.a r.l. -> Innova Co S.a r.l.) [File not signed]
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-05-04] (Advanced Micro Devices, Inc.) [File not signed]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-04-29] (Apple Inc. -> Apple Inc.)
S2 avg; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [165520 2018-10-27] (AVG Netherlands B.V. -> AVG Technologies)
R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [996928 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe [6133752 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
S3 avgm; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [165520 2018-10-27] (AVG Netherlands B.V. -> AVG Technologies)
S3 AVGSecureBrowserElevationService; C:\Program Files (x86)\AVG\Browser\Application\77.1.1833.92\elevation_service.exe [984976 2019-09-25] (AVG Technologies USA, Inc. -> AVG Technologies)
R2 AvgWscReporter; C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe [110560 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291904 2017-08-14] (Disc Soft Ltd -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [392976 2017-02-10] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2018-12-12] (Huawei Technologies Co., Ltd. -> ) [File not signed]
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2348336 2019-10-16] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3228976 2019-10-16] (Electronic Arts, Inc. -> Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-03-15] (Even Balance, Inc. -> )
R2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [344576 2014-01-22] (Qualcomm Atheros) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10803440 2018-09-28] (TeamViewer GmbH -> TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4413440 2019-03-14] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [107160 2019-02-16] (Microsoft Corporation -> Microsoft Corporation)
R2 WirelessKB850NotificationService; C:\WINDOWS\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe [473312 2017-03-20] (Wondershare Technology Co.,Ltd -> Wondershare)
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\MobileGo\DriverInstall.exe [101152 2017-06-01] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 NvContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
S3 NvContainerNetworkService; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdiox64; C:\WINDOWS\System32\drivers\amdiox64.sys [46136 2010-02-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [79488 2011-04-15] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [40064 2011-04-15] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [55936 2011-11-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R0 avgArDisk; C:\WINDOWS\System32\drivers\avgArDisk.sys [37880 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [205600 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [275232 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [210328 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [65376 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [16520 2019-10-08] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [43512 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [171784 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [111096 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [84560 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [848688 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [461216 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [236288 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [317304 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 BfLwf; C:\WINDOWS\system32\DRIVERS\bflwfx64.sys [80080 2013-11-08] (Qualcomm Atheros, Inc. -> Qualcomm Atheros, Inc.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-02-27] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-02-27] (Disc Soft Ltd -> Disc Soft Ltd)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2018-12-12] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 KillerEth; C:\WINDOWS\System32\drivers\e2xw10x64.sys [145920 2018-04-12] (Microsoft Windows -> Qualcomm Atheros, Inc.)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-02-07] (Malwarebytes Corporation -> Malwarebytes Corporation)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2018-05-04] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_2e7fa54192fe16d0\nvlddmkm.sys [16936048 2017-11-09] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48064 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
R1 sbnetsys; C:\WINDOWS\system32\DRIVERS\sbnetsys.sys [44648 2015-04-17] (Mainline Net Holdings Limited -> NT Kernel Resources)
R3 usbfilter; C:\WINDOWS\system32\DRIVERS\usbfilter.sys [61464 2000-01-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [22016 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
S3 WUDFWpdComp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [264192 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
U3 aspnet_state; no ImagePath
S3 SWDUMon; \SystemRoot\system32\DRIVERS\SWDUMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-10-28 20:09 - 2019-10-28 20:10 - 000057309 _____ C:\Users\Lukas\Downloads\FRST.txt
2019-10-28 20:07 - 2019-10-28 20:08 - 001618944 _____ (Farbar) C:\Users\Lukas\Downloads\FRST64.exe
2019-10-28 20:05 - 2019-10-28 20:05 - 001454080 _____ (Farbar) C:\Users\Lukas\Downloads\FRST.exe
2019-10-28 20:01 - 2019-10-28 20:01 - 000318352 _____ (Mozilla) C:\Users\Lukas\Downloads\Firefox Installer.exe
2019-10-28 19:48 - 2019-10-28 19:48 - 000000000 ____D C:\Users\Lukas\AppData\Roaming\Firefox
2019-10-28 19:42 - 2019-10-28 19:46 - 000000000 ____D C:\AdwCleaner
2019-10-24 18:35 - 2019-10-24 18:35 - 000000000 ___HD C:\$WINDOWS.~BT
2019-10-16 17:31 - 2019-10-16 17:31 - 000000000 ____D C:\Users\Lukas\AppData\Local\OneDrive
2019-10-11 16:45 - 2019-10-11 16:45 - 000000165 ____H C:\Users\Lukas\Documents\~$tomáš rodiče osb.xlsx
2019-10-10 16:45 - 2019-10-13 20:46 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-10-10 16:25 - 2019-10-02 12:10 - 004527072 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-10-10 16:25 - 2019-10-02 06:04 - 007519896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-10-10 16:25 - 2019-10-02 05:47 - 006564368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-10-10 16:25 - 2019-10-02 05:40 - 025857024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-10-10 16:25 - 2019-10-02 05:32 - 022735872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-10-10 16:25 - 2019-09-10 08:17 - 023862272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-10-10 16:24 - 2019-10-06 02:43 - 000783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-10-10 16:24 - 2019-10-06 02:43 - 000674304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-10-10 16:24 - 2019-10-02 12:14 - 000349216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-10-10 16:24 - 2019-10-02 12:10 - 001640376 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-10-10 16:24 - 2019-10-02 12:10 - 001616608 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-10-10 16:24 - 2019-10-02 12:08 - 002394960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2019-10-10 16:24 - 2019-10-02 12:08 - 001047568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2019-10-10 16:24 - 2019-10-02 11:53 - 004852736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-10-10 16:24 - 2019-10-02 11:53 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-10-10 16:24 - 2019-10-02 11:52 - 012835840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-10-10 16:24 - 2019-10-02 11:52 - 008627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-10-10 16:24 - 2019-10-02 11:50 - 004491264 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2019-10-10 16:24 - 2019-10-02 11:50 - 002019840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-10-10 16:24 - 2019-10-02 11:50 - 000810496 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2019-10-10 16:24 - 2019-10-02 11:49 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2019-10-10 16:24 - 2019-10-02 11:48 - 000678400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2019-10-10 16:24 - 2019-10-02 11:48 - 000625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2019-10-10 16:24 - 2019-10-02 11:48 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-10-10 16:24 - 2019-10-02 11:47 - 000957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-10-10 16:24 - 2019-10-02 11:47 - 000878592 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-10-10 16:24 - 2019-10-02 11:47 - 000488960 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-10-10 16:24 - 2019-10-02 11:46 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-10-10 16:24 - 2019-10-02 11:46 - 001289216 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-10-10 16:24 - 2019-10-02 11:46 - 000740864 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2019-10-10 16:24 - 2019-10-02 11:46 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-10-10 16:24 - 2019-10-02 11:45 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-10-10 16:24 - 2019-10-02 11:45 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2019-10-10 16:24 - 2019-10-02 09:56 - 001628488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-10-10 16:24 - 2019-10-02 09:53 - 000917816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2019-10-10 16:24 - 2019-10-02 09:52 - 002206424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2019-10-10 16:24 - 2019-10-02 09:46 - 012037120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-10-10 16:24 - 2019-10-02 09:44 - 007991296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-10-10 16:24 - 2019-10-02 09:42 - 003397120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2019-10-10 16:24 - 2019-10-02 09:42 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-10-10 16:24 - 2019-10-02 09:41 - 000901120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2019-10-10 16:24 - 2019-10-02 09:41 - 000704000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-10-10 16:24 - 2019-10-02 09:41 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-10-10 16:24 - 2019-10-02 06:21 - 002417744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2019-10-10 16:24 - 2019-10-02 06:20 - 003180080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2019-10-10 16:24 - 2019-10-02 06:19 - 000374584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-10-10 16:24 - 2019-10-02 06:05 - 000092472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2019-10-10 16:24 - 2019-10-02 06:04 - 002774120 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-10-10 16:24 - 2019-10-02 06:04 - 001098064 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-10-10 16:24 - 2019-10-02 06:04 - 001035040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-10-10 16:24 - 2019-10-02 06:04 - 000494096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-10-10 16:24 - 2019-10-02 06:03 - 000778024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-10-10 16:24 - 2019-10-02 06:03 - 000193040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-10-10 16:24 - 2019-10-02 06:02 - 004404720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-10-10 16:24 - 2019-10-02 06:02 - 001219896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-10-10 16:24 - 2019-10-02 06:02 - 001027384 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-10-10 16:24 - 2019-10-02 06:02 - 000568104 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-10-10 16:24 - 2019-10-02 06:02 - 000210448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2019-10-10 16:24 - 2019-10-02 06:02 - 000194352 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 002468048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 001288928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 000723728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 000722744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 000527160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2019-10-10 16:24 - 2019-10-02 06:01 - 000491208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 000439504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 000435728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 000159864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2019-10-10 16:24 - 2019-10-02 06:00 - 009080632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-10-10 16:24 - 2019-10-02 06:00 - 002570824 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-10-10 16:24 - 2019-10-02 06:00 - 002371504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-10-10 16:24 - 2019-10-02 06:00 - 000433168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-10-10 16:24 - 2019-10-02 06:00 - 000248880 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2019-10-10 16:24 - 2019-10-02 06:00 - 000209936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-10-10 16:24 - 2019-10-02 06:00 - 000039032 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll
2019-10-10 16:24 - 2019-10-02 05:59 - 001784696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-10-10 16:24 - 2019-10-02 05:59 - 001459120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-10-10 16:24 - 2019-10-02 05:59 - 001260776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-10-10 16:24 - 2019-10-02 05:59 - 001141504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-10-10 16:24 - 2019-10-02 05:59 - 000983936 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-10-10 16:24 - 2019-10-02 05:59 - 000930616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2019-10-10 16:24 - 2019-10-02 05:59 - 000604984 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-10-10 16:24 - 2019-10-02 05:59 - 000260800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-10-10 16:24 - 2019-10-02 05:49 - 000550512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2019-10-10 16:24 - 2019-10-02 05:49 - 000434728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-10-10 16:24 - 2019-10-02 05:49 - 000385000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-10-10 16:24 - 2019-10-02 05:49 - 000191800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-10-10 16:24 - 2019-10-02 05:49 - 000146712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2019-10-10 16:24 - 2019-10-02 05:48 - 002331480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-10-10 16:24 - 2019-10-02 05:48 - 001990056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-10-10 16:24 - 2019-10-02 05:48 - 000666248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-10-10 16:24 - 2019-10-02 05:48 - 000380216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-10-10 16:24 - 2019-10-02 05:48 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NtlmShared.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 004789944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 002260928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 001979752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 001380312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 001130784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 001020280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 000829752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2019-10-10 16:24 - 2019-10-02 05:47 - 000607248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 000129088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2019-10-10 16:24 - 2019-10-02 05:38 - 022016000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-10-10 16:24 - 2019-10-02 05:32 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-10-10 16:24 - 2019-10-02 05:31 - 008189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-10-10 16:24 - 2019-10-02 05:31 - 004388864 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-10-10 16:24 - 2019-10-02 05:30 - 019385856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-10-10 16:24 - 2019-10-02 05:30 - 003403264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-10-10 16:24 - 2019-10-02 05:29 - 003392000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-10-10 16:24 - 2019-10-02 05:29 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-10-10 16:24 - 2019-10-02 05:29 - 000038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 007573504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 004771840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 002929152 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 001827328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-10-10 16:24 - 2019-10-02 05:27 - 005769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-10-10 16:24 - 2019-10-02 05:27 - 003554304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2019-10-10 16:24 - 2019-10-02 05:27 - 002126336 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2019-10-10 16:24 - 2019-10-02 05:27 - 001308160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2019-10-10 16:24 - 2019-10-02 05:27 - 000929280 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-10-10 16:24 - 2019-10-02 05:27 - 000487936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-10-10 16:24 - 2019-10-02 05:27 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-10-10 16:24 - 2019-10-02 05:27 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-10-10 16:24 - 2019-10-02 05:27 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-10-10 16:24 - 2019-10-02 05:26 - 000908800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2019-10-10 16:24 - 2019-10-02 05:26 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-10-10 16:24 - 2019-10-02 05:26 - 000468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-10-10 16:24 - 2019-10-02 05:26 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-10-10 16:24 - 2019-10-02 05:26 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-10-10 16:24 - 2019-10-02 05:26 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 003091456 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 002738688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 002179072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 001862656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 001295360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2019-10-10 16:24 - 2019-10-02 05:24 - 002379264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-10-10 16:24 - 2019-10-02 05:24 - 001563648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-10-10 16:24 - 2019-10-02 05:24 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-10-10 16:24 - 2019-10-02 05:24 - 000857088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2019-10-10 16:24 - 2019-10-02 05:24 - 000582144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2019-10-10 16:24 - 2019-10-02 05:24 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2019-10-10 16:24 - 2019-10-02 05:23 - 004938240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-10-10 16:24 - 2019-10-02 05:23 - 004517376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-10-10 16:24 - 2019-10-02 05:23 - 002166272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-10-10 16:24 - 2019-10-02 05:23 - 001724928 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-10-10 16:24 - 2019-10-02 05:23 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-10-10 16:24 - 2019-10-02 05:23 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2019-10-10 16:24 - 2019-10-02 05:23 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-10-10 16:24 - 2019-10-02 05:23 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-10-10 16:24 - 2019-10-02 05:23 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-10-10 16:24 - 2019-10-02 05:22 - 001418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2019-10-10 16:24 - 2019-10-02 05:22 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-10-10 16:24 - 2019-10-02 05:22 - 000545280 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-10-10 16:24 - 2019-10-02 05:22 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-10-10 16:24 - 2019-10-02 05:22 - 000506368 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-10-10 16:24 - 2019-10-02 05:22 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-10-10 16:24 - 2019-10-02 05:22 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-10-10 16:24 - 2019-10-02 05:22 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-10-10 16:24 - 2019-10-02 04:05 - 000001312 _____ C:\WINDOWS\system32\tcbres.wim
2019-10-10 16:24 - 2019-09-19 08:02 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-10-10 16:24 - 2019-09-13 12:03 - 000586680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2019-10-10 16:24 - 2019-09-13 12:02 - 004040008 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-10-10 16:24 - 2019-09-13 11:57 - 021409376 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-10-10 16:24 - 2019-09-13 11:57 - 001517480 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-10-10 16:24 - 2019-09-13 11:57 - 001375456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-10-10 16:24 - 2019-09-13 11:56 - 000341392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2019-10-10 16:24 - 2019-09-13 11:47 - 006588416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-10-10 16:24 - 2019-09-13 11:44 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2019-10-10 16:24 - 2019-09-13 11:44 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2019-10-10 16:24 - 2019-09-13 11:41 - 001644032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2019-10-10 16:24 - 2019-09-13 11:41 - 001127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2019-10-10 16:24 - 2019-09-13 11:40 - 003614208 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-10-10 16:24 - 2019-09-13 11:40 - 001725952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-10-10 16:24 - 2019-09-13 11:40 - 000806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2019-10-10 16:24 - 2019-09-13 11:40 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2019-10-10 16:24 - 2019-09-13 11:40 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2019-10-10 16:24 - 2019-09-13 11:40 - 000351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe
2019-10-10 16:24 - 2019-09-13 11:40 - 000326656 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2019-10-10 16:24 - 2019-09-13 11:39 - 002085888 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2019-10-10 16:24 - 2019-09-13 11:39 - 001262592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-10-10 16:24 - 2019-09-13 11:39 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2019-10-10 16:24 - 2019-09-13 10:18 - 000470512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2019-10-10 16:24 - 2019-09-13 10:17 - 001026280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-10-10 16:24 - 2019-09-13 10:16 - 001320128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-10-10 16:24 - 2019-09-13 10:15 - 020400656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-10-10 16:24 - 2019-09-13 10:15 - 003701184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-10-10 16:24 - 2019-09-13 10:05 - 005659136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-10-10 16:24 - 2019-09-13 10:01 - 001300480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2019-10-10 16:24 - 2019-09-13 10:01 - 000622592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2019-10-10 16:24 - 2019-09-13 10:00 - 002882048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-10-10 16:24 - 2019-09-13 10:00 - 001530880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-10-10 16:24 - 2019-09-13 09:59 - 002017280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2019-10-10 16:24 - 2019-09-13 05:58 - 007900880 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2019-10-10 16:24 - 2019-09-13 05:58 - 001613096 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2019-10-10 16:24 - 2019-09-13 05:56 - 005821448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2019-10-10 16:24 - 2019-09-13 05:56 - 001299472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2019-10-10 16:24 - 2019-09-13 05:49 - 005627280 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-10-10 16:24 - 2019-09-13 05:49 - 000274792 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2019-10-10 16:24 - 2019-09-13 05:48 - 003290584 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-10-10 16:24 - 2019-09-13 05:48 - 001659704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2019-10-10 16:24 - 2019-09-13 05:48 - 001363536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2019-10-10 16:24 - 2019-09-13 05:48 - 000722744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-10-10 16:24 - 2019-09-13 05:48 - 000710240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-10-10 16:24 - 2019-09-13 05:48 - 000170296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-10-10 16:24 - 2019-09-13 05:47 - 007445856 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-10-10 16:24 - 2019-09-13 05:47 - 001947168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2019-10-10 16:24 - 2019-09-13 05:47 - 000713272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2019-10-10 16:24 - 2019-09-13 05:47 - 000275768 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-10-10 16:24 - 2019-09-13 05:47 - 000081720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-10-10 16:24 - 2019-09-13 05:47 - 000039736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2019-10-10 16:24 - 2019-09-13 05:36 - 002478152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-10-10 16:24 - 2019-09-13 05:36 - 001252152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2019-10-10 16:24 - 2019-09-13 05:35 - 006052272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-10-10 16:24 - 2019-09-13 05:35 - 001559272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2019-10-10 16:24 - 2019-09-13 05:27 - 016598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-10-10 16:24 - 2019-09-13 05:24 - 013878784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-10-10 16:24 - 2019-09-13 05:23 - 000149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-10-10 16:24 - 2019-09-13 05:21 - 000153600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-10-10 16:24 - 2019-09-13 05:21 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2019-10-10 16:24 - 2019-09-13 05:21 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2019-10-10 16:24 - 2019-09-13 05:21 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpnotify.exe
2019-10-10 16:24 - 2019-09-13 05:21 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2019-10-10 16:24 - 2019-09-13 05:20 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2019-10-10 16:24 - 2019-09-13 05:20 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-10-10 16:24 - 2019-09-13 05:20 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2019-10-10 16:24 - 2019-09-13 05:20 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2019-10-10 16:24 - 2019-09-13 05:19 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-10-10 16:24 - 2019-09-13 05:18 - 000567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-10-10 16:24 - 2019-09-13 05:18 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2019-10-10 16:24 - 2019-09-13 05:17 - 003148288 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2019-10-10 16:24 - 2019-09-13 05:17 - 000761344 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-10-10 16:24 - 2019-09-13 05:17 - 000267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-10-10 16:24 - 2019-09-13 05:17 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2019-10-10 16:24 - 2019-09-13 05:17 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2019-10-10 16:24 - 2019-09-13 05:17 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2019-10-10 16:24 - 2019-09-13 05:16 - 000910336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2019-10-10 16:24 - 2019-09-13 05:16 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 002913792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 001023488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 000517120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 000504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\DavSyncProvider.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2019-10-10 16:24 - 2019-09-13 05:14 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-10-10 16:24 - 2019-09-13 05:14 - 001809408 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-10-10 16:24 - 2019-09-13 05:14 - 001222144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-10-10 16:24 - 2019-09-13 05:14 - 000848384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2019-10-10 16:24 - 2019-09-13 05:14 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-10-10 16:24 - 2019-09-13 05:14 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-10-10 16:24 - 2019-09-13 05:14 - 000257536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2019-10-10 16:24 - 2019-09-13 05:13 - 002893312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2019-10-10 16:24 - 2019-09-13 05:13 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2019-10-10 16:24 - 2019-09-13 05:13 - 001154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-10-10 16:24 - 2019-09-13 05:13 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2019-10-10 16:24 - 2019-09-13 05:13 - 000910848 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-10-10 16:24 - 2019-09-13 05:13 - 000845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2019-10-10 16:24 - 2019-09-13 05:13 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-10-10 16:24 - 2019-09-13 05:12 - 001634304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-10-10 16:24 - 2019-09-13 05:12 - 000627712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2019-10-10 16:24 - 2019-09-13 05:12 - 000372736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2019-10-10 16:24 - 2019-09-13 05:12 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2019-10-10 16:24 - 2019-09-13 05:11 - 000979456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2019-10-10 16:24 - 2019-09-13 05:11 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-10-10 16:24 - 2019-09-13 05:11 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2019-10-10 16:24 - 2019-09-13 05:11 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2019-10-10 16:24 - 2019-09-13 05:11 - 000536576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-10-10 16:24 - 2019-09-13 05:11 - 000346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DavSyncProvider.dll
2019-10-10 16:24 - 2019-09-10 08:16 - 019525632 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-10-10 16:24 - 2019-09-10 07:56 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-10-10 16:24 - 2019-09-10 02:20 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-10-10 16:24 - 2019-09-10 02:20 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2019-10-10 16:24 - 2019-08-13 15:42 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-10-10 16:23 - 2019-10-11 17:53 - 000002332 _____ C:\Users\Lukas\Desktop\Google Chrome.lnk
2019-10-08 16:27 - 2019-10-08 16:27 - 000355760 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2019-10-08 16:27 - 2019-10-08 16:27 - 000236288 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys
2019-10-08 16:27 - 2019-10-08 16:27 - 000171784 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2019-10-05 16:07 - 2019-10-08 16:27 - 000052376 _____ () C:\WINDOWS\system32\Drivers\staport.sys
2019-09-29 14:39 - 2019-03-28 10:11 - 000029232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2019-09-29 14:39 - 2019-03-28 10:11 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100_clr0400.dll
2019-09-29 14:39 - 2019-03-28 10:09 - 000032816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2019-09-29 14:39 - 2019-03-28 10:09 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100_clr0400.dll
2019-09-29 14:39 - 2019-03-28 07:35 - 000772176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_clr0400.dll
2019-09-29 14:39 - 2019-03-28 07:35 - 000702400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase_clr0400.dll
2019-09-29 14:39 - 2019-03-28 07:35 - 000622832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140_clr0400.dll
2019-09-29 14:39 - 2019-03-28 07:35 - 000433448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140_clr0400.dll
2019-09-29 14:39 - 2019-03-28 07:35 - 000087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140_clr0400.dll
2019-09-29 14:39 - 2019-03-28 07:35 - 000083768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcruntime140_clr0400.dll
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-10-28 20:09 - 2017-03-21 09:38 - 000000000 ____D C:\FRST
2019-10-28 20:06 - 2016-11-18 11:12 - 000000000 ____D C:\Users\Lukas\AppData\LocalLow\Mozilla
2019-10-28 20:06 - 2015-02-08 14:36 - 000000000 ____D C:\Users\Lukas\AppData\Roaming\Mozilla
2019-10-28 20:06 - 2015-02-08 14:36 - 000000000 ____D C:\ProgramData\Mozilla
2019-10-28 20:04 - 2016-11-17 23:28 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-10-28 20:04 - 2015-02-08 14:36 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-10-28 19:53 - 2018-05-23 05:27 - 000006172 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-10-28 19:53 - 2018-04-12 16:50 - 000851822 _____ C:\WINDOWS\system32\perfh005.dat
2019-10-28 19:53 - 2018-04-12 16:50 - 000192632 _____ C:\WINDOWS\system32\perfc005.dat
2019-10-28 19:49 - 2015-12-30 10:01 - 000001312 _____ C:\Users\Lukas\AppData\Local\FSDownloader.nast
2019-10-28 19:49 - 2015-07-25 23:37 - 000000000 ____D C:\ProgramData\Origin
2019-10-28 19:49 - 2015-02-08 17:51 - 000000000 ____D C:\Program Files (x86)\Steam
2019-10-28 19:47 - 2018-05-23 05:35 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-10-28 19:47 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-10-28 19:47 - 2017-09-06 13:29 - 000000000 ____D C:\ProgramData\NVIDIA
2019-10-28 19:46 - 2018-05-23 05:28 - 000000000 ____D C:\Users\Lukas
2019-10-28 19:46 - 2018-04-11 22:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-10-28 19:46 - 2017-03-01 12:14 - 000000000 ____D C:\ProgramData\BSD
2019-10-28 19:43 - 2018-05-23 05:25 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-10-28 19:33 - 2018-05-14 19:41 - 000000000 ___DC C:\WINDOWS\Panther
2019-10-28 17:32 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-10-28 17:24 - 2018-09-13 21:31 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2019-10-28 17:24 - 2018-05-23 05:35 - 000003432 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA1d12ebc6be85ef3
2019-10-28 17:24 - 2018-05-23 05:35 - 000003262 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2019-10-28 17:24 - 2018-05-23 05:35 - 000003208 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore1d12ebc6bce6df2
2019-10-28 17:24 - 2018-05-23 05:35 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-676012942-2397387924-1880445482-1000
2019-10-27 16:05 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-10-27 15:53 - 2017-02-09 21:12 - 000000000 ____D C:\Users\Lukas\AppData\Local\CrashDumps
2019-10-24 18:26 - 2015-12-30 10:01 - 000010705 _____ C:\Users\Lukas\AppData\Local\FSDownloader.err
2019-10-23 18:31 - 2018-05-23 05:28 - 000002399 _____ C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-10-23 18:31 - 2016-05-18 05:04 - 000000000 ___RD C:\Users\Lukas\OneDrive
2019-10-22 22:52 - 2015-02-07 18:44 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-10-22 22:52 - 2015-02-07 18:44 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-10-22 18:56 - 2017-02-24 09:58 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2019-10-18 16:13 - 2018-04-12 00:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-10-16 17:37 - 2019-07-09 16:21 - 000011434 _____ C:\Users\Lukas\Desktop\střecha veletov.xlsx
2019-10-16 17:33 - 2019-09-26 21:50 - 000000000 ____D C:\Users\Lukas\Desktop\rozpočty
2019-10-16 17:25 - 2015-07-25 23:37 - 000000000 ____D C:\Program Files (x86)\Origin
2019-10-16 17:24 - 2019-04-26 15:46 - 000003826 _____ C:\WINDOWS\system32\Tasks\AVG Secure Browser Heartbeat Task (Hourly)
2019-10-16 17:24 - 2019-04-26 15:46 - 000003242 _____ C:\WINDOWS\system32\Tasks\AVG Secure Browser Heartbeat Task (Logon)
2019-10-16 17:24 - 2018-10-27 15:02 - 000002375 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Secure Browser.lnk
2019-10-16 17:24 - 2018-10-27 15:02 - 000002340 _____ C:\Users\Public\Desktop\AVG Secure Browser.lnk
2019-10-13 20:46 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF
2019-10-13 20:30 - 2019-07-27 16:50 - 000010795 _____ C:\Users\Lukas\Documents\tomáš rodiče osb.xlsx
2019-10-13 16:53 - 2018-02-08 20:43 - 000000000 ____D C:\Users\Lukas\Desktop\vyuctovaní 2018
2019-10-11 17:25 - 2018-04-03 19:24 - 000000803 _____ C:\Users\Lukas\Desktop\Stellaris.lnk
2019-10-10 16:48 - 2016-05-19 19:45 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-10-10 16:47 - 2018-05-23 05:25 - 000411536 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-10-10 16:47 - 2016-06-30 18:23 - 000000000 ___RD C:\Users\Lukas\3D Objects
2019-10-10 16:47 - 2016-02-13 14:12 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-10-10 16:45 - 2018-04-12 00:38 - 000017800 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2019-10-10 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-10-10 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2019-10-10 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-10-10 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2019-10-10 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-10-10 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-10-10 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-10-10 16:45 - 2018-04-11 22:04 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-10-10 16:45 - 2015-02-07 18:44 - 000000000 ____D C:\Program Files (x86)\Google
2019-10-10 16:23 - 2017-03-01 12:51 - 000000000 ____D C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
2019-10-10 16:19 - 2016-05-19 19:45 - 127230528 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-10-08 16:27 - 2019-02-02 12:42 - 000275232 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys
2019-10-08 16:27 - 2019-01-27 03:10 - 000210328 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsh.sys
2019-10-08 16:27 - 2019-01-27 03:10 - 000065376 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniv.sys
2019-10-08 16:27 - 2019-01-27 03:10 - 000037880 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArDisk.sys
2019-10-08 16:27 - 2018-10-25 20:17 - 000043512 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys
2019-10-08 16:27 - 2018-07-23 19:34 - 000016520 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgElam.sys
2019-10-08 16:27 - 2018-04-12 00:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-10-08 16:27 - 2017-11-27 21:14 - 000205600 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2019-10-08 16:27 - 2017-04-22 16:33 - 000848688 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2019-10-08 16:27 - 2017-04-22 16:33 - 000461216 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2019-10-08 16:27 - 2017-04-22 16:33 - 000317304 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2019-10-08 16:27 - 2017-04-22 16:33 - 000111096 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2019-10-08 16:27 - 2017-04-22 16:33 - 000084560 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2019-09-29 14:37 - 2018-01-18 07:04 - 000000000 ____D C:\Users\Lukas\AppData\Local\Packages
==================== Files in the root of some directories ========
2017-03-13 08:15 - 2017-05-11 19:36 - 000011188 _____ () C:\Program Files (x86)\metadata
2017-03-01 12:53 - 2017-03-01 12:53 - 000000046 _____ () C:\Users\Lukas\AppData\Roaming\Camdata.ini
2017-03-01 12:53 - 2017-03-01 12:53 - 000000408 _____ () C:\Users\Lukas\AppData\Roaming\CamLayout.ini
2017-03-01 12:53 - 2017-03-01 12:53 - 000000408 _____ () C:\Users\Lukas\AppData\Roaming\CamShapes.ini
2017-03-01 12:53 - 2017-03-01 12:53 - 000004536 _____ () C:\Users\Lukas\AppData\Roaming\CamStudio.cfg
2017-03-01 12:51 - 2017-03-01 12:51 - 000000096 _____ () C:\Users\Lukas\AppData\Roaming\version2.xml
2017-03-16 11:48 - 2017-03-16 11:48 - 000000000 _____ () C:\Users\Lukas\AppData\Local\Driver_LOM_8161Present.flag
2015-12-30 10:01 - 2019-10-24 18:26 - 000010705 _____ () C:\Users\Lukas\AppData\Local\FSDownloader.err
2015-12-30 10:01 - 2019-10-28 19:49 - 000001312 _____ () C:\Users\Lukas\AppData\Local\FSDownloader.nast
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Ran by Lukas (administrator) on LUKAS-PC (MSI MS-7693) (28-10-2019 20:09:23)
Running from C:\Users\Lukas\Downloads
Loaded Profiles: Lukas (Available Profiles: Lukas)
Platform: Windows 10 Home Version 1803 17134.1069 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(AVG Netherlands B.V. -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.4.155.333\AVGBrowserCrashHandler.exe
(AVG Netherlands B.V. -> AVG Technologies) C:\Program Files (x86)\AVG\Browser\Update\1.4.155.333\AVGBrowserCrashHandler64.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe
(Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe
(Disc Soft Ltd -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Disc Soft Ltd -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Even Balance, Inc. -> ) C:\WINDOWS\SysWOW64\PnkBstrA.exe
(Facebook, Inc. -> Facebook) [File not signed] C:\Users\Lukas\AppData\Local\Facebook\Games\FacebookGameroom.exe
(Facebook, Inc. -> The CefSharp Authors) [File not signed] C:\Users\Lukas\AppData\Local\Facebook\Games\Facebook Gameroom Browser.exe
(Gaijin Network LTD -> Gaijin Entertainment) C:\Users\Lukas\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe
(Google Inc -> Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Google Inc -> Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Innova Co S.a r.l. -> Innova Co S.a r.l.) [File not signed] C:\Program Files (x86)\4game\3.6.2.278\4game-service.exe
(Malwarebytes Inc -> Malwarebytes) G:\marvel ,DC\AdwCleaner.exe
(Microsoft Corporation -> © 2015 Microsoft Corporation) C:\Users\Lukas\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Lukas\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\WINDOWS\System32\WirelessKB850NotificationService.exe
(Microsoft Corporation -> Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.EXE
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19072.18011.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\SysWOW64\wbem\WmiPrvSE.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) [File not signed] C:\Program Files (x86)\Firefox\Firefox.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Qualcomm Atheros) [File not signed] C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Samsung Electronics CO., LTD. -> ) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(University of California, Berkeley -> Charity Engine) C:\Program Files (x86)\BOINC\boinctray.exe
(VIA Technologies, Inc.) [File not signed] C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\MobileGo\MobileGoService.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [MBCfg64] => C:\Windows\system32\MBCfg64.dll [41088 2014-02-21] (Creative Technology Ltd -> Creative Technology Ltd.)
HKLM\...\Run: [VIAxHCUtl] => C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe [331776 2011-07-12] (VIA Technologies, Inc.) [File not signed]
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [462712 2012-03-09] (Samsung Electronics CO., LTD. -> )
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\nvspcap64.dll [1923008 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [316336 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8845528 2000-01-01] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-05-07] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [Sound Blaster Cinema 2] => C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe [1440768 2014-02-24] (Creative Technology Ltd) [File not signed]
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.) [File not signed]
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-03-07] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [boinctray] => C:\Program Files (x86)\BOINC\boinctray.exe [71312 2014-03-07] (University of California, Berkeley -> Charity Engine)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-06-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKLM\...\Policies\Explorer: [NoInstrumentation] 1
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3211040 2019-10-02] (Valve -> Valve Corporation)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3115792 2019-10-16] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23819304 2017-03-21] (Google Inc -> Google)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [BingSvc] => C:\Users\Lukas\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (Microsoft Corporation -> © 2015 Microsoft Corporation)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [World of Warships] => C:\Games\World_of_Warships\WargamingGameUpdater.exe [3140384 2018-01-25] (Wargaming PCL -> Wargaming.net)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4836032 2017-08-14] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-05-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [721504 2015-09-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [Gaijin.Net Updater] => C:\Users\Lukas\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2123008 2019-09-20] (Gaijin Network LTD -> Gaijin Entertainment)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [SRDownloader] => G:\marvel ,DC\FSDownloader.exe [1537024 2019-06-08] (File-share.top) [File not signed]
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Policies\system: [Shell] <==== ATTENTION
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\MountPoints2: {d62cd0d9-d38d-11e7-a610-d8cb8a13fec7} - "E:\setup.exe"
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\MountPoints2: {def9fec5-a11b-11e7-a5f6-d8cb8a13fec7} - "E:\setup.exe"
HKLM\...\Providers\l9olaieg: C:\Program Files (x86)\Khagetheputain Renew\local64spl.dll <==== ATTENTION
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.70\Installer\chrmstp.exe [2019-10-22] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{48F69C39-1356-4A7B-A899-70E3539D4982}] -> C:\Program Files (x86)\AVG\Browser\Application\77.1.1833.92\Installer\chrmstp.exe [2019-10-16] (AVG Technologies USA, Inc. -> AVG Technologies)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MobileGo Service.lnk [2017-12-18]
ShortcutTarget: MobileGo Service.lnk -> C:\Program Files (x86)\Wondershare\MobileGo\MobileGoService.exe (Wondershare Technology Co.,Ltd -> Wondershare)
Startup: C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2018-02-14]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\Lukas\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook, Inc. -> Facebook) [File not signed]
Startup: C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\tmp8B80.tmp.vbs [2015-11-26] ()
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {00C68D1E-0792-4737-ABE6-11A23C0E148C} - System32\Tasks\GoogleUpdateTaskMachineUA1d08feffd8759fd => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {057F0FDB-4D54-433E-B0E7-DA7189E9A45D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [1540544 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {078F5A49-EB5F-47D1-8AAC-D7DB43920F91} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {08398CB9-4B31-4A24-8B44-EB9BB625BA92} - System32\Tasks\GoogleUpdateTaskMachineUA1d0bf8240b41a2d => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {0A3ADA6A-7D6B-48BE-B3EE-7CAFCB01D806} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {0AB50D89-FFF4-45DA-A27F-F78224C73B18} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {0DCD5721-E663-4739-8799-D538A118462C} - System32\Tasks\Khagetheputain Renew => C:\Program Files (x86)\Hubishrwoy\danudle.exe
Task: {0DF81F83-AAE4-4D9D-AD21-1C085FB4F3CD} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0F2160CC-1C14-402D-AD23-A12D04C235E8} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {14141500-8981-4403-B402-EA338C0793AC} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {160FF8F5-CC06-4540-9129-09EE6E5519F1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {166C21CD-A7AE-44C6-9267-F23A9BD448EF} - System32\Tasks\GoogleUpdateTaskMachineUA1d0f1cdabb0a60b => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {1AC7B678-A9D3-4A29-92DC-D8F4EBF554F7} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {1CEA203A-C150-4652-AABB-7ACA3A05E166} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1D16E514-8B2B-401C-A57A-94F5BDE2C6C6} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [947136 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1E30E266-381A-446D-8258-14AA8981822C} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {1FD4545D-449E-4498-A28F-6A70BBB6E717} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {21B0555E-5B6E-4A33-8B94-554BA363328C} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {23BDB7CB-960B-44D3-AE0C-CF01B7DBFB52} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1905072 2019-09-20] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {2855507F-5693-4716-8CFD-A9C7EC3608E1} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {300BD167-058E-4DF4-A7BE-2E53BB8E2972} - System32\Tasks\Opera scheduled Autoupdate 1447089322 => C:\Program Files (x86)\Opera\launcher.exe [1139800 2018-09-13] (Opera Software AS -> Opera Software)
Task: {31BE7BED-2F8C-44D1-BD22-11E99C2B41D6} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {331DDBCD-B400-4A52-8AA3-1827C9BCD258} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {39258C28-7A3C-4300-A3DC-4E16322E23F7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {3AEA29CC-B5AD-4AD2-BC6D-909CC4F0BB1C} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {3D4E9D09-C002-4945-AC40-392F521B8371} - System32\Tasks\Milimili => C:\Program Files (x86)\MIO\MIO.exe [282168 2017-05-17] (Tencent Technology(Shenzhen) Company Limited -> ) <==== ATTENTION
Task: {41E30C1E-4367-4961-83E7-F77ACA6B8A7D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {44043342-7AEF-45A6-BE72-1C5E0973F9B7} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [651200 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {474D443B-B2A3-4499-A248-66AC6D63CC22} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [3981232 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {4767975C-6E0E-4FAA-8A88-B2977101B326} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {478A9481-F90E-4304-A5F6-68A3C6FACA5E} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {4D624449-4D60-4D19-9387-2E5BF8C036BD} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {50FC92D3-BD00-47CB-A315-A89F04ED71E1} - System32\Tasks\GoogleUpdateTaskMachineCore1d0f1cdab88d226 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {56B0A61C-507F-433D-954C-C486D2189B72} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {5A1966A9-CEB3-41A9-AE16-6BC5ABAD319F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {614E6F12-9484-46EE-9A73-6D7224A2D4B4} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [436160 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6482D3E7-3339-4124-B13F-E53C041CFA06} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {656F2A16-EFDE-4862-8AFD-D8B5E81C281C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {65F86154-AB5D-4337-8D93-BAF90FA4D306} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1670432 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {663E99B4-CA4D-4E7C-91C1-EABB63BABB64} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {66F06E9E-DF0A-433D-83B5-C509AEC75A95} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {6703186A-0465-4C3E-A08A-443207902793} - System32\Tasks\GoogleUpdateTaskMachineUA1d12ebc6be85ef3 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {69D2C974-CF78-415C-8191-C7DC384676E6} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7910D104-F17E-49AB-8776-6C77A50BAC04} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2018-09-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {7A837A76-486D-42A1-97E8-360C058D8954} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {7C8C0D84-7FDF-4498-A416-73AD7EA30569} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {7DB680EE-23B1-48F0-9859-CDA2BEC008FB} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2227488 2015-12-09] (Microsoft Corporation -> Microsoft)
Task: {82468688-DA9F-4710-B706-424D84B066D0} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {85175350-6DD5-4C07-ABAB-38D7F203636C} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {85780FD9-7FC6-440E-B945-27134F55C731} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {863E957B-FB85-4851-BDDB-29304749D0CD} - System32\Tasks\AVG Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [1873000 2019-09-25] (AVG Technologies USA, Inc. -> AVG Technologies)
Task: {883BFE7D-F5FC-4F29-B091-38E4C517B2FD} - System32\Tasks\AVGUpdateTaskMachineCore => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [165520 2018-10-27] (AVG Netherlands B.V. -> AVG Technologies)
Task: {897F1BF5-3093-47B4-B81B-DCD2D9897417} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_108_Plugin.exe [1454080 2018-09-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {8A047119-D9E5-477C-B68D-D5DA2A5D8150} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {973F4372-6F08-4918-8421-4E9AB460F9B7} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {98C3B48E-7621-455F-A8EE-90C73D02E404} - System32\Tasks\AVG Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVG\Browser\Application\AVGBrowser.exe [1873000 2019-09-25] (AVG Technologies USA, Inc. -> AVG Technologies)
Task: {99A527D5-9275-472A-9145-E6AE919E91E4} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {99FFD4B3-E3F9-4747-9619-D3070128EA7D} - System32\Tasks\AVGUpdateTaskMachineUA => C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [165520 2018-10-27] (AVG Netherlands B.V. -> AVG Technologies)
Task: {9AE63F0F-455B-4671-B91D-FC96318A4D32} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2212128 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {9F51F8E6-34D8-4E87-AE46-DCC8FF65A6CA} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {AC1769AE-9049-4FAA-BCA1-EF24AE7E0B26} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [651200 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B50B0A88-6F32-4525-A344-20D1804D3764} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {B59AA759-2158-4CEA-A134-4EFB287168F1} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {B65417F6-37D2-4862-84FE-ADD7DD7BA31B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {BBC89AE6-9F6E-45EF-8F63-55A8B55BC2DB} - System32\Tasks\{1A6294B2-88B2-4000-982C-50EE66BDD741} => C:\WINDOWS\system32\pcalua.exe -a "F:\intuix_cd\Intuix CD\setup.exe" -d "F:\intuix_cd\Intuix CD"
Task: {C5110754-6125-4583-93E9-90A2E8B93F9B} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1670432 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {C68AFC55-BC6B-4932-8422-FDCAE9D0228E} - System32\Tasks\GoogleUpdateTaskMachineCore1d0e311c2edf531 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {C79F4485-F979-4998-A686-7527DFE38288} - System32\Tasks\{E9D3D202-8BE7-4283-9C8E-DB1ADD4A305D} => C:\Windows\system32\pcalua.exe -a K:\_AUTORUN\AUTORUN.EXE -d K:\
Task: {C8440877-31C2-4D5A-B13D-B78D1A784C64} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {CE403273-6ABC-4EDB-B60E-418EE36DE211} - System32\Tasks\{D082DED7-9F54-4072-B23C-9015685838FF} => C:\WINDOWS\system32\pcalua.exe -a "F:\Program Files (x86)\Mafia I - The City of Lost Heaven\Game.exe" -d "F:\Program Files (x86)\Mafia I - The City of Lost Heaven"
Task: {D6CA3431-FF1A-4CB8-9146-6B78F0BBF8E6} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {D6F88AA6-B7B7-4C2D-BFD8-16DFDE83FA22} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2212128 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {D99CF7B4-C34D-47D3-9CD0-C486F7CE1434} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DDDA9FC3-1F1A-4C8C-A95A-47E751E16E56} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DE10E964-9B25-4F6E-9EDC-CD783AF08FE4} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [722880 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DEE2560C-3FA2-499E-8DAF-184D35357BCB} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {E140E31A-0C7F-4FFA-89E9-C6D582D94CC7} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [722880 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E55F4541-8AA4-486D-A31F-8D7584FF968D} - System32\Tasks\GoogleUpdateTaskMachineCore1d08feffd709d58 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {E7DB25D7-9344-4C16-B621-DE4DA8BD66B4} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {E81AB3AC-3816-4EBE-A8D5-0C27174B539B} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E95DA03C-4020-4063-B2FC-DF9CC9D202BD} - System32\Tasks\GoogleUpdateTaskMachineCore1d0bf824092886a => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {EF259B98-F640-49BA-8E8A-3ACAE1C31C5F} - System32\Tasks\{91840007-F1F0-480C-8352-3A5360385E8C} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Railroad Tycoon 3\UNINSTX.EXE"
Task: {EF7CE8FE-FF1D-4CE4-98B5-AEEE09AF4843} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {FD539483-AC5F-43E5-A5A4-CBB51614FEBE} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {FD77CB7B-62D4-4956-841B-D5C6D9E7F315} - System32\Tasks\GoogleUpdateTaskMachineCore1d12ebc6bce6df2 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d08feffd709d58.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0bf824092886a.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0e311c2edf531.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0f1cdab88d226.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d08feffd8759fd.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0bf8240b41a2d.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0f1cdabb0a60b.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 127.0.0.1 validation.sls.microsoft.com
Tcpip\Parameters: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{0c602eed-9ac2-4542-ac7f-b6924786abc0}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{65eee1d5-a9d8-425b-8d5e-4166b6418b14}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{9226fc84-2a17-4d77-8b05-e13aee4900e5}: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{9335ad66-4c3b-44d6-8b35-4cf661d0f1d3}: [DhcpNameServer] 172.20.10.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617912&ResetID=132151946241391219&GUID=09B1574E-8886-4A52-9C34-8AE3E62B20AA
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {0EDBD3F4-E096-4846-B9DE-D691BA3103C6} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {1C50BAAC-C45F-46AA-B7B2-79617F444A02} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {21B2B49F-F4DA-49CE-A9FC-C3EDE1E86455} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {431AAD9A-2776-4129-A644-3F9F151176C4} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {76DEFAE6-09B2-40B2-8F8A-5A6A5D5CE4EB} URL = hxxps://search.yahoo.com/search/?toggle=1&cop=mss&ei=UTF-8&fr=vmn&type=auslog_yaapp6_adw_ch&p={searchTerms}
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {937BFC8E-BC6F-43FE-8828-A0617CFC8708} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {9D8DD67D-8298-4DF4-BD42-61842EC96EEE} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {AEBA1B1E-35FE-4762-AC9C-6B81DE0B8AF7} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {D742AC74-BBC6-48E1-A0C2-E8A528458B67} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_13415
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.3.7.452\AVG Web TuneUp.dll => No File
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-04] (Google Inc -> Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation -> Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation -> Microsoft Corporation.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-04] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)
FireFox:
========
FF DefaultProfile: ixqmgx8f.default
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\naweriweentcofise\Profiles\ixqmgx8f.default\Profiles\ixqmgx8f.default [not found] <==== ATTENTION
FF DefaultProfile: v6xu30ay.default
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default [2019-10-28]
FF DownloadDir: F:\filmy
FF Homepage: Mozilla\Firefox\Profiles\ixqmgx8f.default -> hxxps://www.google.com/
FF Extension: (No Name) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [not found]
FF Extension: (No Name) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\extensions\sko-extension@firma.seznam.cz [not found]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\searchplugins\bing-.xml [2017-02-05]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\searchplugins\l9olaieg.xml [2017-02-27]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\searchplugins\startpageing123.xml [2017-03-27]
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\v6xu30ay.default [2019-10-28] <==== ATTENTION
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_31_0_0_108.dll [2018-09-12] (Adobe Systems Incorporated -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @4game.com/plugin -> C:\Program Files (x86)\4game\3.6.2.278\npplugin4game.dll [2018-11-02] (Innova Co S.a r.l. -> Innova Co S.a r.l.) [File not signed]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_108.dll [2018-09-12] (Adobe Systems Incorporated -> )
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.7\\npsitesafety.dll [No File]
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.301\npGoogleUpdate3.dll [2019-10-10] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.301\npGoogleUpdate3.dll [2019-10-10] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-03] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-676012942-2397387924-1880445482-1000: SkypePlugin -> C:\Users\Lukas\AppData\Local\SkypePlugin\7.31.0.56\npGatewayNpapi.dll [2017-02-03] (Microsoft Corporation -> Skype Technologies S.A.)
FF Plugin HKU\S-1-5-21-676012942-2397387924-1880445482-1000: SkypePlugin64 -> C:\Users\Lukas\AppData\Local\SkypePlugin\7.31.0.56\npGatewayNpapi-x64.dll [2017-02-03] (Microsoft Corporation -> Skype Technologies S.A.)
Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR HomePage: ChromeDefaultData -> hxxps://www.google.com/
CHR StartupUrls: ChromeDefaultData -> "hxxps://www.google.com/"
CHR DefaultSearchURL: ChromeDefaultData -> hxxp://www.ourluckysites.com/search/?type=ds&t ... earchTerms}
CHR DefaultSearchKeyword: ChromeDefaultData -> ourluckysites
CHR Profile: C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2019-10-28] <==== ATTENTION
CHR DownloadDir: E:\
CHR Extension: (Prezentace) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-10-11]
CHR Extension: (Dokumenty) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2019-10-11]
CHR Extension: (Disk Google) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-07]
CHR Extension: (YouTube) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (AVG Web TuneUp) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2019-10-11]
CHR Extension: (Vyhledávání Google) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-07]
CHR Extension: (Adobe Acrobat) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-10-11]
CHR Extension: (MSN Homepage & Bing Search Engine) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2019-10-11]
CHR Extension: (Tabulky) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-10-11]
CHR Extension: (Dokumenty Google offline) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-10-11]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-01-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-11]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2019-10-11]
CHR Extension: (Gmail) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-10-11]
CHR Extension: (Chrome Media Router) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-10-23]
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [chfdnecihphmhljaaejmgoiahnihplgn] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak] - hxxps://clients2.google.com/service/update2/crx
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\StartMenuInternet\ChromeHTML: -> C:\Program Files (x86)\Footjane\Application\chrome.exe <==== ATTENTION
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 4game-service; C:\Program Files (x86)\4game\3.6.2.278\4game-service.exe [1686008 2018-11-02] (Innova Co S.a r.l. -> Innova Co S.a r.l.) [File not signed]
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-05-04] (Advanced Micro Devices, Inc.) [File not signed]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-04-29] (Apple Inc. -> Apple Inc.)
S2 avg; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [165520 2018-10-27] (AVG Netherlands B.V. -> AVG Technologies)
R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [996928 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe [6133752 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
S3 avgm; C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe [165520 2018-10-27] (AVG Netherlands B.V. -> AVG Technologies)
S3 AVGSecureBrowserElevationService; C:\Program Files (x86)\AVG\Browser\Application\77.1.1833.92\elevation_service.exe [984976 2019-09-25] (AVG Technologies USA, Inc. -> AVG Technologies)
R2 AvgWscReporter; C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe [110560 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291904 2017-08-14] (Disc Soft Ltd -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [392976 2017-02-10] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2018-12-12] (Huawei Technologies Co., Ltd. -> ) [File not signed]
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2348336 2019-10-16] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3228976 2019-10-16] (Electronic Arts, Inc. -> Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-03-15] (Even Balance, Inc. -> )
R2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [344576 2014-01-22] (Qualcomm Atheros) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10803440 2018-09-28] (TeamViewer GmbH -> TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4413440 2019-03-14] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [107160 2019-02-16] (Microsoft Corporation -> Microsoft Corporation)
R2 WirelessKB850NotificationService; C:\WINDOWS\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe [473312 2017-03-20] (Wondershare Technology Co.,Ltd -> Wondershare)
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\MobileGo\DriverInstall.exe [101152 2017-06-01] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 NvContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
S3 NvContainerNetworkService; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdiox64; C:\WINDOWS\System32\drivers\amdiox64.sys [46136 2010-02-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [79488 2011-04-15] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [40064 2011-04-15] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [55936 2011-11-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R0 avgArDisk; C:\WINDOWS\System32\drivers\avgArDisk.sys [37880 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [205600 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [275232 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [210328 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [65376 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [16520 2019-10-08] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [43512 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [171784 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [111096 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [84560 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [848688 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [461216 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [236288 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [317304 2019-10-08] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 BfLwf; C:\WINDOWS\system32\DRIVERS\bflwfx64.sys [80080 2013-11-08] (Qualcomm Atheros, Inc. -> Qualcomm Atheros, Inc.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-02-27] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-02-27] (Disc Soft Ltd -> Disc Soft Ltd)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2018-12-12] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 KillerEth; C:\WINDOWS\System32\drivers\e2xw10x64.sys [145920 2018-04-12] (Microsoft Windows -> Qualcomm Atheros, Inc.)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-02-07] (Malwarebytes Corporation -> Malwarebytes Corporation)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2018-05-04] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_2e7fa54192fe16d0\nvlddmkm.sys [16936048 2017-11-09] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48064 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
R1 sbnetsys; C:\WINDOWS\system32\DRIVERS\sbnetsys.sys [44648 2015-04-17] (Mainline Net Holdings Limited -> NT Kernel Resources)
R3 usbfilter; C:\WINDOWS\system32\DRIVERS\usbfilter.sys [61464 2000-01-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [22016 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
S3 WUDFWpdComp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [264192 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
U3 aspnet_state; no ImagePath
S3 SWDUMon; \SystemRoot\system32\DRIVERS\SWDUMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-10-28 20:09 - 2019-10-28 20:10 - 000057309 _____ C:\Users\Lukas\Downloads\FRST.txt
2019-10-28 20:07 - 2019-10-28 20:08 - 001618944 _____ (Farbar) C:\Users\Lukas\Downloads\FRST64.exe
2019-10-28 20:05 - 2019-10-28 20:05 - 001454080 _____ (Farbar) C:\Users\Lukas\Downloads\FRST.exe
2019-10-28 20:01 - 2019-10-28 20:01 - 000318352 _____ (Mozilla) C:\Users\Lukas\Downloads\Firefox Installer.exe
2019-10-28 19:48 - 2019-10-28 19:48 - 000000000 ____D C:\Users\Lukas\AppData\Roaming\Firefox
2019-10-28 19:42 - 2019-10-28 19:46 - 000000000 ____D C:\AdwCleaner
2019-10-24 18:35 - 2019-10-24 18:35 - 000000000 ___HD C:\$WINDOWS.~BT
2019-10-16 17:31 - 2019-10-16 17:31 - 000000000 ____D C:\Users\Lukas\AppData\Local\OneDrive
2019-10-11 16:45 - 2019-10-11 16:45 - 000000165 ____H C:\Users\Lukas\Documents\~$tomáš rodiče osb.xlsx
2019-10-10 16:45 - 2019-10-13 20:46 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-10-10 16:25 - 2019-10-02 12:10 - 004527072 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-10-10 16:25 - 2019-10-02 06:04 - 007519896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-10-10 16:25 - 2019-10-02 05:47 - 006564368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-10-10 16:25 - 2019-10-02 05:40 - 025857024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-10-10 16:25 - 2019-10-02 05:32 - 022735872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-10-10 16:25 - 2019-09-10 08:17 - 023862272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-10-10 16:24 - 2019-10-06 02:43 - 000783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-10-10 16:24 - 2019-10-06 02:43 - 000674304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-10-10 16:24 - 2019-10-02 12:14 - 000349216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-10-10 16:24 - 2019-10-02 12:10 - 001640376 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-10-10 16:24 - 2019-10-02 12:10 - 001616608 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-10-10 16:24 - 2019-10-02 12:08 - 002394960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2019-10-10 16:24 - 2019-10-02 12:08 - 001047568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2019-10-10 16:24 - 2019-10-02 11:53 - 004852736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-10-10 16:24 - 2019-10-02 11:53 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-10-10 16:24 - 2019-10-02 11:52 - 012835840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-10-10 16:24 - 2019-10-02 11:52 - 008627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-10-10 16:24 - 2019-10-02 11:50 - 004491264 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2019-10-10 16:24 - 2019-10-02 11:50 - 002019840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-10-10 16:24 - 2019-10-02 11:50 - 000810496 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2019-10-10 16:24 - 2019-10-02 11:49 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2019-10-10 16:24 - 2019-10-02 11:48 - 000678400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2019-10-10 16:24 - 2019-10-02 11:48 - 000625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2019-10-10 16:24 - 2019-10-02 11:48 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-10-10 16:24 - 2019-10-02 11:47 - 000957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-10-10 16:24 - 2019-10-02 11:47 - 000878592 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-10-10 16:24 - 2019-10-02 11:47 - 000488960 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-10-10 16:24 - 2019-10-02 11:46 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-10-10 16:24 - 2019-10-02 11:46 - 001289216 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-10-10 16:24 - 2019-10-02 11:46 - 000740864 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2019-10-10 16:24 - 2019-10-02 11:46 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-10-10 16:24 - 2019-10-02 11:45 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-10-10 16:24 - 2019-10-02 11:45 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2019-10-10 16:24 - 2019-10-02 09:56 - 001628488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-10-10 16:24 - 2019-10-02 09:53 - 000917816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2019-10-10 16:24 - 2019-10-02 09:52 - 002206424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2019-10-10 16:24 - 2019-10-02 09:46 - 012037120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-10-10 16:24 - 2019-10-02 09:44 - 007991296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-10-10 16:24 - 2019-10-02 09:42 - 003397120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2019-10-10 16:24 - 2019-10-02 09:42 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-10-10 16:24 - 2019-10-02 09:41 - 000901120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2019-10-10 16:24 - 2019-10-02 09:41 - 000704000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-10-10 16:24 - 2019-10-02 09:41 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-10-10 16:24 - 2019-10-02 06:21 - 002417744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2019-10-10 16:24 - 2019-10-02 06:20 - 003180080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2019-10-10 16:24 - 2019-10-02 06:19 - 000374584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-10-10 16:24 - 2019-10-02 06:05 - 000092472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2019-10-10 16:24 - 2019-10-02 06:04 - 002774120 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-10-10 16:24 - 2019-10-02 06:04 - 001098064 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-10-10 16:24 - 2019-10-02 06:04 - 001035040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-10-10 16:24 - 2019-10-02 06:04 - 000494096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-10-10 16:24 - 2019-10-02 06:03 - 000778024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-10-10 16:24 - 2019-10-02 06:03 - 000193040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-10-10 16:24 - 2019-10-02 06:02 - 004404720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-10-10 16:24 - 2019-10-02 06:02 - 001219896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-10-10 16:24 - 2019-10-02 06:02 - 001027384 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-10-10 16:24 - 2019-10-02 06:02 - 000568104 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-10-10 16:24 - 2019-10-02 06:02 - 000210448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2019-10-10 16:24 - 2019-10-02 06:02 - 000194352 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 002468048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 001288928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 000723728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 000722744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 000527160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2019-10-10 16:24 - 2019-10-02 06:01 - 000491208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 000439504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 000435728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-10-10 16:24 - 2019-10-02 06:01 - 000159864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2019-10-10 16:24 - 2019-10-02 06:00 - 009080632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-10-10 16:24 - 2019-10-02 06:00 - 002570824 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-10-10 16:24 - 2019-10-02 06:00 - 002371504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-10-10 16:24 - 2019-10-02 06:00 - 000433168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-10-10 16:24 - 2019-10-02 06:00 - 000248880 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2019-10-10 16:24 - 2019-10-02 06:00 - 000209936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-10-10 16:24 - 2019-10-02 06:00 - 000039032 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll
2019-10-10 16:24 - 2019-10-02 05:59 - 001784696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-10-10 16:24 - 2019-10-02 05:59 - 001459120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-10-10 16:24 - 2019-10-02 05:59 - 001260776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-10-10 16:24 - 2019-10-02 05:59 - 001141504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-10-10 16:24 - 2019-10-02 05:59 - 000983936 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-10-10 16:24 - 2019-10-02 05:59 - 000930616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2019-10-10 16:24 - 2019-10-02 05:59 - 000604984 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-10-10 16:24 - 2019-10-02 05:59 - 000260800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-10-10 16:24 - 2019-10-02 05:49 - 000550512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2019-10-10 16:24 - 2019-10-02 05:49 - 000434728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-10-10 16:24 - 2019-10-02 05:49 - 000385000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-10-10 16:24 - 2019-10-02 05:49 - 000191800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-10-10 16:24 - 2019-10-02 05:49 - 000146712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2019-10-10 16:24 - 2019-10-02 05:48 - 002331480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-10-10 16:24 - 2019-10-02 05:48 - 001990056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-10-10 16:24 - 2019-10-02 05:48 - 000666248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-10-10 16:24 - 2019-10-02 05:48 - 000380216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-10-10 16:24 - 2019-10-02 05:48 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NtlmShared.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 004789944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 002260928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 001979752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 001380312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 001130784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 001020280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 000829752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2019-10-10 16:24 - 2019-10-02 05:47 - 000607248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2019-10-10 16:24 - 2019-10-02 05:47 - 000129088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2019-10-10 16:24 - 2019-10-02 05:38 - 022016000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-10-10 16:24 - 2019-10-02 05:32 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-10-10 16:24 - 2019-10-02 05:31 - 008189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-10-10 16:24 - 2019-10-02 05:31 - 004388864 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-10-10 16:24 - 2019-10-02 05:30 - 019385856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-10-10 16:24 - 2019-10-02 05:30 - 003403264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-10-10 16:24 - 2019-10-02 05:29 - 003392000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-10-10 16:24 - 2019-10-02 05:29 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-10-10 16:24 - 2019-10-02 05:29 - 000038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 007573504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 004771840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 002929152 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 001827328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-10-10 16:24 - 2019-10-02 05:28 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-10-10 16:24 - 2019-10-02 05:27 - 005769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-10-10 16:24 - 2019-10-02 05:27 - 003554304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2019-10-10 16:24 - 2019-10-02 05:27 - 002126336 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2019-10-10 16:24 - 2019-10-02 05:27 - 001308160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2019-10-10 16:24 - 2019-10-02 05:27 - 000929280 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-10-10 16:24 - 2019-10-02 05:27 - 000487936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-10-10 16:24 - 2019-10-02 05:27 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-10-10 16:24 - 2019-10-02 05:27 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-10-10 16:24 - 2019-10-02 05:27 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-10-10 16:24 - 2019-10-02 05:26 - 000908800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2019-10-10 16:24 - 2019-10-02 05:26 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-10-10 16:24 - 2019-10-02 05:26 - 000468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-10-10 16:24 - 2019-10-02 05:26 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-10-10 16:24 - 2019-10-02 05:26 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-10-10 16:24 - 2019-10-02 05:26 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 003091456 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 002738688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 002179072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 001862656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 001295360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-10-10 16:24 - 2019-10-02 05:25 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2019-10-10 16:24 - 2019-10-02 05:24 - 002379264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-10-10 16:24 - 2019-10-02 05:24 - 001563648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-10-10 16:24 - 2019-10-02 05:24 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-10-10 16:24 - 2019-10-02 05:24 - 000857088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2019-10-10 16:24 - 2019-10-02 05:24 - 000582144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2019-10-10 16:24 - 2019-10-02 05:24 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2019-10-10 16:24 - 2019-10-02 05:23 - 004938240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-10-10 16:24 - 2019-10-02 05:23 - 004517376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-10-10 16:24 - 2019-10-02 05:23 - 002166272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-10-10 16:24 - 2019-10-02 05:23 - 001724928 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-10-10 16:24 - 2019-10-02 05:23 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-10-10 16:24 - 2019-10-02 05:23 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2019-10-10 16:24 - 2019-10-02 05:23 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-10-10 16:24 - 2019-10-02 05:23 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-10-10 16:24 - 2019-10-02 05:23 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-10-10 16:24 - 2019-10-02 05:22 - 001418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2019-10-10 16:24 - 2019-10-02 05:22 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-10-10 16:24 - 2019-10-02 05:22 - 000545280 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-10-10 16:24 - 2019-10-02 05:22 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-10-10 16:24 - 2019-10-02 05:22 - 000506368 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-10-10 16:24 - 2019-10-02 05:22 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-10-10 16:24 - 2019-10-02 05:22 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-10-10 16:24 - 2019-10-02 05:22 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-10-10 16:24 - 2019-10-02 04:05 - 000001312 _____ C:\WINDOWS\system32\tcbres.wim
2019-10-10 16:24 - 2019-09-19 08:02 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-10-10 16:24 - 2019-09-13 12:03 - 000586680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2019-10-10 16:24 - 2019-09-13 12:02 - 004040008 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-10-10 16:24 - 2019-09-13 11:57 - 021409376 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-10-10 16:24 - 2019-09-13 11:57 - 001517480 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-10-10 16:24 - 2019-09-13 11:57 - 001375456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-10-10 16:24 - 2019-09-13 11:56 - 000341392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2019-10-10 16:24 - 2019-09-13 11:47 - 006588416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-10-10 16:24 - 2019-09-13 11:44 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2019-10-10 16:24 - 2019-09-13 11:44 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2019-10-10 16:24 - 2019-09-13 11:41 - 001644032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2019-10-10 16:24 - 2019-09-13 11:41 - 001127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2019-10-10 16:24 - 2019-09-13 11:40 - 003614208 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-10-10 16:24 - 2019-09-13 11:40 - 001725952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-10-10 16:24 - 2019-09-13 11:40 - 000806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2019-10-10 16:24 - 2019-09-13 11:40 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2019-10-10 16:24 - 2019-09-13 11:40 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2019-10-10 16:24 - 2019-09-13 11:40 - 000351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe
2019-10-10 16:24 - 2019-09-13 11:40 - 000326656 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2019-10-10 16:24 - 2019-09-13 11:39 - 002085888 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2019-10-10 16:24 - 2019-09-13 11:39 - 001262592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-10-10 16:24 - 2019-09-13 11:39 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2019-10-10 16:24 - 2019-09-13 10:18 - 000470512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2019-10-10 16:24 - 2019-09-13 10:17 - 001026280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-10-10 16:24 - 2019-09-13 10:16 - 001320128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-10-10 16:24 - 2019-09-13 10:15 - 020400656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-10-10 16:24 - 2019-09-13 10:15 - 003701184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-10-10 16:24 - 2019-09-13 10:05 - 005659136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-10-10 16:24 - 2019-09-13 10:01 - 001300480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2019-10-10 16:24 - 2019-09-13 10:01 - 000622592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2019-10-10 16:24 - 2019-09-13 10:00 - 002882048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-10-10 16:24 - 2019-09-13 10:00 - 001530880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-10-10 16:24 - 2019-09-13 09:59 - 002017280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2019-10-10 16:24 - 2019-09-13 05:58 - 007900880 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2019-10-10 16:24 - 2019-09-13 05:58 - 001613096 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2019-10-10 16:24 - 2019-09-13 05:56 - 005821448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2019-10-10 16:24 - 2019-09-13 05:56 - 001299472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2019-10-10 16:24 - 2019-09-13 05:49 - 005627280 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-10-10 16:24 - 2019-09-13 05:49 - 000274792 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2019-10-10 16:24 - 2019-09-13 05:48 - 003290584 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-10-10 16:24 - 2019-09-13 05:48 - 001659704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2019-10-10 16:24 - 2019-09-13 05:48 - 001363536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2019-10-10 16:24 - 2019-09-13 05:48 - 000722744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-10-10 16:24 - 2019-09-13 05:48 - 000710240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-10-10 16:24 - 2019-09-13 05:48 - 000170296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-10-10 16:24 - 2019-09-13 05:47 - 007445856 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-10-10 16:24 - 2019-09-13 05:47 - 001947168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2019-10-10 16:24 - 2019-09-13 05:47 - 000713272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2019-10-10 16:24 - 2019-09-13 05:47 - 000275768 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-10-10 16:24 - 2019-09-13 05:47 - 000081720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-10-10 16:24 - 2019-09-13 05:47 - 000039736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2019-10-10 16:24 - 2019-09-13 05:36 - 002478152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-10-10 16:24 - 2019-09-13 05:36 - 001252152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2019-10-10 16:24 - 2019-09-13 05:35 - 006052272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-10-10 16:24 - 2019-09-13 05:35 - 001559272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2019-10-10 16:24 - 2019-09-13 05:27 - 016598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-10-10 16:24 - 2019-09-13 05:24 - 013878784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-10-10 16:24 - 2019-09-13 05:23 - 000149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-10-10 16:24 - 2019-09-13 05:21 - 000153600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-10-10 16:24 - 2019-09-13 05:21 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2019-10-10 16:24 - 2019-09-13 05:21 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2019-10-10 16:24 - 2019-09-13 05:21 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpnotify.exe
