vyskakujicici okna z chrome prohlizece

[jack68]

Zdravim
Opravdu fixlog.txt neni zobrazen ani v adresáři kde je ulozen program.

[Rudy]

To je divné. Okna stále vyskakují?

[jack68]

Zdravim,
jaj ja jsem to asi zle napsal. Ten pc (otcuv je v poradku) okna nevyskakuji. tam jsem i zaplatil beru za uzavrene. Ale ja Vam poslal jeste logy sveho pc. ze mi zamrzne obcas obrazovka. Stahl jsem pc repair azaplatil jak jste poslal postup ale problem porad pretrvava

[Rudy]

A které z nich to jsou?

[jack68]

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-01-2020
Ran by Michal (22-01-2020 06:30:07)
Running from C:\Users\Michal\Desktop
Windows 10 Pro Version 1903 18362.592 (X64) (2019-07-02 14:23:11)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2709589950-1360842280-2128968388-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2709589950-1360842280-2128968388-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-2709589950-1360842280-2128968388-1000 - Limited - Disabled) => C:\Users\defaultuser0
Guest (S-1-5-21-2709589950-1360842280-2128968388-501 - Limited - Disabled)
Michal (S-1-5-21-2709589950-1360842280-2128968388-1001 - Administrator - Enabled) => C:\Users\Michal
WDAGUtilityAccount (S-1-5-21-2709589950-1360842280-2128968388-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ABBYY FineReader 12 Professional (HKLM-x32\...\{F12000FE-0001-0000-0000-074957833700}) (Version: 12.1.426 - ABBYY Production LLC)
abPhoto (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 4.00.2001.1 - Acer Incorporated)
Acer Care Center (HKLM\...\{1AF41E84-3408-499A-8C93-8891F0612719}) (Version: 2.00.3024 - Acer Incorporated)
Acer Configuration Manager (HKLM-x32\...\{414D554E-4453-454E-0201-000000016258}) (Version: 2.1.16258 - Acer)
Acer Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 3.12.2006 - Acer Incorporated)
Acer UEIP Framework (HKLM\...\{12A718F2-2357-4D41-9E1F-18583A4745F7}) (Version: 3.02.3001 - Acer Incorporated)
Advanced IP Scanner 2.5 (HKLM-x32\...\{6ABB4DB7-5E8F-4F7A-AAF2-C7B4337B7161}) (Version: 2.5.3233 - Famatech)
Aktualizace ovladače pro aplikaci Centrum zařízení Windows Mobile (HKLM\...\{92DBCA36-9B41-4DD1-941A-AED149DD37F0}) (Version: 6.1.6965.0 - Microsoft Corporation)
AOP Framework (HKLM-x32\...\{4A37A114-702F-4055-A4B6-16571D4A5353}) (Version: 3.25.2001.0 - Acer Incorporated)
App Explorer (HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\...\Host App Service) (Version: 0.272.1.295 - SweetLabs) <==== ATTENTION
Backup and Sync from Google (HKLM\...\{7B473CF8-CE4F-4AE1-A86D-CFBDDCC85FAF}) (Version: 3.47.8667.1399 - Google, Inc.)
Balíček ovladače systému Windows - FTDI CDM Driver Package (10/22/2009 2.06.00) (HKLM\...\3134FEF0E1D959EC0CC2E458C94B7057B2AC0CC9) (Version: 10/22/2009 2.06.00 - FTDI)
Balíček ovladače systému Windows - FTDI CDM Driver Package (10/22/2009 2.06.00) (HKLM\...\88EB56038379B8B7DCFB4D2448A60F52E064B265) (Version: 10/22/2009 2.06.00 - FTDI)
Balíček ovladače systému Windows - SAMSUNG Electronics Co., Ltd. (dg_ssudbus) USB (12/02/2015 2.12.1.0) (HKLM\...\85A33267F12961AF9ED9AE799DEDA5E62BEA236F) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. )
Balíček ovladače systému Windows - SAMSUNG Electronics Co., Ltd. (ssudmdm) Modem (12/02/2015 2.12.1.0) (HKLM\...\88ED314360B98E6E82E7CC3201FAEB4A9FD291B4) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. )
Balíček ovladače systému Windows - SAMSUNG Electronics Co., Ltd. (WinUSB) AndroidUsbDeviceClass (12/02/2015 2.12.1.0) (HKLM\...\701281E8283E9E3681220099A9DA5013A5A437AF) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. )
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Boris FX Continuum Plug-ins 11 for Cyberlink (HKLM\...\{7E607B62-1788-40CB-BADB-DC1511627F6C}_is1) (Version: - Boris FX, Inc.)
Camera Stream Controller (HKLM-x32\...\Camera Stream Controller) (Version: 1.0.0.114 - VIVOTEK INC.)
CCleaner (HKLM\...\CCleaner) (Version: 5.61 - Piriform)
Centrum zařízení Windows Mobile (HKLM\...\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}) (Version: 6.1.6965.0 - Microsoft Corporation)
CyberLink ActionDirector 3 (HKLM-x32\...\{49483CD6-CB26-49EB-8C43-B0EA00927B5F}) (Version: 3.0.2219.0 - CyberLink Corp.)
CyberLink PowerDirector 16 (HKLM-x32\...\{EE9EC028-49D2-4349-B0A3-9B2E752A4958}) (Version: 16.0.2101.0 - CyberLink Corp.)
CyberLink WaveEditor 2 (HKLM-x32\...\{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}) (Version: 5620 - CyberLink Corp.)
Dashlane Upgrade Service (HKLM-x32\...\Dashlane Upgrade Service) (Version: 2.1.17.0 - Dashlane, Inc.)
Dazzle Video Capture DVC100 X64 Driver 1.08 (HKLM-x32\...\{FB4B9EB9-68B2-4C42-8C38-B65F8FE5A5CA}) (Version: 1.08.0000 - Pinnacle)
D-G Unlocker Tools v.1.0 (HKLM-x32\...\{1B0C7840-DEE7-4AE0-965D-6B3892286A68}) (Version: 1.00.0000 - D&G Unlocker)
Driver Booster 7 (HKLM-x32\...\Driver Booster_is1) (Version: 7.1.0 - IObit)
EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version: - EaseUS)
Ekonomický systém Money S3 (HKLM-x32\...\Money S3) (Version: 19.300 (20190319_12) - Solitea Česká republika, a.s.)
ESET Security (HKLM\...\{BEFBE0CD-6723-4D98-8263-9A2C376BC6CD}) (Version: 13.0.24.0 - ESET, spol. s r.o.)
FastShare.cz verze 2.4.0 (HKLM-x32\...\FastShare.cz_is1) (Version: 2.4.0 - )
Firebird 2.5.9.27139 (Win32) (HKLM-x32\...\FBDBServer_2_5_is1) (Version: 2.5.9.27139 - Firebird Project)
Freedome VPN (HKLM-x32\...\F-Secure Freedome) (Version: 1.3.2915.0 - F-Secure Corporation)
Freedome VPN (source) (HKLM-x32\...\{83A4BF20-6745-437C-98D8-3C4B94D174EB}) (Version: 1.16.0612 - Acer)
GemPcCCID (HKLM\...\{7567A068-2F02-40D1-A34C-16D79ECD35A6}) (Version: 2.0.3 - Gemalto)
GetDataBack for NTFS (HKLM-x32\...\{56582EEA-3AEF-4D84-8B9D-C87A3CD9250F}) (Version: 3.32.000 - Runtime Software)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.117 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden
GoPro Quik (HKLM\...\{8B7D1DD1-5CA4-4B6E-9A86-3EA9E3601DF3}) (Version: 0.1.841 - GoPro, Inc.) Hidden
GoPro Quik (HKLM-x32\...\{f1aab631-23ee-456b-a5ef-6e4d9d638068}) (Version: 2.6.2.841 - GoPro, Inc.)
I.CA Diagnostic (HKLM-x32\...\{6969F77F-418C-448B-9CA2-D7304112609E}) (Version: 1.2.8.0 - První certifikační autorita, a.s.) Hidden
I.CA Diagnostic (HKLM-x32\...\I.CA Diagnostic 1.2.8.0) (Version: 1.2.8.0 - První certifikační autorita, a.s.)
I.CA Maintenance (HKLM-x32\...\{29BC7C1E-3AEC-47AB-B820-FC16D759F1B3}) (Version: 1.3.0.0 - První certifikační autorita, a.s.) Hidden
I.CA Maintenance (HKLM-x32\...\I.CA Maintenance 1.3.0.0) (Version: 1.3.0.0 - První certifikační autorita, a.s.)
I.CA PKIServiceHost (HKLM\...\{446955F6-A94B-4293-B646-43A9ADD4D62B}) (Version: 1.2.5.0 - První certifikační autorita, a.s.) Hidden
I.CA PKIServiceHost (HKLM-x32\...\I.CA PKIServiceHost 1.2.5.0) (Version: 1.2.5.0 - První certifikační autorita, a.s.)
I.CA SecureStore 4.5 (HKLM\...\{974DE7F0-8CE5-4269-9395-2E1314A7E8CB}) (Version: 4.5 - První certifikační autorita, a.s.)
Intel Driver && Support Assistant (HKLM-x32\...\{3EAAD5EA-1D87-442D-8426-FD4FCE62119D}) (Version: 19.12.50.5 - Intel) Hidden
Intel(R) 2D Imaging Setup Wizard (HKLM\...\{ac212bd0-e091-426e-9db4-ee9c07bb0e93}) (Version: 30.10586.7035.1976 - Intel Corporation)
Intel(R) Computing Improvement Program (HKLM\...\{A9133872-C9FE-45CC-8F01-D1947B0F09EA}) (Version: 2.4.04755 - Intel Corporation)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10605.221 - Intel Corporation)
Intel(R) Chipset Device Software (HKLM-x32\...\{fb610cea-ba50-4d4b-a717-cf025419035c}) (Version: 10.1.1.13 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.2.1183 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 22.20.16.4691 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.8.0.1042 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.63.1519.7 - Intel Corporation)
Intel(R) Virtual Buttons (HKLM-x32\...\1992736F-C90A-481C-B21B-EE34CAD07387) (Version: 1.1.0.21 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{8d174f37-ea1a-4e4d-be82-c10521a3c687}) (Version: 19.12.50.5 - Intel)
Intel® Integrated Sensor Solution (HKLM-x32\...\{bb5db3f1-f986-40a9-8a7e-c361a35d9b90}) (Version: 3.0.30.1044 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{CCBE9F01-C2C3-469C-A508-2E23A7495E91}) (Version: 1.0.0.609 - Intel Corporation)
ISS_Drivers_x64 (HKLM\...\{573398AD-0A98-44AA-9CA7-E8257F495514}) (Version: 3.0.30.1044 - Intel Corporation) Hidden
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProplusRetail - cs-cz) (Version: 16.0.12325.20298 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\...\OneDriveSetup.exe) (Version: 19.222.1110.0006 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 45.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 45.0 (x86 en-US)) (Version: 45.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.0 - Mozilla)
MSI to redistribute MS VS2005 CRT libraries (HKLM-x32\...\{A8D93648-9F7F-407D-915C-62044644C3DA}) (Version: 8.0.50727.42 - The Firebird Project)
NewBlue Titler Pro for Windows (HKLM-x32\...\NewBlue Titler Pro for Windows) (Version: 1.5 - NewBlue)
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 3.0 - NewBlue)
NewBlue Video Essentials VI for Windows (HKLM-x32\...\NewBlue Video Essentials VI for Windows) (Version: 3.0 - NewBlue)
NewBlue Video Essentials VII for Windows (HKLM-x32\...\NewBlue Video Essentials VII for Windows) (Version: 3.0 - NewBlue)
O&O Defrag Professional (HKLM\...\{6F9CDC3F-27D8-4A38-B81D-7E2DE3AF8434}) (Version: 19.0.87 - O&O Software GmbH)
O2 Internet (HKLM-x32\...\O2 Internet) (Version: 23.015.11.00.445 - Huawei Technologies Co.,Ltd)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12325.20288 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12325.20288 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12325.20298 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.12325.20288 - Microsoft Corporation) Hidden
Ontrack® EasyRecovery™ Professional for Windows (HKLM-x32\...\Ontrack® EasyRecovery™ Professional for Windows_is1) (Version: 12.0.0.2 - Kroll Ontrack)
Open Transport Tycoon Deluxe 0.7.5 (HKLM-x32\...\Open Transport Tycoon Deluxe 0.7.5) (Version: - )
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
PC-CCID (HKLM\...\{3DCDFCDB-4D96-4CF0-9BB3-C91DAE9073F3}) (Version: 2.0.0 - Gemalto)
PDFsam Basic (HKLM\...\{C3C9A143-931C-42FD-AAC7-26E7B5502BF8}) (Version: 4.0.4.0 - Sober Lemur S.a.s. di Vacondio Andrea)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.8 - Google, Inc.)
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{543F829B-4591-4B2F-AF63-6E6E6AE59EB2}) (Version: 6.4 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{0ECA3BB5-4410-414B-B226-241FF1C12CD0}) (Version: 6.4 - Apple Inc.)
proDAD Adorage 3.0 (64bit) (HKLM\...\proDAD-Adorage-3.0) (Version: 3.0.115.3 - proDAD GmbH)
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: 4.6.2.2750 - Jan Fiala)
Qualcomm Atheros 11ac Wireless LAN Installer (HKLM-x32\...\{20CA507E-24AA-4741-87CF-CC1B250790B7}) (Version: 11.0.10245 - Qualcomm Atheros)
Qualcomm Atheros Bluetooth Installer (64) (HKLM\...\{628988B4-3FA5-4EA6-BAA3-DA640F6718BD}) (Version: 10.0.0.212 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.31225 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8581 - Realtek Semiconductor Corp.)
Realtek PC Camera Driver (HKLM-x32\...\{E399A5B3-ED53-4DEA-AF04-8011E1EB1EAC}) (Version: 10.0.10586.11224 - Realtek Semiconductor Corp.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
Samsung_MonSetup (HKLM-x32\...\{8EA79DBF-D637-448A-89D6-410A087A4493}) (Version: 1.00.0000 - Samsung)
SHARP MFP TWAIN K Scanner Driver (HKLM-x32\...\SHARP MFP TWAIN K Scanner Driver) (Version: 4.01.05 - SHARP)
SHARP MX/MX-M Series PC-Fax Driver (HKLM-x32\...\SHARP MX-2310U PC-Fax Driver) (Version: 1.00.000 - SHARP)
SHARP MX/MX-M/DX Series Printer Driver (HKLM-x32\...\SHARP MX-2310U Printer Driver) (Version: 1.00.000 - SHARP)
Sharpdesk (HKLM-x32\...\{2A30AFBD-6DA5-499F-A83B-7CB2DFF21C23}) (Version: 3.3 - SHARP CORPORATION)
Skype verze 8.54 (HKLM-x32\...\Skype_is1) (Version: 8.54 - Skype Technologies S.A.)
Skype™ 7.31 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.31.104 - Skype Technologies S.A.)
Služba Xperia Companion (HKLM\...\{7D8E3C78-DA8C-4BBC-86BC-6A42068EE7C2}) (Version: 1.3.2.0 - Sony) Hidden
Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.1.17054.16 - Samsung Electronics Co., Ltd.) Hidden
Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.1.17054.16 - Samsung Electronics Co., Ltd.)
SmartPSS 2.02.1 (HKLM-x32\...\SmartPSS) (Version: 2.02.1 - )
Synology Photo Station Uploader (remove only) (HKLM-x32\...\Photo Station Uploader) (Version: 1.4.0.080 - Synology)
TAGRA 137 (HKLM-x32\...\{AD8747CD-02E9-4900-986E-B5C05A23ABCD}) (Version: 137 - Truck Data Technology s.r.o.) Hidden
TAGRA 137 (HKLM-x32\...\TAGRA 137 137) (Version: 137 - Truck Data Technology s.r.o.)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.0.8397 - TeamViewer)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 8.52a - Ghisler Software GmbH)
Total PDF Printer (HKLM-x32\...\Total PDF Printer_is1) (Version: - Softplicity, Inc.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F14FB68A-9188-4036-AD0D-D054BC9C9291}) (Version: 2.59.0.0 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Vodafone Mobile Broadband (HKLM-x32\...\{1533A6AC-7984-4EA6-9A68-23C2537D3250}) (Version: 1.2.7.56241 - Vodafone)
Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0) (Version: 1.0.42.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0-3) (Version: 1.0.42.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0-4) (Version: 1.0.42.0 - LunarG, Inc.)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
Xperia Companion (HKLM-x32\...\{34D872B2-47FB-40A4-8C3F-915EA14F2586}) (Version: 1.3.2.0 - Sony) Hidden
Xperia Companion (HKLM-x32\...\{f494d3ac-4796-4bbd-b7a0-1873600d110d}) (Version: 1.3.2.0 - Sony)
Zoner Photo Studio X (HKLM\...\ZonerPhotoStudioX_CZ_is1) (Version: 19.1704.2.22 - ZONER software)

