VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Zasekaný pc

https://forum.viry.cz:443/viewtopic.php?t=156844

Stránka 1 z 1

Zasekaný pc

Napsal: 09 úno 2020 20:10
od JakubPokora
Dobrý den,
Chtěl bych se zeptat,dva dny zpátky mi z ničeho nic začal blbnout počítač, přesněji plocha a celkový windows, zkoušel jsem měnit a aktualizovat veškeré věci v pc, ale nevím si rady...
Byl bych moc rád za radu!

Děkuju moc!

LOG Z FRST:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-02-2020 02
Ran by Jakub Pokora (administrator) on DESKTOP-PATU4U0 (ASUS All Series) (09-02-2020 20:01:53)
Running from C:\Users\Jakub Pokora\Downloads
Loaded Profiles: Jakub Pokora (Available Profiles: Jakub Pokora)
Platform: Windows 10 Pro Version 1903 18362.592 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\ASUSWSAgent.exe
() [File not signed] C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMR\AODMR.exe
() [File not signed] C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMS\AODMS.exe
() [File not signed] C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\ShareEdit.exe
() [File not signed] C:\Program Files (x86)\ASUS\WebStorage\2.0.1.213\AsusWSWinService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) E:\APAgent.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(ASUS Cloud Corporation -> ) C:\Program Files\ASUS\HomeCloud\ServerConsole\ASUS HomeCloud.exe
(ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite III\AsusMiniBar.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNoticeMonitor.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotify_PCCtrl.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ASUS ROG Connect Plus\RC TweakIt Server\AsBCLK.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\KeyBot\KeyBot.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr64.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.07\AsusFanControlService.exe
(ASUSTeK Computer Inc. -> ASUSTeK) C:\Program Files (x86)\ASUS\ROG Game First III\AsusGameFirstService.exe
(Discord Inc. -> Discord Inc.) C:\Users\Jakub Pokora\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Jakub Pokora\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Jakub Pokora\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Jakub Pokora\AppData\Local\Discord\app-0.0.305\Discord.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Focusrite Audio Engineering, Ltd.) [File not signed] C:\Program Files\FocusriteUSB\Focusrite Notifier.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.442\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.442\GoogleCrashHandler64.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(Kristjan Skutta -> ) E:\csklo\steamapps\common\wallpaper_engine\wallpaper32.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.ASUSHOMECLOUD\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2020.19081.28230.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.37.29002.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.37.29002.0_x64__8wekyb3d8bbwe\GameBarFT.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.37.29002.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20011.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.7-0\NisSrv.exe
(Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareAccessibilityHelper.exe
(Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHostIntegrationAgent.exe
(Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\NTK\NTKDaemon.exe
(Nero AG -> Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Tweakbit Pty Ltd -> TweakBit) C:\Program Files (x86)\TweakBit\PCRepairKit\PCRepairKit.exe
(Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\WTouch\WTouchService.exe
(Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\WTouch\WTouchUser.exe
(Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Windows\System32\Pen_Tablet.exe
(Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Windows\System32\Pen_Tablet.exe
(Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Windows\System32\WTablet\Pen_TabletUser.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7634288 2014-06-13] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [Focusrite Notifier] => C:\Program Files\FocusriteUSB\Focusrite Notifier.exe [3949568 2019-06-20] (Focusrite Audio Engineering, Ltd.) [File not signed]
HKLM\...\Run: [AdobeGCInvoker-1.0] => "C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe"
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [183088 2019-11-29] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [ASUS Media Streamer ShareEdit] => C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\ShareEdit.exe [1243136 2014-05-08] () [File not signed]
HKLM-x32\...\Run: [ASUS Media Streamer DMS] => C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMS\AODMS.exe [1243136 2014-05-08] () [File not signed]
HKLM-x32\...\Run: [ASUS Media Streamer WSAgent] => C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\ASUSWSAgent.exe [73216 2014-05-22] () [File not signed]
HKLM-x32\...\Run: [HomeClude Drive] => C:\Program Files (x86)\ASUS\LocalDrive\LocalDrive.exe [2309440 2014-06-13] (ASUS Cloud Corporation -> ASUS Cloud Corporation)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.0.1.213\ASUSWSLoader.exe [56640 2013-06-26] (ASUS Cloud Corporation -> )
HKLM-x32\...\Run: [AirPort Base Station Agent] => E:\APAgent.exe [771360 2009-11-11] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2410968 2019-01-22] (Adobe Systems Incorporated -> Adobe Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\Run: [EpicGamesLauncher] => E:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [36060048 2020-01-04] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\Run: [Discord] => C:\Users\Jakub Pokora\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\Run: [utweb] => C:\Users\Jakub Pokora\AppData\Roaming\uTorrent Web\utweb.exe [5456560 2018-09-06] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3311568 2020-01-18] (Valve -> Valve Corporation)
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIJBE.EXE [283232 2012-02-29] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\Run: [WallpaperEngine] => E:\csklo\steamapps\common\wallpaper_engine\wallpaper32.exe [2579448 2019-12-21] (Kristjan Skutta -> )
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\Run: [Spotify] => C:\Users\Jakub Pokora\AppData\Roaming\Spotify\Spotify.exe [22202272 2020-01-26] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.130\Installer\chrmstp.exe [2020-01-22] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NIHardwareAccessibilityHelper.exe.lnk [2019-09-28]
ShortcutTarget: NIHardwareAccessibilityHelper.exe.lnk -> C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareAccessibilityHelper.exe (Native Instruments GmbH -> Native Instruments GmbH)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NTKDaemon.lnk [2019-09-28]
ShortcutTarget: NTKDaemon.lnk -> C:\Program Files\Common Files\Native Instruments\NTK\NTKDaemon.exe (Native Instruments GmbH -> Native Instruments GmbH)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0531ABB9-7CEE-47A2-AA30-AEAF77D9D65A} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {06F20AAB-C882-4B4A-B25F-66F7AF0AC810} - System32\Tasks\ASUS\RamDisk => C:\Program Files (x86)\ASUS\ROG RAMDisk\loadImage.exe [1149752 2013-12-23] (ASUSTeK Computer Inc. -> )
Task: {0737E7CB-FCF5-44BF-B299-722F77129BE9} - System32\Tasks\ASUS\USB 3.0 Boost Service => C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr.exe [238392 2013-07-24] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {17500869-863B-4754-977C-25C0B8ACA776} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302880 2019-12-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3366F343-2C7A-4C54-A50F-4A7C3C3CB026} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {382BD2A8-3799-4DED-9BC7-FE0F20A0128C} - System32\Tasks\TweakBit\PCRepairKit\Start PCRepairKit оn logon => C:\Program Files (x86)\TweakBit\PCRepairKit\PCRepairKit.exe [5735064 2019-08-27] (Tweakbit Pty Ltd -> TweakBit) <==== ATTENTION
Task: {3D77239C-7419-4657-B20B-0D95CB1D6C84} - System32\Tasks\ASUS\Ez Update => C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe [1430328 2014-03-27] (ASUSTeK Computer Inc. -> )
Task: {43FEB3C0-E2EB-4408-9698-161593D36B6A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {49B3C1B3-10E9-496C-895F-B3C5513EBC41} - System32\Tasks\ASUS\KeyBot Execute => C:\Program Files (x86)\ASUS\KeyBot\KeyBot.exe [1615160 2014-04-15] (ASUSTeK Computer Inc. -> )
Task: {4E1EC825-51C8-4008-B588-02276143A057} - System32\Tasks\AsushomeCloudStart => C:\Program Files\ASUS\HomeCloud\ServerConsole\ASUS HomeCloud.exe [1960256 2014-06-13] (ASUS Cloud Corporation -> )
Task: {50971892-9792-48C4-BBC4-F5082437D774} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-19] (Google Inc -> Google Inc.)
Task: {525C2177-A3E8-402B-9124-A1E1621BD6ED} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {53DDA7DF-FF92-40FC-8DA6-5803936E2704} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe
Task: {7198CB66-2EB2-4D9C-A40F-6C7FCDDAAA00} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [1652536 2018-11-05] (Intel(R) Software -> Intel Corporation)
Task: {780B27B9-1E73-434C-8AD3-A4126F0ED72F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
Task: {8BF66E6F-A2B8-47BF-A251-A204A2A426A3} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A0FE14FB-A8B3-410E-92E9-7B317D897526} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A1F7A790-934F-435B-A02E-CAFB0672177A} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [1825560 2014-06-25] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {B52C7490-4EF9-44BC-B23F-471656DB7D72} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [3220640 2013-08-27] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [File not signed]
Task: {B6116E7B-B19B-4971-BDC2-53EAAEF7F159} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B779A330-1C3D-40CA-8067-EBED180E55B4} - System32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-PATU4U0-Jakub Pokora => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {B8D2D047-E0A7-4C44-A066-C8E4A1FC0554} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C054E105-839A-431C-8A00-0A224F78F7E5} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {C20A341F-59CB-4C17-BAEE-9408F3E52F5E} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C3899E9C-0A2C-4AD9-8D9B-326CC97F4D7A} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [1270584 2014-05-25] (ASUSTeK Computer Inc. -> )
Task: {C5F2423D-0D9F-4024-81E0-B9EDE03D0B60} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
Task: {C705B244-FF93-4E41-A79E-1D123B04E7B5} - System32\Tasks\ASUS\Push Notice Server Execute => C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe [3646264 2014-01-10] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {CC9DF9DC-BFF8-4BB8-B011-BB2520BD45CA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CEDFAB7D-176E-4D70-84E0-F78395D00E59} - System32\Tasks\ASUS\ASUS Media Streamer DMR => C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMR\AODMR.exe [295936 2014-05-08] () [File not signed]
Task: {CF9000C4-6579-4729-B15D-831064E75393} - System32\Tasks\ASUS\RC TweakIt Server Execute => C:\Program Files (x86)\ASUS\ASUS ROG Connect Plus\RC TweakIt Server\AsBCLK.exe [1982744 2014-03-07] (ASUSTeK Computer Inc. -> )
Task: {DBFBFD81-8A36-457E-A962-C0681A0D55BF} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E16E062D-F46A-45ED-8631-58EC5995AA15} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653848 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EEE8F5ED-4843-47F2-A1C4-B10F5F6347DE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-19] (Google Inc -> Google Inc.)
Task: {FA8E23B5-5B4B-4BAA-8CBA-A72DAE79AEBA} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FF938C9D-D823-49A5-A6D7-AD2B4CEE45A5} - System32\Tasks\ASUS\GpuFanHelper => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe [4331288 2014-05-25] (ASUSTeK Computer Inc. -> TODO: <Company name>)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.1.1
Tcpip\..\Interfaces\{e24b1a30-7d98-4a4f-9374-28dd16981086}: [DhcpNameServer] 10.0.1.1

Internet Explorer:
==================
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll => No File
BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\ssv.dll [2019-05-22] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-05-22] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)

FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2019-01-21] [Legacy] [not signed]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2019-01-22] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-05-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-05-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @nexon.com/NxGame -> C:\ProgramData\Nexon\NGM\npnxgame.dll [2019-01-20] (NEXON Korea Corporation. -> Nexon)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2012-04-04] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-01-22] (Adobe Systems Incorporated -> Adobe Systems)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Jakub Pokora\AppData\Local\Google\Chrome\User Data\Default [2020-02-09]
CHR Notifications: Default -> hxxps://2conv.com; hxxps://app.getmetastream.com; hxxps://aternos.org; hxxps://click-it-now.online; hxxps://coolsymbol.com; hxxps://oko.sh; hxxps://sledujufilmy.cz; hxxps://twitter.com; hxxps://www.facebook.com; hxxps://www.instagram.com; hxxps://www.watch2gether.com; hxxps://www.youtube.com
CHR Extension: (YouTube) - C:\Users\Jakub Pokora\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-08-19]
CHR Extension: (SteamGuard Authorizator) - C:\Users\Jakub Pokora\AppData\Local\Google\Chrome\User Data\Default\Extensions\cimopngjedikbebkpcnemgokekenboam [2019-07-11]
CHR Extension: (Watch2Gether) - C:\Users\Jakub Pokora\AppData\Local\Google\Chrome\User Data\Default\Extensions\cimpffimgeipdhnhjohpbehjkcdpjolg [2019-12-17]
CHR Extension: (Metastream Remote) - C:\Users\Jakub Pokora\AppData\Local\Google\Chrome\User Data\Default\Extensions\fakegmdomhmegokfomgmkbopjibonfcp [2019-11-20]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\Jakub Pokora\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-02-05]
CHR Extension: (Facebook Screen Sharing) - C:\Users\Jakub Pokora\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncfpggehkhmjpdjpefomjchjafhmbnai [2019-03-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Jakub Pokora\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\Jakub Pokora\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-29]
CHR Extension: (Chrome Media Router) - C:\Users\Jakub Pokora\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-12]
CHR Profile: C:\Users\Jakub Pokora\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-02-07]
CHR Profile: C:\Users\Jakub Pokora\AppData\Local\Google\Chrome\User Data\System Profile [2020-02-07]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-01-28] (ASUSTeK Computer Inc. -> )
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [954648 2014-04-24] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-03-21] (ASUSTeK Computer Inc. -> ) [File not signed]
R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.0.1.213\AsusWSWinService.exe [71680 2013-06-26] () [File not signed]
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.07\AsusFanControlService.exe [389944 2014-05-10] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsusGameFirstService; C:\Program Files (x86)\ASUS\ROG Game First III\AsusGameFirstService.exe [343352 2014-05-26] (ASUSTeK Computer Inc. -> ASUSTeK)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8473200 2019-03-27] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-09-21] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2245488 2019-11-29] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2245488 2019-11-29] (ESET, spol. s r.o. -> ESET)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-11] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 MSSQL$ASUSHOMECLOUD; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.ASUSHOMECLOUD\MSSQL\Binn\sqlservr.exe [43129288 2012-06-29] (Microsoft Corporation -> Microsoft Corporation)
R2 NIHostIntegrationAgent; C:\Program Files\Common Files\Native Instruments\Hardware\NIHostIntegrationAgent.exe [18529912 2019-09-11] (Native Instruments GmbH -> Native Instruments GmbH)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [8064104 2018-08-12] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [474256 2019-12-05] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-09-28] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 SQLAgent$ASUSHOMECLOUD; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.ASUSHOMECLOUD\MSSQL\Binn\SQLAGENT.EXE [379848 2012-06-29] (Microsoft Corporation -> Microsoft Corporation)
S3 tomcat6; C:\Program Files\ASUS\HomeCloud\Tomcat\Tomcat_OmniStore\bin\tomcat6.exe [80896 2013-04-29] (Apache Software Foundation) [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\NisSrv.exe [3284840 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MsMpEng.exe [103168 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 WMS; C:\Windows\wmu3\ZeroConfigService.exe [329728 2014-08-31] () [File not signed]
R2 WTouchService; C:\Program Files\WTouch\WTouchService.exe [127272 2009-07-15] (Wacom Technology Corp. -> Wacom Technology, Corp.)
R2 XTU3SERVICE; C:\WINDOWS\SysWOW64\XtuService.exe [26200 2019-03-26] (Intel Corporation -> Intel(R) Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-01-28] (ASUSTeK Computer Inc. -> )
R2 AsRamDisk; C:\WINDOWS\system32\DRIVERS\asramdisk.sys [111928 2013-12-13] (ASUSTeK Computer Inc. -> Asus)
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2014-02-24] (ASUSTeK Computer Inc. -> )
U5 ASUSFILTER; C:\Windows\System32\Drivers\ASUSFILTER.sys [48384 2013-03-28] (MCCI Corporation -> MCCI Corporation)
S3 ASUSstpt; C:\WINDOWS\System32\drivers\ASUSstpt.sys [27392 2013-03-28] (MCCI Corporation -> MCCI Corporation)
S3 ASUSumsc; C:\WINDOWS\System32\drivers\ASUSumsc.sys [151808 2013-03-28] (MCCI Corporation -> MCCI Corporation)
S3 ASUSxpsp; C:\WINDOWS\System32\drivers\ASUSxpsp.sys [28416 2013-03-28] (MCCI Corporation -> MCCI Corporation)
S3 AWEAlloc; C:\WINDOWS\system32\DRIVERS\awealloc.sys [21304 2013-10-05] (ASUSTeK Computer Inc. -> Olof Lagerkvist)
R3 bomebus; C:\WINDOWS\System32\drivers\bomebus.sys [56376 2018-05-16] (Bome Software GmbH & Co.KG -> Bome Software GmbH & Co. KG)
S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [59904 2015-02-06] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com)
S3 dyncal64; C:\WINDOWS\System32\drivers\dyncal64.sys [23728 2007-05-21] (Contoso.com(Test) -> Padix Co., Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [149944 2019-11-29] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15800 2019-10-16] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [189512 2019-11-29] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [116696 2019-11-29] (ESET, spol. s r.o. -> ESET)
R3 EuMusDesignVirtualAudioCableWdm; C:\WINDOWS\System32\drivers\vrtaucbl.sys [210024 2020-01-15] (Muzychenko Evgenii Viktorovich, IP -> Eugene V. Muzychenko)
S3 FocusriteUSB; C:\WINDOWS\System32\drivers\FocusriteUSB.sys [121880 2019-06-20] (WDKTestCert builds,131886954661028733 -> Focusrite Audio Engineering Ltd.)
R3 FocusriteUSBSwRoot; C:\WINDOWS\System32\drivers\FocusriteUSBSwRoot.sys [101304 2019-06-20] (WDKTestCert builds,131886954661028733 -> Focusrite Audio Engineering Ltd.)
S3 FocusriteUSB_AUDIO; C:\WINDOWS\system32\drivers\FocusriteUSBAudio.sys [63200 2019-06-20] (WDKTestCert builds,131886954661028733 -> Focusrite Audio Engineering Ltd.)
R4 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [24824 2014-04-29] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S3 KYEGKB; C:\WINDOWS\system32\drivers\KYEGKB.sys [25600 2011-09-05] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 NFC_Driver; C:\WINDOWS\System32\drivers\NFC_Driver.sys [48336 2014-03-27] (Tech Titan Limited -> Titan ARC Corp.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_9e532b5f619dc909\nvlddmkm.sys [23276960 2020-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-12-07] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [75600 2019-08-22] (NVIDIA Corporation -> NVIDIA Corporation)
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [24000 2019-09-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2016-12-21] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
R3 VBAudioVACMME; C:\WINDOWS\System32\drivers\vbaudio_cable64_win7.sys [41192 2014-09-02] (Vincent Burel -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45960 2020-02-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [376032 2020-02-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2020-02-04] (Microsoft Windows -> Microsoft Corporation)
S3 XtuAcpiDriver; C:\WINDOWS\System32\drivers\XtuAcpiDriver.sys [54168 2017-04-18] (Intel Corporation -> Intel Corporation)
R3 XTUComponent; C:\WINDOWS\System32\drivers\iocbios2.sys [38064 2019-03-26] (Intel Corporation -> Intel Corporation)
U5 ASUSFILTER; C:\Windows\SysWOW64\Drivers\ASUSFILTER.sys [46152 2011-09-20] (MCCI Corporation -> MCCI Corporation)
U3 aswbdisk; no ImagePath
U3 aswRdr; no ImagePath
U3 aswStm; no ImagePath
S3 MBAMWebProtection; \??\C:\WINDOWS\system32\drivers\mwac.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-02-09 20:01 - 2020-02-09 20:02 - 000038011 _____ C:\Users\Jakub Pokora\Downloads\FRST.txt
2020-02-09 20:01 - 2020-02-09 20:02 - 000000000 ____D C:\FRST
2020-02-09 20:01 - 2020-02-09 20:01 - 002279424 _____ (Farbar) C:\Users\Jakub Pokora\Downloads\FRST64.exe
2020-02-09 15:46 - 2020-02-09 15:46 - 000001247 _____ C:\Users\Jakub Pokora\Desktop\TweakBit PCRepairKit.lnk
2020-02-09 15:46 - 2020-02-09 15:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\TweakBit
2020-02-09 15:46 - 2020-02-09 15:46 - 000000000 ____D C:\ProgramData\TweakBit
2020-02-09 15:46 - 2020-02-09 15:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TweakBit
2020-02-09 15:45 - 2020-02-09 15:45 - 000000000 ____D C:\Program Files (x86)\TweakBit
2020-02-09 15:44 - 2020-02-09 15:45 - 017187216 _____ (TweakBit ) C:\Users\Jakub Pokora\Downloads\quickfontcache.dll-repairkit.exe
2020-02-09 15:44 - 2020-02-09 15:44 - 000206960 _____ C:\Users\Jakub Pokora\Downloads\quickfontcache.zip
2020-02-08 15:02 - 2020-02-08 15:02 - 001899064 _____ (CPUID, Inc. ) C:\Users\Jakub Pokora\Downloads\cpu-z_1.91-en.exe
2020-02-08 15:02 - 2020-02-08 15:02 - 000000914 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2020-02-08 14:44 - 2020-02-08 14:44 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2020-02-08 14:44 - 2020-02-08 14:44 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2020-02-08 14:44 - 2020-02-08 14:44 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2020-02-08 14:43 - 2020-02-08 14:51 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2020-02-08 14:43 - 2020-02-08 14:43 - 000001155 _____ C:\Users\Jakub Pokora\Desktop\MSI Afterburner.lnk
2020-02-08 14:43 - 2020-02-08 14:43 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2020-02-08 14:42 - 2020-02-08 14:42 - 050449037 _____ C:\Users\Jakub Pokora\Downloads\MSIAfterburnerSetup.zip
2020-02-08 14:16 - 2020-02-08 14:16 - 000019680 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_25450024205479.dll
2020-02-08 14:16 - 2020-02-08 14:16 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\EasyAntiCheat
2020-02-08 14:16 - 2020-02-08 14:16 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2020-02-08 14:04 - 2020-02-08 14:04 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2020-02-08 14:02 - 2020-01-31 00:04 - 001729232 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-02-08 14:02 - 2020-01-31 00:04 - 001729232 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-02-08 14:02 - 2020-01-31 00:04 - 001329360 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-02-08 14:02 - 2020-01-31 00:04 - 001329360 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-02-08 14:02 - 2020-01-31 00:04 - 001078992 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-02-08 14:02 - 2020-01-31 00:04 - 001078992 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-02-08 14:02 - 2020-01-31 00:04 - 000937680 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-02-08 14:02 - 2020-01-31 00:04 - 000937680 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-02-08 14:02 - 2020-01-31 00:04 - 000450576 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-02-08 14:02 - 2020-01-31 00:04 - 000353160 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-02-08 14:02 - 2020-01-31 00:03 - 011843504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2020-02-08 14:02 - 2020-01-31 00:03 - 010167544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 017462616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 005384584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 004718792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 002075904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 001727320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6444219.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 001569160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 001490688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6444219.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 001485688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 001370360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 001145776 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 001064384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 000825720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 000815120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 000685912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 000677584 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 000557304 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 000545112 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-02-08 14:02 - 2020-01-31 00:01 - 040511408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2020-02-08 14:02 - 2020-01-31 00:01 - 035380120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2020-02-08 14:02 - 2020-01-31 00:01 - 015031808 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-02-08 13:49 - 2020-02-08 13:50 - 000000000 ____D C:\AdwCleaner
2020-02-08 13:49 - 2020-02-08 13:49 - 008356016 _____ (Malwarebytes) C:\Users\Jakub Pokora\Downloads\adwcleaner_8.0.2.exe
2020-02-08 12:56 - 2020-02-08 12:56 - 000000000 ____D C:\ProgramData\Ubisoft
2020-02-08 12:30 - 2020-02-08 12:30 - 000000000 ____D C:\Program Files\Malwarebytes
2020-02-08 12:29 - 2020-02-08 12:29 - 054199488 _____ (Malwarebytes ) C:\Users\Jakub Pokora\Downloads\mb3-setup-consumer-3.0.5.1299.exe
2020-02-07 23:28 - 2020-02-07 23:34 - 007684405 _____ C:\Users\Jakub Pokora\Downloads\ADAM-plakat-odpady.psd
2020-02-07 18:02 - 2020-02-07 18:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2020-02-07 18:02 - 2020-02-07 18:02 - 000000000 ____D C:\ProgramData\ESET
2020-02-07 18:02 - 2020-02-07 18:02 - 000000000 ____D C:\Program Files\ESET
2020-02-07 17:59 - 2020-02-07 17:59 - 005504824 _____ (ESET) C:\Users\Jakub Pokora\Downloads\eset_nod32_antivirus_live_installer.exe
2020-02-07 17:55 - 2020-02-08 01:59 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-02-07 17:55 - 2020-02-08 01:59 - 000002234 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-02-07 17:55 - 2020-02-07 17:55 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-02-07 17:55 - 2020-02-07 17:55 - 000000000 ____D C:\Program Files\CCleaner
2020-02-07 17:54 - 2020-02-07 17:54 - 024578944 _____ (Piriform Software Ltd) C:\Users\Jakub Pokora\Downloads\ccsetup563.exe
2020-02-07 17:51 - 2020-02-08 14:34 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Local\Avg
2020-02-07 17:37 - 2020-02-07 17:37 - 000230080 _____ (AVAST Software) C:\Users\Jakub Pokora\Downloads\avast_free_antivirus_setup_online.exe
2020-02-07 17:30 - 2020-02-08 14:34 - 000000000 ____D C:\ProgramData\AVG
2020-02-07 17:30 - 2020-02-07 17:30 - 000270160 _____ (AVG Technologies CZ, s.r.o.) C:\Users\Jakub Pokora\Downloads\avg_antivirus_free_setup.exe
2020-02-07 16:53 - 2020-02-07 16:53 - 012979520 _____ (AVAST Software ) C:\Users\Jakub Pokora\Downloads\Nepotvrzeno 84356.crdownload
2020-02-07 16:41 - 2020-02-08 14:34 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\Avast Software
2020-02-07 16:40 - 2020-02-08 14:34 - 000000000 ____D C:\ProgramData\AVAST Software
2020-02-07 16:40 - 2020-02-07 16:40 - 053145632 _____ (AVAST Software ) C:\Users\Jakub Pokora\Downloads\avast_cleanup_setup.exe
2020-02-06 23:03 - 2020-02-06 23:03 - 015983104 _____ C:\Users\Jakub Pokora\Downloads\YAuhda.exe
2020-02-03 20:32 - 2020-02-03 21:13 - 000000000 ____D C:\Users\Jakub Pokora\Desktop\MATURAK JAKUB
2020-02-03 20:31 - 2020-02-03 20:32 - 032103231 _____ C:\Users\Jakub Pokora\Downloads\wetransfer-c32dc6.zip
2020-02-01 12:24 - 2020-02-01 12:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ohm Force
2020-02-01 12:23 - 2020-02-01 12:23 - 031966920 _____ (Oleg N. Scherbakov) C:\Users\Jakub Pokora\Downloads\SymptohmPE-137-win64-vst-free.exe
2020-02-01 12:23 - 2020-02-01 12:23 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\Ohm Force
2020-02-01 12:09 - 2020-02-01 13:08 - 1780448794 _____ C:\Users\Jakub Pokora\Downloads\VSCO2_Rompler_-_64.zip
2020-01-31 19:36 - 2020-02-07 19:54 - 000000000 ____D C:\Users\Jakub Pokora\Documents\Ample Sound
2020-01-31 19:36 - 2020-01-31 19:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ample Sound
2020-01-31 19:35 - 2020-02-07 19:54 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\Ample Sound
2020-01-31 19:24 - 2020-01-31 19:33 - 283568744 _____ C:\Users\Jakub Pokora\Downloads\AGML_2_3_1_Complete_Installer.exe
2020-01-31 12:18 - 2020-01-31 12:32 - 049425768 _____ C:\Users\Jakub Pokora\Downloads\DSK_The_Grand_-_win64.zip
2020-01-30 15:49 - 2020-01-30 16:56 - 000115069 _____ C:\Users\Jakub Pokora\Desktop\LATRO-brainfreeze.flp
2020-01-29 18:57 - 2020-01-29 18:56 - 193133307 _____ C:\Users\Jakub Pokora\Desktop\output_HD1080.mp4
2020-01-29 18:52 - 2020-01-29 18:53 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Local\Adobe
2020-01-29 18:45 - 2020-01-29 18:56 - 193133307 _____ C:\Users\Jakub Pokora\Downloads\output_HD1080.mp4
2020-01-27 19:07 - 2020-02-01 13:41 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\Maize Sampler Player
2020-01-27 19:00 - 2020-01-27 19:02 - 113406556 _____ C:\Users\Jakub Pokora\Downloads\DSK_Dynamic_Guitars_64bits.zip
2020-01-24 15:16 - 2019-11-28 21:13 - 023247630 _____ C:\Users\Jakub Pokora\Desktop\DYKMOREHUBAJKASLONIPRDEl.wav
2020-01-19 21:00 - 2020-01-19 22:12 - 084739867 _____ C:\Users\Jakub Pokora\Desktop\KHEP cover.psd
2020-01-19 20:49 - 2020-01-19 22:06 - 000000000 ____D C:\Users\Jakub Pokora\Desktop\foto praha 19012020 KHEP
2020-01-19 20:47 - 2020-01-19 20:48 - 148934623 _____ C:\Users\Jakub Pokora\Downloads\wetransfer-af8629.zip
2020-01-18 08:59 - 2020-01-18 09:06 - 137080842 _____ C:\Users\Jakub Pokora\Downloads\Dope D.O.D. - Do Not Enter.zip
2020-01-18 08:45 - 2020-01-18 08:51 - 066381165 _____ C:\Users\Jakub Pokora\Downloads\Eminem - Music To Be Murdered By (Full Album).zip
2020-01-17 16:39 - 2020-01-17 16:39 - 025900032 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 022627840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 018020352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 009928208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-01-17 16:39 - 2020-01-17 16:39 - 008012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 007754752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 007016448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 006520480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 005913600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-01-17 16:39 - 2020-01-17 16:39 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 002870784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 002801152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-01-17 16:39 - 2020-01-17 16:39 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-01-17 16:39 - 2020-01-17 16:39 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 002494464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 002473976 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 001985928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 001697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 001655880 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 001399096 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-01-17 16:39 - 2020-01-17 16:39 - 001330952 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 001106944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-01-17 16:39 - 2020-01-17 16:39 - 001051664 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 001020032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000851456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-01-17 16:39 - 2020-01-17 16:39 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000678712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-01-17 16:39 - 2020-01-17 16:39 - 000646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000571392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-01-17 16:39 - 2020-01-17 16:39 - 000542496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000432256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-01-17 16:39 - 2020-01-17 16:39 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-01-17 16:39 - 2020-01-17 16:39 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000363840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-01-17 16:39 - 2020-01-17 16:39 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-01-17 16:39 - 2020-01-17 16:39 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV1.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-01-17 16:39 - 2020-01-17 16:39 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssrvlic.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-01-17 16:39 - 2020-01-17 16:39 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti_ci.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000162696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2020-01-17 16:39 - 2020-01-17 16:39 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadss.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tsusbhub.sys
2020-01-17 16:39 - 2020-01-17 16:39 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000127520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiadss.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000089536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-01-17 16:39 - 2020-01-17 16:39 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\LSCSHostPolicy.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbscan.sys
2020-01-17 16:39 - 2020-01-17 16:39 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\lstelemetry.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiatrace.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-01-17 16:36 - 2020-01-17 16:36 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-01-16 19:01 - 2020-01-22 23:44 - 000102620 _____ C:\Users\Jakub Pokora\Desktop\maturak tanec lineup.flp
2020-01-16 18:49 - 2020-01-16 18:54 - 000000000 ____D C:\Users\Jakub Pokora\Desktop\maturak linemup
2020-01-15 21:06 - 2020-01-15 21:06 - 009195422 _____ C:\Users\Jakub Pokora\Downloads\ResananceV2.rar
2020-01-15 21:06 - 2020-01-15 21:06 - 000001916 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Resanance.lnk
2020-01-15 21:06 - 2020-01-15 21:06 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\Resanance
2020-01-15 21:06 - 2020-01-15 21:06 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Local\Wasntafairfight
2020-01-15 21:06 - 2020-01-15 21:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Resanance
2020-01-15 20:45 - 2014-09-02 17:01 - 000041192 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\vbaudio_cable64_win7.sys
2020-01-15 20:44 - 2014-09-02 17:01 - 000034024 _____ (Windows (R) Win 7 DDK provider) C:\Users\Jakub Pokora\Desktop\vbaudio_cable_xp.sys
2020-01-15 20:30 - 2020-01-15 20:30 - 000210024 _____ (Eugene V. Muzychenko) C:\WINDOWS\system32\Drivers\vrtaucbl.sys
2020-01-15 20:30 - 2020-01-15 20:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virtual Audio Cable
2020-01-15 20:30 - 2020-01-15 20:30 - 000000000 ____D C:\Program Files\Virtual Audio Cable
2020-01-15 20:29 - 2020-01-15 20:29 - 000743695 _____ C:\Users\Jakub Pokora\Downloads\vac460.zip
2020-01-15 20:27 - 2020-01-15 20:27 - 001139147 _____ C:\Users\Jakub Pokora\Downloads\VBCABLE_Driver_Pack43 (1).zip
2020-01-15 20:26 - 2020-01-15 20:26 - 001139147 _____ C:\Users\Jakub Pokora\Downloads\VBCABLE_Driver_Pack43.zip
2020-01-13 23:42 - 2020-01-13 23:48 - 765552550 _____ C:\Users\Jakub Pokora\Desktop\dayne v noci.psd
2020-01-13 18:38 - 2020-01-13 20:06 - 1787768944 _____ C:\Users\Jakub Pokora\Desktop\dayne amk-demoshit.psd
2020-01-13 18:29 - 2018-01-20 23:00 - 001071042 _____ C:\Users\Jakub Pokora\Desktop\20 Underline Brushes.abr
2020-01-13 18:27 - 2018-02-27 17:21 - 019384276 _____ C:\Users\Jakub Pokora\Desktop\Сalligraphy Photoshop Brushes 1.abr
2020-01-13 18:26 - 2017-12-27 00:14 - 000761356 _____ C:\Users\Jakub Pokora\Desktop\Underline Photoshop Brushes 3.abr
2020-01-10 02:20 - 2020-01-10 03:01 - 759662507 _____ C:\Users\Jakub Pokora\Desktop\FFFFMoth video final 10012020.mp4
2020-01-10 02:00 - 2020-01-10 02:00 - 091858362 _____ C:\Users\Jakub Pokora\Desktop\loga promo konec smes.psd

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-02-09 19:55 - 2018-10-10 21:31 - 000000000 ____D C:\Program Files (x86)\Steam
2020-02-09 19:55 - 2018-08-18 20:51 - 000000000 ____D C:\ProgramData\NVIDIA
2020-02-09 19:52 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-02-09 19:48 - 2018-08-18 21:38 - 000000000 _____ C:\WINDOWS\Path.idx
2020-02-09 19:40 - 2018-08-20 21:38 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Local\CrashDumps
2020-02-09 18:53 - 2019-04-18 11:00 - 000000000 ____D C:\Users\Jakub Pokora\Documents\Assassin's Creed Unity
2020-02-09 18:26 - 2019-09-28 16:13 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-02-09 16:14 - 2019-09-28 16:23 - 001788980 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-02-09 16:14 - 2019-03-19 12:57 - 000716944 _____ C:\WINDOWS\system32\perfh005.dat
2020-02-09 16:14 - 2019-03-19 12:57 - 000145024 _____ C:\WINDOWS\system32\perfc005.dat
2020-02-09 16:14 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2020-02-09 16:09 - 2018-08-18 21:22 - 000080921 _____ C:\WINDOWS\SysWOW64\IntelRemoteWakeAgent.ini
2020-02-09 16:09 - 2018-08-18 21:22 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Local\asushomecloud
2020-02-09 16:09 - 2018-08-18 21:17 - 001048576 _____ C:\WINDOWS\PE_Rom.dll
2020-02-09 16:08 - 2019-09-28 16:19 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-02-09 16:08 - 2019-09-28 16:15 - 000000000 ____D C:\Users\Jakub Pokora
2020-02-09 16:08 - 2018-10-25 16:49 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\WTablet
2020-02-09 00:04 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-02-08 23:59 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-02-08 23:19 - 2018-08-19 13:35 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\discord
2020-02-08 15:02 - 2018-08-18 21:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2020-02-08 15:02 - 2018-08-18 21:26 - 000000000 ____D C:\Program Files\CPUID
2020-02-08 14:48 - 2019-09-28 16:13 - 005028448 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-02-08 14:04 - 2018-08-20 21:34 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Local\NVIDIA
2020-02-08 12:56 - 2019-01-06 19:51 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Local\Ubisoft Game Launcher
2020-02-08 01:59 - 2020-01-06 20:57 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-08 01:59 - 2020-01-06 20:57 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-08 01:59 - 2020-01-06 20:57 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-08 01:59 - 2020-01-06 20:57 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-08 01:59 - 2019-10-04 23:06 - 000002608 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2020-02-08 01:59 - 2019-09-28 16:19 - 000003402 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-02-08 01:59 - 2019-09-28 16:19 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-08 01:59 - 2019-09-28 16:19 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-08 01:59 - 2019-09-28 16:19 - 000003178 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-02-08 01:59 - 2019-09-28 16:19 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-08 01:59 - 2019-09-28 16:19 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-08 01:59 - 2019-09-28 16:19 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-08 01:59 - 2019-09-28 16:19 - 000002854 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-247741225-677518453-3872238061-1001
2020-02-08 01:59 - 2019-09-28 16:19 - 000002784 _____ C:\WINDOWS\system32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-PATU4U0-Jakub Pokora
2020-02-08 01:59 - 2019-09-28 16:19 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-08 01:59 - 2019-09-28 16:19 - 000002504 _____ C:\WINDOWS\system32\Tasks\AsushomeCloudStart
2020-02-08 01:59 - 2019-03-19 05:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-02-07 23:35 - 2019-01-02 13:29 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\Adobe
2020-02-07 18:02 - 2019-03-19 05:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-02-07 17:56 - 2018-08-20 22:11 - 000000000 ____D C:\temp
2020-02-07 17:56 - 2018-08-18 21:00 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Local\Packages
2020-02-07 17:55 - 2020-01-09 21:53 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\TeamViewer
2020-02-07 17:55 - 2019-09-27 20:11 - 000000000 ___DC C:\WINDOWS\Panther
2020-02-07 17:55 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-02-04 23:08 - 2018-09-22 19:39 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\.minecraft
2020-02-04 22:57 - 2019-08-23 13:37 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\.tlauncher
2020-02-04 17:43 - 2018-08-18 20:51 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-01-31 00:02 - 2019-12-09 18:29 - 000660176 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-01-30 23:58 - 2018-08-20 21:31 - 004963008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-01-30 23:58 - 2018-08-20 21:31 - 004230752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-01-30 02:40 - 2018-08-20 21:31 - 000055783 _____ C:\WINDOWS\system32\nvinfo.pb
2020-01-30 00:56 - 2018-08-18 20:52 - 005577224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2020-01-30 00:56 - 2018-08-18 20:52 - 002655864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2020-01-30 00:56 - 2018-08-18 20:52 - 001767920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2020-01-30 00:56 - 2018-08-18 20:52 - 000670840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2020-01-30 00:56 - 2018-08-18 20:52 - 000454512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2020-01-30 00:56 - 2018-08-18 20:52 - 000131176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2020-01-30 00:56 - 2018-08-18 20:52 - 000083976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2020-01-27 19:05 - 2014-11-17 17:04 - 000000000 ____D C:\Users\Jakub Pokora\Desktop\DSK Dynamic Guitars (64bits)
2020-01-27 08:11 - 2018-08-18 20:52 - 008887562 _____ C:\WINDOWS\system32\nvcoproc.bin
2020-01-26 16:02 - 2019-01-27 23:16 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Local\Spotify
2020-01-26 15:57 - 2019-01-27 23:15 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\Spotify
2020-01-25 20:14 - 2018-08-19 11:54 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Local\D3DSCache
2020-01-24 16:48 - 2019-10-23 12:21 - 001848188 _____ C:\Users\Jakub Pokora\Documents\alone cd lost.ec4
2020-01-24 16:43 - 2018-09-02 15:44 - 000000132 _____ C:\Users\Jakub Pokora\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2020-01-23 14:28 - 2018-08-18 20:51 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2020-01-22 22:50 - 2018-08-18 21:03 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-01-19 22:39 - 2019-05-26 19:36 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\Mp3tag
2020-01-19 20:49 - 2019-09-28 16:15 - 000002382 _____ C:\Users\Jakub Pokora\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-01-19 20:49 - 2018-08-18 21:02 - 000000000 ___RD C:\Users\Jakub Pokora\OneDrive
2020-01-18 02:12 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-01-18 02:12 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-01-18 02:12 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-01-18 02:12 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-01-17 16:43 - 2018-08-19 11:54 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-01-17 16:41 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-01-17 16:41 - 2018-08-19 11:54 - 120202352 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-01-10 01:34 - 2019-10-04 23:06 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData

==================== Files in the root of some directories ========

2018-09-02 15:44 - 2020-01-24 16:43 - 000000132 _____ () C:\Users\Jakub Pokora\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2019-07-16 21:18 - 2019-11-09 15:02 - 000000132 _____ () C:\Users\Jakub Pokora\AppData\Roaming\Adobe PNG Format CS6 Prefs
2018-11-11 14:18 - 2019-12-01 21:47 - 000000132 _____ () C:\Users\Jakub Pokora\AppData\Roaming\Filtr IIIExport Adobe CS6 – předvolby
2019-02-26 21:46 - 2019-12-17 21:13 - 000009635 _____ () C:\Users\Jakub Pokora\AppData\Local\oobelibMkey.log

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Re: Zasekaný pc

Napsal: 09 úno 2020 20:10
od JakubPokora
ADDITION LOG:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-02-2020 02
Ran by Jakub Pokora (09-02-2020 20:03:49)
Running from C:\Users\Jakub Pokora\Downloads
Windows 10 Pro Version 1903 18362.592 (X64) (2019-09-28 15:19:28)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-247741225-677518453-3872238061-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-247741225-677518453-3872238061-503 - Limited - Disabled)
Guest (S-1-5-21-247741225-677518453-3872238061-501 - Limited - Disabled)
Jakub Pokora (S-1-5-21-247741225-677518453-3872238061-1001 - Administrator - Enabled) => C:\Users\Jakub Pokora
WDAGUtilityAccount (S-1-5-21-247741225-677518453-3872238061-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe (HKLM\...\{250E78D7-9109-480B-A923-9B7B9D743A94}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.8.0.421 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2019 (HKLM-x32\...\AME_13_0_2) (Version: 13.0.2 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2018 (HKLM-x32\...\PPRO_12_0_0) (Version: 12.0.0 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2019 (HKLM-x32\...\PPRO_13_0_3) (Version: 13.0.3 - Adobe Systems Incorporated)
Adobe Premiere Pro CS6 (HKLM-x32\...\{7176B973-6011-43C1-AEBC-2D73FE7C6982}) (Version: 6.0 - Adobe Systems Incorporated)
Adobe Reader X (10.1.3) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.3 - Adobe Systems Incorporated)
Advertising Center (HKLM-x32\...\{b2ec4a38-b545-4a00-8214-13fe0e915e6d}) (Version: 0.0.0.1 - Nero AG) Hidden
AI Suite 3 (HKLM-x32\...\{D46DA5F0-25AD-4B77-98DA-6DD6AF39FBD9}) (Version: 1.00.83 - ASUSTeK Computer Inc.)
AirPort (HKLM-x32\...\{AA68AAAE-41F0-40B5-8896-5947F5FD6889}) (Version: 5.6.1.2 - Apple Inc.)
Aktualizace NVIDIA 38.0.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.4.0 - NVIDIA Corporation) Hidden
Ample Guitar M Lite II version 2.3.1 (HKLM-x32\...\{548F88E8-79D2-441F-B87B-E71754257651}_is1) (Version: 2.3.1 - Ample Sound Technology Co., Ltd.)
Apowersoft Online Launcher verze 1.7.1 (HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\{20BF67A8-D81A-4489-8225-FABAA0896E2D}_is1) (Version: 1.7.1 - APOWERSOFT LIMITED)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
Assassin's Creed Unity (HKLM-x32\...\Uplay Install 720) (Version: - Ubisoft)
ASUS Boot Setting (HKLM-x32\...\{7AAE9187-C24F-4073-A951-36C370E7A3A5}) (Version: 1.00.18 - ASUSTeK Computer Inc.)
ASUS HomeCloud Launcher (HKLM-x32\...\4ff11ffb-5880-4338-90e0-1502e835b184) (Version: 1.01.03 - ASUSTeK Computer Inc.)
ASUS HomeCloud Server 1.0.12.023 (HKLM\...\ASUS HomeCloud) (Version: 1.0.12.023 - ASUS Cloud Corporation)
ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.025 - ASUSTek Computer Inc.)
ASUS ROG Connect Plus (HKLM-x32\...\{ECF51D37-52ED-4871-BF8B-FEA34B8B4120}) (Version: 1.00.26 - ASUSTeK Computer Inc.)
Auto-Tune-8.1-vst3 (HKLM-x32\...\{417267F2-7228-4F20-B14B-0C3DC8A29E14}_is1) (Version: - Phúc Thái)
Bamboo (HKLM-x32\...\Pen Tablet Driver) (Version: - Wacom Technology Corp.)
bl (HKLM-x32\...\{2A075BB4-E976-4278-BF3F-E5C6945D84C0}) (Version: 1.0.0 - Your Company Name) Hidden
Bome Virtual MIDI 2.1.0.44 (HKLM\...\BMIDI_Driver1.0.0.11_is1) (Version: - Bome Software GmbH & Co. KG)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.63 - Piriform)
Combat Arms Reloaded (HKLM-x32\...\CombatArms) (Version: - )
CPUID CPU-Z 1.91 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.91 - CPUID, Inc.)
CPUID ROG CPU-Z 1.69 (HKLM\...\CPUID ROG CPU-Z_is1) (Version: 1.69 - CPUID, Inc.)
Discord (HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\Discord) (Version: 0.0.305 - Discord Inc.)
Ede Kowalski (HKLM-x32\...\Ede Kowalski) (Version: - )
Epic Games Launcher (HKLM-x32\...\{E7B62E3F-0F70-4119-89A2-28DE1C3873CC}) (Version: 1.1.163.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epson Connect Printer Setup (HKLM-x32\...\{D9B1D51B-EB56-410D-AEB5-1CCFAC4B6C8C}) (Version: 1.4.1 - Seiko Epson Corporation)
Epson E-Web Print (HKLM-x32\...\{6BF9F374-EC67-4808-A90C-F127DE6D989D}) (Version: 1.23.0000 - SEIKO EPSON CORPORATION)
Epson Print CD (HKLM-x32\...\{D16A31F9-276D-4968-A753-FFEAC56995D0}) (Version: 2.44.00 - Seiko Epson Corporation)
EPSON Printer Finder (HKLM-x32\...\{B8ECD0D3-AE08-4891-B6C7-32F96B75EB6C}) (Version: 1.0.0 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
Epson Software Updater (HKLM-x32\...\{1028AD34-EB8A-4136-9A93-27FC60FD0A40}) (Version: 4.4.11 - Seiko Epson Corporation)
EPSON XP-700 Series Printer Uninstall (HKLM\...\EPSON XP-700 Series) (Version: - SEIKO EPSON Corporation)
ESET Security (HKLM\...\{D8E84711-EDFC-4D4E-B579-95AEB40DAA4D}) (Version: 13.0.24.0 - ESET, spol. s r.o.)
FabFilter 1.0 (HKLM-x32\...\FabFilter 1.0) (Version: 1.0 - Keygen)
FabFilter Pro-R 1.06 (64-bit) (HKLM-x32\...\FabFilter Pro-R 1.06 (64-bit)) (Version: - )
FabFilter Total Bundle (HKLM\...\FabFilter Total Bundle_is1) (Version: 2019.03.13 - FabFilter)
FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version: - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line)
Focusrite USB 4.63.23.563 (HKLM\...\Focusrite USB_is1) (Version: 4.63.23.563 - Focusrite Audio Engineering, Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.130 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.441 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.115 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: 1.0.1868.0 - Rockstar Games)
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Heroes of Might and Magic V with Hammers of Fate (HKLM-x32\...\1207661143_is1) (Version: 2.1.0.22 - GOG.com)
HomeClude Drive 1.0.0.068 (HKLM-x32\...\HomeClude Drive) (Version: 1.0.0.068 - ASUS Cloud Corporation)
IDCGames Launcher (HKLM-x32\...\{189BD0E3-FA9A-4280-8204-7F54913CFCFA}_is1) (Version: 0.0.0 - IDC Games)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line)
Intel(R) Extreme Tuning Utility (HKLM-x32\...\{92b09894-9d66-465d-97a0-5bcabf264301}) (Version: 6.5.1.321 - Intel Corporation)
Intel(R) Extreme Tuning Utility (HKLM-x32\...\{EC7279C8-6C18-4389-8C21-37884A58C114}) (Version: 6.5.1.321 - Intel Corporation) Hidden
Intel(R) Network Connections 19.1.51.0 (HKLM\...\PROSetDX) (Version: 19.1.51.0 - Intel)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.1.0.1058 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{4a87bd28-a855-4a8d-b133-60ca8ccffd30}) (Version: 10.0.17 - Intel(R) Corporation) Hidden
Java 8 Update 181 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
Java 8 Update 211 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180211F0}) (Version: 8.0.2110.12 - Oracle Corporation)
KeyBot (HKLM-x32\...\{DF53C8ED-1B43-475D-8CEB-9462E7BC2D9C}) (Version: 1.00.11 - ASUSTeK Computer Inc.)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Media Streamer (HKLM-x32\...\{B457E718-00CA-45C8-9F75-45D66F8DAFF6}) (Version: 2.00.14 - ASUSTeK Computer Inc.)
MemTweakIt (HKLM-x32\...\{E51AAC3A-D66D-4912-B883-DAFBA249D10F}) (Version: 2.02.01 - ASUSTeK Computer Inc.)
Microsoft OneDrive (HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\OneDriveSetup.exe) (Version: 19.222.1110.0006 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 (HKLM-x32\...\Microsoft SQL Server 2008 R2) (Version: - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Native Client (HKLM\...\{79A2C6E8-C727-4D12-B4B3-19790C181DEA}) (Version: 10.52.4000.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Setup (English) (HKLM-x32\...\{7419AE1A-D1A5-4B24-BD78-C7ABCC26016F}) (Version: 10.52.4000.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM-x32\...\{D441BD04-E548-4F8E-97A4-1B66135BAAA8}) (Version: 10.1.2731.0 - Microsoft Corporation)
Microsoft SQL Server Browser (HKLM-x32\...\{BF9BF038-FE03-429D-9B26-2FA0FD756052}) (Version: 10.52.4000.0 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{288D79EE-A2D1-42AF-9597-B0ADCC23A8ED}) (Version: 10.52.4000.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 1.18.1095.110 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Movavi Free Online Screen Recorder 1 (HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\Movavi Free Online Screen Recorder 1) (Version: 1.0.3 - Movavi)
Mp3tag v2.95 (HKLM-x32\...\Mp3tag) (Version: 2.95 - Florian Heidenreich)
MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
Native Instruments Blocks Base (HKLM-x32\...\Native Instruments Blocks Base) (Version: 1.0.1.1 - Native Instruments)
Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version: 2.5.2.503 - Native Instruments)
Native Instruments Expansions Selection (HKLM-x32\...\Native Instruments Expansions Selection) (Version: 1.0.0.10 - Native Instruments)
Native Instruments Guitar Rig 5 (HKLM-x32\...\Native Instruments Guitar Rig 5) (Version: 5.2.2.8 - Native Instruments)
Native Instruments Kinetic Treats (HKLM-x32\...\Native Instruments Kinetic Treats) (Version: 1.1.0.4 - Native Instruments)
Native Instruments Komplete Kontrol (HKLM-x32\...\Native Instruments Komplete Kontrol) (Version: 2.1.6.4 - Native Instruments)
Native Instruments Komplete Kontrol Driver (HKLM-x32\...\Native Instruments Komplete Kontrol Driver) (Version: - Native Instruments)
Native Instruments Komplete Kontrol MK2 Driver (HKLM-x32\...\Native Instruments Komplete Kontrol MK2 Driver) (Version: - Native Instruments)
Native Instruments Kontakt (HKLM-x32\...\Native Instruments Kontakt) (Version: 6.1.1.66 - Native Instruments)
Native Instruments Kontakt Factory Selection (HKLM-x32\...\Native Instruments Kontakt Factory Selection) (Version: 1.4.2.1 - Native Instruments)
Native Instruments Mikro Prism (HKLM-x32\...\Native Instruments Mikro Prism) (Version: 1.1.0.14 - Native Instruments)
Native Instruments Native Access (HKLM-x32\...\Native Instruments Native Access) (Version: 1.12.1.129 - Native Instruments)
Native Instruments NIHostIntegrationAgent (HKLM-x32\...\Native Instruments NIHostIntegrationAgent) (Version: 1.8.9.144 - Native Instruments)
Native Instruments NTKDaemon (HKLM-x32\...\Native Instruments NTKDaemon) (Version: 1.0.1.69 - Native Instruments)
Native Instruments Play Series Selection (HKLM-x32\...\Native Instruments Play Series Selection) (Version: 1.0.0.6 - Native Instruments)
Native Instruments Reaktor 6 (HKLM-x32\...\Native Instruments Reaktor 6) (Version: 6.3.1.6 - Native Instruments)
Native Instruments Reaktor Factory Selection R2 (HKLM-x32\...\Native Instruments Reaktor Factory Selection R2) (Version: 1.0.1.7 - Native Instruments)
Native Instruments Supercharger (HKLM-x32\...\Native Instruments Supercharger) (Version: 1.3.1.45 - Native Instruments)
Native Instruments Traktor DJ 2 (HKLM-x32\...\Native Instruments Traktor DJ 2) (Version: 2.1.0.415 - Native Instruments)
Native Instruments TRK-01 Bass (HKLM-x32\...\Native Instruments TRK-01 Bass) (Version: 1.0.0.10 - Native Instruments)
Nero 9 Essentials (HKLM-x32\...\{96a32d47-b145-4da9-9946-5d7f2281968c}) (Version: - Nero AG)
Nik Collection (HKLM-x32\...\Nik Collection) (Version: 1.2.11 - Google)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.2.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.2.34 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 442.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 442.19 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Ovládací panel NVIDIA 442.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 442.19 - NVIDIA Corporation) Hidden
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
ph (HKLM-x32\...\{185F9795-9663-4F13-9EF9-307A282ADB5A}) (Version: 1.0.0 - Your Company Name) Hidden
Polda V (HKLM-x32\...\Polda V_is1) (Version: - )
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 4.3 r3298 - Rainmeter)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7272 - Realtek Semiconductor Corp.)
Resanance (HKLM\...\{07BB6181-E1D0-4283-87D0-BE4819535A3C}) (Version: 2.1.3 - WasntAFairFight)
RivaTuner Statistics Server 7.2.3 (HKLM-x32\...\RTSS) (Version: 7.2.3 - Unwinder)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.17.199 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.4.3 - Rockstar Games)
ROG Game First III (HKLM-x32\...\{0C6E32E1-31D9-49F1-B67F-2941994002D5}) (Version: 1.00.08 - ASUSTeK Computer Inc.)
ROG RAMDisk (HKLM-x32\...\{DE8C1883-4F14-40DF-8C8C-376157ADF5A3}) (Version: 2.02.05 - ASUSTeK Computer Inc.)
Service Pack 2 for SQL Server 2008 R2 (KB2630458) (HKLM-x32\...\KB2630458) (Version: 10.52.4000.0 - Microsoft Corporation)
Spotify (HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\Spotify) (Version: 1.1.24.91.g4ca6d5eb - Spotify AB)
SQL Server 2008 R2 SP2 Common Files (HKLM-x32\...\{CACEA8C8-3D38-4F51-953D-1E6FC3346FEF}) (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP2 Common Files (HKLM-x32\...\{FC835376-FF3B-4CAA-83E0-2148B3FB7C98}) (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP2 Database Engine Services (HKLM-x32\...\{58721EC3-8D4E-4B79-BC51-1054E2DDCD10}) (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP2 Database Engine Services (HKLM-x32\...\{B5153233-9AEE-4CD4-9D2C-4FAAC870DBE2}) (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP2 Database Engine Shared (HKLM-x32\...\{4C9D82EB-9001-4E59-8F64-0BEEE5F4A30A}) (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP2 Database Engine Shared (HKLM-x32\...\{F021CC0C-21C3-4038-AA4A-6E3CBC669CE8}) (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
Sql Server Customer Experience Improvement Program (HKLM-x32\...\{93998800-1608-403F-9A51-420A77D23C25}) (Version: 10.50.1600.1 - Microsoft Corporation) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Steep (HKLM-x32\...\Uplay Install 3279) (Version: - Ubisoft)
TDR Kotelnikov version 1.1.2 (HKLM\...\TDR Kotelnikov_is1) (Version: 1.1.2 - Tokyo Dawn Labs)
TDR Nova version 1.2.0 (HKLM\...\TDR Nova_is1) (Version: 1.2.0 - Tokyo Dawn Labs)
TDR VOS SlickEQ version 1.2.3 (HKLM\...\TDR VOS SlickEQ_is1) (Version: 1.2.3 - Tokyo Dawn Labs)
TeamSpeak 3 Client (HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\TeamSpeak 3 Client) (Version: 3.1.9 - TeamSpeak Systems GmbH)
Tom Clancy's Rainbow Six Siege (HKLM-x32\...\Uplay Install 635) (Version: - Ubisoft Montreal)
Trials Fusion (HKLM-x32\...\Uplay Install 297) (Version: - Ubisoft)
TweakBit PCRepairKit (HKLM-x32\...\{5AEA8CFE-B238-4D0A-9362-D55F38ECB795}_is1) (Version: 1.8.4.16 - Tweakbit Pty Ltd)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 24.0 - Ubisoft)
uTorrent Web (HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\utweb) (Version: 0.18.2 - BitTorrent, Inc.)
VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version: - VB-Audio Software)
Vietcong (HKLM-x32\...\Vietcong) (Version: - )
Virtual Audio Cable (HKLM\...\{83ed7f0e-2028-4956-b0b4-39c76fdaef1d}) (Version: 4.60 - Eugene V. Muzychenko)
Visual Studio Community 2017 (HKLM-x32\...\62e5a584) (Version: 15.9.28307.344 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.7.1 - VideoLAN)
vs_minshellmsi (HKLM-x32\...\{68B8AD33-CE97-4C3D-9583-669C39D21BA5}) (Version: 15.9.28302 - Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32\...\{B8B65A93-F72B-42C2-AE1A-FF440B44BB67}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.0.1.213 - ASUS Cloud Corporation)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
WinZip 17.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240DD}) (Version: 17.5.10562 - WinZip Computing, S.L. )

Packages:
=========
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1691.1.0_x86__kgqvnymyfvs32 [2020-02-03] (king.com)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.1.4081.0_x64__rz1tebttyb220 [2020-01-30] (Dolby Laboratories)
Hidden City: Hidden Object Adventure -> C:\Program Files\WindowsApps\828B5831.HiddenCityMysteryofShadows_1.33.3301.0_x86__ytsefhwckbdv6 [2020-02-06] (G5 Entertainment AB)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa [2020-01-30] (Apple Inc.) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.35.20273.0_x64__8wekyb3d8bbwe [2020-02-06] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-11] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-19] (Microsoft Corporation) [MS Ad]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-247741225-677518453-3872238061-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-11-29] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2019-04-18] (Florian Heidenreich) [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2013-07-31] (WinZip Computing -> WinZip Computing, S.L.)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-11-29] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2019-04-18] (Florian Heidenreich) [File not signed]
ContextMenuHandlers3: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2326} => C:\Program Files (x86)\Common Files\AWS\2.0.1.213\ASUSWSContextMenu.dll [2013-06-26] (ASUS Cloud Corporation -> ASUS Cloud Corporation)
ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2019-04-18] (Florian Heidenreich) [File not signed]
ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2013-07-31] (WinZip Computing -> WinZip Computing, S.L.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-11-29] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2013-07-31] (WinZip Computing -> WinZip Computing, S.L.)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [msacm.vorbis] => C:\Windows\system32\vorbis.acm [1562432 2016-11-02] (Image Line -> HMS hxxp://hp.vector.co.jp/authors/VA012897/) [File not signed]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsv64.dll [105984 2018-09-26] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [msacm.vorbis] => C:\Windows\SysWOW64\vorbis.acm [1456448 2016-11-02] (Image Line -> HMS hxxp://hp.vector.co.jp/authors/VA012897/) [File not signed]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [94208 2018-09-26] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2018-08-18 21:15 - 2014-04-24 23:03 - 000662016 ____R () [File not signed] C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMLib.dll
2018-08-18 21:15 - 2014-04-25 05:03 - 000147456 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AssistFunc.dll
2018-08-18 21:16 - 2014-05-25 22:24 - 004075008 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\dip4.dll
2018-08-18 21:16 - 2014-05-25 22:15 - 000711680 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4DIGIPowerControlAction.dll
2018-08-18 21:16 - 2014-05-25 22:15 - 000859136 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4EpuAction.dll
2018-08-18 21:16 - 2014-05-25 22:15 - 000801280 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4FanAction.dll
2018-08-18 21:16 - 2014-05-25 22:15 - 000807936 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4TurboVEVOAction.dll
2018-08-18 21:16 - 2014-05-25 22:15 - 000010240 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\IccHelper.dll
2018-08-18 21:16 - 2014-05-25 22:15 - 000743424 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\EPU.dll
2018-08-18 21:16 - 2014-05-25 22:15 - 000908288 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\FAN.dll
2018-08-18 21:16 - 2014-05-25 22:15 - 000010240 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\IccHelper.dll
2018-08-18 21:16 - 2014-05-25 22:15 - 000091648 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\Log4cxxWrapper.dll
2018-08-18 21:16 - 2014-02-25 15:53 - 001138176 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EasyUpdt.dll
2018-08-18 21:16 - 2014-03-27 18:32 - 005778096 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzULIB.dll
2018-08-18 21:16 - 2014-02-24 16:49 - 000208896 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\ImageHelper.dll
2018-08-18 21:15 - 2014-04-25 05:03 - 000208896 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\ImageHelper.dll
2018-08-18 21:15 - 2014-04-25 05:03 - 000091648 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Log4cxxWrapper.dll
2018-08-18 21:15 - 2014-04-25 05:03 - 000253952 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\pngio.dll
2018-08-18 21:16 - 2013-11-20 09:10 - 000662016 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\aaHMLib.dll
2018-08-18 21:16 - 2013-07-02 09:40 - 000253952 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\pngio.dll
2018-08-18 21:16 - 2014-04-10 14:23 - 000643584 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNoticeMiniMsg.dll
2018-08-18 21:16 - 2010-09-23 10:51 - 000114688 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\USB BIOS Flashback\AsIdxParser.dll
2018-08-18 21:16 - 2010-02-25 13:01 - 000139264 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\USB BIOS Flashback\Aszip.dll
2018-08-18 21:16 - 2012-01-19 08:39 - 000028672 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\USB BIOS Flashback\PEInfo.dll
2018-08-18 21:15 - 2014-04-25 05:03 - 000827392 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Version\Version.dll
2018-08-18 21:27 - 2014-01-21 19:34 - 000179712 _____ () [File not signed] C:\Program Files (x86)\ASUS\ASUS ROG Connect Plus\RC TweakIt Server\AsusService.dll
2018-08-18 21:27 - 2014-01-21 19:34 - 000470016 _____ () [File not signed] C:\Program Files (x86)\ASUS\ASUS ROG Connect Plus\RC TweakIt Server\IccHelper.dll
2018-08-18 21:18 - 2014-05-08 13:53 - 000253952 _____ () [File not signed] C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\pngio.dll
2018-08-18 21:24 - 2010-08-09 20:23 - 000175616 _____ () [File not signed] C:\Program Files (x86)\ASUS\KeyBot\AsusService.dll
2018-08-18 21:24 - 2012-02-02 20:26 - 000208896 _____ () [File not signed] C:\Program Files (x86)\ASUS\KeyBot\ImageHelper.dll
2018-08-18 21:24 - 2014-01-16 10:20 - 000462848 _____ () [File not signed] C:\Program Files (x86)\ASUS\KeyBot\Macro_HookKey.dll
2018-08-18 21:24 - 2013-09-03 09:49 - 000253952 _____ () [File not signed] C:\Program Files (x86)\ASUS\KeyBot\pngio.dll
2018-08-18 21:15 - 2014-04-29 10:17 - 000053248 ____R () [File not signed] C:\Program Files (x86)\ASUS\VGA COM\1.00.18\Exeio.dll
2018-08-18 21:15 - 2014-04-29 10:17 - 000278528 ____R () [File not signed] C:\Program Files (x86)\ASUS\VGA COM\1.00.18\Vender.dll
2014-06-12 14:46 - 2014-06-12 14:46 - 000134656 _____ () [File not signed] C:\Program Files\ASUS\HomeCloud\ServerConsole\ASUSWSHomeCloudAPI.dll
2014-03-11 02:51 - 2014-03-11 02:51 - 000065024 _____ () [File not signed] C:\Program Files\ASUS\HomeCloud\ServerConsole\AsWoWDLL.dll
2014-05-09 09:35 - 2014-05-09 09:35 - 000012800 _____ () [File not signed] C:\Program Files\ASUS\HomeCloud\ServerConsole\CWoWFuncInterface.dll
2014-05-27 11:09 - 2014-05-27 11:09 - 000018432 _____ () [File not signed] C:\Program Files\ASUS\HomeCloud\ServerConsole\IntelRemoteWakeAPI.dll
2018-08-18 21:15 - 2014-04-25 05:03 - 002109952 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\log4cxx.dll
2018-08-18 21:15 - 2014-04-24 23:03 - 000108544 ____R (ASUS) [File not signed] C:\Program Files (x86)\ASUS\AAHM\1.00.22\ASACPI.DLL
2018-08-18 21:15 - 2014-04-25 05:03 - 000108544 _____ (ASUS) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\ASACPI.DLL
2018-08-18 21:16 - 2014-05-25 22:15 - 000108544 _____ (ASUS) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\asacpi.dll
2018-08-18 21:16 - 2014-04-29 10:17 - 000108544 ____R (ASUS) [File not signed] C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.07\AsAcpi.dll
2018-08-18 20:51 - 2020-02-09 16:08 - 000040232 _____ (ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AXSP\1.02.00\PEbiosinterface32.dll
2018-08-18 21:15 - 2014-04-24 23:03 - 000677376 ____R (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AAHM\1.00.22\asacpiEx.dll
2018-08-18 21:15 - 2014-04-25 05:03 - 000676864 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\asacpiEx.dll
2018-08-18 21:15 - 2014-04-25 05:03 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AsMultiLang.dll
2018-08-18 21:16 - 2014-05-25 22:15 - 000676864 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\asacpiex.dll
2018-08-18 21:16 - 2014-05-25 22:15 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\AsMultiLang.dll
2018-08-18 21:16 - 2014-05-25 22:15 - 000676864 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\asacpiex.dll
2018-08-18 21:16 - 2013-11-20 09:10 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\AsMultiLang.dll
2018-08-18 21:16 - 2014-04-30 12:29 - 001325568 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotice.dll
2018-08-18 21:16 - 2013-08-29 14:30 - 001070080 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\System Information\SystemInfo.dll
2018-08-18 21:16 - 2010-03-08 16:11 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\AsMultiLang.dll
2018-08-18 21:16 - 2014-03-10 17:03 - 000897536 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\Express.dll
2018-08-18 21:16 - 2010-03-08 16:11 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\USB BIOS Flashback\AsMultiLang.dll
2018-08-18 21:16 - 2013-09-05 15:18 - 001004032 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\USB BIOS Flashback\BIOSFLK.dll
2018-08-18 21:16 - 2010-09-08 20:25 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\USB Charger+\AsMultiLang.dll
2018-08-18 21:16 - 2013-04-17 10:39 - 000883200 _____ (ASUSTek Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\USB Charger+\Charger.dll
2018-08-18 21:27 - 2014-01-21 19:34 - 000211456 _____ (ASUSTek Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\ASUS ROG Connect Plus\RC TweakIt Server\ACPIWMI.dll
2018-08-18 21:27 - 2014-01-21 19:34 - 000677376 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\ASUS ROG Connect Plus\RC TweakIt Server\asacpiex.dll
2018-08-18 21:16 - 2014-04-29 10:17 - 000676864 ____R (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.07\asacpiEx.dll
2018-08-18 21:18 - 2014-05-08 13:54 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\AsMultiLang.dll
2018-08-18 21:24 - 2013-09-03 09:49 - 000677888 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\KeyBot\asacpiex.dll
2018-08-18 21:24 - 2013-11-20 09:10 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\KeyBot\AsMultiLang.dll
2018-08-18 21:15 - 2014-04-29 10:17 - 000102400 ____R (ASUSTek Computer Inc.,) [File not signed] C:\Program Files (x86)\ASUS\VGA COM\1.00.18\EIO.DLL
2014-05-28 09:10 - 2014-05-28 09:10 - 000526336 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2014-05-28 09:10 - 2014-05-28 09:10 - 000296960 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
2018-08-18 21:18 - 2014-05-08 13:54 - 000240640 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMS\DirectoryWatcher.dll
2018-08-18 21:15 - 2014-05-25 16:19 - 000201728 ____R (TODO: <Company name>) [File not signed] C:\Program Files (x86)\ASUS\VGA COM\1.00.18\AsusGpuTweak.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [476]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-247741225-677518453-3872238061-1001\Software\Classes\regfile: regedit.exe "%1" <==== ATTENTION

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-08-18 18:23 - 2018-08-18 18:22 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\Microsoft SQL Server\100\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\100\DTS\Binn\;C:\Program Files (x86)\Java\jre7\bin;;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-247741225-677518453-3872238061-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Jakub Pokora\Music\♚ℑℵℜ♚\KHEP 2020 DAYNE X JXK\KHEP cover.png
DNS Servers: 10.0.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "HomeClude Drive"
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\StartupApproved\Run: => "utweb"
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000000"
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\StartupApproved\Run: => "Spotify"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{343DF98D-B432-4BF5-90F4-CBD6C5E87C58}F:\hrdina\steamapps\common\hunt showdown\bin\win_x64\huntgame.exe] => (Allow) F:\hrdina\steamapps\common\hunt showdown\bin\win_x64\huntgame.exe (Crytek GmbH -> Crytek GmbH)
FirewallRules: [TCP Query User{69E1AE41-45FB-4D4C-AB85-28AEB2ECC2B3}F:\hrdina\steamapps\common\hunt showdown\bin\win_x64\huntgame.exe] => (Allow) F:\hrdina\steamapps\common\hunt showdown\bin\win_x64\huntgame.exe (Crytek GmbH -> Crytek GmbH)
FirewallRules: [{2FD9CC82-510B-40BB-B917-3C91436C1AF8}] => (Allow) F:\HRDINA\steamapps\common\Hunt Showdown\hunt.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{5D581DE1-F342-4343-AB6B-4EA63AFBF9DA}] => (Allow) F:\HRDINA\steamapps\common\Hunt Showdown\hunt.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [UDP Query User{17D73491-2836-4D5D-97DE-C2E406D16971}F:\hrdina\steamapps\common\hunt showdown (test server)\bin\win_x64\huntgame.exe] => (Allow) F:\hrdina\steamapps\common\hunt showdown (test server)\bin\win_x64\huntgame.exe (Crytek GmbH -> Crytek GmbH)
FirewallRules: [TCP Query User{94D9E0D5-EE8E-4D8B-88A9-6BC3F0801F39}F:\hrdina\steamapps\common\hunt showdown (test server)\bin\win_x64\huntgame.exe] => (Allow) F:\hrdina\steamapps\common\hunt showdown (test server)\bin\win_x64\huntgame.exe (Crytek GmbH -> Crytek GmbH)
FirewallRules: [{50B57D85-9B99-43AF-944F-10F9AF87253D}] => (Allow) F:\HRDINA\steamapps\common\Hunt Showdown (Test Server)\hunt.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{17D5A364-D070-4AA4-9F1B-89F7E84D176C}] => (Allow) F:\HRDINA\steamapps\common\Hunt Showdown (Test Server)\hunt.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [UDP Query User{03248493-8C9A-44D5-AA1E-2FE61CC8C3F3}C:\users\jakub pokora\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\users\jakub pokora\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe
FirewallRules: [TCP Query User{8A540687-F37F-489B-8255-A8726C292D7B}C:\users\jakub pokora\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\users\jakub pokora\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe
FirewallRules: [{8714A3C3-227C-4712-A07B-2AB5802BE568}] => (Allow) C:\Windows\system32\ftp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{58B482AB-E95D-4A9B-AF6B-D52E6E2FE49B}] => (Allow) C:\Windows\system32\ftp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{63BD8CAF-3C3A-4BEE-84D0-9D77564727CE}F:\valofeeu\combatarms\engine.exe] => (Allow) F:\valofeeu\combatarms\engine.exe (VALOFE) [File not signed]
FirewallRules: [TCP Query User{37709B15-BFF9-4BE6-B4D7-8459909C45DE}F:\valofeeu\combatarms\engine.exe] => (Allow) F:\valofeeu\combatarms\engine.exe (VALOFE) [File not signed]
FirewallRules: [UDP Query User{B16A179A-FB53-4987-87DC-457121A86E7A}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe
FirewallRules: [TCP Query User{A023A8A3-7ADA-4BC3-ABD7-74E42234335E}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe
FirewallRules: [UDP Query User{69022D45-636E-4E8F-9281-30AE6210255F}C:\users\jakub pokora\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\jakub pokora\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{BF881335-E581-417C-B6B6-32D715E2BF13}C:\users\jakub pokora\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\jakub pokora\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E85EE4FC-4C98-4654-AA3B-57A6C3C7F693}] => (Allow) F:\Assassin's Creed Unity\ACU.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{E8C12A55-1763-4C16-9F2E-1DF2EB24B2FF}] => (Allow) F:\Assassin's Creed Unity\ACU.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [UDP Query User{FA125ED4-036C-4B91-9CE2-45D7FF40BA36}E:\audacity\flko\fl.exe] => (Block) E:\audacity\flko\fl.exe (Image Line -> Image-Line) [File not signed]
FirewallRules: [TCP Query User{55AB7DEE-2989-4028-B742-C2EAC3DEB950}E:\audacity\flko\fl.exe] => (Block) E:\audacity\flko\fl.exe (Image Line -> Image-Line) [File not signed]
FirewallRules: [UDP Query User{1C860761-5BC4-4F3B-918D-73FEC89B1920}C:\program files\adobe\adobe premiere pro cc 2019\teamprojectslocalhub.exe] => (Block) C:\program files\adobe\adobe premiere pro cc 2019\teamprojectslocalhub.exe (Adobe Systems Incorporated -> Adobe)
FirewallRules: [TCP Query User{A9EB738B-8318-45C2-A0ED-33A38FE45251}C:\program files\adobe\adobe premiere pro cc 2019\teamprojectslocalhub.exe] => (Block) C:\program files\adobe\adobe premiere pro cc 2019\teamprojectslocalhub.exe (Adobe Systems Incorporated -> Adobe)
FirewallRules: [{06421D35-537E-4A67-B439-115D8022A259}] => (Allow) E:\Tom Clancy's Rainbow Six Siege\RainbowSix.exe No File
FirewallRules: [{5D62BDF1-014A-4ADE-8179-44BD56166408}] => (Allow) E:\Tom Clancy's Rainbow Six Siege\RainbowSix.exe No File
FirewallRules: [{58ABBD34-D7DE-4EB2-9D44-E122A9836BD7}] => (Allow) E:\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe No File
FirewallRules: [{72B6504E-8E85-4294-BF40-7FF50E1D6187}] => (Allow) E:\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe No File
FirewallRules: [{1C217C1B-4407-477A-A727-780274DA2B66}] => (Allow) E:\csklo\steamapps\common\wallpaper_engine\launcher.exe (Kristjan Skutta -> )
FirewallRules: [{027B0B65-500A-407F-BEF4-D28B638EF314}] => (Allow) E:\csklo\steamapps\common\wallpaper_engine\launcher.exe (Kristjan Skutta -> )
FirewallRules: [{DE9CF19D-79EE-4CCA-809C-D3072C7CC986}] => (Allow) E:\csklo\steamapps\common\Brawlhalla\Brawlhalla.exe () [File not signed]
FirewallRules: [{6030A5C5-2B05-4093-AD3A-9BC7FFD5BC7A}] => (Allow) E:\csklo\steamapps\common\Brawlhalla\Brawlhalla.exe () [File not signed]
FirewallRules: [UDP Query User{57073F4D-0FA8-4DBE-BCAD-55BE54585B5C}C:\users\jakub pokora\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jakub pokora\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{D04C1EB1-0FFD-4057-8D37-1E231E048E0F}C:\users\jakub pokora\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jakub pokora\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7712C1B8-46AA-401C-91DB-814396FB9F24}] => (Allow) C:\Windows\system32\ftp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{71B7CC52-84E7-4233-A744-1A91A737C5B2}] => (Allow) C:\ProgramData\VALOFEEU\NGM\NGM.exe (valofe Co.,Ltd. -> Nexon)
FirewallRules: [{2DE6E688-8D90-493F-BB08-2482C6A03E63}] => (Allow) C:\ProgramData\VALOFEEU\NGM\NGM.exe (valofe Co.,Ltd. -> Nexon)
FirewallRules: [{F5AD45EB-81AD-472D-AD29-A7EBADBCF80D}] => (Allow) C:\VALOFEEU\CombatArms\NMService.exe No File
FirewallRules: [{A0D0354F-99D7-482C-8DD6-FBA9CB6A792E}] => (Allow) C:\VALOFEEU\CombatArms\NMService.exe No File
FirewallRules: [{1D6B488F-A5A2-40F5-8031-58E564F858F9}] => (Allow) F:\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{2C461514-A163-4C1E-87EB-3D91878F8E53}] => (Allow) F:\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{16BF793F-2683-489C-9B67-05EC08F2568D}] => (Allow) C:\Windows\system32\ftp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{01308A4B-9872-4AE4-8487-C30CE8DEE567}] => (Allow) E:\Steep\steep.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{090C439F-14EE-47D3-A4AE-7B3B37B97013}] => (Allow) E:\csklo\steamapps\common\Spore\SporeBin\SporeApp.exe (Maxis, a division of Electronic Arts Inc.) [File not signed]
FirewallRules: [{7033AC4B-80CD-438D-8CFD-CA2B149046EC}] => (Allow) E:\csklo\steamapps\common\Spore\SporeBin\SporeApp.exe (Maxis, a division of Electronic Arts Inc.) [File not signed]
FirewallRules: [UDP Query User{DF905106-A0FE-42BB-98A3-A4B9F7260858}E:\aputil.exe] => (Allow) E:\aputil.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{AB49F72B-A3D4-4050-B8DA-78434F12C657}E:\aputil.exe] => (Allow) E:\aputil.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{29055110-57EB-4319-99B2-DEC2C484783B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{43B56B19-5A14-4104-8269-070F02D61B79}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2BD2806B-4E01-470A-BBFB-53939B199CC5}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{176FF690-0110-419F-8BA1-8966B6041BDB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{28E0BE25-2414-448C-AC5A-B11FC5A78DD3}] => (Allow) E:\APAgent.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [UDP Query User{0B93CF6C-CB10-448B-BF0B-EE97C5D2D222}C:\program files\acoustica mixcraft 7\mixcraft7.exe] => (Allow) C:\program files\acoustica mixcraft 7\mixcraft7.exe No File
FirewallRules: [TCP Query User{AF6652AE-3BE9-46D1-BC6E-D4464CB8E323}C:\program files\acoustica mixcraft 7\mixcraft7.exe] => (Allow) C:\program files\acoustica mixcraft 7\mixcraft7.exe No File
FirewallRules: [UDP Query User{48E544C2-E581-43B7-8D2C-134F7251D37E}C:\hry\metro 2033 - redux\metro.exe] => (Allow) C:\hry\metro 2033 - redux\metro.exe No File
FirewallRules: [TCP Query User{A33D2499-B855-44E3-A602-823A299951E4}C:\hry\metro 2033 - redux\metro.exe] => (Allow) C:\hry\metro 2033 - redux\metro.exe No File
FirewallRules: [UDP Query User{9CFA0588-44E3-43A1-9BB6-1A321873BBFA}E:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) E:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{CB25C3ED-D2CA-4BD4-8D4B-E854428CA791}E:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) E:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{B9B7279D-930F-42A4-9D2A-F2EC164FCB50}E:\audacity\flko\fl64.exe] => (Allow) E:\audacity\flko\fl64.exe (Image Line -> Image-Line) [File not signed]
FirewallRules: [TCP Query User{3006C165-5A66-4BCA-84B0-7A15FCB3E79D}E:\audacity\flko\fl64.exe] => (Allow) E:\audacity\flko\fl64.exe (Image Line -> Image-Line) [File not signed]
FirewallRules: [{E88C4664-6E78-48D1-AD42-C292A7EC7681}] => (Allow) C:\Windows\system32\ftp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{87A0DB53-064C-4FE7-BDAB-DAC4193CB2B5}C:\users\jakub pokora\appdata\roaming\utorrent web\utweb.exe] => (Block) C:\users\jakub pokora\appdata\roaming\utorrent web\utweb.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{BA9C31DE-DB67-47BD-ACAA-A1FCF8D29F4E}C:\users\jakub pokora\appdata\roaming\utorrent web\utweb.exe] => (Block) C:\users\jakub pokora\appdata\roaming\utorrent web\utweb.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{F2D61C82-8D90-4BBC-898E-04D94E47FA20}] => (Allow) E:\csklo\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{0C66AC95-F179-450F-9D4B-DD4140F20E45}] => (Allow) E:\csklo\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [UDP Query User{C085B97C-F157-4B07-A1ED-25E186CA3BF9}E:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) E:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{F11698E6-3F01-42E4-9B78-BC00C91D53EB}E:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) E:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{2C6EEFAB-48A1-432C-A4E1-33E0D6AB6992}] => (Block) C:\valofeeu\combatarms\engine.exe No File
FirewallRules: [{E67F3F0A-1E66-4293-804E-9F5078AE4B42}] => (Block) C:\valofeeu\combatarms\engine.exe No File
FirewallRules: [UDP Query User{339B1432-694F-48B0-9817-E9C98C17858A}C:\valofeeu\combatarms\engine.exe] => (Allow) C:\valofeeu\combatarms\engine.exe No File
FirewallRules: [TCP Query User{9ED259BC-03EC-4533-B4DE-BC0326E1FEB1}C:\valofeeu\combatarms\engine.exe] => (Allow) C:\valofeeu\combatarms\engine.exe No File
FirewallRules: [{51CBF991-5AE7-4187-B82C-7A007EE255B0}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{33DC39E9-6DF4-436F-898C-CDECBF1BB121}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{CD5DB1F1-FF31-4C0B-85B5-695511166615}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{E8C02E08-9ACB-41A6-93B2-2D9C4EBBB4C9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{3DFD3F11-291C-4ADA-879C-380FEC41B52C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{7B9959B8-4907-43A6-B34F-8B676D2CB745}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{77E5D5F9-2B6F-48DD-A364-C94B37560CBE}] => (Allow) C:\VALOFEEU\CombatArms\NMService.exe No File
FirewallRules: [{2DD4C774-3BEB-4155-914E-B776A859F23C}] => (Allow) C:\VALOFEEU\CombatArms\NMService.exe No File
FirewallRules: [{48C0D39C-4489-44F9-B8C3-244917BFF767}] => (Allow) C:\ProgramData\VALOFEEU\NGM\NGM.exe (valofe Co.,Ltd. -> Nexon)
FirewallRules: [{403E5176-A983-4DEA-944E-F3D05AB26AB8}] => (Allow) C:\ProgramData\VALOFEEU\NGM\NGM.exe (valofe Co.,Ltd. -> Nexon)
FirewallRules: [{555C24B9-F1A5-4E73-85CE-6E49A4CE2724}] => (Block) C:\program files (x86)\java\jre1.8.0_181\bin\javaw.exe
FirewallRules: [{BE5BD3B4-82B5-4F03-BD2C-0C9A49766E9F}] => (Block) C:\program files (x86)\java\jre1.8.0_181\bin\javaw.exe
FirewallRules: [UDP Query User{E73DA36C-75C1-4459-86B8-6099DC82F758}C:\program files (x86)\java\jre1.8.0_181\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_181\bin\javaw.exe
FirewallRules: [TCP Query User{3B581F21-0F2E-4022-AA85-867B44509183}C:\program files (x86)\java\jre1.8.0_181\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_181\bin\javaw.exe
FirewallRules: [{8E39E543-09BB-43E0-92BA-9689C1FFF302}] => (Block) C:\users\jakub pokora\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{666DBF39-F76A-43BE-94CF-2769A914ED47}] => (Block) C:\users\jakub pokora\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{A06D7414-2D46-4EEC-AD28-0DFE4CB4DC35}C:\users\jakub pokora\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\jakub pokora\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{FC4B76C1-1E2A-450A-B784-9E698404F8DE}C:\users\jakub pokora\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\jakub pokora\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{D0509248-32E8-4635-8270-416791B8EB87}] => (Allow) C:\Users\Jakub Pokora\AppData\Roaming\uTorrent Web\utweb.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{35BE5633-E0EF-44D3-937C-535BEB864AC5}] => (Allow) C:\Users\Jakub Pokora\AppData\Roaming\uTorrent Web\utweb.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{2EDE5A07-B8B7-4807-8B3E-A0C95F0D25C7}] => (Allow) C:\Windows\system32\ftp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{A0633858-A3FB-48CC-87C3-E8D7C94A6585}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{233321AF-CE8D-4341-AAF4-E4326A370C0B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{B11C5DA4-291C-43D3-925D-7E2FCDBF9969}E:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) E:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{9ED70933-3EB2-411D-B892-259251B1344C}E:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) E:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{875A0BDE-0809-40C2-92A1-4BB267624997}E:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) E:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{B47A53B5-5DB0-4522-9D9B-A6FFD993B923}E:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) E:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{0F81D133-7627-4680-90A3-D3049E4E653C}E:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) E:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{394FAC0D-F8D7-42FC-AB15-C9CC0C899746}E:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) E:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{3F31A16A-ACDC-4BE4-9EB7-BFC3BB0DD682}] => (Allow) C:\Windows\SysWOW64\ftp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{5CD6004B-B3AF-492C-A5C8-809A108CC1AE}] => (Allow) C:\Windows\SysWOW64\ftp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{79CC904C-165F-47FE-8CE1-04534AAFB3B4}] => (Allow) C:\Windows\system32\ftp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{C6F4FB3E-ADB7-45A3-9A02-27367837CB7B}] => (Allow) C:\Windows\system32\ftp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{3E83BFFC-2635-48EB-B623-FDB5B95EC745}] => (Allow) C:\Program Files\ASUS\HomeCloud\ServerConsole\ASUS HomeCloud.exe (ASUS Cloud Corporation -> )
FirewallRules: [{DAFCE239-249B-4002-889B-E6A9E54C878D}] => (Allow) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.SQLEXPRESS\MSSQL\Binn\sqlservr.exe No File
FirewallRules: [{2D192588-8E6C-4C49-B86F-D97593587D12}] => (Allow) C:\Program Files\ASUS\HomeCloud\Tomcat\Tomcat_OmniStore\bin\tomcat6.exe (Apache Software Foundation) [File not signed]
FirewallRules: [{501415FF-E500-4243-8C76-A3F5666F2358}] => (Allow) C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\MediaStreamer.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
FirewallRules: [{D0E9FFB3-AC6B-4C14-AC24-F056EEBA7A32}] => (Allow) C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\MediaStreamer.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
FirewallRules: [{DF6B9670-27DC-4648-9C22-F4DC3C8A8FAD}] => (Allow) C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\AMSRelayHelpAgent.exe () [File not signed]
FirewallRules: [{8B576FB6-2A9B-45E3-B3DB-6F7E8A3F63B3}] => (Allow) C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\AMSRelayHelpAgent.exe () [File not signed]
FirewallRules: [{5EBFE4ED-342B-4DE8-9DED-EA341455E1FC}] => (Allow) C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMS\AORelayDMS.exe () [File not signed]
FirewallRules: [{0647A1DA-4574-4E84-B2F4-98E4E04522DB}] => (Allow) C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMS\AORelayDMS.exe () [File not signed]
FirewallRules: [{B6038252-78D5-4886-A00E-C729C5445A2C}] => (Allow) C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMS\AODMS.exe () [File not signed]
FirewallRules: [{A786A44F-7F6A-4BD4-BFEF-2887EA6F40EB}] => (Allow) C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMS\AODMS.exe () [File not signed]
FirewallRules: [{C923D5A6-32B9-4847-B4F1-EBD60A5357EB}] => (Allow) C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMR\AODMR.exe () [File not signed]
FirewallRules: [{E432ACDF-944A-47DB-890C-F2F4810A52B7}] => (Allow) C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMR\AODMR.exe () [File not signed]
FirewallRules: [{A439D98F-5FD2-444D-8D41-1432E289679B}] => (Allow) C:\WINDOWS\system32\ftp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{63D28170-648E-472B-AA09-30C2AA707D1F}C:\program files (x86)\vietcong\vcded.exe] => (Allow) C:\program files (x86)\vietcong\vcded.exe () [File not signed]
FirewallRules: [UDP Query User{341374CA-40F7-4BA9-BAF5-2685F9164315}C:\program files (x86)\vietcong\vcded.exe] => (Allow) C:\program files (x86)\vietcong\vcded.exe () [File not signed]
FirewallRules: [TCP Query User{F5B66F6A-72AF-4D4B-ADB4-6703ABE9B383}C:\windows\syswow64\dpnsvr.exe] => (Allow) C:\windows\syswow64\dpnsvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{6E8F7488-0CAD-4255-B840-8CEF96F28CFE}C:\windows\syswow64\dpnsvr.exe] => (Allow) C:\windows\syswow64\dpnsvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{1065B0C0-7E76-4207-8DD0-35C605AF29D1}C:\program files (x86)\vietcong\vietcong.exe] => (Block) C:\program files (x86)\vietcong\vietcong.exe () [File not signed]
FirewallRules: [UDP Query User{3AE08624-F04E-4049-A4B5-5EFCBEBEFC63}C:\program files (x86)\vietcong\vietcong.exe] => (Block) C:\program files (x86)\vietcong\vietcong.exe () [File not signed]
FirewallRules: [{E43A0A26-31BD-47E5-8127-88C1009DE30D}] => (Allow) F:\HRDINA\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{0B3A6AFF-6E57-4394-B495-2CAE014F127D}] => (Allow) F:\HRDINA\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{9D97DDFB-88DD-42E8-89C3-CA01CC8BCB84}] => (Allow) C:\WINDOWS\system32\ftp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{9EE16258-D253-43F1-AAE2-C38C358F7CCB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{66F3C21D-2C17-490F-B36A-AA5E1E9FC7EB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4C8A426F-0AEE-401A-AF45-A06EE76CB8EE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A704A784-D99C-45CE-8BCC-834AAB1FEC95}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{3AB121E9-7304-4742-BF21-C886A3EE0B27}] => (Allow) E:\csklo\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{4F24A399-8690-4B08-9398-3411B9B38579}] => (Allow) E:\csklo\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{C843CB15-EC39-45FF-8989-1A6EFC984121}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{84069651-6D70-44C3-A230-45F51E3D01FB}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{52F9CEF2-3C42-4FA9-99F0-72D263CC6586}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{8DE2B894-EA8A-4166-9060-C0602BF957E4}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{75E3D7D9-5D5D-409C-99A2-C42A1037BD9C}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{68971603-3E01-40E9-866E-85138E96CF6B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{FD296E55-0159-434B-8D68-7C019D970E10}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F86B5525-11DA-4FBE-A85C-74CBAC59BFEA}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6C51B97F-FC1B-48D8-B4FA-4ADBD97E2E53}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6DB359F2-2EAA-4DDA-850D-A69FAA0EE18C}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
FirewallRules: [{231B19F7-FBEC-4F59-B626-23C200758EAA}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)

==================== Restore Points =========================

02-02-2020 17:41:29 Naplánovaný kontrolní bod
08-02-2020 12:57:12 Odstraněno Call of Juarez

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (02/09/2020 08:03:55 PM) (Source: nssm) (EventID: 1010) (User: )
Description: Failed to start service WMS. Program C:\Windows\wmu3\wlanext.exe couldn't be launched.
CreateProcess() failed:
Systém nemůže nalézt uvedený soubor.

Error: (02/09/2020 08:02:55 PM) (Source: nssm) (EventID: 1010) (User: )
Description: Failed to start service WMS. Program C:\Windows\wmu3\wlanext.exe couldn't be launched.
CreateProcess() failed:
Systém nemůže nalézt uvedený soubor.

Error: (02/09/2020 08:01:55 PM) (Source: nssm) (EventID: 1010) (User: )
Description: Failed to start service WMS. Program C:\Windows\wmu3\wlanext.exe couldn't be launched.
CreateProcess() failed:
Systém nemůže nalézt uvedený soubor.

Error: (02/09/2020 08:00:59 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5704,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (02/09/2020 08:00:55 PM) (Source: nssm) (EventID: 1010) (User: )
Description: Failed to start service WMS. Program C:\Windows\wmu3\wlanext.exe couldn't be launched.
CreateProcess() failed:
Systém nemůže nalézt uvedený soubor.

Error: (02/09/2020 07:59:55 PM) (Source: nssm) (EventID: 1010) (User: )
Description: Failed to start service WMS. Program C:\Windows\wmu3\wlanext.exe couldn't be launched.
CreateProcess() failed:
Systém nemůže nalézt uvedený soubor.

Error: (02/09/2020 07:58:55 PM) (Source: nssm) (EventID: 1010) (User: )
Description: Failed to start service WMS. Program C:\Windows\wmu3\wlanext.exe couldn't be launched.
CreateProcess() failed:
Systém nemůže nalézt uvedený soubor.

Error: (02/09/2020 07:57:55 PM) (Source: nssm) (EventID: 1010) (User: )
Description: Failed to start service WMS. Program C:\Windows\wmu3\wlanext.exe couldn't be launched.
CreateProcess() failed:
Systém nemůže nalézt uvedený soubor.


System errors:
=============
Error: (02/09/2020 08:03:55 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba WMIs byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (02/09/2020 08:03:55 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba WMIs skončila s následující chybou specifickou pro službu:
Systém nemůže nalézt uvedenou cestu.

Error: (02/09/2020 08:02:55 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba WMIs byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (02/09/2020 08:02:55 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba WMIs skončila s následující chybou specifickou pro službu:
Systém nemůže nalézt uvedenou cestu.

Error: (02/09/2020 08:01:55 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba WMIs byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (02/09/2020 08:01:55 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba WMIs skončila s následující chybou specifickou pro službu:
Systém nemůže nalézt uvedenou cestu.

Error: (02/09/2020 08:00:55 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba WMIs byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (02/09/2020 08:00:55 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba WMIs skončila s následující chybou specifickou pro službu:
Systém nemůže nalézt uvedenou cestu.


Windows Defender:
===================================
Date: 2020-02-06 22:59:34.502
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {11C22D7F-907E-42D6-86D9-FC39CD75B92F}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-02-03 23:50:59.352
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {29C78F03-C5E5-4F81-97C5-CDCC3D739F18}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-01-31 22:50:33.714
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Wacatac.D!ml
ID: 2147749373
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\Jakub Pokora\Downloads\aL50SO.exe; webfile:_C:\Users\Jakub Pokora\Downloads\aL50SO.exe|https://novihacks.com/api/get-build|pid ... 1906821919
Původ detekce: Internet
Typ detekce: FastPath
Zdroj detekce: Soubory ke stažení a přílohy
Uživatel: DESKTOP-PATU4U0\Jakub Pokora
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.309.105.0, AS: 1.309.105.0, NIS: 1.309.105.0
Verze modulu: AM: 1.1.16700.3, NIS: 1.1.16700.3

Date: 2020-01-31 22:50:11.794
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Wacatac.D!ml
ID: 2147749373
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\Jakub Pokora\Downloads\aL50SO.exe; webfile:_C:\Users\Jakub Pokora\Downloads\aL50SO.exe|https://novihacks.com/api/get-build|pid ... 1906821919
Původ detekce: Internet
Typ detekce: FastPath
Zdroj detekce: Soubory ke stažení a přílohy
Uživatel: DESKTOP-PATU4U0\Jakub Pokora
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.309.105.0, AS: 1.309.105.0, NIS: 1.309.105.0
Verze modulu: AM: 1.1.16700.3, NIS: 1.1.16700.3

Date: 2020-01-29 18:43:18.064
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {266896FD-C2FE-433C-8A21-00D2EE3E5F2A}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-01-28 19:19:41.966
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.307.3109.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16600.7
Kód chyby: 0x80072ee2
Popis chyby: Operace nebyla v požadované době dokončena.

Date: 2020-01-17 16:38:48.011
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.307.2432.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16600.7
Kód chyby: 0x80240016
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2020-01-14 18:20:20.834
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.307.2269.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16600.7
Kód chyby: 0x80072ee2
Popis chyby: Operace nebyla v požadované době dokončena.

CodeIntegrity:
===================================

Date: 2020-02-09 16:10:53.499
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-02-09 16:10:53.490
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-02-09 16:09:12.887
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-02-09 15:54:12.498
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-02-09 15:54:10.856
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Microsoft signing level requirements.

Date: 2020-02-09 15:54:10.850
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Microsoft signing level requirements.

Date: 2020-02-09 15:54:10.843
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Microsoft signing level requirements.

Date: 2020-02-09 15:44:00.456
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. 3003 10/28/2015
Motherboard: ASUSTeK COMPUTER INC. MAXIMUS VII RANGER
Processor: Intel(R) Core(TM) i5-4690K CPU @ 3.50GHz
Percentage of memory in use: 82%
Total physical RAM: 4038.94 MB
Available physical RAM: 709.31 MB
Total Virtual: 11718.94 MB
Available Virtual: 4308.48 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:237.52 GB) (Free:93.4 GB) NTFS
Drive d: (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.08 GB) NTFS
Drive e: () (Fixed) (Total:298.09 GB) (Free:52.09 GB) NTFS
Drive f: () (Fixed) (Total:465.22 GB) (Free:117.26 GB) NTFS

\\?\Volume{128d971b-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS
\\?\Volume{128d971b-0000-0000-0000-60803b000000}\ () (Fixed) (Total:0.47 GB) (Free:0.04 GB) NTFS
\\?\Volume{fa71a625-0000-0000-0000-905474000000}\ () (Fixed) (Total:0.44 GB) (Free:0.09 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 238.5 GB) (Disk ID: 128D971B)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=237.5 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=478 MB) - (Type=27)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: FA71A625)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: EDE4EDE4)
Partition 1: (Not Active) - (Size=298.1 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Re: Zasekaný pc

Napsal: 09 úno 2020 20:54
od Rudy
Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Re: Zasekaný pc

Napsal: 09 úno 2020 21:09
od JakubPokora
Děkuji za pomoc zde posílám zobrazený log:

# -------------------------------
# Malwarebytes AdwCleaner 8.0.2.0
# -------------------------------
# Build: 01-27-2020
# Database: 2020-01-24.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 02-09-2020
# Duration: 00:00:01
# OS: Windows 10 Pro
# Cleaned: 7
# Failed: 2


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TweakBit
Deleted C:\Windows\System32\Tasks\TweakBit
Not Deleted C:\Program Files (x86)\TweakBit
Not Deleted C:\ProgramData\TweakBit

***** [ Files ] *****

Deleted C:\Users\Jakub Pokora\Desktop\TweakBit PCRepairKit.lnk

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{382BD2A8-3799-4DED-9BC7-FE0F20A0128C}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\TweakBit
Deleted HKLM\Software\Wow6432Node\TWEAKBIT
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{5AEA8CFE-B238-4D0A-9362-D55F38ECB795}_is1

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [2180 octets] - [08/02/2020 13:50:26]
AdwCleaner[S01].txt - [2999 octets] - [09/02/2020 21:05:56]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########

Re: Zasekaný pc

Napsal: 09 úno 2020 21:51
od Rudy
Dejte nové logy FRST+Addition.

Re: Zasekaný pc

Napsal: 09 úno 2020 21:58
od JakubPokora
FRST.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-02-2020 02
Ran by Jakub Pokora (administrator) on DESKTOP-PATU4U0 (ASUS All Series) (09-02-2020 21:54:43)
Running from C:\Users\Jakub Pokora\Downloads
Loaded Profiles: Jakub Pokora (Available Profiles: Jakub Pokora)
Platform: Windows 10 Pro Version 1903 18362.592 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\ASUSWSAgent.exe
() [File not signed] C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMR\AODMR.exe
() [File not signed] C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMS\AODMS.exe
() [File not signed] C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\ShareEdit.exe
() [File not signed] C:\Program Files (x86)\ASUS\WebStorage\2.0.1.213\AsusWSWinService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) E:\APAgent.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(ASUS Cloud Corporation -> ) C:\Program Files\ASUS\HomeCloud\ServerConsole\ASUS HomeCloud.exe
(ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite III\AsusMiniBar.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNoticeMonitor.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotify_PCCtrl.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ASUS ROG Connect Plus\RC TweakIt Server\AsBCLK.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\KeyBot\KeyBot.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr64.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.07\AsusFanControlService.exe
(ASUSTeK Computer Inc. -> ASUSTeK) C:\Program Files (x86)\ASUS\ROG Game First III\AsusGameFirstService.exe
(Discord Inc. -> Discord Inc.) C:\Users\Jakub Pokora\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Jakub Pokora\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Jakub Pokora\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Jakub Pokora\AppData\Local\Discord\app-0.0.305\Discord.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Focusrite Audio Engineering, Ltd.) [File not signed] C:\Program Files\FocusriteUSB\Focusrite Notifier.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.442\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.442\GoogleCrashHandler64.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(Kristjan Skutta -> ) E:\csklo\steamapps\common\wallpaper_engine\wallpaper32.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.ASUSHOMECLOUD\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.37.29002.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.37.29002.0_x64__8wekyb3d8bbwe\GameBarFT.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.37.29002.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20011.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\GameBarPresenceWriter.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.7-0\NisSrv.exe
(Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareAccessibilityHelper.exe
(Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHostIntegrationAgent.exe
(Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\NTK\NTKDaemon.exe
(Nero AG -> Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Users\Jakub Pokora\AppData\Roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Users\Jakub Pokora\AppData\Roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\WTouch\WTouchService.exe
(Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\WTouch\WTouchUser.exe
(Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Windows\System32\Pen_Tablet.exe
(Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Windows\System32\Pen_Tablet.exe
(Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Windows\System32\WTablet\Pen_TabletUser.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7634288 2014-06-13] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [Focusrite Notifier] => C:\Program Files\FocusriteUSB\Focusrite Notifier.exe [3949568 2019-06-20] (Focusrite Audio Engineering, Ltd.) [File not signed]
HKLM\...\Run: [AdobeGCInvoker-1.0] => "C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe"
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [183088 2019-11-29] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [ASUS Media Streamer ShareEdit] => C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\ShareEdit.exe [1243136 2014-05-08] () [File not signed]
HKLM-x32\...\Run: [ASUS Media Streamer DMS] => C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMS\AODMS.exe [1243136 2014-05-08] () [File not signed]
HKLM-x32\...\Run: [ASUS Media Streamer WSAgent] => C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\ASUSWSAgent.exe [73216 2014-05-22] () [File not signed]
HKLM-x32\...\Run: [HomeClude Drive] => C:\Program Files (x86)\ASUS\LocalDrive\LocalDrive.exe [2309440 2014-06-13] (ASUS Cloud Corporation -> ASUS Cloud Corporation)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.0.1.213\ASUSWSLoader.exe [56640 2013-06-26] (ASUS Cloud Corporation -> )
HKLM-x32\...\Run: [AirPort Base Station Agent] => E:\APAgent.exe [771360 2009-11-11] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2410968 2019-01-22] (Adobe Systems Incorporated -> Adobe Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\Run: [EpicGamesLauncher] => E:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [36060048 2020-01-04] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\Run: [Discord] => C:\Users\Jakub Pokora\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\Run: [utweb] => C:\Users\Jakub Pokora\AppData\Roaming\uTorrent Web\utweb.exe [5456560 2018-09-06] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3311568 2020-01-18] (Valve -> Valve Corporation)
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIJBE.EXE [283232 2012-02-29] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\Run: [WallpaperEngine] => E:\csklo\steamapps\common\wallpaper_engine\wallpaper32.exe [2579448 2019-12-21] (Kristjan Skutta -> )
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\Run: [Spotify] => C:\Users\Jakub Pokora\AppData\Roaming\Spotify\Spotify.exe [22202272 2020-01-26] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.130\Installer\chrmstp.exe [2020-01-22] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NIHardwareAccessibilityHelper.exe.lnk [2019-09-28]
ShortcutTarget: NIHardwareAccessibilityHelper.exe.lnk -> C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareAccessibilityHelper.exe (Native Instruments GmbH -> Native Instruments GmbH)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NTKDaemon.lnk [2019-09-28]
ShortcutTarget: NTKDaemon.lnk -> C:\Program Files\Common Files\Native Instruments\NTK\NTKDaemon.exe (Native Instruments GmbH -> Native Instruments GmbH)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0531ABB9-7CEE-47A2-AA30-AEAF77D9D65A} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {06F20AAB-C882-4B4A-B25F-66F7AF0AC810} - System32\Tasks\ASUS\RamDisk => C:\Program Files (x86)\ASUS\ROG RAMDisk\loadImage.exe [1149752 2013-12-23] (ASUSTeK Computer Inc. -> )
Task: {0737E7CB-FCF5-44BF-B299-722F77129BE9} - System32\Tasks\ASUS\USB 3.0 Boost Service => C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr.exe [238392 2013-07-24] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {17500869-863B-4754-977C-25C0B8ACA776} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302880 2019-12-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3366F343-2C7A-4C54-A50F-4A7C3C3CB026} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3D77239C-7419-4657-B20B-0D95CB1D6C84} - System32\Tasks\ASUS\Ez Update => C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe [1430328 2014-03-27] (ASUSTeK Computer Inc. -> )
Task: {43FEB3C0-E2EB-4408-9698-161593D36B6A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {49B3C1B3-10E9-496C-895F-B3C5513EBC41} - System32\Tasks\ASUS\KeyBot Execute => C:\Program Files (x86)\ASUS\KeyBot\KeyBot.exe [1615160 2014-04-15] (ASUSTeK Computer Inc. -> )
Task: {4E1EC825-51C8-4008-B588-02276143A057} - System32\Tasks\AsushomeCloudStart => C:\Program Files\ASUS\HomeCloud\ServerConsole\ASUS HomeCloud.exe [1960256 2014-06-13] (ASUS Cloud Corporation -> )
Task: {50971892-9792-48C4-BBC4-F5082437D774} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-19] (Google Inc -> Google Inc.)
Task: {525C2177-A3E8-402B-9124-A1E1621BD6ED} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {53DDA7DF-FF92-40FC-8DA6-5803936E2704} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe
Task: {7198CB66-2EB2-4D9C-A40F-6C7FCDDAAA00} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [1652536 2018-11-05] (Intel(R) Software -> Intel Corporation)
Task: {780B27B9-1E73-434C-8AD3-A4126F0ED72F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
Task: {8BF66E6F-A2B8-47BF-A251-A204A2A426A3} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A0FE14FB-A8B3-410E-92E9-7B317D897526} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A1F7A790-934F-435B-A02E-CAFB0672177A} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [1825560 2014-06-25] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {B52C7490-4EF9-44BC-B23F-471656DB7D72} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [3220640 2013-08-27] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) [File not signed]
Task: {B6116E7B-B19B-4971-BDC2-53EAAEF7F159} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B779A330-1C3D-40CA-8067-EBED180E55B4} - System32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-PATU4U0-Jakub Pokora => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {B8D2D047-E0A7-4C44-A066-C8E4A1FC0554} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C054E105-839A-431C-8A00-0A224F78F7E5} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {C20A341F-59CB-4C17-BAEE-9408F3E52F5E} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C3899E9C-0A2C-4AD9-8D9B-326CC97F4D7A} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [1270584 2014-05-25] (ASUSTeK Computer Inc. -> )
Task: {C5F2423D-0D9F-4024-81E0-B9EDE03D0B60} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
Task: {C705B244-FF93-4E41-A79E-1D123B04E7B5} - System32\Tasks\ASUS\Push Notice Server Execute => C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe [3646264 2014-01-10] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {CC9DF9DC-BFF8-4BB8-B011-BB2520BD45CA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CEDFAB7D-176E-4D70-84E0-F78395D00E59} - System32\Tasks\ASUS\ASUS Media Streamer DMR => C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMR\AODMR.exe [295936 2014-05-08] () [File not signed]
Task: {CF9000C4-6579-4729-B15D-831064E75393} - System32\Tasks\ASUS\RC TweakIt Server Execute => C:\Program Files (x86)\ASUS\ASUS ROG Connect Plus\RC TweakIt Server\AsBCLK.exe [1982744 2014-03-07] (ASUSTeK Computer Inc. -> )
Task: {DBFBFD81-8A36-457E-A962-C0681A0D55BF} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E16E062D-F46A-45ED-8631-58EC5995AA15} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653848 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EEE8F5ED-4843-47F2-A1C4-B10F5F6347DE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-19] (Google Inc -> Google Inc.)
Task: {FA8E23B5-5B4B-4BAA-8CBA-A72DAE79AEBA} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FF938C9D-D823-49A5-A6D7-AD2B4CEE45A5} - System32\Tasks\ASUS\GpuFanHelper => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe [4331288 2014-05-25] (ASUSTeK Computer Inc. -> TODO: <Company name>)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.1.1
Tcpip\..\Interfaces\{e24b1a30-7d98-4a4f-9374-28dd16981086}: [DhcpNameServer] 10.0.1.1

Internet Explorer:
==================
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll => No File
BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\ssv.dll [2019-05-22] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-05-22] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)

FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2019-01-21] [Legacy] [not signed]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2019-01-22] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-05-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-05-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @nexon.com/NxGame -> C:\ProgramData\Nexon\NGM\npnxgame.dll [2019-01-20] (NEXON Korea Corporation. -> Nexon)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2012-04-04] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-01-22] (Adobe Systems Incorporated -> Adobe Systems)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Jakub Pokora\AppData\Local\Google\Chrome\User Data\Default [2020-02-09]
CHR Notifications: Default -> hxxps://2conv.com; hxxps://app.getmetastream.com; hxxps://aternos.org; hxxps://click-it-now.online; hxxps://coolsymbol.com; hxxps://oko.sh; hxxps://sledujufilmy.cz; hxxps://twitter.com; hxxps://www.facebook.com; hxxps://www.instagram.com; hxxps://www.watch2gether.com; hxxps://www.youtube.com
CHR Extension: (YouTube) - C:\Users\Jakub Pokora\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-08-19]
CHR Extension: (SteamGuard Authorizator) - C:\Users\Jakub Pokora\AppData\Local\Google\Chrome\User Data\Default\Extensions\cimopngjedikbebkpcnemgokekenboam [2019-07-11]
CHR Extension: (Watch2Gether) - C:\Users\Jakub Pokora\AppData\Local\Google\Chrome\User Data\Default\Extensions\cimpffimgeipdhnhjohpbehjkcdpjolg [2019-12-17]
CHR Extension: (Metastream Remote) - C:\Users\Jakub Pokora\AppData\Local\Google\Chrome\User Data\Default\Extensions\fakegmdomhmegokfomgmkbopjibonfcp [2019-11-20]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\Jakub Pokora\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-02-05]
CHR Extension: (Facebook Screen Sharing) - C:\Users\Jakub Pokora\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncfpggehkhmjpdjpefomjchjafhmbnai [2019-03-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Jakub Pokora\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\Jakub Pokora\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-29]
CHR Extension: (Chrome Media Router) - C:\Users\Jakub Pokora\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-12]
CHR Profile: C:\Users\Jakub Pokora\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-02-07]
CHR Profile: C:\Users\Jakub Pokora\AppData\Local\Google\Chrome\User Data\System Profile [2020-02-07]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-01-28] (ASUSTeK Computer Inc. -> )
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [954648 2014-04-24] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-03-21] (ASUSTeK Computer Inc. -> ) [File not signed]
R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.0.1.213\AsusWSWinService.exe [71680 2013-06-26] () [File not signed]
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.07\AsusFanControlService.exe [389944 2014-05-10] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsusGameFirstService; C:\Program Files (x86)\ASUS\ROG Game First III\AsusGameFirstService.exe [343352 2014-05-26] (ASUSTeK Computer Inc. -> ASUSTeK)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8473200 2019-03-27] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-09-21] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2245488 2019-11-29] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2245488 2019-11-29] (ESET, spol. s r.o. -> ESET)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-11] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 MSSQL$ASUSHOMECLOUD; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.ASUSHOMECLOUD\MSSQL\Binn\sqlservr.exe [43129288 2012-06-29] (Microsoft Corporation -> Microsoft Corporation)
R2 NIHostIntegrationAgent; C:\Program Files\Common Files\Native Instruments\Hardware\NIHostIntegrationAgent.exe [18529912 2019-09-11] (Native Instruments GmbH -> Native Instruments GmbH)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [8064104 2018-08-12] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [474256 2019-12-05] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-09-28] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 SQLAgent$ASUSHOMECLOUD; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.ASUSHOMECLOUD\MSSQL\Binn\SQLAGENT.EXE [379848 2012-06-29] (Microsoft Corporation -> Microsoft Corporation)
S3 tomcat6; C:\Program Files\ASUS\HomeCloud\Tomcat\Tomcat_OmniStore\bin\tomcat6.exe [80896 2013-04-29] (Apache Software Foundation) [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\NisSrv.exe [3284840 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MsMpEng.exe [103168 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 WMS; C:\Windows\wmu3\ZeroConfigService.exe [329728 2014-08-31] () [File not signed]
R2 WTouchService; C:\Program Files\WTouch\WTouchService.exe [127272 2009-07-15] (Wacom Technology Corp. -> Wacom Technology, Corp.)
R2 XTU3SERVICE; C:\WINDOWS\SysWOW64\XtuService.exe [26200 2019-03-26] (Intel Corporation -> Intel(R) Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-01-28] (ASUSTeK Computer Inc. -> )
R2 AsRamDisk; C:\WINDOWS\system32\DRIVERS\asramdisk.sys [111928 2013-12-13] (ASUSTeK Computer Inc. -> Asus)
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2014-02-24] (ASUSTeK Computer Inc. -> )
U5 ASUSFILTER; C:\Windows\System32\Drivers\ASUSFILTER.sys [48384 2013-03-28] (MCCI Corporation -> MCCI Corporation)
S3 ASUSstpt; C:\WINDOWS\System32\drivers\ASUSstpt.sys [27392 2013-03-28] (MCCI Corporation -> MCCI Corporation)
S3 ASUSumsc; C:\WINDOWS\System32\drivers\ASUSumsc.sys [151808 2013-03-28] (MCCI Corporation -> MCCI Corporation)
S3 ASUSxpsp; C:\WINDOWS\System32\drivers\ASUSxpsp.sys [28416 2013-03-28] (MCCI Corporation -> MCCI Corporation)
S3 AWEAlloc; C:\WINDOWS\system32\DRIVERS\awealloc.sys [21304 2013-10-05] (ASUSTeK Computer Inc. -> Olof Lagerkvist)
R3 bomebus; C:\WINDOWS\System32\drivers\bomebus.sys [56376 2018-05-16] (Bome Software GmbH & Co.KG -> Bome Software GmbH & Co. KG)
S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [59904 2015-02-06] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com)
S3 dyncal64; C:\WINDOWS\System32\drivers\dyncal64.sys [23728 2007-05-21] (Contoso.com(Test) -> Padix Co., Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [149944 2019-11-29] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15800 2019-10-16] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [189512 2019-11-29] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [116696 2019-11-29] (ESET, spol. s r.o. -> ESET)
R3 EuMusDesignVirtualAudioCableWdm; C:\WINDOWS\System32\drivers\vrtaucbl.sys [210024 2020-01-15] (Muzychenko Evgenii Viktorovich, IP -> Eugene V. Muzychenko)
S3 FocusriteUSB; C:\WINDOWS\System32\drivers\FocusriteUSB.sys [121880 2019-06-20] (WDKTestCert builds,131886954661028733 -> Focusrite Audio Engineering Ltd.)
R3 FocusriteUSBSwRoot; C:\WINDOWS\System32\drivers\FocusriteUSBSwRoot.sys [101304 2019-06-20] (WDKTestCert builds,131886954661028733 -> Focusrite Audio Engineering Ltd.)
S3 FocusriteUSB_AUDIO; C:\WINDOWS\system32\drivers\FocusriteUSBAudio.sys [63200 2019-06-20] (WDKTestCert builds,131886954661028733 -> Focusrite Audio Engineering Ltd.)
R4 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [24824 2014-04-29] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S3 KYEGKB; C:\WINDOWS\system32\drivers\KYEGKB.sys [25600 2011-09-05] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 NFC_Driver; C:\WINDOWS\System32\drivers\NFC_Driver.sys [48336 2014-03-27] (Tech Titan Limited -> Titan ARC Corp.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_9e532b5f619dc909\nvlddmkm.sys [23276960 2020-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-12-07] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [75600 2019-08-22] (NVIDIA Corporation -> NVIDIA Corporation)
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [24000 2019-09-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2016-12-21] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
R3 VBAudioVACMME; C:\WINDOWS\System32\drivers\vbaudio_cable64_win7.sys [41192 2014-09-02] (Vincent Burel -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45960 2020-02-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [376032 2020-02-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2020-02-04] (Microsoft Windows -> Microsoft Corporation)
S3 XtuAcpiDriver; C:\WINDOWS\System32\drivers\XtuAcpiDriver.sys [54168 2017-04-18] (Intel Corporation -> Intel Corporation)
R3 XTUComponent; C:\WINDOWS\System32\drivers\iocbios2.sys [38064 2019-03-26] (Intel Corporation -> Intel Corporation)
U5 ASUSFILTER; C:\Windows\SysWOW64\Drivers\ASUSFILTER.sys [46152 2011-09-20] (MCCI Corporation -> MCCI Corporation)
U3 aswbdisk; no ImagePath
U3 aswRdr; no ImagePath
U3 aswStm; no ImagePath
S3 MBAMWebProtection; \??\C:\WINDOWS\system32\drivers\mwac.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-02-09 21:04 - 2020-02-09 21:04 - 008356016 _____ (Malwarebytes) C:\Users\Jakub Pokora\Downloads\AdwCleaner.exe
2020-02-09 20:31 - 2020-02-09 20:31 - 000000000 ____D C:\ProgramData\Adobe
2020-02-09 20:03 - 2020-02-09 20:04 - 000082449 _____ C:\Users\Jakub Pokora\Downloads\Addition.txt
2020-02-09 20:01 - 2020-02-09 21:55 - 000038556 _____ C:\Users\Jakub Pokora\Downloads\FRST.txt
2020-02-09 20:01 - 2020-02-09 21:55 - 000000000 ____D C:\FRST
2020-02-09 20:01 - 2020-02-09 20:01 - 002279424 _____ (Farbar) C:\Users\Jakub Pokora\Downloads\FRST64.exe
2020-02-09 15:46 - 2020-02-09 15:46 - 000000000 ____D C:\ProgramData\TweakBit
2020-02-09 15:45 - 2020-02-09 15:45 - 000000000 ____D C:\Program Files (x86)\TweakBit
2020-02-09 15:44 - 2020-02-09 15:45 - 017187216 _____ (TweakBit ) C:\Users\Jakub Pokora\Downloads\quickfontcache.dll-repairkit.exe
2020-02-09 15:44 - 2020-02-09 15:44 - 000206960 _____ C:\Users\Jakub Pokora\Downloads\quickfontcache.zip
2020-02-08 15:02 - 2020-02-08 15:02 - 001899064 _____ (CPUID, Inc. ) C:\Users\Jakub Pokora\Downloads\cpu-z_1.91-en.exe
2020-02-08 15:02 - 2020-02-08 15:02 - 000000914 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2020-02-08 14:44 - 2020-02-08 14:44 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2020-02-08 14:44 - 2020-02-08 14:44 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2020-02-08 14:44 - 2020-02-08 14:44 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2020-02-08 14:43 - 2020-02-08 14:51 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2020-02-08 14:43 - 2020-02-08 14:43 - 000001155 _____ C:\Users\Jakub Pokora\Desktop\MSI Afterburner.lnk
2020-02-08 14:43 - 2020-02-08 14:43 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2020-02-08 14:42 - 2020-02-08 14:42 - 050449037 _____ C:\Users\Jakub Pokora\Downloads\MSIAfterburnerSetup.zip
2020-02-08 14:16 - 2020-02-08 14:16 - 000019680 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_25450024205479.dll
2020-02-08 14:16 - 2020-02-08 14:16 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\EasyAntiCheat
2020-02-08 14:16 - 2020-02-08 14:16 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2020-02-08 14:04 - 2020-02-08 14:04 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2020-02-08 14:02 - 2020-01-31 00:04 - 001729232 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-02-08 14:02 - 2020-01-31 00:04 - 001729232 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-02-08 14:02 - 2020-01-31 00:04 - 001329360 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-02-08 14:02 - 2020-01-31 00:04 - 001329360 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-02-08 14:02 - 2020-01-31 00:04 - 001078992 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-02-08 14:02 - 2020-01-31 00:04 - 001078992 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-02-08 14:02 - 2020-01-31 00:04 - 000937680 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-02-08 14:02 - 2020-01-31 00:04 - 000937680 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-02-08 14:02 - 2020-01-31 00:04 - 000450576 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-02-08 14:02 - 2020-01-31 00:04 - 000353160 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-02-08 14:02 - 2020-01-31 00:03 - 011843504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2020-02-08 14:02 - 2020-01-31 00:03 - 010167544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 017462616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 005384584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 004718792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 002075904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 001727320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6444219.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 001569160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 001490688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6444219.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 001485688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 001370360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 001145776 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 001064384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 000825720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 000815120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 000685912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 000677584 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 000557304 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-02-08 14:02 - 2020-01-31 00:02 - 000545112 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-02-08 14:02 - 2020-01-31 00:01 - 040511408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2020-02-08 14:02 - 2020-01-31 00:01 - 035380120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2020-02-08 14:02 - 2020-01-31 00:01 - 015031808 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-02-08 13:49 - 2020-02-09 21:06 - 000000000 ____D C:\AdwCleaner
2020-02-08 13:49 - 2020-02-08 13:49 - 008356016 _____ (Malwarebytes) C:\Users\Jakub Pokora\Downloads\adwcleaner_8.0.2.exe
2020-02-08 12:56 - 2020-02-08 12:56 - 000000000 ____D C:\ProgramData\Ubisoft
2020-02-08 12:30 - 2020-02-08 12:30 - 000000000 ____D C:\Program Files\Malwarebytes
2020-02-08 12:29 - 2020-02-08 12:29 - 054199488 _____ (Malwarebytes ) C:\Users\Jakub Pokora\Downloads\mb3-setup-consumer-3.0.5.1299.exe
2020-02-07 23:28 - 2020-02-07 23:34 - 007684405 _____ C:\Users\Jakub Pokora\Downloads\ADAM-plakat-odpady.psd
2020-02-07 18:02 - 2020-02-07 18:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2020-02-07 18:02 - 2020-02-07 18:02 - 000000000 ____D C:\ProgramData\ESET
2020-02-07 18:02 - 2020-02-07 18:02 - 000000000 ____D C:\Program Files\ESET
2020-02-07 17:59 - 2020-02-07 17:59 - 005504824 _____ (ESET) C:\Users\Jakub Pokora\Downloads\eset_nod32_antivirus_live_installer.exe
2020-02-07 17:55 - 2020-02-08 01:59 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-02-07 17:55 - 2020-02-08 01:59 - 000002234 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-02-07 17:55 - 2020-02-07 17:55 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-02-07 17:55 - 2020-02-07 17:55 - 000000000 ____D C:\Program Files\CCleaner
2020-02-07 17:54 - 2020-02-07 17:54 - 024578944 _____ (Piriform Software Ltd) C:\Users\Jakub Pokora\Downloads\ccsetup563.exe
2020-02-07 17:51 - 2020-02-08 14:34 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Local\Avg
2020-02-07 17:37 - 2020-02-07 17:37 - 000230080 _____ (AVAST Software) C:\Users\Jakub Pokora\Downloads\avast_free_antivirus_setup_online.exe
2020-02-07 17:30 - 2020-02-08 14:34 - 000000000 ____D C:\ProgramData\AVG
2020-02-07 17:30 - 2020-02-07 17:30 - 000270160 _____ (AVG Technologies CZ, s.r.o.) C:\Users\Jakub Pokora\Downloads\avg_antivirus_free_setup.exe
2020-02-07 16:53 - 2020-02-07 16:53 - 012979520 _____ (AVAST Software ) C:\Users\Jakub Pokora\Downloads\Nepotvrzeno 84356.crdownload
2020-02-07 16:41 - 2020-02-08 14:34 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\Avast Software
2020-02-07 16:40 - 2020-02-08 14:34 - 000000000 ____D C:\ProgramData\AVAST Software
2020-02-07 16:40 - 2020-02-07 16:40 - 053145632 _____ (AVAST Software ) C:\Users\Jakub Pokora\Downloads\avast_cleanup_setup.exe
2020-02-06 23:03 - 2020-02-06 23:03 - 015983104 _____ C:\Users\Jakub Pokora\Downloads\YAuhda.exe
2020-02-03 20:32 - 2020-02-03 21:13 - 000000000 ____D C:\Users\Jakub Pokora\Desktop\MATURAK JAKUB
2020-02-03 20:31 - 2020-02-03 20:32 - 032103231 _____ C:\Users\Jakub Pokora\Downloads\wetransfer-c32dc6.zip
2020-02-01 12:24 - 2020-02-01 12:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ohm Force
2020-02-01 12:23 - 2020-02-01 12:23 - 031966920 _____ (Oleg N. Scherbakov) C:\Users\Jakub Pokora\Downloads\SymptohmPE-137-win64-vst-free.exe
2020-02-01 12:23 - 2020-02-01 12:23 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\Ohm Force
2020-02-01 12:09 - 2020-02-01 13:08 - 1780448794 _____ C:\Users\Jakub Pokora\Downloads\VSCO2_Rompler_-_64.zip
2020-01-31 19:36 - 2020-02-07 19:54 - 000000000 ____D C:\Users\Jakub Pokora\Documents\Ample Sound
2020-01-31 19:36 - 2020-01-31 19:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ample Sound
2020-01-31 19:35 - 2020-02-07 19:54 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\Ample Sound
2020-01-31 19:24 - 2020-01-31 19:33 - 283568744 _____ C:\Users\Jakub Pokora\Downloads\AGML_2_3_1_Complete_Installer.exe
2020-01-31 12:18 - 2020-01-31 12:32 - 049425768 _____ C:\Users\Jakub Pokora\Downloads\DSK_The_Grand_-_win64.zip
2020-01-30 15:49 - 2020-01-30 16:56 - 000115069 _____ C:\Users\Jakub Pokora\Desktop\LATRO-brainfreeze.flp
2020-01-29 18:57 - 2020-01-29 18:56 - 193133307 _____ C:\Users\Jakub Pokora\Desktop\output_HD1080.mp4
2020-01-29 18:52 - 2020-01-29 18:53 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Local\Adobe
2020-01-29 18:45 - 2020-01-29 18:56 - 193133307 _____ C:\Users\Jakub Pokora\Downloads\output_HD1080.mp4
2020-01-27 19:07 - 2020-02-01 13:41 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\Maize Sampler Player
2020-01-27 19:00 - 2020-01-27 19:02 - 113406556 _____ C:\Users\Jakub Pokora\Downloads\DSK_Dynamic_Guitars_64bits.zip
2020-01-24 15:16 - 2019-11-28 21:13 - 023247630 _____ C:\Users\Jakub Pokora\Desktop\DYKMOREHUBAJKASLONIPRDEl.wav
2020-01-19 21:00 - 2020-01-19 22:12 - 084739867 _____ C:\Users\Jakub Pokora\Desktop\KHEP cover.psd
2020-01-19 20:49 - 2020-01-19 22:06 - 000000000 ____D C:\Users\Jakub Pokora\Desktop\foto praha 19012020 KHEP
2020-01-19 20:47 - 2020-01-19 20:48 - 148934623 _____ C:\Users\Jakub Pokora\Downloads\wetransfer-af8629.zip
2020-01-18 08:59 - 2020-01-18 09:06 - 137080842 _____ C:\Users\Jakub Pokora\Downloads\Dope D.O.D. - Do Not Enter.zip
2020-01-18 08:45 - 2020-01-18 08:51 - 066381165 _____ C:\Users\Jakub Pokora\Downloads\Eminem - Music To Be Murdered By (Full Album).zip
2020-01-17 16:39 - 2020-01-17 16:39 - 025900032 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 022627840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 018020352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 009928208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-01-17 16:39 - 2020-01-17 16:39 - 008012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 007754752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 007016448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 006520480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 005913600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-01-17 16:39 - 2020-01-17 16:39 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 002870784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 002801152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-01-17 16:39 - 2020-01-17 16:39 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-01-17 16:39 - 2020-01-17 16:39 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 002494464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 002473976 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 001985928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 001697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 001655880 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 001399096 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-01-17 16:39 - 2020-01-17 16:39 - 001330952 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 001106944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-01-17 16:39 - 2020-01-17 16:39 - 001051664 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 001020032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000851456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-01-17 16:39 - 2020-01-17 16:39 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000678712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-01-17 16:39 - 2020-01-17 16:39 - 000646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000571392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-01-17 16:39 - 2020-01-17 16:39 - 000542496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000432256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-01-17 16:39 - 2020-01-17 16:39 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-01-17 16:39 - 2020-01-17 16:39 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000363840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-01-17 16:39 - 2020-01-17 16:39 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-01-17 16:39 - 2020-01-17 16:39 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV1.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-01-17 16:39 - 2020-01-17 16:39 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssrvlic.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-01-17 16:39 - 2020-01-17 16:39 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti_ci.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000162696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2020-01-17 16:39 - 2020-01-17 16:39 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadss.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tsusbhub.sys
2020-01-17 16:39 - 2020-01-17 16:39 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000127520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiadss.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000089536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-01-17 16:39 - 2020-01-17 16:39 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\LSCSHostPolicy.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbscan.sys
2020-01-17 16:39 - 2020-01-17 16:39 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\lstelemetry.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiatrace.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-01-17 16:39 - 2020-01-17 16:39 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-01-17 16:36 - 2020-01-17 16:36 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-01-17 16:36 - 2020-01-17 16:36 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-01-16 19:01 - 2020-01-22 23:44 - 000102620 _____ C:\Users\Jakub Pokora\Desktop\maturak tanec lineup.flp
2020-01-16 18:49 - 2020-01-16 18:54 - 000000000 ____D C:\Users\Jakub Pokora\Desktop\maturak linemup
2020-01-15 21:06 - 2020-01-15 21:06 - 009195422 _____ C:\Users\Jakub Pokora\Downloads\ResananceV2.rar
2020-01-15 21:06 - 2020-01-15 21:06 - 000001916 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Resanance.lnk
2020-01-15 21:06 - 2020-01-15 21:06 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\Resanance
2020-01-15 21:06 - 2020-01-15 21:06 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Local\Wasntafairfight
2020-01-15 21:06 - 2020-01-15 21:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Resanance
2020-01-15 20:45 - 2014-09-02 17:01 - 000041192 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\vbaudio_cable64_win7.sys
2020-01-15 20:44 - 2014-09-02 17:01 - 000034024 _____ (Windows (R) Win 7 DDK provider) C:\Users\Jakub Pokora\Desktop\vbaudio_cable_xp.sys
2020-01-15 20:30 - 2020-01-15 20:30 - 000210024 _____ (Eugene V. Muzychenko) C:\WINDOWS\system32\Drivers\vrtaucbl.sys
2020-01-15 20:30 - 2020-01-15 20:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virtual Audio Cable
2020-01-15 20:30 - 2020-01-15 20:30 - 000000000 ____D C:\Program Files\Virtual Audio Cable
2020-01-15 20:29 - 2020-01-15 20:29 - 000743695 _____ C:\Users\Jakub Pokora\Downloads\vac460.zip
2020-01-15 20:27 - 2020-01-15 20:27 - 001139147 _____ C:\Users\Jakub Pokora\Downloads\VBCABLE_Driver_Pack43 (1).zip
2020-01-15 20:26 - 2020-01-15 20:26 - 001139147 _____ C:\Users\Jakub Pokora\Downloads\VBCABLE_Driver_Pack43.zip
2020-01-13 23:42 - 2020-01-13 23:48 - 765552550 _____ C:\Users\Jakub Pokora\Desktop\dayne v noci.psd
2020-01-13 18:38 - 2020-01-13 20:06 - 1787768944 _____ C:\Users\Jakub Pokora\Desktop\dayne amk-demoshit.psd
2020-01-13 18:29 - 2018-01-20 23:00 - 001071042 _____ C:\Users\Jakub Pokora\Desktop\20 Underline Brushes.abr
2020-01-13 18:27 - 2018-02-27 17:21 - 019384276 _____ C:\Users\Jakub Pokora\Desktop\Сalligraphy Photoshop Brushes 1.abr
2020-01-13 18:26 - 2017-12-27 00:14 - 000761356 _____ C:\Users\Jakub Pokora\Desktop\Underline Photoshop Brushes 3.abr
2020-01-10 02:20 - 2020-01-10 03:01 - 759662507 _____ C:\Users\Jakub Pokora\Desktop\FFFFMoth video final 10012020.mp4
2020-01-10 02:00 - 2020-01-10 02:00 - 091858362 _____ C:\Users\Jakub Pokora\Desktop\loga promo konec smes.psd

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-02-09 21:51 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-02-09 21:42 - 2018-08-18 21:38 - 000000000 _____ C:\WINDOWS\Path.idx
2020-02-09 21:25 - 2018-09-22 19:39 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\.minecraft
2020-02-09 21:24 - 2019-08-23 13:37 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\.tlauncher
2020-02-09 21:13 - 2019-09-28 16:23 - 001788980 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-02-09 21:13 - 2019-03-19 12:57 - 000716944 _____ C:\WINDOWS\system32\perfh005.dat
2020-02-09 21:13 - 2019-03-19 12:57 - 000145024 _____ C:\WINDOWS\system32\perfc005.dat
2020-02-09 21:13 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2020-02-09 21:13 - 2018-10-10 21:31 - 000000000 ____D C:\Program Files (x86)\Steam
2020-02-09 21:09 - 2018-08-18 20:51 - 000000000 ____D C:\ProgramData\NVIDIA
2020-02-09 21:07 - 2019-04-18 11:00 - 000000000 ____D C:\Users\Jakub Pokora\Documents\Assassin's Creed Unity
2020-02-09 21:07 - 2018-10-25 16:49 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\WTablet
2020-02-09 21:07 - 2018-08-20 21:38 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Local\CrashDumps
2020-02-09 21:07 - 2018-08-18 21:22 - 000081031 _____ C:\WINDOWS\SysWOW64\IntelRemoteWakeAgent.ini
2020-02-09 21:07 - 2018-08-18 21:22 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Local\asushomecloud
2020-02-09 21:07 - 2018-08-18 21:17 - 001048576 _____ C:\WINDOWS\PE_Rom.dll
2020-02-09 21:06 - 2019-09-28 16:19 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-02-09 21:06 - 2019-09-28 16:15 - 000000000 ____D C:\Users\Jakub Pokora
2020-02-09 21:06 - 2019-03-19 05:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-02-09 20:31 - 2019-01-02 13:29 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\Adobe
2020-02-09 20:24 - 2018-08-20 21:34 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Local\NVIDIA
2020-02-09 20:15 - 2019-11-19 20:16 - 000000219 _____ C:\Users\Jakub Pokora\Desktop\Counter-Strike Global Offensive.url
2020-02-09 18:26 - 2019-09-28 16:13 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-02-09 00:04 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-02-08 23:59 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-02-08 23:19 - 2018-08-19 13:35 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\discord
2020-02-08 15:02 - 2018-08-18 21:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2020-02-08 15:02 - 2018-08-18 21:26 - 000000000 ____D C:\Program Files\CPUID
2020-02-08 14:48 - 2019-09-28 16:13 - 005028448 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-02-08 12:56 - 2019-01-06 19:51 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Local\Ubisoft Game Launcher
2020-02-08 01:59 - 2020-01-06 20:57 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-08 01:59 - 2020-01-06 20:57 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-08 01:59 - 2020-01-06 20:57 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-08 01:59 - 2020-01-06 20:57 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-08 01:59 - 2019-10-04 23:06 - 000002608 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2020-02-08 01:59 - 2019-09-28 16:19 - 000003402 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-02-08 01:59 - 2019-09-28 16:19 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-08 01:59 - 2019-09-28 16:19 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-08 01:59 - 2019-09-28 16:19 - 000003178 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-02-08 01:59 - 2019-09-28 16:19 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-08 01:59 - 2019-09-28 16:19 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-08 01:59 - 2019-09-28 16:19 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-08 01:59 - 2019-09-28 16:19 - 000002854 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-247741225-677518453-3872238061-1001
2020-02-08 01:59 - 2019-09-28 16:19 - 000002784 _____ C:\WINDOWS\system32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-PATU4U0-Jakub Pokora
2020-02-08 01:59 - 2019-09-28 16:19 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-02-08 01:59 - 2019-09-28 16:19 - 000002504 _____ C:\WINDOWS\system32\Tasks\AsushomeCloudStart
2020-02-07 18:02 - 2019-03-19 05:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-02-07 17:56 - 2018-08-20 22:11 - 000000000 ____D C:\temp
2020-02-07 17:56 - 2018-08-18 21:00 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Local\Packages
2020-02-07 17:55 - 2020-01-09 21:53 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\TeamViewer
2020-02-07 17:55 - 2019-09-27 20:11 - 000000000 ___DC C:\WINDOWS\Panther
2020-02-07 17:55 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-02-04 17:43 - 2018-08-18 20:51 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-01-31 00:02 - 2019-12-09 18:29 - 000660176 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-01-30 23:58 - 2018-08-20 21:31 - 004963008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-01-30 23:58 - 2018-08-20 21:31 - 004230752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-01-30 02:40 - 2018-08-20 21:31 - 000055783 _____ C:\WINDOWS\system32\nvinfo.pb
2020-01-30 00:56 - 2018-08-18 20:52 - 005577224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2020-01-30 00:56 - 2018-08-18 20:52 - 002655864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2020-01-30 00:56 - 2018-08-18 20:52 - 001767920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2020-01-30 00:56 - 2018-08-18 20:52 - 000670840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2020-01-30 00:56 - 2018-08-18 20:52 - 000454512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2020-01-30 00:56 - 2018-08-18 20:52 - 000131176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2020-01-30 00:56 - 2018-08-18 20:52 - 000083976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2020-01-27 19:05 - 2014-11-17 17:04 - 000000000 ____D C:\Users\Jakub Pokora\Desktop\DSK Dynamic Guitars (64bits)
2020-01-27 08:11 - 2018-08-18 20:52 - 008887562 _____ C:\WINDOWS\system32\nvcoproc.bin
2020-01-26 16:02 - 2019-01-27 23:16 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Local\Spotify
2020-01-26 15:57 - 2019-01-27 23:15 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\Spotify
2020-01-25 20:14 - 2018-08-19 11:54 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Local\D3DSCache
2020-01-24 16:48 - 2019-10-23 12:21 - 001848188 _____ C:\Users\Jakub Pokora\Documents\alone cd lost.ec4
2020-01-24 16:43 - 2018-09-02 15:44 - 000000132 _____ C:\Users\Jakub Pokora\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2020-01-23 14:28 - 2018-08-18 20:51 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2020-01-22 22:50 - 2018-08-18 21:03 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-01-19 22:39 - 2019-05-26 19:36 - 000000000 ____D C:\Users\Jakub Pokora\AppData\Roaming\Mp3tag
2020-01-19 20:49 - 2019-09-28 16:15 - 000002382 _____ C:\Users\Jakub Pokora\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-01-19 20:49 - 2018-08-18 21:02 - 000000000 ___RD C:\Users\Jakub Pokora\OneDrive
2020-01-18 02:12 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-01-18 02:12 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-01-18 02:12 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-01-18 02:12 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-01-17 16:43 - 2018-08-19 11:54 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-01-17 16:41 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-01-17 16:41 - 2018-08-19 11:54 - 120202352 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-01-10 01:34 - 2019-10-04 23:06 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData

==================== Files in the root of some directories ========

2018-09-02 15:44 - 2020-01-24 16:43 - 000000132 _____ () C:\Users\Jakub Pokora\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2019-07-16 21:18 - 2019-11-09 15:02 - 000000132 _____ () C:\Users\Jakub Pokora\AppData\Roaming\Adobe PNG Format CS6 Prefs
2018-11-11 14:18 - 2019-12-01 21:47 - 000000132 _____ () C:\Users\Jakub Pokora\AppData\Roaming\Filtr IIIExport Adobe CS6 – předvolby
2019-02-26 21:46 - 2019-12-17 21:13 - 000009635 _____ () C:\Users\Jakub Pokora\AppData\Local\oobelibMkey.log

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Re: Zasekaný pc

Napsal: 09 úno 2020 21:58
od JakubPokora
ADDITION

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-02-2020 02
Ran by Jakub Pokora (09-02-2020 21:56:24)
Running from C:\Users\Jakub Pokora\Downloads
Windows 10 Pro Version 1903 18362.592 (X64) (2019-09-28 15:19:28)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-247741225-677518453-3872238061-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-247741225-677518453-3872238061-503 - Limited - Disabled)
Guest (S-1-5-21-247741225-677518453-3872238061-501 - Limited - Disabled)
Jakub Pokora (S-1-5-21-247741225-677518453-3872238061-1001 - Administrator - Enabled) => C:\Users\Jakub Pokora
WDAGUtilityAccount (S-1-5-21-247741225-677518453-3872238061-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe (HKLM\...\{250E78D7-9109-480B-A923-9B7B9D743A94}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.8.0.421 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2019 (HKLM-x32\...\AME_13_0_2) (Version: 13.0.2 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2018 (HKLM-x32\...\PPRO_12_0_0) (Version: 12.0.0 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2019 (HKLM-x32\...\PPRO_13_0_3) (Version: 13.0.3 - Adobe Systems Incorporated)
Adobe Premiere Pro CS6 (HKLM-x32\...\{7176B973-6011-43C1-AEBC-2D73FE7C6982}) (Version: 6.0 - Adobe Systems Incorporated)
Adobe Reader X (10.1.3) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.3 - Adobe Systems Incorporated)
Advertising Center (HKLM-x32\...\{b2ec4a38-b545-4a00-8214-13fe0e915e6d}) (Version: 0.0.0.1 - Nero AG) Hidden
AI Suite 3 (HKLM-x32\...\{D46DA5F0-25AD-4B77-98DA-6DD6AF39FBD9}) (Version: 1.00.83 - ASUSTeK Computer Inc.)
AirPort (HKLM-x32\...\{AA68AAAE-41F0-40B5-8896-5947F5FD6889}) (Version: 5.6.1.2 - Apple Inc.)
Aktualizace NVIDIA 38.0.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.4.0 - NVIDIA Corporation) Hidden
Ample Guitar M Lite II version 2.3.1 (HKLM-x32\...\{548F88E8-79D2-441F-B87B-E71754257651}_is1) (Version: 2.3.1 - Ample Sound Technology Co., Ltd.)
Apowersoft Online Launcher verze 1.7.1 (HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\{20BF67A8-D81A-4489-8225-FABAA0896E2D}_is1) (Version: 1.7.1 - APOWERSOFT LIMITED)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach)
Assassin's Creed Unity (HKLM-x32\...\Uplay Install 720) (Version: - Ubisoft)
ASUS Boot Setting (HKLM-x32\...\{7AAE9187-C24F-4073-A951-36C370E7A3A5}) (Version: 1.00.18 - ASUSTeK Computer Inc.)
ASUS HomeCloud Launcher (HKLM-x32\...\4ff11ffb-5880-4338-90e0-1502e835b184) (Version: 1.01.03 - ASUSTeK Computer Inc.)
ASUS HomeCloud Server 1.0.12.023 (HKLM\...\ASUS HomeCloud) (Version: 1.0.12.023 - ASUS Cloud Corporation)
ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.025 - ASUSTek Computer Inc.)
ASUS ROG Connect Plus (HKLM-x32\...\{ECF51D37-52ED-4871-BF8B-FEA34B8B4120}) (Version: 1.00.26 - ASUSTeK Computer Inc.)
Auto-Tune-8.1-vst3 (HKLM-x32\...\{417267F2-7228-4F20-B14B-0C3DC8A29E14}_is1) (Version: - Phúc Thái)
Bamboo (HKLM-x32\...\Pen Tablet Driver) (Version: - Wacom Technology Corp.)
bl (HKLM-x32\...\{2A075BB4-E976-4278-BF3F-E5C6945D84C0}) (Version: 1.0.0 - Your Company Name) Hidden
Bome Virtual MIDI 2.1.0.44 (HKLM\...\BMIDI_Driver1.0.0.11_is1) (Version: - Bome Software GmbH & Co. KG)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.63 - Piriform)
Combat Arms Reloaded (HKLM-x32\...\CombatArms) (Version: - )
CPUID CPU-Z 1.91 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.91 - CPUID, Inc.)
CPUID ROG CPU-Z 1.69 (HKLM\...\CPUID ROG CPU-Z_is1) (Version: 1.69 - CPUID, Inc.)
Discord (HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\Discord) (Version: 0.0.305 - Discord Inc.)
Ede Kowalski (HKLM-x32\...\Ede Kowalski) (Version: - )
Epic Games Launcher (HKLM-x32\...\{E7B62E3F-0F70-4119-89A2-28DE1C3873CC}) (Version: 1.1.163.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epson Connect Printer Setup (HKLM-x32\...\{D9B1D51B-EB56-410D-AEB5-1CCFAC4B6C8C}) (Version: 1.4.1 - Seiko Epson Corporation)
Epson E-Web Print (HKLM-x32\...\{6BF9F374-EC67-4808-A90C-F127DE6D989D}) (Version: 1.23.0000 - SEIKO EPSON CORPORATION)
Epson Print CD (HKLM-x32\...\{D16A31F9-276D-4968-A753-FFEAC56995D0}) (Version: 2.44.00 - Seiko Epson Corporation)
EPSON Printer Finder (HKLM-x32\...\{B8ECD0D3-AE08-4891-B6C7-32F96B75EB6C}) (Version: 1.0.0 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
Epson Software Updater (HKLM-x32\...\{1028AD34-EB8A-4136-9A93-27FC60FD0A40}) (Version: 4.4.11 - Seiko Epson Corporation)
EPSON XP-700 Series Printer Uninstall (HKLM\...\EPSON XP-700 Series) (Version: - SEIKO EPSON Corporation)
ESET Security (HKLM\...\{D8E84711-EDFC-4D4E-B579-95AEB40DAA4D}) (Version: 13.0.24.0 - ESET, spol. s r.o.)
FabFilter 1.0 (HKLM-x32\...\FabFilter 1.0) (Version: 1.0 - Keygen)
FabFilter Pro-R 1.06 (64-bit) (HKLM-x32\...\FabFilter Pro-R 1.06 (64-bit)) (Version: - )
FabFilter Total Bundle (HKLM\...\FabFilter Total Bundle_is1) (Version: 2019.03.13 - FabFilter)
FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version: - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line)
Focusrite USB 4.63.23.563 (HKLM\...\Focusrite USB_is1) (Version: 4.63.23.563 - Focusrite Audio Engineering, Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.130 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.441 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.115 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: 1.0.1868.0 - Rockstar Games)
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Heroes of Might and Magic V with Hammers of Fate (HKLM-x32\...\1207661143_is1) (Version: 2.1.0.22 - GOG.com)
HomeClude Drive 1.0.0.068 (HKLM-x32\...\HomeClude Drive) (Version: 1.0.0.068 - ASUS Cloud Corporation)
IDCGames Launcher (HKLM-x32\...\{189BD0E3-FA9A-4280-8204-7F54913CFCFA}_is1) (Version: 0.0.0 - IDC Games)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line)
Intel(R) Extreme Tuning Utility (HKLM-x32\...\{92b09894-9d66-465d-97a0-5bcabf264301}) (Version: 6.5.1.321 - Intel Corporation)
Intel(R) Extreme Tuning Utility (HKLM-x32\...\{EC7279C8-6C18-4389-8C21-37884A58C114}) (Version: 6.5.1.321 - Intel Corporation) Hidden
Intel(R) Network Connections 19.1.51.0 (HKLM\...\PROSetDX) (Version: 19.1.51.0 - Intel)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.1.0.1058 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{4a87bd28-a855-4a8d-b133-60ca8ccffd30}) (Version: 10.0.17 - Intel(R) Corporation) Hidden
Java 8 Update 181 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
Java 8 Update 211 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180211F0}) (Version: 8.0.2110.12 - Oracle Corporation)
KeyBot (HKLM-x32\...\{DF53C8ED-1B43-475D-8CEB-9462E7BC2D9C}) (Version: 1.00.11 - ASUSTeK Computer Inc.)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Media Streamer (HKLM-x32\...\{B457E718-00CA-45C8-9F75-45D66F8DAFF6}) (Version: 2.00.14 - ASUSTeK Computer Inc.)
MemTweakIt (HKLM-x32\...\{E51AAC3A-D66D-4912-B883-DAFBA249D10F}) (Version: 2.02.01 - ASUSTeK Computer Inc.)
Microsoft OneDrive (HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\OneDriveSetup.exe) (Version: 19.222.1110.0006 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 (HKLM-x32\...\Microsoft SQL Server 2008 R2) (Version: - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Native Client (HKLM\...\{79A2C6E8-C727-4D12-B4B3-19790C181DEA}) (Version: 10.52.4000.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Setup (English) (HKLM-x32\...\{7419AE1A-D1A5-4B24-BD78-C7ABCC26016F}) (Version: 10.52.4000.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM-x32\...\{D441BD04-E548-4F8E-97A4-1B66135BAAA8}) (Version: 10.1.2731.0 - Microsoft Corporation)
Microsoft SQL Server Browser (HKLM-x32\...\{BF9BF038-FE03-429D-9B26-2FA0FD756052}) (Version: 10.52.4000.0 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{288D79EE-A2D1-42AF-9597-B0ADCC23A8ED}) (Version: 10.52.4000.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 1.18.1095.110 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Movavi Free Online Screen Recorder 1 (HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\Movavi Free Online Screen Recorder 1) (Version: 1.0.3 - Movavi)
Mp3tag v2.95 (HKLM-x32\...\Mp3tag) (Version: 2.95 - Florian Heidenreich)
MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
Native Instruments Blocks Base (HKLM-x32\...\Native Instruments Blocks Base) (Version: 1.0.1.1 - Native Instruments)
Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version: 2.5.2.503 - Native Instruments)
Native Instruments Expansions Selection (HKLM-x32\...\Native Instruments Expansions Selection) (Version: 1.0.0.10 - Native Instruments)
Native Instruments Guitar Rig 5 (HKLM-x32\...\Native Instruments Guitar Rig 5) (Version: 5.2.2.8 - Native Instruments)
Native Instruments Kinetic Treats (HKLM-x32\...\Native Instruments Kinetic Treats) (Version: 1.1.0.4 - Native Instruments)
Native Instruments Komplete Kontrol (HKLM-x32\...\Native Instruments Komplete Kontrol) (Version: 2.1.6.4 - Native Instruments)
Native Instruments Komplete Kontrol Driver (HKLM-x32\...\Native Instruments Komplete Kontrol Driver) (Version: - Native Instruments)
Native Instruments Komplete Kontrol MK2 Driver (HKLM-x32\...\Native Instruments Komplete Kontrol MK2 Driver) (Version: - Native Instruments)
Native Instruments Kontakt (HKLM-x32\...\Native Instruments Kontakt) (Version: 6.1.1.66 - Native Instruments)
Native Instruments Kontakt Factory Selection (HKLM-x32\...\Native Instruments Kontakt Factory Selection) (Version: 1.4.2.1 - Native Instruments)
Native Instruments Mikro Prism (HKLM-x32\...\Native Instruments Mikro Prism) (Version: 1.1.0.14 - Native Instruments)
Native Instruments Native Access (HKLM-x32\...\Native Instruments Native Access) (Version: 1.12.1.129 - Native Instruments)
Native Instruments NIHostIntegrationAgent (HKLM-x32\...\Native Instruments NIHostIntegrationAgent) (Version: 1.8.9.144 - Native Instruments)
Native Instruments NTKDaemon (HKLM-x32\...\Native Instruments NTKDaemon) (Version: 1.0.1.69 - Native Instruments)
Native Instruments Play Series Selection (HKLM-x32\...\Native Instruments Play Series Selection) (Version: 1.0.0.6 - Native Instruments)
Native Instruments Reaktor 6 (HKLM-x32\...\Native Instruments Reaktor 6) (Version: 6.3.1.6 - Native Instruments)
Native Instruments Reaktor Factory Selection R2 (HKLM-x32\...\Native Instruments Reaktor Factory Selection R2) (Version: 1.0.1.7 - Native Instruments)
Native Instruments Supercharger (HKLM-x32\...\Native Instruments Supercharger) (Version: 1.3.1.45 - Native Instruments)
Native Instruments Traktor DJ 2 (HKLM-x32\...\Native Instruments Traktor DJ 2) (Version: 2.1.0.415 - Native Instruments)
Native Instruments TRK-01 Bass (HKLM-x32\...\Native Instruments TRK-01 Bass) (Version: 1.0.0.10 - Native Instruments)
Nero 9 Essentials (HKLM-x32\...\{96a32d47-b145-4da9-9946-5d7f2281968c}) (Version: - Nero AG)
Nik Collection (HKLM-x32\...\Nik Collection) (Version: 1.2.11 - Google)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.2.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.2.34 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 442.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 442.19 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Ovládací panel NVIDIA 442.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 442.19 - NVIDIA Corporation) Hidden
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
ph (HKLM-x32\...\{185F9795-9663-4F13-9EF9-307A282ADB5A}) (Version: 1.0.0 - Your Company Name) Hidden
Polda V (HKLM-x32\...\Polda V_is1) (Version: - )
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 4.3 r3298 - Rainmeter)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7272 - Realtek Semiconductor Corp.)
Resanance (HKLM\...\{07BB6181-E1D0-4283-87D0-BE4819535A3C}) (Version: 2.1.3 - WasntAFairFight)
RivaTuner Statistics Server 7.2.3 (HKLM-x32\...\RTSS) (Version: 7.2.3 - Unwinder)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.17.199 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.4.3 - Rockstar Games)
ROG Game First III (HKLM-x32\...\{0C6E32E1-31D9-49F1-B67F-2941994002D5}) (Version: 1.00.08 - ASUSTeK Computer Inc.)
ROG RAMDisk (HKLM-x32\...\{DE8C1883-4F14-40DF-8C8C-376157ADF5A3}) (Version: 2.02.05 - ASUSTeK Computer Inc.)
Service Pack 2 for SQL Server 2008 R2 (KB2630458) (HKLM-x32\...\KB2630458) (Version: 10.52.4000.0 - Microsoft Corporation)
Spotify (HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\Spotify) (Version: 1.1.24.91.g4ca6d5eb - Spotify AB)
SQL Server 2008 R2 SP2 Common Files (HKLM-x32\...\{CACEA8C8-3D38-4F51-953D-1E6FC3346FEF}) (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP2 Common Files (HKLM-x32\...\{FC835376-FF3B-4CAA-83E0-2148B3FB7C98}) (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP2 Database Engine Services (HKLM-x32\...\{58721EC3-8D4E-4B79-BC51-1054E2DDCD10}) (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP2 Database Engine Services (HKLM-x32\...\{B5153233-9AEE-4CD4-9D2C-4FAAC870DBE2}) (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP2 Database Engine Shared (HKLM-x32\...\{4C9D82EB-9001-4E59-8F64-0BEEE5F4A30A}) (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP2 Database Engine Shared (HKLM-x32\...\{F021CC0C-21C3-4038-AA4A-6E3CBC669CE8}) (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
Sql Server Customer Experience Improvement Program (HKLM-x32\...\{93998800-1608-403F-9A51-420A77D23C25}) (Version: 10.50.1600.1 - Microsoft Corporation) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Steep (HKLM-x32\...\Uplay Install 3279) (Version: - Ubisoft)
TDR Kotelnikov version 1.1.2 (HKLM\...\TDR Kotelnikov_is1) (Version: 1.1.2 - Tokyo Dawn Labs)
TDR Nova version 1.2.0 (HKLM\...\TDR Nova_is1) (Version: 1.2.0 - Tokyo Dawn Labs)
TDR VOS SlickEQ version 1.2.3 (HKLM\...\TDR VOS SlickEQ_is1) (Version: 1.2.3 - Tokyo Dawn Labs)
TeamSpeak 3 Client (HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\TeamSpeak 3 Client) (Version: 3.1.9 - TeamSpeak Systems GmbH)
Tom Clancy's Rainbow Six Siege (HKLM-x32\...\Uplay Install 635) (Version: - Ubisoft Montreal)
Trials Fusion (HKLM-x32\...\Uplay Install 297) (Version: - Ubisoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 24.0 - Ubisoft)
uTorrent Web (HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\utweb) (Version: 0.18.2 - BitTorrent, Inc.)
VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version: - VB-Audio Software)
Vietcong (HKLM-x32\...\Vietcong) (Version: - )
Virtual Audio Cable (HKLM\...\{83ed7f0e-2028-4956-b0b4-39c76fdaef1d}) (Version: 4.60 - Eugene V. Muzychenko)
Visual Studio Community 2017 (HKLM-x32\...\62e5a584) (Version: 15.9.28307.344 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.7.1 - VideoLAN)
vs_minshellmsi (HKLM-x32\...\{68B8AD33-CE97-4C3D-9583-669C39D21BA5}) (Version: 15.9.28302 - Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32\...\{B8B65A93-F72B-42C2-AE1A-FF440B44BB67}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.0.1.213 - ASUS Cloud Corporation)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
WinZip 17.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240DD}) (Version: 17.5.10562 - WinZip Computing, S.L. )

Packages:
=========
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1691.1.0_x86__kgqvnymyfvs32 [2020-02-03] (king.com)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.1.4081.0_x64__rz1tebttyb220 [2020-01-30] (Dolby Laboratories)
Hidden City: Hidden Object Adventure -> C:\Program Files\WindowsApps\828B5831.HiddenCityMysteryofShadows_1.33.3301.0_x86__ytsefhwckbdv6 [2020-02-06] (G5 Entertainment AB)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa [2020-01-30] (Apple Inc.) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.35.20273.0_x64__8wekyb3d8bbwe [2020-02-06] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-11] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-19] (Microsoft Corporation) [MS Ad]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-247741225-677518453-3872238061-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-11-29] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2019-04-18] (Florian Heidenreich) [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2013-07-31] (WinZip Computing -> WinZip Computing, S.L.)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-11-29] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2019-04-18] (Florian Heidenreich) [File not signed]
ContextMenuHandlers3: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2326} => C:\Program Files (x86)\Common Files\AWS\2.0.1.213\ASUSWSContextMenu.dll [2013-06-26] (ASUS Cloud Corporation -> ASUS Cloud Corporation)
ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2019-04-18] (Florian Heidenreich) [File not signed]
ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2013-07-31] (WinZip Computing -> WinZip Computing, S.L.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-11-29] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2013-07-31] (WinZip Computing -> WinZip Computing, S.L.)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [msacm.vorbis] => C:\Windows\system32\vorbis.acm [1562432 2016-11-02] (Image Line -> HMS hxxp://hp.vector.co.jp/authors/VA012897/) [File not signed]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsv64.dll [105984 2018-09-26] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [msacm.vorbis] => C:\Windows\SysWOW64\vorbis.acm [1456448 2016-11-02] (Image Line -> HMS hxxp://hp.vector.co.jp/authors/VA012897/) [File not signed]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [94208 2018-09-26] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2018-08-18 21:15 - 2014-04-24 23:03 - 000662016 ____R () [File not signed] C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMLib.dll
2018-08-18 21:15 - 2014-04-25 05:03 - 000147456 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AssistFunc.dll
2018-08-18 21:16 - 2014-05-25 22:24 - 004075008 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\dip4.dll
2018-08-18 21:16 - 2014-05-25 22:15 - 000711680 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4DIGIPowerControlAction.dll
2018-08-18 21:16 - 2014-05-25 22:15 - 000859136 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4EpuAction.dll
2018-08-18 21:16 - 2014-05-25 22:15 - 000801280 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4FanAction.dll
2018-08-18 21:16 - 2014-05-25 22:15 - 000807936 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4TurboVEVOAction.dll
2018-08-18 21:16 - 2014-05-25 22:15 - 000010240 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\IccHelper.dll
2018-08-18 21:16 - 2014-05-25 22:15 - 000743424 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\EPU.dll
2018-08-18 21:16 - 2014-05-25 22:15 - 000908288 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\FAN.dll
2018-08-18 21:16 - 2014-05-25 22:15 - 000010240 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\IccHelper.dll
2018-08-18 21:16 - 2014-05-25 22:15 - 000091648 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\Log4cxxWrapper.dll
2018-08-18 21:16 - 2014-02-25 15:53 - 001138176 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EasyUpdt.dll
2018-08-18 21:16 - 2014-03-27 18:32 - 005778096 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzULIB.dll
2018-08-18 21:16 - 2014-02-24 16:49 - 000208896 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\ImageHelper.dll
2018-08-18 21:15 - 2014-04-25 05:03 - 000208896 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\ImageHelper.dll
2018-08-18 21:15 - 2014-04-25 05:03 - 000091648 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Log4cxxWrapper.dll
2018-08-18 21:15 - 2014-04-25 05:03 - 000253952 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\pngio.dll
2018-08-18 21:16 - 2013-11-20 09:10 - 000662016 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\aaHMLib.dll
2018-08-18 21:16 - 2013-07-02 09:40 - 000253952 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\pngio.dll
2018-08-18 21:16 - 2014-04-10 14:23 - 000643584 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNoticeMiniMsg.dll
2018-08-18 21:16 - 2010-09-23 10:51 - 000114688 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\USB BIOS Flashback\AsIdxParser.dll
2018-08-18 21:16 - 2010-02-25 13:01 - 000139264 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\USB BIOS Flashback\Aszip.dll
2018-08-18 21:16 - 2012-01-19 08:39 - 000028672 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\USB BIOS Flashback\PEInfo.dll
2018-08-18 21:15 - 2014-04-25 05:03 - 000827392 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Version\Version.dll
2018-08-18 21:27 - 2014-01-21 19:34 - 000179712 _____ () [File not signed] C:\Program Files (x86)\ASUS\ASUS ROG Connect Plus\RC TweakIt Server\AsusService.dll
2018-08-18 21:27 - 2014-01-21 19:34 - 000470016 _____ () [File not signed] C:\Program Files (x86)\ASUS\ASUS ROG Connect Plus\RC TweakIt Server\IccHelper.dll
2018-08-18 21:18 - 2014-05-08 13:53 - 000253952 _____ () [File not signed] C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\pngio.dll
2018-08-18 21:24 - 2010-08-09 20:23 - 000175616 _____ () [File not signed] C:\Program Files (x86)\ASUS\KeyBot\AsusService.dll
2018-08-18 21:24 - 2012-02-02 20:26 - 000208896 _____ () [File not signed] C:\Program Files (x86)\ASUS\KeyBot\ImageHelper.dll
2018-08-18 21:24 - 2014-01-16 10:20 - 000462848 _____ () [File not signed] C:\Program Files (x86)\ASUS\KeyBot\Macro_HookKey.dll
2018-08-18 21:24 - 2013-09-03 09:49 - 000253952 _____ () [File not signed] C:\Program Files (x86)\ASUS\KeyBot\pngio.dll
2018-08-18 21:15 - 2014-04-29 10:17 - 000053248 ____R () [File not signed] C:\Program Files (x86)\ASUS\VGA COM\1.00.18\Exeio.dll
2018-08-18 21:15 - 2014-04-29 10:17 - 000278528 ____R () [File not signed] C:\Program Files (x86)\ASUS\VGA COM\1.00.18\Vender.dll
2014-06-12 14:46 - 2014-06-12 14:46 - 000134656 _____ () [File not signed] C:\Program Files\ASUS\HomeCloud\ServerConsole\ASUSWSHomeCloudAPI.dll
2014-03-11 02:51 - 2014-03-11 02:51 - 000065024 _____ () [File not signed] C:\Program Files\ASUS\HomeCloud\ServerConsole\AsWoWDLL.dll
2014-05-09 09:35 - 2014-05-09 09:35 - 000012800 _____ () [File not signed] C:\Program Files\ASUS\HomeCloud\ServerConsole\CWoWFuncInterface.dll
2014-05-27 11:09 - 2014-05-27 11:09 - 000018432 _____ () [File not signed] C:\Program Files\ASUS\HomeCloud\ServerConsole\IntelRemoteWakeAPI.dll
2020-02-02 22:08 - 2020-02-02 22:08 - 000355840 _____ () [File not signed] C:\Users\Jakub Pokora\AppData\Roaming\.minecraft\versions\1.15.2\natives\glfw.dll
2020-02-02 22:08 - 2020-02-02 22:08 - 000254464 _____ () [File not signed] C:\Users\Jakub Pokora\AppData\Roaming\.minecraft\versions\1.15.2\natives\jemalloc.dll
2020-02-02 22:08 - 2020-02-02 22:08 - 000449536 _____ () [File not signed] C:\Users\Jakub Pokora\AppData\Roaming\.minecraft\versions\1.15.2\natives\lwjgl.dll
2020-02-02 22:08 - 2020-02-02 22:08 - 000341504 _____ () [File not signed] C:\Users\Jakub Pokora\AppData\Roaming\.minecraft\versions\1.15.2\natives\lwjgl_opengl.dll
2020-02-02 22:08 - 2020-02-02 22:08 - 000500224 _____ () [File not signed] C:\Users\Jakub Pokora\AppData\Roaming\.minecraft\versions\1.15.2\natives\lwjgl_stb.dll
2020-02-02 22:08 - 2020-02-02 22:08 - 001096192 _____ () [File not signed] C:\Users\Jakub Pokora\AppData\Roaming\.minecraft\versions\1.15.2\natives\OpenAL.dll
2020-02-02 22:08 - 2020-02-02 22:08 - 000085504 _____ () [File not signed] C:\Users\Jakub Pokora\AppData\Roaming\.minecraft\versions\1.15.2\natives\SAPIWrapper_x64.dll
2018-08-18 21:15 - 2014-04-25 05:03 - 002109952 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\log4cxx.dll
2018-08-18 21:15 - 2014-04-24 23:03 - 000108544 ____R (ASUS) [File not signed] C:\Program Files (x86)\ASUS\AAHM\1.00.22\ASACPI.DLL
2018-08-18 21:15 - 2014-04-25 05:03 - 000108544 _____ (ASUS) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\ASACPI.DLL
2018-08-18 21:16 - 2014-05-25 22:15 - 000108544 _____ (ASUS) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\asacpi.dll
2018-08-18 21:16 - 2014-04-29 10:17 - 000108544 ____R (ASUS) [File not signed] C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.07\AsAcpi.dll
2018-08-18 20:51 - 2020-02-09 21:07 - 000040232 _____ (ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AXSP\1.02.00\PEbiosinterface32.dll
2018-08-18 21:15 - 2014-04-24 23:03 - 000677376 ____R (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AAHM\1.00.22\asacpiEx.dll
2018-08-18 21:15 - 2014-04-25 05:03 - 000676864 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\asacpiEx.dll
2018-08-18 21:15 - 2014-04-25 05:03 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AsMultiLang.dll
2018-08-18 21:16 - 2014-05-25 22:15 - 000676864 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\asacpiex.dll
2018-08-18 21:16 - 2014-05-25 22:15 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\AsMultiLang.dll
2018-08-18 21:16 - 2014-05-25 22:15 - 000676864 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\asacpiex.dll
2018-08-18 21:16 - 2013-11-20 09:10 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\AsMultiLang.dll
2018-08-18 21:16 - 2014-04-30 12:29 - 001325568 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotice.dll
2018-08-18 21:16 - 2013-08-29 14:30 - 001070080 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\System Information\SystemInfo.dll
2018-08-18 21:16 - 2010-03-08 16:11 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\AsMultiLang.dll
2018-08-18 21:16 - 2014-03-10 17:03 - 000897536 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\Express.dll
2018-08-18 21:16 - 2010-03-08 16:11 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\USB BIOS Flashback\AsMultiLang.dll
2018-08-18 21:16 - 2013-09-05 15:18 - 001004032 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\USB BIOS Flashback\BIOSFLK.dll
2018-08-18 21:16 - 2010-09-08 20:25 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\USB Charger+\AsMultiLang.dll
2018-08-18 21:16 - 2013-04-17 10:39 - 000883200 _____ (ASUSTek Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\USB Charger+\Charger.dll
2018-08-18 21:27 - 2014-01-21 19:34 - 000211456 _____ (ASUSTek Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\ASUS ROG Connect Plus\RC TweakIt Server\ACPIWMI.dll
2018-08-18 21:27 - 2014-01-21 19:34 - 000677376 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\ASUS ROG Connect Plus\RC TweakIt Server\asacpiex.dll
2018-08-18 21:16 - 2014-04-29 10:17 - 000676864 ____R (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.07\asacpiEx.dll
2018-08-18 21:18 - 2014-05-08 13:54 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\AsMultiLang.dll
2018-08-18 21:24 - 2013-09-03 09:49 - 000677888 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\KeyBot\asacpiex.dll
2018-08-18 21:24 - 2013-11-20 09:10 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\KeyBot\AsMultiLang.dll
2018-08-18 21:15 - 2014-04-29 10:17 - 000102400 ____R (ASUSTek Computer Inc.,) [File not signed] C:\Program Files (x86)\ASUS\VGA COM\1.00.18\EIO.DLL
2014-05-28 09:10 - 2014-05-28 09:10 - 000526336 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2014-05-28 09:10 - 2014-05-28 09:10 - 000296960 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
2020-02-09 21:25 - 2020-02-09 21:25 - 000245760 ____N (Java(TM) Native Access (JNA)) [File not signed] C:\Users\Jakub Pokora\AppData\Local\Temp\jna-1908889265\jna3047695170473368770.dll
2018-08-18 21:18 - 2014-05-08 13:54 - 000240640 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMS\DirectoryWatcher.dll
2018-08-18 21:15 - 2014-05-25 16:19 - 000201728 ____R (TODO: <Company name>) [File not signed] C:\Program Files (x86)\ASUS\VGA COM\1.00.18\AsusGpuTweak.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [476]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-247741225-677518453-3872238061-1001\Software\Classes\regfile: regedit.exe "%1" <==== ATTENTION

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-08-18 18:23 - 2018-08-18 18:22 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\Microsoft SQL Server\100\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\100\DTS\Binn\;C:\Program Files (x86)\Java\jre7\bin;;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-247741225-677518453-3872238061-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Jakub Pokora\Music\♚ℑℵℜ♚\KHEP 2020 DAYNE X JXK\KHEP cover.png
DNS Servers: 10.0.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "HomeClude Drive"
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\StartupApproved\Run: => "utweb"
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000000"
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-247741225-677518453-3872238061-1001\...\StartupApproved\Run: => "Spotify"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{343DF98D-B432-4BF5-90F4-CBD6C5E87C58}F:\hrdina\steamapps\common\hunt showdown\bin\win_x64\huntgame.exe] => (Allow) F:\hrdina\steamapps\common\hunt showdown\bin\win_x64\huntgame.exe (Crytek GmbH -> Crytek GmbH)
FirewallRules: [TCP Query User{69E1AE41-45FB-4D4C-AB85-28AEB2ECC2B3}F:\hrdina\steamapps\common\hunt showdown\bin\win_x64\huntgame.exe] => (Allow) F:\hrdina\steamapps\common\hunt showdown\bin\win_x64\huntgame.exe (Crytek GmbH -> Crytek GmbH)
FirewallRules: [{2FD9CC82-510B-40BB-B917-3C91436C1AF8}] => (Allow) F:\HRDINA\steamapps\common\Hunt Showdown\hunt.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{5D581DE1-F342-4343-AB6B-4EA63AFBF9DA}] => (Allow) F:\HRDINA\steamapps\common\Hunt Showdown\hunt.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [UDP Query User{17D73491-2836-4D5D-97DE-C2E406D16971}F:\hrdina\steamapps\common\hunt showdown (test server)\bin\win_x64\huntgame.exe] => (Allow) F:\hrdina\steamapps\common\hunt showdown (test server)\bin\win_x64\huntgame.exe (Crytek GmbH -> Crytek GmbH)
FirewallRules: [TCP Query User{94D9E0D5-EE8E-4D8B-88A9-6BC3F0801F39}F:\hrdina\steamapps\common\hunt showdown (test server)\bin\win_x64\huntgame.exe] => (Allow) F:\hrdina\steamapps\common\hunt showdown (test server)\bin\win_x64\huntgame.exe (Crytek GmbH -> Crytek GmbH)
FirewallRules: [{50B57D85-9B99-43AF-944F-10F9AF87253D}] => (Allow) F:\HRDINA\steamapps\common\Hunt Showdown (Test Server)\hunt.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{17D5A364-D070-4AA4-9F1B-89F7E84D176C}] => (Allow) F:\HRDINA\steamapps\common\Hunt Showdown (Test Server)\hunt.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [UDP Query User{03248493-8C9A-44D5-AA1E-2FE61CC8C3F3}C:\users\jakub pokora\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\users\jakub pokora\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe
FirewallRules: [TCP Query User{8A540687-F37F-489B-8255-A8726C292D7B}C:\users\jakub pokora\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\users\jakub pokora\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe
FirewallRules: [{8714A3C3-227C-4712-A07B-2AB5802BE568}] => (Allow) C:\Windows\system32\ftp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{58B482AB-E95D-4A9B-AF6B-D52E6E2FE49B}] => (Allow) C:\Windows\system32\ftp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{63BD8CAF-3C3A-4BEE-84D0-9D77564727CE}F:\valofeeu\combatarms\engine.exe] => (Allow) F:\valofeeu\combatarms\engine.exe (VALOFE) [File not signed]
FirewallRules: [TCP Query User{37709B15-BFF9-4BE6-B4D7-8459909C45DE}F:\valofeeu\combatarms\engine.exe] => (Allow) F:\valofeeu\combatarms\engine.exe (VALOFE) [File not signed]
FirewallRules: [UDP Query User{B16A179A-FB53-4987-87DC-457121A86E7A}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe
FirewallRules: [TCP Query User{A023A8A3-7ADA-4BC3-ABD7-74E42234335E}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe
FirewallRules: [UDP Query User{69022D45-636E-4E8F-9281-30AE6210255F}C:\users\jakub pokora\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\jakub pokora\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{BF881335-E581-417C-B6B6-32D715E2BF13}C:\users\jakub pokora\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\jakub pokora\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E85EE4FC-4C98-4654-AA3B-57A6C3C7F693}] => (Allow) F:\Assassin's Creed Unity\ACU.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{E8C12A55-1763-4C16-9F2E-1DF2EB24B2FF}] => (Allow) F:\Assassin's Creed Unity\ACU.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [UDP Query User{FA125ED4-036C-4B91-9CE2-45D7FF40BA36}E:\audacity\flko\fl.exe] => (Block) E:\audacity\flko\fl.exe (Image Line -> Image-Line) [File not signed]
FirewallRules: [TCP Query User{55AB7DEE-2989-4028-B742-C2EAC3DEB950}E:\audacity\flko\fl.exe] => (Block) E:\audacity\flko\fl.exe (Image Line -> Image-Line) [File not signed]
FirewallRules: [UDP Query User{1C860761-5BC4-4F3B-918D-73FEC89B1920}C:\program files\adobe\adobe premiere pro cc 2019\teamprojectslocalhub.exe] => (Block) C:\program files\adobe\adobe premiere pro cc 2019\teamprojectslocalhub.exe (Adobe Systems Incorporated -> Adobe)
FirewallRules: [TCP Query User{A9EB738B-8318-45C2-A0ED-33A38FE45251}C:\program files\adobe\adobe premiere pro cc 2019\teamprojectslocalhub.exe] => (Block) C:\program files\adobe\adobe premiere pro cc 2019\teamprojectslocalhub.exe (Adobe Systems Incorporated -> Adobe)
FirewallRules: [{06421D35-537E-4A67-B439-115D8022A259}] => (Allow) E:\Tom Clancy's Rainbow Six Siege\RainbowSix.exe No File
FirewallRules: [{5D62BDF1-014A-4ADE-8179-44BD56166408}] => (Allow) E:\Tom Clancy's Rainbow Six Siege\RainbowSix.exe No File
FirewallRules: [{58ABBD34-D7DE-4EB2-9D44-E122A9836BD7}] => (Allow) E:\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe No File
FirewallRules: [{72B6504E-8E85-4294-BF40-7FF50E1D6187}] => (Allow) E:\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe No File
FirewallRules: [{1C217C1B-4407-477A-A727-780274DA2B66}] => (Allow) E:\csklo\steamapps\common\wallpaper_engine\launcher.exe (Kristjan Skutta -> )
FirewallRules: [{027B0B65-500A-407F-BEF4-D28B638EF314}] => (Allow) E:\csklo\steamapps\common\wallpaper_engine\launcher.exe (Kristjan Skutta -> )
FirewallRules: [{DE9CF19D-79EE-4CCA-809C-D3072C7CC986}] => (Allow) E:\csklo\steamapps\common\Brawlhalla\Brawlhalla.exe No File
FirewallRules: [{6030A5C5-2B05-4093-AD3A-9BC7FFD5BC7A}] => (Allow) E:\csklo\steamapps\common\Brawlhalla\Brawlhalla.exe No File
FirewallRules: [UDP Query User{57073F4D-0FA8-4DBE-BCAD-55BE54585B5C}C:\users\jakub pokora\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jakub pokora\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{D04C1EB1-0FFD-4057-8D37-1E231E048E0F}C:\users\jakub pokora\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jakub pokora\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7712C1B8-46AA-401C-91DB-814396FB9F24}] => (Allow) C:\Windows\system32\ftp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{71B7CC52-84E7-4233-A744-1A91A737C5B2}] => (Allow) C:\ProgramData\VALOFEEU\NGM\NGM.exe (valofe Co.,Ltd. -> Nexon)
FirewallRules: [{2DE6E688-8D90-493F-BB08-2482C6A03E63}] => (Allow) C:\ProgramData\VALOFEEU\NGM\NGM.exe (valofe Co.,Ltd. -> Nexon)
FirewallRules: [{F5AD45EB-81AD-472D-AD29-A7EBADBCF80D}] => (Allow) C:\VALOFEEU\CombatArms\NMService.exe No File
FirewallRules: [{A0D0354F-99D7-482C-8DD6-FBA9CB6A792E}] => (Allow) C:\VALOFEEU\CombatArms\NMService.exe No File
FirewallRules: [{1D6B488F-A5A2-40F5-8031-58E564F858F9}] => (Allow) F:\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{2C461514-A163-4C1E-87EB-3D91878F8E53}] => (Allow) F:\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{16BF793F-2683-489C-9B67-05EC08F2568D}] => (Allow) C:\Windows\system32\ftp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{01308A4B-9872-4AE4-8487-C30CE8DEE567}] => (Allow) E:\Steep\steep.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{090C439F-14EE-47D3-A4AE-7B3B37B97013}] => (Allow) E:\csklo\steamapps\common\Spore\SporeBin\SporeApp.exe (Maxis, a division of Electronic Arts Inc.) [File not signed]
FirewallRules: [{7033AC4B-80CD-438D-8CFD-CA2B149046EC}] => (Allow) E:\csklo\steamapps\common\Spore\SporeBin\SporeApp.exe (Maxis, a division of Electronic Arts Inc.) [File not signed]
FirewallRules: [UDP Query User{DF905106-A0FE-42BB-98A3-A4B9F7260858}E:\aputil.exe] => (Allow) E:\aputil.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{AB49F72B-A3D4-4050-B8DA-78434F12C657}E:\aputil.exe] => (Allow) E:\aputil.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{29055110-57EB-4319-99B2-DEC2C484783B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{43B56B19-5A14-4104-8269-070F02D61B79}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2BD2806B-4E01-470A-BBFB-53939B199CC5}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{176FF690-0110-419F-8BA1-8966B6041BDB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{28E0BE25-2414-448C-AC5A-B11FC5A78DD3}] => (Allow) E:\APAgent.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [UDP Query User{0B93CF6C-CB10-448B-BF0B-EE97C5D2D222}C:\program files\acoustica mixcraft 7\mixcraft7.exe] => (Allow) C:\program files\acoustica mixcraft 7\mixcraft7.exe No File
FirewallRules: [TCP Query User{AF6652AE-3BE9-46D1-BC6E-D4464CB8E323}C:\program files\acoustica mixcraft 7\mixcraft7.exe] => (Allow) C:\program files\acoustica mixcraft 7\mixcraft7.exe No File
FirewallRules: [UDP Query User{48E544C2-E581-43B7-8D2C-134F7251D37E}C:\hry\metro 2033 - redux\metro.exe] => (Allow) C:\hry\metro 2033 - redux\metro.exe No File
FirewallRules: [TCP Query User{A33D2499-B855-44E3-A602-823A299951E4}C:\hry\metro 2033 - redux\metro.exe] => (Allow) C:\hry\metro 2033 - redux\metro.exe No File
FirewallRules: [UDP Query User{9CFA0588-44E3-43A1-9BB6-1A321873BBFA}E:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) E:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{CB25C3ED-D2CA-4BD4-8D4B-E854428CA791}E:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) E:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{B9B7279D-930F-42A4-9D2A-F2EC164FCB50}E:\audacity\flko\fl64.exe] => (Allow) E:\audacity\flko\fl64.exe (Image Line -> Image-Line) [File not signed]
FirewallRules: [TCP Query User{3006C165-5A66-4BCA-84B0-7A15FCB3E79D}E:\audacity\flko\fl64.exe] => (Allow) E:\audacity\flko\fl64.exe (Image Line -> Image-Line) [File not signed]
FirewallRules: [{E88C4664-6E78-48D1-AD42-C292A7EC7681}] => (Allow) C:\Windows\system32\ftp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{87A0DB53-064C-4FE7-BDAB-DAC4193CB2B5}C:\users\jakub pokora\appdata\roaming\utorrent web\utweb.exe] => (Block) C:\users\jakub pokora\appdata\roaming\utorrent web\utweb.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{BA9C31DE-DB67-47BD-ACAA-A1FCF8D29F4E}C:\users\jakub pokora\appdata\roaming\utorrent web\utweb.exe] => (Block) C:\users\jakub pokora\appdata\roaming\utorrent web\utweb.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{F2D61C82-8D90-4BBC-898E-04D94E47FA20}] => (Allow) E:\csklo\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{0C66AC95-F179-450F-9D4B-DD4140F20E45}] => (Allow) E:\csklo\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [UDP Query User{C085B97C-F157-4B07-A1ED-25E186CA3BF9}E:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) E:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{F11698E6-3F01-42E4-9B78-BC00C91D53EB}E:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) E:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{2C6EEFAB-48A1-432C-A4E1-33E0D6AB6992}] => (Block) C:\valofeeu\combatarms\engine.exe No File
FirewallRules: [{E67F3F0A-1E66-4293-804E-9F5078AE4B42}] => (Block) C:\valofeeu\combatarms\engine.exe No File
FirewallRules: [UDP Query User{339B1432-694F-48B0-9817-E9C98C17858A}C:\valofeeu\combatarms\engine.exe] => (Allow) C:\valofeeu\combatarms\engine.exe No File
FirewallRules: [TCP Query User{9ED259BC-03EC-4533-B4DE-BC0326E1FEB1}C:\valofeeu\combatarms\engine.exe] => (Allow) C:\valofeeu\combatarms\engine.exe No File
FirewallRules: [{51CBF991-5AE7-4187-B82C-7A007EE255B0}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{33DC39E9-6DF4-436F-898C-CDECBF1BB121}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{CD5DB1F1-FF31-4C0B-85B5-695511166615}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{E8C02E08-9ACB-41A6-93B2-2D9C4EBBB4C9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{3DFD3F11-291C-4ADA-879C-380FEC41B52C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{7B9959B8-4907-43A6-B34F-8B676D2CB745}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{77E5D5F9-2B6F-48DD-A364-C94B37560CBE}] => (Allow) C:\VALOFEEU\CombatArms\NMService.exe No File
FirewallRules: [{2DD4C774-3BEB-4155-914E-B776A859F23C}] => (Allow) C:\VALOFEEU\CombatArms\NMService.exe No File
FirewallRules: [{48C0D39C-4489-44F9-B8C3-244917BFF767}] => (Allow) C:\ProgramData\VALOFEEU\NGM\NGM.exe (valofe Co.,Ltd. -> Nexon)
FirewallRules: [{403E5176-A983-4DEA-944E-F3D05AB26AB8}] => (Allow) C:\ProgramData\VALOFEEU\NGM\NGM.exe (valofe Co.,Ltd. -> Nexon)
FirewallRules: [{555C24B9-F1A5-4E73-85CE-6E49A4CE2724}] => (Block) C:\program files (x86)\java\jre1.8.0_181\bin\javaw.exe
FirewallRules: [{BE5BD3B4-82B5-4F03-BD2C-0C9A49766E9F}] => (Block) C:\program files (x86)\java\jre1.8.0_181\bin\javaw.exe
FirewallRules: [UDP Query User{E73DA36C-75C1-4459-86B8-6099DC82F758}C:\program files (x86)\java\jre1.8.0_181\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_181\bin\javaw.exe
FirewallRules: [TCP Query User{3B581F21-0F2E-4022-AA85-867B44509183}C:\program files (x86)\java\jre1.8.0_181\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_181\bin\javaw.exe
FirewallRules: [{8E39E543-09BB-43E0-92BA-9689C1FFF302}] => (Block) C:\users\jakub pokora\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{666DBF39-F76A-43BE-94CF-2769A914ED47}] => (Block) C:\users\jakub pokora\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{A06D7414-2D46-4EEC-AD28-0DFE4CB4DC35}C:\users\jakub pokora\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\jakub pokora\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{FC4B76C1-1E2A-450A-B784-9E698404F8DE}C:\users\jakub pokora\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\jakub pokora\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{D0509248-32E8-4635-8270-416791B8EB87}] => (Allow) C:\Users\Jakub Pokora\AppData\Roaming\uTorrent Web\utweb.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{35BE5633-E0EF-44D3-937C-535BEB864AC5}] => (Allow) C:\Users\Jakub Pokora\AppData\Roaming\uTorrent Web\utweb.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{2EDE5A07-B8B7-4807-8B3E-A0C95F0D25C7}] => (Allow) C:\Windows\system32\ftp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{A0633858-A3FB-48CC-87C3-E8D7C94A6585}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{233321AF-CE8D-4341-AAF4-E4326A370C0B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{B11C5DA4-291C-43D3-925D-7E2FCDBF9969}E:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) E:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{9ED70933-3EB2-411D-B892-259251B1344C}E:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) E:\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{875A0BDE-0809-40C2-92A1-4BB267624997}E:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) E:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{B47A53B5-5DB0-4522-9D9B-A6FFD993B923}E:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) E:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{0F81D133-7627-4680-90A3-D3049E4E653C}E:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) E:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{394FAC0D-F8D7-42FC-AB15-C9CC0C899746}E:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) E:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{3F31A16A-ACDC-4BE4-9EB7-BFC3BB0DD682}] => (Allow) C:\Windows\SysWOW64\ftp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{5CD6004B-B3AF-492C-A5C8-809A108CC1AE}] => (Allow) C:\Windows\SysWOW64\ftp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{79CC904C-165F-47FE-8CE1-04534AAFB3B4}] => (Allow) C:\Windows\system32\ftp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{C6F4FB3E-ADB7-45A3-9A02-27367837CB7B}] => (Allow) C:\Windows\system32\ftp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{3E83BFFC-2635-48EB-B623-FDB5B95EC745}] => (Allow) C:\Program Files\ASUS\HomeCloud\ServerConsole\ASUS HomeCloud.exe (ASUS Cloud Corporation -> )
FirewallRules: [{DAFCE239-249B-4002-889B-E6A9E54C878D}] => (Allow) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.SQLEXPRESS\MSSQL\Binn\sqlservr.exe No File
FirewallRules: [{2D192588-8E6C-4C49-B86F-D97593587D12}] => (Allow) C:\Program Files\ASUS\HomeCloud\Tomcat\Tomcat_OmniStore\bin\tomcat6.exe (Apache Software Foundation) [File not signed]
FirewallRules: [{501415FF-E500-4243-8C76-A3F5666F2358}] => (Allow) C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\MediaStreamer.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
FirewallRules: [{D0E9FFB3-AC6B-4C14-AC24-F056EEBA7A32}] => (Allow) C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\MediaStreamer.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
FirewallRules: [{DF6B9670-27DC-4648-9C22-F4DC3C8A8FAD}] => (Allow) C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\AMSRelayHelpAgent.exe () [File not signed]
FirewallRules: [{8B576FB6-2A9B-45E3-B3DB-6F7E8A3F63B3}] => (Allow) C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\AMSRelayHelpAgent.exe () [File not signed]
FirewallRules: [{5EBFE4ED-342B-4DE8-9DED-EA341455E1FC}] => (Allow) C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMS\AORelayDMS.exe () [File not signed]
FirewallRules: [{0647A1DA-4574-4E84-B2F4-98E4E04522DB}] => (Allow) C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMS\AORelayDMS.exe () [File not signed]
FirewallRules: [{B6038252-78D5-4886-A00E-C729C5445A2C}] => (Allow) C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMS\AODMS.exe () [File not signed]
FirewallRules: [{A786A44F-7F6A-4BD4-BFEF-2887EA6F40EB}] => (Allow) C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMS\AODMS.exe () [File not signed]
FirewallRules: [{C923D5A6-32B9-4847-B4F1-EBD60A5357EB}] => (Allow) C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMR\AODMR.exe () [File not signed]
FirewallRules: [{E432ACDF-944A-47DB-890C-F2F4810A52B7}] => (Allow) C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMR\AODMR.exe () [File not signed]
FirewallRules: [{A439D98F-5FD2-444D-8D41-1432E289679B}] => (Allow) C:\WINDOWS\system32\ftp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{63D28170-648E-472B-AA09-30C2AA707D1F}C:\program files (x86)\vietcong\vcded.exe] => (Allow) C:\program files (x86)\vietcong\vcded.exe () [File not signed]
FirewallRules: [UDP Query User{341374CA-40F7-4BA9-BAF5-2685F9164315}C:\program files (x86)\vietcong\vcded.exe] => (Allow) C:\program files (x86)\vietcong\vcded.exe () [File not signed]
FirewallRules: [TCP Query User{F5B66F6A-72AF-4D4B-ADB4-6703ABE9B383}C:\windows\syswow64\dpnsvr.exe] => (Allow) C:\windows\syswow64\dpnsvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{6E8F7488-0CAD-4255-B840-8CEF96F28CFE}C:\windows\syswow64\dpnsvr.exe] => (Allow) C:\windows\syswow64\dpnsvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{1065B0C0-7E76-4207-8DD0-35C605AF29D1}C:\program files (x86)\vietcong\vietcong.exe] => (Block) C:\program files (x86)\vietcong\vietcong.exe () [File not signed]
FirewallRules: [UDP Query User{3AE08624-F04E-4049-A4B5-5EFCBEBEFC63}C:\program files (x86)\vietcong\vietcong.exe] => (Block) C:\program files (x86)\vietcong\vietcong.exe () [File not signed]
FirewallRules: [{E43A0A26-31BD-47E5-8127-88C1009DE30D}] => (Allow) F:\HRDINA\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{0B3A6AFF-6E57-4394-B495-2CAE014F127D}] => (Allow) F:\HRDINA\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{9D97DDFB-88DD-42E8-89C3-CA01CC8BCB84}] => (Allow) C:\WINDOWS\system32\ftp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{9EE16258-D253-43F1-AAE2-C38C358F7CCB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{66F3C21D-2C17-490F-B36A-AA5E1E9FC7EB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4C8A426F-0AEE-401A-AF45-A06EE76CB8EE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A704A784-D99C-45CE-8BCC-834AAB1FEC95}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{3AB121E9-7304-4742-BF21-C886A3EE0B27}] => (Allow) E:\csklo\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{4F24A399-8690-4B08-9398-3411B9B38579}] => (Allow) E:\csklo\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{C843CB15-EC39-45FF-8989-1A6EFC984121}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{84069651-6D70-44C3-A230-45F51E3D01FB}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{52F9CEF2-3C42-4FA9-99F0-72D263CC6586}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{8DE2B894-EA8A-4166-9060-C0602BF957E4}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{75E3D7D9-5D5D-409C-99A2-C42A1037BD9C}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{68971603-3E01-40E9-866E-85138E96CF6B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{FD296E55-0159-434B-8D68-7C019D970E10}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F86B5525-11DA-4FBE-A85C-74CBAC59BFEA}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6C51B97F-FC1B-48D8-B4FA-4ADBD97E2E53}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12104.2.43056.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B27A1ED1-82D9-4454-BDF2-D828FA4E517F}] => (Allow) C:\WINDOWS\system32\ftp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{5D68DC50-B551-43BD-B9F5-E331B87A7FC0}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
FirewallRules: [{B4E6239A-9D26-4CA9-96C2-E7AFA3C1338E}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)

==================== Restore Points =========================

02-02-2020 17:41:29 Naplánovaný kontrolní bod
08-02-2020 12:57:12 Odstraněno Call of Juarez

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (02/09/2020 09:57:02 PM) (Source: nssm) (EventID: 1010) (User: )
Description: Failed to start service WMS. Program C:\Windows\wmu3\wlanext.exe couldn't be launched.
CreateProcess() failed:
Systém nemůže nalézt uvedený soubor.

Error: (02/09/2020 09:56:02 PM) (Source: nssm) (EventID: 1010) (User: )
Description: Failed to start service WMS. Program C:\Windows\wmu3\wlanext.exe couldn't be launched.
CreateProcess() failed:
Systém nemůže nalézt uvedený soubor.

Error: (02/09/2020 09:55:02 PM) (Source: nssm) (EventID: 1010) (User: )
Description: Failed to start service WMS. Program C:\Windows\wmu3\wlanext.exe couldn't be launched.
CreateProcess() failed:
Systém nemůže nalézt uvedený soubor.

Error: (02/09/2020 09:54:02 PM) (Source: nssm) (EventID: 1010) (User: )
Description: Failed to start service WMS. Program C:\Windows\wmu3\wlanext.exe couldn't be launched.
CreateProcess() failed:
Systém nemůže nalézt uvedený soubor.

Error: (02/09/2020 09:53:02 PM) (Source: nssm) (EventID: 1010) (User: )
Description: Failed to start service WMS. Program C:\Windows\wmu3\wlanext.exe couldn't be launched.
CreateProcess() failed:
Systém nemůže nalézt uvedený soubor.

Error: (02/09/2020 09:52:02 PM) (Source: nssm) (EventID: 1010) (User: )
Description: Failed to start service WMS. Program C:\Windows\wmu3\wlanext.exe couldn't be launched.
CreateProcess() failed:
Systém nemůže nalézt uvedený soubor.

Error: (02/09/2020 09:51:02 PM) (Source: nssm) (EventID: 1010) (User: )
Description: Failed to start service WMS. Program C:\Windows\wmu3\wlanext.exe couldn't be launched.
CreateProcess() failed:
Systém nemůže nalézt uvedený soubor.

Error: (02/09/2020 09:50:02 PM) (Source: nssm) (EventID: 1010) (User: )
Description: Failed to start service WMS. Program C:\Windows\wmu3\wlanext.exe couldn't be launched.
CreateProcess() failed:
Systém nemůže nalézt uvedený soubor.


System errors:
=============
Error: (02/09/2020 09:57:02 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba WMIs byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (02/09/2020 09:57:02 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba WMIs skončila s následující chybou specifickou pro službu:
Systém nemůže nalézt uvedenou cestu.

Error: (02/09/2020 09:56:02 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba WMIs byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (02/09/2020 09:56:02 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba WMIs skončila s následující chybou specifickou pro službu:
Systém nemůže nalézt uvedenou cestu.

Error: (02/09/2020 09:55:02 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba WMIs byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (02/09/2020 09:55:02 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba WMIs skončila s následující chybou specifickou pro službu:
Systém nemůže nalézt uvedenou cestu.

Error: (02/09/2020 09:54:02 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba WMIs byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (02/09/2020 09:54:02 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba WMIs skončila s následující chybou specifickou pro službu:
Systém nemůže nalézt uvedenou cestu.


Windows Defender:
===================================
Date: 2020-02-06 22:59:34.502
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {11C22D7F-907E-42D6-86D9-FC39CD75B92F}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-02-03 23:50:59.352
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {29C78F03-C5E5-4F81-97C5-CDCC3D739F18}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-01-31 22:50:33.714
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Wacatac.D!ml
ID: 2147749373
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\Jakub Pokora\Downloads\aL50SO.exe; webfile:_C:\Users\Jakub Pokora\Downloads\aL50SO.exe|https://novihacks.com/api/get-build|pid ... 1906821919
Původ detekce: Internet
Typ detekce: FastPath
Zdroj detekce: Soubory ke stažení a přílohy
Uživatel: DESKTOP-PATU4U0\Jakub Pokora
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.309.105.0, AS: 1.309.105.0, NIS: 1.309.105.0
Verze modulu: AM: 1.1.16700.3, NIS: 1.1.16700.3

Date: 2020-01-31 22:50:11.794
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Wacatac.D!ml
ID: 2147749373
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\Jakub Pokora\Downloads\aL50SO.exe; webfile:_C:\Users\Jakub Pokora\Downloads\aL50SO.exe|https://novihacks.com/api/get-build|pid ... 1906821919
Původ detekce: Internet
Typ detekce: FastPath
Zdroj detekce: Soubory ke stažení a přílohy
Uživatel: DESKTOP-PATU4U0\Jakub Pokora
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.309.105.0, AS: 1.309.105.0, NIS: 1.309.105.0
Verze modulu: AM: 1.1.16700.3, NIS: 1.1.16700.3

Date: 2020-01-29 18:43:18.064
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {266896FD-C2FE-433C-8A21-00D2EE3E5F2A}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-01-28 19:19:41.966
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.307.3109.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16600.7
Kód chyby: 0x80072ee2
Popis chyby: Operace nebyla v požadované době dokončena.

Date: 2020-01-17 16:38:48.011
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.307.2432.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16600.7
Kód chyby: 0x80240016
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2020-01-14 18:20:20.834
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.307.2269.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16600.7
Kód chyby: 0x80072ee2
Popis chyby: Operace nebyla v požadované době dokončena.

CodeIntegrity:
===================================

Date: 2020-02-09 21:09:06.680
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-02-09 21:09:06.671
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-02-09 21:07:25.595
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-02-09 16:10:53.499
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-02-09 16:10:53.490
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-02-09 16:09:12.887
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-02-09 15:54:12.498
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-02-09 15:54:10.856
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. 3003 10/28/2015
Motherboard: ASUSTeK COMPUTER INC. MAXIMUS VII RANGER
Processor: Intel(R) Core(TM) i5-4690K CPU @ 3.50GHz
Percentage of memory in use: 87%
Total physical RAM: 4038.94 MB
Available physical RAM: 501.35 MB
Total Virtual: 11974.94 MB
Available Virtual: 2811.79 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:237.52 GB) (Free:71.17 GB) NTFS
Drive d: (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.08 GB) NTFS
Drive e: () (Fixed) (Total:298.09 GB) (Free:52.42 GB) NTFS
Drive f: () (Fixed) (Total:465.22 GB) (Free:117.26 GB) NTFS

\\?\Volume{128d971b-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS
\\?\Volume{128d971b-0000-0000-0000-60803b000000}\ () (Fixed) (Total:0.47 GB) (Free:0.04 GB) NTFS
\\?\Volume{fa71a625-0000-0000-0000-905474000000}\ () (Fixed) (Total:0.44 GB) (Free:0.09 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 238.5 GB) (Disk ID: 128D971B)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=237.5 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=478 MB) - (Type=27)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: FA71A625)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: EDE4EDE4)
Partition 1: (Not Active) - (Size=298.1 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Re: Zasekaný pc

Napsal: 09 úno 2020 22:33
od Rudy
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [476]
FirewallRules: [{06421D35-537E-4A67-B439-115D8022A259}] => (Allow) E:\Tom Clancy's Rainbow Six Siege\RainbowSix.exe No File
FirewallRules: [{5D62BDF1-014A-4ADE-8179-44BD56166408}] => (Allow) E:\Tom Clancy's Rainbow Six Siege\RainbowSix.exe No File
FirewallRules: [{58ABBD34-D7DE-4EB2-9D44-E122A9836BD7}] => (Allow) E:\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe No File
FirewallRules: [{72B6504E-8E85-4294-BF40-7FF50E1D6187}] => (Allow) E:\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe No File
FirewallRules: [{F5AD45EB-81AD-472D-AD29-A7EBADBCF80D}] => (Allow) C:\VALOFEEU\CombatArms\NMService.exe No File
FirewallRules: [{A0D0354F-99D7-482C-8DD6-FBA9CB6A792E}] => (Allow) C:\VALOFEEU\CombatArms\NMService.exe No File
FirewallRules: [UDP Query User{0B93CF6C-CB10-448B-BF0B-EE97C5D2D222}C:\program files\acoustica mixcraft 7\mixcraft7.exe] => (Allow) C:\program files\acoustica mixcraft 7\mixcraft7.exe No File
FirewallRules: [TCP Query User{AF6652AE-3BE9-46D1-BC6E-D4464CB8E323}C:\program files\acoustica mixcraft 7\mixcraft7.exe] => (Allow) C:\program files\acoustica mixcraft 7\mixcraft7.exe No File
FirewallRules: [UDP Query User{48E544C2-E581-43B7-8D2C-134F7251D37E}C:\hry\metro 2033 - redux\metro.exe] => (Allow) C:\hry\metro 2033 - redux\metro.exe No File
FirewallRules: [TCP Query User{A33D2499-B855-44E3-A602-823A299951E4}C:\hry\metro 2033 - redux\metro.exe] => (Allow) C:\hry\metro 2033 - redux\metro.exe No File
FirewallRules: [{2C6EEFAB-48A1-432C-A4E1-33E0D6AB6992}] => (Block) C:\valofeeu\combatarms\engine.exe No File
FirewallRules: [{E67F3F0A-1E66-4293-804E-9F5078AE4B42}] => (Block) C:\valofeeu\combatarms\engine.exe No File
FirewallRules: [UDP Query User{339B1432-694F-48B0-9817-E9C98C17858A}C:\valofeeu\combatarms\engine.exe] => (Allow) C:\valofeeu\combatarms\engine.exe No File
FirewallRules: [TCP Query User{9ED259BC-03EC-4533-B4DE-BC0326E1FEB1}C:\valofeeu\combatarms\engine.exe] => (Allow) C:\valofeeu\combatarms\engine.exe No File
FirewallRules: [{CD5DB1F1-FF31-4C0B-85B5-695511166615}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{E8C02E08-9ACB-41A6-93B2-2D9C4EBBB4C9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{77E5D5F9-2B6F-48DD-A364-C94B37560CBE}] => (Allow) C:\VALOFEEU\CombatArms\NMService.exe No File
FirewallRules: [{2DD4C774-3BEB-4155-914E-B776A859F23C}] => (Allow) C:\VALOFEEU\CombatArms\NMService.exe No File
FirewallRules: [{DAFCE239-249B-4002-889B-E6A9E54C878D}] => (Allow) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.SQLEXPRESS\MSSQL\Binn\sqlservr.exe No File
C:\Users\Jakub Pokora\Downloads\aL50SO.exe
C:\Program Files\Bonjour
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {50971892-9792-48C4-BBC4-F5082437D774} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-19] (Google Inc -> Google Inc.)
Task: {EEE8F5ED-4843-47F2-A1C4-B10F5F6347DE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-19] (Google Inc -> Google Inc.)
U3 aswbdisk; no ImagePath
U3 aswRdr; no ImagePath
U3 aswStm; no ImagePath
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End
Uložte do C:\Users\Jakub Pokora\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Zasekaný pc

Napsal: 09 úno 2020 23:23
od JakubPokora
FIXLOG

Fix result of Farbar Recovery Scan Tool (x64) Version: 02-02-2020 02
Ran by Jakub Pokora (09-02-2020 23:20:43) Run:1
Running from C:\Users\Jakub Pokora\Desktop
Loaded Profiles: Jakub Pokora (Available Profiles: Jakub Pokora)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [476]
FirewallRules: [{06421D35-537E-4A67-B439-115D8022A259}] => (Allow) E:\Tom Clancy's Rainbow Six Siege\RainbowSix.exe No File
FirewallRules: [{5D62BDF1-014A-4ADE-8179-44BD56166408}] => (Allow) E:\Tom Clancy's Rainbow Six Siege\RainbowSix.exe No File
FirewallRules: [{58ABBD34-D7DE-4EB2-9D44-E122A9836BD7}] => (Allow) E:\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe No File
FirewallRules: [{72B6504E-8E85-4294-BF40-7FF50E1D6187}] => (Allow) E:\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe No File
FirewallRules: [{F5AD45EB-81AD-472D-AD29-A7EBADBCF80D}] => (Allow) C:\VALOFEEU\CombatArms\NMService.exe No File
FirewallRules: [{A0D0354F-99D7-482C-8DD6-FBA9CB6A792E}] => (Allow) C:\VALOFEEU\CombatArms\NMService.exe No File
FirewallRules: [UDP Query User{0B93CF6C-CB10-448B-BF0B-EE97C5D2D222}C:\program files\acoustica mixcraft 7\mixcraft7.exe] => (Allow) C:\program files\acoustica mixcraft 7\mixcraft7.exe No File
FirewallRules: [TCP Query User{AF6652AE-3BE9-46D1-BC6E-D4464CB8E323}C:\program files\acoustica mixcraft 7\mixcraft7.exe] => (Allow) C:\program files\acoustica mixcraft 7\mixcraft7.exe No File
FirewallRules: [UDP Query User{48E544C2-E581-43B7-8D2C-134F7251D37E}C:\hry\metro 2033 - redux\metro.exe] => (Allow) C:\hry\metro 2033 - redux\metro.exe No File
FirewallRules: [TCP Query User{A33D2499-B855-44E3-A602-823A299951E4}C:\hry\metro 2033 - redux\metro.exe] => (Allow) C:\hry\metro 2033 - redux\metro.exe No File
FirewallRules: [{2C6EEFAB-48A1-432C-A4E1-33E0D6AB6992}] => (Block) C:\valofeeu\combatarms\engine.exe No File
FirewallRules: [{E67F3F0A-1E66-4293-804E-9F5078AE4B42}] => (Block) C:\valofeeu\combatarms\engine.exe No File
FirewallRules: [UDP Query User{339B1432-694F-48B0-9817-E9C98C17858A}C:\valofeeu\combatarms\engine.exe] => (Allow) C:\valofeeu\combatarms\engine.exe No File
FirewallRules: [TCP Query User{9ED259BC-03EC-4533-B4DE-BC0326E1FEB1}C:\valofeeu\combatarms\engine.exe] => (Allow) C:\valofeeu\combatarms\engine.exe No File
FirewallRules: [{CD5DB1F1-FF31-4C0B-85B5-695511166615}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{E8C02E08-9ACB-41A6-93B2-2D9C4EBBB4C9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{77E5D5F9-2B6F-48DD-A364-C94B37560CBE}] => (Allow) C:\VALOFEEU\CombatArms\NMService.exe No File
FirewallRules: [{2DD4C774-3BEB-4155-914E-B776A859F23C}] => (Allow) C:\VALOFEEU\CombatArms\NMService.exe No File
FirewallRules: [{DAFCE239-249B-4002-889B-E6A9E54C878D}] => (Allow) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.SQLEXPRESS\MSSQL\Binn\sqlservr.exe No File
C:\Users\Jakub Pokora\Downloads\aL50SO.exe
C:\Program Files\Bonjour
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {50971892-9792-48C4-BBC4-F5082437D774} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-19] (Google Inc -> Google Inc.)
Task: {EEE8F5ED-4843-47F2-A1C4-B10F5F6347DE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-08-19] (Google Inc -> Google Inc.)
U3 aswbdisk; no ImagePath
U3 aswRdr; no ImagePath
U3 aswStm; no ImagePath
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg => removed successfully
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{06421D35-537E-4A67-B439-115D8022A259}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5D62BDF1-014A-4ADE-8179-44BD56166408}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{58ABBD34-D7DE-4EB2-9D44-E122A9836BD7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{72B6504E-8E85-4294-BF40-7FF50E1D6187}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F5AD45EB-81AD-472D-AD29-A7EBADBCF80D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A0D0354F-99D7-482C-8DD6-FBA9CB6A792E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{0B93CF6C-CB10-448B-BF0B-EE97C5D2D222}C:\program files\acoustica mixcraft 7\mixcraft7.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{AF6652AE-3BE9-46D1-BC6E-D4464CB8E323}C:\program files\acoustica mixcraft 7\mixcraft7.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{48E544C2-E581-43B7-8D2C-134F7251D37E}C:\hry\metro 2033 - redux\metro.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{A33D2499-B855-44E3-A602-823A299951E4}C:\hry\metro 2033 - redux\metro.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2C6EEFAB-48A1-432C-A4E1-33E0D6AB6992}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E67F3F0A-1E66-4293-804E-9F5078AE4B42}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{339B1432-694F-48B0-9817-E9C98C17858A}C:\valofeeu\combatarms\engine.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{9ED259BC-03EC-4533-B4DE-BC0326E1FEB1}C:\valofeeu\combatarms\engine.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CD5DB1F1-FF31-4C0B-85B5-695511166615}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E8C02E08-9ACB-41A6-93B2-2D9C4EBBB4C9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{77E5D5F9-2B6F-48DD-A364-C94B37560CBE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2DD4C774-3BEB-4155-914E-B776A859F23C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DAFCE239-249B-4002-889B-E6A9E54C878D}" => removed successfully
"C:\Users\Jakub Pokora\Downloads\aL50SO.exe" => not found
C:\Program Files\Bonjour => moved successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{50971892-9792-48C4-BBC4-F5082437D774}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{50971892-9792-48C4-BBC4-F5082437D774}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{EEE8F5ED-4843-47F2-A1C4-B10F5F6347DE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EEE8F5ED-4843-47F2-A1C4-B10F5F6347DE}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
HKLM\System\CurrentControlSet\Services\aswbdisk => removed successfully
aswbdisk => service removed successfully
HKLM\System\CurrentControlSet\Services\aswRdr => removed successfully
aswRdr => service removed successfully
HKLM\System\CurrentControlSet\Services\aswStm => removed successfully
aswStm => service removed successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found

=========== EmptyTemp: ==========

BITS transfer queue => 11296768 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 41301575 B
Java, Flash, Steam htmlcache => 99916166 B
Windows/system/drivers => 63212051 B
Edge => 57111 B
Chrome => 300027408 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 35956 B
NetworkService => 44498 B
Jakub Pokora => 83432968 B

RecycleBin => 23128485 B
EmptyTemp: => 593.6 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 23:21:13 ====

Re: Zasekaný pc

Napsal: 10 úno 2020 10:15
od Rudy
Smazáno. Nastala nějaká změna?

Re: Zasekaný pc

Napsal: 10 úno 2020 17:29
od JakubPokora
Dobrý den, určitě! šlape to lépe (zatím), teď jen musím vrátit programy co mi ten vir, nebo co to bylo smazalo a budu maximálně spokojený!
Děkuji Vám za pomoc a hlavně Vaší neuvěřitelnou aktivitu! ♥

Re: Zasekaný pc

Napsal: 10 úno 2020 17:53
od Rudy
Rádo se stalo! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz