VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

vypíná se mi pc

https://forum.viry.cz:443/viewtopic.php?t=157075

Stránka 1 z 1

vypíná se mi pc

Napsal: 20 dub 2020 17:52
od lukass9
dobrý den mam problém s počítačem při hraní her i originálních dochází k zamrznutí počítače cca po 30 mi při pouštění videí a jiné práci seto nestává . neuměl by někdo pomoct předem děkuji

Re: vypíná se mi pc

Napsal: 20 dub 2020 18:53
od Rudy
Zdravím!
Dejte logy FRST+Addition: https://forum.viry.cz/viewtopic.php?f=13&t=154679 .

Re: vypíná se mi pc

Napsal: 06 kvě 2020 15:52
od lukass9
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-05-2020
Ran by Lukas (06-05-2020 16:50:26)
Running from G:\
Windows 10 Home Version 1903 18362.720 (X64) (2019-11-07 18:00:28)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-676012942-2397387924-1880445482-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-676012942-2397387924-1880445482-503 - Limited - Disabled)
Guest (S-1-5-21-676012942-2397387924-1880445482-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-676012942-2397387924-1880445482-1003 - Limited - Enabled)
Lukas (S-1-5-21-676012942-2397387924-1880445482-1000 - Administrator - Enabled) => C:\Users\Lukas
WDAGUtilityAccount (S-1-5-21-676012942-2397387924-1880445482-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {4FC75CA5-1654-5411-7CFB-1893D506BCF4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

4game (HKLM-x32\...\4game2.0) (Version: 1.0.0.94 - Innova Co. SARL)
4K Video Downloader 4.5 (HKLM\...\{180B9AE1-F87B-4107-8C68-4265E927D6A8}) (Version: 4.5.0.2482 - Open Media LLC)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.006.20042 - Adobe Systems Incorporated)
Adobe Flash Player 31 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 31.0.0.108 - Adobe Systems Incorporated)
AIDA64 Extreme v5.00 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.00 - FinalWire Ltd.)
Aktualizace NVIDIA 28.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 28.0.0.0 - NVIDIA Corporation) Hidden
AlphaGo (HKLM-x32\...\{B20B3A3C-91E3-4326-8A0F-B3C012574F8C}) (Version: 1.1.2 - Default Company Name) <==== ATTENTION
AMD Catalyst Install Manager (HKLM\...\{E3C27552-F408-6465-3CA2-AA63826EC350}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMDProductVerification (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\4ecb547ba21a923a) (Version: 1.0.25.99 - AMDProductVerification)
amuleC (HKLM-x32\...\{0F7B5011-72EC-493D-A7BF-546591047E8E}) (Version: 1.0.2 - amuleC) <==== ATTENTION
amulesw (HKLM-x32\...\{3CC3DE19-E0B1-4D42-87AB-B5C61FE4BA58}) (Version: 1.0.6 - amules) <==== ATTENTION
Anno 1800 Open Beta (HKLM-x32\...\Uplay Install 13800) (Version: - Ubisoft)
Apple Mobile Device Support (HKLM\...\{B5A46811-3612-4DA5-8A5A-E6DED5D7C523}) (Version: 12.2.1.12 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Audiobook Downloader Pro 1.3 (HKLM-x32\...\Audiobook Downloader Pro) (Version: 1.3 - SuperUtils.com Software)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BikaQ Rss (HKLM-x32\...\{3678D164-84DB-4F73-AFD6-916342E10764}) (Version: 3.0.17 - BikaQ) <==== ATTENTION
Bing Bar (HKLM-x32\...\{16793295-2366-40F7-A045-A3E42A81365E}) (Version: 7.1.362.0 - Microsoft Corporation)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Booking (HKLM-x32\...\{13D4CD54-EA09-4FDB-B979-8B2BC0F020CA}_is1) (Version: 2.0.701 - Booking)
CamStudio 2.7.4 (HKLM\...\{04B83666-3A62-452B-85D3-70F8117F2329}_is1) (Version: 2.7.4 - CamStudio Open Source)
Car Mechanic Simulator 2018 (HKLM-x32\...\Car Mechanic Simulator 2018_is1) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.63 - Piriform)
Ceník stavebních prací 2.4 - aktualizace A (HKLM-x32\...\Ceník stavebních prací_is1) (Version: 2.4 - aktualizace A - Verlag Dashöfer s.r.o)
Cities In Motion (HKLM-x32\...\{15FA5ED6-2F98-4B5E-AF0B-18E5F4723FAD}_is1) (Version: - )
Cities XXL (HKLM-x32\...\Cities XXL_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter)
Cities: Skylines - ČEŠTINA (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Cities: Skylines - ČEŠTINA) (Version: - )
Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.62.0 - OEM) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.6.0.0283 - Disc Soft Ltd)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
DVD Shrink 3.2 (HKLM-x32\...\DVD Shrink_is1) (Version: - DVD Shrink)
Epic Games Launcher (HKLM-x32\...\{DCE27B29-200D-491A-BBC5-98ECEFEC0843}) (Version: 1.1.257.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
EVE Online (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\{5e6d5785-73e8-423f-a54c-b75cd3f5db13}) (Version: 1.0.0 - CCP)
Facebook Gameroom 1.20.6598.21896 (HKLM-x32\...\{C51FED78-02E5-4A80-B4D0-A4A474BB0CDD}) (Version: 1.20.6598.21896 - Facebook)
Far Cry 4 (HKLM-x32\...\Far Cry 4_is1) (Version: 1.4.0 - Ubisoft)
Farming Simulator 17 (HKLM-x32\...\{A82E512C-3BFB-43F8-B97F-8AA8F209B83B}) (Version: 1.2.0.0 - GIANTS Software) Hidden
Farming Simulator 17 (HKLM-x32\...\Farming Simulator 17 1.2.0.0) (Version: 1.2.0.0 - GIANTS Software)
Farming Simulator 19 (HKLM-x32\...\Farming Simulator 19_is1) (Version: - )
Firestorm Launcher version 1.3 (HKLM-x32\...\{008D5963-9A73-4472-8C16-A5BF04491B9D}_is1) (Version: 1.3 - Firestorm)
Flash Memory Toolkit trial 2.01 (HKLM-x32\...\Flash Memory Toolkit trial_is1) (Version: - EFD Software)
FORM studio (HKLM-x32\...\FSCZ_is1) (Version: - KASTNER software s.r.o.)
GitHub Desktop (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\GitHubDesktop) (Version: 1.0.11 - GitHub, Inc.)
Google Drive (HKLM-x32\...\{A1238426-ECDF-4639-BE2F-8D12A97AE23C}) (Version: 2.34.5075.1619 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 81.0.4044.129 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Hearts of Iron IV (HKLM-x32\...\Hearts of Iron IV_is1) (Version: - )
HiSuite (HKLM-x32\...\Hi Suite) (Version: 9.0.3.300 - )
Charity Engine (HKLM-x32\...\{7309D717-F38D-436D-9537-066AA0AC7639}) (Version: 7.0.80 - Charity Engine)
iCloud (HKLM\...\{DA6D808E-3629-4933-8FB3-583F9BCB0DEF}) (Version: 7.12.0.14 - Apple Inc.)
iTunes (HKLM\...\{7B81A249-0187-436C-9738-AF82DAA54822}) (Version: 12.9.5.7 - Apple Inc.)
Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
Kingdom Come Deliverance (HKLM-x32\...\Kingdom Come Deliverance_is1) (Version: - )
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LineageII EU (HKLM-x32\...\4game_lineage2eu) (Version: - Innova Systems)
Mafia I - The City of Lost Heaven verze v1.3 (HKLM-x32\...\{360EBFE4-4591-4AE6-8D97-A58A43C15869}_is1) (Version: v1.3 - Danik1B9)
Malwarebytes Anti-Malware verze 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Mashinky CZ v.21.02.2019 (HKLM-x32\...\Mashinky CZ v.21.02.2019) (Version: v.21.02.2019 - Libbi)
Math Problem Solver (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Math Problem Solver) (Version: - ) <==== ATTENTION
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.92 - McAfee, LLC.)
MEmu (HKLM-x32\...\MEmu) (Version: 7.1.1.0 - Microvirt Software Technology Co. Ltd.)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{929CE49F-1CA7-4CF3-A9A1-6D757443C63F}) (Version: 1.2.0241 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.7.133.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\OneDriveSetup.exe) (Version: 19.232.1124.0012 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 72.0.2 (x64 en-US) (HKLM\...\Mozilla Firefox 72.0.2 (x64 en-US)) (Version: 72.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 70.0 - Mozilla)
Mp3 Editor for Free v5.2.7 Build 79 (HKLM-x32\...\Mp3 Editor for Free_is1) (Version: 5.2.7 Build 79 - Mp3EditorforFree Ltd.)
NVIDIA GeForce Experience 3.9.0.97 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.9.0.97 - NVIDIA Corporation)
NVIDIA GeForce NOW 2.0.16.148 (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GeforceNOW) (Version: 2.0.16.148 - NVIDIA Corporation)
NVIDIA Install Application (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer) (Version: 2.1002.338.0 - NVIDIA Corporation) Hidden
NVIDIA Ovladač HD audia 1.3.38.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.16 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 432.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 432.00 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{D9559CE2-9C58-F414-43EA-F908FEA13BB8}) (Version: 1.00.0000 - Název společnosti:)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Opera Stable 55.0.2994.61 (HKLM-x32\...\Opera 55.0.2994.61) (Version: 55.0.2994.61 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.5.59.36848 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 432.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 432.00 - NVIDIA Corporation) Hidden
Paradox Launcher v2 (HKLM\...\{A8D4AE16-519B-409D-B5B4-2647C06805AD}) (Version: 2.0.3.0 - Paradox Interactive)
PDF To Excel Converter V3.0 (HKLM-x32\...\PDF To Excel Converter_is1) (Version: - hxxp://www.PDFExcelConverter.com)
Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.) Hidden
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{C1BCFECF-6EC2-4750-9072-5E2489423F8F}) (Version: 7.5 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{B202C7F5-7DE3-4FBF-B259-E70E625F56FC}) (Version: 7.5 - Apple Inc.)
Qualcomm Atheros Bandwidth Control Filter Driver (HKLM\...\{C80C9B28-CF99-431C-88C8-8B1F9B6A182F}) (Version: 1.1.39.1040 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer E220x Drivers (HKLM\...\{DD2A85B3-64C5-4263-A7AF-4F61FA5F369A}) (Version: 1.1.39.1040 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer Network Manager Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.39.1040 - Qualcomm Atheros)
Qualcomm Atheros Network Manager (HKLM\...\{7364C716-1212-4EAE-B0C9-A31D1E797BF8}) (Version: 1.1.39.1040 - Qualcomm Atheros) Hidden
Railroad Tycoon II Platinum (HKLM-x32\...\1445250876_is1) (Version: 2.0.0.5 - GOG.com)
Railway Empire (HKLM-x32\...\1556481953_is1) (Version: 1.1.1.17568 - GOG.com)
RAUCAD-TechCON (7.2) (HKLM-x32\...\{889D28AD-3F0C-48CD-B9BA-95B89A848DD6}) (Version: 7.00.0715 - Atcon systems s.r.o.)
Realpolitiks version 1.3.4 (HKLM-x32\...\{728B7AF5-D053-4F1A-9C6A-019B1376D99C}_is1) (Version: 1.3.4 - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7780 - Realtek Semiconductor Corp.)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 1.05.45.00(23.5.2014) - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Samsung Universal Scan Driver (HKLM-x32\...\Samsung Universal Scan Driver) (Version: 1.2.19.0 - Samsung Electronics Co., Ltd.)
Search App by Ask (HKLM-x32\...\{4F524A2D-5350-4500-76A7-A758B70C2E03}) (Version: 12.46.3.4268 - APN, LLC) <==== ATTENTION
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Shockwave (HKLM-x32\...\Shockwave) (Version: - )
Sid Meier's Civilization: Beyond Earth Rising Tide Addon (HKLM\...\U2lkTWVpZXJzQ2l2aWxpemF0aW9uQmV5b25kRWFydGg=_is1) (Version: 1 - )
SketchUp 2016 (HKLM\...\{D87EE6DC-32BA-4219-AC75-0A6FD54ED058}) (Version: 16.0.19912 - Trimble Navigation Limited)
Skype HoloLens Add-In (HKLM-x32\...\{38A3693F-1954-450F-8E42-C0E6F9C1AE94}) (Version: 1.0.0.0 - Microsoft Corporation)
Skype Web Plugin (HKLM-x32\...\{CD62BCB9-02D2-443F-AC7A-443377DA5B38}) (Version: 7.31.0.56 - Skype Technologies S.A.)
Skype™ 7.38 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.38.101 - Skype Technologies S.A.)
Sony PC Companion (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.297 - Sony)
Sound Blaster Cinema 2 (HKLM-x32\...\{B4F6F8CC-2C61-42CC-A4CC-76621F25BDC7}) (Version: 1.00.06 - Creative Technology Limited)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stellaris (HKLM-x32\...\Stellaris_is1) (Version: - )
Střechy a stěny TONDACH 2018 (HKLM-x32\...\Střechy a stěny TONDACH 2018_is1) (Version: - )
Sudden Strike II (HKLM-x32\...\Sudden Strike II) (Version: - )
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.251385 - TeamViewer)
Terela (HKLM-x32\...\{E2F7C535-0785-4C2D-B56F-016BFD02B010}) (Version: 1.1.6 - Terela)
The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 2.6.3.0 - Zenimax Online Studios)
The Elder Scrolls V Skyrim LE (HKLM-x32\...\The Elder Scrolls V Skyrim LE_is1) (Version: - )
TrafficGiant-Gold Edition (HKLM-x32\...\TrafficGiant-Gold Edition) (Version: - )
Transport Fever (HKLM-x32\...\1720767912_is1) (Version: 2.0.0.2 - GOG.com)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 85.1 - Ubisoft)
USB PC Camera (ZS211) (HKLM-x32\...\{44D02D8B-FFB3-4245-8D26-68D10B4C4023}) (Version: 1.00.000 - )
VIA Platforma Ovladače zařízení (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)
WhatsApp (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\WhatsApp) (Version: 0.4.2081 - WhatsApp)
Win10 Spy Disabler v1.4 (HKLM\...\Win10 Spy Disabler_is1) (Version: 1.4.0.0 - site2unblock.com)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{3577E42B-3347-4EB8-BFDA-D36E8ED3C519}) (Version: 1.0.24.0 - Microsoft Corporation)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
WinRAR 5.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
WinSetupFromUSB (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\WinSetupFromUSB) (Version: - )
Wondershare MobileGo(Version 8.5.0) (HKLM-x32\...\{1E04C795-7359-4E05-8A0E-5644F777AA09}_is1) (Version: 8.5.0 - Wondershare)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
youndoo - Uninstall (HKLM-x32\...\{2AEE6375-5F4E-4EF3-82AE-68CCB56539EF}) (Version: - ) <==== ATTENTION

Packages:
=========
Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_460.16.123.0_x64__8xx8rvfyw5nnt [2020-04-30] (Facebook Inc)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-02] (Microsoft Studios) [MS Ad]
MSN Money -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2017-09-06] (Samsung Electronics Co. Ltd.)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-09] (Twitter Inc.)
WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x64__8wekyb3d8bbwe [2016-05-19] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\ChromeHTML: -> <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-676012942-2397387924-1880445482-1000_Classes\CLSID\{E5A7A7B5-9D06-4DBE-BAC0-04B69FF070B5}\InprocServer32 -> C:\Users\Lukas\AppData\Local\SkypePlugin\7.31.0.56\GatewayActiveX-x64.dll (Microsoft Corporation -> Skype Technologies S.A.)
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6671064 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks: No Name - {D7743BB4-F774-11E6-8881-64006A5CFC23} - -> No File
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-03-21] (Google Inc -> Google)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2019-05-08] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-03-21] (Google Inc -> Google)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\atiacm64.dll [2015-06-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-10-03] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2011-02-18] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2011-02-18] (Electronic Arts -> On2.com)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\Lukas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files (x86)\Firefox\Firefox.exe (Mozilla Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Firefox\Firefox.exe (Mozilla Corporation)

==================== Loaded Modules (Whitelisted) =============

2015-02-07 19:44 - 2014-01-02 11:19 - 000040960 ____N ( ( ) [File not signed]) [File is in use ] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\Interop.CTSndCr.dll
2015-02-07 19:44 - 2014-02-21 12:03 - 000991232 ____N ( (Creative Technology Ltd) [File not signed]) [File is in use ] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\en-US\SBCinema2.resources.dll
2017-12-18 19:39 - 2015-02-27 11:35 - 000489984 _____ ( (Newtonsoft) [File not signed]) [File is in use ] C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\Newtonsoft.Json.dll
2017-12-18 19:39 - 2017-03-20 17:13 - 000087552 _____ ( (Wondershare) [File not signed]) [File is in use ] C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppCollect.dll
2017-12-18 19:39 - 2017-03-20 17:13 - 000197632 _____ ( (Wondershare) [File not signed]) [File is in use ] C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppCommon.dll
2011-11-13 15:30 - 2011-11-13 15:30 - 000676864 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2012-05-04 16:41 - 2012-05-04 16:41 - 000211968 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2011-11-13 15:31 - 2011-11-13 15:31 - 003643392 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2020-02-20 22:23 - 2020-02-20 22:23 - 098275328 _____ () [File not signed] G:\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libcef.dll
2020-02-20 22:23 - 2020-02-20 22:23 - 000092672 _____ () [File not signed] G:\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libEGL.dll
2020-02-20 22:23 - 2020-02-20 22:23 - 003922432 _____ () [File not signed] G:\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libGLESv2.dll
2015-02-07 19:44 - 2012-04-27 11:26 - 000529920 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\CTAudEp.dll
2015-02-07 19:44 - 2011-09-22 20:04 - 000238080 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\CTLoadRs.dll
2015-02-07 19:44 - 2013-08-22 11:36 - 000249344 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\HKDetect.dll
2020-02-20 22:23 - 2020-02-20 22:23 - 000547840 _____ (The Chromium Authors) [File not signed] G:\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\chrome_elf.dll
2019-12-17 19:25 - 2020-01-14 19:04 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2017-01-11 20:42 - 2020-01-14 19:04 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2019-12-17 19:25 - 2020-01-14 19:04 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2020-01-20 20:05 - 2020-01-14 19:04 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2020-01-20 20:05 - 2020-01-14 19:04 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2020-01-20 20:05 - 2020-01-14 19:04 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2020-01-20 20:05 - 2020-01-14 19:04 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2020-01-20 20:05 - 2020-01-14 19:04 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2018-12-18 22:17 - 000000864 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 validation.sls.microsoft.com

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\AMD APP\bin\x86_64;C:\Program Files (x86)\AMD APP\bin\x86;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Skype\Phone\;C:\Program Files (x86)\AMD\ATI.ACE\Core-Static;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.