Packages:
=========
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-12-17] (Microsoft Corporation)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa [2019-12-12] (Apple Inc.) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-21] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-21] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.34.20074.0_x64__8wekyb3d8bbwe [2020-01-14] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-12] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-18] (Microsoft Corporation) [MS Ad]
Music Maker Jam -> C:\Program Files\WindowsApps\MAGIX.MusicMakerJam_3.1.1.0_x64__a2t3txkz9j1jw [2020-01-19] (MAGIX)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2709589950-1360842280-2128968388-1001_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (IDSA Production signing key -> Intel)
CustomCLSID: HKU\S-1-5-21-2709589950-1360842280-2128968388-1001_Classes\CLSID\{34EC519D-F525-2154-E03D-BF10F78ECA8E}\InprocServer32 -> C:\WINDOWS\system32\ole32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2709589950-1360842280-2128968388-1001_Classes\CLSID\{6BE99E87-B6FB-4CC3-AE69-DFCF33303D55} -> [Tiskové exporty z Money S3] => C:\Users\Public\Documents\Solitea\Money S3\PRINT\ [0000-00-00 00:00]
CustomCLSID: HKU\S-1-5-21-2709589950-1360842280-2128968388-1001_Classes\CLSID\{ED90173A-3B4C-4E7E-B9CF-79714425D4B5}\InprocServer32 -> C:\Program Files (x86)\PSPad editor\pspshellx64.dll () [File not signed]
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-12-22] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-12-22] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-12-22] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated -> Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated -> Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated -> Acer Incorporated)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET NOD32 Antivirus\shellExt.dll [2019-12-11] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [FineReader12ContextMenu] -> {55344AC6-630B-430C-B292-C7BE21F90061} => C:\Program Files (x86)\ABBYY FineReader 12\FRIntegration.x64.dll [2014-07-14] (ABBYY Production LLC -> ABBYY Production LLC.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-12-22] (Google LLC -> Google)
ContextMenuHandlers1: [OODefrag] -> {48EAD1E1-ECF2-4a85-AA09-1C44FBEED451} => C:\Program Files\OO Software\Defrag\oodsh.dll [2015-09-14] (O&O Software GmbH -> O&O Software GmbH)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET NOD32 Antivirus\shellExt.dll [2019-12-11] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [OODefrag] -> {48EAD1E1-ECF2-4a85-AA09-1C44FBEED451} => C:\Program Files\OO Software\Defrag\oodsh.dll [2015-09-14] (O&O Software GmbH -> O&O Software GmbH)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-12-22] (Google LLC -> Google)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_82548830eadb8221\igfxDTCM.dll [2019-12-06] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET NOD32 Antivirus\shellExt.dll [2019-12-11] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [FineReader12ContextMenu] -> {55344AC6-630B-430C-B292-C7BE21F90061} => C:\Program Files (x86)\ABBYY FineReader 12\FRIntegration.x64.dll [2014-07-14] (ABBYY Production LLC -> ABBYY Production LLC.)
ContextMenuHandlers6: [OODefrag] -> {48EAD1E1-ECF2-4a85-AA09-1C44FBEED451} => C:\Program Files\OO Software\Defrag\oodsh.dll [2015-09-14] (O&O Software GmbH -> O&O Software GmbH)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-2709589950-1360842280-2128968388-1001: [EditWithPSPad] -> {ED90173A-3B4C-4E7E-B9CF-79714425D4B5} => C:\Program Files (x86)\PSPad editor\pspshellx64.dll [2014-11-02] () [File not signed]

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.pDAD] => C:\WINDOWS\system32\prodad-codec.dll [607256 2017-09-06] (proDAD GmbH -> proDAD GmbH)

