Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

vypíná se mi pc

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
lukass9
Návštěvník
Návštěvník
Příspěvky: 18
Registrován: 21 bře 2017 09:43

vypíná se mi pc

#1 Příspěvek od lukass9 »

dobrý den mam problém s počítačem při hraní her i originálních dochází k zamrznutí počítače cca po 30 mi při pouštění videí a jiné práci seto nestává . neuměl by někdo pomoct předem děkuji

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: vypíná se mi pc

#2 Příspěvek od Rudy »

Zdravím!
Dejte logy FRST+Addition: https://forum.viry.cz/viewtopic.php?f=13&t=154679 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

lukass9
Návštěvník
Návštěvník
Příspěvky: 18
Registrován: 21 bře 2017 09:43

Re: vypíná se mi pc

#3 Příspěvek od lukass9 »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-05-2020
Ran by Lukas (06-05-2020 16:50:26)
Running from G:\
Windows 10 Home Version 1903 18362.720 (X64) (2019-11-07 18:00:28)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-676012942-2397387924-1880445482-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-676012942-2397387924-1880445482-503 - Limited - Disabled)
Guest (S-1-5-21-676012942-2397387924-1880445482-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-676012942-2397387924-1880445482-1003 - Limited - Enabled)
Lukas (S-1-5-21-676012942-2397387924-1880445482-1000 - Administrator - Enabled) => C:\Users\Lukas
WDAGUtilityAccount (S-1-5-21-676012942-2397387924-1880445482-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {4FC75CA5-1654-5411-7CFB-1893D506BCF4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

4game (HKLM-x32\...\4game2.0) (Version: 1.0.0.94 - Innova Co. SARL)
4K Video Downloader 4.5 (HKLM\...\{180B9AE1-F87B-4107-8C68-4265E927D6A8}) (Version: 4.5.0.2482 - Open Media LLC)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.006.20042 - Adobe Systems Incorporated)
Adobe Flash Player 31 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 31.0.0.108 - Adobe Systems Incorporated)
AIDA64 Extreme v5.00 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.00 - FinalWire Ltd.)
Aktualizace NVIDIA 28.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 28.0.0.0 - NVIDIA Corporation) Hidden
AlphaGo (HKLM-x32\...\{B20B3A3C-91E3-4326-8A0F-B3C012574F8C}) (Version: 1.1.2 - Default Company Name) <==== ATTENTION
AMD Catalyst Install Manager (HKLM\...\{E3C27552-F408-6465-3CA2-AA63826EC350}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMDProductVerification (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\4ecb547ba21a923a) (Version: 1.0.25.99 - AMDProductVerification)
amuleC (HKLM-x32\...\{0F7B5011-72EC-493D-A7BF-546591047E8E}) (Version: 1.0.2 - amuleC) <==== ATTENTION
amulesw (HKLM-x32\...\{3CC3DE19-E0B1-4D42-87AB-B5C61FE4BA58}) (Version: 1.0.6 - amules) <==== ATTENTION
Anno 1800 Open Beta (HKLM-x32\...\Uplay Install 13800) (Version: - Ubisoft)
Apple Mobile Device Support (HKLM\...\{B5A46811-3612-4DA5-8A5A-E6DED5D7C523}) (Version: 12.2.1.12 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Audiobook Downloader Pro 1.3 (HKLM-x32\...\Audiobook Downloader Pro) (Version: 1.3 - SuperUtils.com Software)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BikaQ Rss (HKLM-x32\...\{3678D164-84DB-4F73-AFD6-916342E10764}) (Version: 3.0.17 - BikaQ) <==== ATTENTION
Bing Bar (HKLM-x32\...\{16793295-2366-40F7-A045-A3E42A81365E}) (Version: 7.1.362.0 - Microsoft Corporation)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Booking (HKLM-x32\...\{13D4CD54-EA09-4FDB-B979-8B2BC0F020CA}_is1) (Version: 2.0.701 - Booking)
CamStudio 2.7.4 (HKLM\...\{04B83666-3A62-452B-85D3-70F8117F2329}_is1) (Version: 2.7.4 - CamStudio Open Source)
Car Mechanic Simulator 2018 (HKLM-x32\...\Car Mechanic Simulator 2018_is1) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.63 - Piriform)
Ceník stavebních prací 2.4 - aktualizace A (HKLM-x32\...\Ceník stavebních prací_is1) (Version: 2.4 - aktualizace A - Verlag Dashöfer s.r.o)
Cities In Motion (HKLM-x32\...\{15FA5ED6-2F98-4B5E-AF0B-18E5F4723FAD}_is1) (Version: - )
Cities XXL (HKLM-x32\...\Cities XXL_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter)
Cities: Skylines - ČEŠTINA (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Cities: Skylines - ČEŠTINA) (Version: - )
Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.62.0 - OEM) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.6.0.0283 - Disc Soft Ltd)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
DVD Shrink 3.2 (HKLM-x32\...\DVD Shrink_is1) (Version: - DVD Shrink)
Epic Games Launcher (HKLM-x32\...\{DCE27B29-200D-491A-BBC5-98ECEFEC0843}) (Version: 1.1.257.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
EVE Online (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\{5e6d5785-73e8-423f-a54c-b75cd3f5db13}) (Version: 1.0.0 - CCP)
Facebook Gameroom 1.20.6598.21896 (HKLM-x32\...\{C51FED78-02E5-4A80-B4D0-A4A474BB0CDD}) (Version: 1.20.6598.21896 - Facebook)
Far Cry 4 (HKLM-x32\...\Far Cry 4_is1) (Version: 1.4.0 - Ubisoft)
Farming Simulator 17 (HKLM-x32\...\{A82E512C-3BFB-43F8-B97F-8AA8F209B83B}) (Version: 1.2.0.0 - GIANTS Software) Hidden
Farming Simulator 17 (HKLM-x32\...\Farming Simulator 17 1.2.0.0) (Version: 1.2.0.0 - GIANTS Software)
Farming Simulator 19 (HKLM-x32\...\Farming Simulator 19_is1) (Version: - )
Firestorm Launcher version 1.3 (HKLM-x32\...\{008D5963-9A73-4472-8C16-A5BF04491B9D}_is1) (Version: 1.3 - Firestorm)
Flash Memory Toolkit trial 2.01 (HKLM-x32\...\Flash Memory Toolkit trial_is1) (Version: - EFD Software)
FORM studio (HKLM-x32\...\FSCZ_is1) (Version: - KASTNER software s.r.o.)
GitHub Desktop (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\GitHubDesktop) (Version: 1.0.11 - GitHub, Inc.)
Google Drive (HKLM-x32\...\{A1238426-ECDF-4639-BE2F-8D12A97AE23C}) (Version: 2.34.5075.1619 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 81.0.4044.129 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Hearts of Iron IV (HKLM-x32\...\Hearts of Iron IV_is1) (Version: - )
HiSuite (HKLM-x32\...\Hi Suite) (Version: 9.0.3.300 - )
Charity Engine (HKLM-x32\...\{7309D717-F38D-436D-9537-066AA0AC7639}) (Version: 7.0.80 - Charity Engine)
iCloud (HKLM\...\{DA6D808E-3629-4933-8FB3-583F9BCB0DEF}) (Version: 7.12.0.14 - Apple Inc.)
iTunes (HKLM\...\{7B81A249-0187-436C-9738-AF82DAA54822}) (Version: 12.9.5.7 - Apple Inc.)
Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
Kingdom Come Deliverance (HKLM-x32\...\Kingdom Come Deliverance_is1) (Version: - )
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LineageII EU (HKLM-x32\...\4game_lineage2eu) (Version: - Innova Systems)
Mafia I - The City of Lost Heaven verze v1.3 (HKLM-x32\...\{360EBFE4-4591-4AE6-8D97-A58A43C15869}_is1) (Version: v1.3 - Danik1B9)
Malwarebytes Anti-Malware verze 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Mashinky CZ v.21.02.2019 (HKLM-x32\...\Mashinky CZ v.21.02.2019) (Version: v.21.02.2019 - Libbi)
Math Problem Solver (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Math Problem Solver) (Version: - ) <==== ATTENTION
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.92 - McAfee, LLC.)
MEmu (HKLM-x32\...\MEmu) (Version: 7.1.1.0 - Microvirt Software Technology Co. Ltd.)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{929CE49F-1CA7-4CF3-A9A1-6D757443C63F}) (Version: 1.2.0241 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.7.133.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\OneDriveSetup.exe) (Version: 19.232.1124.0012 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 72.0.2 (x64 en-US) (HKLM\...\Mozilla Firefox 72.0.2 (x64 en-US)) (Version: 72.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 70.0 - Mozilla)
Mp3 Editor for Free v5.2.7 Build 79 (HKLM-x32\...\Mp3 Editor for Free_is1) (Version: 5.2.7 Build 79 - Mp3EditorforFree Ltd.)
NVIDIA GeForce Experience 3.9.0.97 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.9.0.97 - NVIDIA Corporation)
NVIDIA GeForce NOW 2.0.16.148 (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GeforceNOW) (Version: 2.0.16.148 - NVIDIA Corporation)
NVIDIA Install Application (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer) (Version: 2.1002.338.0 - NVIDIA Corporation) Hidden
NVIDIA Ovladač HD audia 1.3.38.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.16 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 432.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 432.00 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{D9559CE2-9C58-F414-43EA-F908FEA13BB8}) (Version: 1.00.0000 - Název společnosti:)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Opera Stable 55.0.2994.61 (HKLM-x32\...\Opera 55.0.2994.61) (Version: 55.0.2994.61 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.5.59.36848 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 432.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 432.00 - NVIDIA Corporation) Hidden
Paradox Launcher v2 (HKLM\...\{A8D4AE16-519B-409D-B5B4-2647C06805AD}) (Version: 2.0.3.0 - Paradox Interactive)
PDF To Excel Converter V3.0 (HKLM-x32\...\PDF To Excel Converter_is1) (Version: - hxxp://www.PDFExcelConverter.com)
Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.) Hidden
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{C1BCFECF-6EC2-4750-9072-5E2489423F8F}) (Version: 7.5 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{B202C7F5-7DE3-4FBF-B259-E70E625F56FC}) (Version: 7.5 - Apple Inc.)
Qualcomm Atheros Bandwidth Control Filter Driver (HKLM\...\{C80C9B28-CF99-431C-88C8-8B1F9B6A182F}) (Version: 1.1.39.1040 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer E220x Drivers (HKLM\...\{DD2A85B3-64C5-4263-A7AF-4F61FA5F369A}) (Version: 1.1.39.1040 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer Network Manager Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.39.1040 - Qualcomm Atheros)
Qualcomm Atheros Network Manager (HKLM\...\{7364C716-1212-4EAE-B0C9-A31D1E797BF8}) (Version: 1.1.39.1040 - Qualcomm Atheros) Hidden
Railroad Tycoon II Platinum (HKLM-x32\...\1445250876_is1) (Version: 2.0.0.5 - GOG.com)
Railway Empire (HKLM-x32\...\1556481953_is1) (Version: 1.1.1.17568 - GOG.com)
RAUCAD-TechCON (7.2) (HKLM-x32\...\{889D28AD-3F0C-48CD-B9BA-95B89A848DD6}) (Version: 7.00.0715 - Atcon systems s.r.o.)
Realpolitiks version 1.3.4 (HKLM-x32\...\{728B7AF5-D053-4F1A-9C6A-019B1376D99C}_is1) (Version: 1.3.4 - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7780 - Realtek Semiconductor Corp.)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 1.05.45.00(23.5.2014) - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Samsung Universal Scan Driver (HKLM-x32\...\Samsung Universal Scan Driver) (Version: 1.2.19.0 - Samsung Electronics Co., Ltd.)
Search App by Ask (HKLM-x32\...\{4F524A2D-5350-4500-76A7-A758B70C2E03}) (Version: 12.46.3.4268 - APN, LLC) <==== ATTENTION
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Shockwave (HKLM-x32\...\Shockwave) (Version: - )
Sid Meier's Civilization: Beyond Earth Rising Tide Addon (HKLM\...\U2lkTWVpZXJzQ2l2aWxpemF0aW9uQmV5b25kRWFydGg=_is1) (Version: 1 - )
SketchUp 2016 (HKLM\...\{D87EE6DC-32BA-4219-AC75-0A6FD54ED058}) (Version: 16.0.19912 - Trimble Navigation Limited)
Skype HoloLens Add-In (HKLM-x32\...\{38A3693F-1954-450F-8E42-C0E6F9C1AE94}) (Version: 1.0.0.0 - Microsoft Corporation)
Skype Web Plugin (HKLM-x32\...\{CD62BCB9-02D2-443F-AC7A-443377DA5B38}) (Version: 7.31.0.56 - Skype Technologies S.A.)
Skype™ 7.38 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.38.101 - Skype Technologies S.A.)
Sony PC Companion (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.297 - Sony)
Sound Blaster Cinema 2 (HKLM-x32\...\{B4F6F8CC-2C61-42CC-A4CC-76621F25BDC7}) (Version: 1.00.06 - Creative Technology Limited)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stellaris (HKLM-x32\...\Stellaris_is1) (Version: - )
Střechy a stěny TONDACH 2018 (HKLM-x32\...\Střechy a stěny TONDACH 2018_is1) (Version: - )
Sudden Strike II (HKLM-x32\...\Sudden Strike II) (Version: - )
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.251385 - TeamViewer)
Terela (HKLM-x32\...\{E2F7C535-0785-4C2D-B56F-016BFD02B010}) (Version: 1.1.6 - Terela)
The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 2.6.3.0 - Zenimax Online Studios)
The Elder Scrolls V Skyrim LE (HKLM-x32\...\The Elder Scrolls V Skyrim LE_is1) (Version: - )
TrafficGiant-Gold Edition (HKLM-x32\...\TrafficGiant-Gold Edition) (Version: - )
Transport Fever (HKLM-x32\...\1720767912_is1) (Version: 2.0.0.2 - GOG.com)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 85.1 - Ubisoft)
USB PC Camera (ZS211) (HKLM-x32\...\{44D02D8B-FFB3-4245-8D26-68D10B4C4023}) (Version: 1.00.000 - )
VIA Platforma Ovladače zařízení (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)
WhatsApp (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\WhatsApp) (Version: 0.4.2081 - WhatsApp)
Win10 Spy Disabler v1.4 (HKLM\...\Win10 Spy Disabler_is1) (Version: 1.4.0.0 - site2unblock.com)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{3577E42B-3347-4EB8-BFDA-D36E8ED3C519}) (Version: 1.0.24.0 - Microsoft Corporation)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
WinRAR 5.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
WinSetupFromUSB (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\WinSetupFromUSB) (Version: - )
Wondershare MobileGo(Version 8.5.0) (HKLM-x32\...\{1E04C795-7359-4E05-8A0E-5644F777AA09}_is1) (Version: 8.5.0 - Wondershare)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
youndoo - Uninstall (HKLM-x32\...\{2AEE6375-5F4E-4EF3-82AE-68CCB56539EF}) (Version: - ) <==== ATTENTION

Packages:
=========
Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_460.16.123.0_x64__8xx8rvfyw5nnt [2020-04-30] (Facebook Inc)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-02] (Microsoft Studios) [MS Ad]
MSN Money -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2017-09-06] (Samsung Electronics Co. Ltd.)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-09] (Twitter Inc.)
WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x64__8wekyb3d8bbwe [2016-05-19] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\ChromeHTML: -> <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-676012942-2397387924-1880445482-1000_Classes\CLSID\{E5A7A7B5-9D06-4DBE-BAC0-04B69FF070B5}\InprocServer32 -> C:\Users\Lukas\AppData\Local\SkypePlugin\7.31.0.56\GatewayActiveX-x64.dll (Microsoft Corporation -> Skype Technologies S.A.)
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6671064 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks: No Name - {D7743BB4-F774-11E6-8881-64006A5CFC23} - -> No File
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-03-21] (Google Inc -> Google)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2019-05-08] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-03-21] (Google Inc -> Google)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\atiacm64.dll [2015-06-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-10-03] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2011-02-18] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2011-02-18] (Electronic Arts -> On2.com)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\Lukas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files (x86)\Firefox\Firefox.exe (Mozilla Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Firefox\Firefox.exe (Mozilla Corporation)

==================== Loaded Modules (Whitelisted) =============

2015-02-07 19:44 - 2014-01-02 11:19 - 000040960 ____N ( ( ) [File not signed]) [File is in use ] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\Interop.CTSndCr.dll
2015-02-07 19:44 - 2014-02-21 12:03 - 000991232 ____N ( (Creative Technology Ltd) [File not signed]) [File is in use ] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\en-US\SBCinema2.resources.dll
2017-12-18 19:39 - 2015-02-27 11:35 - 000489984 _____ ( (Newtonsoft) [File not signed]) [File is in use ] C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\Newtonsoft.Json.dll
2017-12-18 19:39 - 2017-03-20 17:13 - 000087552 _____ ( (Wondershare) [File not signed]) [File is in use ] C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppCollect.dll
2017-12-18 19:39 - 2017-03-20 17:13 - 000197632 _____ ( (Wondershare) [File not signed]) [File is in use ] C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppCommon.dll
2011-11-13 15:30 - 2011-11-13 15:30 - 000676864 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2012-05-04 16:41 - 2012-05-04 16:41 - 000211968 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2011-11-13 15:31 - 2011-11-13 15:31 - 003643392 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2020-02-20 22:23 - 2020-02-20 22:23 - 098275328 _____ () [File not signed] G:\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libcef.dll
2020-02-20 22:23 - 2020-02-20 22:23 - 000092672 _____ () [File not signed] G:\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libEGL.dll
2020-02-20 22:23 - 2020-02-20 22:23 - 003922432 _____ () [File not signed] G:\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libGLESv2.dll
2015-02-07 19:44 - 2012-04-27 11:26 - 000529920 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\CTAudEp.dll
2015-02-07 19:44 - 2011-09-22 20:04 - 000238080 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\CTLoadRs.dll
2015-02-07 19:44 - 2013-08-22 11:36 - 000249344 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\HKDetect.dll
2020-02-20 22:23 - 2020-02-20 22:23 - 000547840 _____ (The Chromium Authors) [File not signed] G:\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\chrome_elf.dll
2019-12-17 19:25 - 2020-01-14 19:04 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2017-01-11 20:42 - 2020-01-14 19:04 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2019-12-17 19:25 - 2020-01-14 19:04 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2020-01-20 20:05 - 2020-01-14 19:04 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2020-01-20 20:05 - 2020-01-14 19:04 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2020-01-20 20:05 - 2020-01-14 19:04 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2020-01-20 20:05 - 2020-01-14 19:04 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2020-01-20 20:05 - 2020-01-14 19:04 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2018-12-18 22:17 - 000000864 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 validation.sls.microsoft.com

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\AMD APP\bin\x86_64;C:\Program Files (x86)\AMD APP\bin\x86;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Skype\Phone\;C:\Program Files (x86)\AMD\ATI.ACE\Core-Static;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.

Network Binding:
=============
Připojení k místní síti: Qualcomm Atheros Bandwidth Control -> BF_NdisLwf (enabled)
Připojení k místní síti: WinpkFilter LightWeight Filter -> nt_sbnetsys (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\StartupFolder: => "MobileGo Service.lnk"
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\StartupApproved\StartupFolder: => "Facebook Gameroom.lnk"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{E74CA79D-6821-4895-A0DB-03B6E2B917D6}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [UDP Query User{D2AA78C7-80AE-426B-BE14-937BCA673CF0}C:\program files (x86)\firefox\firefox.exe] => (Block) C:\program files (x86)\firefox\firefox.exe (Mozilla Corporation) [File not signed]
FirewallRules: [TCP Query User{C47647E8-5D84-46B8-A307-442BFC404B42}C:\program files (x86)\firefox\firefox.exe] => (Block) C:\program files (x86)\firefox\firefox.exe (Mozilla Corporation) [File not signed]
FirewallRules: [UDP Query User{26AAA118-D790-4881-96AD-CCF81F2CB7AF}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Block) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [TCP Query User{5212072F-78EE-4DC8-A70F-691ADC90A335}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Block) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [{824DBECC-930A-4B75-9973-9EA55BC1C311}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{58837D82-61CD-4248-A985-2A5C7642B49E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{87FB5B77-2A10-42C5-A922-109BBE49DB88}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{3521D0DB-E53D-4002-8E5B-785432CA59AD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{36DCBBDD-26D1-4F18-A0F7-EDBF8144C18E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{FBBF796E-2987-457E-BDAD-8097B223710A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4F9F4F93-FA9F-4824-91DA-A39D562245B3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{BE391B67-CE55-4CCA-A199-C043B8EB741F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{018D2ADC-3AEE-4C6C-BFC2-5033D65E5EA9}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{148806E8-47F6-437D-9899-75DA7E5F20E7}] => (Allow) C:\Program Files (x86)\Opera\55.0.2994.61\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{ABA3BAC5-8750-4860-B256-3CED950DE7C1}] => (Allow) C:\Program Files (x86)\MIO\loader\kingstonxsv300s37a240g_50026b774b03171a.dat () [File not signed]
FirewallRules: [{DED48896-3952-4AF6-A273-5391CE980C48}] => (Allow) C:\Program Files (x86)\MIO\loader\kingstonxsv300s37a240g_50026b774b03171a.dat () [File not signed]
FirewallRules: [{990E1485-6B97-485F-B0B9-911982F2D86B}] => (Allow) C:\Program Files (x86)\Opera\55.0.2994.44\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{2523E2E9-1A5A-4CEB-A014-990EB35E177B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{CADB1CC0-D762-4C5F-9CB8-B2F5FBF14B43}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{533919E2-AB5A-4F7B-8798-7EBFCEC66EEF}C:\program files (x86)\wondershare\mobilego\mobilego.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilego.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [TCP Query User{26A307CE-F98D-4A1A-B5C3-594AEB4CCA12}C:\program files (x86)\wondershare\mobilego\mobilego.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilego.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [UDP Query User{B8283334-7E0D-46D0-B95D-959B0ED7FDC4}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [TCP Query User{C127EBBE-1051-4C68-9B52-51D2C36700BD}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [UDP Query User{180C8FD2-D3D5-4633-850D-3194AB6945DC}H:\program files\farming simulator 17\dedicatedserver.exe] => (Allow) H:\program files\farming simulator 17\dedicatedserver.exe No File
FirewallRules: [TCP Query User{2454C648-F7F9-42F1-81A4-769676D713AF}H:\program files\farming simulator 17\dedicatedserver.exe] => (Allow) H:\program files\farming simulator 17\dedicatedserver.exe No File
FirewallRules: [{AE180C12-5F81-448F-8C53-25FA05A978DB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D52DA489-F743-48FF-8257-225F9D34343C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D24236C4-B694-401B-9235-95C112EBE35D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B76CA01C-67C2-438D-938A-572919039813}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{23969D2D-5CCA-4B42-9221-6405D8EB6AAB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{437741F8-DC38-4756-8486-49CA834A4A58}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{30DF629E-E1AC-4615-9101-FD1B72BEFE00}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{D7863895-4454-4622-BC78-FD9BD3AAA12B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{7F552DA7-05F5-4655-8F66-A507358920B9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{E0C73EC5-E891-4622-965D-62EDA31DD5AE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Star Trek Online\Star Trek Online.exe (Cryptic Studios Inc. -> )
FirewallRules: [{81FA5270-87DE-49B8-84E0-1ACED452FBD6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Star Trek Online\Star Trek Online.exe (Cryptic Studios Inc. -> )
FirewallRules: [{E4543782-368D-4C24-8730-C380C2169CDE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{873DC531-8A81-4912-8608-E3F08B3F9B9D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{29871937-8A62-42BD-97D0-8B8F90B1BF60}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{82631BE1-F8E1-4898-8D54-691166802885}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{84A008EB-78B4-488F-A5AF-EDED4211562C}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{5E3CA82C-0DBF-4B8E-9CED-869A62BB3CBB}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{72DCC175-2194-4250-BAFD-7261F55BD575}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{09611358-6852-4166-9F26-F5942B9C7100}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{4BCC85D2-A491-4553-A3B4-BB700FBBF452}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{35E0C492-E1D0-42CF-82F4-B7DB2AE00F3A}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{D37D00D8-6E22-4E5E-87F6-90FB8C2C1A02}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe (Samsung Electronics Co., Ltd.) [File not signed]
FirewallRules: [{98B322AA-6545-448D-AB25-386816CAC5F9}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe (Samsung Electronics Co., Ltd.) [File not signed]
FirewallRules: [{C5D9088C-95F6-40F4-9C8A-A2BBC9C07CBE}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{C16EE9D5-7673-4D13-8A79-C195DA888425}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{62ED1F89-78BE-423A-BCF0-FF308DEF6DCA}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\ScanProcess.exe (Samsung Electronics CO., LTD. -> ScanProcess)
FirewallRules: [{BFEB002B-F6D2-425E-8907-CB854F6B6657}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\ScanProcess.exe (Samsung Electronics CO., LTD. -> ScanProcess)
FirewallRules: [{72B6BCD1-0D46-4AA1-BFDE-3EC7D7C270BE}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\Scan2PCNotify.exe (Samsung Electronics CO., LTD. -> Scan2PCNotify)
FirewallRules: [{ED3AD914-89AF-4C1C-AB7C-FA962EDBBB67}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\Scan2PCNotify.exe (Samsung Electronics CO., LTD. -> Scan2PCNotify)
FirewallRules: [{F72EBBB8-6BF7-467B-8BB1-4570B7B545BA}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{71ED3801-6FB1-4256-AA70-33FD6B92224F}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{C271645F-7A20-46F0-8E1E-144A4DC0D3F3}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ICCUpdater.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{CAED66B1-28EE-4EC9-9265-55B844F9FBC8}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ICCUpdater.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{9047606F-C417-41AD-BB3F-81EF7E3B47B0}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{C2131B8B-B1CB-433D-97AA-2F76325FACFE}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{FB68EFF4-B072-43E3-BADD-8DF55D32809C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cryptic Studios\Neverwinter.exe (Cryptic Studios Inc. -> )
FirewallRules: [{2651B740-9EAF-4566-B748-147B780B3188}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cryptic Studios\Neverwinter.exe (Cryptic Studios Inc. -> )
FirewallRules: [{04EC1888-4546-4999-B251-571845B7116D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Might & Magic - Duel of Champions\Game.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{E9B7C25D-730E-4FE8-AB5A-623EF5ABD91B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Might & Magic - Duel of Champions\Game.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{A28056B1-E948-4F3F-84D8-6529B09B4987}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{3BEF6539-7729-4A96-A48D-2D74F93A6142}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{208103E8-707C-4A3C-A135-668B704FDFCE}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{958EF457-2D5E-4FCE-9D49-96479D289517}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{89281832-930A-42B9-BF8D-99BCA790AE49}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C4E2F052-AC12-4D2D-B390-0F81C790FEBA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{AE17E1C3-96A7-486A-9ACF-DE1BB8BF9AAA}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [UDP Query User{07D65D27-6C38-425C-A61C-631B7250E22C}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [TCP Query User{5CE1E5F5-A3A0-4F1D-B57A-57DD8C2F0CA5}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe No File
FirewallRules: [UDP Query User{66EDF803-6279-4014-B0ED-A17592AA88E0}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe No File
FirewallRules: [TCP Query User{6A2F8193-C0B5-4883-A50F-97A3FB023CFE}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe No File
FirewallRules: [UDP Query User{67E833A5-ED03-4C72-B458-1EB7AE5BF74B}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe No File
FirewallRules: [TCP Query User{912E7446-9068-49F4-9A6B-7B9165A69EA8}F:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Block) F:\program files (x86)\diablo iii\x64\diablo iii64.exe No File
FirewallRules: [UDP Query User{9BC97502-B126-4A7E-861A-72AF65D380A8}F:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Block) F:\program files (x86)\diablo iii\x64\diablo iii64.exe No File
FirewallRules: [{FFE8D1A7-30C9-4559-B973-C78137D2CA6B}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{94EA2475-27CF-4B88-80D3-8741570D47B9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\For Honor Open Beta\forhonor.exe (Blue Byte GmbH -> Ubisoft)
FirewallRules: [{26BE49B9-7A60-4054-9EF1-A6D3327EF645}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\For Honor Open Beta\forhonor.exe (Blue Byte GmbH -> Ubisoft)
FirewallRules: [TCP Query User{D7A3574E-9AA7-4D54-82F2-FE458591B551}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [UDP Query User{D35D7E93-6FA3-4B03-9A87-83A97389E84C}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [TCP Query User{874E3214-D56E-463B-8840-3B0C257EEE87}F:\filmy\search_tool_win_xp\searchtool.exe] => (Allow) F:\filmy\search_tool_win_xp\searchtool.exe No File
FirewallRules: [UDP Query User{D0F79A5B-0D88-4073-BFB1-C4220B5549CE}F:\filmy\search_tool_win_xp\searchtool.exe] => (Allow) F:\filmy\search_tool_win_xp\searchtool.exe No File
FirewallRules: [TCP Query User{0F2FD01A-1A4B-4FBE-ACBC-B84F9A3DC462}C:\users\lukas\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\lukas\appdata\local\skypeplugin\pluginhost.exe (Microsoft Corporation -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{4129F8ED-0F5C-4199-937A-4E4C2804F230}C:\users\lukas\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\lukas\appdata\local\skypeplugin\pluginhost.exe (Microsoft Corporation -> Skype Technologies S.A.)
FirewallRules: [{06AAB67F-D7A5-42D7-857E-4CA5F8B70B29}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{505521F3-1C64-430C-B5BB-51A319E628FE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{68AEACA6-E17D-43DA-A82E-86BCE6DFE2DF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{254ABB7F-4B65-4FF3-833C-6CCD9B21161D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{96386857-DD26-4E60-A873-DBD070CC7483}F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe] => (Block) F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe No File
FirewallRules: [UDP Query User{1F44A342-9A6B-4023-ADA8-494D9D4765E7}F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe] => (Block) F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe No File
FirewallRules: [TCP Query User{7ECEE922-8938-4821-BD5B-D9D82254E135}F:\hry\far cry 4\bin\farcry4.exe] => (Allow) F:\hry\far cry 4\bin\farcry4.exe No File
FirewallRules: [UDP Query User{0E663628-B912-4F04-AF44-0E8053FE27A4}F:\hry\far cry 4\bin\farcry4.exe] => (Allow) F:\hry\far cry 4\bin\farcry4.exe No File
FirewallRules: [TCP Query User{B74490D4-05D2-4AB0-BD77-2A277BA7545F}C:\program files\litecoin\litecoin-qt.exe] => (Allow) C:\program files\litecoin\litecoin-qt.exe No File
FirewallRules: [UDP Query User{143DC50B-219C-4114-8E8F-E8BC0D6B35DE}C:\program files\litecoin\litecoin-qt.exe] => (Allow) C:\program files\litecoin\litecoin-qt.exe No File
FirewallRules: [TCP Query User{15440FDB-4B6F-48A1-824C-7A84E96D09B6}C:\program files\bitcoin\bitcoin-qt.exe] => (Allow) C:\program files\bitcoin\bitcoin-qt.exe No File
FirewallRules: [UDP Query User{4E691515-6FC1-43C8-81C6-DBB1B7F8F75B}C:\program files\bitcoin\bitcoin-qt.exe] => (Allow) C:\program files\bitcoin\bitcoin-qt.exe No File
FirewallRules: [TCP Query User{4C07B869-37F5-4F44-907E-BC68ED984A26}H:\gog games\railway empire\railwayempire.exe] => (Allow) H:\gog games\railway empire\railwayempire.exe No File
FirewallRules: [UDP Query User{5673BEC2-A4F2-4F0A-AC2D-707C1F07870C}H:\gog games\railway empire\railwayempire.exe] => (Allow) H:\gog games\railway empire\railwayempire.exe No File
FirewallRules: [{576DE4BB-9B0D-46E5-B361-162018E2F13B}] => (Allow) H:\Program Files (x86)\SteamLibrary\steamapps\common\star conflict\game.exe No File
FirewallRules: [{3E6BAF4B-19DA-4C54-833F-FD154DE90925}] => (Allow) H:\Program Files (x86)\SteamLibrary\steamapps\common\star conflict\game.exe No File
FirewallRules: [TCP Query User{5F82500E-6BD6-43D4-B594-9119D5ADEB5D}H:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) H:\games\kingdom come deliverance\bin\win64\kingdomcome.exe No File
FirewallRules: [UDP Query User{E8261C4A-5748-4FAB-BFB7-57C014C2F580}H:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) H:\games\kingdom come deliverance\bin\win64\kingdomcome.exe No File
FirewallRules: [TCP Query User{E5CD9A1D-24D7-4441-B040-27E43543696C}G:\games\mashinky cz\mashinky.exe] => (Allow) G:\games\mashinky cz\mashinky.exe () [File not signed]
FirewallRules: [UDP Query User{84A62654-AFF3-45C8-9D70-C7B365005D71}G:\games\mashinky cz\mashinky.exe] => (Allow) G:\games\mashinky cz\mashinky.exe () [File not signed]
FirewallRules: [TCP Query User{6D107467-B449-45B3-AD0A-7B0B9A02B35B}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\x64\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\x64\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [UDP Query User{6B19A30C-91C7-4D6B-8D56-E5AD2E5172B4}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\x64\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\x64\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [TCP Query User{AB3BBCB7-7124-40F2-BE36-1C87B476BE4F}C:\users\lukas\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\lukas\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{36E34ABA-3C61-45E6-9265-BBA64D4F6C2E}C:\users\lukas\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\lukas\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{61B0CD2F-CAC9-4E10-999A-A91DD50F5552}] => (Allow) G:\SteamLibrary\steamapps\common\Endzones - A World Apart\Endzone.exe () [File not signed]
FirewallRules: [{5F18D795-8459-4DB4-9F44-E13CB2AED92A}] => (Allow) G:\SteamLibrary\steamapps\common\Endzones - A World Apart\Endzone.exe () [File not signed]
FirewallRules: [TCP Query User{4E1C0031-3ED0-4B4B-B4D3-6640B82F56E3}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [UDP Query User{897C1B2F-FB44-4DBF-81FB-07E72328BA3E}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{7922E90E-57C5-4C9D-A673-28D1EC6DEEB0}] => (Allow) G:\SteamLibrary\steamapps\common\Stellaris\dowser.exe (Paradox Interactive Ab (Publ) -> )
FirewallRules: [{1B99443E-952A-4F8E-94D6-9BDC34CC5422}] => (Allow) G:\SteamLibrary\steamapps\common\Stellaris\dowser.exe (Paradox Interactive Ab (Publ) -> )
FirewallRules: [{8A8A65CC-B3E4-4A4E-8482-40D0F169D6CC}] => (Allow) G:\SteamLibrary\steamapps\common\Zenimax Online\zosSteamStarter.exe (Zenimax Media Inc. -> Zenimax Online Studios)
FirewallRules: [{57A030C0-807D-4DF6-AE78-B4832846CAB4}] => (Allow) G:\SteamLibrary\steamapps\common\Zenimax Online\zosSteamStarter.exe (Zenimax Media Inc. -> Zenimax Online Studios)
FirewallRules: [{C8C78BE7-4AF9-4931-B9C6-56963EB5E415}] => (Allow) G:\SteamLibrary\steamapps\common\Supremacy 1914\Supremacy 1914.exe (Bytro Labs GmbH) [File not signed]
FirewallRules: [{8BFB9BE4-79D9-433D-87D7-4FEF9442B445}] => (Allow) G:\SteamLibrary\steamapps\common\Supremacy 1914\Supremacy 1914.exe (Bytro Labs GmbH) [File not signed]
FirewallRules: [{7F5E1994-A72A-4552-97D4-8D816B0C88C4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{0BACCDA3-6AEB-43C4-A2BB-CB4262651B24}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{1C3416AD-E018-4E73-A3DE-6FBED960A18F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{70BE25F1-85CE-40E6-87F1-DE30A87EBEB3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{2A12E2E9-E64A-4EFD-9232-3FEC2F064C3B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

02-05-2020 12:33:05 Windows Update

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (05/06/2020 04:20:14 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 16 E.D.5.B.7.F.1.6.6.9.8.F.9.6.D.2.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR Lukas-PC.local.

Error: (05/06/2020 04:20:13 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from FE80:0000:0000:0000:2D69:F896:61F7:B5DE:5353 18 E.D.5.B.7.F.1.6.6.9.8.F.9.6.D.2.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR Lukas-PC-2.local.

Error: (05/02/2020 07:44:32 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (10688,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (05/02/2020 12:37:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: wuauclt.exe, verze: 10.0.18362.628, časové razítko: 0xb8640219
Název chybujícího modulu: ntdll.dll, verze: 10.0.18362.719, časové razítko: 0x64d10ee0
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000072a6
ID chybujícího procesu: 0x3244
Čas spuštění chybující aplikace: 0x01d6206d18714a75
Cesta k chybující aplikaci: C:\WINDOWS\system32\wuauclt.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 728deb6f-4c9d-4110-8554-79d44e74fddc
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (05/02/2020 12:36:21 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (16852,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (05/02/2020 12:26:32 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8356,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (05/02/2020 11:29:56 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (14908,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (05/02/2020 10:35:10 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (15088,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).


System errors:
=============
Error: (05/06/2020 04:48:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba %1!s! Update (avg) neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (05/06/2020 04:46:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba vToolbarUpdater40.3.8 neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (05/06/2020 04:46:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba WtuSystemSupport neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (05/06/2020 04:46:38 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (16:40:00, ‎06.‎05.‎2020) bylo neočekávané.

Error: (05/06/2020 04:40:03 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba vToolbarUpdater40.3.8 neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (05/06/2020 04:40:00 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba WtuSystemSupport neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (05/06/2020 04:40:00 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (4:46:59, ‎03.‎05.‎2020) bylo neočekávané.

Error: (05/02/2020 12:37:12 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x800f0831): 2020-04 Kumulativní aktualizace pro Windows 10 Version 1903 pro systémy typu x64 (KB4549951).


Windows Defender:
===================================
Date: 2020-04-30 16:59:31.546
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {6A344548-27A7-4DE2-A240-27295ACCACDE}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-04-07 17:09:33.987
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {3865D8A0-24BF-433D-AC2C-54A73F247589}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-04-07 15:10:20.443
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {6B4E1CF6-319D-4A61-9FB2-BA85E1220DC8}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-04-07 13:22:45.983
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {304947CD-CD01-4BF4-8DA8-F8913B6EB0E8}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-03-25 18:13:11.689
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Misleading:Win32/Lodi
ID: 240849
Závažnost: Vysoké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Program Files\Easeware\DriverNavigator\DriverNavigator.exe; file:_C:\Users\Public\Desktop\DriverNavigator.lnk; regkey:_HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\DriverNavigator_is1; uninstall:_HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\DriverNavigator_is1
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: Lukas-PC\Lukas
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.313.53.0, AS: 1.313.53.0, NIS: 1.313.53.0
Verze modulu: AM: 1.1.16900.4, NIS: 1.1.16900.4

Date: 2020-05-06 16:34:38.845
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.315.83.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17000.7
Kód chyby: 0x8050a003
Popis chyby: Balíček neobsahuje aktuální soubor definic pro tento program. Další informace naleznete v nápovědě a podpoře.

Date: 2020-05-06 16:34:38.845
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.315.83.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17000.7
Kód chyby: 0x8050a003
Popis chyby: Balíček neobsahuje aktuální soubor definic pro tento program. Další informace naleznete v nápovědě a podpoře.

Date: 2020-05-06 16:34:38.844
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.315.83.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17000.7
Kód chyby: 0x8050a003
Popis chyby: Balíček neobsahuje aktuální soubor definic pro tento program. Další informace naleznete v nápovědě a podpoře.

Date: 2020-05-06 16:32:43.362
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.313.2769.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17000.7
Kód chyby: 0x80240016
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2020-04-07 19:20:03.032
Description:
Funkce Ochrana v reálném čase u prohledávání Antivirová ochrana v programu Windows Defender zjistila chybu a došlo k jejímu selhání.
Funkce: Při přístupu
Kód chyby: 0x80004005
Popis chyby: Nespecifikovaná chyba
Důvod: Ovladač filtru přeskočil prohledávání položek a je v režimu průchodu. Příčinou může být nízký stav prostředků.

CodeIntegrity:
===================================

Date: 2020-03-25 18:01:31.675
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-25 18:01:31.257
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-25 18:01:31.183
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-25 17:58:50.283
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-25 17:58:50.024
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-25 17:58:49.918
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-25 17:58:49.827
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-25 17:58:49.672
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. V22.2 12/16/2014
Motherboard: MSI 970 GAMING (MS-7693)
Processor: AMD FX(tm)-6300 Six-Core Processor
Percentage of memory in use: 48%
Total physical RAM: 8140.3 MB
Available physical RAM: 4193.89 MB
Total Virtual: 16332.3 MB
Available Virtual: 11441.17 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:223.03 GB) (Free:26.81 GB) NTFS
Drive g: (Nový svazek) (Fixed) (Total:1863.01 GB) (Free:744.7 GB) NTFS

\\?\Volume{abf0bd6b-aeee-11e4-85dd-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.05 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 2FCFA4CA)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=223 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 7F220C19)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

lukass9
Návštěvník
Návštěvník
Příspěvky: 18
Registrován: 21 bře 2017 09:43

Re: vypíná se mi pc

#4 Příspěvek od lukass9 »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03-05-2020
Ran by Lukas (administrator) on LUKAS-PC (MSI MS-7693) (06-05-2020 16:48:47)
Running from G:\
Loaded Profiles: Lukas (Available Profiles: Lukas)
Platform: Windows 10 Home Version 1903 18362.720 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Epic Games Inc. -> Epic Games, Inc.) G:\Epic Games\Launcher\Engine\Binaries\Win64\UnrealCEFSubProcess.exe
(Epic Games Inc. -> Epic Games, Inc.) G:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Gaijin Network LTD -> Gaijin Entertainment) C:\Users\Lukas\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe
(Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\browserhost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation -> Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.EXE
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12004.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\usocoreworker.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <6>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NZXT, Inc. -> ) C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\rust-cam\dist\native\target\release\service.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Qualcomm Atheros) [File not signed] C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
(Shanghai Microvirt Software Technology Co., Ltd. -> ) C:\Program Files (x86)\Microvirt\MEmu\MemuService.exe
(TeamViewer Germany GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer Germany GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-05-07] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [Sound Blaster Cinema 2] => C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe [1440768 2014-02-24] (Creative Technology Ltd) [File not signed]
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKLM\...\Policies\Explorer: [NoInstrumentation] 1
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-05-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [EpicGamesLauncher] => G:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [31756176 2020-04-30] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [Gaijin.Net Updater] => C:\Users\Lukas\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2361600 2019-12-02] (Gaijin Network LTD -> Gaijin Entertainment)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [NZXT.CAM] => C:\Program Files\NZXT CAM\NZXT CAM.exe [97671824 2020-04-01] (NZXT, Inc. -> NZXT, Inc.)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Policies\system: [Shell] <==== ATTENTION
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\MountPoints2: {d62cd0d9-d38d-11e7-a610-d8cb8a13fec7} - "F:\setup.exe"
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\MountPoints2: {def9fec5-a11b-11e7-a5f6-d8cb8a13fec7} - "E:\setup.exe"
HKLM\...\Providers\l9olaieg: C:\Program Files (x86)\Khagetheputain Renew\local64spl.dll <==== ATTENTION
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.129\Installer\chrmstp.exe [2020-04-30] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MobileGo Service.lnk [2017-12-18]
ShortcutTarget: MobileGo Service.lnk -> C:\Program Files (x86)\Wondershare\MobileGo\MobileGoService.exe (Wondershare Technology Co.,Ltd -> Wondershare)
Startup: C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2018-02-14]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\Lukas\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook, Inc. -> Facebook) [File not signed]
Startup: C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\tmp8B80.tmp.vbs [2015-11-26] ()
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00C68D1E-0792-4737-ABE6-11A23C0E148C} - System32\Tasks\GoogleUpdateTaskMachineUA1d08feffd8759fd => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {021AA5EF-1063-45EB-907E-BFA16744AEC2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {057F0FDB-4D54-433E-B0E7-DA7189E9A45D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [1540544 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {078F5A49-EB5F-47D1-8AAC-D7DB43920F91} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {08398CB9-4B31-4A24-8B44-EB9BB625BA92} - System32\Tasks\GoogleUpdateTaskMachineUA1d0bf8240b41a2d => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {0A3ADA6A-7D6B-48BE-B3EE-7CAFCB01D806} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {0AB50D89-FFF4-45DA-A27F-F78224C73B18} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {0DCD5721-E663-4739-8799-D538A118462C} - System32\Tasks\Khagetheputain Renew => C:\Program Files (x86)\Hubishrwoy\danudle.exe
Task: {0DF81F83-AAE4-4D9D-AD21-1C085FB4F3CD} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0F2160CC-1C14-402D-AD23-A12D04C235E8} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {14141500-8981-4403-B402-EA338C0793AC} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {166C21CD-A7AE-44C6-9267-F23A9BD448EF} - System32\Tasks\GoogleUpdateTaskMachineUA1d0f1cdabb0a60b => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {1AC7B678-A9D3-4A29-92DC-D8F4EBF554F7} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {1CEA203A-C150-4652-AABB-7ACA3A05E166} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1D16E514-8B2B-401C-A57A-94F5BDE2C6C6} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [947136 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1E30E266-381A-446D-8258-14AA8981822C} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {1FD4545D-449E-4498-A28F-6A70BBB6E717} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {21B0555E-5B6E-4A33-8B94-554BA363328C} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2855507F-5693-4716-8CFD-A9C7EC3608E1} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {2BE35E19-B156-4AC3-A010-122DA9065272} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {300BD167-058E-4DF4-A7BE-2E53BB8E2972} - System32\Tasks\Opera scheduled Autoupdate 1447089322 => C:\Program Files (x86)\Opera\launcher.exe [1139800 2018-09-13] (Opera Software AS -> Opera Software)
Task: {303E7458-BC1B-4A0E-88AA-9DBF253DB047} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {31BE7BED-2F8C-44D1-BD22-11E99C2B41D6} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {331DDBCD-B400-4A52-8AA3-1827C9BCD258} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {39258C28-7A3C-4300-A3DC-4E16322E23F7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {3AEA29CC-B5AD-4AD2-BC6D-909CC4F0BB1C} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {3D4E9D09-C002-4945-AC40-392F521B8371} - System32\Tasks\Milimili => C:\Program Files (x86)\MIO\MIO.exe [282168 2017-05-17] (Tencent Technology(Shenzhen) Company Limited -> ) <==== ATTENTION
Task: {41E30C1E-4367-4961-83E7-F77ACA6B8A7D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {44043342-7AEF-45A6-BE72-1C5E0973F9B7} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [651200 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4767975C-6E0E-4FAA-8A88-B2977101B326} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {478A9481-F90E-4304-A5F6-68A3C6FACA5E} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {480DC16E-4D7A-4F6C-996A-A6B0C6BAA785} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {4D624449-4D60-4D19-9387-2E5BF8C036BD} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {50FC92D3-BD00-47CB-A315-A89F04ED71E1} - System32\Tasks\GoogleUpdateTaskMachineCore1d0f1cdab88d226 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {56B0A61C-507F-433D-954C-C486D2189B72} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {5A1966A9-CEB3-41A9-AE16-6BC5ABAD319F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {614E6F12-9484-46EE-9A73-6D7224A2D4B4} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [436160 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6482D3E7-3339-4124-B13F-E53C041CFA06} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {656F2A16-EFDE-4862-8AFD-D8B5E81C281C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {65F86154-AB5D-4337-8D93-BAF90FA4D306} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1670432 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {663E99B4-CA4D-4E7C-91C1-EABB63BABB64} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {66F06E9E-DF0A-433D-83B5-C509AEC75A95} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {6703186A-0465-4C3E-A08A-443207902793} - System32\Tasks\GoogleUpdateTaskMachineUA1d12ebc6be85ef3 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {69D2C974-CF78-415C-8191-C7DC384676E6} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7910D104-F17E-49AB-8776-6C77A50BAC04} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2018-09-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {7A837A76-486D-42A1-97E8-360C058D8954} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {7ADD9F03-5F2F-41C7-8737-009E296D65AD} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
Task: {7C8C0D84-7FDF-4498-A416-73AD7EA30569} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {7DB680EE-23B1-48F0-9859-CDA2BEC008FB} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2227488 2015-12-09] (Microsoft Corporation -> Microsoft)
Task: {82468688-DA9F-4710-B706-424D84B066D0} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {85175350-6DD5-4C07-ABAB-38D7F203636C} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {85780FD9-7FC6-440E-B945-27134F55C731} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {897F1BF5-3093-47B4-B81B-DCD2D9897417} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_108_Plugin.exe [1454080 2018-09-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {8A047119-D9E5-477C-B68D-D5DA2A5D8150} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {973F4372-6F08-4918-8421-4E9AB460F9B7} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {99A527D5-9275-472A-9145-E6AE919E91E4} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {9AE63F0F-455B-4671-B91D-FC96318A4D32} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2212128 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {9F51F8E6-34D8-4E87-AE46-DCC8FF65A6CA} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {AC1769AE-9049-4FAA-BCA1-EF24AE7E0B26} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [651200 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B50B0A88-6F32-4525-A344-20D1804D3764} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {B59AA759-2158-4CEA-A134-4EFB287168F1} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {B65417F6-37D2-4862-84FE-ADD7DD7BA31B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {BBC89AE6-9F6E-45EF-8F63-55A8B55BC2DB} - System32\Tasks\{1A6294B2-88B2-4000-982C-50EE66BDD741} => C:\WINDOWS\system32\pcalua.exe -a "F:\intuix_cd\Intuix CD\setup.exe" -d "F:\intuix_cd\Intuix CD"
Task: {C5110754-6125-4583-93E9-90A2E8B93F9B} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1670432 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {C68AFC55-BC6B-4932-8422-FDCAE9D0228E} - System32\Tasks\GoogleUpdateTaskMachineCore1d0e311c2edf531 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {C79F4485-F979-4998-A686-7527DFE38288} - System32\Tasks\{E9D3D202-8BE7-4283-9C8E-DB1ADD4A305D} => C:\Windows\system32\pcalua.exe -a K:\_AUTORUN\AUTORUN.EXE -d K:\
Task: {C8440877-31C2-4D5A-B13D-B78D1A784C64} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {CE403273-6ABC-4EDB-B60E-418EE36DE211} - System32\Tasks\{D082DED7-9F54-4072-B23C-9015685838FF} => C:\WINDOWS\system32\pcalua.exe -a "F:\Program Files (x86)\Mafia I - The City of Lost Heaven\Game.exe" -d "F:\Program Files (x86)\Mafia I - The City of Lost Heaven"
Task: {D0BB8582-D346-44C5-8C7E-6D22291C0569} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {D6CA3431-FF1A-4CB8-9146-6B78F0BBF8E6} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {D6F88AA6-B7B7-4C2D-BFD8-16DFDE83FA22} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2212128 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {D99CF7B4-C34D-47D3-9CD0-C486F7CE1434} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DDDA9FC3-1F1A-4C8C-A95A-47E751E16E56} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DE10E964-9B25-4F6E-9EDC-CD783AF08FE4} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [722880 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DEE2560C-3FA2-499E-8DAF-184D35357BCB} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {E140E31A-0C7F-4FFA-89E9-C6D582D94CC7} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [722880 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E55F4541-8AA4-486D-A31F-8D7584FF968D} - System32\Tasks\GoogleUpdateTaskMachineCore1d08feffd709d58 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {E7DB25D7-9344-4C16-B621-DE4DA8BD66B4} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {E81AB3AC-3816-4EBE-A8D5-0C27174B539B} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E95DA03C-4020-4063-B2FC-DF9CC9D202BD} - System32\Tasks\GoogleUpdateTaskMachineCore1d0bf824092886a => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {EF259B98-F640-49BA-8E8A-3ACAE1C31C5F} - System32\Tasks\{91840007-F1F0-480C-8352-3A5360385E8C} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Railroad Tycoon 3\UNINSTX.EXE"
Task: {EF7CE8FE-FF1D-4CE4-98B5-AEEE09AF4843} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {F27343BC-E4E8-484D-875C-05719CB62CA4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {FD539483-AC5F-43E5-A5A4-CBB51614FEBE} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {FD77CB7B-62D4-4956-841B-D5C6D9E7F315} - System32\Tasks\GoogleUpdateTaskMachineCore1d12ebc6bce6df2 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d08feffd709d58.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0bf824092886a.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0e311c2edf531.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0f1cdab88d226.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d08feffd8759fd.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0bf8240b41a2d.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0f1cdabb0a60b.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 127.0.0.1 validation.sls.microsoft.com
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{0c602eed-9ac2-4542-ac7f-b6924786abc0}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{65eee1d5-a9d8-425b-8d5e-4166b6418b14}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{9226fc84-2a17-4d77-8b05-e13aee4900e5}: [DhcpNameServer] 192.168.0.1 0.0.0.0

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617912&ResetID=132151946241391219&GUID=09B1574E-8886-4A52-9C34-8AE3E62B20AA
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={89E45FA6-09A8-45F1-8DBF-CAD680F5B060}&mid=a8b61b5eb91c47cca1f10982ccf71734-93d9ffb39f30866f6f0291e2a8bc540dcb95dfa1&lang=cs&ds=AVG&coid=avgtbavg&cmpid=ipm190214&pr=fr&d=2015-12-16 16:40:49&v=4.3.9.626&pid=wtu&sg=&sap=hp
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={89E45FA6-09A8-45F1-8DBF-CAD680F5B060}&mid=a8b61b5eb91c47cca1f10982ccf71734-93d9ffb39f30866f6f0291e2a8bc540dcb95dfa1&lang=cs&ds=AVG&coid=avgtbavg&cmpid=ipm190214&pr=fr&d=2015-12-16 16:40:49&v=4.3.9.626&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE00
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {0EDBD3F4-E096-4846-B9DE-D691BA3103C6} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {1C50BAAC-C45F-46AA-B7B2-79617F444A02} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {21B2B49F-F4DA-49CE-A9FC-C3EDE1E86455} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {431AAD9A-2776-4129-A644-3F9F151176C4} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {76DEFAE6-09B2-40B2-8F8A-5A6A5D5CE4EB} URL = hxxps://search.yahoo.com/search/?toggle=1&cop=mss&ei=UTF-8&fr=vmn&type=auslog_yaapp6_adw_ch&p={searchTerms}
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {937BFC8E-BC6F-43FE-8828-A0617CFC8708} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={89E45FA6-09A8-45F1-8DBF-CAD680F5B060}&mid=a8b61b5eb91c47cca1f10982ccf71734-93d9ffb39f30866f6f0291e2a8bc540dcb95dfa1&lang=cs&ds=AVG&coid=avgtbavg&cmpid=ipm190214&pr=fr&d=2015-12-16 16:40:49&v=4.3.9.626&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {9D8DD67D-8298-4DF4-BD42-61842EC96EEE} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {AEBA1B1E-35FE-4762-AC9C-6B81DE0B8AF7} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {D742AC74-BBC6-48E1-A0C2-E8A528458B67} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_13415
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: No Name -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> No File
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2020-04-21] (McAfee, LLC -> McAfee, LLC)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-04] (Google Inc -> Google Inc.)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2020-04-21] (McAfee, LLC -> McAfee, LLC)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation -> Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation -> Microsoft Corporation.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-04] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)

Edge:
======
DownloadDir: C:\Users\Lukas\Downloads

FireFox:
========
FF DefaultProfile: ixqmgx8f.default
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\naweriweentcofise\Profiles\ixqmgx8f.default\Profiles\ixqmgx8f.default [not found] <==== ATTENTION
FF DefaultProfile: ki8cun5l.default
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default [2020-05-06]
FF DownloadDir: G:
FF Homepage: Mozilla\Firefox\Profiles\ixqmgx8f.default -> hxxps://www.google.com/
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\Extensions\cs@dictionaries.addons.mozilla.org.xpi [2019-10-28]
FF Extension: (Czech (CZ) Language Pack) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\Extensions\langpack-cs@firefox.mozilla.org.xpi [2020-03-24]
FF Extension: (No Name) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [not found]
FF Extension: (No Name) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\extensions\sko-extension@firma.seznam.cz [not found]
FF Extension: (No Name) - C:\Program Files\McAfee\WebAdvisore10ssaffplg.xpi [not found]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\searchplugins\bing-.xml [2017-02-05]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\searchplugins\l9olaieg.xml [2017-02-27]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\searchplugins\startpageing123.xml [2017-03-27]
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ki8cun5l.default [2020-01-21] <==== ATTENTION
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2020-04-21] [UpdateUrl:hxxps://www.siteadvisor.com/waffinstall/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_31_0_0_108.dll [2018-09-12] (Adobe Systems Incorporated -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_108.dll [2018-09-12] (Adobe Systems Incorporated -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-03-06] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-676012942-2397387924-1880445482-1000: SkypePlugin -> C:\Users\Lukas\AppData\Local\SkypePlugin\7.31.0.56\npGatewayNpapi.dll [2017-02-03] (Microsoft Corporation -> Skype Technologies S.A.)
FF Plugin HKU\S-1-5-21-676012942-2397387924-1880445482-1000: SkypePlugin64 -> C:\Users\Lukas\AppData\Local\SkypePlugin\7.31.0.56\npGatewayNpapi-x64.dll [2017-02-03] (Microsoft Corporation -> Skype Technologies S.A.)

Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR Profile: C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2020-03-24] <==== ATTENTION
CHR DownloadDir: E:\
CHR HomePage: ChromeDefaultData -> mysearch.avg.com
CHR StartupUrls: ChromeDefaultData -> "hxxps://www.google.com/"
CHR DefaultSearchURL: ChromeDefaultData -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=E210CZ91105G0&p={searchTerms}
CHR DefaultSearchKeyword: ChromeDefaultData -> mcafee
CHR Extension: (Prezentace) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-10-11]
CHR Extension: (Dokumenty) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2019-10-11]
CHR Extension: (Disk Google) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-07]
CHR Extension: (YouTube) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (AVG Secure Search) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2020-01-14]
CHR Extension: (Vyhledávání Google) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-07]
CHR Extension: (Adobe Acrobat) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-03-17]
CHR Extension: (MSN Homepage & Bing Search Engine) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2020-01-14]
CHR Extension: (Tabulky) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-10-11]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2020-02-07]
CHR Extension: (Dokumenty Google offline) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-03-17]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-01-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-11]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2020-02-07]
CHR Extension: (Gmail) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-10-11]
CHR Extension: (Chrome Media Router) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-03-24]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd]
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\StartMenuInternet\ChromeHTML: -> C:\Program Files (x86)\Footjane\Application\chrome.exe <==== ATTENTION

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-05-04] (Advanced Micro Devices, Inc.) [File not signed]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-04-29] (Apple Inc. -> Apple Inc.)
R2 CAMService; C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\rust-cam\dist\native\target\release\service.exe [553600 2020-04-01] (NZXT, Inc. -> )
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291904 2017-08-14] (Disc Soft Ltd -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [392976 2017-02-10] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2018-12-12] (Huawei Technologies Co., Ltd. -> ) [File not signed]
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [916712 2020-04-21] (McAfee, LLC -> McAfee, LLC)
R2 MEmuSVC; C:\Program Files (x86)\Microvirt\MEmu\MemuService.exe [85304 2019-07-02] (Shanghai Microvirt Software Technology Co., Ltd. -> )
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2475312 2020-01-15] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3393848 2020-01-15] (Electronic Arts, Inc. -> Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-03-15] (Even Balance, Inc. -> )
R2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [344576 2014-01-22] (Qualcomm Atheros) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10823184 2020-04-20] (TeamViewer Germany GmbH -> TeamViewer GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\NisSrv.exe [3304992 2020-05-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MsMpEng.exe [103376 2020-05-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WirelessKB850NotificationService; C:\WINDOWS\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe [473312 2017-03-20] (Wondershare Technology Co.,Ltd -> Wondershare)
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\MobileGo\DriverInstall.exe [101152 2017-06-01] (Wondershare Technology Co.,Ltd -> Wondershare)
S2 avg; "C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe" /svc [X]
S3 avgm; "C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe" /medsvc [X]
R2 NvContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
S3 NvContainerNetworkService; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
S2 vToolbarUpdater40.3.8; "C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.8\ToolbarUpdater.exe" [X]
S2 WtuSystemSupport; "C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdiox64; C:\WINDOWS\System32\drivers\amdiox64.sys [46136 2010-02-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [79488 2011-04-15] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [40064 2011-04-15] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [55936 2011-11-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R1 BfLwf; C:\WINDOWS\system32\DRIVERS\bflwfx64.sys [80080 2013-11-08] (Qualcomm Atheros, Inc. -> Qualcomm Atheros, Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-11-07] (Microsoft Corporation) [File not signed]
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-02-27] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-02-27] (Disc Soft Ltd -> Disc Soft Ltd)
R3 KillerEth; C:\WINDOWS\System32\drivers\e2xw10x64.sys [145920 2019-03-19] (Microsoft Windows -> Qualcomm Atheros, Inc.)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-02-07] (Malwarebytes Corporation -> Malwarebytes Corporation)
R1 MEmuDrv; C:\WINDOWS\system32\DRIVERS\MEmuDrv.sys [319192 2019-09-21] (Shanghai Microvirt Software Technology Co., Ltd. -> Maiwei Corporation)
R1 MpKslDrv; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{33A93396-E911-44A0-B466-DC2D4A1D8561}\MpKslDrv.sys [43232 2020-04-02] (Microsoft Windows -> Microsoft Corporation)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2018-05-04] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_db678424d2641c3d\nvlddmkm.sys [22094728 2019-10-04] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48064 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
R1 sbnetsys; C:\WINDOWS\system32\DRIVERS\sbnetsys.sys [44648 2015-04-17] (Mainline Net Holdings Limited -> NT Kernel Resources)
R3 usbfilter; C:\WINDOWS\system32\DRIVERS\usbfilter.sys [61464 2000-01-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45960 2020-05-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [394680 2020-05-02] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64944 2020-05-02] (Microsoft Windows -> Microsoft Corporation)
U3 aspnet_state; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-04-28 20:33 - 2020-04-28 20:33 - 000001040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk
2020-04-28 20:33 - 2020-04-28 20:33 - 000001028 _____ C:\Users\Public\Desktop\TeamViewer 12.lnk
2020-04-28 19:45 - 2020-04-28 19:45 - 000659332 _____ C:\WINDOWS\Minidump\042820-51984-01.dmp
2020-04-20 22:05 - 2020-04-20 22:05 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-04-20 22:05 - 2020-04-20 22:05 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-04-08 18:51 - 2020-04-08 18:51 - 000000222 _____ C:\Users\Lukas\Desktop\Supremacy 1914.url

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-05-06 16:49 - 2017-03-21 10:38 - 000000000 ____D C:\FRST
2020-05-06 16:47 - 2016-11-18 12:12 - 000000000 ____D C:\Users\Lukas\AppData\LocalLow\Mozilla
2020-05-06 16:46 - 2019-11-07 20:00 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-05-06 16:46 - 2019-11-07 19:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-05-06 16:46 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-05-06 16:46 - 2017-09-06 14:29 - 000000000 ____D C:\ProgramData\NVIDIA
2020-05-06 16:39 - 2019-09-26 22:50 - 000000000 ____D C:\Users\Lukas\Desktop\rozpočty
2020-05-06 16:28 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-05-06 16:22 - 2020-01-26 12:21 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-05-02 12:44 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-05-02 12:31 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-05-02 10:26 - 2018-03-04 10:30 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-04-30 16:30 - 2015-02-07 19:44 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-04-30 16:30 - 2015-02-07 19:44 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-04-30 16:27 - 2019-11-07 19:51 - 001781194 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-04-30 16:27 - 2019-03-19 13:55 - 000745534 _____ C:\WINDOWS\system32\perfh005.dat
2020-04-30 16:27 - 2019-03-19 13:55 - 000160026 _____ C:\WINDOWS\system32\perfc005.dat
2020-04-30 16:27 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-04-28 20:33 - 2017-02-24 10:58 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-04-28 20:03 - 2018-05-23 08:35 - 000000000 ____D C:\Users\Lukas\AppData\Local\PlaceholderTileLogoFolder
2020-04-28 19:45 - 2019-11-14 20:01 - 000000000 ____D C:\WINDOWS\Minidump
2020-04-20 20:53 - 2015-02-08 18:51 - 000000000 ____D C:\Program Files (x86)\Steam
2020-04-20 18:47 - 2019-11-07 19:51 - 000000000 ____D C:\Users\Lukas
2020-04-20 16:46 - 2019-11-07 20:00 - 000003364 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-676012942-2397387924-1880445482-1000
2020-04-20 16:46 - 2019-11-07 19:51 - 000002399 _____ C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-04-20 16:46 - 2016-05-18 06:04 - 000000000 ___RD C:\Users\Lukas\OneDrive
2020-04-16 10:26 - 2018-02-08 21:43 - 000000000 ____D C:\Users\Lukas\Desktop\vyuctovaní 2018
2020-04-12 11:40 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports

==================== Files in the root of some directories ========

2017-03-13 09:15 - 2017-05-11 20:36 - 000011188 _____ () C:\Program Files (x86)\metadata
2017-03-01 13:53 - 2017-03-01 13:53 - 000000046 _____ () C:\Users\Lukas\AppData\Roaming\Camdata.ini
2017-03-01 13:53 - 2017-03-01 13:53 - 000000408 _____ () C:\Users\Lukas\AppData\Roaming\CamLayout.ini
2017-03-01 13:53 - 2017-03-01 13:53 - 000000408 _____ () C:\Users\Lukas\AppData\Roaming\CamShapes.ini
2017-03-01 13:53 - 2017-03-01 13:53 - 000004536 _____ () C:\Users\Lukas\AppData\Roaming\CamStudio.cfg
2017-03-01 13:51 - 2017-03-01 13:51 - 000000096 _____ () C:\Users\Lukas\AppData\Roaming\version2.xml
2017-03-16 12:48 - 2017-03-16 12:48 - 000000000 _____ () C:\Users\Lukas\AppData\Local\Driver_LOM_8161Present.flag
2015-12-30 11:01 - 2019-12-30 23:02 - 000014560 _____ () C:\Users\Lukas\AppData\Local\FSDownloader.err
2015-12-30 11:01 - 2020-01-26 12:21 - 000001312 _____ () C:\Users\Lukas\AppData\Local\FSDownloader.nast
2020-03-29 14:28 - 2020-03-29 14:28 - 000000017 _____ () C:\Users\Lukas\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: vypíná se mi pc

#5 Příspěvek od Rudy »

Teď spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

lukass9
Návštěvník
Návštěvník
Příspěvky: 18
Registrován: 21 bře 2017 09:43

Re: vypíná se mi pc

#6 Příspěvek od lukass9 »

# -------------------------------
# Malwarebytes AdwCleaner 8.0.4.0
# -------------------------------
# Build: 04-03-2020
# Database: 2020-04-08.2 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 05-06-2020
# Duration: 00:00:32
# OS: Windows 10 Home
# Scanned: 31802
# Detected: 9


***** [ Services ] *****

PUP.Adware.Heuristic vToolbarUpdater40.3.8
PUP.Optional.Legacy WtuSystemSupport

***** [ Folders ] *****

PUP.Optional.DriverNavigator C:\Program Files\Easeware\DriverNavigator
PUP.Optional.DriverNavigator C:\Users\Lukas\AppData\Roaming\Easeware\DriverNavigator
PUP.Optional.Legacy C:\Users\Lukas\AppData\Roaming\Firefox

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\Main|Start Page
PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}

***** [ Chromium (and derivatives) ] *****

PUP.Optional.Legacy MSN Homepage & Bing Search Engine - fcfenmboojpjinhpgggodefccipikbpd

***** [ Chromium URLs ] *****

PUP.Optional.Legacy ourluckysites

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.


AdwCleaner_Debug.log - [487976 octets] - [28/10/2019 19:42:26]
AdwCleaner[S00].txt - [23131 octets] - [28/10/2019 19:45:52]
AdwCleaner[C00].txt - [19361 octets] - [28/10/2019 19:46:39]
AdwCleaner[S01].txt - [1821 octets] - [14/11/2019 19:17:27]
AdwCleaner[C01].txt - [1879 octets] - [14/11/2019 19:18:01]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S02].txt ##########

lukass9
Návštěvník
Návštěvník
Příspěvky: 18
Registrován: 21 bře 2017 09:43

Re: vypíná se mi pc

#7 Příspěvek od lukass9 »

# -------------------------------
# Malwarebytes AdwCleaner 8.0.4.0
# -------------------------------
# Build: 04-03-2020
# Database: 2020-04-08.2 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 05-06-2020
# Duration: 00:00:02
# OS: Windows 10 Home
# Cleaned: 9
# Failed: 0


***** [ Services ] *****

Deleted WtuSystemSupport
Deleted vToolbarUpdater40.3.8

***** [ Folders ] *****

Deleted C:\Program Files\Easeware\DriverNavigator
Deleted C:\Users\Lukas\AppData\Roaming\Easeware\DriverNavigator
Deleted C:\Users\Lukas\AppData\Roaming\Firefox

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Microsoft\Internet Explorer\Main|Start Page
Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}

***** [ Chromium (and derivatives) ] *****

Deleted MSN Homepage & Bing Search Engine - fcfenmboojpjinhpgggodefccipikbpd

***** [ Chromium URLs ] *****

Deleted ourluckysites

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner_Debug.log - [487976 octets] - [28/10/2019 19:42:26]
AdwCleaner[S00].txt - [23131 octets] - [28/10/2019 19:45:52]
AdwCleaner[C00].txt - [19361 octets] - [28/10/2019 19:46:39]
AdwCleaner[S01].txt - [1821 octets] - [14/11/2019 19:17:27]
AdwCleaner[C01].txt - [1879 octets] - [14/11/2019 19:18:01]
AdwCleaner[S02].txt - [2254 octets] - [06/05/2020 18:43:37]
AdwCleaner[S03].txt - [2315 octets] - [06/05/2020 18:48:45]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C03].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: vypíná se mi pc

#8 Příspěvek od Rudy »

Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

lukass9
Návštěvník
Návštěvník
Příspěvky: 18
Registrován: 21 bře 2017 09:43

Re: vypíná se mi pc

#9 Příspěvek od lukass9 »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-05-2020
Ran by Lukas (06-05-2020 19:10:43)
Running from G:\
Windows 10 Home Version 1903 18362.720 (X64) (2019-11-07 18:00:28)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-676012942-2397387924-1880445482-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-676012942-2397387924-1880445482-503 - Limited - Disabled)
Guest (S-1-5-21-676012942-2397387924-1880445482-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-676012942-2397387924-1880445482-1003 - Limited - Enabled)
Lukas (S-1-5-21-676012942-2397387924-1880445482-1000 - Administrator - Enabled) => C:\Users\Lukas
WDAGUtilityAccount (S-1-5-21-676012942-2397387924-1880445482-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {4FC75CA5-1654-5411-7CFB-1893D506BCF4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

4game (HKLM-x32\...\4game2.0) (Version: 1.0.0.94 - Innova Co. SARL)
4K Video Downloader 4.5 (HKLM\...\{180B9AE1-F87B-4107-8C68-4265E927D6A8}) (Version: 4.5.0.2482 - Open Media LLC)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.006.20042 - Adobe Systems Incorporated)
Adobe Flash Player 31 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 31.0.0.108 - Adobe Systems Incorporated)
AIDA64 Extreme v5.00 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.00 - FinalWire Ltd.)
Aktualizace NVIDIA 28.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 28.0.0.0 - NVIDIA Corporation) Hidden
AlphaGo (HKLM-x32\...\{B20B3A3C-91E3-4326-8A0F-B3C012574F8C}) (Version: 1.1.2 - Default Company Name) <==== ATTENTION
AMD Catalyst Install Manager (HKLM\...\{E3C27552-F408-6465-3CA2-AA63826EC350}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMDProductVerification (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\4ecb547ba21a923a) (Version: 1.0.25.99 - AMDProductVerification)
amuleC (HKLM-x32\...\{0F7B5011-72EC-493D-A7BF-546591047E8E}) (Version: 1.0.2 - amuleC) <==== ATTENTION
amulesw (HKLM-x32\...\{3CC3DE19-E0B1-4D42-87AB-B5C61FE4BA58}) (Version: 1.0.6 - amules) <==== ATTENTION
Anno 1800 Open Beta (HKLM-x32\...\Uplay Install 13800) (Version: - Ubisoft)
Apple Mobile Device Support (HKLM\...\{B5A46811-3612-4DA5-8A5A-E6DED5D7C523}) (Version: 12.2.1.12 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Audiobook Downloader Pro 1.3 (HKLM-x32\...\Audiobook Downloader Pro) (Version: 1.3 - SuperUtils.com Software)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BikaQ Rss (HKLM-x32\...\{3678D164-84DB-4F73-AFD6-916342E10764}) (Version: 3.0.17 - BikaQ) <==== ATTENTION
Bing Bar (HKLM-x32\...\{16793295-2366-40F7-A045-A3E42A81365E}) (Version: 7.1.362.0 - Microsoft Corporation)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Booking (HKLM-x32\...\{13D4CD54-EA09-4FDB-B979-8B2BC0F020CA}_is1) (Version: 2.0.701 - Booking)
CamStudio 2.7.4 (HKLM\...\{04B83666-3A62-452B-85D3-70F8117F2329}_is1) (Version: 2.7.4 - CamStudio Open Source)
Car Mechanic Simulator 2018 (HKLM-x32\...\Car Mechanic Simulator 2018_is1) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.63 - Piriform)
Ceník stavebních prací 2.4 - aktualizace A (HKLM-x32\...\Ceník stavebních prací_is1) (Version: 2.4 - aktualizace A - Verlag Dashöfer s.r.o)
Cities In Motion (HKLM-x32\...\{15FA5ED6-2F98-4B5E-AF0B-18E5F4723FAD}_is1) (Version: - )
Cities XXL (HKLM-x32\...\Cities XXL_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter)
Cities: Skylines - ČEŠTINA (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Cities: Skylines - ČEŠTINA) (Version: - )
Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.62.0 - OEM) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.6.0.0283 - Disc Soft Ltd)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
DVD Shrink 3.2 (HKLM-x32\...\DVD Shrink_is1) (Version: - DVD Shrink)
Epic Games Launcher (HKLM-x32\...\{DCE27B29-200D-491A-BBC5-98ECEFEC0843}) (Version: 1.1.257.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
EVE Online (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\{5e6d5785-73e8-423f-a54c-b75cd3f5db13}) (Version: 1.0.0 - CCP)
Facebook Gameroom 1.20.6598.21896 (HKLM-x32\...\{C51FED78-02E5-4A80-B4D0-A4A474BB0CDD}) (Version: 1.20.6598.21896 - Facebook)
Far Cry 4 (HKLM-x32\...\Far Cry 4_is1) (Version: 1.4.0 - Ubisoft)
Farming Simulator 17 (HKLM-x32\...\{A82E512C-3BFB-43F8-B97F-8AA8F209B83B}) (Version: 1.2.0.0 - GIANTS Software) Hidden
Farming Simulator 17 (HKLM-x32\...\Farming Simulator 17 1.2.0.0) (Version: 1.2.0.0 - GIANTS Software)
Farming Simulator 19 (HKLM-x32\...\Farming Simulator 19_is1) (Version: - )
Firestorm Launcher version 1.3 (HKLM-x32\...\{008D5963-9A73-4472-8C16-A5BF04491B9D}_is1) (Version: 1.3 - Firestorm)
Flash Memory Toolkit trial 2.01 (HKLM-x32\...\Flash Memory Toolkit trial_is1) (Version: - EFD Software)
FORM studio (HKLM-x32\...\FSCZ_is1) (Version: - KASTNER software s.r.o.)
GitHub Desktop (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\GitHubDesktop) (Version: 1.0.11 - GitHub, Inc.)
Google Drive (HKLM-x32\...\{A1238426-ECDF-4639-BE2F-8D12A97AE23C}) (Version: 2.34.5075.1619 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 81.0.4044.129 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Hearts of Iron IV (HKLM-x32\...\Hearts of Iron IV_is1) (Version: - )
HiSuite (HKLM-x32\...\Hi Suite) (Version: 9.0.3.300 - )
Charity Engine (HKLM-x32\...\{7309D717-F38D-436D-9537-066AA0AC7639}) (Version: 7.0.80 - Charity Engine)
iCloud (HKLM\...\{DA6D808E-3629-4933-8FB3-583F9BCB0DEF}) (Version: 7.12.0.14 - Apple Inc.)
iTunes (HKLM\...\{7B81A249-0187-436C-9738-AF82DAA54822}) (Version: 12.9.5.7 - Apple Inc.)
Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
Kingdom Come Deliverance (HKLM-x32\...\Kingdom Come Deliverance_is1) (Version: - )
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LineageII EU (HKLM-x32\...\4game_lineage2eu) (Version: - Innova Systems)
Mafia I - The City of Lost Heaven verze v1.3 (HKLM-x32\...\{360EBFE4-4591-4AE6-8D97-A58A43C15869}_is1) (Version: v1.3 - Danik1B9)
Malwarebytes Anti-Malware verze 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Mashinky CZ v.21.02.2019 (HKLM-x32\...\Mashinky CZ v.21.02.2019) (Version: v.21.02.2019 - Libbi)
Math Problem Solver (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Math Problem Solver) (Version: - ) <==== ATTENTION
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.92 - McAfee, LLC.)
MEmu (HKLM-x32\...\MEmu) (Version: 7.1.1.0 - Microvirt Software Technology Co. Ltd.)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{929CE49F-1CA7-4CF3-A9A1-6D757443C63F}) (Version: 1.2.0241 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.7.133.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\OneDriveSetup.exe) (Version: 19.232.1124.0012 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 72.0.2 (x64 en-US) (HKLM\...\Mozilla Firefox 72.0.2 (x64 en-US)) (Version: 72.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 70.0 - Mozilla)
Mp3 Editor for Free v5.2.7 Build 79 (HKLM-x32\...\Mp3 Editor for Free_is1) (Version: 5.2.7 Build 79 - Mp3EditorforFree Ltd.)
NVIDIA GeForce Experience 3.9.0.97 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.9.0.97 - NVIDIA Corporation)
NVIDIA GeForce NOW 2.0.16.148 (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GeforceNOW) (Version: 2.0.16.148 - NVIDIA Corporation)
NVIDIA Install Application (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer) (Version: 2.1002.338.0 - NVIDIA Corporation) Hidden
NVIDIA Ovladač HD audia 1.3.38.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.16 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 432.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 432.00 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{D9559CE2-9C58-F414-43EA-F908FEA13BB8}) (Version: 1.00.0000 - Název společnosti:)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Opera Stable 55.0.2994.61 (HKLM-x32\...\Opera 55.0.2994.61) (Version: 55.0.2994.61 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.5.59.36848 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 432.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 432.00 - NVIDIA Corporation) Hidden
Paradox Launcher v2 (HKLM\...\{A8D4AE16-519B-409D-B5B4-2647C06805AD}) (Version: 2.0.3.0 - Paradox Interactive)
PDF To Excel Converter V3.0 (HKLM-x32\...\PDF To Excel Converter_is1) (Version: - hxxp://www.PDFExcelConverter.com)
Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.) Hidden
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{C1BCFECF-6EC2-4750-9072-5E2489423F8F}) (Version: 7.5 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{B202C7F5-7DE3-4FBF-B259-E70E625F56FC}) (Version: 7.5 - Apple Inc.)
Qualcomm Atheros Bandwidth Control Filter Driver (HKLM\...\{C80C9B28-CF99-431C-88C8-8B1F9B6A182F}) (Version: 1.1.39.1040 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer E220x Drivers (HKLM\...\{DD2A85B3-64C5-4263-A7AF-4F61FA5F369A}) (Version: 1.1.39.1040 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer Network Manager Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.39.1040 - Qualcomm Atheros)
Qualcomm Atheros Network Manager (HKLM\...\{7364C716-1212-4EAE-B0C9-A31D1E797BF8}) (Version: 1.1.39.1040 - Qualcomm Atheros) Hidden
Railroad Tycoon II Platinum (HKLM-x32\...\1445250876_is1) (Version: 2.0.0.5 - GOG.com)
Railway Empire (HKLM-x32\...\1556481953_is1) (Version: 1.1.1.17568 - GOG.com)
RAUCAD-TechCON (7.2) (HKLM-x32\...\{889D28AD-3F0C-48CD-B9BA-95B89A848DD6}) (Version: 7.00.0715 - Atcon systems s.r.o.)
Realpolitiks version 1.3.4 (HKLM-x32\...\{728B7AF5-D053-4F1A-9C6A-019B1376D99C}_is1) (Version: 1.3.4 - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7780 - Realtek Semiconductor Corp.)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 1.05.45.00(23.5.2014) - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Samsung Universal Scan Driver (HKLM-x32\...\Samsung Universal Scan Driver) (Version: 1.2.19.0 - Samsung Electronics Co., Ltd.)
Search App by Ask (HKLM-x32\...\{4F524A2D-5350-4500-76A7-A758B70C2E03}) (Version: 12.46.3.4268 - APN, LLC) <==== ATTENTION
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Shockwave (HKLM-x32\...\Shockwave) (Version: - )
Sid Meier's Civilization: Beyond Earth Rising Tide Addon (HKLM\...\U2lkTWVpZXJzQ2l2aWxpemF0aW9uQmV5b25kRWFydGg=_is1) (Version: 1 - )
SketchUp 2016 (HKLM\...\{D87EE6DC-32BA-4219-AC75-0A6FD54ED058}) (Version: 16.0.19912 - Trimble Navigation Limited)
Skype HoloLens Add-In (HKLM-x32\...\{38A3693F-1954-450F-8E42-C0E6F9C1AE94}) (Version: 1.0.0.0 - Microsoft Corporation)
Skype Web Plugin (HKLM-x32\...\{CD62BCB9-02D2-443F-AC7A-443377DA5B38}) (Version: 7.31.0.56 - Skype Technologies S.A.)
Skype™ 7.38 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.38.101 - Skype Technologies S.A.)
Sony PC Companion (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.297 - Sony)
Sound Blaster Cinema 2 (HKLM-x32\...\{B4F6F8CC-2C61-42CC-A4CC-76621F25BDC7}) (Version: 1.00.06 - Creative Technology Limited)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stellaris (HKLM-x32\...\Stellaris_is1) (Version: - )
Střechy a stěny TONDACH 2018 (HKLM-x32\...\Střechy a stěny TONDACH 2018_is1) (Version: - )
Sudden Strike II (HKLM-x32\...\Sudden Strike II) (Version: - )
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.251385 - TeamViewer)
Terela (HKLM-x32\...\{E2F7C535-0785-4C2D-B56F-016BFD02B010}) (Version: 1.1.6 - Terela)
The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 2.6.3.0 - Zenimax Online Studios)
The Elder Scrolls V Skyrim LE (HKLM-x32\...\The Elder Scrolls V Skyrim LE_is1) (Version: - )
TrafficGiant-Gold Edition (HKLM-x32\...\TrafficGiant-Gold Edition) (Version: - )
Transport Fever (HKLM-x32\...\1720767912_is1) (Version: 2.0.0.2 - GOG.com)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 85.1 - Ubisoft)
USB PC Camera (ZS211) (HKLM-x32\...\{44D02D8B-FFB3-4245-8D26-68D10B4C4023}) (Version: 1.00.000 - )
VIA Platforma Ovladače zařízení (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)
WhatsApp (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\WhatsApp) (Version: 0.4.2081 - WhatsApp)
Win10 Spy Disabler v1.4 (HKLM\...\Win10 Spy Disabler_is1) (Version: 1.4.0.0 - site2unblock.com)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{3577E42B-3347-4EB8-BFDA-D36E8ED3C519}) (Version: 1.0.24.0 - Microsoft Corporation)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
WinRAR 5.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
WinSetupFromUSB (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\WinSetupFromUSB) (Version: - )
Wondershare MobileGo(Version 8.5.0) (HKLM-x32\...\{1E04C795-7359-4E05-8A0E-5644F777AA09}_is1) (Version: 8.5.0 - Wondershare)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
youndoo - Uninstall (HKLM-x32\...\{2AEE6375-5F4E-4EF3-82AE-68CCB56539EF}) (Version: - ) <==== ATTENTION

Packages:
=========
Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_460.16.123.0_x64__8xx8rvfyw5nnt [2020-04-30] (Facebook Inc)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-02] (Microsoft Studios) [MS Ad]
MSN Money -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2017-09-06] (Samsung Electronics Co. Ltd.)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-09] (Twitter Inc.)
WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x64__8wekyb3d8bbwe [2016-05-19] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\ChromeHTML: -> <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-676012942-2397387924-1880445482-1000_Classes\CLSID\{E5A7A7B5-9D06-4DBE-BAC0-04B69FF070B5}\InprocServer32 -> C:\Users\Lukas\AppData\Local\SkypePlugin\7.31.0.56\GatewayActiveX-x64.dll (Microsoft Corporation -> Skype Technologies S.A.)
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6671064 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks: No Name - {D7743BB4-F774-11E6-8881-64006A5CFC23} - -> No File
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-03-21] (Google Inc -> Google)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2019-05-08] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-03-21] (Google Inc -> Google)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\atiacm64.dll [2015-06-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-10-03] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2011-02-18] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2011-02-18] (Electronic Arts -> On2.com)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\Lukas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files (x86)\Firefox\Firefox.exe (Mozilla Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Firefox\Firefox.exe (Mozilla Corporation)
ShortcutWithArgument: C:\Users\Lukas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\360c22b137d62ce9\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=ChromeDefaultData

==================== Loaded Modules (Whitelisted) =============

2015-02-07 19:44 - 2014-01-02 11:19 - 000040960 ____N ( ( ) [File not signed]) [File is in use ] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\Interop.CTSndCr.dll
2015-02-07 19:44 - 2014-02-21 12:03 - 000991232 ____N ( (Creative Technology Ltd) [File not signed]) [File is in use ] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\en-US\SBCinema2.resources.dll
2017-12-18 19:39 - 2015-02-27 11:35 - 000489984 _____ ( (Newtonsoft) [File not signed]) [File is in use ] C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\Newtonsoft.Json.dll
2017-12-18 19:39 - 2017-03-20 17:13 - 000087552 _____ ( (Wondershare) [File not signed]) [File is in use ] C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppCollect.dll
2017-12-18 19:39 - 2017-03-20 17:13 - 000197632 _____ ( (Wondershare) [File not signed]) [File is in use ] C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppCommon.dll
2011-11-13 15:30 - 2011-11-13 15:30 - 000676864 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2012-05-04 16:41 - 2012-05-04 16:41 - 000211968 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2011-11-13 15:31 - 2011-11-13 15:31 - 003643392 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2020-02-20 22:23 - 2020-02-20 22:23 - 098275328 _____ () [File not signed] G:\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libcef.dll
2020-02-20 22:23 - 2020-02-20 22:23 - 000092672 _____ () [File not signed] G:\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libEGL.dll
2020-02-20 22:23 - 2020-02-20 22:23 - 003922432 _____ () [File not signed] G:\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libGLESv2.dll
2015-02-07 19:44 - 2012-04-27 11:26 - 000529920 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\CTAudEp.dll
2015-02-07 19:44 - 2011-09-22 20:04 - 000238080 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\CTLoadRs.dll
2015-02-07 19:44 - 2013-08-22 11:36 - 000249344 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\HKDetect.dll
2020-02-20 22:23 - 2020-02-20 22:23 - 000547840 _____ (The Chromium Authors) [File not signed] G:\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\chrome_elf.dll
2019-12-17 19:25 - 2020-01-14 19:04 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2017-01-11 20:42 - 2020-01-14 19:04 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2019-12-17 19:25 - 2020-01-14 19:04 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2020-01-20 20:05 - 2020-01-14 19:04 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2020-01-20 20:05 - 2020-01-14 19:04 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2020-01-20 20:05 - 2020-01-14 19:04 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2020-01-20 20:05 - 2020-01-14 19:04 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2020-01-20 20:05 - 2020-01-14 19:04 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2018-12-18 22:17 - 000000864 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 validation.sls.microsoft.com

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\AMD APP\bin\x86_64;C:\Program Files (x86)\AMD APP\bin\x86;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Skype\Phone\;C:\Program Files (x86)\AMD\ATI.ACE\Core-Static;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.

Network Binding:
=============
Připojení k místní síti: Qualcomm Atheros Bandwidth Control -> BF_NdisLwf (enabled)
Připojení k místní síti: WinpkFilter LightWeight Filter -> nt_sbnetsys (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\StartupFolder: => "MobileGo Service.lnk"
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\StartupApproved\StartupFolder: => "Facebook Gameroom.lnk"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{E74CA79D-6821-4895-A0DB-03B6E2B917D6}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [UDP Query User{D2AA78C7-80AE-426B-BE14-937BCA673CF0}C:\program files (x86)\firefox\firefox.exe] => (Block) C:\program files (x86)\firefox\firefox.exe (Mozilla Corporation) [File not signed]
FirewallRules: [TCP Query User{C47647E8-5D84-46B8-A307-442BFC404B42}C:\program files (x86)\firefox\firefox.exe] => (Block) C:\program files (x86)\firefox\firefox.exe (Mozilla Corporation) [File not signed]
FirewallRules: [UDP Query User{26AAA118-D790-4881-96AD-CCF81F2CB7AF}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Block) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [TCP Query User{5212072F-78EE-4DC8-A70F-691ADC90A335}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Block) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [{824DBECC-930A-4B75-9973-9EA55BC1C311}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{58837D82-61CD-4248-A985-2A5C7642B49E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{87FB5B77-2A10-42C5-A922-109BBE49DB88}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{3521D0DB-E53D-4002-8E5B-785432CA59AD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{36DCBBDD-26D1-4F18-A0F7-EDBF8144C18E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{FBBF796E-2987-457E-BDAD-8097B223710A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4F9F4F93-FA9F-4824-91DA-A39D562245B3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{BE391B67-CE55-4CCA-A199-C043B8EB741F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{018D2ADC-3AEE-4C6C-BFC2-5033D65E5EA9}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{148806E8-47F6-437D-9899-75DA7E5F20E7}] => (Allow) C:\Program Files (x86)\Opera\55.0.2994.61\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{ABA3BAC5-8750-4860-B256-3CED950DE7C1}] => (Allow) C:\Program Files (x86)\MIO\loader\kingstonxsv300s37a240g_50026b774b03171a.dat () [File not signed]
FirewallRules: [{DED48896-3952-4AF6-A273-5391CE980C48}] => (Allow) C:\Program Files (x86)\MIO\loader\kingstonxsv300s37a240g_50026b774b03171a.dat () [File not signed]
FirewallRules: [{990E1485-6B97-485F-B0B9-911982F2D86B}] => (Allow) C:\Program Files (x86)\Opera\55.0.2994.44\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{2523E2E9-1A5A-4CEB-A014-990EB35E177B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{CADB1CC0-D762-4C5F-9CB8-B2F5FBF14B43}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{533919E2-AB5A-4F7B-8798-7EBFCEC66EEF}C:\program files (x86)\wondershare\mobilego\mobilego.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilego.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [TCP Query User{26A307CE-F98D-4A1A-B5C3-594AEB4CCA12}C:\program files (x86)\wondershare\mobilego\mobilego.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilego.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [UDP Query User{B8283334-7E0D-46D0-B95D-959B0ED7FDC4}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [TCP Query User{C127EBBE-1051-4C68-9B52-51D2C36700BD}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [UDP Query User{180C8FD2-D3D5-4633-850D-3194AB6945DC}H:\program files\farming simulator 17\dedicatedserver.exe] => (Allow) H:\program files\farming simulator 17\dedicatedserver.exe No File
FirewallRules: [TCP Query User{2454C648-F7F9-42F1-81A4-769676D713AF}H:\program files\farming simulator 17\dedicatedserver.exe] => (Allow) H:\program files\farming simulator 17\dedicatedserver.exe No File
FirewallRules: [{AE180C12-5F81-448F-8C53-25FA05A978DB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D52DA489-F743-48FF-8257-225F9D34343C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D24236C4-B694-401B-9235-95C112EBE35D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B76CA01C-67C2-438D-938A-572919039813}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{23969D2D-5CCA-4B42-9221-6405D8EB6AAB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{437741F8-DC38-4756-8486-49CA834A4A58}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{30DF629E-E1AC-4615-9101-FD1B72BEFE00}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{D7863895-4454-4622-BC78-FD9BD3AAA12B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{7F552DA7-05F5-4655-8F66-A507358920B9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{E0C73EC5-E891-4622-965D-62EDA31DD5AE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Star Trek Online\Star Trek Online.exe (Cryptic Studios Inc. -> )
FirewallRules: [{81FA5270-87DE-49B8-84E0-1ACED452FBD6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Star Trek Online\Star Trek Online.exe (Cryptic Studios Inc. -> )
FirewallRules: [{E4543782-368D-4C24-8730-C380C2169CDE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{873DC531-8A81-4912-8608-E3F08B3F9B9D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{29871937-8A62-42BD-97D0-8B8F90B1BF60}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{82631BE1-F8E1-4898-8D54-691166802885}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{84A008EB-78B4-488F-A5AF-EDED4211562C}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{5E3CA82C-0DBF-4B8E-9CED-869A62BB3CBB}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{72DCC175-2194-4250-BAFD-7261F55BD575}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{09611358-6852-4166-9F26-F5942B9C7100}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{4BCC85D2-A491-4553-A3B4-BB700FBBF452}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{35E0C492-E1D0-42CF-82F4-B7DB2AE00F3A}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{D37D00D8-6E22-4E5E-87F6-90FB8C2C1A02}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe (Samsung Electronics Co., Ltd.) [File not signed]
FirewallRules: [{98B322AA-6545-448D-AB25-386816CAC5F9}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe (Samsung Electronics Co., Ltd.) [File not signed]
FirewallRules: [{C5D9088C-95F6-40F4-9C8A-A2BBC9C07CBE}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{C16EE9D5-7673-4D13-8A79-C195DA888425}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{62ED1F89-78BE-423A-BCF0-FF308DEF6DCA}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\ScanProcess.exe (Samsung Electronics CO., LTD. -> ScanProcess)
FirewallRules: [{BFEB002B-F6D2-425E-8907-CB854F6B6657}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\ScanProcess.exe (Samsung Electronics CO., LTD. -> ScanProcess)
FirewallRules: [{72B6BCD1-0D46-4AA1-BFDE-3EC7D7C270BE}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\Scan2PCNotify.exe (Samsung Electronics CO., LTD. -> Scan2PCNotify)
FirewallRules: [{ED3AD914-89AF-4C1C-AB7C-FA962EDBBB67}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\Scan2PCNotify.exe (Samsung Electronics CO., LTD. -> Scan2PCNotify)
FirewallRules: [{F72EBBB8-6BF7-467B-8BB1-4570B7B545BA}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{71ED3801-6FB1-4256-AA70-33FD6B92224F}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{C271645F-7A20-46F0-8E1E-144A4DC0D3F3}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ICCUpdater.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{CAED66B1-28EE-4EC9-9265-55B844F9FBC8}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ICCUpdater.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{9047606F-C417-41AD-BB3F-81EF7E3B47B0}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{C2131B8B-B1CB-433D-97AA-2F76325FACFE}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{FB68EFF4-B072-43E3-BADD-8DF55D32809C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cryptic Studios\Neverwinter.exe (Cryptic Studios Inc. -> )
FirewallRules: [{2651B740-9EAF-4566-B748-147B780B3188}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cryptic Studios\Neverwinter.exe (Cryptic Studios Inc. -> )
FirewallRules: [{04EC1888-4546-4999-B251-571845B7116D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Might & Magic - Duel of Champions\Game.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{E9B7C25D-730E-4FE8-AB5A-623EF5ABD91B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Might & Magic - Duel of Champions\Game.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{A28056B1-E948-4F3F-84D8-6529B09B4987}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{3BEF6539-7729-4A96-A48D-2D74F93A6142}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{208103E8-707C-4A3C-A135-668B704FDFCE}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{958EF457-2D5E-4FCE-9D49-96479D289517}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{89281832-930A-42B9-BF8D-99BCA790AE49}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C4E2F052-AC12-4D2D-B390-0F81C790FEBA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{AE17E1C3-96A7-486A-9ACF-DE1BB8BF9AAA}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [UDP Query User{07D65D27-6C38-425C-A61C-631B7250E22C}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [TCP Query User{5CE1E5F5-A3A0-4F1D-B57A-57DD8C2F0CA5}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe No File
FirewallRules: [UDP Query User{66EDF803-6279-4014-B0ED-A17592AA88E0}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe No File
FirewallRules: [TCP Query User{6A2F8193-C0B5-4883-A50F-97A3FB023CFE}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe No File
FirewallRules: [UDP Query User{67E833A5-ED03-4C72-B458-1EB7AE5BF74B}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe No File
FirewallRules: [TCP Query User{912E7446-9068-49F4-9A6B-7B9165A69EA8}F:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Block) F:\program files (x86)\diablo iii\x64\diablo iii64.exe No File
FirewallRules: [UDP Query User{9BC97502-B126-4A7E-861A-72AF65D380A8}F:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Block) F:\program files (x86)\diablo iii\x64\diablo iii64.exe No File
FirewallRules: [{FFE8D1A7-30C9-4559-B973-C78137D2CA6B}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{94EA2475-27CF-4B88-80D3-8741570D47B9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\For Honor Open Beta\forhonor.exe (Blue Byte GmbH -> Ubisoft)
FirewallRules: [{26BE49B9-7A60-4054-9EF1-A6D3327EF645}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\For Honor Open Beta\forhonor.exe (Blue Byte GmbH -> Ubisoft)
FirewallRules: [TCP Query User{D7A3574E-9AA7-4D54-82F2-FE458591B551}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [UDP Query User{D35D7E93-6FA3-4B03-9A87-83A97389E84C}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [TCP Query User{874E3214-D56E-463B-8840-3B0C257EEE87}F:\filmy\search_tool_win_xp\searchtool.exe] => (Allow) F:\filmy\search_tool_win_xp\searchtool.exe No File
FirewallRules: [UDP Query User{D0F79A5B-0D88-4073-BFB1-C4220B5549CE}F:\filmy\search_tool_win_xp\searchtool.exe] => (Allow) F:\filmy\search_tool_win_xp\searchtool.exe No File
FirewallRules: [TCP Query User{0F2FD01A-1A4B-4FBE-ACBC-B84F9A3DC462}C:\users\lukas\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\lukas\appdata\local\skypeplugin\pluginhost.exe (Microsoft Corporation -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{4129F8ED-0F5C-4199-937A-4E4C2804F230}C:\users\lukas\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\lukas\appdata\local\skypeplugin\pluginhost.exe (Microsoft Corporation -> Skype Technologies S.A.)
FirewallRules: [{06AAB67F-D7A5-42D7-857E-4CA5F8B70B29}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{505521F3-1C64-430C-B5BB-51A319E628FE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{68AEACA6-E17D-43DA-A82E-86BCE6DFE2DF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{254ABB7F-4B65-4FF3-833C-6CCD9B21161D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{96386857-DD26-4E60-A873-DBD070CC7483}F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe] => (Block) F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe No File
FirewallRules: [UDP Query User{1F44A342-9A6B-4023-ADA8-494D9D4765E7}F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe] => (Block) F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe No File
FirewallRules: [TCP Query User{7ECEE922-8938-4821-BD5B-D9D82254E135}F:\hry\far cry 4\bin\farcry4.exe] => (Allow) F:\hry\far cry 4\bin\farcry4.exe No File
FirewallRules: [UDP Query User{0E663628-B912-4F04-AF44-0E8053FE27A4}F:\hry\far cry 4\bin\farcry4.exe] => (Allow) F:\hry\far cry 4\bin\farcry4.exe No File
FirewallRules: [TCP Query User{B74490D4-05D2-4AB0-BD77-2A277BA7545F}C:\program files\litecoin\litecoin-qt.exe] => (Allow) C:\program files\litecoin\litecoin-qt.exe No File
FirewallRules: [UDP Query User{143DC50B-219C-4114-8E8F-E8BC0D6B35DE}C:\program files\litecoin\litecoin-qt.exe] => (Allow) C:\program files\litecoin\litecoin-qt.exe No File
FirewallRules: [TCP Query User{15440FDB-4B6F-48A1-824C-7A84E96D09B6}C:\program files\bitcoin\bitcoin-qt.exe] => (Allow) C:\program files\bitcoin\bitcoin-qt.exe No File
FirewallRules: [UDP Query User{4E691515-6FC1-43C8-81C6-DBB1B7F8F75B}C:\program files\bitcoin\bitcoin-qt.exe] => (Allow) C:\program files\bitcoin\bitcoin-qt.exe No File
FirewallRules: [TCP Query User{4C07B869-37F5-4F44-907E-BC68ED984A26}H:\gog games\railway empire\railwayempire.exe] => (Allow) H:\gog games\railway empire\railwayempire.exe No File
FirewallRules: [UDP Query User{5673BEC2-A4F2-4F0A-AC2D-707C1F07870C}H:\gog games\railway empire\railwayempire.exe] => (Allow) H:\gog games\railway empire\railwayempire.exe No File
FirewallRules: [{576DE4BB-9B0D-46E5-B361-162018E2F13B}] => (Allow) H:\Program Files (x86)\SteamLibrary\steamapps\common\star conflict\game.exe No File
FirewallRules: [{3E6BAF4B-19DA-4C54-833F-FD154DE90925}] => (Allow) H:\Program Files (x86)\SteamLibrary\steamapps\common\star conflict\game.exe No File
FirewallRules: [TCP Query User{5F82500E-6BD6-43D4-B594-9119D5ADEB5D}H:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) H:\games\kingdom come deliverance\bin\win64\kingdomcome.exe No File
FirewallRules: [UDP Query User{E8261C4A-5748-4FAB-BFB7-57C014C2F580}H:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) H:\games\kingdom come deliverance\bin\win64\kingdomcome.exe No File
FirewallRules: [TCP Query User{E5CD9A1D-24D7-4441-B040-27E43543696C}G:\games\mashinky cz\mashinky.exe] => (Allow) G:\games\mashinky cz\mashinky.exe () [File not signed]
FirewallRules: [UDP Query User{84A62654-AFF3-45C8-9D70-C7B365005D71}G:\games\mashinky cz\mashinky.exe] => (Allow) G:\games\mashinky cz\mashinky.exe () [File not signed]
FirewallRules: [TCP Query User{6D107467-B449-45B3-AD0A-7B0B9A02B35B}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\x64\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\x64\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [UDP Query User{6B19A30C-91C7-4D6B-8D56-E5AD2E5172B4}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\x64\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\x64\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [TCP Query User{AB3BBCB7-7124-40F2-BE36-1C87B476BE4F}C:\users\lukas\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\lukas\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{36E34ABA-3C61-45E6-9265-BBA64D4F6C2E}C:\users\lukas\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\lukas\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{61B0CD2F-CAC9-4E10-999A-A91DD50F5552}] => (Allow) G:\SteamLibrary\steamapps\common\Endzones - A World Apart\Endzone.exe () [File not signed]
FirewallRules: [{5F18D795-8459-4DB4-9F44-E13CB2AED92A}] => (Allow) G:\SteamLibrary\steamapps\common\Endzones - A World Apart\Endzone.exe () [File not signed]
FirewallRules: [TCP Query User{4E1C0031-3ED0-4B4B-B4D3-6640B82F56E3}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [UDP Query User{897C1B2F-FB44-4DBF-81FB-07E72328BA3E}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{7922E90E-57C5-4C9D-A673-28D1EC6DEEB0}] => (Allow) G:\SteamLibrary\steamapps\common\Stellaris\dowser.exe (Paradox Interactive Ab (Publ) -> )
FirewallRules: [{1B99443E-952A-4F8E-94D6-9BDC34CC5422}] => (Allow) G:\SteamLibrary\steamapps\common\Stellaris\dowser.exe (Paradox Interactive Ab (Publ) -> )
FirewallRules: [{8A8A65CC-B3E4-4A4E-8482-40D0F169D6CC}] => (Allow) G:\SteamLibrary\steamapps\common\Zenimax Online\zosSteamStarter.exe (Zenimax Media Inc. -> Zenimax Online Studios)
FirewallRules: [{57A030C0-807D-4DF6-AE78-B4832846CAB4}] => (Allow) G:\SteamLibrary\steamapps\common\Zenimax Online\zosSteamStarter.exe (Zenimax Media Inc. -> Zenimax Online Studios)
FirewallRules: [{C8C78BE7-4AF9-4931-B9C6-56963EB5E415}] => (Allow) G:\SteamLibrary\steamapps\common\Supremacy 1914\Supremacy 1914.exe (Bytro Labs GmbH) [File not signed]
FirewallRules: [{8BFB9BE4-79D9-433D-87D7-4FEF9442B445}] => (Allow) G:\SteamLibrary\steamapps\common\Supremacy 1914\Supremacy 1914.exe (Bytro Labs GmbH) [File not signed]
FirewallRules: [{7F5E1994-A72A-4552-97D4-8D816B0C88C4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{0BACCDA3-6AEB-43C4-A2BB-CB4262651B24}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{1C3416AD-E018-4E73-A3DE-6FBED960A18F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{70BE25F1-85CE-40E6-87F1-DE30A87EBEB3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{2A12E2E9-E64A-4EFD-9232-3FEC2F064C3B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

02-05-2020 12:33:05 Windows Update

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (05/06/2020 06:57:07 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6868,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (05/06/2020 06:35:48 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (11444,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (05/06/2020 06:22:59 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6600,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (05/06/2020 05:44:04 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3324,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (05/06/2020 05:30:04 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (11492,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (05/06/2020 05:23:23 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8408,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (05/06/2020 05:12:26 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7184,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (05/06/2020 05:06:50 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (12936,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).


System errors:
=============
Error: (05/06/2020 06:51:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba %1!s! Update (avg) neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (05/06/2020 06:48:57 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Origin Web Helper Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (05/06/2020 06:48:57 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba McAfee WebAdvisor byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1 milisekund: Restartovat službu.

Error: (05/06/2020 06:48:57 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA Telemetry Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1000 milisekund: Restartovat službu.

Error: (05/06/2020 06:48:57 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba PnkBstrA byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (05/06/2020 06:48:57 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA LocalSystem Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.

Error: (05/06/2020 06:48:57 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba BBUpdate byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (05/06/2020 06:48:57 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba iPod Service byla neočekávaně ukončena. Tento stav nastal již 1krát.


Windows Defender:
===================================
Date: 2020-05-06 17:29:17.078
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {22857A39-5BF6-417B-B9C5-7040DA73F2FF}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-04-30 16:59:31.546
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {6A344548-27A7-4DE2-A240-27295ACCACDE}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-04-07 17:09:33.987
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {3865D8A0-24BF-433D-AC2C-54A73F247589}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-04-07 15:10:20.443
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {6B4E1CF6-319D-4A61-9FB2-BA85E1220DC8}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-04-07 13:22:45.983
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {304947CD-CD01-4BF4-8DA8-F8913B6EB0E8}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-05-06 16:34:38.845
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.315.83.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17000.7
Kód chyby: 0x8050a003
Popis chyby: Balíček neobsahuje aktuální soubor definic pro tento program. Další informace naleznete v nápovědě a podpoře.

Date: 2020-05-06 16:34:38.845
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.315.83.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17000.7
Kód chyby: 0x8050a003
Popis chyby: Balíček neobsahuje aktuální soubor definic pro tento program. Další informace naleznete v nápovědě a podpoře.

Date: 2020-05-06 16:34:38.844
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.315.83.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17000.7
Kód chyby: 0x8050a003
Popis chyby: Balíček neobsahuje aktuální soubor definic pro tento program. Další informace naleznete v nápovědě a podpoře.

Date: 2020-05-06 16:32:43.362
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.313.2769.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17000.7
Kód chyby: 0x80240016
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2020-04-07 19:20:03.032
Description:
Funkce Ochrana v reálném čase u prohledávání Antivirová ochrana v programu Windows Defender zjistila chybu a došlo k jejímu selhání.
Funkce: Při přístupu
Kód chyby: 0x80004005
Popis chyby: Nespecifikovaná chyba
Důvod: Ovladač filtru přeskočil prohledávání položek a je v režimu průchodu. Příčinou může být nízký stav prostředků.

CodeIntegrity:
===================================

Date: 2020-03-25 18:01:31.675
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-25 18:01:31.257
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-25 18:01:31.183
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-25 17:58:50.283
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-25 17:58:50.024
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-25 17:58:49.918
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-25 17:58:49.827
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-25 17:58:49.672
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. V22.2 12/16/2014
Motherboard: MSI 970 GAMING (MS-7693)
Processor: AMD FX(tm)-6300 Six-Core Processor
Percentage of memory in use: 46%
Total physical RAM: 8140.3 MB
Available physical RAM: 4362.13 MB
Total Virtual: 16332.3 MB
Available Virtual: 11711.64 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:223.03 GB) (Free:26.39 GB) NTFS
Drive g: (Nový svazek) (Fixed) (Total:1863.01 GB) (Free:744.74 GB) NTFS

\\?\Volume{abf0bd6b-aeee-11e4-85dd-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.05 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 2FCFA4CA)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=223 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 7F220C19)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

lukass9
Návštěvník
Návštěvník
Příspěvky: 18
Registrován: 21 bře 2017 09:43

Re: vypíná se mi pc

#10 Příspěvek od lukass9 »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03-05-2020
Ran by Lukas (administrator) on LUKAS-PC (MSI MS-7693) (06-05-2020 19:09:15)
Running from G:\
Loaded Profiles: Lukas (Available Profiles: Lukas)
Platform: Windows 10 Home Version 1903 18362.720 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Epic Games Inc. -> Epic Games, Inc.) G:\Epic Games\Launcher\Engine\Binaries\Win64\UnrealCEFSubProcess.exe
(Epic Games Inc. -> Epic Games, Inc.) G:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Gaijin Network LTD -> Gaijin Entertainment) C:\Users\Lukas\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe
(Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Malwarebytes Inc -> Malwarebytes) G:\AdwCleaner.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\browserhost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation -> Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.EXE
(Microsoft Corporation -> Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.EXE
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12004.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <7>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NZXT, Inc. -> ) C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\rust-cam\dist\native\target\release\service.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Qualcomm Atheros) [File not signed] C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
(Shanghai Microvirt Software Technology Co., Ltd. -> ) C:\Program Files (x86)\Microvirt\MEmu\MemuService.exe
(TeamViewer Germany GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer Germany GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-05-07] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [Sound Blaster Cinema 2] => C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe [1440768 2014-02-24] (Creative Technology Ltd) [File not signed]
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKLM\...\Policies\Explorer: [NoInstrumentation] 1
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-05-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [EpicGamesLauncher] => G:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [31757200 2020-05-06] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [Gaijin.Net Updater] => C:\Users\Lukas\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2361600 2019-12-02] (Gaijin Network LTD -> Gaijin Entertainment)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [NZXT.CAM] => C:\Program Files\NZXT CAM\NZXT CAM.exe [97671824 2020-04-01] (NZXT, Inc. -> NZXT, Inc.)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Policies\system: [Shell] <==== ATTENTION
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\MountPoints2: {d62cd0d9-d38d-11e7-a610-d8cb8a13fec7} - "F:\setup.exe"
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\MountPoints2: {def9fec5-a11b-11e7-a5f6-d8cb8a13fec7} - "E:\setup.exe"
HKLM\...\Providers\l9olaieg: C:\Program Files (x86)\Khagetheputain Renew\local64spl.dll <==== ATTENTION
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.129\Installer\chrmstp.exe [2020-04-30] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MobileGo Service.lnk [2017-12-18]
ShortcutTarget: MobileGo Service.lnk -> C:\Program Files (x86)\Wondershare\MobileGo\MobileGoService.exe (Wondershare Technology Co.,Ltd -> Wondershare)
Startup: C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2018-02-14]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\Lukas\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook, Inc. -> Facebook) [File not signed]
Startup: C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\tmp8B80.tmp.vbs [2015-11-26] ()
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00C68D1E-0792-4737-ABE6-11A23C0E148C} - System32\Tasks\GoogleUpdateTaskMachineUA1d08feffd8759fd => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {021AA5EF-1063-45EB-907E-BFA16744AEC2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {057F0FDB-4D54-433E-B0E7-DA7189E9A45D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [1540544 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {078F5A49-EB5F-47D1-8AAC-D7DB43920F91} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {08398CB9-4B31-4A24-8B44-EB9BB625BA92} - System32\Tasks\GoogleUpdateTaskMachineUA1d0bf8240b41a2d => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {0A3ADA6A-7D6B-48BE-B3EE-7CAFCB01D806} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {0AB50D89-FFF4-45DA-A27F-F78224C73B18} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {0DCD5721-E663-4739-8799-D538A118462C} - System32\Tasks\Khagetheputain Renew => C:\Program Files (x86)\Hubishrwoy\danudle.exe
Task: {0DF81F83-AAE4-4D9D-AD21-1C085FB4F3CD} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0F2160CC-1C14-402D-AD23-A12D04C235E8} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {14141500-8981-4403-B402-EA338C0793AC} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {166C21CD-A7AE-44C6-9267-F23A9BD448EF} - System32\Tasks\GoogleUpdateTaskMachineUA1d0f1cdabb0a60b => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {1AC7B678-A9D3-4A29-92DC-D8F4EBF554F7} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {1CEA203A-C150-4652-AABB-7ACA3A05E166} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1D16E514-8B2B-401C-A57A-94F5BDE2C6C6} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [947136 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1E30E266-381A-446D-8258-14AA8981822C} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {1FD4545D-449E-4498-A28F-6A70BBB6E717} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {21B0555E-5B6E-4A33-8B94-554BA363328C} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2855507F-5693-4716-8CFD-A9C7EC3608E1} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {2BE35E19-B156-4AC3-A010-122DA9065272} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {300BD167-058E-4DF4-A7BE-2E53BB8E2972} - System32\Tasks\Opera scheduled Autoupdate 1447089322 => C:\Program Files (x86)\Opera\launcher.exe [1139800 2018-09-13] (Opera Software AS -> Opera Software)
Task: {303E7458-BC1B-4A0E-88AA-9DBF253DB047} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {31BE7BED-2F8C-44D1-BD22-11E99C2B41D6} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {331DDBCD-B400-4A52-8AA3-1827C9BCD258} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {39258C28-7A3C-4300-A3DC-4E16322E23F7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {3AEA29CC-B5AD-4AD2-BC6D-909CC4F0BB1C} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {3D4E9D09-C002-4945-AC40-392F521B8371} - System32\Tasks\Milimili => C:\Program Files (x86)\MIO\MIO.exe [282168 2017-05-17] (Tencent Technology(Shenzhen) Company Limited -> ) <==== ATTENTION
Task: {41E30C1E-4367-4961-83E7-F77ACA6B8A7D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {44043342-7AEF-45A6-BE72-1C5E0973F9B7} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [651200 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4767975C-6E0E-4FAA-8A88-B2977101B326} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {478A9481-F90E-4304-A5F6-68A3C6FACA5E} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {480DC16E-4D7A-4F6C-996A-A6B0C6BAA785} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {4D624449-4D60-4D19-9387-2E5BF8C036BD} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {50FC92D3-BD00-47CB-A315-A89F04ED71E1} - System32\Tasks\GoogleUpdateTaskMachineCore1d0f1cdab88d226 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {56B0A61C-507F-433D-954C-C486D2189B72} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {5A1966A9-CEB3-41A9-AE16-6BC5ABAD319F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {614E6F12-9484-46EE-9A73-6D7224A2D4B4} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [436160 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6482D3E7-3339-4124-B13F-E53C041CFA06} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {656F2A16-EFDE-4862-8AFD-D8B5E81C281C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {65F86154-AB5D-4337-8D93-BAF90FA4D306} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1670432 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {663E99B4-CA4D-4E7C-91C1-EABB63BABB64} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {66F06E9E-DF0A-433D-83B5-C509AEC75A95} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {6703186A-0465-4C3E-A08A-443207902793} - System32\Tasks\GoogleUpdateTaskMachineUA1d12ebc6be85ef3 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {69D2C974-CF78-415C-8191-C7DC384676E6} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7910D104-F17E-49AB-8776-6C77A50BAC04} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2018-09-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {7A837A76-486D-42A1-97E8-360C058D8954} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {7ADD9F03-5F2F-41C7-8737-009E296D65AD} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
Task: {7C8C0D84-7FDF-4498-A416-73AD7EA30569} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {7DB680EE-23B1-48F0-9859-CDA2BEC008FB} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2227488 2015-12-09] (Microsoft Corporation -> Microsoft)
Task: {82468688-DA9F-4710-B706-424D84B066D0} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {85175350-6DD5-4C07-ABAB-38D7F203636C} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {85780FD9-7FC6-440E-B945-27134F55C731} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {897F1BF5-3093-47B4-B81B-DCD2D9897417} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_108_Plugin.exe [1454080 2018-09-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {8A047119-D9E5-477C-B68D-D5DA2A5D8150} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {973F4372-6F08-4918-8421-4E9AB460F9B7} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {99A527D5-9275-472A-9145-E6AE919E91E4} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {9AE63F0F-455B-4671-B91D-FC96318A4D32} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2212128 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {9F51F8E6-34D8-4E87-AE46-DCC8FF65A6CA} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {AC1769AE-9049-4FAA-BCA1-EF24AE7E0B26} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [651200 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B50B0A88-6F32-4525-A344-20D1804D3764} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {B59AA759-2158-4CEA-A134-4EFB287168F1} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {B65417F6-37D2-4862-84FE-ADD7DD7BA31B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {BBC89AE6-9F6E-45EF-8F63-55A8B55BC2DB} - System32\Tasks\{1A6294B2-88B2-4000-982C-50EE66BDD741} => C:\WINDOWS\system32\pcalua.exe -a "F:\intuix_cd\Intuix CD\setup.exe" -d "F:\intuix_cd\Intuix CD"
Task: {C5110754-6125-4583-93E9-90A2E8B93F9B} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1670432 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {C68AFC55-BC6B-4932-8422-FDCAE9D0228E} - System32\Tasks\GoogleUpdateTaskMachineCore1d0e311c2edf531 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {C79F4485-F979-4998-A686-7527DFE38288} - System32\Tasks\{E9D3D202-8BE7-4283-9C8E-DB1ADD4A305D} => C:\Windows\system32\pcalua.exe -a K:\_AUTORUN\AUTORUN.EXE -d K:\
Task: {C8440877-31C2-4D5A-B13D-B78D1A784C64} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {CE403273-6ABC-4EDB-B60E-418EE36DE211} - System32\Tasks\{D082DED7-9F54-4072-B23C-9015685838FF} => C:\WINDOWS\system32\pcalua.exe -a "F:\Program Files (x86)\Mafia I - The City of Lost Heaven\Game.exe" -d "F:\Program Files (x86)\Mafia I - The City of Lost Heaven"
Task: {D0BB8582-D346-44C5-8C7E-6D22291C0569} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {D6CA3431-FF1A-4CB8-9146-6B78F0BBF8E6} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {D6F88AA6-B7B7-4C2D-BFD8-16DFDE83FA22} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2212128 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {D99CF7B4-C34D-47D3-9CD0-C486F7CE1434} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DDDA9FC3-1F1A-4C8C-A95A-47E751E16E56} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DE10E964-9B25-4F6E-9EDC-CD783AF08FE4} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [722880 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DEE2560C-3FA2-499E-8DAF-184D35357BCB} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {E140E31A-0C7F-4FFA-89E9-C6D582D94CC7} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [722880 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E55F4541-8AA4-486D-A31F-8D7584FF968D} - System32\Tasks\GoogleUpdateTaskMachineCore1d08feffd709d58 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {E7DB25D7-9344-4C16-B621-DE4DA8BD66B4} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {E81AB3AC-3816-4EBE-A8D5-0C27174B539B} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E95DA03C-4020-4063-B2FC-DF9CC9D202BD} - System32\Tasks\GoogleUpdateTaskMachineCore1d0bf824092886a => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {EF259B98-F640-49BA-8E8A-3ACAE1C31C5F} - System32\Tasks\{91840007-F1F0-480C-8352-3A5360385E8C} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Railroad Tycoon 3\UNINSTX.EXE"
Task: {EF7CE8FE-FF1D-4CE4-98B5-AEEE09AF4843} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {F27343BC-E4E8-484D-875C-05719CB62CA4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {FD539483-AC5F-43E5-A5A4-CBB51614FEBE} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {FD77CB7B-62D4-4956-841B-D5C6D9E7F315} - System32\Tasks\GoogleUpdateTaskMachineCore1d12ebc6bce6df2 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d08feffd709d58.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0bf824092886a.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0e311c2edf531.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0f1cdab88d226.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d08feffd8759fd.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0bf8240b41a2d.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0f1cdabb0a60b.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 127.0.0.1 validation.sls.microsoft.com
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{0c602eed-9ac2-4542-ac7f-b6924786abc0}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{65eee1d5-a9d8-425b-8d5e-4166b6418b14}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{9226fc84-2a17-4d77-8b05-e13aee4900e5}: [DhcpNameServer] 192.168.0.1 0.0.0.0

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617912&ResetID=132151946241391219&GUID=09B1574E-8886-4A52-9C34-8AE3E62B20AA
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL =
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE00
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {0EDBD3F4-E096-4846-B9DE-D691BA3103C6} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {1C50BAAC-C45F-46AA-B7B2-79617F444A02} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {21B2B49F-F4DA-49CE-A9FC-C3EDE1E86455} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {431AAD9A-2776-4129-A644-3F9F151176C4} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {76DEFAE6-09B2-40B2-8F8A-5A6A5D5CE4EB} URL = hxxps://search.yahoo.com/search/?toggle=1&cop=mss&ei=UTF-8&fr=vmn&type=auslog_yaapp6_adw_ch&p={searchTerms}
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {937BFC8E-BC6F-43FE-8828-A0617CFC8708} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {9D8DD67D-8298-4DF4-BD42-61842EC96EEE} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {AEBA1B1E-35FE-4762-AC9C-6B81DE0B8AF7} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {D742AC74-BBC6-48E1-A0C2-E8A528458B67} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_13415
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: No Name -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> No File
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2020-04-21] (McAfee, LLC -> McAfee, LLC)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-04] (Google Inc -> Google Inc.)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2020-04-21] (McAfee, LLC -> McAfee, LLC)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation -> Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation -> Microsoft Corporation.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-04] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)

Edge:
======
DownloadDir: C:\Users\Lukas\Downloads

FireFox:
========
FF DefaultProfile: ixqmgx8f.default
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\naweriweentcofise\Profiles\ixqmgx8f.default\Profiles\ixqmgx8f.default [not found] <==== ATTENTION
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default [2020-05-06]
FF DownloadDir: G:
FF Homepage: Mozilla\Firefox\Profiles\ixqmgx8f.default -> hxxps://www.google.com/
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\Extensions\cs@dictionaries.addons.mozilla.org.xpi [2019-10-28]
FF Extension: (Czech (CZ) Language Pack) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\Extensions\langpack-cs@firefox.mozilla.org.xpi [2020-03-24]
FF Extension: (No Name) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [not found]
FF Extension: (No Name) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\extensions\sko-extension@firma.seznam.cz [not found]
FF Extension: (No Name) - C:\Program Files\McAfee\WebAdvisore10ssaffplg.xpi [not found]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\searchplugins\bing-.xml [2017-02-05]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\searchplugins\l9olaieg.xml [2017-02-27]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\searchplugins\startpageing123.xml [2017-03-27]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2020-04-21] [UpdateUrl:hxxps://www.siteadvisor.com/waffinstall/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_31_0_0_108.dll [2018-09-12] (Adobe Systems Incorporated -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_108.dll [2018-09-12] (Adobe Systems Incorporated -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-03-06] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-676012942-2397387924-1880445482-1000: SkypePlugin -> C:\Users\Lukas\AppData\Local\SkypePlugin\7.31.0.56\npGatewayNpapi.dll [2017-02-03] (Microsoft Corporation -> Skype Technologies S.A.)
FF Plugin HKU\S-1-5-21-676012942-2397387924-1880445482-1000: SkypePlugin64 -> C:\Users\Lukas\AppData\Local\SkypePlugin\7.31.0.56\npGatewayNpapi-x64.dll [2017-02-03] (Microsoft Corporation -> Skype Technologies S.A.)

Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR Profile: C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2020-05-06] <==== ATTENTION
CHR DownloadDir: E:\
CHR Notifications: ChromeDefaultData -> hxxps://web.skype.com; hxxps://www.facebook.com
CHR HomePage: ChromeDefaultData -> hxxps://www.google.com/
CHR StartupUrls: ChromeDefaultData -> "hxxps://www.google.com/"
CHR DefaultSearchURL: ChromeDefaultData -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=E210CZ91105G0&p={searchTerms}
CHR DefaultSearchKeyword: ChromeDefaultData -> mcafee
CHR Extension: (Prezentace) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-10-11]
CHR Extension: (Dokumenty) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2019-10-11]
CHR Extension: (Disk Google) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-07]
CHR Extension: (YouTube) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Vyhledávání Google) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-07]
CHR Extension: (Adobe Acrobat) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-03-17]
CHR Extension: (MSN Homepage & Bing Search Engine) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2020-01-14]
CHR Extension: (Tabulky) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-10-11]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2020-05-06]
CHR Extension: (Dokumenty Google offline) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-06]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-01-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-11]
CHR Extension: (Gmail) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-10-11]
CHR Extension: (Chrome Media Router) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-06]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd]
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\StartMenuInternet\ChromeHTML: -> C:\Program Files (x86)\Footjane\Application\chrome.exe <==== ATTENTION

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-05-04] (Advanced Micro Devices, Inc.) [File not signed]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-04-29] (Apple Inc. -> Apple Inc.)
R2 CAMService; C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\rust-cam\dist\native\target\release\service.exe [553600 2020-04-01] (NZXT, Inc. -> )
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291904 2017-08-14] (Disc Soft Ltd -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [392976 2017-02-10] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2018-12-12] (Huawei Technologies Co., Ltd. -> ) [File not signed]
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [916712 2020-04-21] (McAfee, LLC -> McAfee, LLC)
R2 MEmuSVC; C:\Program Files (x86)\Microvirt\MEmu\MemuService.exe [85304 2019-07-02] (Shanghai Microvirt Software Technology Co., Ltd. -> )
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2475312 2020-01-15] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3393848 2020-01-15] (Electronic Arts, Inc. -> Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-03-15] (Even Balance, Inc. -> )
R2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [344576 2014-01-22] (Qualcomm Atheros) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10823184 2020-04-20] (TeamViewer Germany GmbH -> TeamViewer GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\NisSrv.exe [3304992 2020-05-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MsMpEng.exe [103376 2020-05-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WirelessKB850NotificationService; C:\WINDOWS\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe [473312 2017-03-20] (Wondershare Technology Co.,Ltd -> Wondershare)
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\MobileGo\DriverInstall.exe [101152 2017-06-01] (Wondershare Technology Co.,Ltd -> Wondershare)
S2 avg; "C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe" /svc [X]
S3 avgm; "C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe" /medsvc [X]
R2 NvContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
S3 NvContainerNetworkService; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdiox64; C:\WINDOWS\System32\drivers\amdiox64.sys [46136 2010-02-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [79488 2011-04-15] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [40064 2011-04-15] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [55936 2011-11-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R1 BfLwf; C:\WINDOWS\system32\DRIVERS\bflwfx64.sys [80080 2013-11-08] (Qualcomm Atheros, Inc. -> Qualcomm Atheros, Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-11-07] (Microsoft Corporation) [File not signed]
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-02-27] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-02-27] (Disc Soft Ltd -> Disc Soft Ltd)
R3 KillerEth; C:\WINDOWS\System32\drivers\e2xw10x64.sys [145920 2019-03-19] (Microsoft Windows -> Qualcomm Atheros, Inc.)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-02-07] (Malwarebytes Corporation -> Malwarebytes Corporation)
R1 MEmuDrv; C:\WINDOWS\system32\DRIVERS\MEmuDrv.sys [319192 2019-09-21] (Shanghai Microvirt Software Technology Co., Ltd. -> Maiwei Corporation)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2018-05-04] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_db678424d2641c3d\nvlddmkm.sys [22094728 2019-10-04] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48064 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
R1 sbnetsys; C:\WINDOWS\system32\DRIVERS\sbnetsys.sys [44648 2015-04-17] (Mainline Net Holdings Limited -> NT Kernel Resources)
R3 usbfilter; C:\WINDOWS\system32\DRIVERS\usbfilter.sys [61464 2000-01-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45960 2020-05-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [394680 2020-05-02] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64944 2020-05-02] (Microsoft Windows -> Microsoft Corporation)
U3 aspnet_state; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-05-06 18:24 - 2020-05-06 18:24 - 000000013 _____ C:\Users\Lukas\Desktop\sleva samsung.txt
2020-05-06 18:23 - 2020-05-06 18:23 - 000000000 _____ C:\Users\Lukas\Desktop\Nový textový dokument.txt
2020-04-28 20:33 - 2020-04-28 20:33 - 000001040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk
2020-04-28 20:33 - 2020-04-28 20:33 - 000001028 _____ C:\Users\Public\Desktop\TeamViewer 12.lnk
2020-04-28 19:45 - 2020-04-28 19:45 - 000659332 _____ C:\WINDOWS\Minidump\042820-51984-01.dmp
2020-04-20 22:05 - 2020-04-20 22:05 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-04-20 22:05 - 2020-04-20 22:05 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-04-08 18:51 - 2020-04-08 18:51 - 000000222 _____ C:\Users\Lukas\Desktop\Supremacy 1914.url

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-05-06 19:09 - 2017-03-21 10:38 - 000000000 ____D C:\FRST
2020-05-06 18:55 - 2019-11-07 19:51 - 001781194 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-05-06 18:55 - 2019-03-19 13:55 - 000745534 _____ C:\WINDOWS\system32\perfh005.dat
2020-05-06 18:55 - 2019-03-19 13:55 - 000160026 _____ C:\WINDOWS\system32\perfc005.dat
2020-05-06 18:55 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-05-06 18:50 - 2016-11-18 12:12 - 000000000 ____D C:\Users\Lukas\AppData\LocalLow\Mozilla
2020-05-06 18:49 - 2019-11-07 20:00 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-05-06 18:49 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-05-06 18:49 - 2019-03-19 06:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-05-06 18:49 - 2017-09-06 14:29 - 000000000 ____D C:\ProgramData\NVIDIA
2020-05-06 18:48 - 2017-02-25 12:45 - 000000000 ____D C:\Users\Lukas\AppData\Roaming\Easeware
2020-05-06 18:48 - 2017-02-25 12:45 - 000000000 ____D C:\Program Files\Easeware
2020-05-06 18:15 - 2019-11-07 19:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-05-06 16:39 - 2019-09-26 22:50 - 000000000 ____D C:\Users\Lukas\Desktop\rozpočty
2020-05-06 16:28 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-05-06 16:22 - 2020-01-26 12:21 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-05-02 12:44 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-05-02 12:31 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-05-02 10:26 - 2018-03-04 10:30 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-04-30 16:30 - 2015-02-07 19:44 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-04-30 16:30 - 2015-02-07 19:44 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-04-28 20:33 - 2017-02-24 10:58 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-04-28 20:03 - 2018-05-23 08:35 - 000000000 ____D C:\Users\Lukas\AppData\Local\PlaceholderTileLogoFolder
2020-04-28 19:45 - 2019-11-14 20:01 - 000000000 ____D C:\WINDOWS\Minidump
2020-04-20 20:53 - 2015-02-08 18:51 - 000000000 ____D C:\Program Files (x86)\Steam
2020-04-20 18:47 - 2019-11-07 19:51 - 000000000 ____D C:\Users\Lukas
2020-04-20 16:46 - 2019-11-07 20:00 - 000003364 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-676012942-2397387924-1880445482-1000
2020-04-20 16:46 - 2019-11-07 19:51 - 000002399 _____ C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-04-20 16:46 - 2016-05-18 06:04 - 000000000 ___RD C:\Users\Lukas\OneDrive
2020-04-16 10:26 - 2018-02-08 21:43 - 000000000 ____D C:\Users\Lukas\Desktop\vyuctovaní 2018
2020-04-12 11:40 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports

==================== Files in the root of some directories ========

2017-03-13 09:15 - 2017-05-11 20:36 - 000011188 _____ () C:\Program Files (x86)\metadata
2017-03-01 13:53 - 2017-03-01 13:53 - 000000046 _____ () C:\Users\Lukas\AppData\Roaming\Camdata.ini
2017-03-01 13:53 - 2017-03-01 13:53 - 000000408 _____ () C:\Users\Lukas\AppData\Roaming\CamLayout.ini
2017-03-01 13:53 - 2017-03-01 13:53 - 000000408 _____ () C:\Users\Lukas\AppData\Roaming\CamShapes.ini
2017-03-01 13:53 - 2017-03-01 13:53 - 000004536 _____ () C:\Users\Lukas\AppData\Roaming\CamStudio.cfg
2017-03-01 13:51 - 2017-03-01 13:51 - 000000096 _____ () C:\Users\Lukas\AppData\Roaming\version2.xml
2017-03-16 12:48 - 2017-03-16 12:48 - 000000000 _____ () C:\Users\Lukas\AppData\Local\Driver_LOM_8161Present.flag
2015-12-30 11:01 - 2019-12-30 23:02 - 000014560 _____ () C:\Users\Lukas\AppData\Local\FSDownloader.err
2015-12-30 11:01 - 2020-01-26 12:21 - 000001312 _____ () C:\Users\Lukas\AppData\Local\FSDownloader.nast
2020-03-29 14:28 - 2020-03-29 14:28 - 000000017 _____ () C:\Users\Lukas\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: vypíná se mi pc

#11 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Policies\system: [Shell] <==== ATTENTION
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\MountPoints2: {d62cd0d9-d38d-11e7-a610-d8cb8a13fec7} - "F:\setup.exe"
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\MountPoints2: {def9fec5-a11b-11e7-a5f6-d8cb8a13fec7} - "E:\setup.exe"
HKLM\...\Providers\l9olaieg: C:\Program Files (x86)\Khagetheputain Renew\local64spl.dll <==== ATTENTION
Startup: C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\tmp8B80.tmp.vbs [2015-11-26] ()
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {08398CB9-4B31-4A24-8B44-EB9BB625BA92} - System32\Tasks\GoogleUpdateTaskMachineUA1d0bf8240b41a2d => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {0A3ADA6A-7D6B-48BE-B3EE-7CAFCB01D806} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
ask: {166C21CD-A7AE-44C6-9267-F23A9BD448EF} - System32\Tasks\GoogleUpdateTaskMachineUA1d0f1cdabb0a60b => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {1AC7B678-A9D3-4A29-92DC-D8F4EBF554F7} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {1FD4545D-449E-4498-A28F-6A70BBB6E717} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {2855507F-5693-4716-8CFD-A9C7EC3608E1} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {31BE7BED-2F8C-44D1-BD22-11E99C2B41D6} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {39258C28-7A3C-4300-A3DC-4E16322E23F7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {3D4E9D09-C002-4945-AC40-392F521B8371} - System32\Tasks\Milimili => C:\Program Files (x86)\MIO\MIO.exe [282168 2017-05-17] (Tencent Technology(Shenzhen) Company Limited -> ) <==== ATTENTION
Task: {56B0A61C-507F-433D-954C-C486D2189B72} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {656F2A16-EFDE-4862-8AFD-D8B5E81C281C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {663E99B4-CA4D-4E7C-91C1-EABB63BABB64} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {6703186A-0465-4C3E-A08A-443207902793} - System32\Tasks\GoogleUpdateTaskMachineUA1d12ebc6be85ef3 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {85175350-6DD5-4C07-ABAB-38D7F203636C} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {B59AA759-2158-4CEA-A134-4EFB287168F1} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {B65417F6-37D2-4862-84FE-ADD7DD7BA31B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {BBC89AE6-9F6E-45EF-8F63-55A8B55BC2DB} - System32\Tasks\{1A6294B2-88B2-4000-982C-50EE66BDD741} => C:\WINDOWS\system32\pcalua.exe -a "F:\intuix_cd\Intuix CD\setup.exe" -d "F:\intuix_cd\Intuix CD"
Task: {C79F4485-F979-4998-A686-7527DFE38288} - System32\Tasks\{E9D3D202-8BE7-4283-9C8E-DB1ADD4A305D} => C:\Windows\system32\pcalua.exe -a K:\_AUTORUN\AUTORUN.EXE -d K:\
Task: {D6CA3431-FF1A-4CB8-9146-6B78F0BBF8E6} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {E55F4541-8AA4-486D-A31F-8D7584FF968D} - System32\Tasks\GoogleUpdateTaskMachineCore1d08feffd709d58 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {E7DB25D7-9344-4C16-B621-DE4DA8BD66B4} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {EF259B98-F640-49BA-8E8A-3ACAE1C31C5F} - System32\Tasks\{91840007-F1F0-480C-8352-3A5360385E8C} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Railroad Tycoon 3\UNINSTX.EXE"
Task: {EF7CE8FE-FF1D-4CE4-98B5-AEEE09AF4843} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {FD539483-AC5F-43E5-A5A4-CBB51614FEBE} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d08feffd709d58.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0bf824092886a.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0e311c2edf531.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0f1cdab88d226.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d08feffd8759fd.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0bf8240b41a2d.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0f1cdabb0a60b.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL =
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE00
BHO: No Name -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> No File
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-04] (Google Inc -> Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation -> Microsoft Corporation.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-04] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\naweriweentcofise\Profiles\ixqmgx8f.default\Profiles\ixqmgx8f.default [not found] <==== ATTENTION
FF Extension: (No Name) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [not found]
FF Extension: (No Name) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\extensions\sko-extension@firma.seznam.cz [not found]
FF Extension: (No Name) - C:\Program Files\McAfee\WebAdvisore10ssaffplg.xpi [not found]
CHR Profile: C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2020-05-06] <==== ATTENTION
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\StartMenuInternet\ChromeHTML: -> C:\Program Files (x86)\Footjane\Application\chrome.exe <==== ATTENTION
S3 avgm; "C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe" /medsvc [X]
U3 aspnet_state; no ImagePath
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\ChromeHTML: -> <==== ATTENTION
ShellExecuteHooks: No Name - {D7743BB4-F774-11E6-8881-64006A5CFC23} - -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0]
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
FirewallRules: [UDP Query User{180C8FD2-D3D5-4633-850D-3194AB6945DC}H:\program files\farming simulator 17\dedicatedserver.exe] => (Allow) H:\program files\farming simulator 17\dedicatedserver.exe No File
FirewallRules: [TCP Query User{2454C648-F7F9-42F1-81A4-769676D713AF}H:\program files\farming simulator 17\dedicatedserver.exe] => (Allow) H:\program files\farming simulator 17\dedicatedserver.exe No File
FirewallRules: [TCP Query User{5CE1E5F5-A3A0-4F1D-B57A-57DD8C2F0CA5}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe No File
FirewallRules: [UDP Query User{66EDF803-6279-4014-B0ED-A17592AA88E0}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe No File
FirewallRules: [TCP Query User{6A2F8193-C0B5-4883-A50F-97A3FB023CFE}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe No File
FirewallRules: [UDP Query User{67E833A5-ED03-4C72-B458-1EB7AE5BF74B}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe No File
FirewallRules: [TCP Query User{912E7446-9068-49F4-9A6B-7B9165A69EA8}F:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Block) F:\program files (x86)\diablo iii\x64\diablo iii64.exe No File
FirewallRules: [UDP Query User{9BC97502-B126-4A7E-861A-72AF65D380A8}F:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Block) F:\program files (x86)\diablo iii\x64\diablo iii64.exe No File
FirewallRules: [TCP Query User{874E3214-D56E-463B-8840-3B0C257EEE87}F:\filmy\search_tool_win_xp\searchtool.exe] => (Allow) F:\filmy\search_tool_win_xp\searchtool.exe No File
FirewallRules: [UDP Query User{D0F79A5B-0D88-4073-BFB1-C4220B5549CE}F:\filmy\search_tool_win_xp\searchtool.exe] => (Allow) F:\filmy\search_tool_win_xp\searchtool.exe No File
FirewallRules: [TCP Query User{96386857-DD26-4E60-A873-DBD070CC7483}F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe] => (Block) F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe No File
FirewallRules: [UDP Query User{1F44A342-9A6B-4023-ADA8-494D9D4765E7}F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe] => (Block) F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe No File
FirewallRules: [TCP Query User{7ECEE922-8938-4821-BD5B-D9D82254E135}F:\hry\far cry 4\bin\farcry4.exe] => (Allow) F:\hry\far cry 4\bin\farcry4.exe No File
FirewallRules: [UDP Query User{0E663628-B912-4F04-AF44-0E8053FE27A4}F:\hry\far cry 4\bin\farcry4.exe] => (Allow) F:\hry\far cry 4\bin\farcry4.exe No File
FirewallRules: [TCP Query User{B74490D4-05D2-4AB0-BD77-2A277BA7545F}C:\program files\litecoin\litecoin-qt.exe] => (Allow) C:\program files\litecoin\litecoin-qt.exe No File
FirewallRules: [UDP Query User{143DC50B-219C-4114-8E8F-E8BC0D6B35DE}C:\program files\litecoin\litecoin-qt.exe] => (Allow) C:\program files\litecoin\litecoin-qt.exe No File
FirewallRules: [TCP Query User{15440FDB-4B6F-48A1-824C-7A84E96D09B6}C:\program files\bitcoin\bitcoin-qt.exe] => (Allow) C:\program files\bitcoin\bitcoin-qt.exe No File
FirewallRules: [UDP Query User{4E691515-6FC1-43C8-81C6-DBB1B7F8F75B}C:\program files\bitcoin\bitcoin-qt.exe] => (Allow) C:\program files\bitcoin\bitcoin-qt.exe No File
FirewallRules: [TCP Query User{4C07B869-37F5-4F44-907E-BC68ED984A26}H:\gog games\railway empire\railwayempire.exe] => (Allow) H:\gog games\railway empire\railwayempire.exe No File
FirewallRules: [UDP Query User{5673BEC2-A4F2-4F0A-AC2D-707C1F07870C}H:\gog games\railway empire\railwayempire.exe] => (Allow) H:\gog games\railway empire\railwayempire.exe No File
FirewallRules: [{576DE4BB-9B0D-46E5-B361-162018E2F13B}] => (Allow) H:\Program Files (x86)\SteamLibrary\steamapps\common\star conflict\game.exe No File
FirewallRules: [{3E6BAF4B-19DA-4C54-833F-FD154DE90925}] => (Allow) H:\Program Files (x86)\SteamLibrary\steamapps\common\star conflict\game.exe No File

EmptyTemp:
End
Uložte do G:\ jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Odpovědět