Network Binding:
=============
Připojení k místní síti: Qualcomm Atheros Bandwidth Control -> BF_NdisLwf (enabled)
Připojení k místní síti: WinpkFilter LightWeight Filter -> nt_sbnetsys (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\StartupFolder: => "MobileGo Service.lnk"
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\StartupApproved\StartupFolder: => "Facebook Gameroom.lnk"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{E74CA79D-6821-4895-A0DB-03B6E2B917D6}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [UDP Query User{D2AA78C7-80AE-426B-BE14-937BCA673CF0}C:\program files (x86)\firefox\firefox.exe] => (Block) C:\program files (x86)\firefox\firefox.exe (Mozilla Corporation) [File not signed]
FirewallRules: [TCP Query User{C47647E8-5D84-46B8-A307-442BFC404B42}C:\program files (x86)\firefox\firefox.exe] => (Block) C:\program files (x86)\firefox\firefox.exe (Mozilla Corporation) [File not signed]
FirewallRules: [UDP Query User{26AAA118-D790-4881-96AD-CCF81F2CB7AF}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Block) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [TCP Query User{5212072F-78EE-4DC8-A70F-691ADC90A335}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Block) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [{824DBECC-930A-4B75-9973-9EA55BC1C311}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{58837D82-61CD-4248-A985-2A5C7642B49E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{87FB5B77-2A10-42C5-A922-109BBE49DB88}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{3521D0DB-E53D-4002-8E5B-785432CA59AD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{36DCBBDD-26D1-4F18-A0F7-EDBF8144C18E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{FBBF796E-2987-457E-BDAD-8097B223710A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4F9F4F93-FA9F-4824-91DA-A39D562245B3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{BE391B67-CE55-4CCA-A199-C043B8EB741F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{018D2ADC-3AEE-4C6C-BFC2-5033D65E5EA9}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{148806E8-47F6-437D-9899-75DA7E5F20E7}] => (Allow) C:\Program Files (x86)\Opera\55.0.2994.61\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{ABA3BAC5-8750-4860-B256-3CED950DE7C1}] => (Allow) C:\Program Files (x86)\MIO\loader\kingstonxsv300s37a240g_50026b774b03171a.dat () [File not signed]
FirewallRules: [{DED48896-3952-4AF6-A273-5391CE980C48}] => (Allow) C:\Program Files (x86)\MIO\loader\kingstonxsv300s37a240g_50026b774b03171a.dat () [File not signed]
FirewallRules: [{990E1485-6B97-485F-B0B9-911982F2D86B}] => (Allow) C:\Program Files (x86)\Opera\55.0.2994.44\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{2523E2E9-1A5A-4CEB-A014-990EB35E177B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{CADB1CC0-D762-4C5F-9CB8-B2F5FBF14B43}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{533919E2-AB5A-4F7B-8798-7EBFCEC66EEF}C:\program files (x86)\wondershare\mobilego\mobilego.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilego.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [TCP Query User{26A307CE-F98D-4A1A-B5C3-594AEB4CCA12}C:\program files (x86)\wondershare\mobilego\mobilego.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilego.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [UDP Query User{B8283334-7E0D-46D0-B95D-959B0ED7FDC4}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [TCP Query User{C127EBBE-1051-4C68-9B52-51D2C36700BD}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [UDP Query User{180C8FD2-D3D5-4633-850D-3194AB6945DC}H:\program files\farming simulator 17\dedicatedserver.exe] => (Allow) H:\program files\farming simulator 17\dedicatedserver.exe No File
FirewallRules: [TCP Query User{2454C648-F7F9-42F1-81A4-769676D713AF}H:\program files\farming simulator 17\dedicatedserver.exe] => (Allow) H:\program files\farming simulator 17\dedicatedserver.exe No File
FirewallRules: [{AE180C12-5F81-448F-8C53-25FA05A978DB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D52DA489-F743-48FF-8257-225F9D34343C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D24236C4-B694-401B-9235-95C112EBE35D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B76CA01C-67C2-438D-938A-572919039813}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{23969D2D-5CCA-4B42-9221-6405D8EB6AAB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{437741F8-DC38-4756-8486-49CA834A4A58}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{30DF629E-E1AC-4615-9101-FD1B72BEFE00}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{D7863895-4454-4622-BC78-FD9BD3AAA12B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{7F552DA7-05F5-4655-8F66-A507358920B9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{E0C73EC5-E891-4622-965D-62EDA31DD5AE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Star Trek Online\Star Trek Online.exe (Cryptic Studios Inc. -> )
FirewallRules: [{81FA5270-87DE-49B8-84E0-1ACED452FBD6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Star Trek Online\Star Trek Online.exe (Cryptic Studios Inc. -> )
FirewallRules: [{E4543782-368D-4C24-8730-C380C2169CDE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{873DC531-8A81-4912-8608-E3F08B3F9B9D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{29871937-8A62-42BD-97D0-8B8F90B1BF60}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{82631BE1-F8E1-4898-8D54-691166802885}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{84A008EB-78B4-488F-A5AF-EDED4211562C}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{5E3CA82C-0DBF-4B8E-9CED-869A62BB3CBB}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{72DCC175-2194-4250-BAFD-7261F55BD575}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{09611358-6852-4166-9F26-F5942B9C7100}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{4BCC85D2-A491-4553-A3B4-BB700FBBF452}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{35E0C492-E1D0-42CF-82F4-B7DB2AE00F3A}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{D37D00D8-6E22-4E5E-87F6-90FB8C2C1A02}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe (Samsung Electronics Co., Ltd.) [File not signed]
FirewallRules: [{98B322AA-6545-448D-AB25-386816CAC5F9}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe (Samsung Electronics Co., Ltd.) [File not signed]
FirewallRules: [{C5D9088C-95F6-40F4-9C8A-A2BBC9C07CBE}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{C16EE9D5-7673-4D13-8A79-C195DA888425}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{62ED1F89-78BE-423A-BCF0-FF308DEF6DCA}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\ScanProcess.exe (Samsung Electronics CO., LTD. -> ScanProcess)
FirewallRules: [{BFEB002B-F6D2-425E-8907-CB854F6B6657}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\ScanProcess.exe (Samsung Electronics CO., LTD. -> ScanProcess)
FirewallRules: [{72B6BCD1-0D46-4AA1-BFDE-3EC7D7C270BE}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\Scan2PCNotify.exe (Samsung Electronics CO., LTD. -> Scan2PCNotify)
FirewallRules: [{ED3AD914-89AF-4C1C-AB7C-FA962EDBBB67}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\Scan2PCNotify.exe (Samsung Electronics CO., LTD. -> Scan2PCNotify)
FirewallRules: [{F72EBBB8-6BF7-467B-8BB1-4570B7B545BA}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{71ED3801-6FB1-4256-AA70-33FD6B92224F}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{C271645F-7A20-46F0-8E1E-144A4DC0D3F3}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ICCUpdater.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{CAED66B1-28EE-4EC9-9265-55B844F9FBC8}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ICCUpdater.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{9047606F-C417-41AD-BB3F-81EF7E3B47B0}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{C2131B8B-B1CB-433D-97AA-2F76325FACFE}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{FB68EFF4-B072-43E3-BADD-8DF55D32809C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cryptic Studios\Neverwinter.exe (Cryptic Studios Inc. -> )
FirewallRules: [{2651B740-9EAF-4566-B748-147B780B3188}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cryptic Studios\Neverwinter.exe (Cryptic Studios Inc. -> )
FirewallRules: [{04EC1888-4546-4999-B251-571845B7116D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Might & Magic - Duel of Champions\Game.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{E9B7C25D-730E-4FE8-AB5A-623EF5ABD91B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Might & Magic - Duel of Champions\Game.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{A28056B1-E948-4F3F-84D8-6529B09B4987}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{3BEF6539-7729-4A96-A48D-2D74F93A6142}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{208103E8-707C-4A3C-A135-668B704FDFCE}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{958EF457-2D5E-4FCE-9D49-96479D289517}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{89281832-930A-42B9-BF8D-99BCA790AE49}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C4E2F052-AC12-4D2D-B390-0F81C790FEBA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{AE17E1C3-96A7-486A-9ACF-DE1BB8BF9AAA}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [UDP Query User{07D65D27-6C38-425C-A61C-631B7250E22C}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [TCP Query User{5CE1E5F5-A3A0-4F1D-B57A-57DD8C2F0CA5}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe No File
FirewallRules: [UDP Query User{66EDF803-6279-4014-B0ED-A17592AA88E0}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe No File
FirewallRules: [TCP Query User{6A2F8193-C0B5-4883-A50F-97A3FB023CFE}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe No File
FirewallRules: [UDP Query User{67E833A5-ED03-4C72-B458-1EB7AE5BF74B}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe No File
FirewallRules: [TCP Query User{912E7446-9068-49F4-9A6B-7B9165A69EA8}F:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Block) F:\program files (x86)\diablo iii\x64\diablo iii64.exe No File
FirewallRules: [UDP Query User{9BC97502-B126-4A7E-861A-72AF65D380A8}F:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Block) F:\program files (x86)\diablo iii\x64\diablo iii64.exe No File
FirewallRules: [{FFE8D1A7-30C9-4559-B973-C78137D2CA6B}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{94EA2475-27CF-4B88-80D3-8741570D47B9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\For Honor Open Beta\forhonor.exe (Blue Byte GmbH -> Ubisoft)
FirewallRules: [{26BE49B9-7A60-4054-9EF1-A6D3327EF645}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\For Honor Open Beta\forhonor.exe (Blue Byte GmbH -> Ubisoft)
FirewallRules: [TCP Query User{D7A3574E-9AA7-4D54-82F2-FE458591B551}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [UDP Query User{D35D7E93-6FA3-4B03-9A87-83A97389E84C}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [TCP Query User{874E3214-D56E-463B-8840-3B0C257EEE87}F:\filmy\search_tool_win_xp\searchtool.exe] => (Allow) F:\filmy\search_tool_win_xp\searchtool.exe No File
FirewallRules: [UDP Query User{D0F79A5B-0D88-4073-BFB1-C4220B5549CE}F:\filmy\search_tool_win_xp\searchtool.exe] => (Allow) F:\filmy\search_tool_win_xp\searchtool.exe No File
FirewallRules: [TCP Query User{0F2FD01A-1A4B-4FBE-ACBC-B84F9A3DC462}C:\users\lukas\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\lukas\appdata\local\skypeplugin\pluginhost.exe (Microsoft Corporation -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{4129F8ED-0F5C-4199-937A-4E4C2804F230}C:\users\lukas\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\lukas\appdata\local\skypeplugin\pluginhost.exe (Microsoft Corporation -> Skype Technologies S.A.)
FirewallRules: [{06AAB67F-D7A5-42D7-857E-4CA5F8B70B29}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{505521F3-1C64-430C-B5BB-51A319E628FE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{68AEACA6-E17D-43DA-A82E-86BCE6DFE2DF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{254ABB7F-4B65-4FF3-833C-6CCD9B21161D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{96386857-DD26-4E60-A873-DBD070CC7483}F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe] => (Block) F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe No File
FirewallRules: [UDP Query User{1F44A342-9A6B-4023-ADA8-494D9D4765E7}F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe] => (Block) F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe No File
FirewallRules: [TCP Query User{7ECEE922-8938-4821-BD5B-D9D82254E135}F:\hry\far cry 4\bin\farcry4.exe] => (Allow) F:\hry\far cry 4\bin\farcry4.exe No File
FirewallRules: [UDP Query User{0E663628-B912-4F04-AF44-0E8053FE27A4}F:\hry\far cry 4\bin\farcry4.exe] => (Allow) F:\hry\far cry 4\bin\farcry4.exe No File
FirewallRules: [TCP Query User{B74490D4-05D2-4AB0-BD77-2A277BA7545F}C:\program files\litecoin\litecoin-qt.exe] => (Allow) C:\program files\litecoin\litecoin-qt.exe No File
FirewallRules: [UDP Query User{143DC50B-219C-4114-8E8F-E8BC0D6B35DE}C:\program files\litecoin\litecoin-qt.exe] => (Allow) C:\program files\litecoin\litecoin-qt.exe No File
FirewallRules: [TCP Query User{15440FDB-4B6F-48A1-824C-7A84E96D09B6}C:\program files\bitcoin\bitcoin-qt.exe] => (Allow) C:\program files\bitcoin\bitcoin-qt.exe No File
FirewallRules: [UDP Query User{4E691515-6FC1-43C8-81C6-DBB1B7F8F75B}C:\program files\bitcoin\bitcoin-qt.exe] => (Allow) C:\program files\bitcoin\bitcoin-qt.exe No File
FirewallRules: [TCP Query User{4C07B869-37F5-4F44-907E-BC68ED984A26}H:\gog games\railway empire\railwayempire.exe] => (Allow) H:\gog games\railway empire\railwayempire.exe No File
FirewallRules: [UDP Query User{5673BEC2-A4F2-4F0A-AC2D-707C1F07870C}H:\gog games\railway empire\railwayempire.exe] => (Allow) H:\gog games\railway empire\railwayempire.exe No File
FirewallRules: [{576DE4BB-9B0D-46E5-B361-162018E2F13B}] => (Allow) H:\Program Files (x86)\SteamLibrary\steamapps\common\star conflict\game.exe No File
FirewallRules: [{3E6BAF4B-19DA-4C54-833F-FD154DE90925}] => (Allow) H:\Program Files (x86)\SteamLibrary\steamapps\common\star conflict\game.exe No File
FirewallRules: [TCP Query User{5F82500E-6BD6-43D4-B594-9119D5ADEB5D}H:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) H:\games\kingdom come deliverance\bin\win64\kingdomcome.exe No File
FirewallRules: [UDP Query User{E8261C4A-5748-4FAB-BFB7-57C014C2F580}H:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) H:\games\kingdom come deliverance\bin\win64\kingdomcome.exe No File
FirewallRules: [TCP Query User{E5CD9A1D-24D7-4441-B040-27E43543696C}G:\games\mashinky cz\mashinky.exe] => (Allow) G:\games\mashinky cz\mashinky.exe () [File not signed]
FirewallRules: [UDP Query User{84A62654-AFF3-45C8-9D70-C7B365005D71}G:\games\mashinky cz\mashinky.exe] => (Allow) G:\games\mashinky cz\mashinky.exe () [File not signed]
FirewallRules: [TCP Query User{6D107467-B449-45B3-AD0A-7B0B9A02B35B}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\x64\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\x64\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [UDP Query User{6B19A30C-91C7-4D6B-8D56-E5AD2E5172B4}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\x64\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\x64\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [TCP Query User{AB3BBCB7-7124-40F2-BE36-1C87B476BE4F}C:\users\lukas\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\lukas\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{36E34ABA-3C61-45E6-9265-BBA64D4F6C2E}C:\users\lukas\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\lukas\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{61B0CD2F-CAC9-4E10-999A-A91DD50F5552}] => (Allow) G:\SteamLibrary\steamapps\common\Endzones - A World Apart\Endzone.exe () [File not signed]
FirewallRules: [{5F18D795-8459-4DB4-9F44-E13CB2AED92A}] => (Allow) G:\SteamLibrary\steamapps\common\Endzones - A World Apart\Endzone.exe () [File not signed]
FirewallRules: [TCP Query User{4E1C0031-3ED0-4B4B-B4D3-6640B82F56E3}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [UDP Query User{897C1B2F-FB44-4DBF-81FB-07E72328BA3E}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{7922E90E-57C5-4C9D-A673-28D1EC6DEEB0}] => (Allow) G:\SteamLibrary\steamapps\common\Stellaris\dowser.exe (Paradox Interactive Ab (Publ) -> )
FirewallRules: [{1B99443E-952A-4F8E-94D6-9BDC34CC5422}] => (Allow) G:\SteamLibrary\steamapps\common\Stellaris\dowser.exe (Paradox Interactive Ab (Publ) -> )
FirewallRules: [{8A8A65CC-B3E4-4A4E-8482-40D0F169D6CC}] => (Allow) G:\SteamLibrary\steamapps\common\Zenimax Online\zosSteamStarter.exe (Zenimax Media Inc. -> Zenimax Online Studios)
FirewallRules: [{57A030C0-807D-4DF6-AE78-B4832846CAB4}] => (Allow) G:\SteamLibrary\steamapps\common\Zenimax Online\zosSteamStarter.exe (Zenimax Media Inc. -> Zenimax Online Studios)
FirewallRules: [{C8C78BE7-4AF9-4931-B9C6-56963EB5E415}] => (Allow) G:\SteamLibrary\steamapps\common\Supremacy 1914\Supremacy 1914.exe (Bytro Labs GmbH) [File not signed]
FirewallRules: [{8BFB9BE4-79D9-433D-87D7-4FEF9442B445}] => (Allow) G:\SteamLibrary\steamapps\common\Supremacy 1914\Supremacy 1914.exe (Bytro Labs GmbH) [File not signed]
FirewallRules: [{7F5E1994-A72A-4552-97D4-8D816B0C88C4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{0BACCDA3-6AEB-43C4-A2BB-CB4262651B24}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{1C3416AD-E018-4E73-A3DE-6FBED960A18F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{70BE25F1-85CE-40E6-87F1-DE30A87EBEB3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{2A12E2E9-E64A-4EFD-9232-3FEC2F064C3B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

02-05-2020 12:33:05 Windows Update

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (05/06/2020 04:20:14 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 16 E.D.5.B.7.F.1.6.6.9.8.F.9.6.D.2.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR Lukas-PC.local.