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2019-01-30 16:00 - 2019-01-30 16:00 - 001106432 _____ ( Prvni certifikacni autorita, a.s.) [File not signed] C:\WINDOWS\system32\SecureStoreCore.dll
2017-01-02 17:04 - 2014-11-02 18:45 - 000029184 _____ () [File not signed] C:\Program Files (x86)\PSPad editor\pspshellx64.dll
2011-12-23 00:01 - 2011-12-23 00:01 - 000930304 _____ () [File not signed] C:\Program Files (x86)\Sharp\Sharpdesk\SCprMfpif.dll
2016-07-07 09:57 - 2016-07-07 09:57 - 000035328 _____ () [File not signed] C:\Program Files (x86)\Synology\Photo Station Uploader\ShellExtHandler.dll
2017-09-22 12:07 - 2009-06-23 03:42 - 000043008 _____ () [File not signed] C:\ProgramData\O2 Internet\OnlineUpdate\libgcc_s_dw2-1.dll
2017-09-22 12:07 - 2009-01-10 19:32 - 000011362 _____ () [File not signed] C:\ProgramData\O2 Internet\OnlineUpdate\mingwm10.dll
2017-09-22 12:07 - 2013-08-31 06:44 - 002417152 _____ () [File not signed] C:\ProgramData\O2 Internet\OnlineUpdate\QtCore4.dll
2017-09-22 12:07 - 2013-08-31 06:46 - 001148416 _____ () [File not signed] C:\ProgramData\O2 Internet\OnlineUpdate\QtNetwork4.dll
2020-01-22 06:07 - 2020-01-22 06:07 - 000114176 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\_ctypes.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000173056 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\_elementtree.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 001808896 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\_hashlib.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000032256 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\_multiprocessing.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000046080 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\_psutil_windows.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000047616 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\_socket.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 002241024 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\_ssl.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000026112 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\_yappi.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000080896 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\bz2.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000016384 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\common.time34.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000007680 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\hashobjs_ext.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000301568 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\PIL._imaging.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000169472 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\pyexpat.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 001084416 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\pysqlite2._sqlite.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000548864 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\pythoncom27.dll
2020-01-22 06:07 - 2020-01-22 06:07 - 000137728 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\pywintypes27.dll
2020-01-22 06:07 - 2020-01-22 06:07 - 000010752 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\select.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000020992 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\thumbnails_ext.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000689664 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\unicodedata.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000119808 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\usb_ext.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000128512 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\win32api.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000438784 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\win32com.shell.shell.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000011776 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\win32crypt.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000023040 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\win32event.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000149504 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\win32file.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000223232 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\win32gui.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000048128 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\win32inet.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000029696 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\win32pdh.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000027648 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\win32pipe.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000044032 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\win32process.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000020480 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\win32profile.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000136192 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\win32security.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000026624 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\win32ts.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000034816 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\windows.conditional.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000038400 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\windows.connectivity.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000071680 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\windows.device_monitor.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000109056 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\windows.volumes.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000020480 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\windows.winwrap.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 001325056 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\wx._controls_.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 001489408 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\wx._core_.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 001007104 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\wx._gdi_.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000103424 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\wx._html2.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 000916992 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\wx._misc_.pyd
2020-01-22 06:07 - 2020-01-22 06:07 - 001039872 _____ () [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\wx._windows_.pyd
2019-01-30 16:02 - 2019-01-30 16:02 - 000482304 _____ () [File not signed] C:\WINDOWS\system32\SecureStoreCspRes.dll
2019-08-27 08:16 - 2019-06-20 10:07 - 000552960 _____ (Firebird Project) [File not signed] C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbclient.dll
2019-08-27 08:16 - 2019-06-20 10:07 - 000007680 _____ (Firebird Project) [File not signed] C:\Program Files (x86)\Firebird\Firebird_2_5\bin\ib_util.dll
2019-08-27 08:16 - 2019-06-20 10:08 - 000925696 _____ (Firebird Project) [File not signed] C:\Program Files (x86)\Firebird\Firebird_2_5\intl\fbintl.DLL
2019-08-27 08:16 - 2019-06-20 10:05 - 000438272 _____ (Firebird Project) [File not signed] C:\Program Files (x86)\Firebird\Firebird_2_5\plugins\fbtrace.dll
2019-01-30 11:14 - 2019-01-30 11:14 - 000944128 _____ (Free Software Foundation) [File not signed] C:\WINDOWS\system32\libiconv.dll
2019-08-27 08:16 - 2019-06-20 10:01 - 001568768 _____ (IBM Corporation and others) [File not signed] C:\Program Files (x86)\Firebird\Firebird_2_5\bin\icudt30.dll
2019-08-27 08:16 - 2019-06-20 10:01 - 000675840 _____ (IBM Corporation and others) [File not signed] C:\Program Files (x86)\Firebird\Firebird_2_5\bin\icuuc30.dll
2020-01-22 06:07 - 2020-01-22 06:07 - 003042816 _____ (Python Software Foundation) [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\python27.dll
2019-08-16 14:29 - 2019-08-16 14:29 - 001635840 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files\Intel\SUR\QUEENCREEK\x64\SQLite.Interop.dll
2011-12-22 23:44 - 2011-12-22 23:44 - 000257024 _____ (SHARP CORPORATION) [File not signed] C:\Program Files (x86)\Sharp\Sharpdesk\FlowManager.dll
2011-12-15 16:54 - 2011-12-15 16:54 - 000563200 _____ (SHARP CORPORATION) [File not signed] C:\Program Files (x86)\Sharp\Sharpdesk\mfpngbh.dll
2011-12-23 00:05 - 2011-12-23 00:05 - 000596480 _____ (SHARP CORPORATION) [File not signed] C:\Program Files (x86)\Sharp\Sharpdesk\ProfMgr.dll
2011-12-22 23:43 - 2011-12-22 23:43 - 000434176 _____ (SHARP CORPORATION) [File not signed] C:\Program Files (x86)\Sharp\Sharpdesk\Resources\resndkENU.dll
2016-12-16 13:44 - 2011-02-07 12:41 - 000029184 _____ (SHARP CORPORATION) [File not signed] C:\WINDOWS\system32\spool\PRTPROCS\x64\crprproc.dll
2019-08-16 14:29 - 2019-08-16 14:29 - 001902080 _____ (SQLite Development Team) [File not signed] C:\Program Files\Intel\SUR\QUEENCREEK\sqlite3.DLL
2019-08-16 14:29 - 2019-08-16 14:29 - 001902080 _____ (SQLite Development Team) [File not signed] C:\Program Files\Intel\SUR\QUEENCREEK\x64\sqlite3.dll
2014-08-29 08:54 - 2014-08-29 08:54 - 001659904 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\WINDOWS\system32\LIBEAY32_101.dll
2020-01-22 06:07 - 2020-01-22 06:07 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\wxbase30u_net_vc90_x64.dll
2020-01-22 06:07 - 2020-01-22 06:07 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\wxbase30u_vc90_x64.dll
2020-01-22 06:07 - 2020-01-22 06:07 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\wxmsw30u_adv_vc90_x64.dll
2020-01-22 06:07 - 2020-01-22 06:07 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\wxmsw30u_core_vc90_x64.dll
2020-01-22 06:07 - 2020-01-22 06:07 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\wxmsw30u_html_vc90_x64.dll
2020-01-22 06:07 - 2020-01-22 06:07 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\Michal\AppData\Local\Temp\_MEI979682\wxmsw30u_webview_vc90_x64.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\OEM:{6D006200-5200-6F00-5700-6F0061003900} [664]
AlternateDataStreams: C:\ProgramData\TEMP:24C8262A [121]
AlternateDataStreams: C:\Users\Michal\Documents\Nová složka:{6D006200-5200-6F00-5700-6F0061003900} [664]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\...\*.capgemini.com -> hxxp://*.capgemini.com
IE trusted site: HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\...\*.capgemini.com -> hxxps://*.capgemini.com
IE trusted site: HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\...\*.csob.cz -> hxxps://*.csob.cz
IE trusted site: HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\...\*.csob.sk -> hxxps://*.csob.sk
IE trusted site: HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\...\*.erasvet.cz -> hxxps://*.erasvet.cz
IE trusted site: HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\...\*.ica.cz -> hxxp://*.ica.cz
IE trusted site: HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\...\*.ica.cz -> hxxps://*.ica.cz
IE trusted site: HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\...\*.postovnisporitelna.cz -> hxxps://*.postovnisporitelna.cz

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-07-16 12:47 - 2018-05-15 05:33 - 000000887 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 cap.cyberlink.com
127.0.0.1 activation.cyberlink.com

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Skype\Phone\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Michal\Pictures\bear.jpg
DNS Servers: 185.108.120.1 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run32: => "WinSat"
HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\...\StartupApproved\Run: => "CCleaner Monitoring"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{E3AF2B2B-8145-453B-8C43-EFB79393F1A8}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{55861F68-BDF0-4EEB-8F84-C54689933DA1}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{7181DE29-3845-4522-8A7C-2CF5F2AF58AD}C:\windows\files\bin\kmss.exe] => (Allow) C:\windows\files\bin\kmss.exe No File
FirewallRules: [TCP Query User{A1B87635-EC33-45AB-A3B8-01A3B4716F79}C:\windows\files\bin\kmss.exe] => (Allow) C:\windows\files\bin\kmss.exe No File
FirewallRules: [UDP Query User{ADF76EA7-DAD0-4A4D-AE45-44BBED4C32FB}C:\windows\files\bin\kmss.exe] => (Allow) C:\windows\files\bin\kmss.exe No File
FirewallRules: [TCP Query User{D5BB6F63-AC13-49EE-8259-C2487031E6F7}C:\windows\files\bin\kmss.exe] => (Allow) C:\windows\files\bin\kmss.exe No File
FirewallRules: [{14789CD3-EFDC-459F-827D-F35A8BE3A3CF}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProLauncher.exe (GoPro Media, Inc. -> )
FirewallRules: [{24D6F23D-D4A2-4B7F-BB02-6609EBC49558}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProIDService.exe (GoPro Media, Inc. -> )
FirewallRules: [{0074F479-821A-469E-810C-C2854D187BF3}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProMsgBus.exe (GoPro Media, Inc. -> )
FirewallRules: [{7BF08C4C-6621-4639-B3BF-2CE7B100D35C}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoPro Quik.exe (GoPro Media, Inc. -> )
FirewallRules: [UDP Query User{6D56B91E-0F80-4D4A-A89B-E2D78F96450E}C:\program files (x86)\smart professional surveillance system\smartpss\smartpss.exe] => (Allow) C:\program files (x86)\smart professional surveillance system\smartpss\smartpss.exe () [File not signed]
FirewallRules: [TCP Query User{2ACAAC43-2FC2-43F6-A562-E3EF041BFA25}C:\program files (x86)\smart professional surveillance system\smartpss\smartpss.exe] => (Allow) C:\program files (x86)\smart professional surveillance system\smartpss\smartpss.exe () [File not signed]
FirewallRules: [{02943FDD-0932-4DE0-80ED-777151950726}] => (Block) %ProgramFiles% (x86)\Ontrack\EasyRecovery\OntrackEasyRecoveryforWindows.exe No File
FirewallRules: [{4E818203-4858-4413-94D2-B86AE43784A6}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe No File
FirewallRules: [{2EECF095-B604-47AB-A281-B9AC7DBB26E4}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe No File
FirewallRules: [{78F61F06-49B4-4CEE-974E-968ED7E5B53A}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe No File
FirewallRules: [{14C8FA55-CCAF-4319-8F53-DF883B7A7C98}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe No File
FirewallRules: [UDP Query User{441E5441-DF25-4D1E-80B5-EBCC8B240881}C:\programy\totalcmd\totalcmd.exe] => (Allow) C:\programy\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [TCP Query User{E0BA4DC5-64C3-4FD0-9BAA-6DC343789112}C:\programy\totalcmd\totalcmd.exe] => (Allow) C:\programy\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [UDP Query User{670FEB18-F9BC-40BB-9EF9-55317F31E651}C:\program files\winbox.exe] => (Allow) C:\program files\winbox.exe () [File not signed]
FirewallRules: [TCP Query User{A5373FCE-75A6-4D4B-A7CC-F2D89351B796}C:\program files\winbox.exe] => (Allow) C:\program files\winbox.exe () [File not signed]
FirewallRules: [{82F46973-46FD-4A60-A0F2-53885339D3FB}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{225914F4-93E7-4B3F-A965-AE6605A0B219}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C9E6AEFE-B24B-48ED-A0D4-60C67F7A2C1F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5B6E2EA6-4082-448B-ABAF-23FAA6AF784D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [UDP Query User{47D11E2C-1444-438E-8D7B-E5FDD1B31B98}C:\osobni\vypal\!!\!!\zaloha dreambox\inetbox_dm500\image nemesis\server_mario\dreamset\dreamset.exe] => (Allow) C:\osobni\vypal\!!\!!\zaloha dreambox\inetbox_dm500\image nemesis\server_mario\dreamset\dreamset.exe (John V.) [File not signed]
FirewallRules: [TCP Query User{85183841-7B89-4ECD-9E29-C7F1A24F398E}C:\osobni\vypal\!!\!!\zaloha dreambox\inetbox_dm500\image nemesis\server_mario\dreamset\dreamset.exe] => (Allow) C:\osobni\vypal\!!\!!\zaloha dreambox\inetbox_dm500\image nemesis\server_mario\dreamset\dreamset.exe (John V.) [File not signed]
FirewallRules: [{983017BE-4068-4E6D-BF85-5BF934651B92}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{96B95ECC-3E1F-4507-8ADA-340459D63CFA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{713D7167-4CD3-4053-B7D8-7EB96AB18B3E}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe (Acer Incorporated -> Acer Cloud Technology)
FirewallRules: [{7071ED03-9CA0-442F-8182-3E8F20D924C1}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe (Acer Incorporated -> Acer Cloud Technology)
FirewallRules: [{AC91C1E6-0FF9-4994-95FD-6BC983E6C2A2}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe (Acer Incorporated -> acer)
FirewallRules: [{8F0059E3-1F25-47E8-B5D7-3958643B4EF0}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe (Acer Incorporated -> acer)
FirewallRules: [{5D8654AC-AA0D-4C65-99FA-D6949912D6B2}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe (Acer Incorporated -> acer)
FirewallRules: [{24D148C9-2BAF-4726-A62D-1331570879BF}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe (Acer Incorporated -> acer)
FirewallRules: [TCP Query User{AFDDAFC6-2DFA-414E-B1AD-CBA55D33CB6C}C:\program files (x86)\sharp\sharpdesk\ftpserver.exe] => (Allow) C:\program files (x86)\sharp\sharpdesk\ftpserver.exe (SHARP CORPORATION) [File not signed]
FirewallRules: [UDP Query User{8E618919-F764-4C7F-A098-A212E7EE41CA}C:\program files (x86)\sharp\sharpdesk\ftpserver.exe] => (Allow) C:\program files (x86)\sharp\sharpdesk\ftpserver.exe (SHARP CORPORATION) [File not signed]
FirewallRules: [TCP Query User{9049F9E8-C289-4A66-98A0-1FAA0156BDF4}D:\aaa\micooffi20132016insv53\office 2013-2016 c2r install v5.3\files\bin\kmss.exe] => (Allow) D:\aaa\micooffi20132016insv53\office 2013-2016 c2r install v5.3\files\bin\kmss.exe No File
FirewallRules: [UDP Query User{B31D62C6-249A-4662-999F-ACAFD6FC6496}D:\aaa\micooffi20132016insv53\office 2013-2016 c2r install v5.3\files\bin\kmss.exe] => (Allow) D:\aaa\micooffi20132016insv53\office 2013-2016 c2r install v5.3\files\bin\kmss.exe No File
FirewallRules: [TCP Query User{6867770C-6CDE-4E49-A59C-EC53C0A39D99}C:\program files (x86)\synology\photo station uploader\mediauploader.exe] => (Allow) C:\program files (x86)\synology\photo station uploader\mediauploader.exe (Synology Inc. -> Synology Inc.) [File not signed]
FirewallRules: [UDP Query User{6FBECDF5-F86F-4A52-AABF-F3A62E58918D}C:\program files (x86)\synology\photo station uploader\mediauploader.exe] => (Allow) C:\program files (x86)\synology\photo station uploader\mediauploader.exe (Synology Inc. -> Synology Inc.) [File not signed]
FirewallRules: [{67ECED66-0FE0-4C2E-BEEB-B85037C54D8A}] => (Allow) C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanion.exe (Sony Mobile Communications AB -> Sony) [File not signed]
FirewallRules: [TCP Query User{65776CE7-162A-476F-9010-C6FC96769FD3}C:\program files (x86)\sharp\sharpdesk\ftpserver.exe] => (Allow) C:\program files (x86)\sharp\sharpdesk\ftpserver.exe (SHARP CORPORATION) [File not signed]
FirewallRules: [UDP Query User{0C02A2E6-3392-41EE-8908-01F62923A88E}C:\program files (x86)\sharp\sharpdesk\ftpserver.exe] => (Allow) C:\program files (x86)\sharp\sharpdesk\ftpserver.exe (SHARP CORPORATION) [File not signed]
FirewallRules: [TCP Query User{C7567B0F-1496-4584-BE84-3C5DAC8C5F22}C:\programy\totalcmd\totalcmd.exe] => (Allow) C:\programy\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [UDP Query User{11B79E69-C71A-4E58-9DEF-B7BF7FA7FE89}C:\programy\totalcmd\totalcmd.exe] => (Allow) C:\programy\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [{F376D13E-5B03-44A4-A711-4068A5B0768F}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{818D271F-5A9F-4E91-A7F6-B557D12BD6B1}D:\programy\2013-2016 c2r install v5.9.3\files\bin\kmss.exe] => (Allow) D:\programy\2013-2016 c2r install v5.9.3\files\bin\kmss.exe No File
FirewallRules: [UDP Query User{B8553B82-F9E1-45EB-965B-BDF49830E2DD}D:\programy\2013-2016 c2r install v5.9.3\files\bin\kmss.exe] => (Allow) D:\programy\2013-2016 c2r install v5.9.3\files\bin\kmss.exe No File
FirewallRules: [TCP Query User{3D897D9D-05F6-40B0-91ED-51A13648C129}C:\program files\winbox.exe] => (Allow) C:\program files\winbox.exe () [File not signed]
FirewallRules: [UDP Query User{3B8A569F-2E7E-45F8-A2AB-F8152276074E}C:\program files\winbox.exe] => (Allow) C:\program files\winbox.exe () [File not signed]
FirewallRules: [TCP Query User{A2566036-A34E-46F5-A04A-553032264A95}C:\program files (x86)\smart professional surveillance system\smartpss\smartpss.exe] => (Allow) C:\program files (x86)\smart professional surveillance system\smartpss\smartpss.exe () [File not signed]
FirewallRules: [UDP Query User{EC8A2355-408C-4B33-A3C7-04E58582D2C7}C:\program files (x86)\smart professional surveillance system\smartpss\smartpss.exe] => (Allow) C:\program files (x86)\smart professional surveillance system\smartpss\smartpss.exe () [File not signed]
FirewallRules: [{E9111D54-C349-46B5-833D-5B5F13D9C6DF}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{091CD5ED-6754-4A2F-AABA-F8B61138AB1E}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CFAB0A0C-0EAA-4F44-90F7-2C26BDDE3F2F}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )
FirewallRules: [{54C133D9-F324-4CA8-ADD7-99A868B16196}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )
FirewallRules: [{4599629E-B390-4A25-BC3D-5A7531F388DF}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )
FirewallRules: [{D2974607-BB01-4F5E-A036-997C38BF4520}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )
FirewallRules: [{542101AA-3B96-42C5-8902-76D8694FD319}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9372A9C9-DBC4-46F7-A95B-B190694D3EE6}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5FE09E51-2C92-4AB7-85B2-240F97F5AE12}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0C465DE5-4D60-47A3-9F2F-24FF6F7BF640}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{67A8759C-0841-4764-A92A-A2187D7EF857}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F818AB4D-F2FA-4E3D-8FC1-FF14F364DF52}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{BFDDC46E-B4E0-4B85-8973-567EB732DC21}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6D31E743-D1B6-49E6-9683-81A7668A5C07}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D3B3A5C3-A18D-43FE-A006-41FABCD380E9}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0CFD29B5-392A-4361-825D-EED97B19DE33}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{729DADFF-C490-43E6-8852-BCEF2E94B7FD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{F2E70540-0066-4AE6-9EB5-9EDF654E228C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{D7181734-735E-48BD-9F1C-CF0B46932626}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{90B0A9D2-EF97-45A8-8FFD-F26BC480351F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{5452DCF8-33E0-4DC3-BB61-62F44E3697BC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

01-01-2020 11:45:34 Naplánovaný kontrolní bod
09-01-2020 08:13:32 Naplánovaný kontrolní bod
17-01-2020 07:05:56 Naplánovaný kontrolní bod
21-01-2020 13:34:40 Installed TAGRA 137

==================== Faulty Device Manager Devices ============

Name: Citron Hands-Free HF
Description: Role Handsfree pro hands-free profil Microsoft Bluetooth
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: BthHFEnum
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: ========================

Application errors:
==================
Error: (01/22/2020 06:13:24 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (64760,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (01/22/2020 06:09:05 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: MICHAL)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (01/21/2020 04:28:25 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance(CLSID_VSSCoordinator) došlo k neočekávané chybě. hr= 0x800401f0, Nebyla volána procedura CoInitialize.
.

Error: (01/21/2020 04:28:25 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {e579ab5f-1cc4-44b4-bed9-de0991ff0623} a názvem Coordinator nelze spustit. [0x800401f0, Nebyla volána procedura CoInitialize.
]

Error: (01/21/2020 03:56:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: FRP Remover Cracked.exe, verze: 1.0.0.0, časové razítko: 0x58373bba
Název chybujícího modulu: KERNELBASE.dll, verze: 6.2.18362.535, časové razítko: 0x5bd9df62
Kód výjimky: 0xe0434f4d
Posun chyby: 0x001135d2
ID chybujícího procesu: 0x%9
Čas spuštění chybující aplikace: 0xFRP Remover Cracked.exe0
Cesta k chybující aplikaci: FRP Remover Cracked.exe1
Cesta k chybujícímu modulu: FRP Remover Cracked.exe2
ID zprávy: FRP Remover Cracked.exe3
Úplný název chybujícího balíčku: FRP Remover Cracked.exe4
ID aplikace související s chybujícím balíčkem: FRP Remover Cracked.exe5

Error: (01/21/2020 03:56:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: FRP Remover Cracked.exe, verze: 1.0.0.0, časové razítko: 0x58373bba
Název chybujícího modulu: KERNELBASE.dll, verze: 6.2.18362.535, časové razítko: 0x5bd9df62
Kód výjimky: 0xe0434f4d
Posun chyby: 0x001135d2
ID chybujícího procesu: 0x%9
Čas spuštění chybující aplikace: 0xFRP Remover Cracked.exe0
Cesta k chybující aplikaci: FRP Remover Cracked.exe1
Cesta k chybujícímu modulu: FRP Remover Cracked.exe2
ID zprávy: FRP Remover Cracked.exe3
Úplný název chybujícího balíčku: FRP Remover Cracked.exe4
ID aplikace související s chybujícím balíčkem: FRP Remover Cracked.exe5

Error: (01/21/2020 03:48:18 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance(CLSID_VSSCoordinator) došlo k neočekávané chybě. hr= 0x800401f0, Nebyla volána procedura CoInitialize.
.

Error: (01/21/2020 03:48:18 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {e579ab5f-1cc4-44b4-bed9-de0991ff0623} a názvem Coordinator nelze spustit. [0x800401f0, Nebyla volána procedura CoInitialize.
]


System errors:
=============
Error: (01/22/2020 06:05:04 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Služba zasílání zpráv_36ff388 byla ukončena s následující chybou:
Zařízení není připraveno.

Error: (01/21/2020 04:32:11 PM) (Source: DCOM) (EventID: 10010) (User: MICHAL)
Description: Server Microsoft.Windows.Cortana_1.13.0.18362_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppXd4tad4d57t4wtdbnnmb8v2xtzym8c1n8.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/21/2020 01:00:41 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Služba zasílání zpráv_23f1904 byla ukončena s následující chybou:
Zařízení není připraveno.

Error: (01/20/2020 10:13:47 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Rapid Storage Technology byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/20/2020 10:11:44 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Služba zasílání zpráv_8fc05 byla ukončena s následující chybou:
Zařízení není připraveno.

Error: (01/20/2020 10:11:38 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba O2 Internet. RunOuc neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (01/20/2020 10:11:38 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby O2 Internet. RunOuc bylo dosaženo časového limitu (45000 ms).

Error: (01/20/2020 06:07:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Rapid Storage Technology byla neočekávaně ukončena. Tento stav nastal již 1krát.


CodeIntegrity:
===================================

Date: 2020-01-22 06:05:31.564
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET NOD32 Antivirus\eamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-01-22 06:05:31.560
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET NOD32 Antivirus\eamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-01-22 06:05:31.555
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET NOD32 Antivirus\eamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-01-22 06:05:31.551
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET NOD32 Antivirus\eamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-01-22 06:05:31.541
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET NOD32 Antivirus\eamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-01-21 06:04:50.309
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET NOD32 Antivirus\eamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-01-21 06:04:50.306
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET NOD32 Antivirus\eamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-01-21 06:04:50.301
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET NOD32 Antivirus\eamsi.dll that did not meet the Windows signing level requirements.

==================== Memory info ===========================

BIOS: Insyde Corp. V1.02 06/17/2016
Motherboard: Acer Hawaii
Processor: Intel(R) Core(TM) i7-6500U CPU @ 2.50GHz
Percentage of memory in use: 47%
Total physical RAM: 8072.91 MB
Available physical RAM: 4214.63 MB
Total Virtual: 9352.91 MB
Available Virtual: 5182.66 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:475.83 GB) (Free:192.57 GB) NTFS

\\?\Volume{727208f8-994f-4a0b-a32f-3f87b4511309}\ (Recovery) (Fixed) (Total:1 GB) (Free:0.57 GB) NTFS
\\?\Volume{0a955655-14a2-47b1-8d6c-1f62e8762783}\ (ESP) (Fixed) (Total:0.09 GB) (Free:0.04 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: 947150D8)

Partition: GPT.