2019-10-10 16:24 - 2019-09-13 05:21 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2019-10-10 16:24 - 2019-09-13 05:20 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2019-10-10 16:24 - 2019-09-13 05:20 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-10-10 16:24 - 2019-09-13 05:20 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2019-10-10 16:24 - 2019-09-13 05:20 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2019-10-10 16:24 - 2019-09-13 05:19 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-10-10 16:24 - 2019-09-13 05:18 - 000567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-10-10 16:24 - 2019-09-13 05:18 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2019-10-10 16:24 - 2019-09-13 05:17 - 003148288 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2019-10-10 16:24 - 2019-09-13 05:17 - 000761344 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-10-10 16:24 - 2019-09-13 05:17 - 000267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-10-10 16:24 - 2019-09-13 05:17 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2019-10-10 16:24 - 2019-09-13 05:17 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2019-10-10 16:24 - 2019-09-13 05:17 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2019-10-10 16:24 - 2019-09-13 05:16 - 000910336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2019-10-10 16:24 - 2019-09-13 05:16 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 002913792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 001023488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 000517120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 000504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\DavSyncProvider.dll
2019-10-10 16:24 - 2019-09-13 05:15 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2019-10-10 16:24 - 2019-09-13 05:14 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-10-10 16:24 - 2019-09-13 05:14 - 001809408 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-10-10 16:24 - 2019-09-13 05:14 - 001222144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-10-10 16:24 - 2019-09-13 05:14 - 000848384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2019-10-10 16:24 - 2019-09-13 05:14 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-10-10 16:24 - 2019-09-13 05:14 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-10-10 16:24 - 2019-09-13 05:14 - 000257536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2019-10-10 16:24 - 2019-09-13 05:13 - 002893312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2019-10-10 16:24 - 2019-09-13 05:13 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2019-10-10 16:24 - 2019-09-13 05:13 - 001154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-10-10 16:24 - 2019-09-13 05:13 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2019-10-10 16:24 - 2019-09-13 05:13 - 000910848 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-10-10 16:24 - 2019-09-13 05:13 - 000845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2019-10-10 16:24 - 2019-09-13 05:13 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-10-10 16:24 - 2019-09-13 05:12 - 001634304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-10-10 16:24 - 2019-09-13 05:12 - 000627712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2019-10-10 16:24 - 2019-09-13 05:12 - 000372736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2019-10-10 16:24 - 2019-09-13 05:12 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2019-10-10 16:24 - 2019-09-13 05:11 - 000979456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2019-10-10 16:24 - 2019-09-13 05:11 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-10-10 16:24 - 2019-09-13 05:11 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2019-10-10 16:24 - 2019-09-13 05:11 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2019-10-10 16:24 - 2019-09-13 05:11 - 000536576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-10-10 16:24 - 2019-09-13 05:11 - 000346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DavSyncProvider.dll
2019-10-10 16:24 - 2019-09-10 08:16 - 019525632 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-10-10 16:24 - 2019-09-10 07:56 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-10-10 16:24 - 2019-09-10 02:20 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-10-10 16:24 - 2019-09-10 02:20 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2019-10-10 16:24 - 2019-08-13 15:42 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-10-10 16:23 - 2019-10-11 17:53 - 000002332 _____ C:\Users\Lukas\Desktop\Google Chrome.lnk
2019-10-08 16:27 - 2019-10-08 16:27 - 000355760 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2019-10-08 16:27 - 2019-10-08 16:27 - 000236288 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys
2019-10-08 16:27 - 2019-10-08 16:27 - 000171784 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2019-10-05 16:07 - 2019-10-08 16:27 - 000052376 _____ () C:\WINDOWS\system32\Drivers\staport.sys
2019-09-29 14:39 - 2019-03-28 10:11 - 000029232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2019-09-29 14:39 - 2019-03-28 10:11 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100_clr0400.dll
2019-09-29 14:39 - 2019-03-28 10:09 - 000032816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2019-09-29 14:39 - 2019-03-28 10:09 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100_clr0400.dll
2019-09-29 14:39 - 2019-03-28 07:35 - 000772176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_clr0400.dll
2019-09-29 14:39 - 2019-03-28 07:35 - 000702400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase_clr0400.dll
2019-09-29 14:39 - 2019-03-28 07:35 - 000622832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140_clr0400.dll
2019-09-29 14:39 - 2019-03-28 07:35 - 000433448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140_clr0400.dll
2019-09-29 14:39 - 2019-03-28 07:35 - 000087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140_clr0400.dll
2019-09-29 14:39 - 2019-03-28 07:35 - 000083768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcruntime140_clr0400.dll
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-10-28 20:09 - 2017-03-21 09:38 - 000000000 ____D C:\FRST
2019-10-28 20:06 - 2016-11-18 11:12 - 000000000 ____D C:\Users\Lukas\AppData\LocalLow\Mozilla
2019-10-28 20:06 - 2015-02-08 14:36 - 000000000 ____D C:\Users\Lukas\AppData\Roaming\Mozilla
2019-10-28 20:06 - 2015-02-08 14:36 - 000000000 ____D C:\ProgramData\Mozilla
2019-10-28 20:04 - 2016-11-17 23:28 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-10-28 20:04 - 2015-02-08 14:36 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-10-28 19:53 - 2018-05-23 05:27 - 000006172 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-10-28 19:53 - 2018-04-12 16:50 - 000851822 _____ C:\WINDOWS\system32\perfh005.dat
2019-10-28 19:53 - 2018-04-12 16:50 - 000192632 _____ C:\WINDOWS\system32\perfc005.dat
2019-10-28 19:49 - 2015-12-30 10:01 - 000001312 _____ C:\Users\Lukas\AppData\Local\FSDownloader.nast
2019-10-28 19:49 - 2015-07-25 23:37 - 000000000 ____D C:\ProgramData\Origin
2019-10-28 19:49 - 2015-02-08 17:51 - 000000000 ____D C:\Program Files (x86)\Steam
2019-10-28 19:47 - 2018-05-23 05:35 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-10-28 19:47 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-10-28 19:47 - 2017-09-06 13:29 - 000000000 ____D C:\ProgramData\NVIDIA
2019-10-28 19:46 - 2018-05-23 05:28 - 000000000 ____D C:\Users\Lukas
2019-10-28 19:46 - 2018-04-11 22:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-10-28 19:46 - 2017-03-01 12:14 - 000000000 ____D C:\ProgramData\BSD
2019-10-28 19:43 - 2018-05-23 05:25 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-10-28 19:33 - 2018-05-14 19:41 - 000000000 ___DC C:\WINDOWS\Panther
2019-10-28 17:32 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-10-28 17:24 - 2018-09-13 21:31 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2019-10-28 17:24 - 2018-05-23 05:35 - 000003432 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA1d12ebc6be85ef3
2019-10-28 17:24 - 2018-05-23 05:35 - 000003262 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2019-10-28 17:24 - 2018-05-23 05:35 - 000003208 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore1d12ebc6bce6df2
2019-10-28 17:24 - 2018-05-23 05:35 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-676012942-2397387924-1880445482-1000
2019-10-27 16:05 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-10-27 15:53 - 2017-02-09 21:12 - 000000000 ____D C:\Users\Lukas\AppData\Local\CrashDumps
2019-10-24 18:26 - 2015-12-30 10:01 - 000010705 _____ C:\Users\Lukas\AppData\Local\FSDownloader.err
2019-10-23 18:31 - 2018-05-23 05:28 - 000002399 _____ C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-10-23 18:31 - 2016-05-18 05:04 - 000000000 ___RD C:\Users\Lukas\OneDrive
2019-10-22 22:52 - 2015-02-07 18:44 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-10-22 22:52 - 2015-02-07 18:44 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-10-22 18:56 - 2017-02-24 09:58 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2019-10-18 16:13 - 2018-04-12 00:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-10-16 17:37 - 2019-07-09 16:21 - 000011434 _____ C:\Users\Lukas\Desktop\střecha veletov.xlsx
2019-10-16 17:33 - 2019-09-26 21:50 - 000000000 ____D C:\Users\Lukas\Desktop\rozpočty
2019-10-16 17:25 - 2015-07-25 23:37 - 000000000 ____D C:\Program Files (x86)\Origin
2019-10-16 17:24 - 2019-04-26 15:46 - 000003826 _____ C:\WINDOWS\system32\Tasks\AVG Secure Browser Heartbeat Task (Hourly)
2019-10-16 17:24 - 2019-04-26 15:46 - 000003242 _____ C:\WINDOWS\system32\Tasks\AVG Secure Browser Heartbeat Task (Logon)
2019-10-16 17:24 - 2018-10-27 15:02 - 000002375 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Secure Browser.lnk
2019-10-16 17:24 - 2018-10-27 15:02 - 000002340 _____ C:\Users\Public\Desktop\AVG Secure Browser.lnk
2019-10-13 20:46 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF
2019-10-13 20:30 - 2019-07-27 16:50 - 000010795 _____ C:\Users\Lukas\Documents\tomáš rodiče osb.xlsx
2019-10-13 16:53 - 2018-02-08 20:43 - 000000000 ____D C:\Users\Lukas\Desktop\vyuctovaní 2018
2019-10-11 17:25 - 2018-04-03 19:24 - 000000803 _____ C:\Users\Lukas\Desktop\Stellaris.lnk
2019-10-10 16:48 - 2016-05-19 19:45 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-10-10 16:47 - 2018-05-23 05:25 - 000411536 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-10-10 16:47 - 2016-06-30 18:23 - 000000000 ___RD C:\Users\Lukas\3D Objects
2019-10-10 16:47 - 2016-02-13 14:12 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-10-10 16:45 - 2018-04-12 00:38 - 000017800 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2019-10-10 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-10-10 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2019-10-10 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-10-10 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2019-10-10 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-10-10 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-10-10 16:45 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-10-10 16:45 - 2018-04-11 22:04 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-10-10 16:45 - 2015-02-07 18:44 - 000000000 ____D C:\Program Files (x86)\Google
2019-10-10 16:23 - 2017-03-01 12:51 - 000000000 ____D C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
2019-10-10 16:19 - 2016-05-19 19:45 - 127230528 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-10-08 16:27 - 2019-02-02 12:42 - 000275232 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys
2019-10-08 16:27 - 2019-01-27 03:10 - 000210328 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsh.sys
2019-10-08 16:27 - 2019-01-27 03:10 - 000065376 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniv.sys
2019-10-08 16:27 - 2019-01-27 03:10 - 000037880 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArDisk.sys
2019-10-08 16:27 - 2018-10-25 20:17 - 000043512 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys
2019-10-08 16:27 - 2018-07-23 19:34 - 000016520 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgElam.sys
2019-10-08 16:27 - 2018-04-12 00:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-10-08 16:27 - 2017-11-27 21:14 - 000205600 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2019-10-08 16:27 - 2017-04-22 16:33 - 000848688 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2019-10-08 16:27 - 2017-04-22 16:33 - 000461216 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2019-10-08 16:27 - 2017-04-22 16:33 - 000317304 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2019-10-08 16:27 - 2017-04-22 16:33 - 000111096 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2019-10-08 16:27 - 2017-04-22 16:33 - 000084560 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2019-09-29 14:37 - 2018-01-18 07:04 - 000000000 ____D C:\Users\Lukas\AppData\Local\Packages
==================== Files in the root of some directories ========
2017-03-13 08:15 - 2017-05-11 19:36 - 000011188 _____ () C:\Program Files (x86)\metadata
2017-03-01 12:53 - 2017-03-01 12:53 - 000000046 _____ () C:\Users\Lukas\AppData\Roaming\Camdata.ini
2017-03-01 12:53 - 2017-03-01 12:53 - 000000408 _____ () C:\Users\Lukas\AppData\Roaming\CamLayout.ini
2017-03-01 12:53 - 2017-03-01 12:53 - 000000408 _____ () C:\Users\Lukas\AppData\Roaming\CamShapes.ini
2017-03-01 12:53 - 2017-03-01 12:53 - 000004536 _____ () C:\Users\Lukas\AppData\Roaming\CamStudio.cfg
2017-03-01 12:51 - 2017-03-01 12:51 - 000000096 _____ () C:\Users\Lukas\AppData\Roaming\version2.xml
2017-03-16 11:48 - 2017-03-16 11:48 - 000000000 _____ () C:\Users\Lukas\AppData\Local\Driver_LOM_8161Present.flag
2015-12-30 10:01 - 2019-10-24 18:26 - 000010705 _____ () C:\Users\Lukas\AppData\Local\FSDownloader.err
2015-12-30 10:01 - 2019-10-28 19:49 - 000001312 _____ () C:\Users\Lukas\AppData\Local\FSDownloader.nast
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
-
Rudy
- Site Admin
- Příspěvky: 118274
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomoct s PC
Otevřte poznámkový blok a zkopírujte do něj:
Uložte do C:\Users\Lukas\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-03-07] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [BingSvc] => C:\Users\Lukas\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (Microsoft Corporation -> © 2015 Microsoft Corporation)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Policies\system: [Shell] <==== ATTENTION
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\MountPoints2: {d62cd0d9-d38d-11e7-a610-d8cb8a13fec7} - "E:\setup.exe"
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\MountPoints2: {def9fec5-a11b-11e7-a5f6-d8cb8a13fec7} - "E:\setup.exe"
HKLM\...\Providers\l9olaieg: C:\Program Files (x86)\Khagetheputain Renew\local64spl.dll <==== ATTENTION
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
Startup: C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\tmp8B80.tmp.vbs [2015-11-26] ()
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {08398CB9-4B31-4A24-8B44-EB9BB625BA92} - System32\Tasks\GoogleUpdateTaskMachineUA1d0bf8240b41a2d => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {0A3ADA6A-7D6B-48BE-B3EE-7CAFCB01D806} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {1AC7B678-A9D3-4A29-92DC-D8F4EBF554F7} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {1FD4545D-449E-4498-A28F-6A70BBB6E717} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {2855507F-5693-4716-8CFD-A9C7EC3608E1} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {31BE7BED-2F8C-44D1-BD22-11E99C2B41D6} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {39258C28-7A3C-4300-A3DC-4E16322E23F7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
ask: {3D4E9D09-C002-4945-AC40-392F521B8371} - System32\Tasks\Milimili => C:\Program Files (x86)\MIO\MIO.exe [282168 2017-05-17] (Tencent Technology(Shenzhen) Company Limited -> ) <==== ATTENTION
Task: {3D4E9D09-C002-4945-AC40-392F521B8371} - System32\Tasks\Milimili => C:\Program Files (x86)\MIO\MIO.exe [282168 2017-05-17] (Tencent Technology(Shenzhen) Company Limited -> ) <==== ATTENTION
Task: {41E30C1E-4367-4961-83E7-F77ACA6B8A7D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {56B0A61C-507F-433D-954C-C486D2189B72} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {656F2A16-EFDE-4862-8AFD-D8B5E81C281C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {663E99B4-CA4D-4E7C-91C1-EABB63BABB64} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {6703186A-0465-4C3E-A08A-443207902793} - System32\Tasks\GoogleUpdateTaskMachineUA1d12ebc6be85ef3 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {85175350-6DD5-4C07-ABAB-38D7F203636C} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {99A527D5-9275-472A-9145-E6AE919E91E4} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {B59AA759-2158-4CEA-A134-4EFB287168F1} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {B65417F6-37D2-4862-84FE-ADD7DD7BA31B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {BBC89AE6-9F6E-45EF-8F63-55A8B55BC2DB} - System32\Tasks\{1A6294B2-88B2-4000-982C-50EE66BDD741} => C:\WINDOWS\system32\pcalua.exe -a "F:\intuix_cd\Intuix CD\setup.exe" -d "F:\intuix_cd\Intuix CD"
Task: {CE403273-6ABC-4EDB-B60E-418EE36DE211} - System32\Tasks\{D082DED7-9F54-4072-B23C-9015685838FF} => C:\WINDOWS\system32\pcalua.exe -a "F:\Program Files (x86)\Mafia I - The City of Lost Heaven\Game.exe" -d "F:\Program Files (x86)\Mafia I - The City of Lost Heaven"
Task: {D6CA3431-FF1A-4CB8-9146-6B78F0BBF8E6} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {E55F4541-8AA4-486D-A31F-8D7584FF968D} - System32\Tasks\GoogleUpdateTaskMachineCore1d08feffd709d58 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {E7DB25D7-9344-4C16-B621-DE4DA8BD66B4} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {EF259B98-F640-49BA-8E8A-3ACAE1C31C5F} - System32\Tasks\{91840007-F1F0-480C-8352-3A5360385E8C} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Railroad Tycoon 3\UNINSTX.EXE"
Task: {EF7CE8FE-FF1D-4CE4-98B5-AEEE09AF4843} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {FD539483-AC5F-43E5-A5A4-CBB51614FEBE} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {FD77CB7B-62D4-4956-841B-D5C6D9E7F315} - System32\Tasks\GoogleUpdateTaskMachineCore1d12ebc6bce6df2 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d08feffd709d58.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0bf824092886a.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0e311c2edf531.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0f1cdab88d226.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d08feffd8759fd.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0bf8240b41a2d.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0f1cdabb0a60b.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.3.7.452\AVG Web TuneUp.dll => No File
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-04] (Google Inc -> Google Inc.)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation -> Microsoft Corporation.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation -> Microsoft Corporation.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-04] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\naweriweentcofise\Profiles\ixqmgx8f.default\Profiles\ixqmgx8f.default [not found] <==== ATTENTION
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\v6xu30ay.default [2019-10-28] <==== ATTENTION
CHR DefaultSearchURL: ChromeDefaultData -> hxxp://www.ourluckysites.com/search/?ty ... B03171A&q={searchTerms}
CHR DefaultSearchKeyword: ChromeDefaultData -> ourluckysites
CHR Profile: C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2019-10-28] <==== ATTENTION
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\StartMenuInternet\ChromeHTML: -> C:\Program Files (x86)\Footjane\Application\chrome.exe <==== ATTENTION
U3 aspnet_state; no ImagePath
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA1d12ebc6be85ef3
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore1d12ebc6bce6df2
HKLM-x32\...\{B20B3A3C-91E3-4326-8A0F-B3C012574F8C}
HKLM-x32\...\{0F7B5011-72EC-493D-A7BF-546591047E8E}
HKLM-x32\...\{3CC3DE19-E0B1-4D42-87AB-B5C61FE4BA58}
HKLM-x32\...\{3678D164-84DB-4F73-AFD6-916342E10764}
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\ChromeHTML: -> "C:\Program Files (x86)\Footjane\Application\chrome.exe" "%1" <==== ATTENTION
ShellExecuteHooks: No Name - {D7743BB4-F774-11E6-8881-64006A5CFC23} - -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0]
AlternateDataStreams: C:\Users\Lukas\OneDrive:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity [108]
FirewallRules: [{3E6BAF4B-19DA-4C54-833F-FD154DE90925}] => (Allow) H:\Program Files (x86)\SteamLibrary\steamapps\common\star conflict\game.exe No File
FirewallRules: [{576DE4BB-9B0D-46E5-B361-162018E2F13B}] => (Allow) H:\Program Files (x86)\SteamLibrary\steamapps\common\star conflict\game.exe No File
FirewallRules: [UDP Query User{5673BEC2-A4F2-4F0A-AC2D-707C1F07870C}H:\gog games\railway empire\railwayempire.exe] => (Allow) H:\gog games\railway empire\railwayempire.exe No File
FirewallRules: [TCP Query User{4C07B869-37F5-4F44-907E-BC68ED984A26}H:\gog games\railway empire\railwayempire.exe] => (Allow) H:\gog games\railway empire\railwayempire.exe No File
FirewallRules: [UDP Query User{0E663628-B912-4F04-AF44-0E8053FE27A4}F:\hry\far cry 4\bin\farcry4.exe] => (Allow) F:\hry\far cry 4\bin\farcry4.exe No File
FirewallRules: [TCP Query User{7ECEE922-8938-4821-BD5B-D9D82254E135}F:\hry\far cry 4\bin\farcry4.exe] => (Allow) F:\hry\far cry 4\bin\farcry4.exe No File
FirewallRules: [UDP Query User{63AD808D-CC87-4219-88B7-7BE762270A2C}C:\eve\sharedcache\tq\bin\exefile.exe] => (Allow) C:\eve\sharedcache\tq\bin\exefile.exe No File
FirewallRules: [TCP Query User{6ED1EDF2-E5F4-4AF0-A9A7-EDFC80ECFB12}C:\eve\sharedcache\tq\bin\exefile.exe] => (Allow) C:\eve\sharedcache\tq\bin\exefile.exe No File
FirewallRules: [{EED20502-C8FA-4B72-AC6A-45BD7CA5EE9E}] => (Allow) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe No File
FirewallRules: [{13B162CC-5652-4035-970B-1EAB3997C13E}] => (Allow) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe No File
FirewallRules: [{00752B97-585D-4A9E-A497-3B8F44572B70}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe No File
FirewallRules: [{99883171-2257-4C99-A926-B12BF06FDF60}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe No File
irewallRules: [UDP Query User{1F44A342-9A6B-4023-ADA8-494D9D4765E7}F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe] => (Block) F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe No File
FirewallRules: [TCP Query User{96386857-DD26-4E60-A873-DBD070CC7483}F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe] => (Block) F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe No File
FirewallRules: [{F0EFC15F-081B-4C87-B78E-28DC8A8FA7CD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe No File
FirewallRules: [UDP Query User{B9687B0E-2356-4DE1-B208-60B713D9DFC1}C:\games\world_of_warships\wowslauncher.exe] => (Allow) C:\games\world_of_warships\wowslauncher.exe No File
FirewallRules: [TCP Query User{47D8C302-1908-419B-81B7-5A50EDECA69A}C:\games\world_of_warships\wowslauncher.exe] => (Allow) C:\games\world_of_warships\wowslauncher.exe No File
FirewallRules: [{36E3EE67-A14A-4941-89C5-043791297B29}] => (Allow) F:\Program Files (x86)\Kalypso Media\Port Royale 3\PortRoyale3.exe No File
FirewallRules: [UDP Query User{D0F79A5B-0D88-4073-BFB1-C4220B5549CE}F:\filmy\search_tool_win_xp\searchtool.exe] => (Allow) F:\filmy\search_tool_win_xp\searchtool.exe No File
FirewallRules: [TCP Query User{874E3214-D56E-463B-8840-3B0C257EEE87}F:\filmy\search_tool_win_xp\searchtool.exe] => (Allow) F:\filmy\search_tool_win_xp\searchtool.exe No File
FirewallRules: [UDP Query User{9BC97502-B126-4A7E-861A-72AF65D380A8}F:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Block) F:\program files (x86)\diablo iii\x64\diablo iii64.exe No File
FirewallRules: [TCP Query User{912E7446-9068-49F4-9A6B-7B9165A69EA8}F:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Block) F:\program files (x86)\diablo iii\x64\diablo iii64.exe No File
FirewallRules: [{BB474CBD-1BE6-4CAA-9977-89113D6E6F1E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{7D5CC98B-8FB0-4AF0-ACC4-90492FD07ED9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{57B0BCBD-ECAF-45C4-9783-EA09231719F3}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe No File
FirewallRules: [{D532212F-0629-43BD-A934-B9E7F9028012}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe No File
FirewallRules: [{D8DE7BD4-C0B4-4581-A588-8B4885033DD3}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe No File
FirewallRules: [{08FD462A-5499-4456-9B6C-AD9225442DC6}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe No File
FirewallRules: [{9202BDE5-E1B4-4FC5-9D9D-C33ACC4F8E9F}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe No File
FirewallRules: [{D7BEA8A0-6367-450C-8A4D-A16CB4416369}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe No File
FirewallRules: [{E6F4CA2F-A49B-48E0-82DC-19A9EB09E42B}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe No File
FirewallRules: [{95D3D029-3D86-4AB1-9A43-5D4990CD05FB}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe No File
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomoct s PC
napsalo to hlasku - NO fixlist.text found.
-
Rudy
- Site Admin
- Příspěvky: 118274
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomoct s PC
Zkontrolujte, zda máte správně zkopírován text, zda je uložen c C:\Users\Lukas\Downloads (v adresáři, kde je uložen rovněž FRST) jako fixlist.txt (nesmí být překlep). Pak by to mělo fungovat.lukass9 píše:napsalo to hlasku - NO fixlist.text found.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?