Error: (05/06/2020 04:20:13 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from FE80:0000:0000:0000:2D69:F896:61F7:B5DE:5353 18 E.D.5.B.7.F.1.6.6.9.8.F.9.6.D.2.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR Lukas-PC-2.local.

Error: (05/02/2020 07:44:32 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (10688,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (05/02/2020 12:37:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: wuauclt.exe, verze: 10.0.18362.628, časové razítko: 0xb8640219
Název chybujícího modulu: ntdll.dll, verze: 10.0.18362.719, časové razítko: 0x64d10ee0
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000072a6
ID chybujícího procesu: 0x3244
Čas spuštění chybující aplikace: 0x01d6206d18714a75
Cesta k chybující aplikaci: C:\WINDOWS\system32\wuauclt.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 728deb6f-4c9d-4110-8554-79d44e74fddc
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (05/02/2020 12:36:21 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (16852,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (05/02/2020 12:26:32 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8356,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (05/02/2020 11:29:56 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (14908,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (05/02/2020 10:35:10 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (15088,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).


System errors:
=============
Error: (05/06/2020 04:48:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba %1!s! Update (avg) neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (05/06/2020 04:46:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba vToolbarUpdater40.3.8 neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (05/06/2020 04:46:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba WtuSystemSupport neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (05/06/2020 04:46:38 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (16:40:00, ‎06.‎05.‎2020) bylo neočekávané.

Error: (05/06/2020 04:40:03 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba vToolbarUpdater40.3.8 neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (05/06/2020 04:40:00 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba WtuSystemSupport neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (05/06/2020 04:40:00 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (4:46:59, ‎03.‎05.‎2020) bylo neočekávané.

Error: (05/02/2020 12:37:12 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x800f0831): 2020-04 Kumulativní aktualizace pro Windows 10 Version 1903 pro systémy typu x64 (KB4549951).


Windows Defender:
===================================
Date: 2020-04-30 16:59:31.546
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {6A344548-27A7-4DE2-A240-27295ACCACDE}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-04-07 17:09:33.987
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {3865D8A0-24BF-433D-AC2C-54A73F247589}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-04-07 15:10:20.443
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {6B4E1CF6-319D-4A61-9FB2-BA85E1220DC8}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-04-07 13:22:45.983
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {304947CD-CD01-4BF4-8DA8-F8913B6EB0E8}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-03-25 18:13:11.689
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Misleading:Win32/Lodi
ID: 240849
Závažnost: Vysoké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Program Files\Easeware\DriverNavigator\DriverNavigator.exe; file:_C:\Users\Public\Desktop\DriverNavigator.lnk; regkey:_HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\DriverNavigator_is1; uninstall:_HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\DriverNavigator_is1
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: Lukas-PC\Lukas
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.313.53.0, AS: 1.313.53.0, NIS: 1.313.53.0
Verze modulu: AM: 1.1.16900.4, NIS: 1.1.16900.4

Date: 2020-05-06 16:34:38.845
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.315.83.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17000.7
Kód chyby: 0x8050a003
Popis chyby: Balíček neobsahuje aktuální soubor definic pro tento program. Další informace naleznete v nápovědě a podpoře.

Date: 2020-05-06 16:34:38.845
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.315.83.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17000.7
Kód chyby: 0x8050a003
Popis chyby: Balíček neobsahuje aktuální soubor definic pro tento program. Další informace naleznete v nápovědě a podpoře.

Date: 2020-05-06 16:34:38.844
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.315.83.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17000.7
Kód chyby: 0x8050a003
Popis chyby: Balíček neobsahuje aktuální soubor definic pro tento program. Další informace naleznete v nápovědě a podpoře.

Date: 2020-05-06 16:32:43.362
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.313.2769.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17000.7
Kód chyby: 0x80240016
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2020-04-07 19:20:03.032
Description:
Funkce Ochrana v reálném čase u prohledávání Antivirová ochrana v programu Windows Defender zjistila chybu a došlo k jejímu selhání.
Funkce: Při přístupu
Kód chyby: 0x80004005
Popis chyby: Nespecifikovaná chyba
Důvod: Ovladač filtru přeskočil prohledávání položek a je v režimu průchodu. Příčinou může být nízký stav prostředků.

CodeIntegrity:
===================================

Date: 2020-03-25 18:01:31.675
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-25 18:01:31.257
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-25 18:01:31.183
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-25 17:58:50.283
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-25 17:58:50.024
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-25 17:58:49.918
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-25 17:58:49.827
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-25 17:58:49.672
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. V22.2 12/16/2014
Motherboard: MSI 970 GAMING (MS-7693)
Processor: AMD FX(tm)-6300 Six-Core Processor
Percentage of memory in use: 48%
Total physical RAM: 8140.3 MB
Available physical RAM: 4193.89 MB
Total Virtual: 16332.3 MB
Available Virtual: 11441.17 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:223.03 GB) (Free:26.81 GB) NTFS
Drive g: (Nový svazek) (Fixed) (Total:1863.01 GB) (Free:744.7 GB) NTFS

\\?\Volume{abf0bd6b-aeee-11e4-85dd-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.05 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 2FCFA4CA)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=223 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 7F220C19)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Re: vypíná se mi pc

Napsal: 06 kvě 2020 15:53
od lukass9
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03-05-2020
Ran by Lukas (administrator) on LUKAS-PC (MSI MS-7693) (06-05-2020 16:48:47)
Running from G:\
Loaded Profiles: Lukas (Available Profiles: Lukas)
Platform: Windows 10 Home Version 1903 18362.720 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Epic Games Inc. -> Epic Games, Inc.) G:\Epic Games\Launcher\Engine\Binaries\Win64\UnrealCEFSubProcess.exe
(Epic Games Inc. -> Epic Games, Inc.) G:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Gaijin Network LTD -> Gaijin Entertainment) C:\Users\Lukas\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe
(Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\browserhost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation -> Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.EXE
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12004.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\usocoreworker.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <6>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NZXT, Inc. -> ) C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\rust-cam\dist\native\target\release\service.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Qualcomm Atheros) [File not signed] C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
(Shanghai Microvirt Software Technology Co., Ltd. -> ) C:\Program Files (x86)\Microvirt\MEmu\MemuService.exe
(TeamViewer Germany GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer Germany GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-05-07] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [Sound Blaster Cinema 2] => C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe [1440768 2014-02-24] (Creative Technology Ltd) [File not signed]
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKLM\...\Policies\Explorer: [NoInstrumentation] 1
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-05-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [EpicGamesLauncher] => G:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [31756176 2020-04-30] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [Gaijin.Net Updater] => C:\Users\Lukas\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2361600 2019-12-02] (Gaijin Network LTD -> Gaijin Entertainment)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [NZXT.CAM] => C:\Program Files\NZXT CAM\NZXT CAM.exe [97671824 2020-04-01] (NZXT, Inc. -> NZXT, Inc.)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Policies\system: [Shell] <==== ATTENTION
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\MountPoints2: {d62cd0d9-d38d-11e7-a610-d8cb8a13fec7} - "F:\setup.exe"
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\MountPoints2: {def9fec5-a11b-11e7-a5f6-d8cb8a13fec7} - "E:\setup.exe"
HKLM\...\Providers\l9olaieg: C:\Program Files (x86)\Khagetheputain Renew\local64spl.dll <==== ATTENTION
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.129\Installer\chrmstp.exe [2020-04-30] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MobileGo Service.lnk [2017-12-18]
ShortcutTarget: MobileGo Service.lnk -> C:\Program Files (x86)\Wondershare\MobileGo\MobileGoService.exe (Wondershare Technology Co.,Ltd -> Wondershare)
Startup: C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2018-02-14]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\Lukas\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook, Inc. -> Facebook) [File not signed]
Startup: C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\tmp8B80.tmp.vbs [2015-11-26] ()
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00C68D1E-0792-4737-ABE6-11A23C0E148C} - System32\Tasks\GoogleUpdateTaskMachineUA1d08feffd8759fd => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {021AA5EF-1063-45EB-907E-BFA16744AEC2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {057F0FDB-4D54-433E-B0E7-DA7189E9A45D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [1540544 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {078F5A49-EB5F-47D1-8AAC-D7DB43920F91} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {08398CB9-4B31-4A24-8B44-EB9BB625BA92} - System32\Tasks\GoogleUpdateTaskMachineUA1d0bf8240b41a2d => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {0A3ADA6A-7D6B-48BE-B3EE-7CAFCB01D806} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {0AB50D89-FFF4-45DA-A27F-F78224C73B18} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {0DCD5721-E663-4739-8799-D538A118462C} - System32\Tasks\Khagetheputain Renew => C:\Program Files (x86)\Hubishrwoy\danudle.exe
Task: {0DF81F83-AAE4-4D9D-AD21-1C085FB4F3CD} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0F2160CC-1C14-402D-AD23-A12D04C235E8} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {14141500-8981-4403-B402-EA338C0793AC} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {166C21CD-A7AE-44C6-9267-F23A9BD448EF} - System32\Tasks\GoogleUpdateTaskMachineUA1d0f1cdabb0a60b => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {1AC7B678-A9D3-4A29-92DC-D8F4EBF554F7} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {1CEA203A-C150-4652-AABB-7ACA3A05E166} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1D16E514-8B2B-401C-A57A-94F5BDE2C6C6} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [947136 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1E30E266-381A-446D-8258-14AA8981822C} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {1FD4545D-449E-4498-A28F-6A70BBB6E717} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {21B0555E-5B6E-4A33-8B94-554BA363328C} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2855507F-5693-4716-8CFD-A9C7EC3608E1} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {2BE35E19-B156-4AC3-A010-122DA9065272} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {300BD167-058E-4DF4-A7BE-2E53BB8E2972} - System32\Tasks\Opera scheduled Autoupdate 1447089322 => C:\Program Files (x86)\Opera\launcher.exe [1139800 2018-09-13] (Opera Software AS -> Opera Software)
Task: {303E7458-BC1B-4A0E-88AA-9DBF253DB047} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {31BE7BED-2F8C-44D1-BD22-11E99C2B41D6} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {331DDBCD-B400-4A52-8AA3-1827C9BCD258} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {39258C28-7A3C-4300-A3DC-4E16322E23F7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {3AEA29CC-B5AD-4AD2-BC6D-909CC4F0BB1C} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {3D4E9D09-C002-4945-AC40-392F521B8371} - System32\Tasks\Milimili => C:\Program Files (x86)\MIO\MIO.exe [282168 2017-05-17] (Tencent Technology(Shenzhen) Company Limited -> ) <==== ATTENTION
Task: {41E30C1E-4367-4961-83E7-F77ACA6B8A7D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {44043342-7AEF-45A6-BE72-1C5E0973F9B7} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [651200 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4767975C-6E0E-4FAA-8A88-B2977101B326} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {478A9481-F90E-4304-A5F6-68A3C6FACA5E} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {480DC16E-4D7A-4F6C-996A-A6B0C6BAA785} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {4D624449-4D60-4D19-9387-2E5BF8C036BD} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {50FC92D3-BD00-47CB-A315-A89F04ED71E1} - System32\Tasks\GoogleUpdateTaskMachineCore1d0f1cdab88d226 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {56B0A61C-507F-433D-954C-C486D2189B72} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {5A1966A9-CEB3-41A9-AE16-6BC5ABAD319F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {614E6F12-9484-46EE-9A73-6D7224A2D4B4} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [436160 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6482D3E7-3339-4124-B13F-E53C041CFA06} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {656F2A16-EFDE-4862-8AFD-D8B5E81C281C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {65F86154-AB5D-4337-8D93-BAF90FA4D306} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1670432 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {663E99B4-CA4D-4E7C-91C1-EABB63BABB64} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {66F06E9E-DF0A-433D-83B5-C509AEC75A95} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {6703186A-0465-4C3E-A08A-443207902793} - System32\Tasks\GoogleUpdateTaskMachineUA1d12ebc6be85ef3 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {69D2C974-CF78-415C-8191-C7DC384676E6} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7910D104-F17E-49AB-8776-6C77A50BAC04} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2018-09-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {7A837A76-486D-42A1-97E8-360C058D8954} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {7ADD9F03-5F2F-41C7-8737-009E296D65AD} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
Task: {7C8C0D84-7FDF-4498-A416-73AD7EA30569} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {7DB680EE-23B1-48F0-9859-CDA2BEC008FB} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2227488 2015-12-09] (Microsoft Corporation -> Microsoft)
Task: {82468688-DA9F-4710-B706-424D84B066D0} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {85175350-6DD5-4C07-ABAB-38D7F203636C} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {85780FD9-7FC6-440E-B945-27134F55C731} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {897F1BF5-3093-47B4-B81B-DCD2D9897417} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_108_Plugin.exe [1454080 2018-09-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {8A047119-D9E5-477C-B68D-D5DA2A5D8150} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {973F4372-6F08-4918-8421-4E9AB460F9B7} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {99A527D5-9275-472A-9145-E6AE919E91E4} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {9AE63F0F-455B-4671-B91D-FC96318A4D32} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2212128 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {9F51F8E6-34D8-4E87-AE46-DCC8FF65A6CA} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {AC1769AE-9049-4FAA-BCA1-EF24AE7E0B26} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [651200 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B50B0A88-6F32-4525-A344-20D1804D3764} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {B59AA759-2158-4CEA-A134-4EFB287168F1} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {B65417F6-37D2-4862-84FE-ADD7DD7BA31B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {BBC89AE6-9F6E-45EF-8F63-55A8B55BC2DB} - System32\Tasks\{1A6294B2-88B2-4000-982C-50EE66BDD741} => C:\WINDOWS\system32\pcalua.exe -a "F:\intuix_cd\Intuix CD\setup.exe" -d "F:\intuix_cd\Intuix CD"
Task: {C5110754-6125-4583-93E9-90A2E8B93F9B} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1670432 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {C68AFC55-BC6B-4932-8422-FDCAE9D0228E} - System32\Tasks\GoogleUpdateTaskMachineCore1d0e311c2edf531 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {C79F4485-F979-4998-A686-7527DFE38288} - System32\Tasks\{E9D3D202-8BE7-4283-9C8E-DB1ADD4A305D} => C:\Windows\system32\pcalua.exe -a K:\_AUTORUN\AUTORUN.EXE -d K:\
Task: {C8440877-31C2-4D5A-B13D-B78D1A784C64} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {CE403273-6ABC-4EDB-B60E-418EE36DE211} - System32\Tasks\{D082DED7-9F54-4072-B23C-9015685838FF} => C:\WINDOWS\system32\pcalua.exe -a "F:\Program Files (x86)\Mafia I - The City of Lost Heaven\Game.exe" -d "F:\Program Files (x86)\Mafia I - The City of Lost Heaven"
Task: {D0BB8582-D346-44C5-8C7E-6D22291C0569} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {D6CA3431-FF1A-4CB8-9146-6B78F0BBF8E6} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {D6F88AA6-B7B7-4C2D-BFD8-16DFDE83FA22} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2212128 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {D99CF7B4-C34D-47D3-9CD0-C486F7CE1434} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DDDA9FC3-1F1A-4C8C-A95A-47E751E16E56} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DE10E964-9B25-4F6E-9EDC-CD783AF08FE4} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [722880 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DEE2560C-3FA2-499E-8DAF-184D35357BCB} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {E140E31A-0C7F-4FFA-89E9-C6D582D94CC7} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [722880 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E55F4541-8AA4-486D-A31F-8D7584FF968D} - System32\Tasks\GoogleUpdateTaskMachineCore1d08feffd709d58 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {E7DB25D7-9344-4C16-B621-DE4DA8BD66B4} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {E81AB3AC-3816-4EBE-A8D5-0C27174B539B} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E95DA03C-4020-4063-B2FC-DF9CC9D202BD} - System32\Tasks\GoogleUpdateTaskMachineCore1d0bf824092886a => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {EF259B98-F640-49BA-8E8A-3ACAE1C31C5F} - System32\Tasks\{91840007-F1F0-480C-8352-3A5360385E8C} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Railroad Tycoon 3\UNINSTX.EXE"
Task: {EF7CE8FE-FF1D-4CE4-98B5-AEEE09AF4843} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {F27343BC-E4E8-484D-875C-05719CB62CA4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {FD539483-AC5F-43E5-A5A4-CBB51614FEBE} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {FD77CB7B-62D4-4956-841B-D5C6D9E7F315} - System32\Tasks\GoogleUpdateTaskMachineCore1d12ebc6bce6df2 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d08feffd709d58.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0bf824092886a.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0e311c2edf531.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0f1cdab88d226.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d08feffd8759fd.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0bf8240b41a2d.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0f1cdabb0a60b.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 127.0.0.1 validation.sls.microsoft.com
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{0c602eed-9ac2-4542-ac7f-b6924786abc0}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{65eee1d5-a9d8-425b-8d5e-4166b6418b14}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{9226fc84-2a17-4d77-8b05-e13aee4900e5}: [DhcpNameServer] 192.168.0.1 0.0.0.0