==================== End of Addition.txt =======================

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 18-01-2020
Ran by Michal (administrator) on MICHAL (Acer Switch SA5-271P) (22-01-2020 06:28:50)
Running from C:\Users\Michal\Desktop
Loaded Profiles: Michal (Available Profiles: defaultuser0 & Michal)
Platform: Windows 10 Pro Version 1903 18362.592 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ABBYY Production LLC -> ABBYY Production LLC) C:\Program Files (x86)\ABBYY FineReader 12\NetworkLicenseServer.exe
(Acer Incorporated -> ) C:\OEM\Preload\FubTool\FubTool.exe
(Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files\Cyberlink\PowerDirector16\PDRStyleAgent.exe
(CyberLink Corp. -> CyberLink) C:\Program Files\Cyberlink\Shared files\RichVideo64.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
(Firebird Project) [File not signed] C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe
(Firebird Project) [File not signed] C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\Freedome\Freedome\1\FreedomeService.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler64.exe
(GoPro Media, Inc. -> ) C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe
(Huawei Technologies Co., Ltd. -> ) C:\ProgramData\DatacardService\HWDeviceService64.exe
(Huawei Technologies Co., Ltd. -> ) C:\ProgramData\O2 Internet\OnlineUpdate\ouc.exe
(ICEpower a/s -> ICEpower) C:\Windows\System32\ICEsoundService64.exe
(IDSA Production signing key -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(IDSA Production signing key -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
(IDSA Production signing key -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_82548830eadb8221\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_82548830eadb8221\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_82548830eadb8221\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_82548830eadb8221\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_120314e52c04567c\RstMwService.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\Driver Booster\7.1.0\Pub\PubMonitor.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19101.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Sharp Corporation) C:\Windows\System32\spool\drivers\x64\3\SS0ILMSW.EXE
(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(O&O Software GmbH -> O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe
(O&O Software GmbH -> O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodtray.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(SHARP CORPORATION) [File not signed] C:\Program Files (x86)\Sharp\Sharpdesk\FTPServer.exe
(SHARP CORPORATION) [File not signed] C:\Program Files (x86)\Sharp\Sharpdesk\nsapp.exe
(SHARP CORPORATION) [File not signed] C:\Program Files (x86)\Sharp\Sharpdesk\SharpTray.exe
(SHARP CORPORATION) [File not signed] C:\Windows\System32\spool\drivers\x64\3\SN0XRCV.exe
(Sony Mobile Communications AB -> Sony) [File not signed] C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe
(TeamViewer GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Vodafone) [File not signed] C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\VmbNotifierService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtsCM] => C:\WINDOWS\RTSCM64.EXE [224000 2017-09-27] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323056 2015-11-04] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [SN0XRCV] => C:\Windows\system32\spool\drivers\x64\3\SN0XRCV.exe [102400 2016-12-16] (SHARP CORPORATION) [File not signed]
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\ecmdS.exe [183088 2019-12-11] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe [4468984 2015-09-14] (O&O Software GmbH -> O&O Software GmbH)
HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [139624 2019-12-13] (IDSA Production signing key -> Intel)
HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-11-21] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\...\MountPoints2: {7ba8ff7d-decb-11e9-89b5-94e979547538} - "D:\Bolt.exe"
HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\...\MountPoints2: {92b85ded-022b-11ea-89b8-94e979547538} - "D:\SetupVMB.exe"
HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\...\MountPoints2: {97231b02-cee3-11e9-89b3-94e979547538} - "D:\AutoRun.exe"
HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\...\MountPoints2: {97231bc9-cee3-11e9-89b3-94e979547538} - "D:\AutoRun.exe"
HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\...\MountPoints2: {d46ee352-3b64-11ea-89c5-94e979547538} - "E:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.117\Installer\chrmstp.exe [2020-01-08] (Google LLC -> Google LLC)
GroupPolicy: Restriction ? <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {013B405E-A6D4-4F15-A63A-1A4A7410CBA0} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24629104 2020-01-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {03311A20-87F3-427C-AC17-00785EED2C45} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {07E13DE4-DAF8-440C-9FBB-912915937A4A} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe [216296 2014-03-13] (Acer Incorporated -> TODO: <Company name>)
Task: {0C7C2645-C9A8-467B-A4DB-E122280E4DB6} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-11-21] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {12C486F2-4E8E-4665-BEF6-5FC6A7EB4F61} - System32\Tasks\CareCenter\SN02IPRW_Reg_HKLMRun => C:\Windows\SysWOW64\SN02SELC.exe [135168 2005-02-15] (SHARP CORPORATION) [File not signed]
Task: {19E8734B-123C-49D3-8909-8018B9326DB5} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [857568 2016-01-14] (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
Task: {1B4728FD-3F79-4753-95C7-ECDD54CCCD23} - System32\Tasks\OInstall => C:\WINDOWS\OInstall.exe [8757880 2016-04-29] (WZT -> ) [File not signed]
Task: {20B4ADE5-7B6F-4221-8C17-19854113DFE0} - System32\Tasks\FubToolByPLD => C:\OEM\Preload\FubTool\FubTool.exe [30976 2015-05-14] (Acer Incorporated -> )
Task: {22F240EC-A38C-45C9-9429-BB3243C96737} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18744 2019-04-15] (Intel(R) Software Development Products -> Intel Corporation)
Task: {36928D40-161E-4692-AD2F-65CED272EE97} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\7.1.0\Scheduler.exe [149776 2019-11-14] (IObit Information Technology -> IObit)
Task: {3741F58F-2FB0-41E7-81DC-B8EAD6F0EAD1} - System32\Tasks\CareCenter\IndexTray.exe_Reg_HKLMWow6432Run => C:\Program Files (x86)\Sharp\Sharpdesk\IndexTray.exe [395264 2011-12-20] (SHARP CORPORATION) [File not signed]
Task: {3B770E54-8450-474F-B16D-F4F26B1E6068} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4360000 2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {3CEEDF75-434C-423D-80B7-E4D2039F7118} - System32\Tasks\CareCenter\RtHDVBg_TrueHarmony_Reg_HKLMRun => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506384 2019-11-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {50DE449B-12E4-49D3-B58D-9D903CE5AEAD} - System32\Tasks\DashlaneUpgradeCheck => net [Argument = start "Dashlane Upgrade Service"]
Task: {621CA8BE-5494-41E1-ACF5-907FFD12BFD2} - System32\Tasks\CareCenter\Windows Mobile Device Center_Reg_HKLMRun => C:\WINDOWS\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {62307D36-81D1-4E28-92BD-A9EEEA151AAF} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [40352 2016-06-25] (Acer Incorporated -> )
Task: {6C0B57CE-96C6-4ADF-8C60-451F6A416F3B} - System32\Tasks\CareCenter\ICAMaintenance_ICAPKIService_RegKeysRefresh_Reg_HKLMWow6432Run => C:\Program Files (x86)\I.CA\I.CA Maintenance\ICAMaintenance.exe [272120 2016-10-07] (Prvni certifikacni autorita, a.s. -> I.CA, a.s.)
Task: {6CCFEB7E-1B0E-4051-A14C-B3BF21E352B4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-12-16] (Google Inc -> Google Inc.)
Task: {6FEF2431-F2C4-4EE8-9A98-0ED5BEBF2A42} - System32\Tasks\CareCenter\GoogleDriveSync_Reg_HKCURun_S-1-5-21-2709589950-1360842280-2128968388-1001 => C:\Program Files\Google\Drive\googledrivesync.exe [47773264 2019-12-22] (Google LLC -> )
Task: {7837058E-43A5-4E85-8163-1F9A2F6F3A23} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2919840 2016-06-25] (Acer Incorporated -> )
Task: {78DB8AEF-B8F4-45C7-B9C1-E151B4DE60CC} - System32\Tasks\CareCenter\FtpServer.exe_Reg_HKLMWow6432Run => C:\Program Files (x86)\Sharp\Sharpdesk\FTPServer.exe [820224 2011-12-22] (SHARP CORPORATION) [File not signed]
Task: {7F3B1CFB-56F4-465F-B286-0099E8660008} - System32\Tasks\AcerCMUpdateTask2.1.16258 => C:\Program Files (x86)\Acer\Amundsen\2.1.16258\AWC.exe [152880 2016-09-20] (Acer Incorporated -> )
Task: {8033804A-256B-4C30-9C1C-EE0CB3F5E758} - System32\Tasks\CareCenter\O&O Defrag Tray.lnk_FolderCommonAppdata => C:\WINDOWS\Installer\{6F9CDC3F-27D8-4A38-B81D-7E2DE3AF8434}\app_icon.ico [292878 2017-10-23] () [File not signed]
Task: {94AE4D09-116E-4A24-90F1-EC4828FCEE6E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4360000 2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {A74B0201-423A-484D-B669-09EFB3BF5AAB} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115448 2020-01-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {A8C588CC-7AB6-4E05-A3CF-46896DB80D23} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115448 2020-01-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {AC874F26-D23B-43B8-ABB2-46E3DB412019} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-12-16] (Google Inc -> Google Inc.)
Task: {B32F573F-41AF-4778-8606-F451709C5985} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1376144 2020-01-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {B35E5F53-EBF5-4DAB-8E59-043375F27CD7} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18744 2019-04-15] (Intel(R) Software Development Products -> Intel Corporation)
Task: {BE1567DA-5957-4BC2-B956-C0E0860D7C4A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-11-21] (Piriform Software Ltd -> Piriform Ltd)
Task: {C44FB0A0-A680-45AC-BE34-E6FBACB2158D} - System32\Tasks\CareCenter\SunJavaUpdateSched_Reg_HKLMWow6432Run => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
Task: {CA687DFD-2395-4A0F-80FF-5A11376D3B41} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [65752 2017-03-20] (Acer Incorporated -> Acer Incorporated)
Task: {CCEF86E7-2497-4865-932C-F2283830F7A4} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1376144 2020-01-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {D96ACEE2-5A0C-41E2-BCCE-1857C83EC779} - System32\Tasks\CareCenter\CCleaner Monitoring_Reg_HKCURun_S-1-5-21-2709589950-1360842280-2128968388-1001 => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-11-21] (Piriform Software Ltd -> Piriform Ltd)
Task: {D970A157-D24B-4349-8993-E574FC6C89F8} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24629104 2020-01-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {DE9DC1CD-42F8-4031-A4F1-F237431EA743} - System32\Tasks\CareCenter\RTHDVCPL_Reg_HKLMRun => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18391120 2019-11-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {E60CC02C-07B3-4242-877C-9235E04355E8} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {E926C6E1-948A-48EE-B450-F89760F06F21} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {F5ED5AAF-68EA-4D2E-ADCC-CDC157461152} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4644256 2016-06-25] (Acer Incorporated -> )
Task: {F8AB4192-E0E3-4690-B40F-E31AEBEB8C69} - System32\Tasks\CareCenter\SharpTray.exe_Reg_HKLMWow6432Run => C:\Program Files (x86)\Sharp\Sharpdesk\SharpTray.exe [156672 2011-12-20] (SHARP CORPORATION) [File not signed]
Task: {FD0A9F01-531F-4FE9-94C6-9551F07012E8} - System32\Tasks\Driver Booster SkipUAC (Michal) => C:\Program Files (x86)\IObit\Driver Booster\7.1.0\DriverBooster.exe [7757072 2019-11-14] (IObit Information Technology -> IObit)
Task: {FEC749CF-0AA9-4EA8-A02A-473ED3C7208B} - System32\Tasks\PDRStyleAgent => C:\Program Files\CyberLink\PowerDirector16\PDRStyleAgent.exe [99608 2018-04-18] (CyberLink Corp. -> CyberLink Corp.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 185.108.120.1 8.8.8.8
Tcpip\..\Interfaces\{259d4b7e-9fbb-4d1a-ae02-90094bca3429}: [NameServer] 160.218.161.60 194.228.211.33
Tcpip\..\Interfaces\{3070c0c4-916b-4215-86ab-a0994c786b6b}: [NameServer] 160.218.161.60 194.228.211.33
Tcpip\..\Interfaces\{bdc447da-4394-4fc9-ac32-db2dbc6e2d54}: [DhcpNameServer] 185.108.120.1 8.8.8.8
Tcpip\..\Interfaces\{c1d62724-acfb-4864-8f71-d7f2e1e8cac3}: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{f1a3292a-5ab0-4e06-80d3-5790e1d6ab8e}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{fa9d648b-6990-4b0c-9884-84d7bb8cffbc}: [DhcpNameServer] 10.66.216.1

Internet Explorer:
==================
HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer17win10.msn.com/?pc=ACTE
HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer17win10.msn.com/?pc=ACTE
HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
SearchScopes: HKU\S-1-5-21-2709589950-1360842280-2128968388-1001 -> DefaultScope {43B3F7A7-C57A-44F9-A4AF-C1CA78A86043} URL =
SearchScopes: HKU\S-1-5-21-2709589950-1360842280-2128968388-1001 -> {43B3F7A7-C57A-44F9-A4AF-C1CA78A86043} URL =
SearchScopes: HKU\S-1-5-21-2709589950-1360842280-2128968388-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
DPF: HKLM-x32 {64865E5A-E8D7-44C1-89E1-99A84F6E56D0} hxxp://192.168.1.202/VVTK_Plugin_Installer.exe
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: sds - {79E0F14C-9C52-4218-89A7-7C4B0563D121} - C:\Program Files (x86)\Sharp\Sharpdesk\ExplorerExtensions.dll [2011-12-20] (SHARP CORPORATION) [File not signed]

FireFox:
========
FF DefaultProfile: rzzk17eb.default
FF ProfilePath: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\rzzk17eb.default [2020-01-18]
FF Extension: (Amazon Assistant for Firefox) - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\rzzk17eb.default\Extensions\abb-acer@amazon.com [2016-12-16] [Legacy]
FF Extension: (Czech (CZ) Language Pack) - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\rzzk17eb.default\Extensions\langpack-cs@firefox.mozilla.org [2016-12-16] [Legacy]
FF Extension: (Mozilla Partner Defaults) - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\rzzk17eb.default\Extensions\partnerdefaults@mozilla.com [2016-12-16] [Legacy]
FF Extension: (Amazon Assistant for Firefox) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\abb-acer@amazon.com [2016-10-26] [Legacy]
FF Extension: (Czech (CZ) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-cs@firefox.mozilla.org [2016-10-26] [Legacy]
FF Extension: (Mozilla Partner Defaults) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\partnerdefaults@mozilla.com [2016-10-26] [Legacy]
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2011-04-14] (Google Inc. -> Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-25] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-25] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-15] (Google LLC -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-15] (Google LLC -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-01-22]

