Prosím o kontrolu logu. Problémy s compem

[jarda.otta]

Dobrý den. Popíšu jen stručně. Náhle nešli zpustit MS Office. Musel jsem odistalovat a nebralo novou instalaci. Můj poštovní klient EMClient se nemohl přihlásit k pop3, Takže pošta nefungovala. Odistaloval jsem ho komplet Revounistal, vyčistil registr CCleaner, všechny instalace s vypnutým AV softwarem, restart počítače a problém opět. Jak s Office(musel jsem nainstalovat jinou verzi) a hlavně s pošt. klientem. Nastavil jsem správně porty dle návodu ze seznamu.cz kde mám mail a neustále hlásil že je špatné nastavení pop3. Opakoval jsem to snad tisíckrát. Dál jsem se nemohl najednou přihlásit na jedno fórum, kde bych to konzultoval. Nebralo mě to uživatelské heslo ani jméno. A to je mám zapsané. Poslali mě po konzultaci nové heslo a i už.jm. ale situace stále stejná. Zkusil jsem všechny prohlížeče, Oper, Cgrome a Explorer a stále jsem se tam nedostal. Z mobilu ty přihlašovací údaje fungují. Vymazal jsem cache i data v mozile, zakázal všechny doplňka atd a nic. V M zille mě přestala fungovat i funkce poslat odkaz na stránku mailem. Když jsem si chtěl pustit nějaké weby se streamovým vysíláním, tak mě to neustále přeposílává na stránky Aliexpressu, ale i jinam, např. na herní a nebo erotické servery. Dal jsem scan Avastem po retartu a nic nenašel. To samé Adwcleane a Malwarebytes.
--------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Posílám poslední logy z Adwclwanwr a FRST. Předem děkuji za ochotu.

# -------------------------------
# Malwarebytes AdwCleaner 8.0.2.0
# -------------------------------
# Build: 01-27-2020
# Database: 2020-02-17.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 02-19-2020
# Duration: 00:00:30
# OS: Windows 7 Home Premium
# Scanned: 34851
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.


AdwCleaner[S00].txt - [1257 octets] - [29/12/2018 15:05:27]
AdwCleaner[S01].txt - [1318 octets] - [16/01/2019 16:53:18]
AdwCleaner[S02].txt - [1379 octets] - [19/01/2019 13:50:31]
AdwCleaner[S03].txt - [1440 octets] - [21/01/2019 08:22:00]
AdwCleaner[S04].txt - [1501 octets] - [21/01/2019 08:34:22]
AdwCleaner[S05].txt - [2233 octets] - [10/03/2019 00:20:09]
AdwCleaner[C05].txt - [2271 octets] - [10/03/2019 00:23:20]
AdwCleaner[S06].txt - [1684 octets] - [10/03/2019 11:06:51]
AdwCleaner[S07].txt - [1913 octets] - [23/03/2019 08:17:33]
AdwCleaner[C07].txt - [2041 octets] - [23/03/2019 08:18:32]
AdwCleaner[S08].txt - [4031 octets] - [27/03/2019 07:41:24]
AdwCleaner[C08].txt - [3815 octets] - [27/03/2019 07:42:50]
AdwCleaner[S09].txt - [1989 octets] - [10/04/2019 09:01:45]
AdwCleaner[S10].txt - [2050 octets] - [23/04/2019 07:20:54]
AdwCleaner[S11].txt - [2111 octets] - [29/04/2019 11:02:29]
AdwCleaner[S12].txt - [2172 octets] - [04/05/2019 08:39:31]
AdwCleaner[S13].txt - [2233 octets] - [23/05/2019 00:21:04]
AdwCleaner[S14].txt - [2294 octets] - [26/05/2019 23:06:39]
AdwCleaner[S15].txt - [2355 octets] - [28/05/2019 16:42:17]
AdwCleaner[S16].txt - [2416 octets] - [19/06/2019 09:27:19]
AdwCleaner[S17].txt - [2477 octets] - [19/06/2019 09:27:45]
AdwCleaner[S18].txt - [2538 octets] - [24/06/2019 06:12:22]
AdwCleaner[S19].txt - [2599 octets] - [24/06/2019 06:12:46]
AdwCleaner[S20].txt - [2660 octets] - [22/07/2019 13:41:20]
AdwCleaner[S21].txt - [2721 octets] - [22/07/2019 13:41:45]
AdwCleaner[S22].txt - [2859 octets] - [31/07/2019 20:51:38]
AdwCleaner[C22].txt - [3055 octets] - [31/07/2019 20:52:26]
AdwCleaner[S23].txt - [2980 octets] - [03/08/2019 09:02:59]
AdwCleaner[S24].txt - [3041 octets] - [03/08/2019 09:05:43]
AdwCleaner[S25].txt - [3102 octets] - [07/08/2019 11:10:31]
AdwCleaner[S26].txt - [3163 octets] - [17/08/2019 09:02:29]
AdwCleaner_Debug.log - [19424 octets] - [21/09/2019 08:13:01]
AdwCleaner[S27].txt - [3286 octets] - [21/09/2019 08:13:26]
AdwCleaner[S28].txt - [3347 octets] - [02/10/2019 10:40:00]
AdwCleaner[S29].txt - [3408 octets] - [19/10/2019 16:29:55]
AdwCleaner[S30].txt - [3470 octets] - [17/11/2019 10:14:55]
AdwCleaner[S31].txt - [3531 octets] - [18/11/2019 01:59:50]
AdwCleaner[S32].txt - [3592 octets] - [14/12/2019 08:36:32]
AdwCleaner[S33].txt - [3653 octets] - [17/12/2019 09:13:44]
AdwCleaner[S34].txt - [3723 octets] - [23/12/2019 08:49:28]
AdwCleaner[C34].txt - [3891 octets] - [23/12/2019 08:49:45]
AdwCleaner[S35].txt - [5005 octets] - [04/01/2020 13:29:44]
AdwCleaner[C35].txt - [4969 octets] - [04/01/2020 13:33:48]
AdwCleaner[S36].txt - [3958 octets] - [09/01/2020 02:04:05]
AdwCleaner[S37].txt - [4019 octets] - [15/01/2020 17:15:30]
AdwCleaner[S38].txt - [4080 octets] - [18/01/2020 23:13:25]
AdwCleaner[S39].txt - [4141 octets] - [21/01/2020 01:01:31]
AdwCleaner[S40].txt - [5608 octets] - [26/01/2020 03:08:50]
AdwCleaner[C40].txt - [4914 octets] - [26/01/2020 03:11:13]
AdwCleaner[S41].txt - [5103 octets] - [26/01/2020 03:23:09]
AdwCleaner[C41].txt - [5347 octets] - [26/01/2020 03:30:09]
AdwCleaner[S42].txt - [4446 octets] - [26/01/2020 14:19:56]
AdwCleaner[S43].txt - [4507 octets] - [27/01/2020 23:06:48]
AdwCleaner[S44].txt - [4568 octets] - [03/02/2020 20:05:16]
AdwCleaner[S45].txt - [4709 octets] - [03/02/2020 20:06:25]
AdwCleaner[S46].txt - [4770 octets] - [09/02/2020 02:09:03]
AdwCleaner[S47].txt - [4831 octets] - [14/02/2020 22:08:43]
AdwCleaner[S48].txt - [4892 octets] - [14/02/2020 22:34:11]
AdwCleaner[S49].txt - [4953 octets] - [17/02/2020 09:11:34]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S50].txt ##########
---------------------------------------------------------------------------------------------------------------------------------------------------
# -------------------------------
# Malwarebytes AdwCleaner 8.0.2.0
# -------------------------------
# Build: 01-27-2020
# Database: 2020-02-17.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 02-19-2020
# Duration: 00:00:25
# OS: Windows 7 Home Premium
# Scanned: 34851
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.


AdwCleaner[S00].txt - [1257 octets] - [29/12/2018 15:05:27]
AdwCleaner[S01].txt - [1318 octets] - [16/01/2019 16:53:18]
AdwCleaner[S02].txt - [1379 octets] - [19/01/2019 13:50:31]
AdwCleaner[S03].txt - [1440 octets] - [21/01/2019 08:22:00]
AdwCleaner[S04].txt - [1501 octets] - [21/01/2019 08:34:22]
AdwCleaner[S05].txt - [2233 octets] - [10/03/2019 00:20:09]
AdwCleaner[C05].txt - [2271 octets] - [10/03/2019 00:23:20]
AdwCleaner[S06].txt - [1684 octets] - [10/03/2019 11:06:51]
AdwCleaner[S07].txt - [1913 octets] - [23/03/2019 08:17:33]
AdwCleaner[C07].txt - [2041 octets] - [23/03/2019 08:18:32]
AdwCleaner[S08].txt - [4031 octets] - [27/03/2019 07:41:24]
AdwCleaner[C08].txt - [3815 octets] - [27/03/2019 07:42:50]
AdwCleaner[S09].txt - [1989 octets] - [10/04/2019 09:01:45]
AdwCleaner[S10].txt - [2050 octets] - [23/04/2019 07:20:54]
AdwCleaner[S11].txt - [2111 octets] - [29/04/2019 11:02:29]
AdwCleaner[S12].txt - [2172 octets] - [04/05/2019 08:39:31]
AdwCleaner[S13].txt - [2233 octets] - [23/05/2019 00:21:04]
AdwCleaner[S14].txt - [2294 octets] - [26/05/2019 23:06:39]
AdwCleaner[S15].txt - [2355 octets] - [28/05/2019 16:42:17]
AdwCleaner[S16].txt - [2416 octets] - [19/06/2019 09:27:19]
AdwCleaner[S17].txt - [2477 octets] - [19/06/2019 09:27:45]
AdwCleaner[S18].txt - [2538 octets] - [24/06/2019 06:12:22]
AdwCleaner[S19].txt - [2599 octets] - [24/06/2019 06:12:46]
AdwCleaner[S20].txt - [2660 octets] - [22/07/2019 13:41:20]
AdwCleaner[S21].txt - [2721 octets] - [22/07/2019 13:41:45]
AdwCleaner[S22].txt - [2859 octets] - [31/07/2019 20:51:38]
AdwCleaner[C22].txt - [3055 octets] - [31/07/2019 20:52:26]
AdwCleaner[S23].txt - [2980 octets] - [03/08/2019 09:02:59]
AdwCleaner[S24].txt - [3041 octets] - [03/08/2019 09:05:43]
AdwCleaner[S25].txt - [3102 octets] - [07/08/2019 11:10:31]
AdwCleaner[S26].txt - [3163 octets] - [17/08/2019 09:02:29]
AdwCleaner_Debug.log - [19424 octets] - [21/09/2019 08:13:01]
AdwCleaner[S27].txt - [3286 octets] - [21/09/2019 08:13:26]
AdwCleaner[S28].txt - [3347 octets] - [02/10/2019 10:40:00]
AdwCleaner[S29].txt - [3408 octets] - [19/10/2019 16:29:55]
AdwCleaner[S30].txt - [3470 octets] - [17/11/2019 10:14:55]
AdwCleaner[S31].txt - [3531 octets] - [18/11/2019 01:59:50]
AdwCleaner[S32].txt - [3592 octets] - [14/12/2019 08:36:32]
AdwCleaner[S33].txt - [3653 octets] - [17/12/2019 09:13:44]
AdwCleaner[S34].txt - [3723 octets] - [23/12/2019 08:49:28]
AdwCleaner[C34].txt - [3891 octets] - [23/12/2019 08:49:45]
AdwCleaner[S35].txt - [5005 octets] - [04/01/2020 13:29:44]
AdwCleaner[C35].txt - [4969 octets] - [04/01/2020 13:33:48]
AdwCleaner[S36].txt - [3958 octets] - [09/01/2020 02:04:05]
AdwCleaner[S37].txt - [4019 octets] - [15/01/2020 17:15:30]
AdwCleaner[S38].txt - [4080 octets] - [18/01/2020 23:13:25]
AdwCleaner[S39].txt - [4141 octets] - [21/01/2020 01:01:31]
AdwCleaner[S40].txt - [5608 octets] - [26/01/2020 03:08:50]
AdwCleaner[C40].txt - [4914 octets] - [26/01/2020 03:11:13]
AdwCleaner[S41].txt - [5103 octets] - [26/01/2020 03:23:09]
AdwCleaner[C41].txt - [5347 octets] - [26/01/2020 03:30:09]
AdwCleaner[S42].txt - [4446 octets] - [26/01/2020 14:19:56]
AdwCleaner[S43].txt - [4507 octets] - [27/01/2020 23:06:48]
AdwCleaner[S44].txt - [4568 octets] - [03/02/2020 20:05:16]
AdwCleaner[S45].txt - [4709 octets] - [03/02/2020 20:06:25]
AdwCleaner[S46].txt - [4770 octets] - [09/02/2020 02:09:03]
AdwCleaner[S47].txt - [4831 octets] - [14/02/2020 22:08:43]
AdwCleaner[S48].txt - [4892 octets] - [14/02/2020 22:34:11]
AdwCleaner[S49].txt - [4953 octets] - [17/02/2020 09:11:34]
AdwCleaner[S50].txt - [5014 octets] - [19/02/2020 01:12:28]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S51].txt ##########
----------------------------------------------------------------------------------------------------------------------------------------------------------
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-02-2020
Ran by Oťáček (19-02-2020 18:19:17)
Running from C:\Users\Oťáček\Desktop\UTILITY
Windows 7 Home Premium Service Pack 1 (X64) (2017-04-10 12:12:37)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-51665161-4008308083-3026018605-500 - Administrator - Disabled)
Guest (S-1-5-21-51665161-4008308083-3026018605-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-51665161-4008308083-3026018605-1002 - Limited - Enabled)
Oťáček (S-1-5-21-51665161-4008308083-3026018605-1000 - Administrator - Enabled) => C:\Users\Oťáček