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617912&ResetID=132151946241391219&GUID=09B1574E-8886-4A52-9C34-8AE3E62B20AA
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={89E45FA6-09A8-45F1-8DBF-CAD680F5B060}&mid=a8b61b5eb91c47cca1f10982ccf71734-93d9ffb39f30866f6f0291e2a8bc540dcb95dfa1&lang=cs&ds=AVG&coid=avgtbavg&cmpid=ipm190214&pr=fr&d=2015-12-16 16:40:49&v=4.3.9.626&pid=wtu&sg=&sap=hp
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={89E45FA6-09A8-45F1-8DBF-CAD680F5B060}&mid=a8b61b5eb91c47cca1f10982ccf71734-93d9ffb39f30866f6f0291e2a8bc540dcb95dfa1&lang=cs&ds=AVG&coid=avgtbavg&cmpid=ipm190214&pr=fr&d=2015-12-16 16:40:49&v=4.3.9.626&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE00
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {0EDBD3F4-E096-4846-B9DE-D691BA3103C6} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {1C50BAAC-C45F-46AA-B7B2-79617F444A02} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {21B2B49F-F4DA-49CE-A9FC-C3EDE1E86455} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {431AAD9A-2776-4129-A644-3F9F151176C4} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {76DEFAE6-09B2-40B2-8F8A-5A6A5D5CE4EB} URL = hxxps://search.yahoo.com/search/?toggle=1&cop=mss&ei=UTF-8&fr=vmn&type=auslog_yaapp6_adw_ch&p={searchTerms}
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {937BFC8E-BC6F-43FE-8828-A0617CFC8708} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={89E45FA6-09A8-45F1-8DBF-CAD680F5B060}&mid=a8b61b5eb91c47cca1f10982ccf71734-93d9ffb39f30866f6f0291e2a8bc540dcb95dfa1&lang=cs&ds=AVG&coid=avgtbavg&cmpid=ipm190214&pr=fr&d=2015-12-16 16:40:49&v=4.3.9.626&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {9D8DD67D-8298-4DF4-BD42-61842EC96EEE} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {AEBA1B1E-35FE-4762-AC9C-6B81DE0B8AF7} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {D742AC74-BBC6-48E1-A0C2-E8A528458B67} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_13415
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: No Name -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> No File
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2020-04-21] (McAfee, LLC -> McAfee, LLC)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-04] (Google Inc -> Google Inc.)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2020-04-21] (McAfee, LLC -> McAfee, LLC)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation -> Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation -> Microsoft Corporation.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-04] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)

Edge:
======
DownloadDir: C:\Users\Lukas\Downloads

FireFox:
========
FF DefaultProfile: ixqmgx8f.default
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\naweriweentcofise\Profiles\ixqmgx8f.default\Profiles\ixqmgx8f.default [not found] <==== ATTENTION
FF DefaultProfile: ki8cun5l.default
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default [2020-05-06]
FF DownloadDir: G:
FF Homepage: Mozilla\Firefox\Profiles\ixqmgx8f.default -> hxxps://www.google.com/
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\Extensions\cs@dictionaries.addons.mozilla.org.xpi [2019-10-28]
FF Extension: (Czech (CZ) Language Pack) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\Extensions\langpack-cs@firefox.mozilla.org.xpi [2020-03-24]
FF Extension: (No Name) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [not found]
FF Extension: (No Name) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\extensions\sko-extension@firma.seznam.cz [not found]
FF Extension: (No Name) - C:\Program Files\McAfee\WebAdvisore10ssaffplg.xpi [not found]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\searchplugins\bing-.xml [2017-02-05]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\searchplugins\l9olaieg.xml [2017-02-27]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\searchplugins\startpageing123.xml [2017-03-27]
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Firefox\Firefox\Profiles\ki8cun5l.default [2020-01-21] <==== ATTENTION
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2020-04-21] [UpdateUrl:hxxps://www.siteadvisor.com/waffinstall/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_31_0_0_108.dll [2018-09-12] (Adobe Systems Incorporated -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_108.dll [2018-09-12] (Adobe Systems Incorporated -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-03-06] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-676012942-2397387924-1880445482-1000: SkypePlugin -> C:\Users\Lukas\AppData\Local\SkypePlugin\7.31.0.56\npGatewayNpapi.dll [2017-02-03] (Microsoft Corporation -> Skype Technologies S.A.)
FF Plugin HKU\S-1-5-21-676012942-2397387924-1880445482-1000: SkypePlugin64 -> C:\Users\Lukas\AppData\Local\SkypePlugin\7.31.0.56\npGatewayNpapi-x64.dll [2017-02-03] (Microsoft Corporation -> Skype Technologies S.A.)

Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR Profile: C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2020-03-24] <==== ATTENTION
CHR DownloadDir: E:\
CHR HomePage: ChromeDefaultData -> mysearch.avg.com
CHR StartupUrls: ChromeDefaultData -> "hxxps://www.google.com/"
CHR DefaultSearchURL: ChromeDefaultData -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=E210CZ91105G0&p={searchTerms}
CHR DefaultSearchKeyword: ChromeDefaultData -> mcafee
CHR Extension: (Prezentace) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-10-11]
CHR Extension: (Dokumenty) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2019-10-11]
CHR Extension: (Disk Google) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-07]
CHR Extension: (YouTube) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (AVG Secure Search) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2020-01-14]
CHR Extension: (Vyhledávání Google) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-07]
CHR Extension: (Adobe Acrobat) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-03-17]
CHR Extension: (MSN Homepage & Bing Search Engine) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2020-01-14]
CHR Extension: (Tabulky) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-10-11]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2020-02-07]
CHR Extension: (Dokumenty Google offline) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-03-17]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-01-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-11]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2020-02-07]
CHR Extension: (Gmail) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-10-11]
CHR Extension: (Chrome Media Router) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-03-24]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd]
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\StartMenuInternet\ChromeHTML: -> C:\Program Files (x86)\Footjane\Application\chrome.exe <==== ATTENTION

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-05-04] (Advanced Micro Devices, Inc.) [File not signed]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-04-29] (Apple Inc. -> Apple Inc.)
R2 CAMService; C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\rust-cam\dist\native\target\release\service.exe [553600 2020-04-01] (NZXT, Inc. -> )
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291904 2017-08-14] (Disc Soft Ltd -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [392976 2017-02-10] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2018-12-12] (Huawei Technologies Co., Ltd. -> ) [File not signed]
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [916712 2020-04-21] (McAfee, LLC -> McAfee, LLC)
R2 MEmuSVC; C:\Program Files (x86)\Microvirt\MEmu\MemuService.exe [85304 2019-07-02] (Shanghai Microvirt Software Technology Co., Ltd. -> )
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2475312 2020-01-15] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3393848 2020-01-15] (Electronic Arts, Inc. -> Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-03-15] (Even Balance, Inc. -> )
R2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [344576 2014-01-22] (Qualcomm Atheros) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10823184 2020-04-20] (TeamViewer Germany GmbH -> TeamViewer GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\NisSrv.exe [3304992 2020-05-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MsMpEng.exe [103376 2020-05-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WirelessKB850NotificationService; C:\WINDOWS\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe [473312 2017-03-20] (Wondershare Technology Co.,Ltd -> Wondershare)
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\MobileGo\DriverInstall.exe [101152 2017-06-01] (Wondershare Technology Co.,Ltd -> Wondershare)
S2 avg; "C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe" /svc [X]
S3 avgm; "C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe" /medsvc [X]
R2 NvContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
S3 NvContainerNetworkService; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
S2 vToolbarUpdater40.3.8; "C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.8\ToolbarUpdater.exe" [X]
S2 WtuSystemSupport; "C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdiox64; C:\WINDOWS\System32\drivers\amdiox64.sys [46136 2010-02-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [79488 2011-04-15] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [40064 2011-04-15] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [55936 2011-11-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R1 BfLwf; C:\WINDOWS\system32\DRIVERS\bflwfx64.sys [80080 2013-11-08] (Qualcomm Atheros, Inc. -> Qualcomm Atheros, Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-11-07] (Microsoft Corporation) [File not signed]
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-02-27] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-02-27] (Disc Soft Ltd -> Disc Soft Ltd)
R3 KillerEth; C:\WINDOWS\System32\drivers\e2xw10x64.sys [145920 2019-03-19] (Microsoft Windows -> Qualcomm Atheros, Inc.)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-02-07] (Malwarebytes Corporation -> Malwarebytes Corporation)
R1 MEmuDrv; C:\WINDOWS\system32\DRIVERS\MEmuDrv.sys [319192 2019-09-21] (Shanghai Microvirt Software Technology Co., Ltd. -> Maiwei Corporation)
R1 MpKslDrv; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{33A93396-E911-44A0-B466-DC2D4A1D8561}\MpKslDrv.sys [43232 2020-04-02] (Microsoft Windows -> Microsoft Corporation)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2018-05-04] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_db678424d2641c3d\nvlddmkm.sys [22094728 2019-10-04] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48064 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
R1 sbnetsys; C:\WINDOWS\system32\DRIVERS\sbnetsys.sys [44648 2015-04-17] (Mainline Net Holdings Limited -> NT Kernel Resources)
R3 usbfilter; C:\WINDOWS\system32\DRIVERS\usbfilter.sys [61464 2000-01-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45960 2020-05-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [394680 2020-05-02] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64944 2020-05-02] (Microsoft Windows -> Microsoft Corporation)
U3 aspnet_state; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-04-28 20:33 - 2020-04-28 20:33 - 000001040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk
2020-04-28 20:33 - 2020-04-28 20:33 - 000001028 _____ C:\Users\Public\Desktop\TeamViewer 12.lnk
2020-04-28 19:45 - 2020-04-28 19:45 - 000659332 _____ C:\WINDOWS\Minidump\042820-51984-01.dmp
2020-04-20 22:05 - 2020-04-20 22:05 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-04-20 22:05 - 2020-04-20 22:05 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-04-08 18:51 - 2020-04-08 18:51 - 000000222 _____ C:\Users\Lukas\Desktop\Supremacy 1914.url

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-05-06 16:49 - 2017-03-21 10:38 - 000000000 ____D C:\FRST
2020-05-06 16:47 - 2016-11-18 12:12 - 000000000 ____D C:\Users\Lukas\AppData\LocalLow\Mozilla
2020-05-06 16:46 - 2019-11-07 20:00 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-05-06 16:46 - 2019-11-07 19:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-05-06 16:46 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-05-06 16:46 - 2017-09-06 14:29 - 000000000 ____D C:\ProgramData\NVIDIA
2020-05-06 16:39 - 2019-09-26 22:50 - 000000000 ____D C:\Users\Lukas\Desktop\rozpočty
2020-05-06 16:28 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-05-06 16:22 - 2020-01-26 12:21 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-05-02 12:44 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-05-02 12:31 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-05-02 10:26 - 2018-03-04 10:30 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-04-30 16:30 - 2015-02-07 19:44 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-04-30 16:30 - 2015-02-07 19:44 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-04-30 16:27 - 2019-11-07 19:51 - 001781194 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-04-30 16:27 - 2019-03-19 13:55 - 000745534 _____ C:\WINDOWS\system32\perfh005.dat
2020-04-30 16:27 - 2019-03-19 13:55 - 000160026 _____ C:\WINDOWS\system32\perfc005.dat
2020-04-30 16:27 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-04-28 20:33 - 2017-02-24 10:58 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-04-28 20:03 - 2018-05-23 08:35 - 000000000 ____D C:\Users\Lukas\AppData\Local\PlaceholderTileLogoFolder
2020-04-28 19:45 - 2019-11-14 20:01 - 000000000 ____D C:\WINDOWS\Minidump
2020-04-20 20:53 - 2015-02-08 18:51 - 000000000 ____D C:\Program Files (x86)\Steam
2020-04-20 18:47 - 2019-11-07 19:51 - 000000000 ____D C:\Users\Lukas
2020-04-20 16:46 - 2019-11-07 20:00 - 000003364 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-676012942-2397387924-1880445482-1000
2020-04-20 16:46 - 2019-11-07 19:51 - 000002399 _____ C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-04-20 16:46 - 2016-05-18 06:04 - 000000000 ___RD C:\Users\Lukas\OneDrive
2020-04-16 10:26 - 2018-02-08 21:43 - 000000000 ____D C:\Users\Lukas\Desktop\vyuctovaní 2018
2020-04-12 11:40 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports

==================== Files in the root of some directories ========

2017-03-13 09:15 - 2017-05-11 20:36 - 000011188 _____ () C:\Program Files (x86)\metadata
2017-03-01 13:53 - 2017-03-01 13:53 - 000000046 _____ () C:\Users\Lukas\AppData\Roaming\Camdata.ini
2017-03-01 13:53 - 2017-03-01 13:53 - 000000408 _____ () C:\Users\Lukas\AppData\Roaming\CamLayout.ini
2017-03-01 13:53 - 2017-03-01 13:53 - 000000408 _____ () C:\Users\Lukas\AppData\Roaming\CamShapes.ini
2017-03-01 13:53 - 2017-03-01 13:53 - 000004536 _____ () C:\Users\Lukas\AppData\Roaming\CamStudio.cfg
2017-03-01 13:51 - 2017-03-01 13:51 - 000000096 _____ () C:\Users\Lukas\AppData\Roaming\version2.xml
2017-03-16 12:48 - 2017-03-16 12:48 - 000000000 _____ () C:\Users\Lukas\AppData\Local\Driver_LOM_8161Present.flag
2015-12-30 11:01 - 2019-12-30 23:02 - 000014560 _____ () C:\Users\Lukas\AppData\Local\FSDownloader.err
2015-12-30 11:01 - 2020-01-26 12:21 - 000001312 _____ () C:\Users\Lukas\AppData\Local\FSDownloader.nast
2020-03-29 14:28 - 2020-03-29 14:28 - 000000017 _____ () C:\Users\Lukas\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Re: vypíná se mi pc

Napsal: 06 kvě 2020 16:14
od Rudy
Teď spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Re: vypíná se mi pc

Napsal: 06 kvě 2020 17:47
od lukass9
# -------------------------------
# Malwarebytes AdwCleaner 8.0.4.0
# -------------------------------
# Build: 04-03-2020
# Database: 2020-04-08.2 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 05-06-2020
# Duration: 00:00:32
# OS: Windows 10 Home
# Scanned: 31802
# Detected: 9


***** [ Services ] *****

PUP.Adware.Heuristic vToolbarUpdater40.3.8
PUP.Optional.Legacy WtuSystemSupport

***** [ Folders ] *****

PUP.Optional.DriverNavigator C:\Program Files\Easeware\DriverNavigator
PUP.Optional.DriverNavigator C:\Users\Lukas\AppData\Roaming\Easeware\DriverNavigator
PUP.Optional.Legacy C:\Users\Lukas\AppData\Roaming\Firefox

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\Main|Start Page
PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}

***** [ Chromium (and derivatives) ] *****

PUP.Optional.Legacy MSN Homepage & Bing Search Engine - fcfenmboojpjinhpgggodefccipikbpd

***** [ Chromium URLs ] *****

PUP.Optional.Legacy ourluckysites

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.


AdwCleaner_Debug.log - [487976 octets] - [28/10/2019 19:42:26]
AdwCleaner[S00].txt - [23131 octets] - [28/10/2019 19:45:52]
AdwCleaner[C00].txt - [19361 octets] - [28/10/2019 19:46:39]
AdwCleaner[S01].txt - [1821 octets] - [14/11/2019 19:17:27]
AdwCleaner[C01].txt - [1879 octets] - [14/11/2019 19:18:01]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S02].txt ##########

Re: vypíná se mi pc

Napsal: 06 kvě 2020 17:51
od lukass9
# -------------------------------
# Malwarebytes AdwCleaner 8.0.4.0
# -------------------------------
# Build: 04-03-2020
# Database: 2020-04-08.2 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 05-06-2020
# Duration: 00:00:02
# OS: Windows 10 Home
# Cleaned: 9
# Failed: 0


***** [ Services ] *****

Deleted WtuSystemSupport
Deleted vToolbarUpdater40.3.8

***** [ Folders ] *****

Deleted C:\Program Files\Easeware\DriverNavigator
Deleted C:\Users\Lukas\AppData\Roaming\Easeware\DriverNavigator
Deleted C:\Users\Lukas\AppData\Roaming\Firefox

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Microsoft\Internet Explorer\Main|Start Page
Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}

***** [ Chromium (and derivatives) ] *****

Deleted MSN Homepage & Bing Search Engine - fcfenmboojpjinhpgggodefccipikbpd

***** [ Chromium URLs ] *****

Deleted ourluckysites

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner_Debug.log - [487976 octets] - [28/10/2019 19:42:26]
AdwCleaner[S00].txt - [23131 octets] - [28/10/2019 19:45:52]
AdwCleaner[C00].txt - [19361 octets] - [28/10/2019 19:46:39]
AdwCleaner[S01].txt - [1821 octets] - [14/11/2019 19:17:27]
AdwCleaner[C01].txt - [1879 octets] - [14/11/2019 19:18:01]
AdwCleaner[S02].txt - [2254 octets] - [06/05/2020 18:43:37]
AdwCleaner[S03].txt - [2315 octets] - [06/05/2020 18:48:45]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C03].txt ##########

Re: vypíná se mi pc

Napsal: 06 kvě 2020 17:56
od Rudy
Dejte nové logy FRST+Addition.

Re: vypíná se mi pc

Napsal: 06 kvě 2020 18:12
od lukass9
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-05-2020
Ran by Lukas (06-05-2020 19:10:43)
Running from G:\
Windows 10 Home Version 1903 18362.720 (X64) (2019-11-07 18:00:28)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-676012942-2397387924-1880445482-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-676012942-2397387924-1880445482-503 - Limited - Disabled)
Guest (S-1-5-21-676012942-2397387924-1880445482-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-676012942-2397387924-1880445482-1003 - Limited - Enabled)
Lukas (S-1-5-21-676012942-2397387924-1880445482-1000 - Administrator - Enabled) => C:\Users\Lukas
WDAGUtilityAccount (S-1-5-21-676012942-2397387924-1880445482-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {4FC75CA5-1654-5411-7CFB-1893D506BCF4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

4game (HKLM-x32\...\4game2.0) (Version: 1.0.0.94 - Innova Co. SARL)
4K Video Downloader 4.5 (HKLM\...\{180B9AE1-F87B-4107-8C68-4265E927D6A8}) (Version: 4.5.0.2482 - Open Media LLC)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.006.20042 - Adobe Systems Incorporated)
Adobe Flash Player 31 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 31.0.0.108 - Adobe Systems Incorporated)
AIDA64 Extreme v5.00 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.00 - FinalWire Ltd.)
Aktualizace NVIDIA 28.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 28.0.0.0 - NVIDIA Corporation) Hidden
AlphaGo (HKLM-x32\...\{B20B3A3C-91E3-4326-8A0F-B3C012574F8C}) (Version: 1.1.2 - Default Company Name) <==== ATTENTION
AMD Catalyst Install Manager (HKLM\...\{E3C27552-F408-6465-3CA2-AA63826EC350}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMDProductVerification (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\4ecb547ba21a923a) (Version: 1.0.25.99 - AMDProductVerification)
amuleC (HKLM-x32\...\{0F7B5011-72EC-493D-A7BF-546591047E8E}) (Version: 1.0.2 - amuleC) <==== ATTENTION
amulesw (HKLM-x32\...\{3CC3DE19-E0B1-4D42-87AB-B5C61FE4BA58}) (Version: 1.0.6 - amules) <==== ATTENTION
Anno 1800 Open Beta (HKLM-x32\...\Uplay Install 13800) (Version: - Ubisoft)
Apple Mobile Device Support (HKLM\...\{B5A46811-3612-4DA5-8A5A-E6DED5D7C523}) (Version: 12.2.1.12 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Audiobook Downloader Pro 1.3 (HKLM-x32\...\Audiobook Downloader Pro) (Version: 1.3 - SuperUtils.com Software)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BikaQ Rss (HKLM-x32\...\{3678D164-84DB-4F73-AFD6-916342E10764}) (Version: 3.0.17 - BikaQ) <==== ATTENTION
Bing Bar (HKLM-x32\...\{16793295-2366-40F7-A045-A3E42A81365E}) (Version: 7.1.362.0 - Microsoft Corporation)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Booking (HKLM-x32\...\{13D4CD54-EA09-4FDB-B979-8B2BC0F020CA}_is1) (Version: 2.0.701 - Booking)
CamStudio 2.7.4 (HKLM\...\{04B83666-3A62-452B-85D3-70F8117F2329}_is1) (Version: 2.7.4 - CamStudio Open Source)
Car Mechanic Simulator 2018 (HKLM-x32\...\Car Mechanic Simulator 2018_is1) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.63 - Piriform)
Ceník stavebních prací 2.4 - aktualizace A (HKLM-x32\...\Ceník stavebních prací_is1) (Version: 2.4 - aktualizace A - Verlag Dashöfer s.r.o)
Cities In Motion (HKLM-x32\...\{15FA5ED6-2F98-4B5E-AF0B-18E5F4723FAD}_is1) (Version: - )
Cities XXL (HKLM-x32\...\Cities XXL_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter)
Cities: Skylines - ČEŠTINA (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Cities: Skylines - ČEŠTINA) (Version: - )
Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.62.0 - OEM) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.6.0.0283 - Disc Soft Ltd)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
DVD Shrink 3.2 (HKLM-x32\...\DVD Shrink_is1) (Version: - DVD Shrink)
Epic Games Launcher (HKLM-x32\...\{DCE27B29-200D-491A-BBC5-98ECEFEC0843}) (Version: 1.1.257.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
EVE Online (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\{5e6d5785-73e8-423f-a54c-b75cd3f5db13}) (Version: 1.0.0 - CCP)
Facebook Gameroom 1.20.6598.21896 (HKLM-x32\...\{C51FED78-02E5-4A80-B4D0-A4A474BB0CDD}) (Version: 1.20.6598.21896 - Facebook)
Far Cry 4 (HKLM-x32\...\Far Cry 4_is1) (Version: 1.4.0 - Ubisoft)
Farming Simulator 17 (HKLM-x32\...\{A82E512C-3BFB-43F8-B97F-8AA8F209B83B}) (Version: 1.2.0.0 - GIANTS Software) Hidden
Farming Simulator 17 (HKLM-x32\...\Farming Simulator 17 1.2.0.0) (Version: 1.2.0.0 - GIANTS Software)
Farming Simulator 19 (HKLM-x32\...\Farming Simulator 19_is1) (Version: - )
Firestorm Launcher version 1.3 (HKLM-x32\...\{008D5963-9A73-4472-8C16-A5BF04491B9D}_is1) (Version: 1.3 - Firestorm)
Flash Memory Toolkit trial 2.01 (HKLM-x32\...\Flash Memory Toolkit trial_is1) (Version: - EFD Software)
FORM studio (HKLM-x32\...\FSCZ_is1) (Version: - KASTNER software s.r.o.)
GitHub Desktop (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\GitHubDesktop) (Version: 1.0.11 - GitHub, Inc.)
Google Drive (HKLM-x32\...\{A1238426-ECDF-4639-BE2F-8D12A97AE23C}) (Version: 2.34.5075.1619 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 81.0.4044.129 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Hearts of Iron IV (HKLM-x32\...\Hearts of Iron IV_is1) (Version: - )
HiSuite (HKLM-x32\...\Hi Suite) (Version: 9.0.3.300 - )
Charity Engine (HKLM-x32\...\{7309D717-F38D-436D-9537-066AA0AC7639}) (Version: 7.0.80 - Charity Engine)
iCloud (HKLM\...\{DA6D808E-3629-4933-8FB3-583F9BCB0DEF}) (Version: 7.12.0.14 - Apple Inc.)
iTunes (HKLM\...\{7B81A249-0187-436C-9738-AF82DAA54822}) (Version: 12.9.5.7 - Apple Inc.)
Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
Kingdom Come Deliverance (HKLM-x32\...\Kingdom Come Deliverance_is1) (Version: - )
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LineageII EU (HKLM-x32\...\4game_lineage2eu) (Version: - Innova Systems)
Mafia I - The City of Lost Heaven verze v1.3 (HKLM-x32\...\{360EBFE4-4591-4AE6-8D97-A58A43C15869}_is1) (Version: v1.3 - Danik1B9)
Malwarebytes Anti-Malware verze 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Mashinky CZ v.21.02.2019 (HKLM-x32\...\Mashinky CZ v.21.02.2019) (Version: v.21.02.2019 - Libbi)
Math Problem Solver (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Math Problem Solver) (Version: - ) <==== ATTENTION
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.92 - McAfee, LLC.)
MEmu (HKLM-x32\...\MEmu) (Version: 7.1.1.0 - Microvirt Software Technology Co. Ltd.)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{929CE49F-1CA7-4CF3-A9A1-6D757443C63F}) (Version: 1.2.0241 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.7.133.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\OneDriveSetup.exe) (Version: 19.232.1124.0012 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 72.0.2 (x64 en-US) (HKLM\...\Mozilla Firefox 72.0.2 (x64 en-US)) (Version: 72.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 70.0 - Mozilla)
Mp3 Editor for Free v5.2.7 Build 79 (HKLM-x32\...\Mp3 Editor for Free_is1) (Version: 5.2.7 Build 79 - Mp3EditorforFree Ltd.)
NVIDIA GeForce Experience 3.9.0.97 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.9.0.97 - NVIDIA Corporation)
NVIDIA GeForce NOW 2.0.16.148 (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GeforceNOW) (Version: 2.0.16.148 - NVIDIA Corporation)
NVIDIA Install Application (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer) (Version: 2.1002.338.0 - NVIDIA Corporation) Hidden
NVIDIA Ovladač HD audia 1.3.38.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.16 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 432.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 432.00 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{D9559CE2-9C58-F414-43EA-F908FEA13BB8}) (Version: 1.00.0000 - Název společnosti:)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Opera Stable 55.0.2994.61 (HKLM-x32\...\Opera 55.0.2994.61) (Version: 55.0.2994.61 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.5.59.36848 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 432.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 432.00 - NVIDIA Corporation) Hidden
Paradox Launcher v2 (HKLM\...\{A8D4AE16-519B-409D-B5B4-2647C06805AD}) (Version: 2.0.3.0 - Paradox Interactive)
PDF To Excel Converter V3.0 (HKLM-x32\...\PDF To Excel Converter_is1) (Version: - hxxp://www.PDFExcelConverter.com)
Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.) Hidden
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{C1BCFECF-6EC2-4750-9072-5E2489423F8F}) (Version: 7.5 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{B202C7F5-7DE3-4FBF-B259-E70E625F56FC}) (Version: 7.5 - Apple Inc.)
Qualcomm Atheros Bandwidth Control Filter Driver (HKLM\...\{C80C9B28-CF99-431C-88C8-8B1F9B6A182F}) (Version: 1.1.39.1040 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer E220x Drivers (HKLM\...\{DD2A85B3-64C5-4263-A7AF-4F61FA5F369A}) (Version: 1.1.39.1040 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer Network Manager Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.39.1040 - Qualcomm Atheros)
Qualcomm Atheros Network Manager (HKLM\...\{7364C716-1212-4EAE-B0C9-A31D1E797BF8}) (Version: 1.1.39.1040 - Qualcomm Atheros) Hidden
Railroad Tycoon II Platinum (HKLM-x32\...\1445250876_is1) (Version: 2.0.0.5 - GOG.com)
Railway Empire (HKLM-x32\...\1556481953_is1) (Version: 1.1.1.17568 - GOG.com)
RAUCAD-TechCON (7.2) (HKLM-x32\...\{889D28AD-3F0C-48CD-B9BA-95B89A848DD6}) (Version: 7.00.0715 - Atcon systems s.r.o.)
Realpolitiks version 1.3.4 (HKLM-x32\...\{728B7AF5-D053-4F1A-9C6A-019B1376D99C}_is1) (Version: 1.3.4 - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7780 - Realtek Semiconductor Corp.)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 1.05.45.00(23.5.2014) - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Samsung Universal Scan Driver (HKLM-x32\...\Samsung Universal Scan Driver) (Version: 1.2.19.0 - Samsung Electronics Co., Ltd.)
Search App by Ask (HKLM-x32\...\{4F524A2D-5350-4500-76A7-A758B70C2E03}) (Version: 12.46.3.4268 - APN, LLC) <==== ATTENTION
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Shockwave (HKLM-x32\...\Shockwave) (Version: - )
Sid Meier's Civilization: Beyond Earth Rising Tide Addon (HKLM\...\U2lkTWVpZXJzQ2l2aWxpemF0aW9uQmV5b25kRWFydGg=_is1) (Version: 1 - )
SketchUp 2016 (HKLM\...\{D87EE6DC-32BA-4219-AC75-0A6FD54ED058}) (Version: 16.0.19912 - Trimble Navigation Limited)
Skype HoloLens Add-In (HKLM-x32\...\{38A3693F-1954-450F-8E42-C0E6F9C1AE94}) (Version: 1.0.0.0 - Microsoft Corporation)
Skype Web Plugin (HKLM-x32\...\{CD62BCB9-02D2-443F-AC7A-443377DA5B38}) (Version: 7.31.0.56 - Skype Technologies S.A.)
Skype™ 7.38 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.38.101 - Skype Technologies S.A.)
Sony PC Companion (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.297 - Sony)
Sound Blaster Cinema 2 (HKLM-x32\...\{B4F6F8CC-2C61-42CC-A4CC-76621F25BDC7}) (Version: 1.00.06 - Creative Technology Limited)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stellaris (HKLM-x32\...\Stellaris_is1) (Version: - )
Střechy a stěny TONDACH 2018 (HKLM-x32\...\Střechy a stěny TONDACH 2018_is1) (Version: - )
Sudden Strike II (HKLM-x32\...\Sudden Strike II) (Version: - )
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.251385 - TeamViewer)
Terela (HKLM-x32\...\{E2F7C535-0785-4C2D-B56F-016BFD02B010}) (Version: 1.1.6 - Terela)
The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 2.6.3.0 - Zenimax Online Studios)
The Elder Scrolls V Skyrim LE (HKLM-x32\...\The Elder Scrolls V Skyrim LE_is1) (Version: - )
TrafficGiant-Gold Edition (HKLM-x32\...\TrafficGiant-Gold Edition) (Version: - )
Transport Fever (HKLM-x32\...\1720767912_is1) (Version: 2.0.0.2 - GOG.com)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 85.1 - Ubisoft)
USB PC Camera (ZS211) (HKLM-x32\...\{44D02D8B-FFB3-4245-8D26-68D10B4C4023}) (Version: 1.00.000 - )
VIA Platforma Ovladače zařízení (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)
WhatsApp (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\WhatsApp) (Version: 0.4.2081 - WhatsApp)
Win10 Spy Disabler v1.4 (HKLM\...\Win10 Spy Disabler_is1) (Version: 1.4.0.0 - site2unblock.com)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{3577E42B-3347-4EB8-BFDA-D36E8ED3C519}) (Version: 1.0.24.0 - Microsoft Corporation)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
WinRAR 5.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
WinSetupFromUSB (HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\WinSetupFromUSB) (Version: - )
Wondershare MobileGo(Version 8.5.0) (HKLM-x32\...\{1E04C795-7359-4E05-8A0E-5644F777AA09}_is1) (Version: 8.5.0 - Wondershare)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
youndoo - Uninstall (HKLM-x32\...\{2AEE6375-5F4E-4EF3-82AE-68CCB56539EF}) (Version: - ) <==== ATTENTION

Packages:
=========
Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_460.16.123.0_x64__8xx8rvfyw5nnt [2020-04-30] (Facebook Inc)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-02] (Microsoft Studios) [MS Ad]
MSN Money -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
Samsung Printer Experience -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCO.LTD.SamsungPrinterExperience_1.3.15.0_x64__3c1yjt4zspk6g [2017-09-06] (Samsung Electronics Co. Ltd.)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-09] (Twitter Inc.)
WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x64__8wekyb3d8bbwe [2016-05-19] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\ChromeHTML: -> <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-676012942-2397387924-1880445482-1000_Classes\CLSID\{E5A7A7B5-9D06-4DBE-BAC0-04B69FF070B5}\InprocServer32 -> C:\Users\Lukas\AppData\Local\SkypePlugin\7.31.0.56\GatewayActiveX-x64.dll (Microsoft Corporation -> Skype Technologies S.A.)
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6671064 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks: No Name - {D7743BB4-F774-11E6-8881-64006A5CFC23} - -> No File
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-03-21] (Google Inc -> Google)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2019-05-08] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-03-21] (Google Inc -> Google)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\atiacm64.dll [2015-06-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-10-03] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2014-12-02] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2011-02-18] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2011-02-18] (Electronic Arts -> On2.com)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\Lukas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files (x86)\Firefox\Firefox.exe (Mozilla Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Firefox\Firefox.exe (Mozilla Corporation)
ShortcutWithArgument: C:\Users\Lukas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\360c22b137d62ce9\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=ChromeDefaultData

==================== Loaded Modules (Whitelisted) =============

2015-02-07 19:44 - 2014-01-02 11:19 - 000040960 ____N ( ( ) [File not signed]) [File is in use ] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\Interop.CTSndCr.dll
2015-02-07 19:44 - 2014-02-21 12:03 - 000991232 ____N ( (Creative Technology Ltd) [File not signed]) [File is in use ] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\en-US\SBCinema2.resources.dll
2017-12-18 19:39 - 2015-02-27 11:35 - 000489984 _____ ( (Newtonsoft) [File not signed]) [File is in use ] C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\Newtonsoft.Json.dll
2017-12-18 19:39 - 2017-03-20 17:13 - 000087552 _____ ( (Wondershare) [File not signed]) [File is in use ] C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppCollect.dll
2017-12-18 19:39 - 2017-03-20 17:13 - 000197632 _____ ( (Wondershare) [File not signed]) [File is in use ] C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppCommon.dll
2011-11-13 15:30 - 2011-11-13 15:30 - 000676864 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2012-05-04 16:41 - 2012-05-04 16:41 - 000211968 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2011-11-13 15:31 - 2011-11-13 15:31 - 003643392 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2020-02-20 22:23 - 2020-02-20 22:23 - 098275328 _____ () [File not signed] G:\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libcef.dll
2020-02-20 22:23 - 2020-02-20 22:23 - 000092672 _____ () [File not signed] G:\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libEGL.dll
2020-02-20 22:23 - 2020-02-20 22:23 - 003922432 _____ () [File not signed] G:\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libGLESv2.dll
2015-02-07 19:44 - 2012-04-27 11:26 - 000529920 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\CTAudEp.dll
2015-02-07 19:44 - 2011-09-22 20:04 - 000238080 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\CTLoadRs.dll
2015-02-07 19:44 - 2013-08-22 11:36 - 000249344 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\HKDetect.dll
2020-02-20 22:23 - 2020-02-20 22:23 - 000547840 _____ (The Chromium Authors) [File not signed] G:\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\chrome_elf.dll
2019-12-17 19:25 - 2020-01-14 19:04 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2017-01-11 20:42 - 2020-01-14 19:04 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2019-12-17 19:25 - 2020-01-14 19:04 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2020-01-20 20:05 - 2020-01-14 19:04 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2020-01-20 20:05 - 2020-01-14 19:04 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2020-01-20 20:05 - 2020-01-14 19:04 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2020-01-20 20:05 - 2020-01-14 19:04 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2020-01-20 20:05 - 2020-01-14 19:04 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2018-12-18 22:17 - 000000864 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 validation.sls.microsoft.com

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\AMD APP\bin\x86_64;C:\Program Files (x86)\AMD APP\bin\x86;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Skype\Phone\;C:\Program Files (x86)\AMD\ATI.ACE\Core-Static;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.

Network Binding:
=============
Připojení k místní síti: Qualcomm Atheros Bandwidth Control -> BF_NdisLwf (enabled)
Připojení k místní síti: WinpkFilter LightWeight Filter -> nt_sbnetsys (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\StartupFolder: => "MobileGo Service.lnk"
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\StartupApproved\StartupFolder: => "Facebook Gameroom.lnk"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{E74CA79D-6821-4895-A0DB-03B6E2B917D6}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [UDP Query User{D2AA78C7-80AE-426B-BE14-937BCA673CF0}C:\program files (x86)\firefox\firefox.exe] => (Block) C:\program files (x86)\firefox\firefox.exe (Mozilla Corporation) [File not signed]
FirewallRules: [TCP Query User{C47647E8-5D84-46B8-A307-442BFC404B42}C:\program files (x86)\firefox\firefox.exe] => (Block) C:\program files (x86)\firefox\firefox.exe (Mozilla Corporation) [File not signed]
FirewallRules: [UDP Query User{26AAA118-D790-4881-96AD-CCF81F2CB7AF}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Block) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [TCP Query User{5212072F-78EE-4DC8-A70F-691ADC90A335}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Block) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [{824DBECC-930A-4B75-9973-9EA55BC1C311}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{58837D82-61CD-4248-A985-2A5C7642B49E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{87FB5B77-2A10-42C5-A922-109BBE49DB88}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{3521D0DB-E53D-4002-8E5B-785432CA59AD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{36DCBBDD-26D1-4F18-A0F7-EDBF8144C18E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{FBBF796E-2987-457E-BDAD-8097B223710A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4F9F4F93-FA9F-4824-91DA-A39D562245B3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{BE391B67-CE55-4CCA-A199-C043B8EB741F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{018D2ADC-3AEE-4C6C-BFC2-5033D65E5EA9}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{148806E8-47F6-437D-9899-75DA7E5F20E7}] => (Allow) C:\Program Files (x86)\Opera\55.0.2994.61\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{ABA3BAC5-8750-4860-B256-3CED950DE7C1}] => (Allow) C:\Program Files (x86)\MIO\loader\kingstonxsv300s37a240g_50026b774b03171a.dat () [File not signed]
FirewallRules: [{DED48896-3952-4AF6-A273-5391CE980C48}] => (Allow) C:\Program Files (x86)\MIO\loader\kingstonxsv300s37a240g_50026b774b03171a.dat () [File not signed]
FirewallRules: [{990E1485-6B97-485F-B0B9-911982F2D86B}] => (Allow) C:\Program Files (x86)\Opera\55.0.2994.44\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{2523E2E9-1A5A-4CEB-A014-990EB35E177B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{CADB1CC0-D762-4C5F-9CB8-B2F5FBF14B43}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{533919E2-AB5A-4F7B-8798-7EBFCEC66EEF}C:\program files (x86)\wondershare\mobilego\mobilego.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilego.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [TCP Query User{26A307CE-F98D-4A1A-B5C3-594AEB4CCA12}C:\program files (x86)\wondershare\mobilego\mobilego.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilego.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [UDP Query User{B8283334-7E0D-46D0-B95D-959B0ED7FDC4}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [TCP Query User{C127EBBE-1051-4C68-9B52-51D2C36700BD}C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe] => (Allow) C:\program files (x86)\wondershare\mobilego\mobilegoservice.exe (Wondershare Technology Co.,Ltd -> Wondershare)
FirewallRules: [UDP Query User{180C8FD2-D3D5-4633-850D-3194AB6945DC}H:\program files\farming simulator 17\dedicatedserver.exe] => (Allow) H:\program files\farming simulator 17\dedicatedserver.exe No File
FirewallRules: [TCP Query User{2454C648-F7F9-42F1-81A4-769676D713AF}H:\program files\farming simulator 17\dedicatedserver.exe] => (Allow) H:\program files\farming simulator 17\dedicatedserver.exe No File
FirewallRules: [{AE180C12-5F81-448F-8C53-25FA05A978DB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D52DA489-F743-48FF-8257-225F9D34343C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D24236C4-B694-401B-9235-95C112EBE35D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B76CA01C-67C2-438D-938A-572919039813}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{23969D2D-5CCA-4B42-9221-6405D8EB6AAB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{437741F8-DC38-4756-8486-49CA834A4A58}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{30DF629E-E1AC-4615-9101-FD1B72BEFE00}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{D7863895-4454-4622-BC78-FD9BD3AAA12B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{7F552DA7-05F5-4655-8F66-A507358920B9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{E0C73EC5-E891-4622-965D-62EDA31DD5AE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Star Trek Online\Star Trek Online.exe (Cryptic Studios Inc. -> )
FirewallRules: [{81FA5270-87DE-49B8-84E0-1ACED452FBD6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Star Trek Online\Star Trek Online.exe (Cryptic Studios Inc. -> )
FirewallRules: [{E4543782-368D-4C24-8730-C380C2169CDE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{873DC531-8A81-4912-8608-E3F08B3F9B9D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\War Thunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{29871937-8A62-42BD-97D0-8B8F90B1BF60}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{82631BE1-F8E1-4898-8D54-691166802885}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{84A008EB-78B4-488F-A5AF-EDED4211562C}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{5E3CA82C-0DBF-4B8E-9CED-869A62BB3CBB}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{72DCC175-2194-4250-BAFD-7261F55BD575}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{09611358-6852-4166-9F26-F5942B9C7100}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{4BCC85D2-A491-4553-A3B4-BB700FBBF452}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{35E0C492-E1D0-42CF-82F4-B7DB2AE00F3A}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{D37D00D8-6E22-4E5E-87F6-90FB8C2C1A02}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe (Samsung Electronics Co., Ltd.) [File not signed]
FirewallRules: [{98B322AA-6545-448D-AB25-386816CAC5F9}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe (Samsung Electronics Co., Ltd.) [File not signed]
FirewallRules: [{C5D9088C-95F6-40F4-9C8A-A2BBC9C07CBE}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{C16EE9D5-7673-4D13-8A79-C195DA888425}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
FirewallRules: [{62ED1F89-78BE-423A-BCF0-FF308DEF6DCA}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\ScanProcess.exe (Samsung Electronics CO., LTD. -> ScanProcess)
FirewallRules: [{BFEB002B-F6D2-425E-8907-CB854F6B6657}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\ScanProcess.exe (Samsung Electronics CO., LTD. -> ScanProcess)
FirewallRules: [{72B6BCD1-0D46-4AA1-BFDE-3EC7D7C270BE}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\Scan2PCNotify.exe (Samsung Electronics CO., LTD. -> Scan2PCNotify)
FirewallRules: [{ED3AD914-89AF-4C1C-AB7C-FA962EDBBB67}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\Scan2PCNotify.exe (Samsung Electronics CO., LTD. -> Scan2PCNotify)
FirewallRules: [{F72EBBB8-6BF7-467B-8BB1-4570B7B545BA}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{71ED3801-6FB1-4256-AA70-33FD6B92224F}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{C271645F-7A20-46F0-8E1E-144A4DC0D3F3}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ICCUpdater.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{CAED66B1-28EE-4EC9-9265-55B844F9FBC8}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ICCUpdater.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{9047606F-C417-41AD-BB3F-81EF7E3B47B0}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{C2131B8B-B1CB-433D-97AA-2F76325FACFE}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{FB68EFF4-B072-43E3-BADD-8DF55D32809C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cryptic Studios\Neverwinter.exe (Cryptic Studios Inc. -> )
FirewallRules: [{2651B740-9EAF-4566-B748-147B780B3188}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cryptic Studios\Neverwinter.exe (Cryptic Studios Inc. -> )
FirewallRules: [{04EC1888-4546-4999-B251-571845B7116D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Might & Magic - Duel of Champions\Game.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{E9B7C25D-730E-4FE8-AB5A-623EF5ABD91B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Might & Magic - Duel of Champions\Game.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{A28056B1-E948-4F3F-84D8-6529B09B4987}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{3BEF6539-7729-4A96-A48D-2D74F93A6142}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{208103E8-707C-4A3C-A135-668B704FDFCE}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{958EF457-2D5E-4FCE-9D49-96479D289517}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{89281832-930A-42B9-BF8D-99BCA790AE49}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C4E2F052-AC12-4D2D-B390-0F81C790FEBA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{AE17E1C3-96A7-486A-9ACF-DE1BB8BF9AAA}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [UDP Query User{07D65D27-6C38-425C-A61C-631B7250E22C}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [TCP Query User{5CE1E5F5-A3A0-4F1D-B57A-57DD8C2F0CA5}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe No File
FirewallRules: [UDP Query User{66EDF803-6279-4014-B0ED-A17592AA88E0}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe No File
FirewallRules: [TCP Query User{6A2F8193-C0B5-4883-A50F-97A3FB023CFE}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe No File
FirewallRules: [UDP Query User{67E833A5-ED03-4C72-B458-1EB7AE5BF74B}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe No File
FirewallRules: [TCP Query User{912E7446-9068-49F4-9A6B-7B9165A69EA8}F:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Block) F:\program files (x86)\diablo iii\x64\diablo iii64.exe No File
FirewallRules: [UDP Query User{9BC97502-B126-4A7E-861A-72AF65D380A8}F:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Block) F:\program files (x86)\diablo iii\x64\diablo iii64.exe No File
FirewallRules: [{FFE8D1A7-30C9-4559-B973-C78137D2CA6B}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{94EA2475-27CF-4B88-80D3-8741570D47B9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\For Honor Open Beta\forhonor.exe (Blue Byte GmbH -> Ubisoft)
FirewallRules: [{26BE49B9-7A60-4054-9EF1-A6D3327EF645}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\For Honor Open Beta\forhonor.exe (Blue Byte GmbH -> Ubisoft)
FirewallRules: [TCP Query User{D7A3574E-9AA7-4D54-82F2-FE458591B551}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [UDP Query User{D35D7E93-6FA3-4B03-9A87-83A97389E84C}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [TCP Query User{874E3214-D56E-463B-8840-3B0C257EEE87}F:\filmy\search_tool_win_xp\searchtool.exe] => (Allow) F:\filmy\search_tool_win_xp\searchtool.exe No File
FirewallRules: [UDP Query User{D0F79A5B-0D88-4073-BFB1-C4220B5549CE}F:\filmy\search_tool_win_xp\searchtool.exe] => (Allow) F:\filmy\search_tool_win_xp\searchtool.exe No File
FirewallRules: [TCP Query User{0F2FD01A-1A4B-4FBE-ACBC-B84F9A3DC462}C:\users\lukas\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\lukas\appdata\local\skypeplugin\pluginhost.exe (Microsoft Corporation -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{4129F8ED-0F5C-4199-937A-4E4C2804F230}C:\users\lukas\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\lukas\appdata\local\skypeplugin\pluginhost.exe (Microsoft Corporation -> Skype Technologies S.A.)
FirewallRules: [{06AAB67F-D7A5-42D7-857E-4CA5F8B70B29}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{505521F3-1C64-430C-B5BB-51A319E628FE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{68AEACA6-E17D-43DA-A82E-86BCE6DFE2DF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{254ABB7F-4B65-4FF3-833C-6CCD9B21161D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{96386857-DD26-4E60-A873-DBD070CC7483}F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe] => (Block) F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe No File
FirewallRules: [UDP Query User{1F44A342-9A6B-4023-ADA8-494D9D4765E7}F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe] => (Block) F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe No File
FirewallRules: [TCP Query User{7ECEE922-8938-4821-BD5B-D9D82254E135}F:\hry\far cry 4\bin\farcry4.exe] => (Allow) F:\hry\far cry 4\bin\farcry4.exe No File
FirewallRules: [UDP Query User{0E663628-B912-4F04-AF44-0E8053FE27A4}F:\hry\far cry 4\bin\farcry4.exe] => (Allow) F:\hry\far cry 4\bin\farcry4.exe No File
FirewallRules: [TCP Query User{B74490D4-05D2-4AB0-BD77-2A277BA7545F}C:\program files\litecoin\litecoin-qt.exe] => (Allow) C:\program files\litecoin\litecoin-qt.exe No File
FirewallRules: [UDP Query User{143DC50B-219C-4114-8E8F-E8BC0D6B35DE}C:\program files\litecoin\litecoin-qt.exe] => (Allow) C:\program files\litecoin\litecoin-qt.exe No File
FirewallRules: [TCP Query User{15440FDB-4B6F-48A1-824C-7A84E96D09B6}C:\program files\bitcoin\bitcoin-qt.exe] => (Allow) C:\program files\bitcoin\bitcoin-qt.exe No File
FirewallRules: [UDP Query User{4E691515-6FC1-43C8-81C6-DBB1B7F8F75B}C:\program files\bitcoin\bitcoin-qt.exe] => (Allow) C:\program files\bitcoin\bitcoin-qt.exe No File
FirewallRules: [TCP Query User{4C07B869-37F5-4F44-907E-BC68ED984A26}H:\gog games\railway empire\railwayempire.exe] => (Allow) H:\gog games\railway empire\railwayempire.exe No File
FirewallRules: [UDP Query User{5673BEC2-A4F2-4F0A-AC2D-707C1F07870C}H:\gog games\railway empire\railwayempire.exe] => (Allow) H:\gog games\railway empire\railwayempire.exe No File
FirewallRules: [{576DE4BB-9B0D-46E5-B361-162018E2F13B}] => (Allow) H:\Program Files (x86)\SteamLibrary\steamapps\common\star conflict\game.exe No File
FirewallRules: [{3E6BAF4B-19DA-4C54-833F-FD154DE90925}] => (Allow) H:\Program Files (x86)\SteamLibrary\steamapps\common\star conflict\game.exe No File
FirewallRules: [TCP Query User{5F82500E-6BD6-43D4-B594-9119D5ADEB5D}H:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) H:\games\kingdom come deliverance\bin\win64\kingdomcome.exe No File
FirewallRules: [UDP Query User{E8261C4A-5748-4FAB-BFB7-57C014C2F580}H:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) H:\games\kingdom come deliverance\bin\win64\kingdomcome.exe No File
FirewallRules: [TCP Query User{E5CD9A1D-24D7-4441-B040-27E43543696C}G:\games\mashinky cz\mashinky.exe] => (Allow) G:\games\mashinky cz\mashinky.exe () [File not signed]
FirewallRules: [UDP Query User{84A62654-AFF3-45C8-9D70-C7B365005D71}G:\games\mashinky cz\mashinky.exe] => (Allow) G:\games\mashinky cz\mashinky.exe () [File not signed]
FirewallRules: [TCP Query User{6D107467-B449-45B3-AD0A-7B0B9A02B35B}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\x64\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\x64\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [UDP Query User{6B19A30C-91C7-4D6B-8D56-E5AD2E5172B4}C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\x64\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\star trek online\star trek online\live\x64\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [TCP Query User{AB3BBCB7-7124-40F2-BE36-1C87B476BE4F}C:\users\lukas\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\lukas\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{36E34ABA-3C61-45E6-9265-BBA64D4F6C2E}C:\users\lukas\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\lukas\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{61B0CD2F-CAC9-4E10-999A-A91DD50F5552}] => (Allow) G:\SteamLibrary\steamapps\common\Endzones - A World Apart\Endzone.exe () [File not signed]
FirewallRules: [{5F18D795-8459-4DB4-9F44-E13CB2AED92A}] => (Allow) G:\SteamLibrary\steamapps\common\Endzones - A World Apart\Endzone.exe () [File not signed]
FirewallRules: [TCP Query User{4E1C0031-3ED0-4B4B-B4D3-6640B82F56E3}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [UDP Query User{897C1B2F-FB44-4DBF-81FB-07E72328BA3E}C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{7922E90E-57C5-4C9D-A673-28D1EC6DEEB0}] => (Allow) G:\SteamLibrary\steamapps\common\Stellaris\dowser.exe (Paradox Interactive Ab (Publ) -> )
FirewallRules: [{1B99443E-952A-4F8E-94D6-9BDC34CC5422}] => (Allow) G:\SteamLibrary\steamapps\common\Stellaris\dowser.exe (Paradox Interactive Ab (Publ) -> )
FirewallRules: [{8A8A65CC-B3E4-4A4E-8482-40D0F169D6CC}] => (Allow) G:\SteamLibrary\steamapps\common\Zenimax Online\zosSteamStarter.exe (Zenimax Media Inc. -> Zenimax Online Studios)
FirewallRules: [{57A030C0-807D-4DF6-AE78-B4832846CAB4}] => (Allow) G:\SteamLibrary\steamapps\common\Zenimax Online\zosSteamStarter.exe (Zenimax Media Inc. -> Zenimax Online Studios)
FirewallRules: [{C8C78BE7-4AF9-4931-B9C6-56963EB5E415}] => (Allow) G:\SteamLibrary\steamapps\common\Supremacy 1914\Supremacy 1914.exe (Bytro Labs GmbH) [File not signed]
FirewallRules: [{8BFB9BE4-79D9-433D-87D7-4FEF9442B445}] => (Allow) G:\SteamLibrary\steamapps\common\Supremacy 1914\Supremacy 1914.exe (Bytro Labs GmbH) [File not signed]
FirewallRules: [{7F5E1994-A72A-4552-97D4-8D816B0C88C4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{0BACCDA3-6AEB-43C4-A2BB-CB4262651B24}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{1C3416AD-E018-4E73-A3DE-6FBED960A18F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{70BE25F1-85CE-40E6-87F1-DE30A87EBEB3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer GmbH)
FirewallRules: [{2A12E2E9-E64A-4EFD-9232-3FEC2F064C3B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

02-05-2020 12:33:05 Windows Update

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (05/06/2020 06:57:07 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6868,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (05/06/2020 06:35:48 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (11444,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (05/06/2020 06:22:59 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6600,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (05/06/2020 05:44:04 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3324,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (05/06/2020 05:30:04 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (11492,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (05/06/2020 05:23:23 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8408,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (05/06/2020 05:12:26 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7184,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (05/06/2020 05:06:50 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (12936,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).


System errors:
=============
Error: (05/06/2020 06:51:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba %1!s! Update (avg) neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (05/06/2020 06:48:57 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Origin Web Helper Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (05/06/2020 06:48:57 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba McAfee WebAdvisor byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1 milisekund: Restartovat službu.

Error: (05/06/2020 06:48:57 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA Telemetry Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1000 milisekund: Restartovat službu.

Error: (05/06/2020 06:48:57 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba PnkBstrA byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (05/06/2020 06:48:57 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA LocalSystem Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.

Error: (05/06/2020 06:48:57 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba BBUpdate byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (05/06/2020 06:48:57 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba iPod Service byla neočekávaně ukončena. Tento stav nastal již 1krát.


Windows Defender:
===================================
Date: 2020-05-06 17:29:17.078
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {22857A39-5BF6-417B-B9C5-7040DA73F2FF}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-04-30 16:59:31.546
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {6A344548-27A7-4DE2-A240-27295ACCACDE}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-04-07 17:09:33.987
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {3865D8A0-24BF-433D-AC2C-54A73F247589}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-04-07 15:10:20.443
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {6B4E1CF6-319D-4A61-9FB2-BA85E1220DC8}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-04-07 13:22:45.983
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {304947CD-CD01-4BF4-8DA8-F8913B6EB0E8}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-05-06 16:34:38.845
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.315.83.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17000.7
Kód chyby: 0x8050a003
Popis chyby: Balíček neobsahuje aktuální soubor definic pro tento program. Další informace naleznete v nápovědě a podpoře.

Date: 2020-05-06 16:34:38.845
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.315.83.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17000.7
Kód chyby: 0x8050a003
Popis chyby: Balíček neobsahuje aktuální soubor definic pro tento program. Další informace naleznete v nápovědě a podpoře.