Chrome:
=======
CHR Notifications: Default -> hxxps://mail.google.com; hxxps://www.facebook.com
CHR Profile: C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default [2020-01-22]
CHR Extension: (Prezentace) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-14]
CHR Extension: (Dokumenty) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-14]
CHR Extension: (Disk Google) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-16]
CHR Extension: (MEGA) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2020-01-16]
CHR Extension: (YouTube) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-16]
CHR Extension: (Elektronický podpis ČSOB) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\eahecpanklnlonjjlojnjjcigcbflego [2017-05-31]
CHR Extension: (Tabulky) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-14]
CHR Extension: (Dokumenty Google offline) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-16]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-12-18]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2018-12-12]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-24]
CHR Extension: (Chrome Media Router) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-17]
CHR HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ABBYY.Licensing.FineReader.Professional.12.0; C:\Program Files (x86)\ABBYY FineReader 12\NetworkLicenseServer.exe [961744 2014-07-13] (ABBYY Production LLC -> ABBYY Production LLC)
R2 AtherosSvc; C:\WINDOWS\System32\drivers\AdminService.exe [406504 2019-11-15] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11164232 2020-01-07] (Microsoft Corporation -> Microsoft Corporation)
S2 Dashlane Upgrade Service; C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe [83992 2017-08-23] (Dashlane -> Dashlane, Inc.)
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [38248 2019-12-13] (IDSA Production signing key -> Intel)
R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [145768 2019-12-13] (IDSA Production signing key -> Intel)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2245488 2019-12-11] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2245488 2019-12-11] (ESET, spol. s r.o. -> ESET)
R2 esifsvc; C:\WINDOWS\System32\Intel\DPTF\esif_uf.exe [1855976 2019-11-15] (Intel Corporation -> Intel Corporation)
R2 ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe [877368 2019-08-16] (Intel(R) Software Development Products -> )
R2 FirebirdGuardianDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbguard.exe [98304 2019-06-20] (Firebird Project) [File not signed]
R3 FirebirdServerDefaultInstance; C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbserver.exe [3854336 2019-06-20] (Firebird Project) [File not signed]
R2 Freedome Service; C:\Program Files (x86)\F-Secure\Freedome\Freedome\1\FreedomeService.exe [434648 2016-12-16] (F-Secure Corporation -> F-Secure Corporation)
R2 GoProDeviceDetectionService; C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe [38328 2018-06-11] (GoPro Media, Inc. -> )
R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [351824 2014-01-15] (Huawei Technologies Co., Ltd. -> )
S3 I.CA Maintenance Service; C:\Program Files (x86)\I.CA\I.CA Maintenance\ICAMaintenance.exe [272120 2016-10-07] (Prvni certifikacni autorita, a.s. -> I.CA, a.s.)
R2 ICEsoundService; C:\WINDOWS\system32\ICEsoundService64.exe [806352 2019-11-15] (ICEpower a/s -> ICEpower)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [976848 2016-01-14] (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2016-02-05] (Intel Corporation) [File not signed]
S3 Intel(R) SUR QC SAM; C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18744 2019-04-15] (Intel(R) Software Development Products -> Intel Corporation)
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [8704 2016-02-05] (Intel Corporation) [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [209184 2016-02-12] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S2 O2 Internet. RunOuc; C:\Program Files (x86)\O2 Internet\UpdateDog\ouc.exe [651856 2013-10-26] (Huawei Technologies Co., Ltd. -> )
R2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [1711352 2015-09-14] (O&O Software GmbH -> O&O Software GmbH)
R2 QcomWlanSrv; C:\WINDOWS\System32\drivers\QcomWlanSrvx64.exe [191768 2019-11-15] (Qualcomm Atheros -> Qualcomm Technologies Inc.)
R2 RapiMgr; C:\WINDOWS\WindowsMobile\rapimgr.dll [225672 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [614664 2017-06-23] (CyberLink Corp. -> CyberLink)
R2 RstMwService; C:\WINDOWS\System32\DriverStore\FileRepository\iaahcic.inf_amd64_120314e52c04567c\RstMwService.exe [2156512 2019-11-15] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-09-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 SystemUsageReportSvc_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe [204088 2019-08-16] (Intel(R) Software Development Products -> )
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12097024 2019-11-06] (TeamViewer GmbH -> TeamViewer Germany GmbH)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [295840 2016-05-27] (Acer Incorporated -> acer)
S3 USER_ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe [877368 2019-08-16] (Intel(R) Software Development Products -> )
R2 VmbNotifierService; C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\VmbNotifierService.exe [185344 2017-10-21] (Vodafone) [File not signed]
R2 WcesComm; C:\WINDOWS\WindowsMobile\wcescomm.dll [443784 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
R2 XperiaCompanionService; C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [2085760 2016-09-16] (Sony Mobile Communications AB -> Sony) [File not signed]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2019-11-15] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 dlcdcncm; C:\WINDOWS\System32\drivers\dlcdcncm62_x64.sys [90536 2019-07-14] (DISPLAYLINK (UK) LIMITED -> DisplayLink Corp.)
S3 dlusbaudio; C:\WINDOWS\System32\drivers\dlusbaudio_x64.sys [238320 2017-05-29] (DISPLAYLINK -> DisplayLink Corp.)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [78680 2019-11-15] (Intel Corporation -> Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [71000 2019-11-15] (Intel Corporation -> Intel Corporation)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2018-05-13] (Disc Soft Ltd -> Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2018-05-13] (Disc Soft Ltd -> Disc Soft Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [149944 2019-11-01] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [103264 2019-11-01] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15800 2019-05-30] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [189512 2019-11-01] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [116696 2019-12-11] (ESET, spol. s r.o. -> ESET)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [402264 2019-11-15] (Intel Corporation -> Intel Corporation)
S3 ETDSMBus; C:\WINDOWS\System32\drivers\ETDSMBus.sys [32840 2017-09-27] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronic Corp.)
S3 ew_hwusbdev; C:\WINDOWS\system32\DRIVERS\ew_hwusbdev.sys [109568 2013-01-25] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 ew_usbenumfilter; C:\WINDOWS\System32\drivers\ew_usbenumfilter.sys [14976 2012-12-22] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 GemCCID; C:\WINDOWS\System32\drivers\GemCCID.sys [130944 2014-11-10] (Microsoft Windows Hardware Compatibility Publisher -> Gemalto)
R3 HID_PCI; C:\WINDOWS\System32\drivers\HID_PCI.sys [30832 2016-03-03] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel)
R3 huawei_enumerator; C:\WINDOWS\System32\drivers\ew_jubusenum.sys [91648 2013-11-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2019-11-15] (Martin Malik - REALiX -> REALiX(tm))
S3 hwusb_cdcacm; C:\WINDOWS\system32\DRIVERS\ew_cdcacm.sys [125952 2014-07-25] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwusb_wwanecm; C:\WINDOWS\System32\drivers\ew_wwanecm.sys [380672 2014-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 iactrllogic; C:\WINDOWS\System32\drivers\iactrllogic64.sys [182184 2019-11-15] (Microsoft Corporation -> Intel(R) Corporation)
R3 iaLPSS2_GPIO2; C:\WINDOWS\System32\drivers\iaLPSS2_GPIO2.sys [98760 2019-11-15] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R0 iaStorAC; C:\WINDOWS\System32\drivers\iaStorAC.sys [1035744 2019-11-15] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R3 ISH; C:\WINDOWS\System32\drivers\ISH.sys [155288 2019-11-15] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel)
R3 ISH_BusDriver; C:\WINDOWS\System32\drivers\ISH_BusDriver.sys [76912 2016-03-03] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [31032 2019-11-15] (Acer Incorporated -> Acer Incorporated)
R3 MEIx64; C:\WINDOWS\System32\DriverStore\FileRepository\heci.inf_amd64_85021432489d6a1c\x64\TeeDriverW8x64.sys [266128 2019-11-15] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R3 ov5670; C:\WINDOWS\System32\drivers\ov5670.sys [159104 2019-11-15] (Intel Corporation -> Intel Corporation)
R3 Qcamain10x64; C:\WINDOWS\System32\drivers\Qcamain10x64.sys [2371864 2019-11-15] (Qualcomm Atheros -> Qualcomm Atheros, Inc.)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [25400 2019-11-15] (Acer Incorporated -> Acer Incorporated)
R3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [450152 2019-11-15] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [3149832 2017-09-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
R3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [41816 2019-08-16] (Intel Corporation -> )
R3 SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [56840 2019-11-15] (Synaptics Incorporated -> Synaptics Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2019-11-15] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [24576 2019-09-11] (Microsoft Windows -> Microsoft Corporation)
R3 VirtualButtons; C:\WINDOWS\System32\drivers\VirtualButtons.sys [41536 2019-11-15] (Intel(R) Software -> Intel Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-01-22 06:28 - 2020-01-22 06:29 - 000038972 _____ C:\Users\Michal\Desktop\FRST.txt
2020-01-22 06:28 - 2020-01-22 06:29 - 000000000 ____D C:\FRST
2020-01-22 06:28 - 2020-01-22 06:28 - 002572800 _____ (Farbar) C:\Users\Michal\Desktop\FRST64.exe
2020-01-21 16:27 - 2020-01-21 16:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\D&G Unlocker
2020-01-21 16:27 - 2020-01-21 16:27 - 000000000 ____D C:\data
2020-01-21 16:02 - 2020-01-21 16:02 - 000000000 ____D C:\Users\Public\Documents\iMyFone
2020-01-21 16:01 - 2020-01-21 16:01 - 000000000 ____D C:\Program Files (x86)\imyfone_down
2020-01-21 15:47 - 2020-01-21 15:47 - 000000000 ____D C:\WINDOWS\system32\appmgmt
2020-01-21 15:42 - 2020-01-21 15:42 - 000000000 ____D C:\Users\Michal\.android
2020-01-21 15:40 - 2020-01-21 16:27 - 000000000 ____D C:\adb
2020-01-21 13:35 - 2020-01-21 13:35 - 000001021 _____ C:\ProgramData\Microsoft\Windows\Start Menu\TAGRA.lnk
2020-01-21 13:35 - 2020-01-21 13:35 - 000001015 _____ C:\Users\Public\Desktop\TAGRA.lnk
2020-01-21 13:35 - 2020-01-21 13:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TAGRA 137
2020-01-21 13:34 - 2020-01-21 13:34 - 032868288 _____ C:\Users\Michal\Downloads\TAGRA_eu.zip
2020-01-20 11:39 - 2020-01-20 11:39 - 000006422 _____ C:\Users\Michal\Downloads\fa 2020003.pdf
2020-01-20 06:16 - 2020-01-20 06:16 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-01-20 06:16 - 2020-01-20 06:16 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-01-20 06:16 - 2020-01-20 06:16 - 018020352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-01-20 06:16 - 2020-01-20 06:16 - 008012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-01-20 06:16 - 2020-01-20 06:16 - 007754752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-01-20 06:16 - 2020-01-20 06:16 - 007016448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-01-20 06:16 - 2020-01-20 06:16 - 005913600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-01-20 06:16 - 2020-01-20 06:16 - 002494464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-01-20 06:16 - 2020-01-20 06:16 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-01-20 06:16 - 2020-01-20 06:16 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-01-20 06:16 - 2020-01-20 06:16 - 001106944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-01-20 06:16 - 2020-01-20 06:16 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-01-20 06:16 - 2020-01-20 06:16 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2020-01-20 06:16 - 2020-01-20 06:16 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-01-20 06:16 - 2020-01-20 06:16 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-01-20 06:16 - 2020-01-20 06:16 - 000571392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll
2020-01-20 06:16 - 2020-01-20 06:16 - 000432256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-01-20 06:16 - 2020-01-20 06:16 - 000363840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-01-20 06:16 - 2020-01-20 06:16 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2020-01-20 06:16 - 2020-01-20 06:16 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiadss.dll
2020-01-20 06:16 - 2020-01-20 06:16 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-01-20 06:16 - 2020-01-20 06:16 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-01-20 06:16 - 2020-01-20 06:16 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiatrace.dll
2020-01-20 06:15 - 2020-01-20 06:16 - 022627840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 025900032 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 009928208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-01-20 06:15 - 2020-01-20 06:15 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 006520480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-01-20 06:15 - 2020-01-20 06:15 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 002870784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 002801152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-01-20 06:15 - 2020-01-20 06:15 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-01-20 06:15 - 2020-01-20 06:15 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 002473976 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 001985928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 001697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 001655880 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 001399096 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-01-20 06:15 - 2020-01-20 06:15 - 001330952 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-01-20 06:15 - 2020-01-20 06:15 - 001051664 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 001020032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000851456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-01-20 06:15 - 2020-01-20 06:15 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000678712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-01-20 06:15 - 2020-01-20 06:15 - 000646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-01-20 06:15 - 2020-01-20 06:15 - 000542496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-01-20 06:15 - 2020-01-20 06:15 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-01-20 06:15 - 2020-01-20 06:15 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-01-20 06:15 - 2020-01-20 06:15 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-01-20 06:15 - 2020-01-20 06:15 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV1.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-01-20 06:15 - 2020-01-20 06:15 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssrvlic.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-01-20 06:15 - 2020-01-20 06:15 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti_ci.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000162696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2020-01-20 06:15 - 2020-01-20 06:15 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadss.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tsusbhub.sys
2020-01-20 06:15 - 2020-01-20 06:15 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000127520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000089536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-01-20 06:15 - 2020-01-20 06:15 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\LSCSHostPolicy.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\lstelemetry.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-01-20 06:15 - 2020-01-20 06:15 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-01-20 06:11 - 2019-12-10 06:15 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-01-20 06:11 - 2019-12-10 05:59 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-01-18 09:38 - 2020-01-18 10:00 - 000024890 _____ C:\Users\Michal\Desktop\Loading schedule form_4.xlsx
2020-01-14 13:19 - 2020-01-14 13:19 - 000119203 _____ C:\Users\Michal\Downloads\FORESTRA - SK KI BRAND LKW.pdf
2020-01-07 15:46 - 2020-01-07 15:46 - 000043520 _____ C:\Users\Michal\Desktop\Přehled nabídek_LČbezPD_2020+_k uveřejnění.xls
2020-01-07 15:46 - 2020-01-07 15:46 - 000034816 _____ C:\Users\Michal\Desktop\Přehled nabídek_PČ_2020+_k uveřejnění.xls
2020-01-07 15:45 - 2020-01-07 15:45 - 000039936 _____ C:\Users\Michal\Desktop\Přehled nabídek_LČsPD_2020+_k uveřejnění.xls
2020-01-03 17:16 - 2020-01-03 17:16 - 001396788 _____ C:\Users\Michal\Downloads\office 2016+activator věžně funguje (byvořech).rar

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-01-22 06:27 - 2016-12-17 13:36 - 000000000 ____D C:\Users\Michal\Documents\Soubory aplikace Outlook
2020-01-22 06:15 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-01-22 06:12 - 2016-12-16 13:43 - 000000000 ____D C:\Users\Michal\Documents\Sharpdesk Desktop
2020-01-22 06:07 - 2019-07-02 15:22 - 000003534 _____ C:\WINDOWS\system32\Tasks\DashlaneUpgradeCheck
2020-01-22 06:05 - 2016-12-16 12:07 - 000000000 __SHD C:\Users\Michal\IntelGraphicsProfiles
2020-01-21 16:02 - 2019-08-27 08:09 - 000000000 ____D C:\Program Files\DIFX
2020-01-21 16:02 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2020-01-21 15:42 - 2019-07-02 15:17 - 000000000 ____D C:\Users\Michal
2020-01-21 15:32 - 2017-07-27 19:02 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-01-21 14:48 - 2019-07-02 15:14 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-01-21 14:08 - 2019-08-11 07:21 - 000011488 _____ C:\Users\Michal\Desktop\Sešit1.xlsx
2020-01-21 13:53 - 2017-12-19 06:09 - 000000000 ____D C:\Users\Michal\AppData\Local\Packages
2020-01-21 13:35 - 2016-12-17 14:18 - 000000000 ____D C:\Program Files (x86)\TAGRA.eu
2020-01-21 13:33 - 2019-08-27 08:17 - 000000000 ____D C:\ProgramData\firebird
2020-01-21 13:33 - 2018-07-07 13:08 - 000000000 ____D C:\Users\Michal\Documents\Nová složka
2020-01-21 13:33 - 2016-08-02 03:25 - 000000000 ___HD C:\OEM
2020-01-20 16:08 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-01-20 16:08 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-01-20 10:16 - 2019-07-02 15:24 - 001695456 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-01-20 10:16 - 2019-03-19 12:57 - 000719670 _____ C:\WINDOWS\system32\perfh005.dat
2020-01-20 10:16 - 2019-03-19 12:57 - 000145698 _____ C:\WINDOWS\system32\perfc005.dat
2020-01-20 10:11 - 2019-07-02 15:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-01-20 10:11 - 2019-07-02 15:14 - 000514360 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-01-20 06:52 - 2019-03-19 05:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-01-20 06:52 - 2018-05-13 11:43 - 000041448 _____ C:\WINDOWS\system32\OV5670_REAR.aiqd
2020-01-20 06:51 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-01-20 06:51 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-01-20 06:51 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-01-20 06:51 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-01-20 06:21 - 2016-12-16 13:15 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-01-20 06:18 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-01-20 06:18 - 2016-12-16 13:15 - 120202352 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-01-19 08:51 - 2016-12-17 12:20 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-01-19 08:30 - 2019-07-02 15:22 - 000003364 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2709589950-1360842280-2128968388-1001
2020-01-19 08:30 - 2019-07-02 15:17 - 000002372 _____ C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-01-19 08:30 - 2016-12-16 12:09 - 000000000 ___RD C:\Users\Michal\OneDrive
2020-01-17 14:51 - 2016-12-17 11:04 - 000053607 _____ C:\Users\Michal\Desktop\stepka.xlsx
2020-01-17 12:06 - 2016-12-23 14:17 - 000000000 ____D C:\WINDOWS\files
2020-01-14 12:22 - 2019-09-19 13:02 - 000013895 _____ C:\Users\Michal\Desktop\Tabuľka kompenzácie.xlsx
2020-01-14 12:21 - 2019-12-03 11:34 - 000012223 _____ C:\Users\Michal\Desktop\Tabuľka kompenzácie_ACTIV.xlsx
2020-01-14 06:16 - 2019-12-11 14:28 - 000000000 ____D C:\Users\Michal\Desktop\dynasty
2020-01-12 17:21 - 2017-10-19 12:00 - 000000000 ___RD C:\Users\Michal\Downloads\ISO2GOD
2020-01-12 17:10 - 2019-10-20 14:14 - 000000000 ____D C:\Program Files (x86)\FastShare
2020-01-10 13:37 - 2018-10-06 10:38 - 000000000 ____D C:\Users\Michal\Desktop\cina
2020-01-08 15:16 - 2018-12-12 17:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2020-01-08 06:19 - 2016-12-16 12:14 - 000002305 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-01-07 11:18 - 2017-01-19 14:32 - 000000000 ____D C:\Users\Michal\AppData\Roaming\vlc
2020-01-05 11:52 - 2019-11-21 08:33 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2019-12-30 09:09 - 2016-12-17 10:54 - 000000000 ____D C:\Pracovni
2019-12-27 17:13 - 2017-09-27 05:45 - 000000000 ____D C:\Users\Michal\AppData\Roaming\IObit

==================== Files in the root of some directories ========

2017-07-12 07:13 - 2006-05-19 12:48 - 000034816 _____ () C:\Program Files\winbox.exe
2018-05-13 07:43 - 2018-05-13 07:43 - 000000210 _____ () C:\Users\Michal\AppData\Roaming\MICHAL.MTBF.txt
2018-05-13 07:45 - 2018-09-18 11:18 - 000004608 _____ () C:\Users\Michal\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-07-25 12:03 - 2017-07-25 12:03 - 000000084 _____ () C:\Users\Michal\AppData\Local\FSDownloader.err
2017-07-25 11:40 - 2017-07-25 17:32 - 000001080 _____ () C:\Users\Michal\AppData\Local\FSDownloader.nast
2017-09-16 09:14 - 2017-09-16 09:14 - 000007604 _____ () C:\Users\Michal\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

[Rudy]

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File> -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
C:\Users\Michal\AppData\Local\Temp
AlternateDataStreams: C:\OEM:{6D006200-5200-6F00-5700-6F0061003900} [664]
AlternateDataStreams: C:\ProgramData\TEMP:24C8262A [121]
AlternateDataStreams: C:\Users\Michal\Documents\Nová složka:{6D006200-5200-6F00-5700-6F0061003900} [664]
FirewallRules: [UDP Query User{7181DE29-3845-4522-8A7C-2CF5F2AF58AD}C:\windows\files\bin\kmss.exe] => (Allow) C:\windows\files\bin\kmss.exe No File
FirewallRules: [TCP Query User{A1B87635-EC33-45AB-A3B8-01A3B4716F79}C:\windows\files\bin\kmss.exe] => (Allow) C:\windows\files\bin\kmss.exe No File
FirewallRules: [UDP Query User{ADF76EA7-DAD0-4A4D-AE45-44BBED4C32FB}C:\windows\files\bin\kmss.exe] => (Allow) C:\windows\files\bin\kmss.exe No File
FirewallRules: [TCP Query User{D5BB6F63-AC13-49EE-8259-C2487031E6F7}C:\windows\files\bin\kmss.exe] => (Allow) C:\windows\files\bin\kmss.exe No File
FirewallRules: [{02943FDD-0932-4DE0-80ED-777151950726}] => (Block) %ProgramFiles% (x86)\Ontrack\EasyRecovery\OntrackEasyRecoveryforWindows.exe No File
FirewallRules: [{4E818203-4858-4413-94D2-B86AE43784A6}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe No File
FirewallRules: [{2EECF095-B604-47AB-A281-B9AC7DBB26E4}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe No File
FirewallRules: [{78F61F06-49B4-4CEE-974E-968ED7E5B53A}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe No File
FirewallRules: [{14C8FA55-CCAF-4319-8F53-DF883B7A7C98}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe No File
FirewallRules: [TCP Query User{9049F9E8-C289-4A66-98A0-1FAA0156BDF4}D:\aaa\micooffi20132016insv53\office 2013-2016 c2r install v5.3\files\bin\kmss.exe] => (Allow) D:\aaa\micooffi20132016insv53\office 2013-2016 c2r install v5.3\files\bin\kmss.exe No File
FirewallRules: [UDP Query User{B31D62C6-249A-4662-999F-ACAFD6FC6496}D:\aaa\micooffi20132016insv53\office 2013-2016 c2r install v5.3\files\bin\kmss.exe] => (Allow) D:\aaa\micooffi20132016insv53\office 2013-2016 c2r install v5.3\files\bin\kmss.exe No File
C:\Program Files\Bonjour
HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\...\MountPoints2: {7ba8ff7d-decb-11e9-89b5-94e979547538} - "D:\Bolt.exe"
HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\...\MountPoints2: {92b85ded-022b-11ea-89b8-94e979547538} - "D:\SetupVMB.exe"
HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\...\MountPoints2: {97231b02-cee3-11e9-89b3-94e979547538} - "D:\AutoRun.exe"
HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\...\MountPoints2: {97231bc9-cee3-11e9-89b3-94e979547538} - "D:\AutoRun.exe"
HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\...\MountPoints2: {d46ee352-3b64-11ea-89c5-94e979547538} - "E:\HiSuiteDownLoader.exe"
GroupPolicy: Restriction ? <==== ATTENTION
Task: {AC874F26-D23B-43B8-ABB2-46E3DB412019} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-12-16] (Google Inc -> Google Inc.)
Task: {C44FB0A0-A680-45AC-BE34-E6FBACB2158D} - System32\Tasks\CareCenter\SunJavaUpdateSched_Reg_HKLMWow6432Run => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
Task: {E926C6E1-948A-48EE-B450-F89760F06F21} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {6CCFEB7E-1B0E-4051-A14C-B3BF21E352B4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-12-16] (Google Inc -> Google Inc.)
SearchScopes: HKU\S-1-5-21-2709589950-1360842280-2128968388-1001 -> DefaultScope {43B3F7A7-C57A-44F9-A4AF-C1CA78A86043} URL =
SearchScopes: HKU\S-1-5-21-2709589950-1360842280-2128968388-1001 -> {43B3F7A7-C57A-44F9-A4AF-C1CA78A86043} URL =
C:\Users\Michal\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

EmptyTemp:
Hosts:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[jack68]

Fix result of Farbar Recovery Scan Tool (x64) Version: 22-01-2020 01
Ran by Michal (25-01-2020 07:52:53) Run:1
Running from C:\Users\Michal\Desktop
Loaded Profiles: Michal (Available Profiles: defaultuser0 & Michal)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File> -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
C:\Users\Michal\AppData\Local\Temp
AlternateDataStreams: C:\OEM:{6D006200-5200-6F00-5700-6F0061003900} [664]
AlternateDataStreams: C:\ProgramData\TEMP:24C8262A [121]
AlternateDataStreams: C:\Users\Michal\Documents\Nová složka:{6D006200-5200-6F00-5700-6F0061003900} [664]
FirewallRules: [UDP Query User{7181DE29-3845-4522-8A7C-2CF5F2AF58AD}C:\windows\files\bin\kmss.exe] => (Allow) C:\windows\files\bin\kmss.exe No File
FirewallRules: [TCP Query User{A1B87635-EC33-45AB-A3B8-01A3B4716F79}C:\windows\files\bin\kmss.exe] => (Allow) C:\windows\files\bin\kmss.exe No File
FirewallRules: [UDP Query User{ADF76EA7-DAD0-4A4D-AE45-44BBED4C32FB}C:\windows\files\bin\kmss.exe] => (Allow) C:\windows\files\bin\kmss.exe No File
FirewallRules: [TCP Query User{D5BB6F63-AC13-49EE-8259-C2487031E6F7}C:\windows\files\bin\kmss.exe] => (Allow) C:\windows\files\bin\kmss.exe No File
FirewallRules: [{02943FDD-0932-4DE0-80ED-777151950726}] => (Block) %ProgramFiles% (x86)\Ontrack\EasyRecovery\OntrackEasyRecoveryforWindows.exe No File
FirewallRules: [{4E818203-4858-4413-94D2-B86AE43784A6}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe No File
FirewallRules: [{2EECF095-B604-47AB-A281-B9AC7DBB26E4}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe No File
FirewallRules: [{78F61F06-49B4-4CEE-974E-968ED7E5B53A}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe No File
FirewallRules: [{14C8FA55-CCAF-4319-8F53-DF883B7A7C98}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe No File
FirewallRules: [TCP Query User{9049F9E8-C289-4A66-98A0-1FAA0156BDF4}D:\aaa\micooffi20132016insv53\office 2013-2016 c2r install v5.3\files\bin\kmss.exe] => (Allow) D:\aaa\micooffi20132016insv53\office 2013-2016 c2r install v5.3\files\bin\kmss.exe No File
FirewallRules: [UDP Query User{B31D62C6-249A-4662-999F-ACAFD6FC6496}D:\aaa\micooffi20132016insv53\office 2013-2016 c2r install v5.3\files\bin\kmss.exe] => (Allow) D:\aaa\micooffi20132016insv53\office 2013-2016 c2r install v5.3\files\bin\kmss.exe No File
C:\Program Files\Bonjour
HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\...\MountPoints2: {7ba8ff7d-decb-11e9-89b5-94e979547538} - "D:\Bolt.exe"
HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\...\MountPoints2: {92b85ded-022b-11ea-89b8-94e979547538} - "D:\SetupVMB.exe"
HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\...\MountPoints2: {97231b02-cee3-11e9-89b3-94e979547538} - "D:\AutoRun.exe"
HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\...\MountPoints2: {97231bc9-cee3-11e9-89b3-94e979547538} - "D:\AutoRun.exe"
HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\...\MountPoints2: {d46ee352-3b64-11ea-89c5-94e979547538} - "E:\HiSuiteDownLoader.exe"
GroupPolicy: Restriction ? <==== ATTENTION
Task: {AC874F26-D23B-43B8-ABB2-46E3DB412019} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-12-16] (Google Inc -> Google Inc.)
Task: {C44FB0A0-A680-45AC-BE34-E6FBACB2158D} - System32\Tasks\CareCenter\SunJavaUpdateSched_Reg_HKLMWow6432Run => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
Task: {E926C6E1-948A-48EE-B450-F89760F06F21} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {6CCFEB7E-1B0E-4051-A14C-B3BF21E352B4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-12-16] (Google Inc -> Google Inc.)
SearchScopes: HKU\S-1-5-21-2709589950-1360842280-2128968388-1001 -> DefaultScope {43B3F7A7-C57A-44F9-A4AF-C1CA78A86043} URL =
SearchScopes: HKU\S-1-5-21-2709589950-1360842280-2128968388-1001 -> {43B3F7A7-C57A-44F9-A4AF-C1CA78A86043} URL =
C:\Users\Michal\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

EmptyTemp:
Hosts:
End
*****************

Processes closed successfully.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
C:\Users\Michal\AppData\Local\Temp => moved successfully
C:\OEM => ":{6D006200-5200-6F00-5700-6F0061003900}" ADS removed successfully
C:\ProgramData\TEMP => ":24C8262A" ADS removed successfully
C:\Users\Michal\Documents\Nová složka => ":{6D006200-5200-6F00-5700-6F0061003900}" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{7181DE29-3845-4522-8A7C-2CF5F2AF58AD}C:\windows\files\bin\kmss.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{A1B87635-EC33-45AB-A3B8-01A3B4716F79}C:\windows\files\bin\kmss.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{ADF76EA7-DAD0-4A4D-AE45-44BBED4C32FB}C:\windows\files\bin\kmss.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{D5BB6F63-AC13-49EE-8259-C2487031E6F7}C:\windows\files\bin\kmss.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{02943FDD-0932-4DE0-80ED-777151950726}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4E818203-4858-4413-94D2-B86AE43784A6}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2EECF095-B604-47AB-A281-B9AC7DBB26E4}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{78F61F06-49B4-4CEE-974E-968ED7E5B53A}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{14C8FA55-CCAF-4319-8F53-DF883B7A7C98}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{9049F9E8-C289-4A66-98A0-1FAA0156BDF4}D:\aaa\micooffi20132016insv53\office 2013-2016 c2r install v5.3\files\bin\kmss.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{B31D62C6-249A-4662-999F-ACAFD6FC6496}D:\aaa\micooffi20132016insv53\office 2013-2016 c2r install v5.3\files\bin\kmss.exe" => not found
C:\Program Files\Bonjour => moved successfully
HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7ba8ff7d-decb-11e9-89b5-94e979547538} => removed successfully
HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{92b85ded-022b-11ea-89b8-94e979547538} => removed successfully
HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{97231b02-cee3-11e9-89b3-94e979547538} => removed successfully
HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{97231bc9-cee3-11e9-89b3-94e979547538} => removed successfully
HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d46ee352-3b64-11ea-89c5-94e979547538} => removed successfully
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AC874F26-D23B-43B8-ABB2-46E3DB412019}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AC874F26-D23B-43B8-ABB2-46E3DB412019}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C44FB0A0-A680-45AC-BE34-E6FBACB2158D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C44FB0A0-A680-45AC-BE34-E6FBACB2158D}" => removed successfully
C:\WINDOWS\System32\Tasks\CareCenter\SunJavaUpdateSched_Reg_HKLMWow6432Run => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CareCenter\SunJavaUpdateSched_Reg_HKLMWow6432Run" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E926C6E1-948A-48EE-B450-F89760F06F21}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E926C6E1-948A-48EE-B450-F89760F06F21}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{6CCFEB7E-1B0E-4051-A14C-B3BF21E352B4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6CCFEB7E-1B0E-4051-A14C-B3BF21E352B4}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-2709589950-1360842280-2128968388-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{43B3F7A7-C57A-44F9-A4AF-C1CA78A86043} => removed successfully
C:\Users\Michal\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 7888896 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 63119084 B
Java, Flash, Steam htmlcache => 506 B
Windows/system/drivers => 7633407 B
Edge => 4096 B
Chrome => 488683088 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 39242 B
NetworkService => 39242 B
defaultuser0 => 39242 B
Michal => 7563030 B

RecycleBin => 446871931 B
EmptyTemp: => 974.5 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 07:53:50 ====

[Rudy]

Smazáno, log je již OK.

[jack68]

Diky problem pretrvava.asi bude problem jinde.

[Rudy]

Spusťte postupně tyto utility:

1. Stahnete Zoek.exe http://download.bleepingcomputer.com/smeenk/zoek.exe a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize

autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;

Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.

a

2. Junkware removal tool: https://www.stahuj.cz/utility_a_ostatni ... oval-tool/
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.

[jack68]

zdravim
a dekuji za snahu pomoc.
Zatim prikladam log z bodu 2. U jednicky nevim proc ale nechce se vytvorit vypis. Zkusim jeste jednou a poslu
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Enterprise x64
Ran by Michal (Administrator) on 26.01.2020 at 12:12:48,57
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 2

Successfully deleted: C:\WINDOWS\system32\Tasks\Driver Booster Scheduler (Task)
Successfully deleted: C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (Michal) (Task)



Registry: 1

Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\Search\\SearchAssistant (Registry Value)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 26.01.2020 at 12:15:07,16
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

[Rudy]

Zoek spusťte jako správce. Pak by se měl log vytvořit, někdy to trvá celkem dost dlouho.

[jack68]

nakonec se podarilo
Zoek.exe v5.0.0.2 Updated 03-May-2018(Online Version)
Tool run by Michal on 26.01.2020 at 12:16:45,96.
Microsoft Windows 10 Pro 10.0.18362 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Michal\Desktop\zoek.exe [Scan all users] [Script inserted]

==== Older Logs ======================

C:\zoek-results2020-01-26-093427.log 7179 bytes

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\Users\Michal\AppData\Local\GHISLER deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\rzzk17eb.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

Added to C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\rzzk17eb.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\rzzk17eb.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions ======================

ProfilePath: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\rzzk17eb.default
- Czech CZ Language Pack - %ProfilePath%\extensions\langpack-cs@firefox.mozilla.org

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi

==== Firefox Plugins ======================

Profilepath: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\rzzk17eb.default
- C:\Program Files x86\Google\Update\1.3.31.5\npGoogleUpdate3.dll - [?]
- C:\Program Files x86\Microsoft Office\root\Office16\NPSPWRAP.DLL - [?]
- C:\Program Files x86\Intel\IntelR Management Engine Components\IPT\npIntelWebAPIIPT.dll - [?]
- C:\Program Files x86\Intel\IntelR Management Engine Components\IPT\npIntelWebAPIUpdater.dll - [?]


==== Chromium Look ======================

Google Chrome Version: 79.0.3945.130


HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
lmjegmlicamnimmfhcmpkclmigmmcbeh - No path found[]

MEGA - Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod
Google Drive App Launcher - Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh
Chrome Media Router - Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://acer17win10.msn.com/?pc=ACTE"
"Search Page"="http://www.google.com"
"Search Bar"="http://www.google.com/ie"
"Default_Search_URL"="http://www.google.com/ie"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
@="http://www.google.com/search?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://www.google.com/ie"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://acer17win10.msn.com/?pc=ACTE"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{43B3F7A7-C57A-44F9-A4AF-C1CA78A86043}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\SearchScopes\{43B3F7A7-C57A-44F9-A4AF-C1CA78A86043} - http://www.bing.com/search?q={searchTer ... TR&pc=ACTE
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{43B3F7A7-C57A-44F9-A4AF-C1CA78A86043}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes\{43B3F7A7-C57A-44F9-A4AF-C1CA78A86043} - http://www.bing.com/search?q={searchTer ... TR&pc=ACTE
HKCU\SearchScopes "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... ORM=IESR02
HKCU\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - http://www.google.com/search?q={sear

==== Reset Google Chrome ======================

C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Michal\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Michal\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Edge Cache ======================

Edge Cache Emptied Successfully

==== Empty Chrome Cache ======================

C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=2934 folders=343 600831513 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\defaultuser0\AppData\Local\Temp emptied successfully
C:\Users\Michal\AppData\Local\Temp will be emptied at reboot
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\Michal\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\PROGRA~2\Smart Professional Surveillance System" not found
"C:\PROGRA~2\Smart Professional Surveillance System" not found
"C:\PROGRA~2\Smart Professional Surveillance System" not found

==== EOF on 26.01.2020 at 15:44:24,58 ======================

[Rudy]

Jj. Nastala nějaká změna?

[jack68]

castecne. Ted kdyz zamrzne obraz tak na cca 2s. Predtim to bylo podstatne delsi. A zatim delam na pc cca 10 min a stalo se to jednou. Predtim kazde 2-3 min.