problém s notebookem

[patarasa]

Dobrý den,

Před pár dny mi notebook začal dělat podivnou věc. Při zapínání (ještě před nastartováním winů) mi píše, že chce zkontrolovat paměti.. Odsouhlasím test, test proběhne (bez zjištění chyby) a naběhne windows. vše je ale nějaké divné. klávesnice nejede (musím zapojit externí), větrák jede neustále na plné otáčky (i když se notebook ani trochu nezahřívá), kurzor jede zpomaleně..

myslel jsem, že jde o selhání nějaké komponenty, ale poté jsem postřehl, že mi prohlížeč o stránkách jako slunečnice.cz píše, že jsou nebezpečné a nemohl jsme se tam dostat, nebo že v nouzovém režimu nemohu zapnout antivir.. Možná jde fakt o něco jiného než vir, ale nevím.. prosím tedy o pomoc.

Zkoušel jsem počítač skenovat nějakými freeware programy na odstranění malware a spyware atd.. semtam to našlo nějaké hrozby, ale po odstranění souborů nenastalo žádné zlepšení.

Na druhou stranu mi je divné, že by ten "vir" začal dělat neplechu už předtím, než načte windows.. Existují i takové viry???
Děkuji za názory.
Tady jsou logy:


Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 23.08.2018
Ran by ROTA (administrator) on ROTA-VAIO (29-08-2018 21:35:33)
Running from C:\Users\ROTA\Downloads
Loaded Profiles: ROTA (Available Profiles: ROTA)
Platform: Windows 7 Home Premium (X64) Language: Čeština (Česká republika)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(FSPro Labs) C:\Program Files\My Lockbox\mylbx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\avgui.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update 5\VAIOUpdt.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(NETGATE Technologies s.r.o.) C:\Program Files\NETGATE\Spy Emergency\SpyEmergencyHealth.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(ArcSoft, Inc.) C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSub.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\ielowutil.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(NETGATE Technologies s.r.o.) C:\Program Files\NETGATE\Spy Emergency\SpyEmergencyWow64.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10775584 2010-05-31] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2040352 2010-05-31] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2057000 2010-05-31] (Synaptics Incorporated)
HKLM\...\Run: [mylbx] => C:\Program Files\My Lockbox\mylbx.exe [2289952 2013-10-28] (FSPro Labs)
HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239192 2018-06-14] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [263232 2018-08-27] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2010-03-04] (Intel Corporation)
HKLM-x32\...\Run: [ISBMgr.exe] => C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [673136 2010-05-31] (Sony Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Programy\Adobe\Reader 9.0\Reader\Reader_sl.exe [35760 2009-12-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-02-09] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe [600928 2010-06-01] (Sony Corporation)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31072 2008-10-25] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696 2012-01-18] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2010-03-17] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [142120 2010-03-26] (Apple Inc.)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [98024 2018-08-17] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [6788032 2018-04-20] (Safer-Networking Ltd.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\Run: [Facebook Update] => "C:\Users\ROTA\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\Run: [SpyEmergency] => C:\Program Files\NETGATE\Spy Emergency\SpyEmergency.exe [3280864 2018-08-17] (NETGATE Technologies s.r.o.)
HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\MountPoints2: {72996940-bf8f-11e0-8bca-806e6f6e6963} - E:\autorun.exe
HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\MountPoints2: {a1ddee6c-d33c-11e1-bcaa-889ffae75e7d} - F:\AutoRun.exe
HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\MountPoints2: {abecd56d-c3c3-11e2-9731-78843ccc34cc} - F:\AutoRun.exe
HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\MountPoints2: {e022dfea-d333-11e1-baa2-889ffae75e7d} - F:\AutoRun.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2010-11-15]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 88.81.64.1 88.81.92.1
Tcpip\..\Interfaces\{3F24EAB0-8B7F-44A9-90BE-81F46A5F0FCF}: [DhcpNameServer] 88.81.64.1 88.81.92.1
Tcpip\..\Interfaces\{A3BBF46B-A159-4BF4-B070-5D52FC44EA02}: [DhcpNameServer] 213.46.172.36 192.168.1.254

Internet Explorer:
==================
HKU\S-1-5-21-1100568721-3396338888-504170877-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com/ig/redirectdomain?brand=SVEE&bmod=SVEE
HKU\S-1-5-21-1100568721-3396338888-504170877-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=SVEE&bmod=SVEE
URLSearchHook: HKLM-x32 - uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll No File
URLSearchHook: HKU\S-1-5-21-1100568721-3396338888-504170877-1000 - uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll No File
SearchScopes: HKU\S-1-5-21-1100568721-3396338888-504170877-1000 -> DefaultScope {AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8} URL =
SearchScopes: HKU\S-1-5-21-1100568721-3396338888-504170877-1000 -> {3E4DE001-B69B-475C-ABC8-AA17FBCD0BE9} URL = hxxp://services.zinio.com/search?s={searchTerms}&rf=sonyslices
SearchScopes: HKU\S-1-5-21-1100568721-3396338888-504170877-1000 -> {E62EFDE4-4DC2-4D94-9A86-236800978036} URL = hxxp://rover.ebay.com/rover/1//4?satitle={searchTerms}
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-11-15] (Sun Microsystems, Inc.)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21] (Adobe Systems Incorporated)
BHO-x32: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2012-03-17] (Sun Microsystems, Inc.)
BHO-x32: Windows Live Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.)
BHO-x32: uTorrentBar Toolbar -> {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} -> C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll => No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2012-03-17] (Sun Microsystems, Inc.)
Toolbar: HKLM - DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
Toolbar: HKLM-x32 - uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll No File
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.)
Toolbar: HKU\S-1-5-21-1100568721-3396338888-504170877-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
Toolbar: HKU\S-1-5-21-1100568721-3396338888-504170877-1000 -> DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll No File
Toolbar: HKU\S-1-5-21-1100568721-3396338888-504170877-1000 -> No Name - {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - No File
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-17] (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-17] (Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2011-08-20] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2011-08-20] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2011-08-20] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2011-08-20] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: 119shh73.default
FF ProfilePath: C:\Users\ROTA\AppData\Roaming\Mozilla\Firefox\Profiles\119shh73.default [2018-08-29]
FF Extension: (Avira Browser Safety) - C:\Users\ROTA\AppData\Roaming\Mozilla\Firefox\Profiles\119shh73.default\Extensions\abs@avira.com [2018-01-08]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll [No File]
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2010-03-25] ()
FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll [2012-03-17] (Sun Microsystems, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8117.0416 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-04-17] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-19] (Google Inc.)
FF Plugin HKU\S-1-5-21-1100568721-3396338888-504170877-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\ROTA\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [No File]
FF Plugin HKU\S-1-5-21-1100568721-3396338888-504170877-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\ROTA\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-1100568721-3396338888-504170877-1000: @talk.google.com/O1DPlugin -> C:\Users\ROTA\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-1100568721-3396338888-504170877-1000: @tools.google.com/Google Update;version=3 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin HKU\S-1-5-21-1100568721-3396338888-504170877-1000: @tools.google.com/Google Update;version=9 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\ROTA\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\ROTA\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-08] (Google)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://seznam.cz/
CHR Profile: C:\Users\ROTA\AppData\Local\Google\Chrome\User Data\Default [2018-08-29]
CHR Extension: (Prezentace) - C:\Users\ROTA\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
CHR Extension: (Dokumenty) - C:\Users\ROTA\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Disk Google) - C:\Users\ROTA\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\ROTA\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-01]
CHR Extension: (Vyhledávání Google) - C:\Users\ROTA\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Tabulky) - C:\Users\ROTA\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
CHR Extension: (Avira Browser Safety) - C:\Users\ROTA\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2018-05-26]
CHR Extension: (Dokumenty Google offline) - C:\Users\ROTA\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-24]
CHR Extension: (AdBlock) - C:\Users\ROTA\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-07-26]
CHR Extension: (AVG SafePrice | Comparison, deals, coupons) - C:\Users\ROTA\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2018-08-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\ROTA\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Gmail) - C:\Users\ROTA\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-25]
CHR Extension: (Chrome Media Router) - C:\Users\ROTA\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-08-28]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bejbohlohkkgompgecdcbbglkpjfjgdj] - C:\Users\ROTA\AppData\Local\Temp\crx7C33.tmp <not found>
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [890896 2018-08-23] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [231176 2018-08-23] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [231176 2018-08-23] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1148568 2018-08-23] (Avira Operations GmbH & Co. KG)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-09-02] (Apple Inc.)
R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [264432 2018-08-27] (AVG Technologies CZ, s.r.o.)
S3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe [7481648 2018-08-27] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428264 2018-06-14] (AVG Technologies CZ, s.r.o.)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [436848 2018-08-17] (Avira Operations GmbH & Co. KG)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-09] (Malwarebytes)
S2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3892256 2018-04-20] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [3943664 2018-04-20] (Safer-Networking Ltd.)
S2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [233712 2018-02-06] (Safer-Networking Ltd.)
R2 SpyEmrgHealth; C:\Program Files\NETGATE\Spy Emergency\SpyEmergencyHealth.exe [379192 2015-03-20] (NETGATE Technologies s.r.o.)
S2 SpyEmrgSrv; C:\Program Files\NETGATE\Spy Emergency\SpyEmergencySrv.exe [3332960 2015-03-09] (NETGATE Technologies s.r.o.)
R2 uCamMonitor; C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [104960 2008-09-18] (ArcSoft, Inc.)
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [851824 2010-06-17] (Sony Corporation)
R2 VSNService; C:\Program Files\Sony\VAIO Smart Network\VSNService.exe [836608 2010-06-08] (Sony Corporation) [File not signed]
S3 VUAgent; C:\Program Files\Sony\VAIO Update 5\VUAgent.exe [1250160 2010-05-31] (Sony Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [19968 2009-05-26] (ArcSoft, Inc.)
R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [73240 2018-08-23] (Avira Operations GmbH & Co. KG)
S3 avgbdisk; C:\Windows\system32\drivers\avgbdiska.sys [166624 2018-08-27] (AVG Technologies CZ, s.r.o.)
S3 avgbidsdriver; C:\Windows\system32\drivers\avgbidsdrivera.sys [313616 2018-08-27] (AVG Technologies CZ, s.r.o.)
S3 avgbidsh; C:\Windows\system32\drivers\avgbidsha.sys [192584 2018-08-27] (AVG Technologies CZ, s.r.o.)
S3 avgblog; C:\Windows\system32\drivers\avgbloga.sys [336896 2018-08-27] (AVG Technologies CZ, s.r.o.)
S3 avgbuniv; C:\Windows\system32\drivers\avgbuniva.sys [51336 2018-08-27] (AVG Technologies CZ, s.r.o.)
S3 avgHwid; C:\Windows\system32\drivers\avgHwid.sys [39424 2018-08-27] (AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\Windows\system32\drivers\avgMonFlt.sys [139112 2018-08-28] (AVG Technologies CZ, s.r.o.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [199920 2018-07-07] (Avira Operations GmbH & Co. KG)
S3 avgRdr; C:\Windows\system32\drivers\avgRdr2.sys [102792 2018-08-27] (AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\Windows\system32\drivers\avgRvrt.sys [76832 2018-08-27] (AVG Technologies CZ, s.r.o.)
S3 avgSnx; C:\Windows\system32\drivers\avgSnx.sys [1008288 2018-08-27] (AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\Windows\system32\drivers\avgSP.sys [578048 2018-08-27] (AVG Technologies CZ, s.r.o.)
S3 avgStm; C:\Windows\system32\drivers\avgStm.sys [191208 2018-08-27] (AVG Technologies CZ, s.r.o.)
S3 avgVmm; C:\Windows\system32\drivers\avgVmm.sys [353744 2018-08-28] (AVG Technologies CZ, s.r.o.)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [153040 2018-07-07] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [35328 2018-01-03] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [78600 2018-01-03] (Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [34128 2018-01-03] (Avira Operations GmbH & Co. KG)
R0 FSProFilter2; C:\Windows\System32\Drivers\FSPFltd2.sys [57648 2011-06-03] (FSPro Labs)
S3 igfx; C:\Windows\System32\DRIVERS\igdkmd64.sys [10326784 2010-06-24] (Intel Corporation) [File not signed]
S3 IntcDAud; C:\Windows\System32\DRIVERS\IntcDAud.sys [271872 2010-06-24] (Intel(R) Corporation) [File not signed]
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253664 2018-08-29] (Malwarebytes)
R1 SpyEmrg; C:\Windows\System32\Drivers\spyemrg.sys [17240 2011-04-21] (NETGATE Technologies s.r.o.)
S3 SpyEmrgAccess; C:\Windows\System32\Drivers\spyemrg_access.sys [24408 2011-04-21] (NETGATE Technologies s.r.o.)
S3 SpyEmrgGuard; C:\Windows\System32\Drivers\spyemrg_guard.sys [19768 2015-03-09] (NETGATE Technologies s.r.o.)
S3 Huawei; system32\DRIVERS\ewdcsc.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-08-29 21:35 - 2018-08-29 21:36 - 000026741 _____ C:\Users\ROTA\Downloads\FRST.txt
2018-08-29 21:33 - 2018-08-29 21:35 - 000000000 ____D C:\FRST
2018-08-29 21:33 - 2018-08-29 21:33 - 002413056 _____ (Farbar) C:\Users\ROTA\Downloads\FRST64.exe
2018-08-29 21:19 - 2018-08-29 21:19 - 000253664 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2018-08-28 22:57 - 2018-08-28 22:57 - 000001867 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2018-08-28 22:57 - 2018-08-28 22:57 - 000001867 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2018-08-28 22:57 - 2018-08-28 22:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-08-28 22:57 - 2018-08-28 22:57 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-08-28 22:57 - 2018-08-28 22:57 - 000000000 ____D C:\Program Files\Malwarebytes
2018-08-28 22:57 - 2018-04-26 05:36 - 000152184 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2018-08-28 18:44 - 2018-08-28 18:44 - 000000000 ____D C:\Windows\System32\Tasks\AVG
2018-08-28 18:44 - 2018-08-28 18:44 - 000000000 ____D C:\Program Files\Common Files\avg
2018-08-28 18:42 - 2018-08-28 18:42 - 000001116 _____ C:\Users\Public\Desktop\Avira.lnk
2018-08-28 18:42 - 2018-08-28 18:42 - 000001116 _____ C:\ProgramData\Desktop\Avira.lnk
2018-08-27 21:08 - 2018-08-27 22:13 - 000000563 _____ C:\Windows\wininit.ini
2018-08-27 20:10 - 2018-08-27 20:10 - 000000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2018-08-27 20:09 - 2018-08-28 22:31 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2018-08-27 20:09 - 2018-08-27 21:08 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2018-08-27 20:09 - 2018-08-27 20:09 - 000001391 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2018-08-27 20:09 - 2018-08-27 20:09 - 000001379 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2018-08-27 20:09 - 2018-08-27 20:09 - 000001379 _____ C:\ProgramData\Desktop\Spybot-S&D Start Center.lnk
2018-08-27 20:09 - 2018-08-27 20:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2018-08-27 20:09 - 2018-02-06 19:04 - 000032168 _____ (Safer-Networking Ltd.) C:\Windows\system32\sdnclean64.exe
2018-08-27 18:13 - 2018-08-27 18:13 - 000000000 ____D C:\Users\ROTA\AppData\Roaming\AVG
2018-08-27 18:12 - 2018-08-28 23:42 - 000004178 _____ C:\Windows\System32\Tasks\Antivirus Emergency Update
2018-08-27 18:12 - 2018-08-28 18:44 - 000139112 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgmonflt.sys
2018-08-27 18:12 - 2018-08-28 18:43 - 000353744 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgvmm.sys
2018-08-27 18:12 - 2018-08-27 18:11 - 001008288 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSnx.sys
2018-08-27 18:12 - 2018-08-27 18:11 - 000578048 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys
2018-08-27 18:12 - 2018-08-27 18:11 - 000336896 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbloga.sys
2018-08-27 18:12 - 2018-08-27 18:11 - 000313616 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsdrivera.sys
2018-08-27 18:12 - 2018-08-27 18:11 - 000192584 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsha.sys
2018-08-27 18:12 - 2018-08-27 18:11 - 000191208 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgStm.sys
2018-08-27 18:12 - 2018-08-27 18:11 - 000166624 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbdiska.sys
2018-08-27 18:12 - 2018-08-27 18:11 - 000102792 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRdr2.sys
2018-08-27 18:12 - 2018-08-27 18:11 - 000076832 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRvrt.sys
2018-08-27 18:12 - 2018-08-27 18:11 - 000051336 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbuniva.sys
2018-08-27 18:12 - 2018-08-27 18:11 - 000039424 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgHwid.sys
2018-08-27 18:11 - 2018-08-27 18:11 - 000401584 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\avgBoot.exe
2018-08-27 18:08 - 2018-08-29 21:30 - 000003600 _____ C:\Windows\System32\Tasks\AVG EUpdate Task
2018-08-27 18:08 - 2018-08-27 18:11 - 000000000 ____D C:\Program Files (x86)\AVG
2018-08-27 18:07 - 2018-08-27 19:28 - 000000000 ____D C:\ProgramData\Avg
2018-08-27 18:07 - 2018-08-27 18:26 - 000000000 ____D C:\Users\ROTA\AppData\Local\AvgSetupLog
2018-08-27 18:07 - 2018-08-27 18:13 - 000000000 ____D C:\Users\ROTA\AppData\Local\Avg
2018-08-27 18:07 - 2018-08-27 18:07 - 000000000 ____D C:\Users\ROTA\AppData\Local\CEF
2018-08-27 18:02 - 2018-08-27 18:05 - 000143592 _____ C:\TDSSKiller.2.8.15.0_27.08.2018_18.02.34_log.txt
2018-08-27 17:47 - 2018-08-27 17:48 - 000145354 _____ C:\TDSSKiller.2.8.15.0_27.08.2018_17.47.16_log.txt
2018-08-27 17:41 - 2018-08-27 17:41 - 000000000 ____D C:\TDSSKiller_Quarantine
2018-08-27 17:40 - 2018-08-27 17:42 - 000145124 _____ C:\TDSSKiller.2.8.15.0_27.08.2018_17.40.32_log.txt
2018-08-24 18:55 - 2016-09-11 15:35 - 000000831 _____ C:\Windows\system32\Drivers\etc\hosts.bak
2018-08-24 15:57 - 2018-08-29 21:29 - 000000000 ____D C:\Users\ROTA\AppData\Roaming\Spy Emergency
2018-08-24 15:57 - 2018-08-29 18:26 - 000001142 _____ C:\Users\Public\Desktop\Spy Emergency.lnk
2018-08-24 15:57 - 2018-08-29 18:26 - 000001142 _____ C:\ProgramData\Desktop\Spy Emergency.lnk
2018-08-24 15:57 - 2018-08-24 15:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spy Emergency
2018-08-24 15:57 - 2015-03-09 12:26 - 000019768 _____ (NETGATE Technologies s.r.o.) C:\Windows\system32\Drivers\spyemrg_guard.sys
2018-08-24 15:57 - 2011-04-21 11:31 - 000024408 _____ (NETGATE Technologies s.r.o.) C:\Windows\system32\Drivers\spyemrg_access.sys
2018-08-24 15:57 - 2011-04-21 11:31 - 000017240 _____ (NETGATE Technologies s.r.o.) C:\Windows\system32\Drivers\spyemrg.sys
2018-08-24 15:56 - 2018-08-24 15:56 - 000000000 ____D C:\ProgramData\NETGATE
2018-08-24 15:55 - 2018-08-24 15:55 - 000000000 ____D C:\Program Files\NETGATE
2018-08-23 21:18 - 2018-08-23 21:18 - 000002176 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2018-08-23 21:18 - 2018-08-23 21:18 - 000002164 _____ C:\Users\Public\Desktop\Google Earth Pro.lnk
2018-08-23 21:18 - 2018-08-23 21:18 - 000002164 _____ C:\ProgramData\Desktop\Google Earth Pro.lnk

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-08-29 21:29 - 2017-09-05 20:46 - 000000000 ____D C:\Users\ROTA\AppData\LocalLow\Mozilla
2018-08-29 21:29 - 2016-10-10 19:35 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-08-29 21:29 - 2009-07-14 06:45 - 000009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-08-29 21:29 - 2009-07-14 06:45 - 000009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-08-29 21:28 - 2017-09-04 20:53 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-08-29 21:27 - 2018-01-09 01:08 - 000003292 _____ C:\Windows\System32\Tasks\Avira_Antivirus_Systray
2018-08-29 21:22 - 2011-04-04 19:26 - 000003970 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{B73FF69A-4F4B-4042-9ED2-8C7E9093BED4}
2018-08-29 21:15 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-08-29 20:23 - 2018-01-08 22:30 - 001585914 _____ C:\Windows\ntbtlog.txt
2018-08-28 23:09 - 2013-10-19 14:12 - 000000924 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000UA.job
2018-08-28 23:00 - 2010-10-14 22:36 - 000634546 _____ C:\Windows\system32\perfh005.dat
2018-08-28 23:00 - 2010-10-14 22:36 - 000123104 _____ C:\Windows\system32\perfc005.dat
2018-08-28 23:00 - 2009-07-14 07:13 - 001478586 _____ C:\Windows\system32\PerfStringBackup.INI
2018-08-28 23:00 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2018-08-28 18:42 - 2018-01-08 22:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2018-08-28 18:42 - 2018-01-08 21:32 - 000000000 ____D C:\ProgramData\Package Cache
2018-08-24 16:49 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system
2018-08-23 21:21 - 2018-01-09 01:07 - 000073240 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avdevprot.sys
2018-08-23 21:18 - 2010-11-15 13:00 - 000000000 ____D C:\Program Files\Google
2018-08-20 11:09 - 2013-10-19 14:12 - 000000902 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000Core.job
2018-08-09 00:18 - 2011-04-07 04:05 - 000000000 ____D C:\Users\ROTA\AppData\Local\MediaMonkey
2018-08-02 22:54 - 2016-05-13 18:27 - 000000000 ____D C:\Users\ROTA\AppData\Roaming\uTorrent
2018-08-02 18:41 - 2018-07-29 14:46 - 000000000 ____D C:\Users\ROTA\AppData\LocalLow\uTorrent
2018-07-30 21:47 - 2012-07-10 21:09 - 000000000 ____D C:\Users\ROTA\Desktop\filmy

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-08-27 19:13

==================== End of FRST.txt ============================





Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23.08.2018
Ran by ROTA (29-08-2018 21:37:18)
Running from C:\Users\ROTA\Downloads
Windows 7 Home Premium (X64) (2011-04-04 17:21:51)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1100568721-3396338888-504170877-500 - Administrator - Disabled)
Guest (S-1-5-21-1100568721-3396338888-504170877-501 - Limited - Disabled)
ROTA (S-1-5-21-1100568721-3396338888-504170877-1000 - Administrator - Enabled) => C:\Users\ROTA

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Antivirus (Enabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AV: AVG Antivirus (Disabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Avira Antivirus (Enabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Spy Emergency (Disabled - Up to date) {CF31796E-7D30-C232-4F2D-6993AAA725AC}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Antivirus (Disabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\uTorrent) (Version: 3.5.3.44494 - BitTorrent Inc.)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.3.9130 - Adobe Systems Inc.)
Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.0.45.2 - Adobe Systems Incorporated)
Adobe Flash Player 10 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 10.0.45.2 - Adobe Systems Incorporated)
Adobe Photoshop CS3 (HKLM-x32\...\Adobe_4977c84bcdc298c444ccfbdcccb660d) (Version: 10.0 - Adobe Systems Incorporated)
Adobe Photoshop Elements 8.0 (HKLM-x32\...\Adobe Photoshop Elements 8.0) (Version: 8.0 - Adobe Systems Incorporated)
Adobe Premiere Elements 8.0 (HKLM-x32\...\PremElem80) (Version: 8.0 - Adobe Systems Incorporated)
Adobe Reader 9.3 - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-A93000000001}) (Version: 9.3.0 - Adobe Systems Incorporated)
Adobe Reader 9.3 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A93000000001}) (Version: 9.3.0 - Adobe Systems Incorporated)
Age of Empires III - The Asian Dynasties (HKLM-x32\...\{C43C1415-3DFC-4089-9A32-0BECF28A6046}) (Version: 1.00.0000 - Microsoft) Hidden
Age of Empires III - The Asian Dynasties (HKLM-x32\...\InstallShield_{C43C1415-3DFC-4089-9A32-0BECF28A6046}) (Version: 1.00.0000 - Microsoft)
Age of Empires III (HKLM-x32\...\{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}) (Version: 1.00.0000 - Microsoft Game Studios) Hidden
Age of Empires III (HKLM-x32\...\InstallShield_{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}) (Version: 1.00.0000 - Microsoft Game Studios)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Apple Mobile Device Support (HKLM\...\{FD244E19-6EFE-4A2D-948A-0D45D4C168BE}) (Version: 9.0.0.26 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
ArcSoft Magic-i Visual Effects 2 (HKLM-x32\...\{7BB90344-0647-468E-925A-7F69F7983421}) (Version: 2.0.1.115 - ArcSoft)
ArcSoft WebCam Companion 3 (HKLM-x32\...\{DE8AAC73-6D8D-483E-96EA-CAEDDADB9079}) (Version: 3.0.21.368 - ArcSoft)
ATI Catalyst Install Manager (HKLM\...\{687C26DE-9A70-B256-170A-717DFA8B360E}) (Version: 3.0.750.0 - ATI Technologies, Inc.)
Audacity 1.3.12 (Unicode) (HKLM-x32\...\Audacity 1.3 Beta (Unicode)_is1) (Version: - Audacity Team)
Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team)
AVG (HKLM\...\{136B57DF-DA9E-4361-A165-09AB4422BCD1}) (Version: 1.231.3 - AVG Technologies) Hidden
AVG AntiVirus FREE (HKLM-x32\...\AVG Antivirus) (Version: 17.5.3021 - AVG Technologies)
Avira (HKLM-x32\...\{532da46c-2aa3-4588-a4a2-b02bc641bf95}) (Version: 1.2.119.17994 - Avira Operations GmbH & Co. KG)
Avira (HKLM-x32\...\{9620D4C2-CF5B-4DBE-8103-CC9DAB0871C6}) (Version: 1.2.119.17994 - Avira Operations GmbH & Co. KG) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.39.5 - Avira Operations GmbH & Co. KG)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.69.1079 - AB Team, d.o.o.)
Camersoft Skype Recorder 3.1.08 (HKLM-x32\...\Camersoft Skype Recorder_is1) (Version: - Camersoft Studio)
ccc-core-static (HKLM-x32\...\{F572C0E3-90D1-CC46-C163-4C4E50D3C220}) (Version: 2010.0209.16.306 - ATI) Hidden
DTS+AC3 ÇĘĹÍ (HKLM-x32\...\DtsFilter) (Version: - )
Evernote (HKLM-x32\...\{F761359C-9CED-45AE-9A51-9D6605CD55C4}) (Version: 3.5.4.2224 - Evernote Corp.)
Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
FMW 1 (HKLM\...\{4CC5FB14-3F4D-4FA8-B921-00A9B40145C4}) (Version: 1.227.45 - AVG Technologies) Hidden
GameRanger (HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\GameRanger) (Version: - GameRanger Technologies)
GOM Player (HKLM-x32\...\GOM Player) (Version: 2.1.40.5106 - Gretech Corporation)
Google Earth Pro (HKLM\...\{F914BC59-918A-498F-B2E3-B274C9CB48A8}) (Version: 7.3.2.5491 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 68.0.3440.106 - Google Inc.)
Google Talk Plugin (HKLM-x32\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 5.41.3.0 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Half-Life (Xash3D 0.95 Build 2271 engine) with datadisk Half-Life: Opposing Force & datadisk Half-Life: Blue Shift (HKLM-x32\...\Half-Life (Xash3D 0.95 Build 2271 engine) with datadisk Half-Life: Opposing Force & datadisk Half-Life: Blue Shift) (Version: - )
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.0.1014 - Intel Corporation)
Intel(R) Turbo Boost Technology Driver (HKLM-x32\...\{D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}) (Version: 01.02.00.1002 - Intel Corporation)
iTunes (HKLM\...\{4CE36E6A-300B-427C-BEC7-B261CC13814E}) (Version: 9.1.0.79 - Apple Inc.)
Java(TM) 6 Update 18 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216018F0}) (Version: 6.0.180 - Sun Microsystems, Inc.)
Java(TM) 6 Update 20 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416020FF}) (Version: 6.0.200 - Sun Microsystems, Inc.)
Java(TM) 6 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216031FF}) (Version: 6.0.310 - Oracle)
Junk Mail filter update (HKLM-x32\...\{8E5233E1-7495-44FB-8DEB-4BE906D59619}) (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Malwarebytes verze 3.5.1.2522 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes)
Media Gallery (HKLM\...\{115B60D5-BBDB-490E-AF2E-064D37A3CE01}) (Version: 1.3.0 - Sony Corporation) Hidden
Media Gallery (HKLM\...\{202B76AB-1B21-434E-A289-788D767D3A7C}) (Version: 1.3.0 - Sony Corporation) Hidden
Media Gallery (HKLM-x32\...\{20536917-E2DF-45D9-B41F-9AC0CAFFE48A}) (Version: 1.3.0.06230 - Sony Corporation) Hidden
Media Gallery (HKLM-x32\...\{3DB5EA77-4A14-4EC9-8BFC-73BC848BDE73}) (Version: 1.3.0.06230 - Sony Corporation) Hidden
Media Gallery (HKLM-x32\...\{D8FF4505-5977-4116-8DE4-2AF7174E70AC}) (Version: 1.3.0.06230 - Sony Corporation) Hidden
MediaMonkey 3.2 (HKLM-x32\...\MediaMonkey_is1) (Version: 3.2 - Ventis Media Inc.)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 2 (SP2) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}) (Version: - Microsoft)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6425.1000 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 60.0.2 (x64 cs) (HKLM\...\Mozilla Firefox 60.0.2 (x64 cs)) (Version: 60.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 60.0.2.6730 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
My Lockbox 3.0.5 (HKLM\...\My Lockbox_is1) (Version: 3.0.5 - )
Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version: 1.5.7.1480 - Native Instruments)
Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: 2.4.3.1177 - Native Instruments)
Native Instruments Traktor 2 (HKLM-x32\...\Native Instruments Traktor 2) (Version: 2.6.4.228 - Native Instruments)
Native Instruments Traktor DJ Studio 3 (HKLM-x32\...\Native Instruments Traktor DJ Studio 3) (Version: - )
PDF Settings (HKLM-x32\...\{293D5729-7C01-4FA4-A4DE-BB6A1587BBB9}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
PMB (HKLM-x32\...\{B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C}) (Version: 5.3.00.06040 - Sony Corporation)
PMB VAIO Edition Guide (HKLM-x32\...\{88C252C8-A7EE-4B60-BF74-8E5919A8048F}) (Version: 1.3.00.06040 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (Click to Disc) (HKLM\...\{10E14C74-0638-4996-ABAD-BBF7A6CF1FAA}) (Version: 3.3.00 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (Click to Disc) (HKLM\...\{1E37FC84-799E-481B-9462-3489861E36C9}) (Version: 3.3.00 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (Click to Disc) (HKLM-x32\...\{4DCEA9C1-4D6E-41BF-A854-28CFA8B56DBF}) (Version: 3.3.00.06180 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (Click to Disc) (HKLM-x32\...\{CFB66DB0-00AC-4CBC-B99D-99EFEB03743C}) (Version: 3.3.00 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (VAIO Image Optimizer) (HKLM-x32\...\{1873FFC1-FDCB-47E1-B7C7-F418211E3530}) (Version: 1.3.00.06110 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (VAIO Movie Story) (HKLM\...\{4DABD2B3-B67A-41B0-86FE-C11AAF5D158A}) (Version: 2.3.00 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (VAIO Movie Story) (HKLM\...\{5AC18E2C-7EAB-4F9E-BEEC-07FD722B28E3}) (Version: 2.3.00 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (VAIO Movie Story) (HKLM-x32\...\{B25563A0-41F4-4A81-A6C1-6DBC0911B1F3}) (Version: 2.3.00.06180 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (VAIO Movie Story) (HKLM-x32\...\{FBB4411F-1328-4E36-A5B3-16AA8CFA8F9C}) (Version: 2.3.00 - Sony Corporation) Hidden
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
PowerISO (HKLM-x32\...\PowerISO) (Version: 4.7 - PowerISO Computing, Inc.)
QIP 2005 8097 (HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\QIP 2005) (Version: 8097 - )
QuickTime (HKLM-x32\...\{28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}) (Version: 7.66.71.0 - Apple Inc.)
Realtek HDMI Audio Driver for ATI (HKLM-x32\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.6034 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6098 - Realtek Semiconductor Corp.)
Reason 5.0 (HKLM-x32\...\Reason5_is1) (Version: 5.0 - Propellerhead Software AB)
Remote Keyboard with PlayStation 3 (HKLM-x32\...\{65B138AE-F636-4D4C-BA5D-A06E21E47C53}) (Version: 1.0.2.06170 - Sony Corporation)
Remote Play with PlayStation 3 (HKLM-x32\...\{734B6C6C-4740-476F-BB0C-F7AF469EDBB2}) (Version: 1.0.2.06210 - Sony Corporation) Hidden
Remote Play with PlayStation®3 (HKLM-x32\...\{07441A52-E208-478A-92B7-5C337CA8C131}) (Version: 1.0.2.06210 - Sony Corporation)
Skype™ 7.24 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.)
SmartSound Quicktracks for Premiere Elements 8.0 (HKLM-x32\...\{4685A344-6718-4923-AA9D-158A0A2E1CFB}) (Version: 3.11.3090 - SmartSound Software Inc) Hidden
SmartSound Quicktracks for Premiere Elements 8.0 (HKLM-x32\...\InstallShield_{4685A344-6718-4923-AA9D-158A0A2E1CFB}) (Version: 3.11.3090 - SmartSound Software Inc)
Spy Emergency 2018-25.0.110 (HKLM\...\Spy Emergency_is1) (Version: - NETGATE Technologies s.r.o.)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.7.64.0 - Safer-Networking Ltd.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.9.0 - Synaptics Incorporated)
TmNationsForever (HKLM-x32\...\TmNationsForever_is1) (Version: - Nadeo)
Update for 2007 Microsoft Office System (KB2284654) (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{FB166E7C-8AA6-48C8-B726-1F25BEE7825A}) (Version: - Microsoft)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Outlook 2007 Junk Email Filter (KB2596560) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{2964DDE1-4925-4DF1-AF2C-0A36B3442228}) (Version: - Microsoft)
uTorrentBar Toolbar (HKLM-x32\...\uTorrentBar Toolbar) (Version: 6.3.5.3 - uTorrentBar) <==== ATTENTION
VAIO - Media Gallery (HKLM-x32\...\{DD88F979-FA58-41AC-980C-A6E1A82B61D9}) (Version: 1.3.0.06230 - Sony Corporation)
VAIO - PMB VAIO Edition Guide (HKLM-x32\...\InstallShield_{88C252C8-A7EE-4B60-BF74-8E5919A8048F}) (Version: 1.3.00.06040 - Sony Corporation)
VAIO - PMB VAIO Edition plug-in (Click to Disc) (HKLM-x32\...\InstallShield_{4DCEA9C1-4D6E-41BF-A854-28CFA8B56DBF}) (Version: 3.3.00.06180 - Sony Corporation)
VAIO - PMB VAIO Edition plug-in (VAIO Image Optimizer) (HKLM-x32\...\InstallShield_{1873FFC1-FDCB-47E1-B7C7-F418211E3530}) (Version: 1.3.00.06110 - Sony Corporation)
VAIO - PMB VAIO Edition plug-in (VAIO Movie Story) (HKLM-x32\...\InstallShield_{B25563A0-41F4-4A81-A6C1-6DBC0911B1F3}) (Version: 2.3.00.06180 - Sony Corporation)
VAIO Control Center (HKLM-x32\...\{72042FA6-5609-489F-A8EA-3C2DD650F667}) (Version: 4.3.0.05310 - Sony Corporation)
VAIO Data Restore Tool (HKLM-x32\...\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}) (Version: 1.4.0.05240 - Sony Corporation)
VAIO Data Restore Tool (HKLM-x32\...\{8211C280-5B02-4E7E-B55F-845A207249BA}) (Version: 1.4.0.05240 - Sony Corporation) Hidden
VAIO DVD Menu Data (HKLM-x32\...\{596BED91-A1D8-4DF1-8CD1-1C777F7588AC}) (Version: 2.2.00.05120 - Sony Corporation)
VAIO Gate (HKLM-x32\...\{A7C30414-2382-4086-B0D6-01A88ABA21C3}) (Version: 2.2.0.06080 - Sony Corporation)
VAIO Gate Default (HKLM-x32\...\{B7546697-2A80-4256-A24B-1C33163F535B}) (Version: 2.2.0.07020 - Sony Corporation)
VAIO Hardware Diagnostics (HKLM-x32\...\{2F9D63BE-A891-4E39-AFB3-7402D486800C}) (Version: 4.0.0.06230 - Sony Corporation) Hidden
VAIO Manual (HKLM-x32\...\{C6E893E7-E5EA-4CD5-917C-5443E753FCBD}) (Version: 1.1.0.05280 - Sony Corporation)
VAIO Media plus (HKLM\...\{5AFD1F5C-8FDA-413C-AF38-F1E7BD10D72F}) (Version: 2.1.0 - Sony Corporation) Hidden
VAIO Media plus (HKLM\...\{A3D964A6-411A-4817-9D58-5CB8808F494E}) (Version: 2.1.0 - Sony Corporation) Hidden
VAIO Media plus (HKLM-x32\...\{177AF091-7854-4615-8327-AC7518F62782}) (Version: 2.1.0.18210 - Sony Corporation) Hidden
VAIO Media plus (HKLM-x32\...\{4B9DA746-5AE1-4BA0-9087-BDB162242890}) (Version: 2.1.0.18210 - Sony Corporation) Hidden
VAIO Media plus (HKLM-x32\...\{52F9CDDA-26F6-4499-90E0-6DDDE6D2259C}) (Version: 2.1.0.18210 - Sony Corporation) Hidden
VAIO Media plus (HKLM-x32\...\{8DE50158-80AA-4FF2-9E9F-0A7C46F71FCD}) (Version: 2.1.0.18210 - Sony Corporation)
VAIO Media plus (HKLM-x32\...\{B941F34C-F36A-4A6F-A97C-50B5948E451F}) (Version: 2.1.0.18210 - Sony Corporation) Hidden
VAIO Media plus Opening Movie (HKLM-x32\...\{9238E8A4-BEBA-43A3-B926-769BDBF194C5}) (Version: 2.1.0.13220 - Sony Corporation)
VAIO Movie Story Template Data (HKLM-x32\...\{6FA8BA2C-052B-4072-B8E2-2302C268BE9E}) (Version: 2.3.00.06040 - Sony Corporation) Hidden
VAIO Movie Story Template Data (HKLM-x32\...\InstallShield_{6FA8BA2C-052B-4072-B8E2-2302C268BE9E}) (Version: 2.3.00.06040 - Sony Corporation)
VAIO Quick Web Access (HKLM-x32\...\{5A92468F-3ED8-4F96-A9E1-4F176C80EC29}) (Version: 1.3.4.2 - Sony Corporation) Hidden
VAIO Quick Web Access (HKLM-x32\...\splashtop) (Version: 1.3.4.2 - Sony Corporation)
VAIO Sample Contents (HKLM-x32\...\{547C9EB4-4CA6-402F-9D1B-8BD30DC71E44}) (Version: 1.3.0.06041 - Sony Corporation)
VAIO screensaver (HKLM-x32\...\VAIO screensaver) (Version: 1.0.0.0 - Sony Europe)
VAIO Smart Network (HKLM-x32\...\{0899D75A-C2FC-42EA-A702-5B9A5F24EAD5}) (Version: 3.3.0.06080 - Sony Corporation)
VAIO Transfer Support (HKLM-x32\...\{5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}) (Version: 1.2.0.06230 - Sony Corporation)
VAIO Update (HKLM-x32\...\{5BEE8F1F-BD32-4553-8107-500439E43BD7}) (Version: 5.2.0.05310 - Sony Corporation)
VBA (2627.01) (HKLM-x32\...\{5545EEE1-FA36-4F76-B6BE-5696E7F4E2D6}) (Version: 6.03.00.9402 - Microsoft Corporation) Hidden
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
WavePad Sound Editor (HKLM-x32\...\WavePad) (Version: 8.00 - NCH Software)
WIDCOMM Bluetooth Software (HKLM\...\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}) (Version: 6.3.0.5600 - Broadcom Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation)
Windows Live Sign-in Assistant (HKLM-x32\...\{45338B07-A236-4270-9A77-EBB4115517B5}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{B10914FD-8812-47A4-85A1-50FCDE7F1F33}) (Version: 14.0.8117.416 - Microsoft Corporation)
WinRAR 4.01 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)
Yawcam 0.3.6 (HKLM-x32\...\{8FE96B14-E1F9-47BF-8BA1-A81467CD259B}_is1) (Version: - )
Youtube Downloader HD v. 2.9.9.28 (HKLM-x32\...\Youtube Downloader HD_is1) (Version: - YoutubeDownloaderHD.com)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\ChromeHTML: -> <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{EA724FD3-844D-43A9-A8C9-A5BC35FC20E4}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShA64.dll [2018-08-27] (AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Programy\PowerISO\PWRISOSH.DLL [2010-04-23] (PowerISO Computing, Inc.)
ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd.)
ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd.)
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2018-08-23] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [SpyEmergency] -> {2E9FFF5C-4375-494d-951F-098BAA42239E} => C:\Program Files\NETGATE\Spy Emergency\menuext.dll [2013-03-11] (NETGATE Technologies s.r.o.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2011-05-28] ()
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2011-05-28] ()
ContextMenuHandlers2: [AddtoVAIOGate] -> {6988D6F2-F24F-4732-8855-A39DB1AA1346} => C:\Program Files\Sony\VAIO Gate\VAIOGateShellExt.dll [2010-06-08] (Sony Corporation)
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [AddtoVAIOGate] -> {6988D6F2-F24F-4732-8855-A39DB1AA1346} => C:\Program Files\Sony\VAIO Gate\VAIOGateShellExt.dll [2010-06-08] (Sony Corporation)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Programy\PowerISO\PWRISOSH.DLL [2010-04-23] (PowerISO Computing, Inc.)
ContextMenuHandlers4: [SpyEmergency] -> {2E9FFF5C-4375-494d-951F-098BAA42239E} => C:\Program Files\NETGATE\Spy Emergency\menuext.dll [2013-03-11] (NETGATE Technologies s.r.o.)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2011-05-28] ()
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2011-05-28] ()
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2010-02-09] (Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2010-06-24] (Intel Corporation)
ContextMenuHandlers6: [AddtoVAIOGate] -> {6988D6F2-F24F-4732-8855-A39DB1AA1346} => C:\Program Files\Sony\VAIO Gate\VAIOGateShellExt.dll [2010-06-08] (Sony Corporation)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShA64.dll [2018-08-27] (AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Programy\PowerISO\PWRISOSH.DLL [2010-04-23] (PowerISO Computing, Inc.)
ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd.)
ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd.)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2018-08-23] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [SpyEmergency] -> {2E9FFF5C-4375-494d-951F-098BAA42239E} => C:\Program Files\NETGATE\Spy Emergency\menuext.dll [2013-03-11] (NETGATE Technologies s.r.o.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2011-05-28] ()
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2011-05-28] ()

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {058BFFC5-1032-46D0-9441-070675C13ECB} - System32\Tasks\SONY\Remote Keyboard with PlayStation 3\Remote Keyboard with PlayStation 3 => C:\Program Files\Sony\Remote Keyboard with PlayStation 3\VBTKBUtil.exe [2010-06-17] (Sony Corporation)
Task: {0715EDB3-2138-40F7-80D5-50F296039DB5} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [2018-08-27] (AVG Technologies CZ, s.r.o.)
Task: {09885895-FDA1-49CC-8984-A67B0125A81E} - System32\Tasks\SONY\VAIO Power Management\VPM Unlock => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2010-06-21] (Sony Corporation)
Task: {0A19A455-69A2-4064-A20D-D4DCE22FB12F} - System32\Tasks\{221BFA4B-FBE5-463E-B380-B92B155169BB} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://ui.skype.com/ui/0/5.10.0.116/en/abandoninstall?page=tsMain
Task: {2F95E08E-2D1A-4D46-B006-4D901C944E21} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {36F696C9-708C-438C-B373-86114232F343} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000Core => C:\Users\ROTA\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {5A26F2C6-5452-4ACF-99DD-5DA20FCF37D7} - System32\Tasks\SONY\SUS-BCF\Level4Daily => C:\Program Files (x86)\Sony\Setting Utility Series\WBCBatteryCare.exe [2010-05-31] (Sony Corporation)
Task: {765F33A1-1792-499D-85DC-82BEE166262E} - System32\Tasks\{A59CAA48-C128-40B9-8EE7-4891CE654A67} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://ui.skype.com/ui/0/6.6.0.106/en/abandoninstall?page=tsMain
Task: {7B24BDA3-EF41-4D83-BC05-A21268C8617C} - System32\Tasks\{DC4D952F-E5CF-42AF-A80D-FFCCEFFD970B} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://ui.skype.com/ui/0/6.0.0.126/en/abandoninstall?page=tsMain
Task: {7E113404-1865-4904-B292-C03BB8AB53DD} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2018-04-20] (Safer-Networking Ltd.)
Task: {802CFE65-F048-4806-8864-3D3E4836E596} - System32\Tasks\{313A5785-E7D4-4D2C-B169-7D646BFD332D} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://ui.skype.com/ui/0/4.2.0.155/cs/abandoninstall?source=lightinstaller&page=tsProblems&LastError=12007&installinfo=google-toolbar:notoffered;ienotdefaultbrowser2,google-chrome&#058;notoffered;ienotdefaultbrowser2
Task: {80626436-84D2-469B-AE25-5995DB6E9102} - System32\Tasks\SONY\SUS-BCF\Level4Month => C:\Program Files (x86)\Sony\Setting Utility Series\WBCBatteryCare.exe [2010-05-31] (Sony Corporation)
Task: {8C3FD7F0-D9F9-4E8F-825E-00D92F135CE6} - System32\Tasks\{3EB12C09-C610-4E01-AF08-B328DA51989E} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://ui.skype.com/ui/0/6.7.0.102/cs/abandoninstall?page=tsProgressBar
Task: {8EF0097D-BA09-4A5E-820A-E79F12EECB42} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2018-08-23] (Avira Operations GmbH & Co. KG)
Task: {94ADED8F-E118-42E7-87B9-3E7E756E8568} - System32\Tasks\{4806F0B8-6A97-4AEA-9F98-A1F9589A8A1D} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://ui.skype.com/ui/0/6.6.0.106/en/abandoninstall?page=tsMain
Task: {9501C2BF-41F5-45CD-83F7-8B263FEF178E} - System32\Tasks\SONY\VAIO Gate\VAIO Gate => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2010-06-08] (Sony Corporation)
Task: {A23A3B3C-CA4B-42F5-B156-9864DB969D86} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000UA => C:\Users\ROTA\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {B28B9AED-AA3D-450A-AAC2-67E852E46629} - System32\Tasks\{85289B2F-CEA9-436F-980B-0BC27878D96D} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://ui.skype.com/ui/0/6.6.0.106/en/abandoninstall?page=tsMain
Task: {B62F4F74-7813-4A11-8C54-56F4F4F7468E} - System32\Tasks\SONY\VAIO Update\VAIO Update 5 => C:\Program Files\Sony\VAIO Update 5\VAIOUpdt.exe [2010-05-31] (Sony Corporation)
Task: {B80A6F1C-6456-43C1-A5FC-4AE596B61A76} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000UA => C:\Users\ROTA\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {B9090DBE-59BE-4B3C-91C1-456760E2255B} - System32\Tasks\SONY\VAIO Power Management\VPM Session Change => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2010-06-21] (Sony Corporation)
Task: {C188EAF4-2018-499F-820E-9C159AA3A1A8} - System32\Tasks\{9EE79B2B-F26A-4CE8-BA4C-16B5700B932B} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://ui.skype.com/ui/0/7.26.0.101/cs/abandoninstall?page=tsProgressBar
Task: {C2BF2CB4-5A28-4432-B2E5-E28D9F6AB73B} - \{F0EF177D-1647-4B00-840A-9B60A4404D6B} -> No File <==== ATTENTION
Task: {C515A5B2-6EFC-4BB8-91B6-18E015A39CC4} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
Task: {CEC170B5-8301-4D0C-A90C-D7E07F7E293D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {D31376D7-1747-47E7-B581-F57D59029353} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2018-04-20] (Safer-Networking Ltd.)
Task: {D527A4DE-62AD-4B29-91C4-011B18095AA4} - System32\Tasks\{60E3E166-1BAC-4C68-9C58-A4586C9120DD} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://ui.skype.com/ui/0/6.6.0.106/en/abandoninstall?page=tsMain
Task: {D5FD76AD-69EC-48B3-AA77-1F1B4521B052} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\avg\overseer\overseer.exe [2018-08-28] (AVG Technologies CZ, s.r.o.)
Task: {DE16FAD3-5BD2-4CDA-AD0D-7E077B957DA5} - System32\Tasks\SONY\VAIO Power Management\VPM Logon Start => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2010-06-21] (Sony Corporation)
Task: {E0C19E65-31FF-42C0-A3D9-924EBA0DC1C4} - System32\Tasks\SONY\VAIO Wallpaper Setting Tool\VAIO Wallpaper Setting Tool => C:\Program Files (x86)\Sony\VAIO Wallpaper Setting Tool\VWSet.exe
Task: {E9B8D2C2-D50A-48B6-A99A-5E031A1F3F9C} - System32\Tasks\{321B92A0-469B-4F1C-B783-AD905D1ADD23} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://ui.skype.com/ui/0/6.5.0.158/en/abandoninstall?page=tsPlugin
Task: {F2A51696-710E-430A-AE14-C6B36687B888} - System32\Tasks\{2A0BB18A-0946-4A09-A37B-BBFC6B0CF090} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://ui.skype.com/ui/0/6.7.0.102/cs/abandoninstall?page=tsProgressBar
Task: {F3305441-C058-4050-AB37-56D3A58D3955} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2018-04-20] (Safer-Networking Ltd.)
Task: {F3477C4C-A25A-418A-B230-F32C1F8244AF} - System32\Tasks\{7B49425F-659E-4F6C-8932-EEB05DB961A4} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://ui.skype.com/ui/0/5.5.0.124/en/abandoninstall?page=tsPlugin&installinfo=google-toolbar:notoffered;notincluded,google-chrome&#058;notoffered;disabled
Task: {F9FB18E4-BFD1-45C6-A712-836085AD6D9D} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000Core => C:\Users\ROTA\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {FD149099-D0DA-47C5-8507-72224549F763} - System32\Tasks\SONY\VAIO Gate\StartExecuteProxy => C:\Program Files\Sony\VAIO Gate\ExecutionProxy.exe [2010-06-08] (Sony Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000Core.job => C:\Users\ROTA\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000UA.job => C:\Users\ROTA\AppData\Local\Facebook\Update\FacebookUpdate.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


Shortcut: C:\Users\ROTA\Favorites\NCH Software Download Site.lnk -> hxxp://www.nch.com.au/index.htm

==================== Loaded Modules (Whitelisted) ==============

2011-04-10 21:10 - 2011-05-28 23:05 - 000164864 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll
2015-03-20 18:12 - 2015-03-20 18:12 - 000085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-03-20 18:12 - 2015-03-20 18:12 - 001346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2010-11-15 12:58 - 2010-11-15 12:58 - 000270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2018-08-28 22:57 - 2018-04-25 13:16 - 002297040 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2018-08-27 19:29 - 2018-08-08 02:41 - 004855640 _____ () C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.106\libglesv2.dll
2018-08-27 19:29 - 2018-08-08 02:41 - 000115544 _____ () C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.106\libegl.dll
2018-08-27 18:11 - 2018-08-27 18:11 - 000171344 _____ () C:\Program Files (x86)\AVG\Antivirus\JsonRpcServer.dll
2018-08-27 18:11 - 2018-08-27 18:11 - 000193784 _____ () C:\Program Files (x86)\AVG\Antivirus\event_routing_rpc.dll
2018-08-27 18:11 - 2018-08-27 18:11 - 000225376 _____ () C:\Program Files (x86)\AVG\Antivirus\tasks_core.dll
2018-08-28 18:36 - 2018-08-28 18:36 - 005675248 _____ () C:\Program Files (x86)\AVG\Antivirus\defs\18082802\algo.dll
2018-08-27 18:11 - 2018-08-27 18:11 - 000690392 _____ () C:\Program Files (x86)\AVG\Antivirus\ffl2.dll
2018-08-27 18:11 - 2018-08-27 18:11 - 000232784 _____ () C:\Program Files (x86)\AVG\Antivirus\streamback.dll
2018-08-29 21:23 - 2018-08-29 21:23 - 005675248 _____ () C:\Program Files (x86)\AVG\Antivirus\defs\18082902\algo.dll
2018-08-27 18:08 - 2016-06-23 21:07 - 048920064 _____ () C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll
2018-08-28 18:44 - 2018-08-28 18:43 - 001040072 _____ () C:\Program Files (x86)\AVG\Antivirus\AvChrome.dll
2018-08-27 18:11 - 2018-08-27 18:11 - 067109376 _____ () C:\Program Files (x86)\AVG\Antivirus\libcef.dll
2015-03-20 18:12 - 2015-03-20 18:12 - 001044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2018-08-23 21:23 - 2018-08-23 21:20 - 001204472 _____ () C:\Program Files (x86)\Avira\Antivirus\crypto-42.dll
2018-08-23 21:23 - 2018-08-23 21:20 - 000243352 _____ () C:\Program Files (x86)\Avira\Antivirus\ssl-44.dll
2010-11-15 12:46 - 2010-05-31 21:18 - 000013824 _____ () C:\Program Files (x86)\Sony\VAIO Event Service\VESBasePS.dll
2010-11-15 12:46 - 2010-05-31 21:18 - 000013312 _____ () C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSubPS.dll
2011-10-21 01:25 - 2011-10-21 01:25 - 000170496 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\3975081d407c2d6908bf21c7d6f5848d\IsdiInterop.ni.dll
2010-10-15 00:14 - 2010-03-04 05:08 - 000058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\28503390.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\81944903.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\28503390.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\81944903.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2016-09-11 15:35 - 000000831 ____N C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1100568721-3396338888-504170877-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\ROTA\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 88.81.64.1 - 88.81.92.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{7F92BBB0-CB2F-4A69-9435-A3D5A6B9F846}] => (Allow) C:\Program Files (x86)\Adobe\Elements Organizer 8.0\AdobePhotoshopElementsMediaServer.exe
FirewallRules: [{AC55C334-B92D-4BB2-8F99-104EEC1D0D8D}] => (Allow) C:\Program Files (x86)\Adobe\Elements Organizer 8.0\AdobePhotoshopElementsMediaServer.exe
FirewallRules: [{913109A9-C952-4B3B-B120-D5451D9AC152}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{510462A9-89D4-4286-8DA1-6CB5E1BA6820}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\wlcsdk.exe
FirewallRules: [{CCB1E12F-2E22-4586-828A-F26D9E0832B0}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{9450D97B-B602-4066-8E2F-C9E5E10CA257}] => (Allow) svchost.exe
FirewallRules: [{B02A375F-14A5-4AF3-95B6-F008EA7F7AC9}] => (Allow) C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe
FirewallRules: [{8C0F93A4-9305-43D4-87E0-9C3E32B9FD49}] => (Allow) C:\Programy\utorrent\uTorrent.exe
FirewallRules: [{3787BF4A-B8CD-4555-865E-852FE73781EC}] => (Allow) C:\Programy\utorrent\uTorrent.exe
FirewallRules: [TCP Query User{09FDD3A0-D6F6-44BE-863C-1580097C9836}C:\programy\qip\qip.exe] => (Allow) C:\programy\qip\qip.exe
FirewallRules: [UDP Query User{DCEA3D21-9534-4912-80DF-6AB517A7F52B}C:\programy\qip\qip.exe] => (Allow) C:\programy\qip\qip.exe
FirewallRules: [{E184F67E-61A1-4BBA-830E-E8AF12116519}] => (Allow) C:\Program Files (x86)\ACSPMonitor\ASMonitor.exe
FirewallRules: [{DF22636C-4E53-4060-8393-E90CA643A80C}] => (Allow) C:\Program Files (x86)\ACSPMonitor\ASMonitor.exe
FirewallRules: [{6DB6B750-0679-497E-835D-BB662EABCB48}] => (Allow) C:\Users\ROTA\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
FirewallRules: [{041FF44D-861F-4E74-8230-0C60F8E94CD0}] => (Allow) C:\Users\ROTA\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
FirewallRules: [TCP Query User{9C39C9C3-AAEE-4331-85F9-2499ED413A78}C:\programy\tmnationsforever\tmforever.exe] => (Allow) C:\programy\tmnationsforever\tmforever.exe
FirewallRules: [UDP Query User{26DF363A-7526-40FF-BA8C-DF8B5E0B59BA}C:\programy\tmnationsforever\tmforever.exe] => (Allow) C:\programy\tmnationsforever\tmforever.exe
FirewallRules: [{3FC3A6D4-FD7D-4CD6-A907-1CDE603BCBD4}] => (Allow) C:\Users\ROTA\Desktop\Q\quake3.exe
FirewallRules: [{CEB5559F-58CA-4781-A105-D6E69D53B8DC}] => (Allow) C:\Users\ROTA\Desktop\Q\quake3.exe
FirewallRules: [{412AC1A8-D2E9-4A91-A580-645B3E121D24}] => (Allow) C:\Users\ROTA\Desktop\Q\quake3.exe
FirewallRules: [{3CD1F652-4252-4889-8E64-4A21CB62C253}] => (Allow) C:\Users\ROTA\Desktop\Q\quake3.exe
FirewallRules: [{5F0D816C-DCB5-4A0F-A9F3-6F9F1364FB7A}] => (Allow) C:\Users\ROTA\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
FirewallRules: [{F2F7A40F-1325-4D7D-963C-D58913396209}] => (Allow) C:\Users\ROTA\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{0628E0A4-E645-410A-8332-EF6A9CB2CC4B}] => (Allow) C:\Users\ROTA\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E2BD851A-EBE4-4B9A-9CC8-03B8C6787CEC}] => (Allow) C:\Users\ROTA\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{1396D8DF-56B4-4F3E-9663-7871FAF3F5A3}] => (Allow) C:\Users\ROTA\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E3BEA5D3-BE19-4F44-966D-85B6C0A7103F}] => (Allow) C:\Users\ROTA\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6389A399-72B7-4125-A5CE-26FA0FAFCC8E}] => (Allow) C:\Users\ROTA\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D9C2B090-46E8-4B8D-A888-71E7287ABF13}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{9044AA2A-3D92-4D69-8E30-F755C0856DFC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{F1BBB759-908F-4F91-8BE9-AD02E036F39B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{F8E89E9A-068A-45EE-99BA-F02CB3A38299}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{2B0D7CBA-0576-4C3A-8338-C867EFA037B1}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{84745597-80EC-4815-8BCD-B2903B9C5894}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{45C52701-2D46-4EA6-87F1-05054C5F7D4B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{FA8D3481-8E05-41C7-8A88-F69E375E4327}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{8F3D9A02-F3FE-428C-BFFD-9016CC67D2E3}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3y.exe
FirewallRules: [{4F7611BF-0F4E-49F3-A552-5EFC3305B872}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3y.exe
FirewallRules: [{7015E3DC-B41E-49D3-A3FA-4C9D854C7825}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Restore Points =========================

27-08-2018 19:20:46 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/29/2018 09:31:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: firefox.exe, verze: 60.0.2.6730, časové razítko: 0x5b16d65f
Název chybujícího modulu: webspam.dll_unloaded, verze: 0.0.0.0, časové razítko: 0x54fab757
Kód výjimky: 0xc0000005
Posun chyby: 0x00000001800017f2
ID chybujícího procesu: 0x1dac
Čas spuštění chybující aplikace: 0x01d43fce8b5db2e8
Cesta k chybující aplikaci: C:\Program Files (x86)\Mozilla Firefox\firefox.exe
Cesta k chybujícímu modulu: webspam.dll
ID zprávy: 199606c3-abc2-11e8-86c0-78843ccc34cc

Error: (08/29/2018 09:31:17 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SpyEmergency.exe verze 25.0.110.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 5fc

Čas spuštění: 01d43fccaa59cca0

Čas ukončení: 55

Cesta k aplikaci: C:\Program Files\NETGATE\Spy Emergency\SpyEmergency.exe

ID hlášení: 0bd21b75-abc2-11e8-86c0-78843ccc34cc

Error: (08/29/2018 09:28:59 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.

Error: (08/29/2018 09:28:45 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.

Error: (08/29/2018 09:26:45 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program chrome.exe verze 68.0.3440.106 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 1028

Čas spuštění: 01d43fcd4c5752e8

Čas ukončení: 3

Cesta k aplikaci: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

ID hlášení: 5c927194-abc1-11e8-86c0-78843ccc34cc

Error: (08/29/2018 09:23:27 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.

Error: (08/29/2018 06:52:39 PM) (Source: Wininit) (EventID: 1015) (User: )
Description: Došlo k selhání kritického systémového procesu C:\Windows\system32\lsm.exe se stavovým kódem 1. Počítač je nyní nutné restartovat.

Error: (08/29/2018 06:30:48 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.


System errors:
=============
Error: (08/29/2018 09:22:11 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Microsoft .NET Framework NGEN v4.0.30319_X86 bylo dosaženo časového limitu (30000 ms).

Error: (08/29/2018 09:22:05 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba avgbIDSAgent ukončena s chybou %%-536753635, specifickou pro službu.

Error: (08/29/2018 09:20:22 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (08/29/2018 09:19:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Spybot-S&D 2 Security Center Service neuspěla při spuštění v důsledku následující chyby:
V systému Windows nelze ověřit digitální podpis tohoto souboru. Při nedávné změně hardwaru nebo softwaru mohl být nainstalován nesprávně podepsaný nebo poškozený soubor nebo soubor škodlivého softwaru z neznámého zdroje.

Error: (08/29/2018 09:17:54 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Spy Emergency Engine Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (08/29/2018 09:17:54 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Spy Emergency Engine Service bylo dosaženo časového limitu (30000 ms).

Error: (08/29/2018 09:17:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Spybot-S&D 2 Scanner Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (08/29/2018 09:17:19 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Spybot-S&D 2 Scanner Service bylo dosaženo časového limitu (30000 ms).


Windows Defender:
===================================
Date: 2017-11-02 05:33:06.482
Description:
Prohledávání Windows Defender rozpoznalo spyware nebo jiný potenciálně nežádoucí software.
Další informace:
http://go.microsoft.com/fwlink/?linkid= ... tid=205563
Název:MonitoringTool:Win32/Mipko
ID:205563
Závažnost:Vážné
Kategorie:Monitorovací software
Nalezeno v cestě:file:C:\Programy\kl2\MPKView.exe;file:C:\Users\ROTA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\REFOG Personal Monitor\Order now!.lnk;file:C:\Users\ROTA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\REFOG Personal Monitor\REFOG Personal Monitor on the Web.lnk;startup:C:\Users\ROTA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\REFOG Personal Monitor\Order now!.lnk;startup:C:\Users\ROTA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\REFOG Personal Monitor\REFOG Personal Monitor on the Web.lnk
Typ zjišťování:Konkrétní
Zdroj zjišťování:Systém
Stav:Neznámý
Uživatel:NT AUTHORITY\NETWORK SERVICE
Název procesu:c:\program files\windows defender\MpCmdRun.exe

Date: 2014-02-21 17:55:22.937
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{97DCC8D8-61D4-4326-8BB1-2C9BBE75CF9A}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE

Date: 2013-03-03 17:09:45.950
Description:
Prohledávání Windows Defender rozpoznalo spyware nebo jiný potenciálně nežádoucí software.
Další informace:
http://go.microsoft.com/fwlink/?linkid= ... atid=14895
Název:MonitoringTool:Win32/ActualSpy
ID:14895
Závažnost:Vážné
Kategorie:Monitorovací software
Nalezeno v cestě:containerfile:C:\Program Files (x86)\ACSPMonitor\puvodni\ASMonitor.exe;file:C:\Program Files (x86)\ACSPMonitor\puvodni\ASMonitor.exe->(Asprotect 1.35);folder:C:\ProgramData\Microsoft\Windows\Start Menu\Programs\actual spy\;process:pid:5040
Typ zjišťování:Konkrétní
Zdroj zjišťování:Ochrana v reálném čase
Stav:Neznámý
Uživatel:\
Název procesu:

Date: 2013-03-03 16:59:30.904
Description:
Prohledávání Windows Defender rozpoznalo spyware nebo jiný potenciálně nežádoucí software.
Další informace:
http://go.microsoft.com/fwlink/?linkid= ... atid=14895
Název:MonitoringTool:Win32/ActualSpy
ID:14895
Závažnost:Vážné
Kategorie:Monitorovací software
Nalezeno v cestě:containerfile:C:\Program Files (x86)\ACSPMonitor\puvodni\ASMonitor.exe;file:C:\Program Files (x86)\ACSPMonitor\puvodni\ASMonitor.exe->(Asprotect 1.35);process:pid:5040
Typ zjišťování:Konkrétní
Zdroj zjišťování:Ochrana v reálném čase
Stav:Neznámý
Uživatel:\
Název procesu:

Date: 2012-05-22 01:12:11.732
Description:
Prohledávání Windows Defender rozpoznalo spyware nebo jiný potenciálně nežádoucí software.
Další informace:
http://go.microsoft.com/fwlink/?linkid= ... atid=16378
Název:MonitoringTool:Win32/KGBKeylogger
ID:16378
Závažnost:Vážné
Kategorie:Monitorovací software
Nalezeno v cestě:containerfile:C:\programy\kgb\MPK.exe;containerfile:G:\KGB Key Logger 4.5.4 + Serial\kgb_setup-454.exe;file:C:\ProgramData\MPK\1\D0000;file:C:\ProgramData\MPK\1\S0000;file:C:\ProgramData\MPK\key.bin;file:C:\ProgramData\MPK\KGB Spy.lnk;file:C:\ProgramData\MPK\KGB Spy\Help topics.lnk;file:C:\ProgramData\MPK\KGB Spy\KGB Spy on the Web.lnk;file:C:\ProgramData\MPK\KGB Spy\KGB Spy.lnk;file:C:\ProgramData\MPK\KGB Spy\Order now!.lnk;file:C:\ProgramData\MPK\KGB Spy\Uninstall KGB Spy.lnk;file:C:\ProgramData\MPK\M0000;file:C:\ProgramData\MPK\S0000;file:C:\programy\kgb\MPK.exe->(Asprotect 2.2);file:G:\KGB Key Logger 4.5.4 + Serial\kgb_setup-454.exe->(inno#000000)->(Asprotect 2.2);file:G:\KGB Key Logger 4.5.4 + Serial\kgb_setup-454.exe->(inno#000002);file:G:\KGB Key Logger 4.5.4 + Serial\kgb_setup-454.exe->(inno#000003);folder:C:\ProgramData\MPK\;folder:C:\ProgramData\MPK\1\;folder:C:\ProgramData\MPK\KGB Spy\;process:pid:2184;process:pid:4480;regkey:HKLM\software\classes\mpkreg
Typ zjišťování:Konkrétní
Zdroj zjišťování:Ochrana v reálném čase
Stav:Neznámý
Uživatel:\
Název procesu:

Date: 2012-05-21 23:40:01.676
Description:
Prohledávání Windows Defender zjistilo chybu při provádění akce u spywaru nebo jiného potenciálně nežádoucího softwaru.
Další informace:
http://go.microsoft.com/fwlink/?linkid= ... atid=14895
Uživatel:\
Název:MonitoringTool:Win32/ActualSpy
ID:14895
Závažnost:Vážné
Kategorie:Monitorovací software
Cesta:
Akce:Odebrat
Kód chyby:0x80508023
Popis chyby:Programu se nepodařilo najít spyware ani jiný potenciálně nežádoucí software v tomto počítači.
Stav:

CodeIntegrity:
===================================

Date: 2018-08-29 21:36:24.733
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-08-29 21:36:24.659
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-08-29 21:36:24.533
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-08-29 21:36:24.453
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-08-29 21:19:38.769
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-08-29 20:00:36.249
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-08-29 20:00:36.202
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-08-29 19:29:49.658
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i3 CPU M 380 @ 2.53GHz
Percentage of memory in use: 64%
Total physical RAM: 3950.1 MB
Available physical RAM: 1387.93 MB
Total Virtual: 7898.34 MB
Available Virtual: 4815.66 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:282.87 GB) (Free:21.82 GB) NTFS

\\?\Volume{e4c98ea9-5ede-11e0-b5bf-806e6f6e6963}\ (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
\\?\Volume{e4c98ea8-5ede-11e0-b5bf-806e6f6e6963}\ (Recovery) (Fixed) (Total:15.12 GB) (Free:0.73 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: CCD8E058)
Partition 1: (Not Active) - (Size=15.1 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=282.9 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

[Rudy]

Zdravím!
Kontrola RAM a hlášení prohlížeče nemají nic společného. Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

[patarasa]

# -------------------------------
# Malwarebytes AdwCleaner 7.2.2.0
# -------------------------------
# Build: 07-17-2018
# Database: 2018-07-12.1
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 08-29-2018
# Duration: 00:00:03
# OS: Windows 7 Home Premium
# Cleaned: 35
# Failed: 1


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\ProgramData\Partner
Deleted C:\Program Files (x86)\Conduit
Deleted C:\Program Files (x86)\DAEMON Tools Toolbar
Deleted C:\extensions

***** [ Files ] *****

Deleted C:\Windows\SysWOW64\conduitEngine.tmp

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Conduit
Deleted HKLM\Software\Wow6432Node\Conduit
Deleted HKLM\Software\Classes\Conduit.Engine
Deleted HKCU\Software\dt soft\daemon tools toolbar
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\uTorrentBar Toolbar
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}
Deleted HKLM\Software\Classes\Interface\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{FA7B2795-C0C8-4A58-8672-3F8D80CC0270}
Deleted HKLM\Software\Classes\Interface\{FA7B2795-C0C8-4A58-8672-3F8D80CC0270}
Deleted HKLM\Software\Wow6432Node\Classes\TypeLib\{1112F282-7099-4624-A439-DB29D6551552}
Deleted HKLM\Software\Classes\TypeLib\{1112F282-7099-4624-A439-DB29D6551552}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{7D86A08B-0A8F-4BE0-B693-F05E6947E780}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Deleted HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{32099AAC-C132-4136-9E9A-4E364A424E17}
Not Deleted HKLM\Software\Microsoft\Internet Explorer\Toolbar|{32099AAC-C132-4136-9E9A-4E364A424E17}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Deleted HKLM\Software\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Deleted HKCU\Software\AppDataLow\Toolbar
Deleted HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks|{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}
Deleted HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\URLSearchHooks|{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}
Deleted HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}
Deleted HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar|{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}
Deleted HKLM\Software\Wow6432Node\Classes\CLSID\{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}

***** [ Chromium (and derivatives) ] *****

Deleted uTorrentBar

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [4880 octets] - [29/08/2018 23:22:48]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

[patarasa]

Zkoušel jsme to potom ještě jednou a opět to něco našlo:



# -------------------------------
# Malwarebytes AdwCleaner 7.2.2.0
# -------------------------------
# Build: 07-17-2018
# Database: 2018-08-24.1
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 08-29-2018
# Duration: 00:00:01
# OS: Windows 7 Home Premium
# Cleaned: 1
# Failed: 1


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\TBDEn|SBOEM2
Not Deleted HKLM\Software\Microsoft\Internet Explorer\Toolbar|{32099AAC-C132-4136-9E9A-4E364A424E17}

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [4880 octets] - [29/08/2018 23:22:48]
AdwCleaner[C00].txt - [4410 octets] - [29/08/2018 23:24:18]
AdwCleaner[S01].txt - [1557 octets] - [29/08/2018 23:38:15]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########

[Rudy]

OK. Dejte nový log FRST.

[patarasa]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 23.08.2018
Ran by ROTA (administrator) on ROTA-VAIO (31-08-2018 00:39:18)
Running from C:\Users\ROTA\Downloads
Loaded Profiles: ROTA & (Available Profiles: ROTA)
Platform: Windows 7 Home Premium (X64) Language: Čeština (Česká republika)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Malwarebytes) C:\Users\ROTA\Downloads\adwcleaner_7.2.2.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update 5\VAIOUpdt.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(FSPro Labs) C:\Program Files\My Lockbox\mylbx.exe
(NETGATE Technologies s.r.o.) C:\Program Files\NETGATE\Spy Emergency\SpyEmergency.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(NETGATE Technologies s.r.o.) C:\Program Files\NETGATE\Spy Emergency\SpyEmergencyHealth.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(ArcSoft, Inc.) C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSub.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google) C:\Users\ROTA\AppData\Local\Google\Chrome\User Data\SwReporter\32.169.200\software_reporter_tool.exe
(Google) C:\Users\ROTA\AppData\Local\Google\Chrome\User Data\SwReporter\32.169.200\software_reporter_tool.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMService.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\ielowutil.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10775584 2010-05-31] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2040352 2010-05-31] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2057000 2010-05-31] (Synaptics Incorporated)
HKLM\...\Run: [mylbx] => C:\Program Files\My Lockbox\mylbx.exe [2289952 2013-10-28] (FSPro Labs)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2010-03-04] (Intel Corporation)
HKLM-x32\...\Run: [ISBMgr.exe] => C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [673136 2010-05-31] (Sony Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Programy\Adobe\Reader 9.0\Reader\Reader_sl.exe [35760 2009-12-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-02-09] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe [600928 2010-06-01] (Sony Corporation)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31072 2008-10-25] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696 2012-01-18] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2010-03-17] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [142120 2010-03-26] (Apple Inc.)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [98024 2018-08-17] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [6788032 2018-04-20] (Safer-Networking Ltd.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\Run: [Facebook Update] => "C:\Users\ROTA\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\Run: [SpyEmergency] => C:\Program Files\NETGATE\Spy Emergency\SpyEmergency.exe [3280864 2018-08-17] (NETGATE Technologies s.r.o.)
HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\MountPoints2: {72996940-bf8f-11e0-8bca-806e6f6e6963} - E:\autorun.exe
HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\MountPoints2: {a1ddee6c-d33c-11e1-bcaa-889ffae75e7d} - F:\AutoRun.exe
HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\MountPoints2: {abecd56d-c3c3-11e2-9731-78843ccc34cc} - F:\AutoRun.exe
HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\MountPoints2: {e022dfea-d333-11e1-baa2-889ffae75e7d} - F:\AutoRun.exe
HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\...\Run: [Facebook Update] => "C:\Users\ROTA\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\...\Run: [SpyEmergency] => C:\Program Files\NETGATE\Spy Emergency\SpyEmergency.exe [3280864 2018-08-17] (NETGATE Technologies s.r.o.)
HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\...\MountPoints2: {72996940-bf8f-11e0-8bca-806e6f6e6963} - E:\autorun.exe
HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\...\MountPoints2: {a1ddee6c-d33c-11e1-bcaa-889ffae75e7d} - F:\AutoRun.exe
HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\...\MountPoints2: {abecd56d-c3c3-11e2-9731-78843ccc34cc} - F:\AutoRun.exe
HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\...\MountPoints2: {e022dfea-d333-11e1-baa2-889ffae75e7d} - F:\AutoRun.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2010-11-15]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 88.81.64.1 88.81.92.1
Tcpip\..\Interfaces\{3F24EAB0-8B7F-44A9-90BE-81F46A5F0FCF}: [DhcpNameServer] 88.81.64.1 88.81.92.1
Tcpip\..\Interfaces\{A3BBF46B-A159-4BF4-B070-5D52FC44EA02}: [DhcpNameServer] 213.46.172.36 192.168.1.254

Internet Explorer:
==================
HKU\S-1-5-21-1100568721-3396338888-504170877-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com/ig/redirectdomain?brand=SVEE&bmod=SVEE
HKU\S-1-5-21-1100568721-3396338888-504170877-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=SVEE&bmod=SVEE
HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com/ig/redirectdomain?brand=SVEE&bmod=SVEE
HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=SVEE&bmod=SVEE
SearchScopes: HKU\S-1-5-21-1100568721-3396338888-504170877-1000 -> DefaultScope {AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8} URL =
SearchScopes: HKU\S-1-5-21-1100568721-3396338888-504170877-1000 -> {3E4DE001-B69B-475C-ABC8-AA17FBCD0BE9} URL = hxxp://services.zinio.com/search?s={searchTerms}&rf=sonyslices
SearchScopes: HKU\S-1-5-21-1100568721-3396338888-504170877-1000 -> {E62EFDE4-4DC2-4D94-9A86-236800978036} URL = hxxp://rover.ebay.com/rover/1//4?satitle={searchTerms}
SearchScopes: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985 -> DefaultScope {AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8} URL =
SearchScopes: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985 -> {3E4DE001-B69B-475C-ABC8-AA17FBCD0BE9} URL = hxxp://services.zinio.com/search?s={searchTerms}&rf=sonyslices
SearchScopes: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985 -> {E62EFDE4-4DC2-4D94-9A86-236800978036} URL = hxxp://rover.ebay.com/rover/1//4?satitle={searchTerms}
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-11-15] (Sun Microsystems, Inc.)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21] (Adobe Systems Incorporated)
BHO-x32: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2012-03-17] (Sun Microsystems, Inc.)
BHO-x32: Windows Live Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2012-03-17] (Sun Microsystems, Inc.)
Toolbar: HKLM - No Name - {32099AAC-C132-4136-9E9A-4E364A424E17} - No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.)
Toolbar: HKU\S-1-5-21-1100568721-3396338888-504170877-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
Toolbar: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-17] (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-17] (Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2011-08-20] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2011-08-20] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2011-08-20] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2011-08-20] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: 119shh73.default
FF ProfilePath: C:\Users\ROTA\AppData\Roaming\Mozilla\Firefox\Profiles\119shh73.default [2018-08-29]
FF Extension: (Avira Browser Safety) - C:\Users\ROTA\AppData\Roaming\Mozilla\Firefox\Profiles\119shh73.default\Extensions\abs@avira.com [2018-01-08]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll [No File]
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2010-03-25] ()
FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll [2012-03-17] (Sun Microsystems, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8117.0416 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-04-17] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-19] (Google Inc.)
FF Plugin HKU\S-1-5-21-1100568721-3396338888-504170877-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\ROTA\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [No File]
FF Plugin HKU\S-1-5-21-1100568721-3396338888-504170877-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\ROTA\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-1100568721-3396338888-504170877-1000: @talk.google.com/O1DPlugin -> C:\Users\ROTA\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-1100568721-3396338888-504170877-1000: @tools.google.com/Google Update;version=3 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin HKU\S-1-5-21-1100568721-3396338888-504170877-1000: @tools.google.com/Google Update;version=9 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\ROTA\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [No File]
FF Plugin HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985: @talk.google.com/GoogleTalkPlugin -> C:\Users\ROTA\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985: @talk.google.com/O1DPlugin -> C:\Users\ROTA\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985: @tools.google.com/Google Update;version=3 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985: @tools.google.com/Google Update;version=9 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\ROTA\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\ROTA\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-08] (Google)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://seznam.cz/
CHR Profile: C:\Users\ROTA\AppData\Local\Google\Chrome\User Data\Default [2018-08-31]
CHR Extension: (Prezentace) - C:\Users\ROTA\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
CHR Extension: (Dokumenty) - C:\Users\ROTA\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Disk Google) - C:\Users\ROTA\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\ROTA\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-01]
CHR Extension: (Vyhledávání Google) - C:\Users\ROTA\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Tabulky) - C:\Users\ROTA\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
CHR Extension: (Avira Browser Safety) - C:\Users\ROTA\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2018-05-26]
CHR Extension: (Dokumenty Google offline) - C:\Users\ROTA\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-24]
CHR Extension: (AdBlock) - C:\Users\ROTA\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-07-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\ROTA\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Gmail) - C:\Users\ROTA\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-25]
CHR Extension: (Chrome Media Router) - C:\Users\ROTA\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-08-28]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bejbohlohkkgompgecdcbbglkpjfjgdj] - C:\Users\ROTA\AppData\Local\Temp\crx7C33.tmp <not found>
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [890896 2018-08-23] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [231176 2018-08-23] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [231176 2018-08-23] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1148568 2018-08-23] (Avira Operations GmbH & Co. KG)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-09-02] (Apple Inc.)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [436848 2018-08-17] (Avira Operations GmbH & Co. KG)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-09] (Malwarebytes)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3892256 2018-04-20] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [3943664 2018-04-20] (Safer-Networking Ltd.)
S2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [233712 2018-02-06] (Safer-Networking Ltd.)
R2 SpyEmrgHealth; C:\Program Files\NETGATE\Spy Emergency\SpyEmergencyHealth.exe [379192 2015-03-20] (NETGATE Technologies s.r.o.)
S2 SpyEmrgSrv; C:\Program Files\NETGATE\Spy Emergency\SpyEmergencySrv.exe [3332960 2015-03-09] (NETGATE Technologies s.r.o.)
R2 uCamMonitor; C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [104960 2008-09-18] (ArcSoft, Inc.)
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [851824 2010-06-17] (Sony Corporation)
R2 VSNService; C:\Program Files\Sony\VAIO Smart Network\VSNService.exe [836608 2010-06-08] (Sony Corporation) [File not signed]
S3 VUAgent; C:\Program Files\Sony\VAIO Update 5\VUAgent.exe [1250160 2010-05-31] (Sony Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [19968 2009-05-26] (ArcSoft, Inc.)
R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [73240 2018-08-23] (Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [199920 2018-07-07] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [153040 2018-07-07] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [35328 2018-01-03] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [78600 2018-01-03] (Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [34128 2018-01-03] (Avira Operations GmbH & Co. KG)
R0 FSProFilter2; C:\Windows\System32\Drivers\FSPFltd2.sys [57648 2011-06-03] (FSPro Labs)
S3 igfx; C:\Windows\System32\DRIVERS\igdkmd64.sys [10326784 2010-06-24] (Intel Corporation) [File not signed]
S3 IntcDAud; C:\Windows\System32\DRIVERS\IntcDAud.sys [271872 2010-06-24] (Intel(R) Corporation) [File not signed]
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [253664 2018-08-31] (Malwarebytes)
R1 SpyEmrg; C:\Windows\System32\Drivers\spyemrg.sys [17240 2011-04-21] (NETGATE Technologies s.r.o.)
S3 SpyEmrgAccess; C:\Windows\System32\Drivers\spyemrg_access.sys [24408 2011-04-21] (NETGATE Technologies s.r.o.)
S3 SpyEmrgGuard; C:\Windows\System32\Drivers\spyemrg_guard.sys [19768 2015-03-09] (NETGATE Technologies s.r.o.)
S3 Huawei; system32\DRIVERS\ewdcsc.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-08-31 00:34 - 2018-08-31 00:34 - 000253664 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2018-08-29 23:23 - 2018-08-29 23:23 - 000004880 _____ C:\Users\ROTA\Desktop\AdwCleaner[S00].txt
2018-08-29 23:21 - 2018-08-29 23:24 - 000000000 ____D C:\AdwCleaner
2018-08-29 23:17 - 2018-08-29 23:17 - 000000000 ____D C:\Users\ROTA\Downloads\Nová složka
2018-08-29 23:13 - 2018-08-29 23:14 - 007417040 _____ (Malwarebytes) C:\Users\ROTA\Downloads\adwcleaner_7.2.2.exe
2018-08-29 23:04 - 2018-08-29 23:04 - 000002903 _____ C:\Windows\SysWOW64\servers.def.vpx
2018-08-29 23:04 - 2018-08-29 23:04 - 000000920 _____ C:\Windows\SysWOW64\.tmp
2018-08-29 23:04 - 2018-08-29 23:04 - 000000447 _____ C:\Windows\SysWOW64\prod-pgm.vpx
2018-08-29 23:04 - 2018-08-29 23:04 - 000000039 _____ C:\Windows\SysWOW64\Stats.ini
2018-08-29 23:04 - 2018-08-29 23:04 - 000000000 ____D C:\Windows\SysWOW64\New_invalid
2018-08-29 21:37 - 2018-08-29 21:41 - 000063576 _____ C:\Users\ROTA\Downloads\Addition.txt
2018-08-29 21:35 - 2018-08-31 00:40 - 000026798 _____ C:\Users\ROTA\Downloads\FRST.txt
2018-08-29 21:33 - 2018-08-31 00:39 - 000000000 ____D C:\FRST
2018-08-29 21:33 - 2018-08-29 21:33 - 002413056 _____ (Farbar) C:\Users\ROTA\Downloads\FRST64.exe
2018-08-28 22:57 - 2018-08-28 22:57 - 000001867 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2018-08-28 22:57 - 2018-08-28 22:57 - 000001867 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2018-08-28 22:57 - 2018-08-28 22:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-08-28 22:57 - 2018-08-28 22:57 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-08-28 22:57 - 2018-08-28 22:57 - 000000000 ____D C:\Program Files\Malwarebytes
2018-08-28 22:57 - 2018-04-26 05:36 - 000152184 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2018-08-28 18:44 - 2018-08-28 18:44 - 000000000 ____D C:\Program Files\Common Files\avg
2018-08-28 18:42 - 2018-08-28 18:42 - 000001116 _____ C:\Users\Public\Desktop\Avira.lnk
2018-08-28 18:42 - 2018-08-28 18:42 - 000001116 _____ C:\ProgramData\Desktop\Avira.lnk
2018-08-27 21:08 - 2018-08-27 22:13 - 000000563 _____ C:\Windows\wininit.ini
2018-08-27 20:10 - 2018-08-27 20:10 - 000000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2018-08-27 20:09 - 2018-08-31 00:33 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2018-08-27 20:09 - 2018-08-27 21:08 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2018-08-27 20:09 - 2018-08-27 20:09 - 000001391 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2018-08-27 20:09 - 2018-08-27 20:09 - 000001379 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2018-08-27 20:09 - 2018-08-27 20:09 - 000001379 _____ C:\ProgramData\Desktop\Spybot-S&D Start Center.lnk
2018-08-27 20:09 - 2018-08-27 20:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2018-08-27 20:09 - 2018-02-06 19:04 - 000032168 _____ (Safer-Networking Ltd.) C:\Windows\system32\sdnclean64.exe
2018-08-27 18:07 - 2018-08-29 23:20 - 000000000 ____D C:\ProgramData\Avg
2018-08-27 18:07 - 2018-08-29 23:04 - 000000000 ____D C:\Users\ROTA\AppData\Local\AvgSetupLog
2018-08-27 18:07 - 2018-08-27 18:13 - 000000000 ____D C:\Users\ROTA\AppData\Local\Avg
2018-08-27 18:07 - 2018-08-27 18:07 - 000000000 ____D C:\Users\ROTA\AppData\Local\CEF
2018-08-27 18:02 - 2018-08-27 18:05 - 000143592 _____ C:\TDSSKiller.2.8.15.0_27.08.2018_18.02.34_log.txt
2018-08-27 17:47 - 2018-08-27 17:48 - 000145354 _____ C:\TDSSKiller.2.8.15.0_27.08.2018_17.47.16_log.txt
2018-08-27 17:41 - 2018-08-27 17:41 - 000000000 ____D C:\TDSSKiller_Quarantine
2018-08-27 17:40 - 2018-08-27 17:42 - 000145124 _____ C:\TDSSKiller.2.8.15.0_27.08.2018_17.40.32_log.txt
2018-08-24 18:55 - 2016-09-11 15:35 - 000000831 _____ C:\Windows\system32\Drivers\etc\hosts.bak
2018-08-24 15:57 - 2018-08-29 21:29 - 000000000 ____D C:\Users\ROTA\AppData\Roaming\Spy Emergency
2018-08-24 15:57 - 2018-08-29 18:26 - 000001142 _____ C:\Users\Public\Desktop\Spy Emergency.lnk
2018-08-24 15:57 - 2018-08-29 18:26 - 000001142 _____ C:\ProgramData\Desktop\Spy Emergency.lnk
2018-08-24 15:57 - 2018-08-24 15:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spy Emergency
2018-08-24 15:57 - 2015-03-09 12:26 - 000019768 _____ (NETGATE Technologies s.r.o.) C:\Windows\system32\Drivers\spyemrg_guard.sys
2018-08-24 15:57 - 2011-04-21 11:31 - 000024408 _____ (NETGATE Technologies s.r.o.) C:\Windows\system32\Drivers\spyemrg_access.sys
2018-08-24 15:57 - 2011-04-21 11:31 - 000017240 _____ (NETGATE Technologies s.r.o.) C:\Windows\system32\Drivers\spyemrg.sys
2018-08-24 15:56 - 2018-08-24 15:56 - 000000000 ____D C:\ProgramData\NETGATE
2018-08-24 15:55 - 2018-08-24 15:55 - 000000000 ____D C:\Program Files\NETGATE
2018-08-23 21:18 - 2018-08-23 21:18 - 000002176 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2018-08-23 21:18 - 2018-08-23 21:18 - 000002164 _____ C:\Users\Public\Desktop\Google Earth Pro.lnk
2018-08-23 21:18 - 2018-08-23 21:18 - 000002164 _____ C:\ProgramData\Desktop\Google Earth Pro.lnk

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-08-31 00:38 - 2011-04-04 19:26 - 000003970 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{B73FF69A-4F4B-4042-9ED2-8C7E9093BED4}
2018-08-31 00:31 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-08-29 23:56 - 2018-01-09 01:08 - 000003292 _____ C:\Windows\System32\Tasks\Avira_Antivirus_Systray
2018-08-29 23:53 - 2009-07-14 06:45 - 000009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-08-29 23:53 - 2009-07-14 06:45 - 000009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-08-29 23:35 - 2010-10-14 22:36 - 000634546 _____ C:\Windows\system32\perfh005.dat
2018-08-29 23:35 - 2010-10-14 22:36 - 000123104 _____ C:\Windows\system32\perfc005.dat
2018-08-29 23:35 - 2009-07-14 07:13 - 001478586 _____ C:\Windows\system32\PerfStringBackup.INI
2018-08-29 23:35 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2018-08-29 23:24 - 2018-01-08 22:30 - 001839782 _____ C:\Windows\ntbtlog.txt
2018-08-29 23:09 - 2013-10-19 14:12 - 000000924 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000UA.job
2018-08-29 23:06 - 2017-09-05 20:46 - 000000000 ____D C:\Users\ROTA\AppData\LocalLow\Mozilla
2018-08-29 22:20 - 2017-09-04 20:53 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-08-29 22:20 - 2016-10-10 19:35 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-08-28 18:42 - 2018-01-08 22:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2018-08-28 18:42 - 2018-01-08 21:32 - 000000000 ____D C:\ProgramData\Package Cache
2018-08-24 16:49 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system
2018-08-23 21:21 - 2018-01-09 01:07 - 000073240 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avdevprot.sys
2018-08-23 21:18 - 2010-11-15 13:00 - 000000000 ____D C:\Program Files\Google
2018-08-20 11:09 - 2013-10-19 14:12 - 000000902 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000Core.job
2018-08-09 00:18 - 2011-04-07 04:05 - 000000000 ____D C:\Users\ROTA\AppData\Local\MediaMonkey
2018-08-02 22:54 - 2016-05-13 18:27 - 000000000 ____D C:\Users\ROTA\AppData\Roaming\uTorrent
2018-08-02 18:41 - 2018-07-29 14:46 - 000000000 ____D C:\Users\ROTA\AppData\LocalLow\uTorrent

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-08-27 19:13

==================== End of FRST.txt ============================






Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23.08.2018
Ran by ROTA (31-08-2018 00:41:23)
Running from C:\Users\ROTA\Downloads
Windows 7 Home Premium (X64) (2011-04-04 17:21:51)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1100568721-3396338888-504170877-500 - Administrator - Disabled)
Guest (S-1-5-21-1100568721-3396338888-504170877-501 - Limited - Disabled)
ROTA (S-1-5-21-1100568721-3396338888-504170877-1000 - Administrator - Enabled) => C:\Users\ROTA

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Antivirus (Enabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AS: Avira Antivirus (Enabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Spy Emergency (Disabled - Up to date) {CF31796E-7D30-C232-4F2D-6993AAA725AC}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\uTorrent) (Version: 3.5.3.44494 - BitTorrent Inc.)
µTorrent (HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\...\uTorrent) (Version: 3.5.3.44494 - BitTorrent Inc.)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.3.9130 - Adobe Systems Inc.)
Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.0.45.2 - Adobe Systems Incorporated)
Adobe Flash Player 10 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 10.0.45.2 - Adobe Systems Incorporated)
Adobe Photoshop CS3 (HKLM-x32\...\Adobe_4977c84bcdc298c444ccfbdcccb660d) (Version: 10.0 - Adobe Systems Incorporated)
Adobe Photoshop Elements 8.0 (HKLM-x32\...\Adobe Photoshop Elements 8.0) (Version: 8.0 - Adobe Systems Incorporated)
Adobe Premiere Elements 8.0 (HKLM-x32\...\PremElem80) (Version: 8.0 - Adobe Systems Incorporated)
Adobe Reader 9.3 - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-A93000000001}) (Version: 9.3.0 - Adobe Systems Incorporated)
Adobe Reader 9.3 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A93000000001}) (Version: 9.3.0 - Adobe Systems Incorporated)
Age of Empires III - The Asian Dynasties (HKLM-x32\...\{C43C1415-3DFC-4089-9A32-0BECF28A6046}) (Version: 1.00.0000 - Microsoft) Hidden
Age of Empires III - The Asian Dynasties (HKLM-x32\...\InstallShield_{C43C1415-3DFC-4089-9A32-0BECF28A6046}) (Version: 1.00.0000 - Microsoft)
Age of Empires III (HKLM-x32\...\{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}) (Version: 1.00.0000 - Microsoft Game Studios) Hidden
Age of Empires III (HKLM-x32\...\InstallShield_{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}) (Version: 1.00.0000 - Microsoft Game Studios)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Apple Mobile Device Support (HKLM\...\{FD244E19-6EFE-4A2D-948A-0D45D4C168BE}) (Version: 9.0.0.26 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
ArcSoft Magic-i Visual Effects 2 (HKLM-x32\...\{7BB90344-0647-468E-925A-7F69F7983421}) (Version: 2.0.1.115 - ArcSoft)
ArcSoft WebCam Companion 3 (HKLM-x32\...\{DE8AAC73-6D8D-483E-96EA-CAEDDADB9079}) (Version: 3.0.21.368 - ArcSoft)
ATI Catalyst Install Manager (HKLM\...\{687C26DE-9A70-B256-170A-717DFA8B360E}) (Version: 3.0.750.0 - ATI Technologies, Inc.)
Audacity 1.3.12 (Unicode) (HKLM-x32\...\Audacity 1.3 Beta (Unicode)_is1) (Version: - Audacity Team)
Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team)
Avira (HKLM-x32\...\{532da46c-2aa3-4588-a4a2-b02bc641bf95}) (Version: 1.2.119.17994 - Avira Operations GmbH & Co. KG)
Avira (HKLM-x32\...\{9620D4C2-CF5B-4DBE-8103-CC9DAB0871C6}) (Version: 1.2.119.17994 - Avira Operations GmbH & Co. KG) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.39.5 - Avira Operations GmbH & Co. KG)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.69.1079 - AB Team, d.o.o.)
Camersoft Skype Recorder 3.1.08 (HKLM-x32\...\Camersoft Skype Recorder_is1) (Version: - Camersoft Studio)
ccc-core-static (HKLM-x32\...\{F572C0E3-90D1-CC46-C163-4C4E50D3C220}) (Version: 2010.0209.16.306 - ATI) Hidden
DTS+AC3 ÇĘĹÍ (HKLM-x32\...\DtsFilter) (Version: - )
Evernote (HKLM-x32\...\{F761359C-9CED-45AE-9A51-9D6605CD55C4}) (Version: 3.5.4.2224 - Evernote Corp.)
Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
GameRanger (HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\GameRanger) (Version: - GameRanger Technologies)
GameRanger (HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\...\GameRanger) (Version: - GameRanger Technologies)
GOM Player (HKLM-x32\...\GOM Player) (Version: 2.1.40.5106 - Gretech Corporation)
Google Earth Pro (HKLM\...\{F914BC59-918A-498F-B2E3-B274C9CB48A8}) (Version: 7.3.2.5491 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 68.0.3440.106 - Google Inc.)
Google Talk Plugin (HKLM-x32\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 5.41.3.0 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Half-Life (Xash3D 0.95 Build 2271 engine) with datadisk Half-Life: Opposing Force & datadisk Half-Life: Blue Shift (HKLM-x32\...\Half-Life (Xash3D 0.95 Build 2271 engine) with datadisk Half-Life: Opposing Force & datadisk Half-Life: Blue Shift) (Version: - )
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.0.1014 - Intel Corporation)
Intel(R) Turbo Boost Technology Driver (HKLM-x32\...\{D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}) (Version: 01.02.00.1002 - Intel Corporation)
iTunes (HKLM\...\{4CE36E6A-300B-427C-BEC7-B261CC13814E}) (Version: 9.1.0.79 - Apple Inc.)
Java(TM) 6 Update 18 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216018F0}) (Version: 6.0.180 - Sun Microsystems, Inc.)
Java(TM) 6 Update 20 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416020FF}) (Version: 6.0.200 - Sun Microsystems, Inc.)
Java(TM) 6 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216031FF}) (Version: 6.0.310 - Oracle)
Junk Mail filter update (HKLM-x32\...\{8E5233E1-7495-44FB-8DEB-4BE906D59619}) (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Malwarebytes verze 3.5.1.2522 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes)
Media Gallery (HKLM\...\{115B60D5-BBDB-490E-AF2E-064D37A3CE01}) (Version: 1.3.0 - Sony Corporation) Hidden
Media Gallery (HKLM\...\{202B76AB-1B21-434E-A289-788D767D3A7C}) (Version: 1.3.0 - Sony Corporation) Hidden
Media Gallery (HKLM-x32\...\{20536917-E2DF-45D9-B41F-9AC0CAFFE48A}) (Version: 1.3.0.06230 - Sony Corporation) Hidden
Media Gallery (HKLM-x32\...\{3DB5EA77-4A14-4EC9-8BFC-73BC848BDE73}) (Version: 1.3.0.06230 - Sony Corporation) Hidden
Media Gallery (HKLM-x32\...\{D8FF4505-5977-4116-8DE4-2AF7174E70AC}) (Version: 1.3.0.06230 - Sony Corporation) Hidden
MediaMonkey 3.2 (HKLM-x32\...\MediaMonkey_is1) (Version: 3.2 - Ventis Media Inc.)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 2 (SP2) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}) (Version: - Microsoft)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6425.1000 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 60.0.2 (x64 cs) (HKLM\...\Mozilla Firefox 60.0.2 (x64 cs)) (Version: 60.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 60.0.2.6730 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
My Lockbox 3.0.5 (HKLM\...\My Lockbox_is1) (Version: 3.0.5 - )
Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version: 1.5.7.1480 - Native Instruments)
Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: 2.4.3.1177 - Native Instruments)
Native Instruments Traktor 2 (HKLM-x32\...\Native Instruments Traktor 2) (Version: 2.6.4.228 - Native Instruments)
Native Instruments Traktor DJ Studio 3 (HKLM-x32\...\Native Instruments Traktor DJ Studio 3) (Version: - )
PDF Settings (HKLM-x32\...\{293D5729-7C01-4FA4-A4DE-BB6A1587BBB9}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
PMB (HKLM-x32\...\{B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C}) (Version: 5.3.00.06040 - Sony Corporation)
PMB VAIO Edition Guide (HKLM-x32\...\{88C252C8-A7EE-4B60-BF74-8E5919A8048F}) (Version: 1.3.00.06040 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (Click to Disc) (HKLM\...\{10E14C74-0638-4996-ABAD-BBF7A6CF1FAA}) (Version: 3.3.00 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (Click to Disc) (HKLM\...\{1E37FC84-799E-481B-9462-3489861E36C9}) (Version: 3.3.00 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (Click to Disc) (HKLM-x32\...\{4DCEA9C1-4D6E-41BF-A854-28CFA8B56DBF}) (Version: 3.3.00.06180 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (Click to Disc) (HKLM-x32\...\{CFB66DB0-00AC-4CBC-B99D-99EFEB03743C}) (Version: 3.3.00 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (VAIO Image Optimizer) (HKLM-x32\...\{1873FFC1-FDCB-47E1-B7C7-F418211E3530}) (Version: 1.3.00.06110 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (VAIO Movie Story) (HKLM\...\{4DABD2B3-B67A-41B0-86FE-C11AAF5D158A}) (Version: 2.3.00 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (VAIO Movie Story) (HKLM\...\{5AC18E2C-7EAB-4F9E-BEEC-07FD722B28E3}) (Version: 2.3.00 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (VAIO Movie Story) (HKLM-x32\...\{B25563A0-41F4-4A81-A6C1-6DBC0911B1F3}) (Version: 2.3.00.06180 - Sony Corporation) Hidden
PMB VAIO Edition plug-in (VAIO Movie Story) (HKLM-x32\...\{FBB4411F-1328-4E36-A5B3-16AA8CFA8F9C}) (Version: 2.3.00 - Sony Corporation) Hidden
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
PowerISO (HKLM-x32\...\PowerISO) (Version: 4.7 - PowerISO Computing, Inc.)
QIP 2005 8097 (HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\QIP 2005) (Version: 8097 - )
QIP 2005 8097 (HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\...\QIP 2005) (Version: 8097 - )
QuickTime (HKLM-x32\...\{28BE306E-5DA6-4F9C-BDB0-DBA3C8C6FFFD}) (Version: 7.66.71.0 - Apple Inc.)
Realtek HDMI Audio Driver for ATI (HKLM-x32\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.6034 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6098 - Realtek Semiconductor Corp.)
Reason 5.0 (HKLM-x32\...\Reason5_is1) (Version: 5.0 - Propellerhead Software AB)
Remote Keyboard with PlayStation 3 (HKLM-x32\...\{65B138AE-F636-4D4C-BA5D-A06E21E47C53}) (Version: 1.0.2.06170 - Sony Corporation)
Remote Play with PlayStation 3 (HKLM-x32\...\{734B6C6C-4740-476F-BB0C-F7AF469EDBB2}) (Version: 1.0.2.06210 - Sony Corporation) Hidden
Remote Play with PlayStation®3 (HKLM-x32\...\{07441A52-E208-478A-92B7-5C337CA8C131}) (Version: 1.0.2.06210 - Sony Corporation)
Skype™ 7.24 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.)
SmartSound Quicktracks for Premiere Elements 8.0 (HKLM-x32\...\{4685A344-6718-4923-AA9D-158A0A2E1CFB}) (Version: 3.11.3090 - SmartSound Software Inc) Hidden
SmartSound Quicktracks for Premiere Elements 8.0 (HKLM-x32\...\InstallShield_{4685A344-6718-4923-AA9D-158A0A2E1CFB}) (Version: 3.11.3090 - SmartSound Software Inc)
Spy Emergency 2018-25.0.110 (HKLM\...\Spy Emergency_is1) (Version: - NETGATE Technologies s.r.o.)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.7.64.0 - Safer-Networking Ltd.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.9.0 - Synaptics Incorporated)
TmNationsForever (HKLM-x32\...\TmNationsForever_is1) (Version: - Nadeo)
Update for 2007 Microsoft Office System (KB2284654) (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{FB166E7C-8AA6-48C8-B726-1F25BEE7825A}) (Version: - Microsoft)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Outlook 2007 Junk Email Filter (KB2596560) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{2964DDE1-4925-4DF1-AF2C-0A36B3442228}) (Version: - Microsoft)
VAIO - Media Gallery (HKLM-x32\...\{DD88F979-FA58-41AC-980C-A6E1A82B61D9}) (Version: 1.3.0.06230 - Sony Corporation)
VAIO - PMB VAIO Edition Guide (HKLM-x32\...\InstallShield_{88C252C8-A7EE-4B60-BF74-8E5919A8048F}) (Version: 1.3.00.06040 - Sony Corporation)
VAIO - PMB VAIO Edition plug-in (Click to Disc) (HKLM-x32\...\InstallShield_{4DCEA9C1-4D6E-41BF-A854-28CFA8B56DBF}) (Version: 3.3.00.06180 - Sony Corporation)
VAIO - PMB VAIO Edition plug-in (VAIO Image Optimizer) (HKLM-x32\...\InstallShield_{1873FFC1-FDCB-47E1-B7C7-F418211E3530}) (Version: 1.3.00.06110 - Sony Corporation)
VAIO - PMB VAIO Edition plug-in (VAIO Movie Story) (HKLM-x32\...\InstallShield_{B25563A0-41F4-4A81-A6C1-6DBC0911B1F3}) (Version: 2.3.00.06180 - Sony Corporation)
VAIO Control Center (HKLM-x32\...\{72042FA6-5609-489F-A8EA-3C2DD650F667}) (Version: 4.3.0.05310 - Sony Corporation)
VAIO Data Restore Tool (HKLM-x32\...\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}) (Version: 1.4.0.05240 - Sony Corporation)
VAIO Data Restore Tool (HKLM-x32\...\{8211C280-5B02-4E7E-B55F-845A207249BA}) (Version: 1.4.0.05240 - Sony Corporation) Hidden
VAIO DVD Menu Data (HKLM-x32\...\{596BED91-A1D8-4DF1-8CD1-1C777F7588AC}) (Version: 2.2.00.05120 - Sony Corporation)
VAIO Gate (HKLM-x32\...\{A7C30414-2382-4086-B0D6-01A88ABA21C3}) (Version: 2.2.0.06080 - Sony Corporation)
VAIO Gate Default (HKLM-x32\...\{B7546697-2A80-4256-A24B-1C33163F535B}) (Version: 2.2.0.07020 - Sony Corporation)
VAIO Hardware Diagnostics (HKLM-x32\...\{2F9D63BE-A891-4E39-AFB3-7402D486800C}) (Version: 4.0.0.06230 - Sony Corporation) Hidden
VAIO Manual (HKLM-x32\...\{C6E893E7-E5EA-4CD5-917C-5443E753FCBD}) (Version: 1.1.0.05280 - Sony Corporation)
VAIO Media plus (HKLM\...\{5AFD1F5C-8FDA-413C-AF38-F1E7BD10D72F}) (Version: 2.1.0 - Sony Corporation) Hidden
VAIO Media plus (HKLM\...\{A3D964A6-411A-4817-9D58-5CB8808F494E}) (Version: 2.1.0 - Sony Corporation) Hidden
VAIO Media plus (HKLM-x32\...\{177AF091-7854-4615-8327-AC7518F62782}) (Version: 2.1.0.18210 - Sony Corporation) Hidden
VAIO Media plus (HKLM-x32\...\{4B9DA746-5AE1-4BA0-9087-BDB162242890}) (Version: 2.1.0.18210 - Sony Corporation) Hidden
VAIO Media plus (HKLM-x32\...\{52F9CDDA-26F6-4499-90E0-6DDDE6D2259C}) (Version: 2.1.0.18210 - Sony Corporation) Hidden
VAIO Media plus (HKLM-x32\...\{8DE50158-80AA-4FF2-9E9F-0A7C46F71FCD}) (Version: 2.1.0.18210 - Sony Corporation)
VAIO Media plus (HKLM-x32\...\{B941F34C-F36A-4A6F-A97C-50B5948E451F}) (Version: 2.1.0.18210 - Sony Corporation) Hidden
VAIO Media plus Opening Movie (HKLM-x32\...\{9238E8A4-BEBA-43A3-B926-769BDBF194C5}) (Version: 2.1.0.13220 - Sony Corporation)
VAIO Movie Story Template Data (HKLM-x32\...\{6FA8BA2C-052B-4072-B8E2-2302C268BE9E}) (Version: 2.3.00.06040 - Sony Corporation) Hidden
VAIO Movie Story Template Data (HKLM-x32\...\InstallShield_{6FA8BA2C-052B-4072-B8E2-2302C268BE9E}) (Version: 2.3.00.06040 - Sony Corporation)
VAIO Quick Web Access (HKLM-x32\...\{5A92468F-3ED8-4F96-A9E1-4F176C80EC29}) (Version: 1.3.4.2 - Sony Corporation) Hidden
VAIO Quick Web Access (HKLM-x32\...\splashtop) (Version: 1.3.4.2 - Sony Corporation)
VAIO Sample Contents (HKLM-x32\...\{547C9EB4-4CA6-402F-9D1B-8BD30DC71E44}) (Version: 1.3.0.06041 - Sony Corporation)
VAIO screensaver (HKLM-x32\...\VAIO screensaver) (Version: 1.0.0.0 - Sony Europe)
VAIO Smart Network (HKLM-x32\...\{0899D75A-C2FC-42EA-A702-5B9A5F24EAD5}) (Version: 3.3.0.06080 - Sony Corporation)
VAIO Transfer Support (HKLM-x32\...\{5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}) (Version: 1.2.0.06230 - Sony Corporation)
VAIO Update (HKLM-x32\...\{5BEE8F1F-BD32-4553-8107-500439E43BD7}) (Version: 5.2.0.05310 - Sony Corporation)
VBA (2627.01) (HKLM-x32\...\{5545EEE1-FA36-4F76-B6BE-5696E7F4E2D6}) (Version: 6.03.00.9402 - Microsoft Corporation) Hidden
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
WavePad Sound Editor (HKLM-x32\...\WavePad) (Version: 8.00 - NCH Software)
WIDCOMM Bluetooth Software (HKLM\...\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}) (Version: 6.3.0.5600 - Broadcom Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation)
Windows Live Sign-in Assistant (HKLM-x32\...\{45338B07-A236-4270-9A77-EBB4115517B5}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{B10914FD-8812-47A4-85A1-50FCDE7F1F33}) (Version: 14.0.8117.416 - Microsoft Corporation)
WinRAR 4.01 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)
Yawcam 0.3.6 (HKLM-x32\...\{8FE96B14-E1F9-47BF-8BA1-A81467CD259B}_is1) (Version: - )
Youtube Downloader HD v. 2.9.9.28 (HKLM-x32\...\Youtube Downloader HD_is1) (Version: - YoutubeDownloaderHD.com)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\...\ChromeHTML: -> <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{EA724FD3-844D-43A9-A8C9-A5BC35FC20E4}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => No File
HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\ChromeHTML: -> <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{EA724FD3-844D-43A9-A8C9-A5BC35FC20E4}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Programy\PowerISO\PWRISOSH.DLL [2010-04-23] (PowerISO Computing, Inc.)
ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd.)
ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd.)
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2018-08-23] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [SpyEmergency] -> {2E9FFF5C-4375-494d-951F-098BAA42239E} => C:\Program Files\NETGATE\Spy Emergency\menuext.dll [2013-03-11] (NETGATE Technologies s.r.o.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2011-05-28] ()
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2011-05-28] ()
ContextMenuHandlers2: [AddtoVAIOGate] -> {6988D6F2-F24F-4732-8855-A39DB1AA1346} => C:\Program Files\Sony\VAIO Gate\VAIOGateShellExt.dll [2010-06-08] (Sony Corporation)
ContextMenuHandlers3: [AddtoVAIOGate] -> {6988D6F2-F24F-4732-8855-A39DB1AA1346} => C:\Program Files\Sony\VAIO Gate\VAIOGateShellExt.dll [2010-06-08] (Sony Corporation)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Programy\PowerISO\PWRISOSH.DLL [2010-04-23] (PowerISO Computing, Inc.)
ContextMenuHandlers4: [SpyEmergency] -> {2E9FFF5C-4375-494d-951F-098BAA42239E} => C:\Program Files\NETGATE\Spy Emergency\menuext.dll [2013-03-11] (NETGATE Technologies s.r.o.)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2011-05-28] ()
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2011-05-28] ()
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2010-02-09] (Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2010-06-24] (Intel Corporation)
ContextMenuHandlers6: [AddtoVAIOGate] -> {6988D6F2-F24F-4732-8855-A39DB1AA1346} => C:\Program Files\Sony\VAIO Gate\VAIOGateShellExt.dll [2010-06-08] (Sony Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Programy\PowerISO\PWRISOSH.DLL [2010-04-23] (PowerISO Computing, Inc.)
ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd.)
ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd.)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2018-08-23] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [SpyEmergency] -> {2E9FFF5C-4375-494d-951F-098BAA42239E} => C:\Program Files\NETGATE\Spy Emergency\menuext.dll [2013-03-11] (NETGATE Technologies s.r.o.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2011-05-28] ()
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2011-05-28] ()

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {058BFFC5-1032-46D0-9441-070675C13ECB} - System32\Tasks\SONY\Remote Keyboard with PlayStation 3\Remote Keyboard with PlayStation 3 => C:\Program Files\Sony\Remote Keyboard with PlayStation 3\VBTKBUtil.exe [2010-06-17] (Sony Corporation)
Task: {09885895-FDA1-49CC-8984-A67B0125A81E} - System32\Tasks\SONY\VAIO Power Management\VPM Unlock => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2010-06-21] (Sony Corporation)
Task: {0A19A455-69A2-4064-A20D-D4DCE22FB12F} - System32\Tasks\{221BFA4B-FBE5-463E-B380-B92B155169BB} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://ui.skype.com/ui/0/5.10.0.116/en/abandoninstall?page=tsMain
Task: {2F95E08E-2D1A-4D46-B006-4D901C944E21} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {36F696C9-708C-438C-B373-86114232F343} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000Core => C:\Users\ROTA\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {5A26F2C6-5452-4ACF-99DD-5DA20FCF37D7} - System32\Tasks\SONY\SUS-BCF\Level4Daily => C:\Program Files (x86)\Sony\Setting Utility Series\WBCBatteryCare.exe [2010-05-31] (Sony Corporation)
Task: {765F33A1-1792-499D-85DC-82BEE166262E} - System32\Tasks\{A59CAA48-C128-40B9-8EE7-4891CE654A67} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://ui.skype.com/ui/0/6.6.0.106/en/abandoninstall?page=tsMain
Task: {7B24BDA3-EF41-4D83-BC05-A21268C8617C} - System32\Tasks\{DC4D952F-E5CF-42AF-A80D-FFCCEFFD970B} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://ui.skype.com/ui/0/6.0.0.126/en/abandoninstall?page=tsMain
Task: {7E113404-1865-4904-B292-C03BB8AB53DD} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2018-04-20] (Safer-Networking Ltd.)
Task: {802CFE65-F048-4806-8864-3D3E4836E596} - System32\Tasks\{313A5785-E7D4-4D2C-B169-7D646BFD332D} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://ui.skype.com/ui/0/4.2.0.155/cs/abandoninstall?source=lightinstaller&page=tsProblems&LastError=12007&installinfo=google-toolbar:notoffered;ienotdefaultbrowser2,google-chrome&#058;notoffered;ienotdefaultbrowser2
Task: {80626436-84D2-469B-AE25-5995DB6E9102} - System32\Tasks\SONY\SUS-BCF\Level4Month => C:\Program Files (x86)\Sony\Setting Utility Series\WBCBatteryCare.exe [2010-05-31] (Sony Corporation)
Task: {8C3FD7F0-D9F9-4E8F-825E-00D92F135CE6} - System32\Tasks\{3EB12C09-C610-4E01-AF08-B328DA51989E} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://ui.skype.com/ui/0/6.7.0.102/cs/abandoninstall?page=tsProgressBar
Task: {8EF0097D-BA09-4A5E-820A-E79F12EECB42} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2018-08-23] (Avira Operations GmbH & Co. KG)
Task: {94ADED8F-E118-42E7-87B9-3E7E756E8568} - System32\Tasks\{4806F0B8-6A97-4AEA-9F98-A1F9589A8A1D} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://ui.skype.com/ui/0/6.6.0.106/en/abandoninstall?page=tsMain
Task: {9501C2BF-41F5-45CD-83F7-8B263FEF178E} - System32\Tasks\SONY\VAIO Gate\VAIO Gate => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2010-06-08] (Sony Corporation)
Task: {A23A3B3C-CA4B-42F5-B156-9864DB969D86} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000UA => C:\Users\ROTA\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {B28B9AED-AA3D-450A-AAC2-67E852E46629} - System32\Tasks\{85289B2F-CEA9-436F-980B-0BC27878D96D} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://ui.skype.com/ui/0/6.6.0.106/en/abandoninstall?page=tsMain
Task: {B62F4F74-7813-4A11-8C54-56F4F4F7468E} - System32\Tasks\SONY\VAIO Update\VAIO Update 5 => C:\Program Files\Sony\VAIO Update 5\VAIOUpdt.exe [2010-05-31] (Sony Corporation)
Task: {B80A6F1C-6456-43C1-A5FC-4AE596B61A76} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000UA => C:\Users\ROTA\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {B9090DBE-59BE-4B3C-91C1-456760E2255B} - System32\Tasks\SONY\VAIO Power Management\VPM Session Change => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2010-06-21] (Sony Corporation)
Task: {C188EAF4-2018-499F-820E-9C159AA3A1A8} - System32\Tasks\{9EE79B2B-F26A-4CE8-BA4C-16B5700B932B} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://ui.skype.com/ui/0/7.26.0.101/cs/abandoninstall?page=tsProgressBar
Task: {C2BF2CB4-5A28-4432-B2E5-E28D9F6AB73B} - \{F0EF177D-1647-4B00-840A-9B60A4404D6B} -> No File <==== ATTENTION
Task: {CEC170B5-8301-4D0C-A90C-D7E07F7E293D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {D31376D7-1747-47E7-B581-F57D59029353} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2018-04-20] (Safer-Networking Ltd.)
Task: {D527A4DE-62AD-4B29-91C4-011B18095AA4} - System32\Tasks\{60E3E166-1BAC-4C68-9C58-A4586C9120DD} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://ui.skype.com/ui/0/6.6.0.106/en/abandoninstall?page=tsMain
Task: {DE16FAD3-5BD2-4CDA-AD0D-7E077B957DA5} - System32\Tasks\SONY\VAIO Power Management\VPM Logon Start => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2010-06-21] (Sony Corporation)
Task: {E0C19E65-31FF-42C0-A3D9-924EBA0DC1C4} - System32\Tasks\SONY\VAIO Wallpaper Setting Tool\VAIO Wallpaper Setting Tool => C:\Program Files (x86)\Sony\VAIO Wallpaper Setting Tool\VWSet.exe
Task: {E9B8D2C2-D50A-48B6-A99A-5E031A1F3F9C} - System32\Tasks\{321B92A0-469B-4F1C-B783-AD905D1ADD23} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://ui.skype.com/ui/0/6.5.0.158/en/abandoninstall?page=tsPlugin
Task: {F2A51696-710E-430A-AE14-C6B36687B888} - System32\Tasks\{2A0BB18A-0946-4A09-A37B-BBFC6B0CF090} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://ui.skype.com/ui/0/6.7.0.102/cs/abandoninstall?page=tsProgressBar
Task: {F3305441-C058-4050-AB37-56D3A58D3955} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2018-04-20] (Safer-Networking Ltd.)
Task: {F3477C4C-A25A-418A-B230-F32C1F8244AF} - System32\Tasks\{7B49425F-659E-4F6C-8932-EEB05DB961A4} => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://ui.skype.com/ui/0/5.5.0.124/en/abandoninstall?page=tsPlugin&installinfo=google-toolbar:notoffered;notincluded,google-chrome&#058;notoffered;disabled
Task: {F9FB18E4-BFD1-45C6-A712-836085AD6D9D} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000Core => C:\Users\ROTA\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {FD149099-D0DA-47C5-8507-72224549F763} - System32\Tasks\SONY\VAIO Gate\StartExecuteProxy => C:\Program Files\Sony\VAIO Gate\ExecutionProxy.exe [2010-06-08] (Sony Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000Core.job => C:\Users\ROTA\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000UA.job => C:\Users\ROTA\AppData\Local\Facebook\Update\FacebookUpdate.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


Shortcut: C:\Users\ROTA\Favorites\NCH Software Download Site.lnk -> hxxp://www.nch.com.au/index.htm

==================== Loaded Modules (Whitelisted) ==============

2015-03-20 18:12 - 2015-03-20 18:12 - 000085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-03-20 18:12 - 2015-03-20 18:12 - 001346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2010-11-15 12:58 - 2010-11-15 12:58 - 000270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2018-08-28 22:57 - 2018-04-25 13:16 - 002297040 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2018-08-27 19:29 - 2018-08-08 02:41 - 004855640 _____ () C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.106\libglesv2.dll
2018-08-27 19:29 - 2018-08-08 02:41 - 000115544 _____ () C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.106\libegl.dll
2018-08-23 21:23 - 2018-08-23 21:20 - 001204472 _____ () C:\Program Files (x86)\Avira\Antivirus\crypto-42.dll
2018-08-23 21:23 - 2018-08-23 21:20 - 000243352 _____ () C:\Program Files (x86)\Avira\Antivirus\ssl-44.dll
2015-03-20 18:12 - 2015-03-20 18:12 - 001044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2010-11-15 12:46 - 2010-05-31 21:18 - 000013824 _____ () C:\Program Files (x86)\Sony\VAIO Event Service\VESBasePS.dll
2010-11-15 12:46 - 2010-05-31 21:18 - 000013312 _____ () C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSubPS.dll
2011-10-21 01:25 - 2011-10-21 01:25 - 000170496 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\3975081d407c2d6908bf21c7d6f5848d\IsdiInterop.ni.dll
2010-10-15 00:14 - 2010-03-04 05:08 - 000058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\28503390.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\81944903.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\28503390.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\81944903.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2016-09-11 15:35 - 000000831 ____N C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1100568721-3396338888-504170877-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\ROTA\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\Control Panel\Desktop\\Wallpaper -> C:\Users\ROTA\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 88.81.64.1 - 88.81.92.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{7F92BBB0-CB2F-4A69-9435-A3D5A6B9F846}] => (Allow) C:\Program Files (x86)\Adobe\Elements Organizer 8.0\AdobePhotoshopElementsMediaServer.exe
FirewallRules: [{AC55C334-B92D-4BB2-8F99-104EEC1D0D8D}] => (Allow) C:\Program Files (x86)\Adobe\Elements Organizer 8.0\AdobePhotoshopElementsMediaServer.exe
FirewallRules: [{913109A9-C952-4B3B-B120-D5451D9AC152}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{510462A9-89D4-4286-8DA1-6CB5E1BA6820}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\wlcsdk.exe
FirewallRules: [{CCB1E12F-2E22-4586-828A-F26D9E0832B0}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{9450D97B-B602-4066-8E2F-C9E5E10CA257}] => (Allow) svchost.exe
FirewallRules: [{B02A375F-14A5-4AF3-95B6-F008EA7F7AC9}] => (Allow) C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe
FirewallRules: [{8C0F93A4-9305-43D4-87E0-9C3E32B9FD49}] => (Allow) C:\Programy\utorrent\uTorrent.exe
FirewallRules: [{3787BF4A-B8CD-4555-865E-852FE73781EC}] => (Allow) C:\Programy\utorrent\uTorrent.exe
FirewallRules: [TCP Query User{09FDD3A0-D6F6-44BE-863C-1580097C9836}C:\programy\qip\qip.exe] => (Allow) C:\programy\qip\qip.exe
FirewallRules: [UDP Query User{DCEA3D21-9534-4912-80DF-6AB517A7F52B}C:\programy\qip\qip.exe] => (Allow) C:\programy\qip\qip.exe
FirewallRules: [{E184F67E-61A1-4BBA-830E-E8AF12116519}] => (Allow) C:\Program Files (x86)\ACSPMonitor\ASMonitor.exe
FirewallRules: [{DF22636C-4E53-4060-8393-E90CA643A80C}] => (Allow) C:\Program Files (x86)\ACSPMonitor\ASMonitor.exe
FirewallRules: [{6DB6B750-0679-497E-835D-BB662EABCB48}] => (Allow) C:\Users\ROTA\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
FirewallRules: [{041FF44D-861F-4E74-8230-0C60F8E94CD0}] => (Allow) C:\Users\ROTA\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
FirewallRules: [TCP Query User{9C39C9C3-AAEE-4331-85F9-2499ED413A78}C:\programy\tmnationsforever\tmforever.exe] => (Allow) C:\programy\tmnationsforever\tmforever.exe
FirewallRules: [UDP Query User{26DF363A-7526-40FF-BA8C-DF8B5E0B59BA}C:\programy\tmnationsforever\tmforever.exe] => (Allow) C:\programy\tmnationsforever\tmforever.exe
FirewallRules: [{3FC3A6D4-FD7D-4CD6-A907-1CDE603BCBD4}] => (Allow) C:\Users\ROTA\Desktop\Q\quake3.exe
FirewallRules: [{CEB5559F-58CA-4781-A105-D6E69D53B8DC}] => (Allow) C:\Users\ROTA\Desktop\Q\quake3.exe
FirewallRules: [{412AC1A8-D2E9-4A91-A580-645B3E121D24}] => (Allow) C:\Users\ROTA\Desktop\Q\quake3.exe
FirewallRules: [{3CD1F652-4252-4889-8E64-4A21CB62C253}] => (Allow) C:\Users\ROTA\Desktop\Q\quake3.exe
FirewallRules: [{5F0D816C-DCB5-4A0F-A9F3-6F9F1364FB7A}] => (Allow) C:\Users\ROTA\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
FirewallRules: [{F2F7A40F-1325-4D7D-963C-D58913396209}] => (Allow) C:\Users\ROTA\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{0628E0A4-E645-410A-8332-EF6A9CB2CC4B}] => (Allow) C:\Users\ROTA\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E2BD851A-EBE4-4B9A-9CC8-03B8C6787CEC}] => (Allow) C:\Users\ROTA\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{1396D8DF-56B4-4F3E-9663-7871FAF3F5A3}] => (Allow) C:\Users\ROTA\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E3BEA5D3-BE19-4F44-966D-85B6C0A7103F}] => (Allow) C:\Users\ROTA\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6389A399-72B7-4125-A5CE-26FA0FAFCC8E}] => (Allow) C:\Users\ROTA\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D9C2B090-46E8-4B8D-A888-71E7287ABF13}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{9044AA2A-3D92-4D69-8E30-F755C0856DFC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{F1BBB759-908F-4F91-8BE9-AD02E036F39B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{F8E89E9A-068A-45EE-99BA-F02CB3A38299}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{2B0D7CBA-0576-4C3A-8338-C867EFA037B1}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{84745597-80EC-4815-8BCD-B2903B9C5894}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{45C52701-2D46-4EA6-87F1-05054C5F7D4B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{FA8D3481-8E05-41C7-8A88-F69E375E4327}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{8F3D9A02-F3FE-428C-BFFD-9016CC67D2E3}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3y.exe
FirewallRules: [{4F7611BF-0F4E-49F3-A552-5EFC3305B872}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3y.exe
FirewallRules: [{7015E3DC-B41E-49D3-A3FA-4C9D854C7825}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Restore Points =========================

27-08-2018 19:20:46 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/29/2018 10:54:38 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program chrome.exe verze 68.0.3440.106 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 1690

Čas spuštění: 01d43fda079737c4

Čas ukončení: 0

Cesta k aplikaci: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

ID hlášení: 9b44c44f-abcd-11e8-a966-889ffae75e7d

Error: (08/29/2018 10:48:13 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program chrome.exe verze 68.0.3440.106 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 1ac8

Čas spuštění: 01d43fd91092b5ff

Čas ukončení: 20

Cesta k aplikaci: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

ID hlášení: c9084e3c-abcc-11e8-a966-889ffae75e7d

Error: (08/29/2018 10:40:06 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.

Error: (08/29/2018 10:36:11 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.

Error: (08/29/2018 10:36:05 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.

Error: (08/29/2018 10:36:05 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.

Error: (08/29/2018 10:36:00 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.

Error: (08/29/2018 10:36:00 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.


System errors:
=============
Error: (08/31/2018 12:38:07 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 40.

Error: (08/31/2018 12:38:07 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 40.

Error: (08/31/2018 12:38:07 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 40.

Error: (08/31/2018 12:37:10 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Microsoft .NET Framework NGEN v4.0.30319_X86 bylo dosaženo časového limitu (30000 ms).

Error: (08/31/2018 12:35:18 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (08/31/2018 12:34:06 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Spybot-S&D 2 Security Center Service neuspěla při spuštění v důsledku následující chyby:
V systému Windows nelze ověřit digitální podpis tohoto souboru. Při nedávné změně hardwaru nebo softwaru mohl být nainstalován nesprávně podepsaný nebo poškozený soubor nebo soubor škodlivého softwaru z neznámého zdroje.

Error: (08/31/2018 12:33:48 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Spy Emergency Engine Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (08/31/2018 12:33:48 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Spy Emergency Engine Service bylo dosaženo časového limitu (30000 ms).


Windows Defender:
===================================
Date: 2017-11-02 05:33:06.482
Description:
Prohledávání Windows Defender rozpoznalo spyware nebo jiný potenciálně nežádoucí software.
Další informace:
http://go.microsoft.com/fwlink/?linkid= ... tid=205563
Název:MonitoringTool:Win32/Mipko
ID:205563
Závažnost:Vážné
Kategorie:Monitorovací software
Nalezeno v cestě:file:C:\Programy\kl2\MPKView.exe;file:C:\Users\ROTA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\REFOG Personal Monitor\Order now!.lnk;file:C:\Users\ROTA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\REFOG Personal Monitor\REFOG Personal Monitor on the Web.lnk;startup:C:\Users\ROTA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\REFOG Personal Monitor\Order now!.lnk;startup:C:\Users\ROTA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\REFOG Personal Monitor\REFOG Personal Monitor on the Web.lnk
Typ zjišťování:Konkrétní
Zdroj zjišťování:Systém
Stav:Neznámý
Uživatel:NT AUTHORITY\NETWORK SERVICE
Název procesu:c:\program files\windows defender\MpCmdRun.exe

Date: 2014-02-21 17:55:22.937
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{97DCC8D8-61D4-4326-8BB1-2C9BBE75CF9A}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE

Date: 2013-03-03 17:09:45.950
Description:
Prohledávání Windows Defender rozpoznalo spyware nebo jiný potenciálně nežádoucí software.
Další informace:
http://go.microsoft.com/fwlink/?linkid= ... atid=14895
Název:MonitoringTool:Win32/ActualSpy
ID:14895
Závažnost:Vážné
Kategorie:Monitorovací software
Nalezeno v cestě:containerfile:C:\Program Files (x86)\ACSPMonitor\puvodni\ASMonitor.exe;file:C:\Program Files (x86)\ACSPMonitor\puvodni\ASMonitor.exe->(Asprotect 1.35);folder:C:\ProgramData\Microsoft\Windows\Start Menu\Programs\actual spy\;process:pid:5040
Typ zjišťování:Konkrétní
Zdroj zjišťování:Ochrana v reálném čase
Stav:Neznámý
Uživatel:\
Název procesu:

Date: 2013-03-03 16:59:30.904
Description:
Prohledávání Windows Defender rozpoznalo spyware nebo jiný potenciálně nežádoucí software.
Další informace:
http://go.microsoft.com/fwlink/?linkid= ... atid=14895
Název:MonitoringTool:Win32/ActualSpy
ID:14895
Závažnost:Vážné
Kategorie:Monitorovací software
Nalezeno v cestě:containerfile:C:\Program Files (x86)\ACSPMonitor\puvodni\ASMonitor.exe;file:C:\Program Files (x86)\ACSPMonitor\puvodni\ASMonitor.exe->(Asprotect 1.35);process:pid:5040
Typ zjišťování:Konkrétní
Zdroj zjišťování:Ochrana v reálném čase
Stav:Neznámý
Uživatel:\
Název procesu:

Date: 2012-05-22 01:12:11.732
Description:
Prohledávání Windows Defender rozpoznalo spyware nebo jiný potenciálně nežádoucí software.
Další informace:
http://go.microsoft.com/fwlink/?linkid= ... atid=16378
Název:MonitoringTool:Win32/KGBKeylogger
ID:16378
Závažnost:Vážné
Kategorie:Monitorovací software
Nalezeno v cestě:containerfile:C:\programy\kgb\MPK.exe;containerfile:G:\KGB Key Logger 4.5.4 + Serial\kgb_setup-454.exe;file:C:\ProgramData\MPK\1\D0000;file:C:\ProgramData\MPK\1\S0000;file:C:\ProgramData\MPK\key.bin;file:C:\ProgramData\MPK\KGB Spy.lnk;file:C:\ProgramData\MPK\KGB Spy\Help topics.lnk;file:C:\ProgramData\MPK\KGB Spy\KGB Spy on the Web.lnk;file:C:\ProgramData\MPK\KGB Spy\KGB Spy.lnk;file:C:\ProgramData\MPK\KGB Spy\Order now!.lnk;file:C:\ProgramData\MPK\KGB Spy\Uninstall KGB Spy.lnk;file:C:\ProgramData\MPK\M0000;file:C:\ProgramData\MPK\S0000;file:C:\programy\kgb\MPK.exe->(Asprotect 2.2);file:G:\KGB Key Logger 4.5.4 + Serial\kgb_setup-454.exe->(inno#000000)->(Asprotect 2.2);file:G:\KGB Key Logger 4.5.4 + Serial\kgb_setup-454.exe->(inno#000002);file:G:\KGB Key Logger 4.5.4 + Serial\kgb_setup-454.exe->(inno#000003);folder:C:\ProgramData\MPK\;folder:C:\ProgramData\MPK\1\;folder:C:\ProgramData\MPK\KGB Spy\;process:pid:2184;process:pid:4480;regkey:HKLM\software\classes\mpkreg
Typ zjišťování:Konkrétní
Zdroj zjišťování:Ochrana v reálném čase
Stav:Neznámý
Uživatel:\
Název procesu:

Date: 2012-05-21 23:40:01.676
Description:
Prohledávání Windows Defender zjistilo chybu při provádění akce u spywaru nebo jiného potenciálně nežádoucího softwaru.
Další informace:
http://go.microsoft.com/fwlink/?linkid= ... atid=14895
Uživatel:\
Název:MonitoringTool:Win32/ActualSpy
ID:14895
Závažnost:Vážné
Kategorie:Monitorovací software
Cesta:
Akce:Odebrat
Kód chyby:0x80508023
Popis chyby:Programu se nepodařilo najít spyware ani jiný potenciálně nežádoucí software v tomto počítači.
Stav:

CodeIntegrity:
===================================

Date: 2018-08-31 00:40:18.777
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-08-31 00:40:18.704
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-08-31 00:40:18.586
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-08-31 00:40:18.507
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-08-31 00:34:06.753
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-08-29 23:46:26.975
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-08-29 23:32:08.136
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.

Date: 2018-08-29 22:24:49.543
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i3 CPU M 380 @ 2.53GHz
Percentage of memory in use: 62%
Total physical RAM: 3950.1 MB
Available physical RAM: 1469.46 MB
Total Virtual: 7898.34 MB
Available Virtual: 4947.42 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:282.87 GB) (Free:22.3 GB) NTFS

\\?\Volume{e4c98ea9-5ede-11e0-b5bf-806e6f6e6963}\ (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
\\?\Volume{e4c98ea8-5ede-11e0-b5bf-806e6f6e6963}\ (Recovery) (Fixed) (Total:15.12 GB) (Free:0.73 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: CCD8E058)
Partition 1: (Not Active) - (Size=15.1 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=282.9 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

[Rudy]

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\Run: [Facebook Update] => "C:\Users\ROTA\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
C:\Users\ROTA\AppData\Local\Facebook\Update
HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\MountPoints2: {72996940-bf8f-11e0-8bca-806e6f6e6963} - E:\autorun.exe
HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\MountPoints2: {a1ddee6c-d33c-11e1-bcaa-889ffae75e7d} - F:\AutoRun.exe
HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\MountPoints2: {abecd56d-c3c3-11e2-9731-78843ccc34cc} - F:\AutoRun.exe
HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\MountPoints2: {e022dfea-d333-11e1-baa2-889ffae75e7d} - F:\AutoRun.exe
HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\...\Run: [Facebook Update] => "C:\Users\ROTA\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\...\MountPoints2: {72996940-bf8f-11e0-8bca-806e6f6e6963} - E:\autorun.exe
HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\...\MountPoints2: {a1ddee6c-d33c-11e1-bcaa-889ffae75e7d} - F:\AutoRun.exe
HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\...\MountPoints2: {abecd56d-c3c3-11e2-9731-78843ccc34cc} - F:\AutoRun.exe
HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\...\MountPoints2: {e022dfea-d333-11e1-baa2-889ffae75e7d} - F:\AutoRun.exe
SearchScopes: HKU\S-1-5-21-1100568721-3396338888-504170877-1000 -> DefaultScope {AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8} URL =
SearchScopes: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985 -> DefaultScope {AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8} URL =
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
BHO-x32: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
Toolbar: HKLM - No Name - {32099AAC-C132-4136-9E9A-4E364A424E17} - No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.)
Toolbar: HKU\S-1-5-21-1100568721-3396338888-504170877-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
Toolbar: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\ROTA\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [No File]
CHR HKLM-x32\...\Chrome\Extension: [bejbohlohkkgompgecdcbbglkpjfjgdj] - C:\Users\ROTA\AppData\Local\Temp\crx7C33.tmp <not found>
C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000UA.job
C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000Core.job
HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\...\ChromeHTML: -> <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => No File
HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\ChromeHTML: -> <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{EA724FD3-844D-43A9-A8C9-A5BC35FC20E4}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
Task: {2F95E08E-2D1A-4D46-B006-4D901C944E21} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {36F696C9-708C-438C-B373-86114232F343} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000Core => C:\Users\ROTA\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {C2BF2CB4-5A28-4432-B2E5-E28D9F6AB73B} - \{F0EF177D-1647-4B00-840A-9B60A4404D6B} -> No File <==== ATTENTION
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000Core.job => C:\Users\ROTA\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000UA.job => C:\Users\ROTA\AppData\Local\Facebook\Update\FacebookUpdate.exe

EmptyTemp:
End

Uložte do C:\Users\ROTA\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[patarasa]

Fix result of Farbar Recovery Scan Tool (x64) Version: 23.08.2018
Ran by ROTA (01-09-2018 11:57:44) Run:1
Running from C:\Users\ROTA\Downloads
Loaded Profiles: ROTA (Available Profiles: ROTA)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\Run: [Facebook Update] => "C:\Users\ROTA\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
C:\Users\ROTA\AppData\Local\Facebook\Update
HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\MountPoints2: {72996940-bf8f-11e0-8bca-806e6f6e6963} - E:\autorun.exe
HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\MountPoints2: {a1ddee6c-d33c-11e1-bcaa-889ffae75e7d} - F:\AutoRun.exe
HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\MountPoints2: {abecd56d-c3c3-11e2-9731-78843ccc34cc} - F:\AutoRun.exe
HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\MountPoints2: {e022dfea-d333-11e1-baa2-889ffae75e7d} - F:\AutoRun.exe
HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\...\Run: [Facebook Update] => "C:\Users\ROTA\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\...\MountPoints2: {72996940-bf8f-11e0-8bca-806e6f6e6963} - E:\autorun.exe
HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\...\MountPoints2: {a1ddee6c-d33c-11e1-bcaa-889ffae75e7d} - F:\AutoRun.exe
HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\...\MountPoints2: {abecd56d-c3c3-11e2-9731-78843ccc34cc} - F:\AutoRun.exe
HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\...\MountPoints2: {e022dfea-d333-11e1-baa2-889ffae75e7d} - F:\AutoRun.exe
SearchScopes: HKU\S-1-5-21-1100568721-3396338888-504170877-1000 -> DefaultScope {AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8} URL =
SearchScopes: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985 -> DefaultScope {AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8} URL =
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
BHO-x32: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
Toolbar: HKLM - No Name - {32099AAC-C132-4136-9E9A-4E364A424E17} - No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-27] (Google Inc.)
Toolbar: HKU\S-1-5-21-1100568721-3396338888-504170877-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
Toolbar: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32.dll [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\ROTA\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [No File]
CHR HKLM-x32\...\Chrome\Extension: [bejbohlohkkgompgecdcbbglkpjfjgdj] - C:\Users\ROTA\AppData\Local\Temp\crx7C33.tmp <not found>
C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000UA.job
C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000Core.job
HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\...\ChromeHTML: -> <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => No File
HKU\S-1-5-21-1100568721-3396338888-504170877-1000\...\ChromeHTML: -> <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{EA724FD3-844D-43A9-A8C9-A5BC35FC20E4}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
Task: {2F95E08E-2D1A-4D46-B006-4D901C944E21} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {36F696C9-708C-438C-B373-86114232F343} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000Core => C:\Users\ROTA\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {C2BF2CB4-5A28-4432-B2E5-E28D9F6AB73B} - \{F0EF177D-1647-4B00-840A-9B60A4404D6B} -> No File <==== ATTENTION
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000Core.job => C:\Users\ROTA\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000UA.job => C:\Users\ROTA\AppData\Local\Facebook\Update\FacebookUpdate.exe

EmptyTemp:
End
*****************

Processes closed successfully.
"HKU\S-1-5-21-1100568721-3396338888-504170877-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Facebook Update" => removed successfully
"C:\Users\ROTA\AppData\Local\Facebook\Update" => not found
"HKU\S-1-5-21-1100568721-3396338888-504170877-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{72996940-bf8f-11e0-8bca-806e6f6e6963}" => removed successfully
HKLM\Software\Classes\CLSID\{72996940-bf8f-11e0-8bca-806e6f6e6963} => not found
"HKU\S-1-5-21-1100568721-3396338888-504170877-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a1ddee6c-d33c-11e1-bcaa-889ffae75e7d}" => removed successfully
HKLM\Software\Classes\CLSID\{a1ddee6c-d33c-11e1-bcaa-889ffae75e7d} => not found
"HKU\S-1-5-21-1100568721-3396338888-504170877-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{abecd56d-c3c3-11e2-9731-78843ccc34cc}" => removed successfully
HKLM\Software\Classes\CLSID\{abecd56d-c3c3-11e2-9731-78843ccc34cc} => not found
"HKU\S-1-5-21-1100568721-3396338888-504170877-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e022dfea-d333-11e1-baa2-889ffae75e7d}" => removed successfully
HKLM\Software\Classes\CLSID\{e022dfea-d333-11e1-baa2-889ffae75e7d} => not found
HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\...\Run: [Facebook Update] => "C:\Users\ROTA\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver => Error: No automatic fix found for this entry.
HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\...\MountPoints2: {72996940-bf8f-11e0-8bca-806e6f6e6963} - E:\autorun.exe => Error: No automatic fix found for this entry.
HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\...\MountPoints2: {a1ddee6c-d33c-11e1-bcaa-889ffae75e7d} - F:\AutoRun.exe => Error: No automatic fix found for this entry.
HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\...\MountPoints2: {abecd56d-c3c3-11e2-9731-78843ccc34cc} - F:\AutoRun.exe => Error: No automatic fix found for this entry.
HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\...\MountPoints2: {e022dfea-d333-11e1-baa2-889ffae75e7d} - F:\AutoRun.exe => Error: No automatic fix found for this entry.
"HKU\S-1-5-21-1100568721-3396338888-504170877-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
SearchScopes: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985 -> DefaultScope {AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8} URL = => Error: No automatic fix found for this entry.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => removed successfully
"HKLM\Software\Classes\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => removed successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}" => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB} => not found
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{32099AAC-C132-4136-9E9A-4E364A424E17}" => removed successfully
HKLM\Software\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17} => not found
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => removed successfully
"HKLM\Software\Classes\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => removed successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => removed successfully
"HKLM\Software\Wow6432Node\Classes\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => removed successfully
"HKU\S-1-5-21-1100568721-3396338888-504170877-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F}" => removed successfully
HKLM\Software\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => not found
Toolbar: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-27] (Google Inc.) => Error: No automatic fix found for this entry.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer" => removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => removed successfully
FF Plugin HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\ROTA\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [No File] => Error: No automatic fix found for this entry.
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\bejbohlohkkgompgecdcbbglkpjfjgdj" => removed successfully
C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000UA.job => moved successfully
C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000Core.job => moved successfully
HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985\...\ChromeHTML: -> <==== ATTENTION => Error: No automatic fix found for this entry.
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File => Error: No automatic fix found for this entry.
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File => Error: No automatic fix found for this entry.
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll => No File => Error: No automatic fix found for this entry.
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll => No File => Error: No automatic fix found for this entry.
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => No File => Error: No automatic fix found for this entry.
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => No File => Error: No automatic fix found for this entry.
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File => Error: No automatic fix found for this entry.
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll => No File => Error: No automatic fix found for this entry.
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll => No File => Error: No automatic fix found for this entry.
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File => Error: No automatic fix found for this entry.
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll => No File => Error: No automatic fix found for this entry.
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File => Error: No automatic fix found for this entry.
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll => No File => Error: No automatic fix found for this entry.
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File => Error: No automatic fix found for this entry.
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => No File => Error: No automatic fix found for this entry.
CustomCLSID: HKU\S-1-5-21-1100568721-3396338888-504170877-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08312018003644985_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\ROTA\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => No File => Error: No automatic fix found for this entry.
"HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\ChromeHTML" => removed successfully
"HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}" => removed successfully
"HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}" => removed successfully
"HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}" => removed successfully
"HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}" => removed successfully
"HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}" => removed successfully
"HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}" => removed successfully
"HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}" => removed successfully
"HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}" => removed successfully
"HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}" => removed successfully
"HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}" => removed successfully
"HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8}" => removed successfully
"HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}" => removed successfully
"HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}" => removed successfully
"HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}" => removed successfully
"HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}" => removed successfully
"HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}" => removed successfully
"HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{EA724FD3-844D-43A9-A8C9-A5BC35FC20E4}" => removed successfully
"HKU\S-1-5-21-1100568721-3396338888-504170877-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}" => removed successfully
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg" => removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2F95E08E-2D1A-4D46-B006-4D901C944E21}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2F95E08E-2D1A-4D46-B006-4D901C944E21}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{36F696C9-708C-438C-B373-86114232F343}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{36F696C9-708C-438C-B373-86114232F343}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000Core => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000Core" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C2BF2CB4-5A28-4432-B2E5-E28D9F6AB73B}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C2BF2CB4-5A28-4432-B2E5-E28D9F6AB73B}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F0EF177D-1647-4B00-840A-9B60A4404D6B}" => removed successfully
"C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000Core.job" => not found
"C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1100568721-3396338888-504170877-1000UA.job" => not found

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 20214171 B
Java, Flash, Steam htmlcache => 21000 B
Windows/system/drivers => 21332 B
Edge => 0 B
Chrome => 214550936 B
Firefox => 382263035 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 66228 B
Public => 0 B
ProgramData => 0 B
systemprofile => 100054 B
systemprofile32 => 148580 B
LocalService => 132244 B
NetworkService => 335810 B
ROTA => 35340632 B

RecycleBin => 0 B
EmptyTemp: => 630.9 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 12:00:36 ====

[Rudy]

OK. Nastala nějaká změna?

[patarasa]

prohlížeč je teď ok.
Ale při spouštění se pořád objevuje ten test RAM a větrák pořád jede na max a klávesnice taky pořád nic.

Začínám se přiklánět k tomu, že jde spíše o HW problém. Před chvilkou jsem přišel nato, že kurzor, který jede sekaně jede vlastně plynule, když zapojím myš a nepoužím touchpad..

Takže problém dělá RAM, klávesnice, větrák, touchpad.. Tipnul bych si, že je něco se základovkou..

[Rudy]

I to je možné, i když si myslím, že bude nějaký problém s RAMkami. RAN lze zkontrolovat podle tohoto návodu: https://forum.viry.cz/viewtopic.php?f=53&t=106788 .