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-51665161-4008308083-3026018605-1000\...\uTorrent) (Version: 3.5.0.43916 - BitTorrent Inc.)
Abrosoft FantaMorph 5.3.5 (HKLM-x32\...\Abrosoft FantaMorph 5_is1) (Version: 5.3.5 - Abrosoft)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.330 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.330 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.330 - Adobe)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.3 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.3.5.205 - Adobe, Inc.)
AirDroid 3.5.4.0 (HKLM-x32\...\AirDroid) (Version: 3.5.4.0 - Sand Studio)
AMD Catalyst Install Manager (HKLM\...\{37FCE154-7F59-74F0-3A35-BF503CEB230B}) (Version: 8.0.877.0 - Advanced Micro Devices, Inc.)
AMD Catalyst Install Manager (HKLM\...\{FAF03106-1653-15E1-3C0C-E7AE4FAE6EBF}) (Version: 8.0.877.0 - Advanced Micro Devices, Inc.)
AMP Font Viewer (HKLM-x32\...\AMP Font Viewer) (Version: - )
Ashampoo Burning Studio 20 (HKLM-x32\...\{91B33C97-155F-C10C-D4D6-CABA03805EE4}_is1) (Version: 20.0.2 - Ashampoo GmbH & Co. KG)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.2.0 - Asmedia Technology)
Audacity 2.0 (HKLM-x32\...\Audacity_is1) (Version: - Audacity Team)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.8.2393 - AVAST Software)
BusinessCards MX (HKLM-x32\...\{0D5B5ED2-3E38-4585-B1F3-64B2A9EA95D6}_is1) (Version: 5.0 - MOJOSOFT)
CCleaner (HKLM\...\CCleaner) (Version: 5.61 - Piriform)
CD Recovery Toolbox Free 2.2 (HKLM-x32\...\CD Recovery Toolbox Free_is1) (Version: - File Master LLC)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
Doplněk Microsoft Save as PDF or XPS pro aplikace sady Microsoft Office 2007 (HKLM-x32\...\{90120000-00B2-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation)
dwdinst (HKLM-x32\...\{7B05BE2F-B871-45D1-81DC-82E4634BF209}) (Version: 1.0.0.0 - HanWIS GmbH)
eM Client (HKLM-x32\...\{2A4CAF55-4B18-4B61-BE9E-94A54209F547}) (Version: 7.0.27943.0 - eM Client Inc.)
Folder Size 4.2.0.0 (HKLM-x32\...\{2DFA85ED-588F-4CE3-A175-29E52C3804A8}_is1) (Version: 4.2.0.0 - MindGems, Inc.)
FontExpert 2015 Font Manager (HKLM-x32\...\FontExpert 2015) (Version: 13.0.0.1 - Proxima Software)
FormApps Signing Extension (HKLM-x32\...\{2246B06F-AED2-42BA-A6D7-B72F591C1116}) (Version: 2.19.1.39 - Software602 a.s.)
FormatFactory 4.4.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.4.0.0 - Free Time)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 80.0.3987.116 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.441 - Google LLC) Hidden
GreenCloud Printer 7.8.4.0 (HKLM\...\{F36B43F0-3BE6-48BA-A22D-3C098092BB3F}_is1) (Version: 7.8.4.0 - ObviousIdea)
GreenScreenWizard 6.9 (HKLM-x32\...\Green Screen Wizard Pro 6.9_is1) (Version: - GreenScreen Wizard LLC)
HD Tune Pro 5.70 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software)
HydraVision (HKLM-x32\...\{DA54D3F7-4915-1A37-7EA8-2741F05B77AC}) (Version: 4.2.234.0 - Advanced Micro Devices, Inc.) Hidden
iData RAW Partition Recovery version 1.0.0.8 (HKLM-x32\...\{8F3CD5EF-6D71-43CC-B1B9-F65C16692284}}_is1) (Version: 1.0.0.8 - iData Recovery)
Infix PDF Editor verze 5.2.7.0 (HKLM-x32\...\D42C36B3-E36B-43EC-A8B4-B613D7B92782_is1) (Version: 5.2.7.0 - Iceni Technology)
Inkscape 0.92.3 (HKLM-x32\...\Inkscape) (Version: 0.92.3 - Inkscape Project)
Intel® Chipset Device Software (HKLM-x32\...\{49bc1e38-39b4-4728-9e75-cbe67ba9a329}) (Version: 10.1.1.42 - Intel(R) Corporation) Hidden
IObit Driver Booster (HKLM-x32\...\{2E29F3D8-99B4-4B2F-A93F-827DFFF26970}) (Version: 1.0.0 - IObit)
IrfanView 4.52 (64-bit) (HKLM\...\IrfanView64) (Version: 4.52 - Irfan Skiljan)
Java 8 Update 241 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180241F0}) (Version: 8.0.2410.7 - Oracle Corporation)
Knoll Light Factory EZ Studio 15 (HKLM-x32\...\Knoll Light Factory EZ Studio 15) (Version: - )
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
Male Voices (HKLM-x32\...\{B199979A-29CC-4A0B-99FD-3F16E5BFC92E}) (Version: 4.4.41 - Screaming Bee Inc.) Hidden
Male Voices for MorphVOX (HKLM-x32\...\{4419f073-ac2b-4267-87d5-d31ec072be19}) (Version: 4.4.41 - Screaming Bee Inc.)
Malwarebytes version 4.0.4.49 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.0.4.49 - Malwarebytes)
Microsoft .NET Framework 4.7.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft LifeCam (HKLM\...\{6965A8D2-465D-4F98-9FAA-0E9E2348F329}) (Version: 3.22.270.0 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}) (Version: - )
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{CA8A885F-E95B-3FC6-BB91-F4D9377C7686}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox 73.0.1 (x64 cs) (HKLM\...\Mozilla Firefox 73.0.1 (x64 cs)) (Version: 73.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.5.0 - Mozilla)
Mozilla Thunderbird 68.5.0 (x64 cs) (HKLM\...\Mozilla Thunderbird 68.5.0 (x64 cs)) (Version: 68.5.0 - Mozilla)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
netis Wireless LAN Driver and Utility (HKLM-x32\...\{9C049509-055C-4CFF-A116-1D12312225EB}) (Version: 1.01.0243 - REALTEK Semiconductor Corp.)
Opera Stable 66.0.3515.72 (HKU\S-1-5-21-51665161-4008308083-3026018605-1000\...\Opera 66.0.3515.72) (Version: 66.0.3515.72 - Opera Software)
Ovladače videa společnosti Pinnacle (HKLM\...\{6DE721A5-5E89-4D74-994C-652BB3C0672E}) (Version: 12.1.0.030 - Pinnacle Systems)
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
PhotoFiltre Studio X (HKU\S-1-5-21-51665161-4008308083-3026018605-1000\...\PhotoFiltre Studio X) (Version: - )
PicosmosTools 1.13.0.0 (HKLM-x32\...\PicosmosTools) (Version: 1.13.0.0 - Free Time)
Pinnacle VideoSpin (HKLM-x32\...\{FEB15887-0932-4D2D-BB85-6AC03FBF1AA8}) (Version: 2.0.0.669 - Pinnacle Systems)
POPFile Data (Oťáček) (HKU\S-1-5-21-51665161-4008308083-3026018605-1000\...\POPFile_Data) (Version: - )
PowerISO (HKLM-x32\...\PowerISO) (Version: 6.5 - Power Software Ltd)
Process Liquidator (HKLM-x32\...\{7F3BF5FA-6BD7-4E26-8FEA-C87DD9F7F723}_is1) (Version: 2.1.0.0 - 12Bytes)
Rajče průvodce verze 1.59.54.269 (HKLM-x32\...\rajce.net_is1) (Version: - rajce.net)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8581 - Realtek Semiconductor Corp.)
Red Giant ToonIt Studio 15 (HKLM-x32\...\Red Giant ToonIt Studio 15) (Version: - )
Revo Uninstaller Pro 3.0.5 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.0.5 - VS Revo Group, Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
ScanToPDF 3.1.4 (HKLM-x32\...\ScanToPDF) (Version: 3.1.4 - O Imaging Corporation)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft)
Skype verze 8.56 (HKLM-x32\...\Skype_is1) (Version: 8.56 - Skype Technologies S.A.)
Smart View (HKLM-x32\...\{1800D8A5-F7B2-4C20-868E-1CF55CBBDF21}) (Version: 1.0.0.0 - Samsung )
Snagit 11 (HKLM-x32\...\{1FB78CB6-F4EA-474F-8B0B-100EFACF3558}) (Version: 11.4.0 - TechSmith Corporation)
Subtitle Workshop 2.51 (HKLM-x32\...\SubtitleWorkshop) (Version: - )
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TinEye Internet Explorer plugin 1.0 (HKLM-x32\...\{9B8ACEA2-BA21-4A91-A950-144FED3ED133}) (Version: 1.0.0 - Idée Inc.)
Tisk Obalek 3.2.1.2 (HKLM-x32\...\Tisk Obalek_is1) (Version: 3.2.1.2 - Mgr. Radovan Kraus)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.0a - Ghisler Software GmbH)
Trapcode 3DStroke Studio 15 (HKLM-x32\...\Trapcode 3DStroke Studio 15) (Version: - )
Trapcode Particular Studio (HKLM-x32\...\Trapcode Particular Studio) (Version: - )
Trapcode Shine Studio 15 (HKLM-x32\...\Trapcode Shine Studio 15) (Version: - )
Turistické trasy 2.44 (HKLM-x32\...\Turistické trasy 2.44) (Version: - )
VdhCoApp 1.2.4 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper)
Verbatim GREEN BUTTON 1.68 (HKLM-x32\...\Verbatim GREEN BUTTON_is1) (Version: - Verbatim)
Verbatim Hard Drive Formatter 1.41 (HKLM-x32\...\Verbatim Hard Drive Formatter_is1) (Version: - Verbatim)
Verbatim Product Update 1.06 (HKLM-x32\...\Verbatim Product Update_is1) (Version: - Verbatim)
Viber (HKLM-x32\...\{EAF077BA-8EA4-4CEC-A215-4ACAE713A8BF}) (Version: 6.9.0.1048 - Viber Media Inc.) Hidden
Viber (HKU\S-1-5-21-51665161-4008308083-3026018605-1000\...\{a85cbe05-cc32-4419-ad8f-7ff7bc41bc05}) (Version: 6.9.0.1048 - Viber Media Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
VSFilter 2.41.322 (0c3a1ea) Nightly (64-bit) (HKLM\...\vsfilter64_is1) (Version: 2.41.322 - MPC-HC Team)
VSO ConvertXToDVD 6 (HKLM-x32\...\{8FC36FA6-C508-44FB-B137-1CB46D8258B2}_is1) (Version: 6.0.0.80 - VSO Software)
Windows Installer Clean Up (HKLM-x32\...\{121634B0-2F4B-11D3-ADA3-00C04F52DD52}) (Version: 3.00.00.0000 - Microsoft Corporation)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
Wise Duplicate Finder 1.2.9 (HKLM-x32\...\Wise Duplicate Finder_is1) (Version: 1.2.9 - WiseCleaner.com, Inc.)
Wise Folder Hider 3.38 (HKLM-x32\...\Wise Folder Hider_is1) (Version: 3.38 - WiseCleaner.com, Inc.)
Wondershare MobileTrans ( Version 8.1.0 ) (HKLM-x32\...\{18CDCEAA-A9E4-4A4C-AC0E-C15E87C30EA5}_is1) (Version: 8.1.0 - Wondershare)
Wondershare PPT2Video Pro 6.1.11 (HKLM-x32\...\Wondershare PPT2Video Pro_is1) (Version: 6.1.11 - Wondershare Software)
Zoner Photo Studio 17 (HKLM\...\ZonerPhotoStudio17_CZ_is1) (Version: 17.0.1.1 - ZONER software)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-51665161-4008308083-3026018605-1000_Classes\CLSID\{BCAFD618-3FAE-4EFE-BF4E-4C43A7E1320B}\InprocServer32 -> C:\Program Files\Zoner\Photo Studio 17\Program64\SHELLEXT.DLL (ZONER software, a.s. -> ZONER software)
ShellExecuteHooks-x32: No Name - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - -> No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => E:\Avast 2019\ashShell.dll [2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => -> No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => -> No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => -> No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => -> No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => -> No File
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => E:\Avast 2019\ashShell.dll [2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2016-02-10] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers1: [SnagItMainShellExt] -> {CF74B903-3389-469c-B3B6-0204D204FCBD} => C:\Program Files (x86)\TechSmith\Snagit 11\DLLx64\SnagitShellExt64.dll [2014-03-03] (TechSmith Corporation -> TechSmith Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1: [WondershareVideoConverterFileOpreation] -> {FEB746CA-95C2-485F-B386-C30D4E56D22E} => C:\Windows\SysWOW64\WSCM64.dll [2015-02-27] () [File not signed]
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => E:\Avast 2019\ashShell.dll [2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-02-13] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2016-02-10] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers4: [SnagItMainShellExt] -> {CF74B903-3389-469c-B3B6-0204D204FCBD} => C:\Program Files (x86)\TechSmith\Snagit 11\DLLx64\SnagitShellExt64.dll [2014-03-03] (TechSmith Corporation -> TechSmith Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2013-04-29] (Advanced Micro Devices, Inc.) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => E:\Avast 2019\ashShell.dll [2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-02-13] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2016-02-10] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2012-12-29] (VS Revo Group -> VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-51665161-4008308083-3026018605-1000: [ZONERMenu] -> {BCAFD618-3FAE-4EFE-BF4E-4C43A7E1320B} => C:\Program Files\Zoner\Photo Studio 17\Program64\SHELLEXT.DLL [2014-09-12] (ZONER software, a.s. -> ZONER software)
ContextMenuHandlers2_S-1-5-21-51665161-4008308083-3026018605-1000: [ZONERMenu] -> {BCAFD618-3FAE-4EFE-BF4E-4C43A7E1320B} => C:\Program Files\Zoner\Photo Studio 17\Program64\SHELLEXT.DLL [2014-09-12] (ZONER software, a.s. -> ZONER software)
ContextMenuHandlers4_S-1-5-21-51665161-4008308083-3026018605-1000: [ZONERMenu] -> {BCAFD618-3FAE-4EFE-BF4E-4C43A7E1320B} => C:\Program Files\Zoner\Photo Studio 17\Program64\SHELLEXT.DLL [2014-09-12] (ZONER software, a.s. -> ZONER software)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\SysWOW64\pvmjpg30.dll [401408 2007-06-21] (Pegasus Imaging Corporation) [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\Oťáček\Desktop\MailCliеnt.exe – zástupce.lnk -> C:\Program Files (x86)\eM Client\MailCliеnt.exe (eM Client s.r.o.) <==== Cyrillic
ShortcutWithArgument: C:\Users\Oťáček\Desktop\Aliexpress česky.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=jeggofhlgndddenkjfloklflmjjjfdbe
ShortcutWithArgument: C:\Users\Oťáček\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Aliexpress česky.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=jeggofhlgndddenkjfloklflmjjjfdbe
ShortcutWithArgument: C:\Users\Oťáček\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\317a04e56c79342d\Google Chrome.lnk -> F:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default

==================== Loaded Modules (Whitelisted) =============

2009-01-20 13:51 - 2009-01-20 13:51 - 000007168 _____ ( ) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atixclib.dll
2019-03-19 09:29 - 2012-08-08 21:56 - 000863232 _____ ( Realtek Semiconductor Corp.) [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\P2PLib.dll
2013-06-18 14:49 - 2013-06-18 14:49 - 000016384 _____ () [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2013-04-29 22:08 - 2013-04-29 22:08 - 000369152 _____ () [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2020-01-24 17:47 - 2014-05-19 17:19 - 000137728 _____ () [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2020-01-24 17:47 - 2014-10-31 16:37 - 001498112 _____ () [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2019-07-13 12:07 - 2020-01-24 17:22 - 001899520 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\ffmpeg.dll
2019-01-20 01:08 - 2020-01-24 17:22 - 000115712 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\libegl.dll
2019-01-20 01:08 - 2020-01-24 17:22 - 006668800 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\libglesv2.dll
2019-03-19 09:29 - 2013-02-27 17:17 - 000221184 _____ () [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\EnumDevLib.dll
2014-03-03 14:36 - 2014-03-03 14:36 - 001298432 ____R () [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\PDFLib.dll
2014-03-03 14:40 - 2014-03-03 14:40 - 000110592 _____ () [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\SDKRecorder.dll
2014-03-03 14:41 - 2014-03-03 14:41 - 000128512 _____ () [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\VideoRecording.dll
2017-04-13 08:25 - 2012-03-06 15:05 - 000054784 _____ () [File not signed] C:\Windows\System32\gcprpm.dll
2018-02-15 17:35 - 2015-02-27 14:38 - 000721263 _____ () [File not signed] C:\Windows\SysWOW64\WSCM64.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000008704 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Actions.CCAA.Shared.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000006656 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.DPPE.Shared.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.EEU.Shared.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.GD.Shared.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000007168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.Hotkeys.Shared.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.REG.Shared.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000045568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.Source.Kit.Server.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000006656 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.WinMessages.Shared.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000034816 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Server.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000006144 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\AEM.Server.Shared.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000024576 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\APM.Foundation.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000032768 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\ATICCCom.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000022016 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.Implementation.dll
2013-04-29 22:08 - 2013-04-29 22:08 - 000014336 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDHome.Graphics.Runtime.dll
2013-04-29 22:08 - 2013-04-29 22:08 - 000008192 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDHome.Graphics.shared.dll
2013-04-29 22:08 - 2013-04-29 22:08 - 000040448 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDOverDrive.Platform.Dashboard.dll
2013-04-29 22:08 - 2013-04-29 22:08 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDOverDrive.Platform.Runtime.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000012800 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDOverDrive.Platform.Shared.dll
2013-04-29 22:08 - 2013-04-29 22:08 - 000044544 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Audio.Graphics.Dashboard.dll
2013-04-29 22:08 - 2013-04-29 22:08 - 000019456 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CPUOverDrive.Fuel.Shared.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000028672 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CustomFormats.Graphics.Shared.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CustomFormatSelection.Graphics.Dashboard.Shared.Private.dll
2013-04-29 22:07 - 2013-04-29 22:07 - 000254976 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeskMan.HydraVision.Dashboard.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000016896 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeskMan.HydraVision.Runtime.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000012800 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeskMan.HydraVision.Shared.dll
2013-04-29 22:07 - 2013-04-29 22:07 - 000380928 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000053248 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCRT.Graphics.shared.dll
2013-04-29 22:08 - 2013-04-29 22:08 - 000618496 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCV.Graphics.Dashboard.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000069632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCV.Graphics.Runtime.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000040960 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCV.Graphics.Shared.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000053248 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Shared.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000032768 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceLCD.Graphics.Shared.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000049152 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceProperty.Graphics.Shared.dll
2013-04-29 22:07 - 2013-04-29 22:07 - 000733184 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceTV.Graphics.Dashboard.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000077824 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceTV.Graphics.Runtime.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000065536 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceTV.Graphics.shared.dll
2013-04-29 20:38 - 2013-04-29 20:38 - 000025600 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll
2013-04-29 22:07 - 2013-04-29 22:07 - 000441856 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000036864 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000028672 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.shared.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000094208 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Grid.HydraVision.Dashboard.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000018432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Grid.HydraVision.Runtime.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000010240 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Grid.HydraVision.Shared.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000057344 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll
2013-04-29 22:08 - 2013-04-29 22:08 - 000111616 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MDProp.HydraVision.Dashboard.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000014336 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MDProp.HydraVision.Runtime.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000010240 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MDProp.HydraVision.Shared.dll
2013-04-29 20:38 - 2013-04-29 20:38 - 000110592 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Runtime.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000081920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Shared.dll
2013-04-29 22:07 - 2013-04-29 22:07 - 000256512 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MultiDesk.HydraVision.Dashboard.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MultiDesk.HydraVision.Runtime.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000010240 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MultiDesk.HydraVision.Shared.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000024576 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MultiVPU2.Graphics.Shared.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000101376 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.OverDrive5.Graphics.Dashboard.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000071168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.OverDrive5.Graphics.Runtime.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000050688 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.OverDrive5.Graphics.shared.dll
2013-04-29 22:07 - 2013-04-29 22:07 - 002400256 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000110592 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Runtime.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000081920 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Shared.dll
2013-04-29 22:07 - 2013-04-29 22:07 - 000097280 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Settings.HydraVision.Dashboard.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000016384 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Settings.HydraVision.Runtime.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000014848 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Settings.HydraVision.Shared.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000160256 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.Dashboard.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000013824 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.Runtime.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000045056 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.shared.dll
2013-04-29 22:08 - 2013-04-29 22:08 - 000021504 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.UpdateNotification.Graphics.Dashboard.dll
2013-04-29 22:08 - 2013-04-29 22:08 - 000016384 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.UpdateNotification.Graphics.Runtime.dll
2013-04-29 22:08 - 2013-04-29 22:08 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.UpdateNotification.Graphics.Shared.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000008704 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Fuel.Dashboard.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Fuel.Runtime.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000010752 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Fuel.Shared.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000172032 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Dashboard.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 001007616 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Dashboard.Shared.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000008704 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Runtime.Shared.Private.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000008704 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Dashboard.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000011776 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Runtime.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000008704 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Shared.dll
2013-04-29 22:08 - 2013-04-29 22:08 - 000008192 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Platform.Dashboard.dll
2013-04-29 22:08 - 2013-04-29 22:08 - 000011264 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Platform.Runtime.dll
2013-04-29 22:08 - 2013-04-29 22:08 - 000009216 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Platform.Shared.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000008192 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Client.Shared.dll
2013-04-29 22:07 - 2013-04-29 22:07 - 000061440 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.ProfileManager2.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000032768 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.Shared.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 001395200 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.Shared.Private.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000007168 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Extension.EEU.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Shared.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000038400 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Shared.Private.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000413696 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Systemtray.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000303104 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.Client.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000019968 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.CoreAudioAPI.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000061440 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000029184 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.Private.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000018432 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.XManifest.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000006656 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000013312 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\Fuel.Foundation.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000031744 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000047616 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Implementation.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000020480 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Implementation.Private.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000025088 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Private.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000005632 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.Foundation.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000097280 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.Implementation.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000015360 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\NEWAEM.Foundation.dll
2012-04-02 16:38 - 2012-04-02 16:38 - 000138752 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\ADL.Foundation.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000066048 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\APM.Server.dll
2013-04-29 22:03 - 2013-04-29 22:03 - 000837632 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll
2013-04-29 22:02 - 2013-04-29 22:02 - 000005120 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiamcsy.dll
2013-04-29 22:08 - 2013-04-29 22:08 - 000393216 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000065536 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000036864 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000528384 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceProperty.Graphics.Dashboard.Shared.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000043520 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll
2013-04-29 22:07 - 2013-04-29 22:07 - 000242688 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysManager2.Graphics.Dashboard.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000036864 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Client.Shared.Private.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000380928 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000061440 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.dll
2007-05-02 16:44 - 2007-05-02 16:44 - 000020480 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0703.dll
2007-08-09 15:58 - 2007-08-09 15:58 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0706.dll
2009-06-17 04:27 - 2009-06-17 04:27 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0709.dll
2009-06-17 09:24 - 2009-06-17 09:24 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0712.dll
2008-04-03 15:29 - 2008-04-03 15:29 - 000020480 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0804.dll
2009-04-22 11:13 - 2009-04-22 11:13 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0805.dll
2008-12-30 11:04 - 2008-12-30 11:04 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0812.dll
2009-12-08 06:49 - 2009-12-08 06:49 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0912.dll
2010-10-07 12:07 - 2010-10-07 12:07 - 000020480 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I1010.dll
2010-11-05 13:18 - 2010-11-05 13:18 - 000016384 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I1011.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000335872 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\Localization.Foundation.Implementation.cs_Localization.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000323584 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\Localization.Foundation.Implementation.default_Localization.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000491520 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\Localization.Foundation.Private.dll
2013-04-29 22:06 - 2013-04-29 22:06 - 000175104 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\ResourceManagement.Foundation.Implementation.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000008704 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\ResourceManagement.Foundation.Private.dll
2013-04-29 22:08 - 2013-04-29 22:08 - 000028160 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.AMDHome.Graphics.Dashboard.dll
2013-04-29 22:05 - 2013-04-29 22:05 - 000311296 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Runtime.dll
2013-04-29 22:04 - 2013-04-29 22:04 - 000192512 _____ (Advanced Mirco Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Shared.dll
2010-03-04 00:27 - 2010-03-04 00:27 - 000016384 _____ (ATI Technologies Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Foundation.dll
2009-04-22 11:13 - 2009-04-22 11:13 - 000045056 _____ (ATI Technologies Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0601.dll
2014-03-03 14:32 - 2014-03-03 14:32 - 000480256 _____ (hxxp://hunspell.sourceforge.net/) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\libhunspell.dll
2014-03-03 14:32 - 2014-03-03 14:32 - 000066192 ____R (LEAD Technologies, Inc -> LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\LFJbg15U.DLL
2014-03-03 14:32 - 2014-03-03 14:32 - 000126096 ____R (LEAD Technologies, Inc -> LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\LFPng15U.DLL
2014-03-03 14:32 - 2014-03-03 14:32 - 000212112 _____ (LEAD Technologies, Inc -> LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\Ltimgclr15u.dll
2014-03-03 14:32 - 2014-03-03 14:32 - 000208016 _____ (LEAD Technologies, Inc -> LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\Ltimgefx15u.dll
2014-03-03 14:32 - 2014-03-03 14:32 - 000134288 _____ (LEAD Technologies, Inc -> LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\Ltimgutl15u.dll
2014-03-03 14:32 - 2014-03-03 14:32 - 000122000 _____ (LEAD Technologies, Inc -> LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\Lttwn15u.dll
2018-03-26 11:58 - 2018-03-26 11:58 - 000112128 _____ (Microsoft Corporation) [File not signed] C:\Windows\Microsoft.Net\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
2013-04-29 22:03 - 2013-04-29 22:03 - 000082944 _____ (Microsoft) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\Microsoft.WindowsAPICodePack.dll
2013-04-29 22:03 - 2013-04-29 22:03 - 000489984 _____ (Microsoft) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\Microsoft.WindowsAPICodePack.Shell.dll
2019-03-19 09:29 - 2013-12-23 11:26 - 000528384 _____ (Realtek Semiconductor Corp.) [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtlLib.dll
2019-03-19 09:29 - 2012-09-13 09:25 - 000200704 _____ (Realtek) [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\IpLib.dll
2019-03-19 09:29 - 2012-05-07 14:23 - 000040960 _____ (Realtek) [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtlICS.dll
2019-03-19 09:29 - 2014-02-27 20:12 - 000272384 _____ (Realtek) [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtlIhvOid.dll
2019-03-19 09:29 - 2012-06-22 16:01 - 000044544 _____ (Realtek) [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtlQRCode.dll
2014-03-03 14:59 - 2014-04-25 17:42 - 008360816 _____ (TechSmith Corporation) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\SnagItEditorRes.dll
2014-03-03 14:59 - 2014-04-25 17:42 - 007454064 _____ (TechSmith Corporation) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\SnagItres.dll
2014-03-03 14:31 - 2014-03-03 14:31 - 000165888 _____ (TechSmith Corporation) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\TSCREC3.dll
2014-03-03 14:32 - 2014-03-03 14:32 - 000076288 _____ (TechSmith Corporation) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\UpdaterInterop.dll
2019-03-19 09:29 - 2009-07-23 17:32 - 001122304 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\LIBEAY32.dll
2020-01-24 17:47 - 2014-10-31 16:38 - 000708608 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSProducstInfo.dll
2019-05-31 07:44 - 2015-05-24 02:44 - 000124456 _____ (ООО ”ИДЕАЛЬНЫЙ СОФТ” - Ideal Soft LLC -> Idol Software) [File not signed] C:\Program Files\MPC-HC\CrashReporter\crashrpt.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2020-02-01 12:31 - 000001754 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 https://one-xzrefl.world/en/stream/?tag=d_1567m_97c_
127.0.0.1 https://shuglaursech.com
127.0.0.1 https://www.techsmith.com
127.0.0.1 https://www.pinnacle.com
127.0.0.1 https://www.pinnaclesys.com
127.0.0.1 https://shuglaursech.com
127.0.0.1 https://shuglaursech.com/?rzi=843753&rsz=843753&rid=
127.0.0.1 https://www.bet365.com
127.0.0.1 https://www.teamviewer.com
127.0.0.1 https://slotv.com/promo/land3?r_visit=0 ... 1664367111
127.0.0.1 https://www.cz.bongacams.com
127.0.0.1 https://thesacrament.club
127.0.0.1 https://best2019-games-web1.com
127.0.0.1 https://www.heroine.cz/vztahy/449-necht ... ampaign=CP
127.0.0.1 https://www.heroine.cz
127.0.0.1 https://trk.securesmrt-dt.com/c/1fbbec7 ... 3&aff_sub=
127.0.0.1 https://plarium.com/ru/igri-strategii/t ... 1574167685
127.0.0.1 https://plarium.com/ru/igri-strategii/t ... 1574167685
127.0.0.1 https://trk.securesmrt-dt.com
127.0.0.1 https://www.chance.cz
127.0.0.1 https://slotv.com/promo/land3?r_visit=c ... 1677697308
127.0.0.1 https://cradver.livejasmin.com
127.0.0.1 http://www.xp.cz
127.0.0.1 https://one-xzrefl.world/
0.0.0.0 www.bandicam.co.kr
0.0.0.0 www.bandicam.com
0.0.0.0 bandicam.com

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\AMD APP\bin\x86_64;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\AMD APP\bin\x86_64;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\Pinnacle\Shared Files\
HKU\S-1-5-21-51665161-4008308083-3026018605-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Oťáček\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 213.46.172.36 - 213.46.172.37
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: TeamViewer => 2
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: AirDroid 3 => C:\Program Files (x86)\AirDroid\AirDroid.exe /start
MSCONFIG\startupreg: AMD AVT => Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
MSCONFIG\startupreg: BCSSync => "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: CCleaner Smart Cleaning => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: DelaypluginInstall => C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe
MSCONFIG\startupreg: eM Client => "C:\Program Files (x86)\eM Client\MailClient.exe" /startup
MSCONFIG\startupreg: FontExpertType1Loader => C:\Program Files (x86)\FontExpert\Type1Loader.exe
MSCONFIG\startupreg: HDDtoGOLaunch => C:\Users\Oťáček\AppData\Roaming\CoSoSys\HDDtoGO\HDDtoGOLaunch.exe
MSCONFIG\startupreg: KiesTrayAgent => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
MSCONFIG\startupreg: LifeCam => "C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe"
MSCONFIG\startupreg: PWRISOVM.EXE => C:\Program Files\PowerISO\PWRISOVM.EXE -startup
MSCONFIG\startupreg: RTHDVCPL => "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
MSCONFIG\startupreg: Samsung PanelMgr => C:\Windows\Samsung\PanelMgr\SSMMgr.exe /autorun
MSCONFIG\startupreg: Skype for Desktop => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
MSCONFIG\startupreg: Viber => "C:\Users\Oťáček\AppData\Local\Viber\Viber.exe" StartMinimized
MSCONFIG\startupreg: Wondershare Helper Compact.exe => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
MSCONFIG\startupreg: WSHelperSetup.exe => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{297F4A0A-A596-439B-9B6B-A016EE5C408C}C:\users\oťáček\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\oťáček\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{69BDC651-CF18-4881-8252-2FD66D100B16}C:\users\oťáček\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\oťáček\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{9A6F0209-D19B-4299-8666-EC5C8470DD4C}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe (Microsoft Corporation) [File not signed]
FirewallRules: [{E28311D5-3189-49D3-9CB8-AB39EA708E59}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe (Microsoft Corporation) [File not signed]
FirewallRules: [{A96AAC25-E7AA-47B7-A4BC-42E422A721D3}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe (Microsoft Corporation) [File not signed]
FirewallRules: [{CF53A994-8A54-4307-A7F3-C86AE88491CF}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe (Microsoft Corporation) [File not signed]
FirewallRules: [{3B954530-6AF4-4DB6-9AF1-B0190470DB36}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FC62EE05-B3BC-4CD1-BAF9-A96390137FB9}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{20C3F74D-FF94-4107-89B4-9E667176F7CB}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BF9F4863-97C3-4C4A-91D9-06F31142589E}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3B652D7E-1ED7-40B1-8222-F834CF8A4085}] => (Allow) C:\Program Files\Zoner\Photo Studio 17\Program32\MediaServer.exe (ZONER software, a.s. -> ZONER software)
FirewallRules: [{8C0DE59C-565B-494E-A3CE-6DC015372205}] => (Allow) C:\Users\Oťáček\AppData\Local\Apowersoft\Online Phone Manager\Online Phone Manager.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{15EB7E9D-877E-4E4A-A7A4-555F8F8E7EED}] => (Allow) C:\Users\Oťáček\AppData\Local\Apowersoft\Online Phone Manager\Online Phone Manager.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{49109BE4-33B3-4E6A-97A1-E4A5F313EB48}] => (Allow) C:\Users\Oťáček\AppData\Local\Apowersoft\Online Phone Manager\ApowersoftAndroidDaemon.exe () [File not signed]
FirewallRules: [{8EF52979-9291-40A5-8FD2-C8235F698732}] => (Allow) C:\Users\Oťáček\AppData\Local\Apowersoft\Online Phone Manager\ApowersoftAndroidDaemon.exe () [File not signed]
FirewallRules: [{37D422F0-1732-4107-BCCD-027642664CFC}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{F98E4A55-A359-44DF-A434-DC6DF0E44BCB}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{47D6CDE9-CA6D-481A-8604-F7125BF9D06D}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{14A8C9E6-9A06-4D9E-A31D-BDEFDAE010C8}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{EF15DBE4-C27E-4ED4-8251-4AAC1043C10C}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Package\PTInstOnline.exe (Free Time Co., Ltd. -> Free Time)
FirewallRules: [TCP Query User{39B36AA6-51BF-4524-B0F1-C56F10FE4EFA}F:\users\oťáček\vista\utorrent\utorrent.exe] => (Allow) F:\users\oťáček\vista\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{1B5E1D6F-4500-4EC5-AC0B-5A9BE972A206}F:\users\oťáček\vista\utorrent\utorrent.exe] => (Allow) F:\users\oťáček\vista\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{1714B9C1-6B5C-4821-8AE6-C91F2A3CE04D}] => (Allow) F:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (chen jun hao -> Free Time) [File not signed]
FirewallRules: [{7207DF57-2BF4-4FE8-988E-487980F02640}] => (Allow) F:\Program Files (x86)\FormatFactory\FormatFactory.exe (chen jun hao -> Free Time) [File not signed]
FirewallRules: [TCP Query User{F7095C8D-2717-4DC8-A34E-7DF9EED0AED8}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe (SAND STUDIO CORPORATION LIMITED -> Sand Studio)
FirewallRules: [UDP Query User{32B2203D-2DC2-4F95-9729-AAE978859F3E}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe (SAND STUDIO CORPORATION LIMITED -> Sand Studio)
FirewallRules: [{688CD5AA-F8F4-4459-8F7C-968750747A54}] => (Allow) C:\Users\Oťáček\AppData\Roaming\uTorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{98733538-CFE3-45D5-A0D0-A12F5CBEA7F2}] => (Allow) C:\Users\Oťáček\AppData\Roaming\uTorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{B9D00C3A-CC73-4D41-9B07-2E7303C06C37}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe (SAND STUDIO CORPORATION LIMITED -> Sand Studio)
FirewallRules: [UDP Query User{3EAD46FC-A5D6-43B7-8E52-988F13F20361}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe (SAND STUDIO CORPORATION LIMITED -> Sand Studio)
FirewallRules: [{4CAA0FAE-2644-4691-8591-FB27879628EB}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{894286C4-8909-4294-A981-8730E3AA489F}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{58C09C3B-25BB-4534-B8D6-7C8742AA1EC3}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{7FE6D0D7-D9E9-4445-AED0-48177F28935D}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{34284434-F5AA-46BF-A39F-6DC33504CA3F}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Package\PTInstOnline.exe (Free Time Co., Ltd. -> Free Time)
FirewallRules: [{3C05952F-16F5-4C80-8E82-53287114997F}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{5A631CC0-AA9E-488F-9FCA-5D290D8FB144}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{021C069F-D8AE-4400-8F5E-E292B55C3DBB}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{1844EB57-5E0B-45E7-AA4C-7A9EBFA06D96}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{D64F19D8-4C71-4D6A-A999-ED187160DE88}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Package\PTInstOnline.exe (Free Time Co., Ltd. -> Free Time)
FirewallRules: [{51E130F7-CFA0-4683-A459-BA13627A2500}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{39CD88CE-B157-42B2-8AD8-D0EC8357FCC6}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{EE4F85A6-6B86-4720-9FE8-45B08014AD0F}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{A6ADA8EE-7DFB-4FC8-AB44-032765047F8C}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [TCP Query User{365EDF76-112C-4680-B47E-583C95D7F72E}C:\program files (x86)\pinnacle\videospin\programs\videospin.exe] => (Allow) C:\program files (x86)\pinnacle\videospin\programs\videospin.exe (Pinnacle Systems, Inc. -> Pinnacle Systems)
FirewallRules: [UDP Query User{6D678A18-B857-479B-B80A-8CD9DB45CF51}C:\program files (x86)\pinnacle\videospin\programs\videospin.exe] => (Allow) C:\program files (x86)\pinnacle\videospin\programs\videospin.exe (Pinnacle Systems, Inc. -> Pinnacle Systems)
FirewallRules: [TCP Query User{A8595D0D-BC20-428B-ADE5-178A223B0724}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{018DB134-0E56-47F5-8B03-CA77AD573AA4}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{BE835B07-093D-4169-8230-911BB9C35B58}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{4A3D4108-87C4-4BC4-A833-7F343E545ED9}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{FA814444-8341-4514-B32B-81C5A3829F4A}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{34996ED0-FB52-4147-AF33-0978A54FECCC}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{D9965A42-40F7-4621-BABE-A00AAC37BA24}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{9260761F-7BE2-4725-B4C5-BA41F14F8DBB}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{7C3AFAD1-3ECC-4935-B2A5-04B5C15F79B9}F:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) F:\program files (x86)\google\chrome\application\chrome.exe (Google Inc -> Google Inc.)
FirewallRules: [UDP Query User{81BE284B-8C0B-42DC-BFFB-31E89FCB0CF1}F:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) F:\program files (x86)\google\chrome\application\chrome.exe (Google Inc -> Google Inc.)
FirewallRules: [{A397107B-23FD-444A-A2DC-92AA4F712F91}] => (Allow) C:\PROGRA~2\netis\USBWIR~1\RtWlan.exe (Realtek Semiconductor Corp.) [File not signed]
FirewallRules: [{FF123FB9-9A02-4186-AC59-9C43FD53FBA5}] => (Allow) C:\PROGRA~2\netis\USBWIR~1\Rtldhcp.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{29308BCA-4AE2-4126-8563-0EEC698919AE}] => (Allow) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{1441ACA2-712F-4CD7-988B-C063BFC3008D}] => (Allow) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{F350E590-3BFA-4AC9-A8DA-519CCFEDDD3D}] => (Allow) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{FE707B5E-32F2-47F2-9FCE-8D5BF6F14BBE}] => (Allow) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{A1C8335C-9990-4CA0-85E2-C6E74E65A4F8}] => (Allow) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{A56C19DE-6D46-4228-9968-364E8FC3F0D1}] => (Allow) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [TCP Query User{8E9861CF-8002-4F1E-99F6-EB3B14412A30}C:\program files (x86)\smart view\smart view.exe] => (Allow) C:\program files (x86)\smart view\smart view.exe () [File not signed]
FirewallRules: [UDP Query User{B699AD97-FF17-4260-A4E4-98E30200385D}C:\program files (x86)\smart view\smart view.exe] => (Allow) C:\program files (x86)\smart view\smart view.exe () [File not signed]
FirewallRules: [TCP Query User{7B5BE066-70B0-461C-BF3C-001C3DFE3A1B}F:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) F:\program files (x86)\google\chrome\application\chrome.exe (Google Inc -> Google Inc.)
FirewallRules: [UDP Query User{141D5200-174A-4EC1-BA6B-A72925194FD6}F:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) F:\program files (x86)\google\chrome\application\chrome.exe (Google Inc -> Google Inc.)
FirewallRules: [{DE807617-92DC-4506-ACED-4214B20F3401}] => (Block) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Wondershare software CO., LIMITED -> Wondershare)
FirewallRules: [{92BA9A77-EDDD-4139-BF2E-19F52FF4C77A}] => (Allow) C:\Users\Oťáček\AppData\Local\Programs\Opera\66.0.3515.44\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{EF2A35C2-A594-46BB-9FA2-2508304EC22C}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6D0A8D98-CF57-453D-BE9F-36ABD6DB31E8}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A3EEB05D-A22C-472B-B101-2E268E447FC4}] => (Allow) C:\Users\Oťáček\AppData\Local\Programs\Opera\66.0.3515.72\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{5C379787-5E97-41F9-9892-A0B30CF5791E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================


==================== Faulty Device Manager Devices ============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: ========================

Application errors:
==================

System errors:
=============

CodeIntegrity:
===================================

Date: 2018-10-19 00:59:27.780
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.23677_none_c012509e16735ef9\appidapi.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-10-19 00:59:27.617
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.23677_none_c012509e16735ef9\appidapi.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-10-19 00:59:27.454
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.23677_none_c012509e16735ef9\appidapi.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-10-19 00:59:27.289
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.23677_none_c012509e16735ef9\appidapi.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-10-19 00:59:26.935
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.23392_none_bff7a9a2168820b3\appidapi.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-10-19 00:59:26.772
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.23392_none_bff7a9a2168820b3\appidapi.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-10-19 00:59:26.608
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.23392_none_bff7a9a2168820b3\appidapi.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-10-19 00:59:26.443
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.23392_none_bff7a9a2168820b3\appidapi.dll because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

BIOS: American Megatrends Inc. 1305 02/11/2011
Motherboard: ASUSTeK Computer INC. P8H67-M EVO
Processor: Intel(R) Core(TM) i3-2100 CPU @ 3.10GHz
Percentage of memory in use: 80%
Total physical RAM: 8173.24 MB
Available physical RAM: 1576.5 MB
Total Virtual: 16344.62 MB
Available Virtual: 9440.79 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:48.83 GB) (Free:6.07 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.03 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive e: (HDD) (Fixed) (Total:882.68 GB) (Free:56.65 GB) NTFS
Drive f: () (Fixed) (Total:465.66 GB) (Free:149.3 GB) NTFS
Drive g: (df117) (CDROM) (Total:0.4 GB) (Free:0 GB) CDFS
Drive i: (ADATA HV100) (Fixed) (Total:1862.56 GB) (Free:31.99 GB) FAT32


==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: DD32DD32)
Partition 1: (Active) - (Size=48.8 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=882.7 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 0EC61270)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (Size: 1863 GB) (Disk ID: 87A12B7E)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=0C)

==================== End of Addition.txt =======================

------------------------------------------------------------------------------------------------------------------------------------
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-02-2020
Ran by Oťáček (administrator) on OŤÁČEK-PC (19-02-2020 18:17:58)
Running from C:\Users\Oťáček\Desktop\UTILITY
Loaded Profiles: Oťáček (Available Profiles: Oťáček)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Windows\runSW.exe
(Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(AVAST Software s.r.o. -> AVAST Software) E:\Avast 2019\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) E:\Avast 2019\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) E:\Avast 2019\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) E:\Avast 2019\AvastUI.exe
(Crystal Rich Ltd -> Crystal Rich Ltd) E:\Stažené soubory\SOFTWARE\USB Safely Remove 5.4.6.1244 Final + Portable\Portable\App\USBSafelyRemove\USBSRService.exe
(Fotis Zafiropoulos -> MPC-HC Team) C:\Program Files\MPC-HC\mpc-hc64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.442\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.442\GoogleCrashHandler64.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp -> Realtek) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RTLDHCP.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor Corp.) [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtWLan.exe
(Realtek) [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtlService.exe
(Realtek) [File not signed] C:\Windows\SwUSB.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(SAND STUDIO CORPORATION LIMITED -> Sand Studio) C:\Program Files (x86)\AirDroid\AirDroid.exe
(SAND STUDIO CORPORATION LIMITED -> Sand Studio) C:\Program Files (x86)\AirDroid\AirDroidHelper.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(TechSmith Corporation -> TechSmith Corporation) C:\Program Files (x86)\TechSmith\Snagit 11\Snagit32.exe
(TechSmith Corporation -> TechSmith Corporation) C:\Program Files (x86)\TechSmith\Snagit 11\SnagitEditor.exe
(TechSmith Corporation -> TechSmith Corporation) C:\Program Files (x86)\TechSmith\Snagit 11\SnagPriv.exe
(TechSmith Corporation) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\TscHelp.exe
(Two Pilots) [File not signed] C:\Windows\VPDAgent_x64.exe
(Wondershare software CO., LIMITED -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9269352 2019-12-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => E:\Avast 2019\AvLaunch.exe [268680 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642304 2013-04-29] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AMD AVT] => Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646160 2019-12-11] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-51665161-4008308083-3026018605-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-51665161-4008308083-3026018605-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91511144 2020-01-24] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-51665161-4008308083-3026018605-1000\...\MountPoints2: {a0f561b9-73c8-11e9-b0d1-806e6f6e6963} - G:\dfoto.exe
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.116\Installer\chrmstp.exe [2020-02-18] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Mozilla Thunderbird.lnk [2020-02-18]
ShortcutTarget: Mozilla Thunderbird.lnk -> C:\Program Files\Mozilla Thunderbird\thunderbird.exe (Mozilla Corporation -> Mozilla Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Snagit 11.lnk [2017-04-10]
ShortcutTarget: Snagit 11.lnk -> C:\Program Files (x86)\TechSmith\Snagit 11\Snagit32.exe (TechSmith Corporation -> TechSmith Corporation)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {11F27765-264A-41F2-929A-9AC291E5530B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
Task: {1419EA65-210D-4959-A257-0F5DC6EC6FA5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-02-11] (Google LLC -> Google LLC)
Task: {14B9D031-2025-4737-8E7C-BD951A7C1D4F} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {1E677782-D88B-4FBF-BFE0-E4C9BD4406E9} - System32\Tasks\Opera scheduled Autoupdate 1579022060 => C:\Users\Oťáček\AppData\Local\Programs\Opera\launcher.exe [1532952 2020-02-05] (Opera Software AS -> Opera Software)
Task: {211F0999-E43B-4F8A-8B7F-504B1A76E4A9} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {40DDB543-8B81-4ADD-8A8A-1582A5402083} - System32\Tasks\{0D29414D-C650-4E48-A71F-2385CD7D5081} => C:\Program Files (x86)\Ashampoo\Ashampoo Burning Studio 6 FREE\burningstudio.exe
Task: {4AD55C2E-80EE-46C8-87D1-59ECACC85157} - System32\Tasks\{23D73F70-966E-4707-A9DB-38B51B5C055B} => C:\Program Files (x86)\Iceni\Infix5\Infix.exe [13589728 2013-01-10] (Iceni Technology Ltd. -> Iceni Technology Limited)
Task: {57DB1BB6-48B3-4064-BB4F-8BA2B71F84BA} - System32\Tasks\{E07198F9-D10E-4297-BC1B-C4BD667BA93B} => C:\Program Files (x86)\Iceni\Infix5\Infix.exe [13589728 2013-01-10] (Iceni Technology Ltd. -> Iceni Technology Limited)
Task: {62FCDCC8-710A-45CE-8AD5-458DFB5B18BE} - System32\Tasks\{BDD65FD5-9FE4-470B-9F87-32C49EF8CCAD} => C:\Windows\system32\pcalua.exe -a "E:\Stažené soubory\msicuu2(1).exe" -d "E:\Stažené soubory"
Task: {6D2C7EAA-6902-46E2-926E-3643978094AD} - System32\Tasks\{96A1093B-6B4A-488B-9B33-653BD9A0E82D} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Windows Installer Clean Up\msicuu.exe" -d "C:\Program Files (x86)\Windows Installer Clean Up"
Task: {7222C1FD-911C-423D-89E1-6337B3ADA8D1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-02-11] (Google LLC -> Google LLC)
Task: {8AB70ED9-471A-4103-AAB1-31AE9CCA5FF3} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1873288 2019-09-19] (AVAST Software s.r.o. -> AVAST Software)
Task: {8F413FC8-F86F-425E-956F-929F3E401711} - System32\Tasks\Avast Emergency Update => E:\Avast 2019\AvEmUpdate.exe [3933576 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
Task: {9D2344E9-4391-4C29-AA8F-5718502945EF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-02-11] (Adobe Inc. -> Adobe)
Task: {B2AB7818-F9FE-4AA6-8718-267E114C56B9} - System32\Tasks\{B82F74A0-6BF7-40C6-938C-B68715545F09} => C:\Program Files (x86)\Iceni\Infix5\Infix.exe [13589728 2013-01-10] (Iceni Technology Ltd. -> Iceni Technology Limited)
Task: {C700FD45-9E2D-434E-9D1C-88B8C3AB5C91} - System32\Tasks\{7A6B60DC-727E-441E-A432-8D3357118DB9} => C:\Windows\system32\pcalua.exe -a "E:\Stažené soubory\msicuu2(2).exe" -d "E:\Stažené soubory"
Task: {D3871F9A-AD1D-402E-9EFA-44509969FA14} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_330_Plugin.exe [1458232 2020-02-11] (Adobe Inc. -> Adobe)
Task: {EC009CEF-CFDD-4B90-8488-90D7158D2B08} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_330_pepper.exe [1453624 2020-02-11] (Adobe Inc. -> Adobe)
Task: {EDF3DB7E-0040-4B7E-A77D-D1A1E538CCE8} - System32\Tasks\eM Client Database Backup (S-1-5-21-51665161-4008308083-3026018605-1000) => C:\Program Files (x86)\eM Client\DbBackup.exe [139624 2016-10-21] (eM Client, s.r.o. -> )
Task: {FAD70A06-E485-4F38-827F-1D9722471F74} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-16] (Piriform Software Ltd -> Piriform Software Ltd)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37
Tcpip\..\Interfaces\{53702BC7-8C9E-41D1-94E4-1B2AEFB2F16B}: [DhcpNameServer] 213.46.172.36 213.46.172.37
Tcpip\..\Interfaces\{555B09F5-81C2-4DDA-83D1-5057F55A238F}: [DhcpNameServer] 213.46.172.36 213.46.172.37
Tcpip\..\Interfaces\{F84325AE-0BB8-4C06-854F-EAC454957FA1}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\ssv.dll [2020-01-15] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\jp2ssv.dll [2020-01-15] (Oracle America, Inc. -> Oracle Corporation)
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll [2008-05-23] (Microsoft Corporation) [File not signed]

FireFox:
========
FF DefaultProfile: gko5uglf.default-1581863657544
FF ProfilePath: C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544 [2020-02-19]
FF DownloadDir: E:\Stažené soubory
FF Homepage: Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544 -> hxxps://www.seznam.cz/?clid=22668
FF NewTab: Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544 -> about:newtab
FF Session Restore: Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544 -> is enabled.
FF Notifications: Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544 -> hxxps://web.whatsapp.com; hxxps://www.youtube.com; hxxps://push.trafroll.com; hxxps://cz.xhamsterlive.com; hxxps://eurozpravy.cz; hxxps://cs.xhamsterlive.com; hxxps://cs.stripchat.com; hxxps://www.viry.cz
FF Extension: (Tampermonkey) - C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544\Extensions\firefox@tampermonkey.net.xpi [2019-12-18]
FF Extension: (clean-youtube) - C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2019-07-04]
FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2019-12-14]
FF Extension: (S3.Translator) - C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544\Extensions\s3google@translator.xpi [2018-10-21]
FF Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544\Extensions\sp@avast.com.xpi [2020-02-13]
FF Extension: (Tab Session Manager) - C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544\Extensions\Tab-Session-Manager@sienori.xpi [2020-01-02]
FF Extension: (TinEye Reverse Image Search) - C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544\Extensions\tineye@ideeinc.com.xpi [2020-01-22]
FF Extension: (Avast Online Security) - C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544\Extensions\wrc@avast.com.xpi [2020-01-24]
FF Extension: (404 Bookmarks) - C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544\Extensions\{5f8d31ba-47fb-4b70-bf8d-d2113f6da22f}.xpi [2019-12-16]
FF Extension: (Flash and Video Download) - C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544\Extensions\{adeadebb-fedc-4180-a7f4-cfdd87496551}.xpi [2020-02-13]
FF Extension: (Bookmark Manager and Viewer) - C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544\Extensions\{beb1b1c0-32b9-47d8-bbd1-f65bed4e7c22}.xpi [2019-01-13]
FF Extension: (Aliexpress SuperStar česky, Historie cen a koruny) - C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544\Extensions\{ea692a27-4873-406e-bbc6-010c2dd9e9b5}.xpi [2020-02-19]
FF Extension: (No Name) - C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\xckdnk84.default-1545239502686\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [not found]
FF SearchPlugin: C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544\searchplugins\google-avast.xml [2019-02-22]
FF SearchPlugin: C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544\searchplugins\seznam-avast.xml [2019-02-25]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_330.dll [2020-02-11] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_330.dll [2020-02-11] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1235205.dll [2019-03-15] (Adobe Systems, Inc.) [File not signed]
FF Plugin-x32: @java.com/DTPlugin,version=11.241.2 -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\dtplugin\npDeployJava1.dll [2020-01-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.241.2 -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\plugin2\npjp2.dll [2020-01-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [No File]

Chrome:
=======
CHR Profile: C:\Users\Oťáček\AppData\Local\Google\Chrome\User Data\Default [2020-02-18]
CHR DownloadDir: E:\Stažené soubory
CHR HomePage: Default -> hxxps://www.seznam.cz/
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/"
CHR DefaultSearchURL: Default -> hxxps://www.ceskyali.cz/wp-content/uploads/2019/08/ico-a192.png
CHR Extension: (Prezentace) - C:\Users\Oťáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-10-11]
CHR Extension: (Adblocker for Chrome - NoAds) - C:\Users\Oťáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\alplpnakfeabeiebipdmaenpmbgknjce [2019-06-09]
CHR Extension: (Dokumenty) - C:\Users\Oťáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-10-11]
CHR Extension: (Disk Google) - C:\Users\Oťáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-11]
CHR Extension: (YouTube) - C:\Users\Oťáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-10-11]
CHR Extension: (Aliexpress SuperStar česky, Historie cen a koruny) - C:\Users\Oťáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\ciclollkolafellcaolgccmfjldgpolo [2020-02-11]
CHR Extension: (Adblock na Youtube™) - C:\Users\Oťáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2019-04-14]
CHR Extension: (Tabulky) - C:\Users\Oťáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-10-11]
CHR Extension: (Dokumenty Google offline) - C:\Users\Oťáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-15]
CHR Extension: (Avast Online Security) - C:\Users\Oťáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-02-12]
CHR Extension: (Aliexpress česky) - C:\Users\Oťáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeggofhlgndddenkjfloklflmjjjfdbe [2020-02-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Oťáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-25]
CHR Extension: (Gmail) - C:\Users\Oťáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-27]
CHR Extension: (Chrome Media Router) - C:\Users\Oťáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-02-12]
CHR Extension: (Send Link by Email or Gmail) - C:\Users\Oťáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\plcgkgghkdfgfhiidfjkhmainebgmklf [2020-02-17]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Agent; C:\Windows\VPDAgent_x64.exe [168960 2013-08-28] (Two Pilots) [File not signed]
R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [238080 2013-04-30] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R3 aswbIDSAgent; E:\Avast 2019\aswidsagent.exe [6259592 2019-12-19] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; E:\Avast 2019\AvastSvc.exe [996880 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6960640 2020-02-13] (Malwarebytes Inc -> Malwarebytes)
R2 RealtekWlanU; C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtlService.exe [36864 2010-04-16] (Realtek) [File not signed]
S2 RTLDHCPService; C:\Program Files (x86)\netis\USB Wireless LAN Utility\RTLDHCP.exe [261848 2013-11-12] (Realtek Semiconductor Corp -> Realtek)
R2 RunSwUSB; C:\Windows\runSW.exe [36864 2014-04-15] () [File not signed]
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
R2 USBSafelyRemoveService; E:\Stažené soubory\SOFTWARE\USB Safely Remove 5.4.6.1244 Final + Portable\Portable\App\USBSafelyRemove\USBSRService.exe [1666416 2017-06-08] (Crystal Rich Ltd -> Crystal Rich Ltd)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe [495720 2018-07-04] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 WsAppService3; C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe [83232 2019-06-26] (Wondershare Technology Co.,Ltd -> Wondershare)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [11922944 2013-04-30] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [359936 2013-04-30] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
S3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31920 2014-04-09] (APOWERSOFT LIMITED -> Wondershare)
S3 asmthub3; C:\Windows\System32\DRIVERS\asmthub3.sys [138568 2012-08-20] (MCCI Corporation -> ASMedia Technology Inc)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37616 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [204824 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [274456 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [209552 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [65120 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [276952 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42736 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [171520 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [110320 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [83792 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [848432 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [460448 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [236024 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [316528 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW76.sys [96896 2012-05-14] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 atikmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [11922944 2013-04-30] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
S2 DgiVecp; C:\Windows\system32\Drivers\DgiVecp.sys [53816 2009-06-09] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 HWiNFO32-BackupByDriverBoosterPortable; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-03-24] (Martin Malik - REALiX -> REALiX(tm))
R3 MarvinBus; C:\Windows\System32\DRIVERS\MarvinBus64.sys [261120 2005-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Pinnacle Systems GmbH)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [214496 2020-02-18] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-02-18] (Malwarebytes Inc -> Malwarebytes)
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> )
S3 RtlWlanu; C:\Windows\System32\DRIVERS\rtwlanu.sys [3733208 2019-03-24] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation )
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tenCapture; C:\Windows\System32\DRIVERS\tenCapture.sys [23736 2012-07-20] (Web Solution Mart -> Hajo Krabbenhöft)
S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2013-02-12] (Microsoft Windows -> Microsoft Corporation)
R3 VAD_DEV; C:\Windows\System32\drivers\vad.sys [24992 2012-03-27] (Wondershare Software Co., Ltd. -> Windows (R) DDK provider) [File not signed]
S3 WDC_SAM; C:\Windows\System32\DRIVERS\wdcsam64_prewin8.sys [31920 2018-02-26] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies)
R2 WiseFs; C:\Windows\WiseFs64.sys [14256 2017-04-11] (Lespeed Technology Ltd. -> WiseCleaner.com) [File not signed]
U3 WsDrvInst; C:\Program Files (x86)\Wondershare\MobileTrans\DriverInstall.exe [119072 2019-09-05] (Wondershare Technology Co.,Ltd -> Wondershare)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-02-18 09:21 - 2020-02-18 09:21 - 000214496 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2020-02-18 09:18 - 2020-02-18 09:18 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2020-02-18 08:57 - 2020-02-18 08:57 - 000000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2020-02-18 08:57 - 2020-02-18 08:57 - 000000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2020-02-18 01:57 - 2020-02-18 01:57 - 000000986 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2020-02-18 01:57 - 2020-02-18 01:57 - 000000974 _____ C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2020-02-18 01:57 - 2020-02-18 01:57 - 000000974 _____ C:\ProgramData\Desktop\Mozilla Thunderbird.lnk
2020-02-18 01:57 - 2020-02-18 01:57 - 000000000 ____D C:\Users\Oťáček\AppData\Roaming\Thunderbird
2020-02-18 01:57 - 2020-02-18 01:57 - 000000000 ____D C:\Users\Oťáček\AppData\Local\Thunderbird
2020-02-18 01:57 - 2020-02-18 01:57 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2020-02-18 01:30 - 2020-02-18 01:51 - 000000000 ____D C:\Program Files\Memecode
2020-02-18 00:31 - 2020-02-18 12:32 - 000000000 ____D C:\Users\Oťáček\AppData\Roaming\eM Client
2020-02-18 00:30 - 2020-02-18 00:30 - 000001567 _____ C:\Users\Oťáček\Desktop\MailCliеnt.exe – zástupce.lnk
2020-02-18 00:29 - 2020-02-18 00:31 - 000000000 ____D C:\Program Files (x86)\eM Client
2020-02-18 00:29 - 2020-02-18 00:29 - 000000966 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eM Client.lnk
2020-02-18 00:18 - 2020-01-10 12:35 - 000623702 _____ C:\Users\Oťáček\Desktop\Kontakty.vcf
2020-02-18 00:02 - 2020-02-18 00:02 - 000369834 _____ C:\Users\Oťáček\Documents\Kontakty.vcf
2020-02-17 02:15 - 2020-02-19 01:17 - 000000000 ____D C:\Users\Oťáček\AppData\LocalLow\IGDump
2020-02-16 23:06 - 2020-02-16 23:06 - 000265762 _____ C:\Users\Oťáček\Documents\kořrnky vzor.pdf
2020-02-16 15:34 - 2020-02-16 15:50 - 000000000 ____D C:\Users\Oťáček\Desktop\Původní data aplikace Firefox
2020-02-16 03:20 - 2020-02-16 03:20 - 000001608 _____ C:\Users\Oťáček\Desktop\WINWORD.EXE.lnk
2020-02-16 03:19 - 2020-02-16 03:19 - 000001619 _____ C:\Users\Oťáček\Desktop\POWERPNT.EXE – zástupce.lnk
2020-02-16 02:55 - 2020-02-16 02:55 - 000193864 _____ C:\Users\Oťáček\Documents\KOŘENKY.pdf
2020-02-16 01:45 - 2020-02-16 01:45 - 000000000 ____D C:\Windows\system32\Tasks\OfficeSoftwareProtectionPlatform
2020-02-16 01:44 - 2020-02-17 09:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2020-02-16 01:44 - 2020-02-16 01:44 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2020-02-16 01:43 - 2020-02-16 01:43 - 000000000 ____D C:\Program Files\Microsoft Synchronization Services
2020-02-16 01:43 - 2020-02-16 01:43 - 000000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2020-02-16 01:41 - 2020-02-16 01:43 - 000000000 ____D C:\Program Files\Microsoft Office
2020-02-16 01:41 - 2020-02-16 01:41 - 000000000 ____D C:\Program Files\Microsoft Analysis Services
2020-02-16 01:41 - 2020-02-16 01:41 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-02-16 01:41 - 2020-02-16 01:41 - 000000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2020-02-16 01:40 - 2020-02-16 01:40 - 000000000 __RHD C:\MSOCache
2020-02-16 00:09 - 2020-02-16 00:09 - 000002857 _____ C:\Users\Oťáček\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Install Clean Up.lnk
2020-02-16 00:09 - 2020-02-16 00:09 - 000000000 ____D C:\Program Files (x86)\Windows Installer Clean Up
2020-02-16 00:08 - 2020-02-19 16:49 - 000003116 _____ C:\Windows\system32\Tasks\{7A6B60DC-727E-441E-A432-8D3357118DB9}
2020-02-15 23:44 - 2020-02-15 23:44 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2020-02-15 23:27 - 2020-02-15 23:27 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
2020-02-15 22:11 - 2020-02-15 22:11 - 000000000 ____D C:\Users\Oťáček\AppData\Local\SaraResults
2020-02-15 22:09 - 2020-02-15 22:09 - 000000000 ____D C:\Users\Oťáček\AppData\Local\SaRALogs
2020-02-15 22:05 - 2020-02-15 22:52 - 000000000 ____D C:\Users\Oťáček\AppData\Local\Deployment
2020-02-15 21:34 - 2020-02-15 23:28 - 000000000 ____D C:\Program Files (x86)\Microsoft OfficeOLD
2020-02-15 10:19 - 2020-02-19 16:49 - 000003232 _____ C:\Windows\system32\Tasks\{96A1093B-6B4A-488B-9B33-653BD9A0E82D}
2020-02-15 09:57 - 2020-02-19 16:49 - 000003116 _____ C:\Windows\system32\Tasks\{BDD65FD5-9FE4-470B-9F87-32C49EF8CCAD}
2020-02-13 19:58 - 2020-02-13 19:58 - 003636736 _____ C:\Users\Oťáček\Documents\mobil.pps
2020-02-13 13:24 - 2020-02-13 13:24 - 000002555 _____ C:\Users\Oťáček\Documents\MALWAREBYTES.txt
2020-02-13 12:20 - 2020-02-13 12:20 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2020-02-13 12:20 - 2020-02-13 12:20 - 000001948 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-02-13 12:20 - 2020-02-13 12:20 - 000001948 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-02-13 12:20 - 2020-02-13 12:20 - 000000000 ____D C:\Users\Oťáček\AppData\Local\mbamtray
2020-02-13 12:20 - 2020-02-13 12:20 - 000000000 ____D C:\Users\Oťáček\AppData\Local\mbam
2020-02-13 12:20 - 2020-02-13 12:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2020-02-13 01:52 - 2020-01-30 03:30 - 000834560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2020-02-13 01:52 - 2020-01-30 03:23 - 001010688 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2020-02-12 18:15 - 2020-02-12 18:15 - 000232564 _____ C:\Users\Oťáček\Documents\smlouva - DD Rokytnice.pdf
2020-02-12 01:34 - 2020-02-12 08:33 - 004392960 _____ C:\Users\Oťáček\Documents\Na Floridu za Krumlem 2020.pps
2020-02-12 01:25 - 2020-02-12 01:25 - 004379648 _____ C:\Users\Oťáček\Documents\Na Floridu za Krumlem.pps
2020-02-11 13:47 - 2020-02-11 13:47 - 000002622 _____ C:\Users\Oťáček\Desktop\Aliexpress česky.lnk
2020-02-11 13:47 - 2020-02-11 13:47 - 000000000 ____D C:\Users\Oťáček\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome
2020-02-11 13:28 - 2020-02-18 21:34 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-02-11 13:28 - 2020-02-18 21:34 - 000002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-02-11 13:28 - 2020-02-18 21:34 - 000002183 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-02-11 13:27 - 2020-02-19 16:49 - 000003388 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-02-11 13:27 - 2020-02-19 16:49 - 000003260 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-02-10 16:32 - 2020-02-10 16:32 - 001400320 _____ C:\Users\Oťáček\Documents\Ucinky_piti_mleka.pps
2020-02-09 16:27 - 2020-02-09 16:28 - 000001908 _____ C:\Windows\diagwrn.xml
2020-02-09 16:27 - 2020-02-09 16:28 - 000001908 _____ C:\Windows\diagerr.xml
2020-02-09 15:45 - 2020-02-09 15:50 - 000000000 ____D C:\Users\Oťáček\AppData\Roaming\PhotoFiltre Studio X
2020-02-09 15:44 - 2020-02-09 15:44 - 000001096 _____ C:\Users\Oťáček\Desktop\PhotoFiltre Studio X.lnk
2020-02-09 15:44 - 2020-02-09 15:44 - 000000000 ____D C:\Users\Oťáček\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre Studio X
2020-02-09 15:44 - 2020-02-09 15:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoFiltre Studio X
2020-02-09 15:44 - 2020-02-09 15:44 - 000000000 ____D C:\Program Files (x86)\PhotoFiltre Studio X
2020-02-08 19:16 - 2020-02-02 19:25 - 000017323 _____ C:\Users\Oťáček\Documents\mpc-hc-settings.ini
2020-02-05 03:28 - 2020-02-05 03:28 - 000731648 _____ C:\Users\Oťáček\Documents\KFC.pps
2020-02-04 14:07 - 2020-02-04 14:07 - 000013194 _____ C:\Users\Oťáček\Desktop\Vzum.exe – zástupce.lnk
2020-02-03 20:03 - 2020-02-03 20:03 - 008356016 _____ (Malwarebytes) C:\Users\Oťáček\Desktop\adwcleaner_8.0.2.exe
2020-02-02 19:07 - 2020-02-02 19:13 - 000406528 _____ C:\Users\Oťáček\Documents\Venčení.pps
2020-02-01 12:10 - 2020-02-01 12:10 - 004508240 _____ C:\Users\Oťáček\Desktop\bandicam 2020-02-01 12-10-44-694.mp4.wav
2020-02-01 12:10 - 2020-02-01 12:10 - 000716989 _____ C:\Users\Oťáček\Desktop\bandicam 2020-02-01 12-10-44-694.mp4
2020-02-01 12:07 - 2020-02-01 12:07 - 000000000 ____D C:\Program Files (x86)\Bandicam.v4.1.3 ( CZ HanzyKisik )
2020-02-01 01:46 - 2020-02-01 01:46 - 000237987 _____ C:\Users\Oťáček\Documents\Leciva_chuze.pdf
2020-01-31 17:39 - 2020-01-31 17:39 - 004436992 _____ C:\Users\Oťáček\Documents\Malíř dětí1.pps
2020-01-29 09:07 - 2020-01-29 09:11 - 000000000 ____D C:\Users\Oťáček\Documents\čmejla
2020-01-28 23:45 - 2020-01-28 23:46 - 005057536 _____ C:\Users\Oťáček\Documents\Koronavirus.pps
2020-01-27 00:23 - 2020-01-27 00:23 - 000001324 _____ C:\Users\Oťáček\Desktop\Stížžnost.txt
2020-01-24 17:52 - 2020-01-24 17:52 - 000000000 ____D C:\Users\Oťáček\Documents\Wondershare
2020-01-24 17:49 - 2020-01-24 17:49 - 000000000 ____D C:\Users\Oťáček\AppData\Roaming\HMYGSetting
2020-01-24 17:47 - 2020-01-24 23:17 - 000001243 _____ C:\Users\Public\Desktop\Wondershare MobileTrans.lnk
2020-01-24 17:47 - 2020-01-24 23:17 - 000001243 _____ C:\ProgramData\Desktop\Wondershare MobileTrans.lnk
2020-01-24 17:47 - 2020-01-24 17:47 - 000000000 ____D C:\Users\Oťáček\AppData\Roaming\Wondershare
2020-01-24 17:38 - 2020-01-24 17:38 - 000000000 ____D C:\ProgramData\ProductFeatures
2020-01-24 17:34 - 2017-09-27 17:29 - 000000232 _____ C:\Windows\SysWOW64\dllhost.exe.config
2020-01-24 15:42 - 2020-01-26 03:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
2020-01-22 14:24 - 2020-01-22 14:24 - 000000000 ____D C:\Users\Oťáček\Documents\TinEye 1.0
2020-01-20 15:45 - 2020-01-20 15:45 - 000543983 _____ C:\Users\Oťáček\Documents\Kubera.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-02-19 18:18 - 2017-11-01 12:35 - 000000000 ____D C:\FRST
2020-02-19 18:17 - 2018-03-13 12:08 - 000000000 ____D C:\Users\Oťáček\Desktop\UTILITY
2020-02-19 18:16 - 2017-04-10 15:10 - 000000000 ____D C:\Users\Oťáček\AppData\LocalLow\Mozilla
2020-02-19 16:55 - 2009-07-14 05:45 - 000019312 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-02-19 16:55 - 2009-07-14 05:45 - 000019312 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-02-19 16:49 - 2020-01-14 18:14 - 000004072 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1579022060
2020-02-19 16:49 - 2019-12-23 13:49 - 000003030 _____ C:\Windows\system32\Tasks\{0D29414D-C650-4E48-A71F-2385CD7D5081}
2020-02-19 16:49 - 2019-03-09 00:18 - 000004544 _____ C:\Windows\system32\Tasks\Adobe Flash Player PPAPI Notifier
2020-02-19 16:49 - 2019-03-08 22:46 - 000004408 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-02-19 16:49 - 2018-10-27 17:55 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-02-19 16:49 - 2018-10-27 17:55 - 000002794 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-02-19 16:49 - 2018-09-15 12:39 - 000002960 _____ C:\Windows\system32\Tasks\{E07198F9-D10E-4297-BC1B-C4BD667BA93B}
2020-02-19 16:49 - 2018-09-15 12:38 - 000002960 _____ C:\Windows\system32\Tasks\{B82F74A0-6BF7-40C6-938C-B68715545F09}
2020-02-19 16:49 - 2018-09-15 12:37 - 000002960 _____ C:\Windows\system32\Tasks\{23D73F70-966E-4707-A9DB-38B51B5C055B}
2020-02-19 16:49 - 2018-03-13 21:41 - 000004532 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-02-19 16:49 - 2017-04-10 15:45 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2020-02-19 16:49 - 2017-04-10 13:16 - 000003978 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{F4B66E77-4023-4CA3-A918-E9DABCC6A041}
2020-02-19 14:48 - 2019-12-06 08:03 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-02-19 14:48 - 2017-04-10 15:19 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-02-19 10:53 - 2017-04-10 22:45 - 000000000 ____D C:\Temp
2020-02-18 23:30 - 2017-04-10 16:41 - 000000000 ____D C:\Users\Oťáček\AppData\Roaming\uTorrent
2020-02-18 22:55 - 2020-01-18 20:05 - 000000000 ____D C:\Users\Oťáček\AppData\Roaming\TeamViewer
2020-02-18 15:40 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2020-02-18 09:22 - 2018-02-26 10:24 - 000000000 ____D C:\Users\Oťáček\AppData\Local\AVAST Software
2020-02-18 09:17 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-02-18 01:34 - 2017-04-10 19:08 - 000000000 ____D C:\ProgramData\Package Cache
2020-02-17 23:02 - 2018-03-01 07:25 - 000004290 _____ C:\Windows\system32\Tasks\eM Client Database Backup (S-1-5-21-51665161-4008308083-3026018605-1000)
2020-02-17 20:48 - 2018-10-18 20:10 - 000000936 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-02-17 20:48 - 2018-10-18 20:10 - 000000924 _____ C:\Users\Public\Desktop\Firefox.lnk
2020-02-17 20:48 - 2018-10-18 20:10 - 000000924 _____ C:\ProgramData\Desktop\Firefox.lnk
2020-02-17 09:35 - 2019-03-04 10:53 - 000458240 ___SH C:\Users\Oťáček\Documents\Thumbs.db
2020-02-16 03:02 - 2009-07-14 05:45 - 005192376 _____ C:\Windows\system32\FNTCACHE.DAT
2020-02-16 01:56 - 2017-04-10 23:16 - 000000000 ____D C:\Users\Oťáček\AppData\Local\Microsoft Help
2020-02-16 01:49 - 2017-04-10 14:57 - 000174184 _____ C:\Users\Oťáček\AppData\Local\GDIPFONTCACHEV1.DAT
2020-02-16 01:43 - 2009-07-14 04:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2020-02-16 01:41 - 2009-07-14 16:36 - 000000000 ____D C:\Windows\ShellNew
2020-02-16 01:09 - 2017-04-11 10:35 - 000000000 ____D C:\Users\Oťáček\AppData\Local\CrashDumps
2020-02-16 00:26 - 2019-10-03 07:24 - 000004120 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-02-16 00:08 - 2017-04-11 10:47 - 000000000 ____D C:\Program Files (x86)\MSECache
2020-02-15 23:51 - 2017-04-10 16:59 - 001661310 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2020-02-15 23:51 - 2009-07-14 16:18 - 000696878 _____ C:\Windows\system32\perfh005.dat
2020-02-15 23:51 - 2009-07-14 16:18 - 000151110 _____ C:\Windows\system32\perfc005.dat
2020-02-15 23:44 - 2017-04-10 23:19 - 000000000 ____D C:\Program Files (x86)\Microsoft Works
2020-02-15 23:44 - 2009-07-14 06:32 - 000000000 ____D C:\Program Files (x86)\MSBuild
2020-02-15 23:40 - 2009-07-14 03:34 - 000000639 _____ C:\Windows\win.ini
2020-02-15 22:06 - 2018-09-05 02:25 - 000000000 ____D C:\Users\Oťáček\AppData\Local\Apps\2.0
2020-02-15 14:48 - 2017-04-15 20:23 - 000000000 ____D C:\Users\Oťáček\AppData\Local\Zoner
2020-02-15 10:44 - 2017-04-12 05:02 - 000000000 ____D C:\Program Files (x86)\Pinnacle
2020-02-15 10:14 - 2017-08-11 16:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Studio Plugins
2020-02-13 23:04 - 2017-09-04 21:09 - 000000000 ____D C:\Users\Oťáček\AppData\Roaming\AirDroid
2020-02-13 19:58 - 2019-10-15 16:48 - 000000000 ____D C:\Users\Oťáček\Documents\PPT2Video Pro Log Files
2020-02-13 13:27 - 2020-01-15 11:03 - 000000000 ____D C:\Users\Oťáček\AppData\Local\NPE
2020-02-13 12:21 - 2017-09-18 11:25 - 000000000 ____D C:\Users\Oťáček\AppData\Local\cache
2020-02-13 12:20 - 2017-11-03 10:26 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-02-13 12:19 - 2017-11-03 10:26 - 000000000 ____D C:\Program Files\Malwarebytes
2020-02-13 11:59 - 2017-10-22 22:00 - 000000000 ____D C:\Users\Oťáček\Documents\Manuály návody
2020-02-13 01:21 - 2017-04-11 08:55 - 000000000 ____D C:\Windows\system32\MRT
2020-02-13 01:14 - 2017-04-11 08:55 - 120407888 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-02-12 01:36 - 2019-10-15 17:01 - 000000000 ____D C:\Users\Oťáček\Documents\PPT2Video Pro
2020-02-11 18:18 - 2017-04-11 22:04 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-02-11 18:18 - 2017-04-11 22:04 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-02-11 18:18 - 2017-04-11 22:04 - 000000000 ____D C:\Windows\system32\Macromed
2020-02-11 18:18 - 2017-04-11 22:03 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-02-11 13:27 - 2017-04-11 21:57 - 000000000 ____D C:\Program Files (x86)\Google
2020-02-10 18:54 - 2009-07-14 06:13 - 001635598 _____ C:\Windows\system32\PerfStringBackup.INI
2020-02-10 17:08 - 2017-04-10 13:13 - 000000000 ____D C:\Users\Oťáček\AppData\Local\VirtualStore
2020-02-09 18:03 - 2017-08-12 20:49 - 000000000 ____D C:\Users\Oťáček\Documents\ViberDownloads
2020-02-09 16:52 - 2017-04-10 18:25 - 000000000 ____D C:\Users\Oťáček\Documents\Snagit
2020-02-09 16:28 - 2017-04-10 13:48 - 000000000 ____D C:\Windows\Panther
2020-02-08 19:34 - 2018-04-30 10:23 - 000000000 ____D C:\Users\Oťáček\AppData\Roaming\vlc
2020-02-08 19:19 - 2018-04-30 10:22 - 000000871 _____ C:\Users\Public\Desktop\VLC media player.lnk
2020-02-08 19:19 - 2018-04-30 10:22 - 000000871 _____ C:\ProgramData\Desktop\VLC media player.lnk
2020-02-07 10:20 - 2019-01-20 01:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2020-02-06 09:36 - 2017-08-15 18:36 - 000000000 ____D C:\Users\Oťáček\AppData\Roaming\ViberPC
2020-02-04 22:06 - 2019-08-14 06:15 - 000260096 _____ C:\Users\Oťáček\Documents\Výklad_umení.pps
2020-02-03 17:04 - 2020-01-18 20:05 - 000000000 ____D C:\Users\Oťáček\AppData\Local\TeamViewer
2020-02-01 21:59 - 2017-04-30 17:44 - 000030208 ___SH C:\Users\Oťáček\Thumbs.db
2020-01-31 09:45 - 2017-04-10 13:13 - 000000000 ____D C:\Users\Oťáček
2020-01-31 00:47 - 2019-05-31 07:45 - 000000000 ____D C:\Users\Oťáček\AppData\Roaming\MPC-HC
2020-01-28 18:36 - 2017-08-11 16:21 - 000000349 _____ C:\Users\Public\Documents\PCLECHAL.INI
2020-01-28 18:36 - 2017-08-11 16:21 - 000000349 _____ C:\ProgramData\Documents\PCLECHAL.INI
2020-01-26 18:22 - 2017-04-17 16:51 - 000057856 _____ C:\Users\Oťáček\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-01-26 16:52 - 2018-02-23 16:38 - 000000000 ____D C:\Users\Oťáček\AppData\Roaming\Audacity
2020-01-26 11:18 - 2019-04-13 23:28 - 000000000 ____D C:\Windows\rescache
2020-01-26 03:30 - 2017-10-11 09:00 - 000000000 ____D C:\Users\Oťáček\AppData\Roaming\Samsung
2020-01-25 02:52 - 2017-09-04 21:09 - 000001943 _____ C:\Users\Public\Desktop\AirDroid.lnk
2020-01-25 02:52 - 2017-09-04 21:09 - 000001943 _____ C:\ProgramData\Desktop\AirDroid.lnk
2020-01-24 23:17 - 2017-06-24 18:46 - 000000000 ____D C:\Program Files (x86)\Wondershare
2020-01-24 17:47 - 2019-10-15 16:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2020-01-24 17:34 - 2017-08-26 07:43 - 000000000 ____D C:\ProgramData\Wondershare
2020-01-24 15:46 - 2017-10-11 09:01 - 000000000 ____D C:\Users\Public\Documents\NativeFus_Log
2020-01-24 15:46 - 2017-10-11 09:01 - 000000000 ____D C:\ProgramData\Documents\NativeFus_Log
2020-01-21 08:40 - 2017-05-16 15:01 - 000000047 _____ C:\trl.cfg

==================== Files in the root of some directories ========

2017-05-19 07:47 - 2017-05-19 07:47 - 000000132 _____ () C:\Users\Oťáček\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2018-03-13 10:11 - 2018-03-13 10:11 - 000195236 _____ () C:\Users\Oťáček\AppData\Roaming\DMGR_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt
2019-01-08 13:02 - 2019-01-08 13:02 - 000000078 _____ () C:\Users\Oťáček\AppData\Roaming\FC.dat
2017-07-03 19:29 - 2017-07-03 19:29 - 000099384 _____ () C:\Users\Oťáček\AppData\Roaming\inst.exe
2019-11-04 13:31 - 2019-11-04 13:31 - 000000078 _____ () C:\Users\Oťáček\AppData\Roaming\IP.dat
2017-05-13 14:13 - 2017-09-23 11:52 - 000000643 _____ () C:\Users\Oťáček\AppData\Roaming\OŤÁČEK-PC.MTBF.txt
2017-07-03 19:29 - 2017-07-03 19:29 - 000007859 _____ () C:\Users\Oťáček\AppData\Roaming\pcouffin.cat
2017-07-03 19:29 - 2017-07-03 19:29 - 000001167 _____ () C:\Users\Oťáček\AppData\Roaming\pcouffin.inf
2017-07-03 19:29 - 2017-07-03 19:29 - 000000055 _____ () C:\Users\Oťáček\AppData\Roaming\pcouffin.log
2017-07-03 19:29 - 2017-07-03 19:29 - 000082816 _____ (VSO Software) C:\Users\Oťáček\AppData\Roaming\pcouffin.sys
2017-04-17 16:51 - 2020-01-26 18:22 - 000057856 _____ () C:\Users\Oťáček\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2019-08-04 20:04 - 2018-09-04 12:15 - 000000218 _____ () C:\Users\Oťáček\AppData\Local\recently-used.xbel
2018-09-06 10:04 - 2018-09-06 10:04 - 000007606 _____ () C:\Users\Oťáček\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2020-01-26 11:10
==================== End of FRST.txt ========================

[Rudy]

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
ShellExecuteHooks-x32: No Name - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - -> No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => -> No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => -> No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => -> No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => -> No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => -> No File
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-51665161-4008308083-3026018605-1000\...\MountPoints2: {a0f561b9-73c8-11e9-b0d1-806e6f6e6963} - G:\dfoto.exe
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {1419EA65-210D-4959-A257-0F5DC6EC6FA5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-02-11] (Google LLC -> Google LLC)
Task: {62FCDCC8-710A-45CE-8AD5-458DFB5B18BE} - System32\Tasks\{BDD65FD5-9FE4-470B-9F87-32C49EF8CCAD} => C:\Windows\system32\pcalua.exe -a "E:\Stažené soubory\msicuu2(1).exe" -d "E:\Stažené soubory"
Task: {6D2C7EAA-6902-46E2-926E-3643978094AD} - System32\Tasks\{96A1093B-6B4A-488B-9B33-653BD9A0E82D} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Windows Installer Clean Up\msicuu.exe" -d "C:\Program Files (x86)\Windows Installer Clean Up"
Task: {7222C1FD-911C-423D-89E1-6337B3ADA8D1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-02-11] (Google LLC -> Google LLC)
FF Extension: (No Name) - C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\xckdnk84.default-1545239502686\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [not found]
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [No File]
C:\Windows\system32\Tasks\{7A6B60DC-727E-441E-A432-8D3357118DB9}
C:\Windows\system32\Tasks\{96A1093B-6B4A-488B-9B33-653BD9A0E82D}
C:\Windows\system32\Tasks\{BDD65FD5-9FE4-470B-9F87-32C49EF8CCAD}
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Windows\system32\Tasks\{0D29414D-C650-4E48-A71F-2385CD7D5081}
C:\Windows\system32\Tasks\{E07198F9-D10E-4297-BC1B-C4BD667BA93B}
C:\Windows\system32\Tasks\{B82F74A0-6BF7-40C6-938C-B68715545F09}
C:\Windows\system32\Tasks\{23D73F70-966E-4707-A9DB-38B51B5C055B}
C:\Users\Oťáček\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

EmptyTemp:
Hosts:
End

Uložte do C:\Users\Oťáček\Desktop\UTILITY jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[jarda.otta]

Žádný log se neobjevil, jen po skenu fix se comp automaticky restartoval a po restartu nic. Mám dát nový scan s FRST?

[Rudy]

Log by měl být v C:\Users\Oťáček\Desktop\UTILITY v souboru fixlog.txt.

[jarda.otta]

Sakra vy jste pohotovej.
Je tam ten fixlog.txt. to je ten co jsem vytvořil. Snad je to v něm.
Zde obsah:
Fix result of Farbar Recovery Scan Tool (x64) Version: 16-02-2020
Ran by Oťáček (19-02-2020 20:42:23) Run:6
Running from C:\Users\Oťáček\Desktop\UTILITY
Loaded Profiles: Oťáček (Available Profiles: Oťáček)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
ShellExecuteHooks-x32: No Name - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - -> No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => -> No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => -> No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => -> No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => -> No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => -> No File
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-51665161-4008308083-3026018605-1000\...\MountPoints2: {a0f561b9-73c8-11e9-b0d1-806e6f6e6963} - G:\dfoto.exe
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {1419EA65-210D-4959-A257-0F5DC6EC6FA5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-02-11] (Google LLC -> Google LLC)
Task: {62FCDCC8-710A-45CE-8AD5-458DFB5B18BE} - System32\Tasks\{BDD65FD5-9FE4-470B-9F87-32C49EF8CCAD} => C:\Windows\system32\pcalua.exe -a "E:\Sta�en� soubory\msicuu2(1).exe" -d "E:\Sta�en� soubory"
Task: {6D2C7EAA-6902-46E2-926E-3643978094AD} - System32\Tasks\{96A1093B-6B4A-488B-9B33-653BD9A0E82D} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Windows Installer Clean Up\msicuu.exe" -d "C:\Program Files (x86)\Windows Installer Clean Up"
Task: {7222C1FD-911C-423D-89E1-6337B3ADA8D1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-02-11] (Google LLC -> Google LLC)
FF Extension: (No Name) - C:\Users\O���ek\AppData\Roaming\Mozilla\Firefox\Profiles\xckdnk84.default-1545239502686\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [not found]
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [No File]
C:\Windows\system32\Tasks\{7A6B60DC-727E-441E-A432-8D3357118DB9}
C:\Windows\system32\Tasks\{96A1093B-6B4A-488B-9B33-653BD9A0E82D}
C:\Windows\system32\Tasks\{BDD65FD5-9FE4-470B-9F87-32C49EF8CCAD}
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Windows\system32\Tasks\{0D29414D-C650-4E48-A71F-2385CD7D5081}
C:\Windows\system32\Tasks\{E07198F9-D10E-4297-BC1B-C4BD667BA93B}
C:\Windows\system32\Tasks\{B82F74A0-6BF7-40C6-938C-B68715545F09}
C:\Windows\system32\Tasks\{23D73F70-966E-4707-A9DB-38B51B5C055B}
C:\Users\O���ek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

EmptyTemp:
Hosts:
End
*****************

Processes closed successfully.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\ShellExecuteHooks\\{B5A7F190-DDA6-4420-B3BA-52453494E6CD}" => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 1 (GFS Unread Stub) => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 2 (GFS Stub) => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 3 (GFS Folder) => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 4 (GFS Unread Mark) => removed successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
HKU\S-1-5-21-51665161-4008308083-3026018605-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a0f561b9-73c8-11e9-b0d1-806e6f6e6963} => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1419EA65-210D-4959-A257-0F5DC6EC6FA5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1419EA65-210D-4959-A257-0F5DC6EC6FA5}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{62FCDCC8-710A-45CE-8AD5-458DFB5B18BE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{62FCDCC8-710A-45CE-8AD5-458DFB5B18BE}" => removed successfully
C:\Windows\System32\Tasks\{BDD65FD5-9FE4-470B-9F87-32C49EF8CCAD} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{BDD65FD5-9FE4-470B-9F87-32C49EF8CCAD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6D2C7EAA-6902-46E2-926E-3643978094AD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6D2C7EAA-6902-46E2-926E-3643978094AD}" => removed successfully
C:\Windows\System32\Tasks\{96A1093B-6B4A-488B-9B33-653BD9A0E82D} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{96A1093B-6B4A-488B-9B33-653BD9A0E82D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7222C1FD-911C-423D-89E1-6337B3ADA8D1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7222C1FD-911C-423D-89E1-6337B3ADA8D1}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"C:\Users\O���ek\AppData\Roaming\Mozilla\Firefox\Profiles\xckdnk84.default-1545239502686\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}" => not found
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331 => removed successfully
C:\Windows\system32\Tasks\{7A6B60DC-727E-441E-A432-8D3357118DB9} => moved successfully
"C:\Windows\system32\Tasks\{96A1093B-6B4A-488B-9B33-653BD9A0E82D}" => not found
"C:\Windows\system32\Tasks\{BDD65FD5-9FE4-470B-9F87-32C49EF8CCAD}" => not found
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
C:\Windows\system32\Tasks\{0D29414D-C650-4E48-A71F-2385CD7D5081} => moved successfully
C:\Windows\system32\Tasks\{E07198F9-D10E-4297-BC1B-C4BD667BA93B} => moved successfully
C:\Windows\system32\Tasks\{B82F74A0-6BF7-40C6-938C-B68715545F09} => moved successfully
C:\Windows\system32\Tasks\{23D73F70-966E-4707-A9DB-38B51B5C055B} => moved successfully
"C:\Users\O���ek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini" => not found
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 29703036 B
Java, Flash, Steam htmlcache => 291 B
Windows/system/drivers => 128885213 B
Edge => 0 B
Chrome => 181382 B
Firefox => 661890843 B
Opera => 12504678 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 0 B
systemprofile32 => 128 B
LocalService => 128 B
NetworkService => 128 B
Oťáček => 151995846 B

RecycleBin => 1483 B
EmptyTemp: => 947.5 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 20:43:02 ====

[Rudy]

Ano, to je ono. Bylo smazáno. Nastala nějaká změna?

[jarda.otta]

Ještě nevím jak se bude comp chovat. Budu testovat. Jen na to forum kam jsem se chtěl dostat, zadávám správné údaje které mě z toho fora včera poslali, tak se tam prostě nepřihlásim. Ani z jiného prohlížeče, ale z mobilu na ty stránky ano. Zkusím i jiný comp. Jinak mnohokrát sa snahu a pošlu příspěvek. Díky
P.S. Byl tam nějaký vir?

[Rudy]

V podstatě jen zbytečnosti. Můžete ještě zkusit sken AVPtool, zda ntam není něco skryto: http://www.viry.cz/forum/viewtopic.php?f=29&t=58179 . Utilitu stáhněte, spusťte, nechte pracovat a po skončení smažte vše, co nejde.

[jarda.otta]

V návodu píšete kliknout na ozubené kolečko v aplikaci a zatrhnout čtverečky, ale po spuštění tam žádné ozubené kolečko na nastavení není. Jen start scan.

[Rudy]

Ono se to liší od původního popisu. To je v pořádku, proto jsem napsal, co s tím máte dělat. Popis nové verze ještě nemáme. Vypadá to, že jste bez virů.

[jarda.otta]

Ještě jednou mnohokrát děkuji.

[Rudy]

Rádo se stalo!