Date: 2020-05-06 16:34:38.844
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.315.83.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17000.7
Kód chyby: 0x8050a003
Popis chyby: Balíček neobsahuje aktuální soubor definic pro tento program. Další informace naleznete v nápovědě a podpoře.

Date: 2020-05-06 16:32:43.362
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.313.2769.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17000.7
Kód chyby: 0x80240016
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2020-04-07 19:20:03.032
Description:
Funkce Ochrana v reálném čase u prohledávání Antivirová ochrana v programu Windows Defender zjistila chybu a došlo k jejímu selhání.
Funkce: Při přístupu
Kód chyby: 0x80004005
Popis chyby: Nespecifikovaná chyba
Důvod: Ovladač filtru přeskočil prohledávání položek a je v režimu průchodu. Příčinou může být nízký stav prostředků.

CodeIntegrity:
===================================

Date: 2020-03-25 18:01:31.675
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-25 18:01:31.257
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-25 18:01:31.183
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-25 17:58:50.283
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-25 17:58:50.024
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-25 17:58:49.918
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-25 17:58:49.827
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-03-25 17:58:49.672
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswAMSI.dll that did not meet the Windows signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. V22.2 12/16/2014
Motherboard: MSI 970 GAMING (MS-7693)
Processor: AMD FX(tm)-6300 Six-Core Processor
Percentage of memory in use: 46%
Total physical RAM: 8140.3 MB
Available physical RAM: 4362.13 MB
Total Virtual: 16332.3 MB
Available Virtual: 11711.64 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:223.03 GB) (Free:26.39 GB) NTFS
Drive g: (Nový svazek) (Fixed) (Total:1863.01 GB) (Free:744.74 GB) NTFS

\\?\Volume{abf0bd6b-aeee-11e4-85dd-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.05 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 2FCFA4CA)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=223 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 7F220C19)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Re: vypíná se mi pc

Napsal: 06 kvě 2020 18:12
od lukass9
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03-05-2020
Ran by Lukas (administrator) on LUKAS-PC (MSI MS-7693) (06-05-2020 19:09:15)
Running from G:\
Loaded Profiles: Lukas (Available Profiles: Lukas)
Platform: Windows 10 Home Version 1903 18362.720 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Epic Games Inc. -> Epic Games, Inc.) G:\Epic Games\Launcher\Engine\Binaries\Win64\UnrealCEFSubProcess.exe
(Epic Games Inc. -> Epic Games, Inc.) G:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Gaijin Network LTD -> Gaijin Entertainment) C:\Users\Lukas\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe
(Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Malwarebytes Inc -> Malwarebytes) G:\AdwCleaner.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\browserhost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation -> Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.EXE
(Microsoft Corporation -> Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.EXE
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12004.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <7>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NZXT, Inc. -> ) C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\rust-cam\dist\native\target\release\service.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Qualcomm Atheros) [File not signed] C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
(Shanghai Microvirt Software Technology Co., Ltd. -> ) C:\Program Files (x86)\Microvirt\MEmu\MemuService.exe
(TeamViewer Germany GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer Germany GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer Germany GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer Germany GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-05-07] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [Sound Blaster Cinema 2] => C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe [1440768 2014-02-24] (Creative Technology Ltd) [File not signed]
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKLM\...\Policies\Explorer: [NoInstrumentation] 1
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-05-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [EpicGamesLauncher] => G:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [31757200 2020-05-06] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [Gaijin.Net Updater] => C:\Users\Lukas\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2361600 2019-12-02] (Gaijin Network LTD -> Gaijin Entertainment)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Run: [NZXT.CAM] => C:\Program Files\NZXT CAM\NZXT CAM.exe [97671824 2020-04-01] (NZXT, Inc. -> NZXT, Inc.)
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Policies\system: [Shell] <==== ATTENTION
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\MountPoints2: {d62cd0d9-d38d-11e7-a610-d8cb8a13fec7} - "F:\setup.exe"
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\MountPoints2: {def9fec5-a11b-11e7-a5f6-d8cb8a13fec7} - "E:\setup.exe"
HKLM\...\Providers\l9olaieg: C:\Program Files (x86)\Khagetheputain Renew\local64spl.dll <==== ATTENTION
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.129\Installer\chrmstp.exe [2020-04-30] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MobileGo Service.lnk [2017-12-18]
ShortcutTarget: MobileGo Service.lnk -> C:\Program Files (x86)\Wondershare\MobileGo\MobileGoService.exe (Wondershare Technology Co.,Ltd -> Wondershare)
Startup: C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2018-02-14]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\Lukas\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook, Inc. -> Facebook) [File not signed]
Startup: C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\tmp8B80.tmp.vbs [2015-11-26] ()
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00C68D1E-0792-4737-ABE6-11A23C0E148C} - System32\Tasks\GoogleUpdateTaskMachineUA1d08feffd8759fd => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {021AA5EF-1063-45EB-907E-BFA16744AEC2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {057F0FDB-4D54-433E-B0E7-DA7189E9A45D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [1540544 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {078F5A49-EB5F-47D1-8AAC-D7DB43920F91} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {08398CB9-4B31-4A24-8B44-EB9BB625BA92} - System32\Tasks\GoogleUpdateTaskMachineUA1d0bf8240b41a2d => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {0A3ADA6A-7D6B-48BE-B3EE-7CAFCB01D806} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {0AB50D89-FFF4-45DA-A27F-F78224C73B18} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {0DCD5721-E663-4739-8799-D538A118462C} - System32\Tasks\Khagetheputain Renew => C:\Program Files (x86)\Hubishrwoy\danudle.exe
Task: {0DF81F83-AAE4-4D9D-AD21-1C085FB4F3CD} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0F2160CC-1C14-402D-AD23-A12D04C235E8} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {14141500-8981-4403-B402-EA338C0793AC} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {166C21CD-A7AE-44C6-9267-F23A9BD448EF} - System32\Tasks\GoogleUpdateTaskMachineUA1d0f1cdabb0a60b => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {1AC7B678-A9D3-4A29-92DC-D8F4EBF554F7} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {1CEA203A-C150-4652-AABB-7ACA3A05E166} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1D16E514-8B2B-401C-A57A-94F5BDE2C6C6} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [947136 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1E30E266-381A-446D-8258-14AA8981822C} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {1FD4545D-449E-4498-A28F-6A70BBB6E717} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {21B0555E-5B6E-4A33-8B94-554BA363328C} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2855507F-5693-4716-8CFD-A9C7EC3608E1} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {2BE35E19-B156-4AC3-A010-122DA9065272} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {300BD167-058E-4DF4-A7BE-2E53BB8E2972} - System32\Tasks\Opera scheduled Autoupdate 1447089322 => C:\Program Files (x86)\Opera\launcher.exe [1139800 2018-09-13] (Opera Software AS -> Opera Software)
Task: {303E7458-BC1B-4A0E-88AA-9DBF253DB047} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {31BE7BED-2F8C-44D1-BD22-11E99C2B41D6} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {331DDBCD-B400-4A52-8AA3-1827C9BCD258} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {39258C28-7A3C-4300-A3DC-4E16322E23F7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {3AEA29CC-B5AD-4AD2-BC6D-909CC4F0BB1C} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {3D4E9D09-C002-4945-AC40-392F521B8371} - System32\Tasks\Milimili => C:\Program Files (x86)\MIO\MIO.exe [282168 2017-05-17] (Tencent Technology(Shenzhen) Company Limited -> ) <==== ATTENTION
Task: {41E30C1E-4367-4961-83E7-F77ACA6B8A7D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {44043342-7AEF-45A6-BE72-1C5E0973F9B7} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [651200 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4767975C-6E0E-4FAA-8A88-B2977101B326} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {478A9481-F90E-4304-A5F6-68A3C6FACA5E} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {480DC16E-4D7A-4F6C-996A-A6B0C6BAA785} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {4D624449-4D60-4D19-9387-2E5BF8C036BD} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {50FC92D3-BD00-47CB-A315-A89F04ED71E1} - System32\Tasks\GoogleUpdateTaskMachineCore1d0f1cdab88d226 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {56B0A61C-507F-433D-954C-C486D2189B72} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {5A1966A9-CEB3-41A9-AE16-6BC5ABAD319F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {614E6F12-9484-46EE-9A73-6D7224A2D4B4} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [436160 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6482D3E7-3339-4124-B13F-E53C041CFA06} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {656F2A16-EFDE-4862-8AFD-D8B5E81C281C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {65F86154-AB5D-4337-8D93-BAF90FA4D306} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1670432 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {663E99B4-CA4D-4E7C-91C1-EABB63BABB64} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {66F06E9E-DF0A-433D-83B5-C509AEC75A95} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {6703186A-0465-4C3E-A08A-443207902793} - System32\Tasks\GoogleUpdateTaskMachineUA1d12ebc6be85ef3 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {69D2C974-CF78-415C-8191-C7DC384676E6} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7910D104-F17E-49AB-8776-6C77A50BAC04} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2018-09-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {7A837A76-486D-42A1-97E8-360C058D8954} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {7ADD9F03-5F2F-41C7-8737-009E296D65AD} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
Task: {7C8C0D84-7FDF-4498-A416-73AD7EA30569} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {7DB680EE-23B1-48F0-9859-CDA2BEC008FB} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2227488 2015-12-09] (Microsoft Corporation -> Microsoft)
Task: {82468688-DA9F-4710-B706-424D84B066D0} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {85175350-6DD5-4C07-ABAB-38D7F203636C} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {85780FD9-7FC6-440E-B945-27134F55C731} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {897F1BF5-3093-47B4-B81B-DCD2D9897417} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_108_Plugin.exe [1454080 2018-09-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {8A047119-D9E5-477C-B68D-D5DA2A5D8150} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {973F4372-6F08-4918-8421-4E9AB460F9B7} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {99A527D5-9275-472A-9145-E6AE919E91E4} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {9AE63F0F-455B-4671-B91D-FC96318A4D32} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2212128 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {9F51F8E6-34D8-4E87-AE46-DCC8FF65A6CA} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {AC1769AE-9049-4FAA-BCA1-EF24AE7E0B26} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [651200 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B50B0A88-6F32-4525-A344-20D1804D3764} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {B59AA759-2158-4CEA-A134-4EFB287168F1} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {B65417F6-37D2-4862-84FE-ADD7DD7BA31B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {BBC89AE6-9F6E-45EF-8F63-55A8B55BC2DB} - System32\Tasks\{1A6294B2-88B2-4000-982C-50EE66BDD741} => C:\WINDOWS\system32\pcalua.exe -a "F:\intuix_cd\Intuix CD\setup.exe" -d "F:\intuix_cd\Intuix CD"
Task: {C5110754-6125-4583-93E9-90A2E8B93F9B} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1670432 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {C68AFC55-BC6B-4932-8422-FDCAE9D0228E} - System32\Tasks\GoogleUpdateTaskMachineCore1d0e311c2edf531 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {C79F4485-F979-4998-A686-7527DFE38288} - System32\Tasks\{E9D3D202-8BE7-4283-9C8E-DB1ADD4A305D} => C:\Windows\system32\pcalua.exe -a K:\_AUTORUN\AUTORUN.EXE -d K:\
Task: {C8440877-31C2-4D5A-B13D-B78D1A784C64} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {CE403273-6ABC-4EDB-B60E-418EE36DE211} - System32\Tasks\{D082DED7-9F54-4072-B23C-9015685838FF} => C:\WINDOWS\system32\pcalua.exe -a "F:\Program Files (x86)\Mafia I - The City of Lost Heaven\Game.exe" -d "F:\Program Files (x86)\Mafia I - The City of Lost Heaven"
Task: {D0BB8582-D346-44C5-8C7E-6D22291C0569} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {D6CA3431-FF1A-4CB8-9146-6B78F0BBF8E6} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {D6F88AA6-B7B7-4C2D-BFD8-16DFDE83FA22} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2212128 2015-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {D99CF7B4-C34D-47D3-9CD0-C486F7CE1434} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DDDA9FC3-1F1A-4C8C-A95A-47E751E16E56} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DE10E964-9B25-4F6E-9EDC-CD783AF08FE4} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [722880 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DEE2560C-3FA2-499E-8DAF-184D35357BCB} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {E140E31A-0C7F-4FFA-89E9-C6D582D94CC7} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [722880 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E55F4541-8AA4-486D-A31F-8D7584FF968D} - System32\Tasks\GoogleUpdateTaskMachineCore1d08feffd709d58 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {E7DB25D7-9344-4C16-B621-DE4DA8BD66B4} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {E81AB3AC-3816-4EBE-A8D5-0C27174B539B} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E95DA03C-4020-4063-B2FC-DF9CC9D202BD} - System32\Tasks\GoogleUpdateTaskMachineCore1d0bf824092886a => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {EF259B98-F640-49BA-8E8A-3ACAE1C31C5F} - System32\Tasks\{91840007-F1F0-480C-8352-3A5360385E8C} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Railroad Tycoon 3\UNINSTX.EXE"
Task: {EF7CE8FE-FF1D-4CE4-98B5-AEEE09AF4843} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {F27343BC-E4E8-484D-875C-05719CB62CA4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {FD539483-AC5F-43E5-A5A4-CBB51614FEBE} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {FD77CB7B-62D4-4956-841B-D5C6D9E7F315} - System32\Tasks\GoogleUpdateTaskMachineCore1d12ebc6bce6df2 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d08feffd709d58.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0bf824092886a.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0e311c2edf531.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0f1cdab88d226.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d08feffd8759fd.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0bf8240b41a2d.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0f1cdabb0a60b.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 127.0.0.1 validation.sls.microsoft.com
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{0c602eed-9ac2-4542-ac7f-b6924786abc0}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{65eee1d5-a9d8-425b-8d5e-4166b6418b14}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{9226fc84-2a17-4d77-8b05-e13aee4900e5}: [DhcpNameServer] 192.168.0.1 0.0.0.0

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617912&ResetID=132151946241391219&GUID=09B1574E-8886-4A52-9C34-8AE3E62B20AA
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL =
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE00
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {0EDBD3F4-E096-4846-B9DE-D691BA3103C6} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {1C50BAAC-C45F-46AA-B7B2-79617F444A02} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {21B2B49F-F4DA-49CE-A9FC-C3EDE1E86455} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {431AAD9A-2776-4129-A644-3F9F151176C4} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {76DEFAE6-09B2-40B2-8F8A-5A6A5D5CE4EB} URL = hxxps://search.yahoo.com/search/?toggle=1&cop=mss&ei=UTF-8&fr=vmn&type=auslog_yaapp6_adw_ch&p={searchTerms}
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {937BFC8E-BC6F-43FE-8828-A0617CFC8708} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {9D8DD67D-8298-4DF4-BD42-61842EC96EEE} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {AEBA1B1E-35FE-4762-AC9C-6B81DE0B8AF7} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {D742AC74-BBC6-48E1-A0C2-E8A528458B67} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_13415
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: No Name -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> No File
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2020-04-21] (McAfee, LLC -> McAfee, LLC)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-04] (Google Inc -> Google Inc.)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2020-04-21] (McAfee, LLC -> McAfee, LLC)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation -> Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation -> Microsoft Corporation.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-04] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)

Edge:
======
DownloadDir: C:\Users\Lukas\Downloads

FireFox:
========
FF DefaultProfile: ixqmgx8f.default
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\naweriweentcofise\Profiles\ixqmgx8f.default\Profiles\ixqmgx8f.default [not found] <==== ATTENTION
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default [2020-05-06]
FF DownloadDir: G:
FF Homepage: Mozilla\Firefox\Profiles\ixqmgx8f.default -> hxxps://www.google.com/
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\Extensions\cs@dictionaries.addons.mozilla.org.xpi [2019-10-28]
FF Extension: (Czech (CZ) Language Pack) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\Extensions\langpack-cs@firefox.mozilla.org.xpi [2020-03-24]
FF Extension: (No Name) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [not found]
FF Extension: (No Name) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\extensions\sko-extension@firma.seznam.cz [not found]
FF Extension: (No Name) - C:\Program Files\McAfee\WebAdvisore10ssaffplg.xpi [not found]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\searchplugins\bing-.xml [2017-02-05]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\searchplugins\l9olaieg.xml [2017-02-27]
FF SearchPlugin: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\searchplugins\startpageing123.xml [2017-03-27]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2020-04-21] [UpdateUrl:hxxps://www.siteadvisor.com/waffinstall/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_31_0_0_108.dll [2018-09-12] (Adobe Systems Incorporated -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_108.dll [2018-09-12] (Adobe Systems Incorporated -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-31] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-03-06] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-676012942-2397387924-1880445482-1000: SkypePlugin -> C:\Users\Lukas\AppData\Local\SkypePlugin\7.31.0.56\npGatewayNpapi.dll [2017-02-03] (Microsoft Corporation -> Skype Technologies S.A.)
FF Plugin HKU\S-1-5-21-676012942-2397387924-1880445482-1000: SkypePlugin64 -> C:\Users\Lukas\AppData\Local\SkypePlugin\7.31.0.56\npGatewayNpapi-x64.dll [2017-02-03] (Microsoft Corporation -> Skype Technologies S.A.)

Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR Profile: C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2020-05-06] <==== ATTENTION
CHR DownloadDir: E:\
CHR Notifications: ChromeDefaultData -> hxxps://web.skype.com; hxxps://www.facebook.com
CHR HomePage: ChromeDefaultData -> hxxps://www.google.com/
CHR StartupUrls: ChromeDefaultData -> "hxxps://www.google.com/"
CHR DefaultSearchURL: ChromeDefaultData -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=E210CZ91105G0&p={searchTerms}
CHR DefaultSearchKeyword: ChromeDefaultData -> mcafee
CHR Extension: (Prezentace) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-10-11]
CHR Extension: (Dokumenty) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2019-10-11]
CHR Extension: (Disk Google) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-07]
CHR Extension: (YouTube) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Vyhledávání Google) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-07]
CHR Extension: (Adobe Acrobat) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-03-17]
CHR Extension: (MSN Homepage & Bing Search Engine) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2020-01-14]
CHR Extension: (Tabulky) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-10-11]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2020-05-06]
CHR Extension: (Dokumenty Google offline) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-06]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-01-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-11]
CHR Extension: (Gmail) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-10-11]
CHR Extension: (Chrome Media Router) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-06]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd]
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKU\S-1-5-21-676012942-2397387924-1880445482-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\StartMenuInternet\ChromeHTML: -> C:\Program Files (x86)\Footjane\Application\chrome.exe <==== ATTENTION

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-05-04] (Advanced Micro Devices, Inc.) [File not signed]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-04-29] (Apple Inc. -> Apple Inc.)
R2 CAMService; C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\rust-cam\dist\native\target\release\service.exe [553600 2020-04-01] (NZXT, Inc. -> )
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291904 2017-08-14] (Disc Soft Ltd -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [392976 2017-02-10] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2018-12-12] (Huawei Technologies Co., Ltd. -> ) [File not signed]
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [916712 2020-04-21] (McAfee, LLC -> McAfee, LLC)
R2 MEmuSVC; C:\Program Files (x86)\Microvirt\MEmu\MemuService.exe [85304 2019-07-02] (Shanghai Microvirt Software Technology Co., Ltd. -> )
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2475312 2020-01-15] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3393848 2020-01-15] (Electronic Arts, Inc. -> Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-03-15] (Even Balance, Inc. -> )
R2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [344576 2014-01-22] (Qualcomm Atheros) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10823184 2020-04-20] (TeamViewer Germany GmbH -> TeamViewer GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\NisSrv.exe [3304992 2020-05-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MsMpEng.exe [103376 2020-05-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WirelessKB850NotificationService; C:\WINDOWS\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.2.223\WsAppService.exe [473312 2017-03-20] (Wondershare Technology Co.,Ltd -> Wondershare)
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\MobileGo\DriverInstall.exe [101152 2017-06-01] (Wondershare Technology Co.,Ltd -> Wondershare)
S2 avg; "C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe" /svc [X]
S3 avgm; "C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe" /medsvc [X]
R2 NvContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
S3 NvContainerNetworkService; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdiox64; C:\WINDOWS\System32\drivers\amdiox64.sys [46136 2010-02-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [79488 2011-04-15] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [40064 2011-04-15] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [55936 2011-11-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R1 BfLwf; C:\WINDOWS\system32\DRIVERS\bflwfx64.sys [80080 2013-11-08] (Qualcomm Atheros, Inc. -> Qualcomm Atheros, Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-11-07] (Microsoft Corporation) [File not signed]
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-02-27] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-02-27] (Disc Soft Ltd -> Disc Soft Ltd)
R3 KillerEth; C:\WINDOWS\System32\drivers\e2xw10x64.sys [145920 2019-03-19] (Microsoft Windows -> Qualcomm Atheros, Inc.)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-02-07] (Malwarebytes Corporation -> Malwarebytes Corporation)
R1 MEmuDrv; C:\WINDOWS\system32\DRIVERS\MEmuDrv.sys [319192 2019-09-21] (Shanghai Microvirt Software Technology Co., Ltd. -> Maiwei Corporation)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2018-05-04] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_db678424d2641c3d\nvlddmkm.sys [22094728 2019-10-04] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48064 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-09-19] (NVIDIA Corporation -> NVIDIA Corporation)
R1 sbnetsys; C:\WINDOWS\system32\DRIVERS\sbnetsys.sys [44648 2015-04-17] (Mainline Net Holdings Limited -> NT Kernel Resources)
R3 usbfilter; C:\WINDOWS\system32\DRIVERS\usbfilter.sys [61464 2000-01-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45960 2020-05-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [394680 2020-05-02] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [64944 2020-05-02] (Microsoft Windows -> Microsoft Corporation)
U3 aspnet_state; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-05-06 18:24 - 2020-05-06 18:24 - 000000013 _____ C:\Users\Lukas\Desktop\sleva samsung.txt
2020-05-06 18:23 - 2020-05-06 18:23 - 000000000 _____ C:\Users\Lukas\Desktop\Nový textový dokument.txt
2020-04-28 20:33 - 2020-04-28 20:33 - 000001040 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk
2020-04-28 20:33 - 2020-04-28 20:33 - 000001028 _____ C:\Users\Public\Desktop\TeamViewer 12.lnk
2020-04-28 19:45 - 2020-04-28 19:45 - 000659332 _____ C:\WINDOWS\Minidump\042820-51984-01.dmp
2020-04-20 22:05 - 2020-04-20 22:05 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-04-20 22:05 - 2020-04-20 22:05 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-04-08 18:51 - 2020-04-08 18:51 - 000000222 _____ C:\Users\Lukas\Desktop\Supremacy 1914.url

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-05-06 19:09 - 2017-03-21 10:38 - 000000000 ____D C:\FRST
2020-05-06 18:55 - 2019-11-07 19:51 - 001781194 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-05-06 18:55 - 2019-03-19 13:55 - 000745534 _____ C:\WINDOWS\system32\perfh005.dat
2020-05-06 18:55 - 2019-03-19 13:55 - 000160026 _____ C:\WINDOWS\system32\perfc005.dat
2020-05-06 18:55 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-05-06 18:50 - 2016-11-18 12:12 - 000000000 ____D C:\Users\Lukas\AppData\LocalLow\Mozilla
2020-05-06 18:49 - 2019-11-07 20:00 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-05-06 18:49 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-05-06 18:49 - 2019-03-19 06:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-05-06 18:49 - 2017-09-06 14:29 - 000000000 ____D C:\ProgramData\NVIDIA
2020-05-06 18:48 - 2017-02-25 12:45 - 000000000 ____D C:\Users\Lukas\AppData\Roaming\Easeware
2020-05-06 18:48 - 2017-02-25 12:45 - 000000000 ____D C:\Program Files\Easeware
2020-05-06 18:15 - 2019-11-07 19:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-05-06 16:39 - 2019-09-26 22:50 - 000000000 ____D C:\Users\Lukas\Desktop\rozpočty
2020-05-06 16:28 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-05-06 16:22 - 2020-01-26 12:21 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-05-02 12:44 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-05-02 12:31 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-05-02 10:26 - 2018-03-04 10:30 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-04-30 16:30 - 2015-02-07 19:44 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-04-30 16:30 - 2015-02-07 19:44 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-04-28 20:33 - 2017-02-24 10:58 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-04-28 20:03 - 2018-05-23 08:35 - 000000000 ____D C:\Users\Lukas\AppData\Local\PlaceholderTileLogoFolder
2020-04-28 19:45 - 2019-11-14 20:01 - 000000000 ____D C:\WINDOWS\Minidump
2020-04-20 20:53 - 2015-02-08 18:51 - 000000000 ____D C:\Program Files (x86)\Steam
2020-04-20 18:47 - 2019-11-07 19:51 - 000000000 ____D C:\Users\Lukas
2020-04-20 16:46 - 2019-11-07 20:00 - 000003364 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-676012942-2397387924-1880445482-1000
2020-04-20 16:46 - 2019-11-07 19:51 - 000002399 _____ C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-04-20 16:46 - 2016-05-18 06:04 - 000000000 ___RD C:\Users\Lukas\OneDrive
2020-04-16 10:26 - 2018-02-08 21:43 - 000000000 ____D C:\Users\Lukas\Desktop\vyuctovaní 2018
2020-04-12 11:40 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports

==================== Files in the root of some directories ========

2017-03-13 09:15 - 2017-05-11 20:36 - 000011188 _____ () C:\Program Files (x86)\metadata
2017-03-01 13:53 - 2017-03-01 13:53 - 000000046 _____ () C:\Users\Lukas\AppData\Roaming\Camdata.ini
2017-03-01 13:53 - 2017-03-01 13:53 - 000000408 _____ () C:\Users\Lukas\AppData\Roaming\CamLayout.ini
2017-03-01 13:53 - 2017-03-01 13:53 - 000000408 _____ () C:\Users\Lukas\AppData\Roaming\CamShapes.ini
2017-03-01 13:53 - 2017-03-01 13:53 - 000004536 _____ () C:\Users\Lukas\AppData\Roaming\CamStudio.cfg
2017-03-01 13:51 - 2017-03-01 13:51 - 000000096 _____ () C:\Users\Lukas\AppData\Roaming\version2.xml
2017-03-16 12:48 - 2017-03-16 12:48 - 000000000 _____ () C:\Users\Lukas\AppData\Local\Driver_LOM_8161Present.flag
2015-12-30 11:01 - 2019-12-30 23:02 - 000014560 _____ () C:\Users\Lukas\AppData\Local\FSDownloader.err
2015-12-30 11:01 - 2020-01-26 12:21 - 000001312 _____ () C:\Users\Lukas\AppData\Local\FSDownloader.nast
2020-03-29 14:28 - 2020-03-29 14:28 - 000000017 _____ () C:\Users\Lukas\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Re: vypíná se mi pc

Napsal: 06 kvě 2020 19:11
od Rudy
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\Policies\system: [Shell] <==== ATTENTION
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\MountPoints2: {d62cd0d9-d38d-11e7-a610-d8cb8a13fec7} - "F:\setup.exe"
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\MountPoints2: {def9fec5-a11b-11e7-a5f6-d8cb8a13fec7} - "E:\setup.exe"
HKLM\...\Providers\l9olaieg: C:\Program Files (x86)\Khagetheputain Renew\local64spl.dll <==== ATTENTION
Startup: C:\Users\Lukas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\tmp8B80.tmp.vbs [2015-11-26] ()
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {08398CB9-4B31-4A24-8B44-EB9BB625BA92} - System32\Tasks\GoogleUpdateTaskMachineUA1d0bf8240b41a2d => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {0A3ADA6A-7D6B-48BE-B3EE-7CAFCB01D806} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
ask: {166C21CD-A7AE-44C6-9267-F23A9BD448EF} - System32\Tasks\GoogleUpdateTaskMachineUA1d0f1cdabb0a60b => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {1AC7B678-A9D3-4A29-92DC-D8F4EBF554F7} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {1FD4545D-449E-4498-A28F-6A70BBB6E717} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {2855507F-5693-4716-8CFD-A9C7EC3608E1} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {31BE7BED-2F8C-44D1-BD22-11E99C2B41D6} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {39258C28-7A3C-4300-A3DC-4E16322E23F7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {3D4E9D09-C002-4945-AC40-392F521B8371} - System32\Tasks\Milimili => C:\Program Files (x86)\MIO\MIO.exe [282168 2017-05-17] (Tencent Technology(Shenzhen) Company Limited -> ) <==== ATTENTION
Task: {56B0A61C-507F-433D-954C-C486D2189B72} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {656F2A16-EFDE-4862-8AFD-D8B5E81C281C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {663E99B4-CA4D-4E7C-91C1-EABB63BABB64} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {6703186A-0465-4C3E-A08A-443207902793} - System32\Tasks\GoogleUpdateTaskMachineUA1d12ebc6be85ef3 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {85175350-6DD5-4C07-ABAB-38D7F203636C} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {B59AA759-2158-4CEA-A134-4EFB287168F1} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {B65417F6-37D2-4862-84FE-ADD7DD7BA31B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {BBC89AE6-9F6E-45EF-8F63-55A8B55BC2DB} - System32\Tasks\{1A6294B2-88B2-4000-982C-50EE66BDD741} => C:\WINDOWS\system32\pcalua.exe -a "F:\intuix_cd\Intuix CD\setup.exe" -d "F:\intuix_cd\Intuix CD"
Task: {C79F4485-F979-4998-A686-7527DFE38288} - System32\Tasks\{E9D3D202-8BE7-4283-9C8E-DB1ADD4A305D} => C:\Windows\system32\pcalua.exe -a K:\_AUTORUN\AUTORUN.EXE -d K:\
Task: {D6CA3431-FF1A-4CB8-9146-6B78F0BBF8E6} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {E55F4541-8AA4-486D-A31F-8D7584FF968D} - System32\Tasks\GoogleUpdateTaskMachineCore1d08feffd709d58 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2015-02-07] (Google Inc -> Google Inc.)
Task: {E7DB25D7-9344-4C16-B621-DE4DA8BD66B4} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {EF259B98-F640-49BA-8E8A-3ACAE1C31C5F} - System32\Tasks\{91840007-F1F0-480C-8352-3A5360385E8C} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Railroad Tycoon 3\UNINSTX.EXE"
Task: {EF7CE8FE-FF1D-4CE4-98B5-AEEE09AF4843} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {FD539483-AC5F-43E5-A5A4-CBB51614FEBE} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d08feffd709d58.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0bf824092886a.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0e311c2edf531.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0f1cdab88d226.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d08feffd8759fd.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0bf8240b41a2d.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0f1cdabb0a60b.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... &pc=MSERT1
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL =
SearchScopes: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE00
BHO: No Name -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> No File
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-04] (Google Inc -> Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation -> Microsoft Corporation.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-04] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-676012942-2397387924-1880445482-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-04] (Google Inc -> Google Inc.)
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\naweriweentcofise\Profiles\ixqmgx8f.default\Profiles\ixqmgx8f.default [not found] <==== ATTENTION
FF Extension: (No Name) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [not found]
FF Extension: (No Name) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\ixqmgx8f.default\extensions\sko-extension@firma.seznam.cz [not found]
FF Extension: (No Name) - C:\Program Files\McAfee\WebAdvisore10ssaffplg.xpi [not found]
CHR Profile: C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2020-05-06] <==== ATTENTION
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\StartMenuInternet\ChromeHTML: -> C:\Program Files (x86)\Footjane\Application\chrome.exe <==== ATTENTION
S3 avgm; "C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe" /medsvc [X]
U3 aspnet_state; no ImagePath
HKU\S-1-5-21-676012942-2397387924-1880445482-1000\...\ChromeHTML: -> <==== ATTENTION
ShellExecuteHooks: No Name - {D7743BB4-F774-11E6-8881-64006A5CFC23} - -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0]
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
FirewallRules: [UDP Query User{180C8FD2-D3D5-4633-850D-3194AB6945DC}H:\program files\farming simulator 17\dedicatedserver.exe] => (Allow) H:\program files\farming simulator 17\dedicatedserver.exe No File
FirewallRules: [TCP Query User{2454C648-F7F9-42F1-81A4-769676D713AF}H:\program files\farming simulator 17\dedicatedserver.exe] => (Allow) H:\program files\farming simulator 17\dedicatedserver.exe No File
FirewallRules: [TCP Query User{5CE1E5F5-A3A0-4F1D-B57A-57DD8C2F0CA5}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe No File
FirewallRules: [UDP Query User{66EDF803-6279-4014-B0ED-A17592AA88E0}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe No File
FirewallRules: [TCP Query User{6A2F8193-C0B5-4883-A50F-97A3FB023CFE}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe No File
FirewallRules: [UDP Query User{67E833A5-ED03-4C72-B458-1EB7AE5BF74B}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe No File
FirewallRules: [TCP Query User{912E7446-9068-49F4-9A6B-7B9165A69EA8}F:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Block) F:\program files (x86)\diablo iii\x64\diablo iii64.exe No File
FirewallRules: [UDP Query User{9BC97502-B126-4A7E-861A-72AF65D380A8}F:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Block) F:\program files (x86)\diablo iii\x64\diablo iii64.exe No File
FirewallRules: [TCP Query User{874E3214-D56E-463B-8840-3B0C257EEE87}F:\filmy\search_tool_win_xp\searchtool.exe] => (Allow) F:\filmy\search_tool_win_xp\searchtool.exe No File
FirewallRules: [UDP Query User{D0F79A5B-0D88-4073-BFB1-C4220B5549CE}F:\filmy\search_tool_win_xp\searchtool.exe] => (Allow) F:\filmy\search_tool_win_xp\searchtool.exe No File
FirewallRules: [TCP Query User{96386857-DD26-4E60-A873-DBD070CC7483}F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe] => (Block) F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe No File
FirewallRules: [UDP Query User{1F44A342-9A6B-4023-ADA8-494D9D4765E7}F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe] => (Block) F:\program files (x86)\starcraft ii\versions\base51149\sc2_x64.exe No File
FirewallRules: [TCP Query User{7ECEE922-8938-4821-BD5B-D9D82254E135}F:\hry\far cry 4\bin\farcry4.exe] => (Allow) F:\hry\far cry 4\bin\farcry4.exe No File
FirewallRules: [UDP Query User{0E663628-B912-4F04-AF44-0E8053FE27A4}F:\hry\far cry 4\bin\farcry4.exe] => (Allow) F:\hry\far cry 4\bin\farcry4.exe No File
FirewallRules: [TCP Query User{B74490D4-05D2-4AB0-BD77-2A277BA7545F}C:\program files\litecoin\litecoin-qt.exe] => (Allow) C:\program files\litecoin\litecoin-qt.exe No File
FirewallRules: [UDP Query User{143DC50B-219C-4114-8E8F-E8BC0D6B35DE}C:\program files\litecoin\litecoin-qt.exe] => (Allow) C:\program files\litecoin\litecoin-qt.exe No File
FirewallRules: [TCP Query User{15440FDB-4B6F-48A1-824C-7A84E96D09B6}C:\program files\bitcoin\bitcoin-qt.exe] => (Allow) C:\program files\bitcoin\bitcoin-qt.exe No File
FirewallRules: [UDP Query User{4E691515-6FC1-43C8-81C6-DBB1B7F8F75B}C:\program files\bitcoin\bitcoin-qt.exe] => (Allow) C:\program files\bitcoin\bitcoin-qt.exe No File
FirewallRules: [TCP Query User{4C07B869-37F5-4F44-907E-BC68ED984A26}H:\gog games\railway empire\railwayempire.exe] => (Allow) H:\gog games\railway empire\railwayempire.exe No File
FirewallRules: [UDP Query User{5673BEC2-A4F2-4F0A-AC2D-707C1F07870C}H:\gog games\railway empire\railwayempire.exe] => (Allow) H:\gog games\railway empire\railwayempire.exe No File
FirewallRules: [{576DE4BB-9B0D-46E5-B361-162018E2F13B}] => (Allow) H:\Program Files (x86)\SteamLibrary\steamapps\common\star conflict\game.exe No File
FirewallRules: [{3E6BAF4B-19DA-4C54-833F-FD154DE90925}] => (Allow) H:\Program Files (x86)\SteamLibrary\steamapps\common\star conflict\game.exe No File

EmptyTemp:
End
Uložte do G:\ jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz