VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

preventivna kontrola

https://forum.viry.cz:443/viewtopic.php?t=157253

Stránka 1 z 1

preventivna kontrola

Napsal: 01 črc 2020 09:34
od ahola
dobry den,
prosim o kontrolu, pripadne precistenie po dlhsej dobe, notebook sa dlhsie vypina.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 30-06-2020
Ran by Michal (administrator) on MICHAL-MSICX640 (MICRO-STAR INTERNATIONAL CO.,LTD MS-16Y1) (01-07-2020 10:14:49)
Running from C:\Users\Michal\Desktop
Loaded Profiles: Michal & postgres
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Alcor Micro Corp.) [File not signed] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\aswEngSrv.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe <2>
(Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\system32\CxAudMsg64.exe
(Hold'em Manager) [File not signed] C:\Hry\Poker\Holdem Manager\HMImport.exe
(Hold'em Manager) [File not signed] C:\Hry\Poker\Holdem Manager\HoldemManager.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\system32\hkcmd.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\system32\igfxpers.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Logitech -> Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
(Logitech -> Logitech, Inc.) C:\Program Files\Logitech\SetPoint\SetPoint.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Nitro PDF Software -> Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(PEGATRON CORPORATION -> ) C:\Program Files (x86)\PHotkey\AsLdrSrv.exe
(PEGATRON CORPORATION -> ) C:\Program Files (x86)\PHotkey\GFNEXSrv.exe
(PEGATRON CORPORATION -> ) C:\Program Files (x86)\PHotkey\MsgTranAgt.exe
(PEGATRON CORPORATION -> ) C:\Program Files (x86)\PHotkey\MsgTranAgt64.exe
(PEGATRON CORPORATION -> ) C:\Program Files (x86)\PHotkey\PVDAgent.exe
(PEGATRON CORPORATION -> ) C:\Program Files (x86)\PHotkey\PVDesktop.exe
(PEGATRON CORPORATION -> Pegatron Corporation) C:\Program Files (x86)\PHotkey\MsOsd.exe
(PEGATRON CORPORATION -> Pegatron Corporation) C:\Program Files (x86)\PHotkey\PHotkey.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(PostgreSQL Global Development Group) [File not signed] C:\Program Files (x86)\PostgreSQL\8.4\bin\pg_ctl.exe
(PostgreSQL Global Development Group) [File not signed] C:\Program Files (x86)\PostgreSQL\8.4\bin\postgres.exe <8>
(Renesas Electronics Corporation -> Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <5>
(SRS Labs, Inc -> SRS Labs, Inc.) C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe
(Xiaomi Technology Inc -> ) C:\Users\Michal\AppData\Local\MiPhoneManager\main\MiPhoneHelper.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Kernel and Hardware Abstraction Layer] => C:\windows\KHALMNPR.EXE [134160 2007-11-29] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SAIICpl.exe [316032 2010-12-14] (Conexant Systems, Inc. -> Conexant systems, Inc.)
HKLM\...\Run: [fspuip] => C:\Program Files\FSP\fspuip.exe [4055552 2010-11-08] (Microsoft Windows Hardware Compatibility Publisher -> Sentelic Corporation)
HKLM\...\Run: [AmIcoSinglun64] => c:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [374784 2013-04-19] (Alcor Micro Corp.) [File not signed]
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [155784 2020-06-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-04-24] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
HKLM-x32\...\Run: [NUSB3MON] => c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-04-27] (Renesas Electronics Corporation -> Renesas Electronics Corporation)
HKLM-x32\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [374784 2013-04-19] (Alcor Micro Corp.) [File not signed]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\Run: [Google Update] => C:\Users\Michal\AppData\Local\Google\Update\1.3.35.452\GoogleUpdateCore.exe [217544 2020-03-21] (Google LLC -> Google LLC)
HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\Run: [ShowBatteryBar] => C:\Program Files\BatteryBar\ShowBatteryBar.exe [89600 2014-09-19] () [File not signed]
HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\Run: [MiPhoneManager] => C:\Users\Michal\AppData\Local\MiPhoneManager\main\MiPhoneHelper.exe [157624 2016-03-11] (Xiaomi Technology Inc -> )
HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91683688 2020-06-09] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [27775672 2020-05-01] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1554982330-1077266817-2899125201-1006\...\Run: [ROC_JAN2013_TB] => "C:\Program Files (x86)\AVG Secure Search\ROC_JAN2013_TB.exe" /PROMPT /CMPID=JAN2013_TB
HKU\S-1-5-21-1554982330-1077266817-2899125201-1006\...\Run: [AVG-Secure-Search-Update_JUNE2013_TB] => "C:\Program Files (x86)\AVG Secure Search\AVG-Secure-Search-Update_JUNE2013_TB.exe" /PROMPT /CMPID=JUNE2013_TB
HKU\S-1-5-21-1554982330-1077266817-2899125201-1006\...\Run: [AVG-Secure-Search-Update_JUNE2013_HP] => "C:\Program Files (x86)\AVG Secure Search\AVG-Secure-Search-Update_JUNE2013_HP.exe" /PROMPT /CMPID=JUNE2013_HP
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [99840 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\HP B011 Status Monitor: C:\windows\system32\hpinkstsB011LM.dll [331664 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 3520 series): C:\windows\system32\HPDiscoPMB011.dll [741480 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\LIDIL hpzlllhn: C:\windows\system32\hpzlllhn.dll [48640 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\...\Print\Monitors\PDF-XChange Lite Port Monitor: C:\windows\system32\pxcpmL.dll [2164480 2018-07-25] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2020-05-04] (Adobe Inc. -> Adobe Systems, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Logitech SetPoint.lnk [2011-07-26]
ShortcutTarget: Logitech SetPoint.lnk -> C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech -> Logitech, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SRS PC Sound.lnk [2011-03-27]
ShortcutTarget: SRS PC Sound.lnk -> C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe (SRS Labs, Inc -> SRS Labs, Inc.)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0B9CFAC4-E1CE-453A-B6A3-58555836FCD2} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-09] (Adobe Inc. -> Adobe)
Task: {13993E40-0CA9-400A-8463-5F80503ED9D3} - System32\Tasks\{43942417-3446-4888-8CAD-70D0F5BEDA16} => C:\Program Files (x86)\Skype\\Phone\Skype.exe
Task: {1BB00C53-89EE-48ED-BEE2-4794495645A6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {3471977A-B6CE-4B0E-AD5A-DB1A620119D0} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [3361928 2020-06-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {42828DF4-18D2-4F96-9DF3-A58BB1D64E22} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_387_Plugin.exe [1459256 2020-06-09] (Adobe Inc. -> Adobe)
Task: {46B57876-8236-4B65-8E34-3CA004325A66} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {6E920884-F6B3-4A25-A791-476F1B096996} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1642672 2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {7D3C91C6-C3C2-4326-A6B8-3895BE85239C} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1554982330-1077266817-2899125201-1001UA => C:\Users\Michal\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {872A96C4-2425-422D-B206-3A8E954CF1CC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {976A95D1-B2BF-4077-A537-4E4063022FF0} - System32\Tasks\{C9E031BF-BFB3-48FD-8122-25DEC7871821} => C:\windows\system32\pcalua.exe -a "C:\Program Files (x86)\Nokia\Nokia PC Suite 7\ApplicationInstaller.exe" -d C:\Users\Michal\Desktop -c "C:\Users\Michal\Desktop\OperaMini.sis"
Task: {A724FC7A-AFB1-4F5A-8FEE-D26D7156F42C} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-05-01] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {A73EA651-FB31-4318-AB97-526ABEC47198} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1554982330-1077266817-2899125201-1001Core => C:\Users\Michal\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {AAF3E851-91CB-45C6-B3A2-8E2A1ED9C1FC} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1692296 2020-02-27] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {AEB2F68C-FE49-4C20-B144-52296ED79CAB} - System32\Tasks\{C085E23B-0534-45AA-A839-250FBD5C15C6} => "C:\Program Files\Internet Explorer\iexplore.exe" hxxp://ui.skype.com/ui/0/6.18.0.106/sk/abandoninstall?page=tsMain
Task: {B7DC0A53-90AF-4050-A9AE-C462E0C22AC3} - System32\Tasks\AutoKMS => C:\windows\AutoKMS\AutoKMS.exe
Task: {BD835664-120B-471C-958F-06638F856FDF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [23571128 2020-05-01] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {BFB4F347-E7C7-470B-91E5-99CF4A4C3BD2} - System32\Tasks\{29EEF94A-F174-4BB2-A3ED-C7E6F176827B} => "C:\Program Files (x86)\Internet Explorer\iexplore.exe" hxxp://ui.skype.com/ui/0/5.5.0.113.261/en/abandoninstall?page=tsPlugin&installinfo=google-toolbar:notoffered;toolbarpresent,google-chrome:notoffered;userlevelpresent
Task: {F7A0E6A3-B0A3-4A6C-8D94-ED12743AF178} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0A1BC192-E1C2-488C-8FDE-F180505762A4}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{D367C479-1275-46AB-A05D-6C077D262AD3}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://fr.msn.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=i ... ar=msnhome
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://user.centrum.sk/
HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=i ... ar=msnhome
DownloadDir: C:\Users\Michal\Desktop
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1554982330-1077266817-2899125201-1006 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-28] (Google Inc -> Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\ssv.dll [2020-04-22] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Pomocník pri prihlasovaní v konte Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc -> Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\jp2ssv.dll [2020-04-22] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-28] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc -> Google Inc.)
Toolbar: HKU\.DEFAULT -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-28] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-28] (Google Inc -> Google Inc.)
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - No File
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File

Edge:
======
Edge Profile: C:\Users\Michal\AppData\Local\Microsoft\Edge\User Data\Default [2020-06-17]
Edge HomePage: Default -> hxxp://centrum.sk/

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_32_0_0_387.dll [2020-06-09] (Adobe Inc. -> )
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50709.0\npctrl.dll [2016-07-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2018-07-25] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2018-07-25] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2018-07-25] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_387.dll [2020-06-09] (Adobe Inc. -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-04-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-04-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50709.0\npctrl.dll [2016-07-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-09-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2018-07-25] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2018-07-25] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2018-07-25] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @veetle.com/veetleCorePlugin,version=0.9.18 -> C:\Program Files (x86)\Veetle\plugins\npVeetle.dll [2011-07-28] (Veetle Inc. -> Veetle Inc)
FF Plugin-x32: @veetle.com/veetlePlayerPlugin,version=0.9.18 -> C:\Program Files (x86)\Veetle\Player\npvlc.dll [2010-09-21] (Veetle Inc. -> Veetle Inc)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1554982330-1077266817-2899125201-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2018-07-25] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-1554982330-1077266817-2899125201-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2018-07-25] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-1554982330-1077266817-2899125201-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2018-07-25] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default [2020-07-01]
CHR Extension: (Prezentácie) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-03-01]
CHR Extension: (Dokumenty) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-03-01]
CHR Extension: (Disk Google) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-03-01]
CHR Extension: (YouTube) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-03-01]
CHR Extension: (Tabuľky) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-03-01]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-20]
CHR Extension: (HBO GO Quality Enforcer) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmjfcgbpnigcngkjgfjmaameebdhhab [2020-04-01]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-29]
CHR Extension: (Chrome Media Router) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-28]
StartMenuInternet: Google Chrome - C:\Users\Michal\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-09] (Adobe Inc. -> Adobe)
R2 ASLDRService; C:\Program Files (x86)\PHotkey\ASLDRSrv.exe [104968 2010-12-10] (PEGATRON CORPORATION -> )
R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [349544 2020-06-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe [6439872 2020-06-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 BITCOMET_HELPER_SERVICE; C:\Program Files\BitComet\tools\BitCometService.exe [1296728 2013-11-29] (Shanghai Comet Network Technology -> www.BitComet.com)
S3 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\84.0.4147.39\remoting_host.exe [73200 2020-06-08] (Google LLC -> Spoločnosť Google Inc.)
R2 GFNEXSrv; C:\Program Files (x86)\PHotkey\GFNEXSrv.exe [159752 2010-12-10] (PEGATRON CORPORATION -> )
R2 nlsX86cc; C:\windows\SysWOW64\NLSSRV32.EXE [69640 2012-08-28] (Nitro PDF Software -> Nalpeiron Ltd.)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [267824 2007-05-04] (Nero AG -> Nero AG)
R2 postgresql-8.4; C:\Program Files (x86)\PostgreSQL\8.4\bin\pg_ctl.exe [66048 2009-12-10] (PostgreSQL Global Development Group) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2286976 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 androidusb; C:\windows\System32\Drivers\wsadb.sys [40808 2014-06-01] (Shenzhen Wondershare Information Technology Co., Ltd. -> Google Inc)
R0 avgArDisk; C:\windows\System32\drivers\avgArDisk.sys [37208 2020-06-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgArPot; C:\windows\System32\drivers\avgArPot.sys [205952 2020-06-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\windows\System32\drivers\avgbidsdriver.sys [235144 2020-06-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\windows\System32\drivers\avgbidsh.sys [178824 2020-06-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\windows\System32\drivers\avgbuniv.sys [61064 2020-06-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\windows\System32\drivers\avgKbd.sys [42840 2020-06-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\windows\System32\drivers\avgMonFlt.sys [175264 2020-06-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\windows\System32\drivers\avgNetHub.sys [506208 2020-06-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgNetNd6; C:\windows\System32\DRIVERS\avgNetNd6.sys [29944 2020-06-16] (AVG Technologies CZ, s.r.o. -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\windows\System32\drivers\avgRdr2.sys [109336 2020-06-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\windows\System32\drivers\avgRvrt.sys [84912 2020-06-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\windows\System32\drivers\avgSnx.sys [851664 2020-06-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\windows\System32\drivers\avgSP.sys [462656 2020-06-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\windows\System32\drivers\avgStm.sys [216880 2020-06-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\windows\system32\drivers\avgtpx64.sys [50464 2014-04-27] (AVG Technologies -> AVG Technologies)
R0 avgVmm; C:\windows\System32\drivers\avgVmm.sys [322328 2020-06-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 dg_ssudbus; C:\windows\System32\DRIVERS\ssudbus.sys [103064 2013-04-03] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 dtlitescsibus; C:\windows\System32\DRIVERS\dtlitescsibus.sys [30264 2018-06-22] (Disc Soft Ltd -> Disc Soft Ltd)
S3 dtliteusbbus; C:\windows\System32\DRIVERS\dtliteusbbus.sys [47672 2018-06-22] (Disc Soft Ltd -> Disc Soft Ltd)
S3 FARMNTIO; c:\windows\system32\drivers\farmntio.sys [24152 2010-06-03] (Farstone Technology Inc -> )
R3 fspad_wlh64; C:\windows\System32\DRIVERS\fspad_wlh64.sys [68608 2010-11-08] (Microsoft Windows Hardware Compatibility Publisher -> Sentelic Corporation)
R0 iaStorF; C:\windows\System32\DRIVERS\iaStorF.sys [28008 2014-04-24] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
S3 nmwcd; C:\windows\System32\drivers\ccdcmbx64.sys [19968 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 nmwcdc; C:\windows\System32\drivers\ccdcmbox64.sys [27136 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 nusb3hub; C:\windows\System32\DRIVERS\nusb3hub.sys [78848 2010-07-27] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
R3 nusb3xhc; C:\windows\System32\DRIVERS\nusb3xhc.sys [180224 2010-07-27] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 pccsmcfd; C:\windows\System32\DRIVERS\pccsmcfdx64.sys [26112 2012-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R2 PEGAGFN; C:\Program Files (x86)\PHotkey\PEGAGFN.sys [14344 2010-12-10] (PEGATRON CORPORATION -> PEGATRON)
R0 sptd; C:\windows\System32\Drivers\sptd.sys [394296 2018-12-20] (Disc Soft Ltd -> Duplex Secure Ltd.)
S3 ssudmdm; C:\windows\System32\DRIVERS\ssudmdm.sys [203672 2013-04-03] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudserd; C:\windows\System32\DRIVERS\ssudserd.sys [203672 2013-04-03] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 upperdev; C:\windows\System32\DRIVERS\usbser_lowerfltx64.sys [9216 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 UsbserFilt; C:\windows\System32\DRIVERS\usbser_lowerfltjx64.sys [9216 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 ALSysIO; \??\C:\Users\Michal\AppData\Local\Temp\ALSysIO64.sys [X] <==== ATTENTION
S3 DUMeterDrv; \??\C:\Program Files (x86)\DU Meter\DUMETR64.SYS [X]
S3 MGHwCtrl; \??\c:\Utility\Silent\MGHwCtrl.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-07-01 10:14 - 2020-07-01 10:19 - 000033689 _____ C:\Users\Michal\Desktop\FRST.txt
2020-07-01 10:14 - 2020-07-01 10:17 - 000000000 ____D C:\FRST
2020-07-01 10:12 - 2020-07-01 10:12 - 002291712 _____ (Farbar) C:\Users\Michal\Desktop\FRST64.exe
2020-06-24 23:31 - 2020-06-24 23:32 - 000280296 _____ C:\windows\Minidump\062420-24679-01.dmp
2020-06-17 19:38 - 2020-06-17 19:39 - 000000000 ____D C:\Users\Michal\Desktop\Marcella
2020-06-16 20:42 - 2020-06-16 20:42 - 000192067 _____ C:\Users\Michal\Desktop\Zoznam zakázaných webových sídiel k 25.05.2020.pdf
2020-06-16 11:11 - 2020-06-16 11:11 - 000053616 _____ () C:\windows\system32\Drivers\staport.sys
2020-06-16 10:59 - 2020-06-16 10:55 - 000506208 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgNetHub.sys
2020-06-16 10:59 - 2020-06-16 10:55 - 000336520 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\avgBoot.exe
2020-06-16 10:59 - 2020-06-16 10:55 - 000216880 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgStm.sys
2020-06-16 10:59 - 2020-06-16 10:55 - 000175264 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgMonFlt.sys
2020-06-16 10:55 - 2020-06-16 10:55 - 000029944 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgNetNd6.sys
2020-06-12 12:51 - 2020-06-13 00:54 - 000000000 ____D C:\Users\Michal\AppData\Roaming\SimpleNash
2020-06-12 12:51 - 2020-06-12 12:51 - 000001005 _____ C:\Users\Public\Desktop\SimpleNash.lnk
2020-06-12 12:51 - 2020-06-12 12:51 - 000001005 _____ C:\ProgramData\Desktop\SimpleNash.lnk
2020-06-12 12:51 - 2020-06-12 12:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SimpleNash
2020-06-12 12:51 - 2020-06-12 12:51 - 000000000 ____D C:\Program Files (x86)\SimpleNash

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-07-01 10:19 - 2017-05-06 21:08 - 132787017 _____ C:\blitzerr.txt
2020-07-01 10:05 - 2018-09-01 13:47 - 000000000 ____D C:\windows\system32\Tasks\AVAST Software
2020-07-01 10:04 - 2020-05-14 13:32 - 000004436 _____ C:\windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-07-01 10:04 - 2020-01-31 00:05 - 000003476 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-07-01 10:04 - 2020-01-31 00:05 - 000003348 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-07-01 10:04 - 2018-08-09 23:51 - 000004324 _____ C:\windows\system32\Tasks\Adobe Flash Player Updater
2020-07-01 10:04 - 2017-12-14 11:25 - 000003756 _____ C:\windows\system32\Tasks\AutoKMS
2020-07-01 10:04 - 2017-11-13 11:47 - 000003870 _____ C:\windows\system32\Tasks\CCleaner Update
2020-07-01 10:04 - 2017-04-03 20:31 - 000004174 _____ C:\windows\system32\Tasks\Antivirus Emergency Update
2020-07-01 10:04 - 2014-12-26 21:45 - 000004476 _____ C:\windows\system32\Tasks\Adobe Acrobat Update Task
2020-07-01 10:04 - 2014-08-15 09:53 - 000003068 _____ C:\windows\system32\Tasks\{C085E23B-0534-45AA-A839-250FBD5C15C6}
2020-07-01 10:04 - 2014-05-09 22:37 - 000002774 _____ C:\windows\system32\Tasks\CCleanerSkipUAC
2020-07-01 10:04 - 2011-12-29 20:30 - 000003294 _____ C:\windows\system32\Tasks\{C9E031BF-BFB3-48FD-8122-25DEC7871821}
2020-07-01 10:04 - 2011-08-21 10:39 - 000003288 _____ C:\windows\system32\Tasks\{29EEF94A-F174-4BB2-A3ED-C7E6F176827B}
2020-07-01 10:04 - 2011-07-28 11:47 - 000003552 _____ C:\windows\system32\Tasks\CreateChoiceProcessTask
2020-07-01 10:04 - 2011-07-26 22:57 - 000003552 _____ C:\windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-1554982330-1077266817-2899125201-1001UA
2020-07-01 10:04 - 2011-07-26 22:57 - 000003280 _____ C:\windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-1554982330-1077266817-2899125201-1001Core
2020-07-01 10:04 - 2011-07-26 22:54 - 000003372 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-07-01 10:04 - 2011-07-26 22:54 - 000003244 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-07-01 10:04 - 2011-07-26 18:35 - 000002878 _____ C:\windows\system32\Tasks\{43942417-3446-4888-8CAD-70D0F5BEDA16}
2020-07-01 09:46 - 2015-12-15 12:26 - 000000000 ____D C:\ProgramData\Avg
2020-07-01 09:45 - 2014-01-28 17:34 - 000029437 _____ C:\Users\Michal\Desktop\ppm hadzana.xlsx
2020-07-01 09:39 - 2009-07-14 06:45 - 000009920 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-07-01 09:39 - 2009-07-14 06:45 - 000009920 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-07-01 09:27 - 2009-07-14 07:08 - 000000006 ____H C:\windows\Tasks\SA.DAT
2020-06-28 07:06 - 2011-03-27 08:35 - 000000000 ____D C:\windows\SysWOW64\Macromed
2020-06-28 06:56 - 2009-07-14 07:08 - 000032546 _____ C:\windows\Tasks\SCHEDLGU.TXT
2020-06-26 23:39 - 2011-07-28 21:19 - 000000000 ____D C:\Users\Michal\AppData\Local\PokerStars.EU
2020-06-26 10:12 - 2020-01-31 00:08 - 000002199 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-06-24 23:45 - 2016-08-03 10:32 - 000000000 ____D C:\windows\Minidump
2020-06-24 06:49 - 2011-07-29 10:46 - 000000000 ____D C:\Users\postgres
2020-06-23 18:25 - 2011-07-26 22:59 - 000002457 _____ C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-06-21 20:23 - 2011-07-27 15:53 - 000000000 ____D C:\Users\Michal\AppData\Roaming\BitComet
2020-06-19 07:32 - 2011-07-26 22:54 - 000000000 ____D C:\Program Files (x86)\Google
2020-06-16 11:11 - 2017-04-03 20:31 - 000462656 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgSP.sys
2020-06-16 11:11 - 2017-04-03 20:31 - 000322328 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgVmm.sys
2020-06-16 11:06 - 2009-07-14 05:20 - 000000000 ____D C:\windows\inf
2020-06-16 10:55 - 2019-01-05 13:06 - 000037208 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgArDisk.sys
2020-06-16 10:55 - 2018-10-20 13:24 - 000042840 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgKbd.sys
2020-06-16 10:55 - 2017-11-27 11:17 - 000205952 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgArPot.sys
2020-06-16 10:55 - 2017-04-03 20:31 - 000851664 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgSnx.sys
2020-06-16 10:55 - 2017-04-03 20:31 - 000109336 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgRdr2.sys
2020-06-16 10:55 - 2017-04-03 20:31 - 000084912 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgRvrt.sys
2020-06-16 10:54 - 2019-01-14 22:25 - 000235144 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgbidsdriver.sys
2020-06-16 10:54 - 2019-01-05 13:06 - 000178824 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgbidsh.sys
2020-06-16 10:54 - 2019-01-05 13:06 - 000061064 _____ (AVG Technologies CZ, s.r.o.) C:\windows\system32\Drivers\avgbuniv.sys
2020-06-16 10:51 - 2018-08-03 13:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2020-06-15 19:31 - 2011-08-01 17:41 - 000000000 ____D C:\Users\Michal\AppData\Local\ElevatedDiagnostics
2020-06-14 21:56 - 2019-03-01 20:41 - 000000000 ____D C:\Users\Michal\AppData\Local\CrashDumps
2020-06-13 00:07 - 2011-07-27 18:22 - 000000000 ____D C:\Users\Michal\Desktop\Filmy stiahnuť
2020-06-10 22:05 - 2014-05-04 11:41 - 000000000 ____D C:\Users\Michal\AppData\Local\Equilab
2020-06-09 19:28 - 2012-03-30 11:57 - 000842296 _____ (Adobe) C:\windows\SysWOW64\FlashPlayerApp.exe
2020-06-09 19:28 - 2011-07-28 23:14 - 000175160 _____ (Adobe) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-06-09 19:27 - 2011-11-11 20:32 - 000000000 ____D C:\windows\system32\Macromed
2020-06-03 20:56 - 2017-11-17 16:04 - 000002029 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

==================== Files in the root of some directories ========

2011-07-29 10:02 - 2011-07-29 10:07 - 000000173 _____ () C:\Users\Michal\AppData\Local\msmathematics.qat.Michal
2016-08-05 17:54 - 2016-08-05 17:54 - 000007625 _____ () C:\Users\Michal\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2020-06-26 15:26
==================== End of FRST.txt ========================

Re: preventivna kontrola

Napsal: 02 črc 2020 11:22
od ahola
este addition

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-06-2020
Ran by Michal (01-07-2020 10:24:49)
Running from C:\Users\Michal\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2011-07-26 14:29:21)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1554982330-1077266817-2899125201-500 - Administrator - Disabled)
Guest (S-1-5-21-1554982330-1077266817-2899125201-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1554982330-1077266817-2899125201-1003 - Limited - Enabled)
Michal (S-1-5-21-1554982330-1077266817-2899125201-1001 - Administrator - Enabled) => C:\Users\Michal
postgres (S-1-5-21-1554982330-1077266817-2899125201-1006 - Limited - Enabled) => C:\Users\postgres
UpdatusUser (S-1-5-21-1554982330-1077266817-2899125201-1000 - Limited - Enabled) => C:\Users\TEMP.Michal-MSICX640.004

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}
AS: AVG Antivirus (Enabled - Up to date) {A3C8941D-8036-3856-D9BB-709D4A2A7EAC}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 20.009.20067 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 18.0.0.144 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.387 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.387 - Adobe)
Alcor Micro USB Card Reader (HKLM-x32\...\{48106FE4-B1AF-4941-BF3D-83E6C4B7CAF3}) (Version: 1.8.1217.36096 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader (HKLM-x32\...\{C90340A9-F592-4164-9480-FCE488C4BFF6}) (Version: 4.7.1245.73473 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 4.7.1245.73473 - Alcor Micro Corp.)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.36 - Atheros Communications Inc.)
AVG AntiVirus FREE (HKLM-x32\...\AVG Antivirus) (Version: 20.4.3125 - AVG Technologies)
BatteryBar (remove only) (HKLM\...\BatteryBar) (Version: - )
BitComet 1.66 (HKLM-x32\...\BitComet_x64) (Version: 1.66 - CometNetwork)
BurnRecovery (HKLM-x32\...\{2892E1B7-E24D-4CCB-B8A7-B63D4B66F89F}) (Version: 3.0.1007.2702 - Micro-Star International Co., Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 5.66 - Piriform)
CDDRV_Installer (HKLM\...\{0C826C5B-B131-423A-A229-C71B3CACCD6A}) (Version: 4.24.15 - Logitech) Hidden
CDex - Open Source Digital Audio CD Extractor (HKLM-x32\...\CDex) (Version: 1.70.4.2009 - Georgy Berdyshev)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.54.0.0 - Conexant)
Czech Soccer Manager (HKLM-x32\...\Czech Soccer Manager) (Version: - )
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
D-Fend Reloaded 1.2.1 (Odinstalovat) (HKLM-x32\...\D-Fend Reloaded) (Version: 1.2.1 - Alexander Herzog)
Doplnok programu Messenger (HKLM-x32\...\{6D2F0A26-ECEA-49CE-833C-9A6125F3D5E8}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
EasyFace2 (HKLM-x32\...\{94DE7548-E449-4F7D-804F-0C5CDC3A1E6A}) (Version: 2.0.0.14 - Micro-Star International CO.,Ltd.)
EasyViewer (HKLM-x32\...\{EECD7B96-1416-4D3A-B12D-0D2512120C36}) (Version: 1.3.0.8 - MSI) Hidden
EasyViewer (HKLM-x32\...\InstallShield_{EECD7B96-1416-4D3A-B12D-0D2512120C36}) (Version: 1.3.0.8 - MSI)
eDANE-Java – aplikácia sekcie daňovej FR SR pre podávanie daňových dokumentov (HKU\.DEFAULT\...\eDANE-Java – aplikácia sekcie daňovej FR SR pre podávanie daňových dokumentov) (Version: - Finančné riaditeľstvo SR)
erLT (HKLM-x32\...\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}) (Version: 0.72.105 - Logitech, Inc.) Hidden
Finger Sensing Pad Driver (HKLM\...\{E86906FF-C63D-4EAF-ACE7-5F8D55FBEA9A}) (Version: 8.8.0.9 - Sentelic)
Floorball League 1.0 (HKLM-x32\...\Floorball League_is1) (Version: - Prodigium Game Studios)
FormatFactory 4.8.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.8.0.0 - Free Time)
FotoMix version 8.7.3 (HKLM-x32\...\{10A0255E-0B73-4397-AB4E-E3667EDA70E4}_is1) (Version: 8.7.3 - Digital Photo Software)
GOM Player (HKLM-x32\...\GOM Player) (Version: - )
Google Chrome (HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\Google Chrome) (Version: 83.0.4103.116 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Holdem Manager (HKLM\...\HoldemManager) (Version: - )
HP Deskjet 3520 series Basic Device Software (HKLM\...\{A0A03B53-927D-4454-A456-CB0A72A4912F}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Deskjet 3520 series Setup Guide (HKLM-x32\...\{AEEDCEB7-00B8-4BE1-B492-AB04803D5F1E}) (Version: 27.0.0 - Hewlett Packard)
Chrome Remote Desktop Host (HKLM-x32\...\{FEA4124F-FABE-440B-BA03-489722A59439}) (Version: 84.0.4147.39 - Google Inc.)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1118 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.4.1000 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.28 - Irfan Skiljan)
Java 8 Update 251 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180251F0}) (Version: 8.0.2510.8 - Oracle Corporation)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
KhalInstallWrapper (HKLM\...\{F3F18612-7B5D-4C05-86C9-AB50F6F71727}) (Version: 4.40.88 - Logitech) Hidden
Logitech SetPoint (HKLM-x32\...\{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}) (Version: 4.4 - Logitech)
Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Mi PC Suite (HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\MiPhoneManager) (Version: - Xiaomi Inc.)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 83.0.478.56 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.129.31 - )
Microsoft Mathematics (HKLM-x32\...\{4D090F70-6F08-4B60-9357-A1DFD4458F09}) (Version: 4.0 - Microsoft Corporation)
Microsoft Office Language Pack 2013 - Slovak/Slovenčina (HKLM\...\Office15.OMUI.sk-sk) (Version: 15.0.4454.1509 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50709.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
MSI Remind Manager (HKLM-x32\...\{89F17DC5-A776-4DF4-8CD1-FAEF29BCE51A}) (Version: 1.11.0104 - MSI)
MSVC80_x64_v2 (HKLM\...\{4D668D4F-FAA2-4726-834C-31F4614F312E}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (HKLM-x32\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština (HKLM\...\{90150000-001F-0405-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2013 - slovenčina (HKLM\...\{90150000-001F-041B-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Nero 7 Essentials (HKLM-x32\...\{F61DD673-0030-4BB2-A382-7E57E97F1051}) (Version: 7.02.8078 - Nero AG)
Nokia Connectivity Cable Driver (HKLM-x32\...\{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia)
NVIDIA Graphics Driver 266.39 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 266.39 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice.org 3.2 (HKLM-x32\...\{28B94253-5729-4C30-8DE4-F2A0A63149B0}) (Version: 3.2.9505 - OpenOffice.org)
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Ovládací prvok ActiveX programu Windows Live Mesh pre vzdialené pripojenia (HKLM-x32\...\{C2FD7DB5-FE30-49B6-8A2F-C5652E053C31}) (Version: 15.4.5722.2 - Microsoft Corporation)
PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
PC Sound (HKLM\...\{F3C66EC8-2F33-452D-9CFF-E8C886B3ECC4}) (Version: 1.11.0200 - SRS Labs, Inc.)
PDF-XChange Editor (HKLM\...\{F035709A-033D-480D-A75C-38F89A7309FC}) (Version: 7.0.326.1 - Tracker Software Products (Canada) Ltd.)
PHotkey (HKLM-x32\...\{24047BE4-329D-46F7-9689-8684C7A1CFBB}) (Version: 1.00.0005 - )
PokerStars.eu (HKLM-x32\...\PokerStars.eu) (Version: - PokerStars.eu)
PokerStrategy.com Equilab - Omaha (HKLM-x32\...\{38B746B5-44EE-4FFA-B987-581B5CF4A097}) (Version: 1.1.4.0 - PokerStrategy.com)
PokerStrategy.com Equilab (HKLM-x32\...\{86D09F48-CDAB-4B4C-8806-F6C16F17935A}) (Version: 1.2.8.0 - PokerStrategy.com)
PostgreSQL 8.4 (HKLM-x32\...\PostgreSQL 8.4) (Version: 8.4 - PostgreSQL Global Development Group)
Quadrax III 2005 (HKLM-x32\...\Quadrax III_is1) (Version: - )
Quadrax IV (HKLM-x32\...\{43C69A09-CA51-4ABD-9803-0FBD2F546125}_is1) (Version: 2.0 - Alfaline)
Quadrax Neverending (HKLM-x32\...\{7B7A31E7-C12C-4B4B-A7FE-FA5E52D0E6CF}_is1) (Version: 012 - Alfaline)
Quadrax V (HKLM-x32\...\{03602767-5C44-4A31-A545-E819783A1D42}_is1) (Version: 1.4 - Alfaline)
Quadrax VI (HKLM-x32\...\{E0348E64-A89C-4D06-A3C0-2CB16F591FA0}_is1) (Version: 1.2 - Alfaline)
Quadrax VII (HKLM-x32\...\{0B041BB5-E35E-48DD-B400-8AAFF1EA7350}_is1) (Version: 1.0 - Alfaline)
Quadrax VIII (HKLM-x32\...\{D01E6B12-1DCD-44BA-86EB-4D8E0AD54CA0}_is1) (Version: 1.0 - Alfaline)
Quadrax X 1.3 (HKLM-x32\...\{EB2C8EDE-C731-4D55-993C-06F1683457CC}_is1) (Version: 1.3 - Alfaline)
Qualcomm Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 - Qualcomm Atheros)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.20.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.20.0 - Renesas Electronics Corporation)
Samsung Kies (HKLM-x32\...\{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.5.2.13021_10 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.5.2.13021_10 - Samsung Electronics Co., Ltd.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.23.0 - SAMSUNG Electronics Co., Ltd.)
SimpleNash version 1.20 (HKLM-x32\...\{3657CBB1-6555-4708-A3F1-8BBE85413465}_is1) (Version: 1.20 - )
Skype verzia 8.61 (HKLM-x32\...\Skype_is1) (Version: 8.61 - Skype Technologies S.A.)
Splashtop Streamer (HKLM-x32\...\{B7C5EA94-B96A-41F5-BE95-25D78B486678}) (Version: 2.5.5.4 - Splashtop Inc.)
Veetle TV (HKLM-x32\...\Veetle TV) (Version: 0.9.18 - Veetle, Inc)
Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Winamax (HKLM-x32\...\Winamax 3.10.0) (Version: 3.10.0 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.0.0) (Version: 4.0.0 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.1.1) (Version: 4.1.1 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.10.0) (Version: 4.10.0 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.10.1) (Version: 4.10.1 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.2.0) (Version: 4.2.0 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.2.1) (Version: 4.2.1 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.2.2) (Version: 4.2.2 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.2.3) (Version: 4.2.3 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.4.0) (Version: 4.4.0 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.4.1) (Version: 4.4.1 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.4.2) (Version: 4.4.2 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.5.0) (Version: 4.5.0 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.6.1) (Version: 4.6.1 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.6.2) (Version: 4.6.2 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.6.3) (Version: 4.6.3 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.7.0) (Version: 4.7.0 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.7.1) (Version: 4.7.1 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.7.2) (Version: 4.7.2 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.7.3) (Version: 4.7.3 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.8.0) (Version: 4.8.0 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.8.1) (Version: 4.8.1 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.8.3) (Version: 4.8.3 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.9.1) (Version: 4.9.1 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.9.2) (Version: 4.9.2 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.9.3) (Version: 4.9.3 - Winamax)
Winamax Installer (HKLM-x32\...\Winamax Installer 2.0) (Version: 2.0 - Winamax)
Winamp (HKLM-x32\...\Winamp) (Version: 5.62 - Nullsoft, Inc)
Winamp Detector Plug-in (HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Driver Package - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.)
Windows Driver Package - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{28456131-01CD-4BE4-8D67-BDBDD1ED636A}) (Version: 14.0.8117.416 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{B39AA98E-C966-46C9-ACA2-D2586E300988}) (Version: 2.29.0.3 - )
WinRAR 5.40 (64-bitová verzia) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
XW204E (HKLM-x32\...\{5BFF7DE6-C3F0-40F8-AC32-75D628E46C6B}) (Version: 1.00.0000 - XAVi)
yBook2 (HKLM-x32\...\yBook2_is1) (Version: - Spacejock Software)
Zip Motion Block Video codec (Remove Only) (HKLM-x32\...\ZMBV) (Version: - DOSBox Team)
Zoner Photo Studio 12 (HKLM-x32\...\ZonerPhotoStudio12_CZ_is1) (Version: 12.0.1.9 - ZONER software)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001_Classes\CLSID\{9DA854A0-1FDB-C407-56FC-F7DC2DDF3BAB}\InprocServer32 -> C:\windows\system32\ole32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001_Classes\CLSID\{A2C6CB58-C076-425C-ACB7-6D19D64428CD}\localserver32 -> C:\Users\Michal\AppData\Local\Google\Chrome\Application\83.0.4103.116\notification_helper.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001_Classes\CLSID\{BCAFD618-3FAE-4EFE-BF4E-4C43A7E1320B}\InprocServer32 -> C:\Program Files (x86)\Zoner\Photo Studio 12\Program\SHELLEXT64.DLL (ZONER software, a.s. -> ZONER software)
CustomCLSID: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.35.452\psuser_64.dll (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001_Classes\CLSID\{E9E7529D-7F09-410B-AF2A-CC154473B19C}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.35.452\psuser_64.dll (Google LLC -> Google LLC)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2020-06-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_106.dll [2019-07-02] (Free Time) [File not signed]
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => -> No File
ContextMenuHandlers1: [PDFXChange Editor Context menu] -> {2ACD35AB-F74A-4C20-AA9B-2DE80081626D} => C:\Program Files\Tracker Software\Shell Extensions\XCShellMenu.x64.dll [2018-07-25] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_106.dll [2019-07-02] (Free Time) [File not signed]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\windows\system32\igfxpph.dll [2015-05-26] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\windows\system32\nvshext.dll [2010-12-24] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2020-06-16] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-1554982330-1077266817-2899125201-1001: [ZONERMenu] -> {BCAFD618-3FAE-4EFE-BF4E-4C43A7E1320B} => C:\Program Files (x86)\Zoner\Photo Studio 12\Program\SHELLEXT64.DLL [2011-03-25] (ZONER software, a.s. -> ZONER software)
ContextMenuHandlers2_S-1-5-21-1554982330-1077266817-2899125201-1001: [ZONERMenu] -> {BCAFD618-3FAE-4EFE-BF4E-4C43A7E1320B} => C:\Program Files (x86)\Zoner\Photo Studio 12\Program\SHELLEXT64.DLL [2011-03-25] (ZONER software, a.s. -> ZONER software)
ContextMenuHandlers4_S-1-5-21-1554982330-1077266817-2899125201-1001: [ZONERMenu] -> {BCAFD618-3FAE-4EFE-BF4E-4C43A7E1320B} => C:\Program Files (x86)\Zoner\Photo Studio 12\Program\SHELLEXT64.DLL [2011-03-25] (ZONER software, a.s. -> ZONER software)
ContextMenuHandlers6_S-1-5-21-1554982330-1077266817-2899125201-1001: [ZONERMenu] -> {BCAFD618-3FAE-4EFE-BF4E-4C43A7E1320B} => C:\Program Files (x86)\Zoner\Photo Studio 12\Program\SHELLEXT64.DLL [2011-03-25] (ZONER software, a.s. -> ZONER software)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [msacm.divxa32] => C:\Windows\SysWOW64\msaud32_divx.acm [186368 2003-02-03] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [VIDC.ZMBV] => C:\Windows\SysWOW64\zmbv.dll [94208 2010-04-09] () [File not signed]

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2013-07-26 20:52 - 2013-07-26 20:52 - 000122880 _____ () [File not signed] C:\Hry\Poker\Holdem Manager\blitz.dll
2010-04-13 21:26 - 2010-04-13 21:26 - 000373248 _____ () [File not signed] C:\Hry\Poker\Holdem Manager\Npgsql.dll
2012-10-31 17:55 - 2012-10-31 17:55 - 000167424 _____ () [File not signed] C:\Hry\Poker\Holdem Manager\SitNGoWizard.Localization.2.0.dll
2010-04-13 21:26 - 2010-04-13 21:26 - 000307200 _____ () [File not signed] C:\Hry\Poker\Holdem Manager\ZedGraph.dll
2018-08-03 13:39 - 2020-06-09 15:53 - 001899520 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\ffmpeg.dll
2018-08-03 13:39 - 2020-06-09 15:53 - 000115712 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\libegl.dll
2018-08-03 13:39 - 2020-06-09 15:53 - 006668800 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\libglesv2.dll
2011-07-29 11:00 - 2009-12-10 13:28 - 000172032 _____ () [File not signed] C:\Program Files (x86)\PostgreSQL\8.4\bin\LIBPQ.dll
2011-07-29 11:00 - 2009-02-12 21:01 - 000976384 _____ () [File not signed] C:\Program Files (x86)\PostgreSQL\8.4\bin\libxml2.dll
2011-07-29 11:00 - 2005-07-20 12:48 - 000059904 _____ () [File not signed] C:\Program Files (x86)\PostgreSQL\8.4\bin\zlib1.dll
2011-07-29 11:01 - 2009-12-10 13:36 - 000188416 _____ () [File not signed] C:\Program Files (x86)\PostgreSQL\8.4\lib\plpgsql.dll
2011-10-12 23:06 - 2011-10-12 23:06 - 012288512 _____ (Ace Poker Solutions) [File not signed] C:\Hry\Poker\Holdem Manager\AcePokerCoach.dll
2011-07-15 00:30 - 2011-07-15 00:30 - 010896384 _____ (Ace Poker Solutions) [File not signed] C:\Hry\Poker\Holdem Manager\LeakBusterOmaha.dll
2013-01-09 20:29 - 2013-01-09 20:29 - 006507520 _____ (AcePokerSolutions) [File not signed] C:\Hry\Poker\Holdem Manager\LeakBuster2.5 Limit.dll
2011-03-27 07:34 - 2010-10-05 14:43 - 001892352 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\xerces-c_2_7.dll
2010-04-13 21:26 - 2010-04-13 21:26 - 003829760 _____ (DevComponents.com) [File not signed] C:\Hry\Poker\Holdem Manager\DevComponents.DotNetBar2.dll
2011-07-29 11:00 - 2006-05-03 22:57 - 000888832 _____ (Free Software Foundation) [File not signed] C:\Program Files (x86)\PostgreSQL\8.4\bin\iconv.dll
2011-07-29 11:00 - 2009-01-06 16:51 - 000968886 _____ (Free Software Foundation) [File not signed] C:\Program Files (x86)\PostgreSQL\8.4\bin\libiconv-2.dll
2011-07-29 11:00 - 2009-01-06 16:51 - 000083906 _____ (Free Software Foundation) [File not signed] C:\Program Files (x86)\PostgreSQL\8.4\bin\libintl-8.dll
2019-07-02 11:29 - 2019-07-02 11:29 - 000301568 _____ (Free Time) [File not signed] C:\Program Files (x86)\FormatFactory\ShellEx64_106.dll
2011-03-27 07:34 - 2010-10-05 14:38 - 000069632 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\StatusStrings.dll
2014-04-24 17:34 - 2014-04-24 17:34 - 000504320 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2014-04-24 17:34 - 2014-04-24 17:34 - 000286720 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
2011-07-26 17:49 - 2008-01-09 04:00 - 000013824 _____ (Logitech, Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\AdobeHookDll.dll
2011-07-26 17:49 - 2008-01-09 04:00 - 000014336 _____ (Logitech, Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\AOLHookDll.dll
2011-07-26 17:49 - 2008-01-09 04:00 - 000057344 _____ (Logitech, Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\GameHook.dll
2011-07-26 17:49 - 2008-01-09 04:00 - 000012288 _____ (Logitech, Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\HookDll.dll
2011-07-26 17:49 - 2008-01-09 04:00 - 000010752 _____ (Logitech, Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\IMHook.dll
2011-07-26 17:49 - 2008-01-09 04:00 - 000022528 _____ (Logitech, Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\KEMHook.dll
2011-07-26 17:49 - 2008-01-09 04:00 - 000069632 _____ (Logitech, Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\lgscroll.dll
2011-07-26 17:49 - 2008-01-09 04:00 - 000069632 _____ (Logitech, Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\MessengerHook.dll
2011-07-29 11:00 - 2009-04-13 14:23 - 000012288 _____ (Massachusetts Institute of Technology.) [File not signed] C:\Program Files (x86)\PostgreSQL\8.4\bin\comerr32.dll
2011-07-29 11:00 - 2009-04-13 14:23 - 000135168 _____ (Massachusetts Institute of Technology.) [File not signed] C:\Program Files (x86)\PostgreSQL\8.4\bin\gssapi32.dll
2011-07-29 11:00 - 2009-04-13 14:23 - 000019968 _____ (Massachusetts Institute of Technology.) [File not signed] C:\Program Files (x86)\PostgreSQL\8.4\bin\k5sprt32.dll
2011-07-29 11:00 - 2009-04-13 14:23 - 000634880 _____ (Massachusetts Institute of Technology.) [File not signed] C:\Program Files (x86)\PostgreSQL\8.4\bin\krb5_32.dll
2011-07-29 11:00 - 2008-04-08 16:13 - 000348160 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\PostgreSQL\8.4\bin\MSVCR71.dll
2011-07-28 11:15 - 2011-07-28 11:15 - 000113664 _____ (Microsoft Corporation) [File not signed] C:\windows\WinSxS\amd64_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8a1dd9552ed7f8d8\ATL80.DLL
2011-07-28 11:15 - 2011-07-28 11:15 - 001654784 _____ (Microsoft Corporation) [File not signed] C:\windows\WinSxS\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8448b2bd328df189\MFC80U.DLL
2011-07-28 11:25 - 2011-07-28 11:25 - 000225280 _____ (Microsoft Corporation) [File not signed] C:\windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll
2010-04-13 21:26 - 2010-04-13 21:26 - 000282624 _____ (MONO development team) [File not signed] C:\Hry\Poker\Holdem Manager\Mono.Security.dll
2011-07-15 00:30 - 2011-07-15 00:30 - 011919872 _____ (NAV) [File not signed] C:\Hry\Poker\Holdem Manager\LeakBuster2.5.dll
2014-04-12 22:44 - 2014-04-12 22:44 - 001106432 _____ (PASG, LLC) [File not signed] C:\Hry\Poker\Holdem Manager\HoldemVision.dll
2014-04-10 00:12 - 2014-04-10 00:12 - 001116160 _____ (RVG Software Ltd) [File not signed] C:\Hry\Poker\Holdem Manager\HEMGUI.dll
2010-04-16 00:18 - 2010-04-16 00:18 - 000242176 _____ (Softel vdm, Inc.) [File not signed] C:\Hry\Poker\Holdem Manager\Softelvdm.Controls.dll
2010-04-16 00:18 - 2010-04-16 00:18 - 000449024 _____ (Softel vdm, Inc.) [File not signed] C:\Hry\Poker\Holdem Manager\Softelvdm.SftTreeNET.dll
2010-04-13 21:26 - 2010-04-13 21:26 - 000270336 _____ (The Apache Software Foundation) [File not signed] C:\Hry\Poker\Holdem Manager\log4net.dll
2011-07-29 11:00 - 2009-04-13 16:09 - 001032192 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\PostgreSQL\8.4\bin\LIBEAY32.dll
2011-07-29 11:00 - 2009-04-13 16:09 - 000212992 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\PostgreSQL\8.4\bin\SSLEAY32.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Windows:nlsPreferences [386]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\100sexlinks.com -> 100sexlinks.com

There are 4752 more sites.


==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2019-03-01 09:27 - 000000841 _____ C:\windows\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\PC Connectivity Solution\;C:\ProgramData\Oracle\Java\javapath;C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;C:\windows\system32;C:\windows;C:\windows\System32\Wbem;C:\windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Windows Live\Shared;C:\adb;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64
HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Michal\AppData\Roaming\Virtual Desktop Manager\PVDesktopWallpaper_0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\Services: ServiceLayer => 3
MSCONFIG\Services: SplashtopRemoteService => 2
MSCONFIG\Services: SSUService => 2
MSCONFIG\startupreg: BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} => "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
MSCONFIG\startupreg: KiesPreload => C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
MSCONFIG\startupreg: KiesTrayAgent => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
MSCONFIG\startupreg: KrosMeninyP => True
MSCONFIG\startupreg: WinampAgent => "C:\Program Files (x86)\Winamp\winampa.exe"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{64ECDB03-5553-4E1C-BC8C-7E6E7882510A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9CAF03F4-AD24-4B04-B6D9-7BD1B2323A69}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{27ED6732-13A2-40DA-AB5A-5F90C353421B}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{351AE17A-9CCE-48EA-8DF6-C92CB0DC7FBA}] => (Allow) C:\windows\system32\svchost.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{08FFF3A6-A503-4D2C-8DE0-BEDDACDD78E6}] => (Allow) C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{648B78CF-6758-4AEC-AE3B-61DE517C316B}] => (Allow) LPort=5432
FirewallRules: [{BB0C598B-A846-482B-A341-C056E8839726}] => (Allow) LPort=21261
FirewallRules: [{E0A25A22-93CE-4E88-A484-3428B89A4CF6}] => (Allow) LPort=21261
FirewallRules: [{A520D568-6146-4B4E-9A18-4A6F1CD4BFB9}] => (Allow) LPort=21261
FirewallRules: [{7B6FCEE1-6B19-4F09-B656-4E6713C87329}] => (Allow) LPort=21261
FirewallRules: [{A9AA73D5-5C78-4527-8415-5DA709FE7F18}] => (Allow) C:\Program Files (x86)\Veetle\Player\VeetleNet.exe (Veetle Inc. -> )
FirewallRules: [{E6EF6C77-B832-4357-B4B9-DF1F4267C069}] => (Allow) C:\Windows\SysWOW64\muzapp.exe (Musiccity Co.Ltd.) [File not signed]
FirewallRules: [{90D8ABE5-04B7-4853-8B5F-2F04F0904746}] => (Allow) C:\Windows\SysWOW64\muzapp.exe (Musiccity Co.Ltd.) [File not signed]
FirewallRules: [{DF43B722-9439-459C-B0A8-BC4BFA60832A}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{99D10D2D-6116-4788-834F-DEAD5A01B93B}] => (Allow) LPort=2869
FirewallRules: [{35AC1FF6-9FC0-4047-B07F-4025BF2169FE}] => (Allow) LPort=1900
FirewallRules: [{5618F72B-1B04-443F-86AD-026D7DA317A6}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FF20E8E4-E3A4-48D8-877D-6A5197A6205A}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\DeviceSetup.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{7FC85F2D-06BB-4E5A-A765-88914725CEF5}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicator.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{FDEA321A-974F-4A10-92AE-535DD71043F0}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{68429C95-7837-4C3E-B556-C5B628CC4CA3}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{5CB3C093-AF48-4909-9E9E-0B05E301F71D}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{ADC577D0-F9D9-4CFC-BB82-703CB5333599}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{522FA538-6950-4575-828F-4E11C51C8B4B}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{51B64FB4-C5F4-4FD5-949C-B60C83B08D36}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{82BF01E3-5426-49A6-A085-0756E8400341}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{E521647C-AB64-4A94-9A7C-0C792E575893}] => (Allow) C:\Users\Michal\AppData\Local\MiPhoneManager\main\MiPCSuite.exe (Xiaomi Technology Inc -> Xiaomi.Inc)
FirewallRules: [{0A54C715-A686-4842-B541-D52801BF90DD}] => (Allow) C:\Program Files\BitComet\BitComet.exe (Xing Wang -> www.BitComet.com)
FirewallRules: [{552E9962-637E-4E62-A847-91B171586F52}] => (Allow) C:\Program Files\BitComet\BitComet.exe (Xing Wang -> www.BitComet.com)
FirewallRules: [{279F59D7-0EE5-4FDA-8AF1-9159653F6B0B}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{5E125F88-C20F-45F7-BB67-C7655C24D753}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [TCP Query User{92F3B6E5-A4C8-4AC5-8BCE-DAC182668DD1}C:\users\michal\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe] => (Block) C:\users\michal\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司)
FirewallRules: [UDP Query User{919D46C3-B9DB-4442-955A-596451190236}C:\users\michal\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe] => (Block) C:\users\michal\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司)
FirewallRules: [TCP Query User{F6E6B50F-5BBC-44FB-B500-5DA5A52056B2}C:\program files (x86)\microsoft\skype for desktop\skype.exe] => (Allow) C:\program files (x86)\microsoft\skype for desktop\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{B2229A85-DF41-4A5B-9E24-CE470C3427D5}C:\program files (x86)\microsoft\skype for desktop\skype.exe] => (Allow) C:\program files (x86)\microsoft\skype for desktop\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D9A80FAB-5219-409E-BD4C-229A4B38FB03}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{DD1D91B8-AEB9-4885-964E-CD9F1CA7B992}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{DD6B8302-C716-4513-9A0C-012CD247DA95}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{3413467C-01ED-4B57-9A27-F4424AD447B3}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{99C4B35A-C7AF-4E24-9D11-603802208E56}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{87BB4E0D-EA3A-45EF-AFA8-A5F3B9EAC5F8}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{E294E05D-B125-4130-A92C-1390ADBB45CE}] => (Allow) C:\Program Files\BitComet\BitComet.exe (Xing Wang -> www.BitComet.com)
FirewallRules: [{F0905B91-194D-4986-9448-7A50C3AB75EB}] => (Allow) C:\Program Files\BitComet\BitComet.exe (Xing Wang -> www.BitComet.com)
FirewallRules: [{C5224985-8AE1-4C3A-97B8-9263BE88015B}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A8C14882-336B-4073-AB4E-B68F78278952}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B56E4055-D563-4EA9-AC96-AA4E25994426}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\84.0.4147.39\remoting_host.exe (Google LLC -> Spoločnosť Google Inc.)
FirewallRules: [{D2C7AB31-3FE5-490D-A4DF-FCE0BB606D1C}] => (Allow) C:\Users\Michal\AppData\Local\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

12-06-2020 11:54:17 Plánovaný kontrolný bod
16-06-2020 11:04:14 Inštalácia balíka ovládačov zariadenia: AVG Technologies Sieťová služba
23-06-2020 19:02:42 Plánovaný kontrolný bod

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (07/01/2020 09:32:47 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1500) (User: Michal-MSICX640)
Description: Windows cannot log you on because your profile cannot be loaded. Check that you are connected to the network, and that your network is functioning correctly.

DETAIL - Prístup je odmietnutý.

Error: (06/30/2020 08:39:19 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1500) (User: Michal-MSICX640)
Description: Windows cannot log you on because your profile cannot be loaded. Check that you are connected to the network, and that your network is functioning correctly.

DETAIL - Prístup je odmietnutý.

Error: (06/30/2020 12:00:08 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program IEXPLORE.EXE version 11.0.9600.16521 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1864

Start Time: 01d64e605c3c7ff7

Termination Time: 0

Application Path: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

Report Id:

Error: (06/29/2020 09:38:18 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1500) (User: Michal-MSICX640)
Description: Windows cannot log you on because your profile cannot be loaded. Check that you are connected to the network, and that your network is functioning correctly.

DETAIL - Prístup je odmietnutý.

Error: (06/28/2020 07:01:02 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1500) (User: Michal-MSICX640)
Description: Windows cannot log you on because your profile cannot be loaded. Check that you are connected to the network, and that your network is functioning correctly.

DETAIL - Prístup je odmietnutý.

Error: (06/27/2020 09:31:07 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1500) (User: Michal-MSICX640)
Description: Windows cannot log you on because your profile cannot be loaded. Check that you are connected to the network, and that your network is functioning correctly.

DETAIL - Prístup je odmietnutý.

Error: (06/26/2020 09:26:49 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1500) (User: Michal-MSICX640)
Description: Windows cannot log you on because your profile cannot be loaded. Check that you are connected to the network, and that your network is functioning correctly.

DETAIL - Prístup je odmietnutý.

Error: (06/25/2020 07:49:52 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program IEXPLORE.EXE version 11.0.9600.16521 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 19bc

Start Time: 01d64b18fe288729

Termination Time: 47

Application Path: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

Report Id:


System errors:
=============
Error: (07/01/2020 09:32:47 AM) (Source: Service Control Manager) (EventID: 7005) (User: )
Description: Volanie LoadUserProfile zlyhalo s nasledujúcou chybou:
Prístup je odmietnutý.

Error: (06/30/2020 08:39:19 AM) (Source: Service Control Manager) (EventID: 7005) (User: )
Description: Volanie LoadUserProfile zlyhalo s nasledujúcou chybou:
Prístup je odmietnutý.

Error: (06/29/2020 04:28:42 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 40.

Error: (06/29/2020 04:28:42 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 70.

Error: (06/29/2020 09:54:24 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 40.

Error: (06/29/2020 09:54:24 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: The following fatal alert was received: 70.

Error: (06/29/2020 09:40:46 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba NVIDIA Update Service Daemon sa pri spustení zablokovala.

Error: (06/29/2020 09:38:18 AM) (Source: Service Control Manager) (EventID: 7005) (User: )
Description: Volanie LoadUserProfile zlyhalo s nasledujúcou chybou:
Prístup je odmietnutý.


==================== Memory info ===========================

BIOS: American Megatrends Inc. E16Y1IMS.204 02/17/2011
Motherboard: PEGATRON CORPORATION P017
Processor: Intel(R) Core(TM) i3-2310M CPU @ 2.10GHz
Percentage of memory in use: 86%
Total physical RAM: 4008.29 MB
Available physical RAM: 546.02 MB
Total Virtual: 8014.76 MB
Available Virtual: 3753.18 MB

==================== Drives ================================

Drive c: (OS_Install) (Fixed) (Total:268.26 GB) (Free:112.37 GB) NTFS
Drive d: (Data) (Fixed) (Total:178.84 GB) (Free:37.1 GB) NTFS
Drive w: (BIOS_RVY) (Fixed) (Total:18.55 GB) (Free:5.6 GB) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{82ab7a46-5832-11e0-a502-806e6f6e6963}\ (System) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: D05F3ADF)
Partition 1: (Not Active) - (Size=18.6 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=447.1 GB) - (Type=0F Extended)

==================== End of Addition.txt =======================

Re: preventivna kontrola

Napsal: 03 črc 2020 16:19
od Rudy
Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Re: preventivna kontrola

Napsal: 03 črc 2020 17:07
od ahola
# -------------------------------
# Malwarebytes AdwCleaner 8.0.6.0
# -------------------------------
# Build: 06-24-2020
# Database: 2020-06-15.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 07-03-2020
# Duration: 00:02:06
# OS: Windows 7 Home Premium
# Scanned: 31836
# Detected: 2


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

PUP.Optional.Banggood HKCU\Software\Microsoft\Internet Explorer\DOMStorage\banggood.com
PUP.Optional.Banggood HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.banggood.com

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########

Re: preventivna kontrola

Napsal: 03 črc 2020 17:52
od Rudy
Dejte nové logy FRST+Addition.

Re: preventivna kontrola

Napsal: 04 črc 2020 08:33
od ahola
==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Kernel and Hardware Abstraction Layer] => C:\windows\KHALMNPR.EXE [134160 2007-11-29] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SAIICpl.exe [316032 2010-12-14] (Conexant Systems, Inc. -> Conexant systems, Inc.)
HKLM\...\Run: [fspuip] => C:\Program Files\FSP\fspuip.exe [4055552 2010-11-08] (Microsoft Windows Hardware Compatibility Publisher -> Sentelic Corporation)
HKLM\...\Run: [AmIcoSinglun64] => c:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [374784 2013-04-19] (Alcor Micro Corp.) [File not signed]
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-04-24] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [109160 2020-07-03] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [NUSB3MON] => c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-04-27] (Renesas Electronics Corporation -> Renesas Electronics Corporation)
HKLM-x32\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [374784 2013-04-19] (Alcor Micro Corp.) [File not signed]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\Run: [Google Update] => C:\Users\Michal\AppData\Local\Google\Update\1.3.35.452\GoogleUpdateCore.exe [217544 2020-03-21] (Google LLC -> Google LLC)
HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\Run: [ShowBatteryBar] => C:\Program Files\BatteryBar\ShowBatteryBar.exe [89600 2014-09-19] () [File not signed]
HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\Run: [MiPhoneManager] => C:\Users\Michal\AppData\Local\MiPhoneManager\main\MiPhoneHelper.exe [157624 2016-03-11] (Xiaomi Technology Inc -> )
HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91683688 2020-06-09] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [28990136 2020-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1554982330-1077266817-2899125201-1006\...\Run: [ROC_JAN2013_TB] => "C:\Program Files (x86)\AVG Secure Search\ROC_JAN2013_TB.exe" /PROMPT /CMPID=JAN2013_TB
HKU\S-1-5-21-1554982330-1077266817-2899125201-1006\...\Run: [AVG-Secure-Search-Update_JUNE2013_TB] => "C:\Program Files (x86)\AVG Secure Search\AVG-Secure-Search-Update_JUNE2013_TB.exe" /PROMPT /CMPID=JUNE2013_TB
HKU\S-1-5-21-1554982330-1077266817-2899125201-1006\...\Run: [AVG-Secure-Search-Update_JUNE2013_HP] => "C:\Program Files (x86)\AVG Secure Search\AVG-Secure-Search-Update_JUNE2013_HP.exe" /PROMPT /CMPID=JUNE2013_HP
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [99840 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\HP B011 Status Monitor: C:\windows\system32\hpinkstsB011LM.dll [331664 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 3520 series): C:\windows\system32\HPDiscoPMB011.dll [741480 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\LIDIL hpzlllhn: C:\windows\system32\hpzlllhn.dll [48640 2008-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\...\Print\Monitors\PDF-XChange Lite Port Monitor: C:\windows\system32\pxcpmL.dll [2164480 2018-07-25] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\windows\system32\cmd.exe /D /C start C:\windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2020-05-04] (Adobe Inc. -> Adobe Systems, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Winsock: Catalog5-x64 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0A1BC192-E1C2-488C-8FDE-F180505762A4}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{D367C479-1275-46AB-A05D-6C077D262AD3}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://fr.msn.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=i ... ar=msnhome
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://user.centrum.sk/
HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=i ... ar=msnhome
DownloadDir: C:\Users\Michal\Desktop
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1554982330-1077266817-2899125201-1006 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-28] (Google Inc -> Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\ssv.dll [2020-04-22] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Pomocník pri prihlasovaní v konte Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc -> Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\jp2ssv.dll [2020-04-22] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-28] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc -> Google Inc.)
Toolbar: HKU\.DEFAULT -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-28] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-28] (Google Inc -> Google Inc.)
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - No File
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File

Edge:
======
Edge Profile: C:\Users\Michal\AppData\Local\Microsoft\Edge\User Data\Default [2020-06-17]
Edge HomePage: Default -> hxxp://centrum.sk/

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_32_0_0_387.dll [2020-06-09] (Adobe Inc. -> )
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50709.0\npctrl.dll [2016-07-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2018-07-25] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2018-07-25] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2018-07-25] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_387.dll [2020-06-09] (Adobe Inc. -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-04-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-04-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50709.0\npctrl.dll [2016-07-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-09-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2018-07-25] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2018-07-25] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2018-07-25] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @veetle.com/veetleCorePlugin,version=0.9.18 -> C:\Program Files (x86)\Veetle\plugins\npVeetle.dll [2011-07-28] (Veetle Inc. -> Veetle Inc)
FF Plugin-x32: @veetle.com/veetlePlayerPlugin,version=0.9.18 -> C:\Program Files (x86)\Veetle\Player\npvlc.dll [2010-09-21] (Veetle Inc. -> Veetle Inc)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1554982330-1077266817-2899125201-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2018-07-25] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-1554982330-1077266817-2899125201-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2018-07-25] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-1554982330-1077266817-2899125201-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2018-07-25] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default [2020-07-03]
CHR Extension: (Prezentácie) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-03-01]
CHR Extension: (Dokumenty) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-03-01]
CHR Extension: (Disk Google) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-03-01]
CHR Extension: (YouTube) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-03-01]
CHR Extension: (Tabuľky) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-03-01]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-05-20]
CHR Extension: (HBO GO Quality Enforcer) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmjfcgbpnigcngkjgfjmaameebdhhab [2020-04-01]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-29]
CHR Extension: (Chrome Media Router) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-28]
StartMenuInternet: Google Chrome - C:\Users\Michal\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-09] (Adobe Inc. -> Adobe)
R2 ASLDRService; C:\Program Files (x86)\PHotkey\ASLDRSrv.exe [104968 2010-12-10] (PEGATRON CORPORATION -> )
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [6514072 2020-07-03] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [356824 2020-07-03] (Avast Software s.r.o. -> AVAST Software)
S3 BITCOMET_HELPER_SERVICE; C:\Program Files\BitComet\tools\BitCometService.exe [1296728 2013-11-29] (Shanghai Comet Network Technology -> www.BitComet.com)
S3 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\84.0.4147.39\remoting_host.exe [73200 2020-06-08] (Google LLC -> Spoločnosť Google Inc.)
R2 GFNEXSrv; C:\Program Files (x86)\PHotkey\GFNEXSrv.exe [159752 2010-12-10] (PEGATRON CORPORATION -> )
R2 nlsX86cc; C:\windows\SysWOW64\NLSSRV32.EXE [69640 2012-08-28] (Nitro PDF Software -> Nalpeiron Ltd.)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [267824 2007-05-04] (Nero AG -> Nero AG)
R2 postgresql-8.4; C:\Program Files (x86)\PostgreSQL\8.4\bin\pg_ctl.exe [66048 2009-12-10] (PostgreSQL Global Development Group) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2286976 2010-09-21] (Microsoft Corporation -> Microsoft Corp.)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 androidusb; C:\windows\System32\Drivers\wsadb.sys [40808 2014-06-01] (Shenzhen Wondershare Information Technology Co., Ltd. -> Google Inc)
R0 aswArDisk; C:\windows\System32\drivers\aswArDisk.sys [37136 2020-07-03] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\windows\System32\drivers\aswArPot.sys [205880 2020-07-03] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\windows\System32\drivers\aswbidsdriver.sys [235584 2020-07-03] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\windows\System32\drivers\aswbidsh.sys [195648 2020-07-03] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\windows\System32\drivers\aswbuniv.sys [60480 2020-07-03] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\windows\System32\drivers\aswKbd.sys [42768 2020-07-03] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\windows\System32\drivers\aswMonFlt.sys [175192 2020-07-03] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\windows\System32\drivers\aswNetHub.sys [514448 2020-07-03] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\windows\System32\DRIVERS\aswNetNd6.sys [38152 2020-07-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\windows\System32\drivers\aswRdr2.sys [109272 2020-07-03] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\windows\System32\drivers\aswRvrt.sys [84848 2020-07-03] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\windows\System32\drivers\aswSnx.sys [851600 2020-07-03] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\windows\System32\drivers\aswSP.sys [466232 2020-07-03] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\windows\System32\drivers\aswStm.sys [216816 2020-07-03] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\windows\System32\drivers\aswVmm.sys [323272 2020-07-03] (Avast Software s.r.o. -> AVAST Software)
R1 avgtp; C:\windows\system32\drivers\avgtpx64.sys [50464 2014-04-27] (AVG Technologies -> AVG Technologies)
S3 dg_ssudbus; C:\windows\System32\DRIVERS\ssudbus.sys [103064 2013-04-03] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 dtlitescsibus; C:\windows\System32\DRIVERS\dtlitescsibus.sys [30264 2018-06-22] (Disc Soft Ltd -> Disc Soft Ltd)
S3 dtliteusbbus; C:\windows\System32\DRIVERS\dtliteusbbus.sys [47672 2018-06-22] (Disc Soft Ltd -> Disc Soft Ltd)
S3 FARMNTIO; c:\windows\system32\drivers\farmntio.sys [24152 2010-06-03] (Farstone Technology Inc -> )
R3 fspad_wlh64; C:\windows\System32\DRIVERS\fspad_wlh64.sys [68608 2010-11-08] (Microsoft Windows Hardware Compatibility Publisher -> Sentelic Corporation)
R0 iaStorF; C:\windows\System32\DRIVERS\iaStorF.sys [28008 2014-04-24] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
S3 nmwcd; C:\windows\System32\drivers\ccdcmbx64.sys [19968 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 nmwcdc; C:\windows\System32\drivers\ccdcmbox64.sys [27136 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R3 nusb3hub; C:\windows\System32\DRIVERS\nusb3hub.sys [78848 2010-07-27] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
R3 nusb3xhc; C:\windows\System32\DRIVERS\nusb3xhc.sys [180224 2010-07-27] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 pccsmcfd; C:\windows\System32\DRIVERS\pccsmcfdx64.sys [26112 2012-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
R2 PEGAGFN; C:\Program Files (x86)\PHotkey\PEGAGFN.sys [14344 2010-12-10] (PEGATRON CORPORATION -> PEGATRON)
R0 sptd; C:\windows\System32\Drivers\sptd.sys [394296 2018-12-20] (Disc Soft Ltd -> Duplex Secure Ltd.)
S3 ssudmdm; C:\windows\System32\DRIVERS\ssudmdm.sys [203672 2013-04-03] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudserd; C:\windows\System32\DRIVERS\ssudserd.sys [203672 2013-04-03] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.(www.devguru.co.kr))
S1 staport; C:\Windows\System32\Drivers\staport.sys [44568 2020-07-03] (AVAST Software s.r.o. -> )
S3 upperdev; C:\windows\System32\DRIVERS\usbser_lowerfltx64.sys [9216 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 UsbserFilt; C:\windows\System32\DRIVERS\usbser_lowerfltjx64.sys [9216 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 ALSysIO; \??\C:\Users\Michal\AppData\Local\Temp\ALSysIO64.sys [X] <==== ATTENTION
U1 aswbdisk; no ImagePath
S3 DUMeterDrv; \??\C:\Program Files (x86)\DU Meter\DUMETR64.SYS [X]
S3 MGHwCtrl; \??\c:\Utility\Silent\MGHwCtrl.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-07-04 09:23 - 2020-07-04 09:23 - 000024009 _____ C:\Users\Michal\Desktop\FRST.txt
2020-07-04 09:01 - 2020-07-04 09:18 - 000000000 ____D C:\FRST
2020-07-04 09:01 - 2020-07-04 09:01 - 002291712 _____ (Farbar) C:\Users\Michal\Desktop\FRST64.exe
2020-07-03 23:18 - 2020-07-04 00:01 - 468918810 _____ C:\Users\Michal\Desktop\Hříšnice-Hříšná duše-The Sinner-S01E02-CZ.avi
2020-07-03 22:43 - 2020-07-03 23:17 - 602324706 _____ C:\Users\Michal\Desktop\Hříšnice-Hříšná duše-The Sinner-S01E01-CZ.avi
2020-07-03 17:57 - 2020-07-03 17:57 - 000003098 _____ C:\windows\system32\Tasks\AdwCleaner_onReboot
2020-07-03 10:37 - 2020-04-02 01:49 - 000744808 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe
2020-07-03 10:32 - 2020-07-03 10:32 - 000002049 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2020-07-03 10:32 - 2020-07-03 10:32 - 000002049 _____ C:\ProgramData\Desktop\Avast Free Antivirus.lnk
2020-07-03 10:32 - 2020-07-03 10:32 - 000000000 ____D C:\Users\Michal\AppData\Roaming\Avast Software
2020-07-03 10:32 - 2020-07-03 10:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2020-07-03 10:27 - 2020-07-03 18:02 - 000004168 _____ C:\windows\system32\Tasks\Avast Emergency Update
2020-07-03 10:27 - 2020-07-03 10:27 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2020-07-03 10:27 - 2020-07-03 10:26 - 000851600 _____ (AVAST Software) C:\windows\system32\Drivers\aswSnx.sys
2020-07-03 10:27 - 2020-07-03 10:26 - 000514448 _____ (AVAST Software) C:\windows\system32\Drivers\aswNetHub.sys
2020-07-03 10:27 - 2020-07-03 10:26 - 000466232 _____ (AVAST Software) C:\windows\system32\Drivers\aswSP.sys
2020-07-03 10:27 - 2020-07-03 10:26 - 000335976 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2020-07-03 10:27 - 2020-07-03 10:26 - 000323272 _____ (AVAST Software) C:\windows\system32\Drivers\aswVmm.sys
2020-07-03 10:27 - 2020-07-03 10:26 - 000235584 _____ (AVAST Software) C:\windows\system32\Drivers\aswbidsdriver.sys
2020-07-03 10:27 - 2020-07-03 10:26 - 000216816 _____ (AVAST Software) C:\windows\system32\Drivers\aswStm.sys
2020-07-03 10:27 - 2020-07-03 10:26 - 000205880 _____ (AVAST Software) C:\windows\system32\Drivers\aswArPot.sys
2020-07-03 10:27 - 2020-07-03 10:26 - 000195648 _____ (AVAST Software) C:\windows\system32\Drivers\aswbidsh.sys
2020-07-03 10:27 - 2020-07-03 10:26 - 000175192 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2020-07-03 10:27 - 2020-07-03 10:26 - 000109272 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr2.sys
2020-07-03 10:27 - 2020-07-03 10:26 - 000084848 _____ (AVAST Software) C:\windows\system32\Drivers\aswRvrt.sys
2020-07-03 10:27 - 2020-07-03 10:26 - 000060480 _____ (AVAST Software) C:\windows\system32\Drivers\aswbuniv.sys
2020-07-03 10:27 - 2020-07-03 10:26 - 000042768 _____ (AVAST Software) C:\windows\system32\Drivers\aswKbd.sys
2020-07-03 10:27 - 2020-07-03 10:26 - 000037136 _____ (AVAST Software) C:\windows\system32\Drivers\aswArDisk.sys
2020-07-03 10:26 - 2020-07-03 10:26 - 000038152 _____ (AVAST Software) C:\windows\system32\Drivers\aswNetNd6.sys
2020-07-03 10:21 - 2020-07-03 10:21 - 000000000 ____D C:\Program Files\Avast Software
2020-07-03 10:20 - 2020-07-03 17:57 - 000000000 ____D C:\ProgramData\Avast Software
2020-06-24 23:31 - 2020-06-24 23:32 - 000280296 _____ C:\windows\Minidump\062420-24679-01.dmp
2020-06-17 19:38 - 2020-06-17 19:39 - 000000000 ____D C:\Users\Michal\Desktop\Marcella
2020-06-16 20:42 - 2020-06-16 20:42 - 000192067 _____ C:\Users\Michal\Desktop\Zoznam zakázaných webových sídiel k 25.05.2020.pdf
2020-06-16 11:11 - 2020-07-03 10:27 - 000044568 _____ () C:\windows\system32\Drivers\staport.sys
2020-06-12 12:51 - 2020-06-13 00:54 - 000000000 ____D C:\Users\Michal\AppData\Roaming\SimpleNash
2020-06-12 12:51 - 2020-06-12 12:51 - 000001005 _____ C:\Users\Public\Desktop\SimpleNash.lnk
2020-06-12 12:51 - 2020-06-12 12:51 - 000001005 _____ C:\ProgramData\Desktop\SimpleNash.lnk
2020-06-12 12:51 - 2020-06-12 12:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SimpleNash
2020-06-12 12:51 - 2020-06-12 12:51 - 000000000 ____D C:\Program Files (x86)\SimpleNash

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-07-04 08:39 - 2009-07-14 06:45 - 000009920 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-07-04 08:39 - 2009-07-14 06:45 - 000009920 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-07-04 08:29 - 2011-03-27 08:35 - 000000000 ____D C:\windows\SysWOW64\Macromed
2020-07-04 08:28 - 2009-07-14 07:08 - 000000006 ____H C:\windows\Tasks\SA.DAT
2020-07-04 00:15 - 2017-05-06 21:08 - 136833295 _____ C:\blitzerr.txt
2020-07-03 15:18 - 2011-07-27 23:38 - 000000000 ____D C:\Program Files (x86)\GomPlayer
2020-07-03 15:06 - 2011-07-27 16:15 - 000000000 ____D C:\Program Files (x86)\IrfanView
2020-07-03 10:46 - 2015-12-15 12:39 - 000000000 ____D C:\Users\Michal\AppData\Roaming\AVG
2020-07-03 10:46 - 2015-12-15 12:26 - 000000000 ____D C:\ProgramData\Avg
2020-07-03 10:46 - 2015-07-31 10:13 - 000000000 ____D C:\Users\Michal\AppData\Local\Avg
2020-07-03 10:46 - 2011-09-25 10:32 - 000000000 ____D C:\Program Files (x86)\AVG
2020-07-03 10:28 - 2018-09-01 13:47 - 000000000 ____D C:\windows\system32\Tasks\AVAST Software
2020-07-03 10:28 - 2009-07-14 05:20 - 000000000 ____D C:\windows\inf
2020-07-03 10:16 - 2017-11-13 11:47 - 000003870 _____ C:\windows\system32\Tasks\CCleaner Update
2020-07-03 10:15 - 2019-02-11 12:01 - 000000792 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-07-03 10:15 - 2019-02-11 12:01 - 000000792 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-07-03 10:01 - 2014-01-28 17:34 - 000029431 _____ C:\Users\Michal\Desktop\ppm hadzana.xlsx
2020-07-02 15:12 - 2020-05-14 13:32 - 000004436 _____ C:\windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-07-02 15:12 - 2020-01-31 00:05 - 000003476 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-07-02 15:12 - 2020-01-31 00:05 - 000003348 _____ C:\windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-07-02 15:12 - 2018-08-09 23:51 - 000004324 _____ C:\windows\system32\Tasks\Adobe Flash Player Updater
2020-07-02 15:12 - 2017-12-14 11:25 - 000003756 _____ C:\windows\system32\Tasks\AutoKMS
2020-07-02 15:12 - 2014-12-26 21:45 - 000004476 _____ C:\windows\system32\Tasks\Adobe Acrobat Update Task
2020-07-02 15:12 - 2014-08-15 09:53 - 000003068 _____ C:\windows\system32\Tasks\{C085E23B-0534-45AA-A839-250FBD5C15C6}
2020-07-02 15:12 - 2014-05-09 22:37 - 000002774 _____ C:\windows\system32\Tasks\CCleanerSkipUAC
2020-07-02 15:12 - 2011-12-29 20:30 - 000003294 _____ C:\windows\system32\Tasks\{C9E031BF-BFB3-48FD-8122-25DEC7871821}
2020-07-02 15:12 - 2011-08-21 10:39 - 000003288 _____ C:\windows\system32\Tasks\{29EEF94A-F174-4BB2-A3ED-C7E6F176827B}
2020-07-02 15:12 - 2011-07-28 11:47 - 000003552 _____ C:\windows\system32\Tasks\CreateChoiceProcessTask
2020-07-02 15:12 - 2011-07-26 22:57 - 000003552 _____ C:\windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-1554982330-1077266817-2899125201-1001UA
2020-07-02 15:12 - 2011-07-26 22:57 - 000003280 _____ C:\windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-1554982330-1077266817-2899125201-1001Core
2020-07-02 15:12 - 2011-07-26 22:54 - 000003372 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-07-02 15:12 - 2011-07-26 22:54 - 000003244 _____ C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-07-02 15:12 - 2011-07-26 18:35 - 000002878 _____ C:\windows\system32\Tasks\{43942417-3446-4888-8CAD-70D0F5BEDA16}
2020-07-01 20:12 - 2020-01-31 00:08 - 000002199 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-06-28 06:56 - 2009-07-14 07:08 - 000032546 _____ C:\windows\Tasks\SCHEDLGU.TXT
2020-06-26 23:39 - 2011-07-28 21:19 - 000000000 ____D C:\Users\Michal\AppData\Local\PokerStars.EU
2020-06-24 23:45 - 2016-08-03 10:32 - 000000000 ____D C:\windows\Minidump
2020-06-24 06:49 - 2011-07-29 10:46 - 000000000 ____D C:\Users\postgres
2020-06-23 18:25 - 2011-07-26 22:59 - 000002457 _____ C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-06-21 20:23 - 2011-07-27 15:53 - 000000000 ____D C:\Users\Michal\AppData\Roaming\BitComet
2020-06-19 07:32 - 2011-07-26 22:54 - 000000000 ____D C:\Program Files (x86)\Google
2020-06-16 10:51 - 2018-08-03 13:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2020-06-15 19:31 - 2011-08-01 17:41 - 000000000 ____D C:\Users\Michal\AppData\Local\ElevatedDiagnostics
2020-06-14 21:56 - 2019-03-01 20:41 - 000000000 ____D C:\Users\Michal\AppData\Local\CrashDumps
2020-06-13 00:07 - 2011-07-27 18:22 - 000000000 ____D C:\Users\Michal\Desktop\Filmy stiahnuť
2020-06-10 22:05 - 2014-05-04 11:41 - 000000000 ____D C:\Users\Michal\AppData\Local\Equilab
2020-06-09 19:28 - 2012-03-30 11:57 - 000842296 _____ (Adobe) C:\windows\SysWOW64\FlashPlayerApp.exe
2020-06-09 19:28 - 2011-07-28 23:14 - 000175160 _____ (Adobe) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-06-09 19:27 - 2011-11-11 20:32 - 000000000 ____D C:\windows\system32\Macromed

==================== Files in the root of some directories ========

2011-07-29 10:02 - 2011-07-29 10:07 - 000000173 _____ () C:\Users\Michal\AppData\Local\msmathematics.qat.Michal
2016-08-05 17:54 - 2016-08-05 17:54 - 000007625 _____ () C:\Users\Michal\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2020-06-26 15:26
==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-06-2020
Ran by Michal (04-07-2020 09:25:08)
Running from C:\Users\Michal\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2011-07-26 14:29:21)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1554982330-1077266817-2899125201-500 - Administrator - Disabled)
Guest (S-1-5-21-1554982330-1077266817-2899125201-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1554982330-1077266817-2899125201-1003 - Limited - Enabled)
Michal (S-1-5-21-1554982330-1077266817-2899125201-1001 - Administrator - Enabled) => C:\Users\Michal
postgres (S-1-5-21-1554982330-1077266817-2899125201-1006 - Limited - Enabled) => C:\Users\postgres
UpdatusUser (S-1-5-21-1554982330-1077266817-2899125201-1000 - Limited - Enabled) => C:\Users\TEMP.Michal-MSICX640.004

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Disabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 20.009.20067 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 18.0.0.144 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.387 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.387 - Adobe)
Alcor Micro USB Card Reader (HKLM-x32\...\{48106FE4-B1AF-4941-BF3D-83E6C4B7CAF3}) (Version: 1.8.1217.36096 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader (HKLM-x32\...\{C90340A9-F592-4164-9480-FCE488C4BFF6}) (Version: 4.7.1245.73473 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 4.7.1245.73473 - Alcor Micro Corp.)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.36 - Atheros Communications Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.5.2415 - Avast Software)
BatteryBar (remove only) (HKLM\...\BatteryBar) (Version: - )
BitComet 1.66 (HKLM-x32\...\BitComet_x64) (Version: 1.66 - CometNetwork)
BurnRecovery (HKLM-x32\...\{2892E1B7-E24D-4CCB-B8A7-B63D4B66F89F}) (Version: 3.0.1007.2702 - Micro-Star International Co., Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 5.68 - Piriform)
CDDRV_Installer (HKLM\...\{0C826C5B-B131-423A-A229-C71B3CACCD6A}) (Version: 4.24.15 - Logitech) Hidden
CDex - Open Source Digital Audio CD Extractor (HKLM-x32\...\CDex) (Version: 1.70.4.2009 - Georgy Berdyshev)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.54.0.0 - Conexant)
Czech Soccer Manager (HKLM-x32\...\Czech Soccer Manager) (Version: - )
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
D-Fend Reloaded 1.2.1 (Odinstalovat) (HKLM-x32\...\D-Fend Reloaded) (Version: 1.2.1 - Alexander Herzog)
Doplnok programu Messenger (HKLM-x32\...\{6D2F0A26-ECEA-49CE-833C-9A6125F3D5E8}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
EasyFace2 (HKLM-x32\...\{94DE7548-E449-4F7D-804F-0C5CDC3A1E6A}) (Version: 2.0.0.14 - Micro-Star International CO.,Ltd.)
EasyViewer (HKLM-x32\...\{EECD7B96-1416-4D3A-B12D-0D2512120C36}) (Version: 1.3.0.8 - MSI) Hidden
EasyViewer (HKLM-x32\...\InstallShield_{EECD7B96-1416-4D3A-B12D-0D2512120C36}) (Version: 1.3.0.8 - MSI)
eDANE-Java – aplikácia sekcie daňovej FR SR pre podávanie daňových dokumentov (HKU\.DEFAULT\...\eDANE-Java – aplikácia sekcie daňovej FR SR pre podávanie daňových dokumentov) (Version: - Finančné riaditeľstvo SR)
erLT (HKLM-x32\...\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}) (Version: 0.72.105 - Logitech, Inc.) Hidden
Finger Sensing Pad Driver (HKLM\...\{E86906FF-C63D-4EAF-ACE7-5F8D55FBEA9A}) (Version: 8.8.0.9 - Sentelic)
Floorball League 1.0 (HKLM-x32\...\Floorball League_is1) (Version: - Prodigium Game Studios)
FormatFactory 4.8.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.8.0.0 - Free Time)
FotoMix version 8.7.3 (HKLM-x32\...\{10A0255E-0B73-4397-AB4E-E3667EDA70E4}_is1) (Version: 8.7.3 - Digital Photo Software)
GOM Player (HKLM-x32\...\GOM Player) (Version: 2.3.54.5318 - GOM & Company)
Google Chrome (HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\Google Chrome) (Version: 83.0.4103.116 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Holdem Manager (HKLM\...\HoldemManager) (Version: - )
HP Deskjet 3520 series Basic Device Software (HKLM\...\{A0A03B53-927D-4454-A456-CB0A72A4912F}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Deskjet 3520 series Setup Guide (HKLM-x32\...\{AEEDCEB7-00B8-4BE1-B492-AB04803D5F1E}) (Version: 27.0.0 - Hewlett Packard)
Chrome Remote Desktop Host (HKLM-x32\...\{FEA4124F-FABE-440B-BA03-489722A59439}) (Version: 84.0.4147.39 - Google Inc.)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1118 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.4.1000 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
IrfanView 4.54 (32-bit) (HKLM-x32\...\IrfanView) (Version: 4.54 - Irfan Skiljan)
Java 8 Update 251 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180251F0}) (Version: 8.0.2510.8 - Oracle Corporation)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
KhalInstallWrapper (HKLM\...\{F3F18612-7B5D-4C05-86C9-AB50F6F71727}) (Version: 4.40.88 - Logitech) Hidden
Logitech SetPoint (HKLM-x32\...\{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}) (Version: 4.4 - Logitech)
Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Mi PC Suite (HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\MiPhoneManager) (Version: - Xiaomi Inc.)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 83.0.478.58 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.129.31 - )
Microsoft Mathematics (HKLM-x32\...\{4D090F70-6F08-4B60-9357-A1DFD4458F09}) (Version: 4.0 - Microsoft Corporation)
Microsoft Office Language Pack 2013 - Slovak/Slovenčina (HKLM\...\Office15.OMUI.sk-sk) (Version: 15.0.4454.1509 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50709.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
MSI Remind Manager (HKLM-x32\...\{89F17DC5-A776-4DF4-8CD1-FAEF29BCE51A}) (Version: 1.11.0104 - MSI)
MSVC80_x64_v2 (HKLM\...\{4D668D4F-FAA2-4726-834C-31F4614F312E}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (HKLM-x32\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština (HKLM\...\{90150000-001F-0405-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2013 - slovenčina (HKLM\...\{90150000-001F-041B-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Nero 7 Essentials (HKLM-x32\...\{F61DD673-0030-4BB2-A382-7E57E97F1051}) (Version: 7.02.8078 - Nero AG)
Nokia Connectivity Cable Driver (HKLM-x32\...\{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia)
NVIDIA Graphics Driver 266.39 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 266.39 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice.org 3.2 (HKLM-x32\...\{28B94253-5729-4C30-8DE4-F2A0A63149B0}) (Version: 3.2.9505 - OpenOffice.org)
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Ovládací prvok ActiveX programu Windows Live Mesh pre vzdialené pripojenia (HKLM-x32\...\{C2FD7DB5-FE30-49B6-8A2F-C5652E053C31}) (Version: 15.4.5722.2 - Microsoft Corporation)
PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
PC Sound (HKLM\...\{F3C66EC8-2F33-452D-9CFF-E8C886B3ECC4}) (Version: 1.11.0200 - SRS Labs, Inc.)
PDF-XChange Editor (HKLM\...\{F035709A-033D-480D-A75C-38F89A7309FC}) (Version: 7.0.326.1 - Tracker Software Products (Canada) Ltd.)
PHotkey (HKLM-x32\...\{24047BE4-329D-46F7-9689-8684C7A1CFBB}) (Version: 1.00.0005 - )
PokerStars.eu (HKLM-x32\...\PokerStars.eu) (Version: - PokerStars.eu)
PokerStrategy.com Equilab - Omaha (HKLM-x32\...\{38B746B5-44EE-4FFA-B987-581B5CF4A097}) (Version: 1.1.4.0 - PokerStrategy.com)
PokerStrategy.com Equilab (HKLM-x32\...\{86D09F48-CDAB-4B4C-8806-F6C16F17935A}) (Version: 1.2.8.0 - PokerStrategy.com)
PostgreSQL 8.4 (HKLM-x32\...\PostgreSQL 8.4) (Version: 8.4 - PostgreSQL Global Development Group)
Quadrax III 2005 (HKLM-x32\...\Quadrax III_is1) (Version: - )
Quadrax IV (HKLM-x32\...\{43C69A09-CA51-4ABD-9803-0FBD2F546125}_is1) (Version: 2.0 - Alfaline)
Quadrax Neverending (HKLM-x32\...\{7B7A31E7-C12C-4B4B-A7FE-FA5E52D0E6CF}_is1) (Version: 012 - Alfaline)
Quadrax V (HKLM-x32\...\{03602767-5C44-4A31-A545-E819783A1D42}_is1) (Version: 1.4 - Alfaline)
Quadrax VI (HKLM-x32\...\{E0348E64-A89C-4D06-A3C0-2CB16F591FA0}_is1) (Version: 1.2 - Alfaline)
Quadrax VII (HKLM-x32\...\{0B041BB5-E35E-48DD-B400-8AAFF1EA7350}_is1) (Version: 1.0 - Alfaline)
Quadrax VIII (HKLM-x32\...\{D01E6B12-1DCD-44BA-86EB-4D8E0AD54CA0}_is1) (Version: 1.0 - Alfaline)
Quadrax X 1.3 (HKLM-x32\...\{EB2C8EDE-C731-4D55-993C-06F1683457CC}_is1) (Version: 1.3 - Alfaline)
Qualcomm Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 - Qualcomm Atheros)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.20.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.20.0 - Renesas Electronics Corporation)
Samsung Kies (HKLM-x32\...\{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.5.2.13021_10 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.5.2.13021_10 - Samsung Electronics Co., Ltd.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.23.0 - SAMSUNG Electronics Co., Ltd.)
SimpleNash version 1.20 (HKLM-x32\...\{3657CBB1-6555-4708-A3F1-8BBE85413465}_is1) (Version: 1.20 - )
Skype verzia 8.61 (HKLM-x32\...\Skype_is1) (Version: 8.61 - Skype Technologies S.A.)
Splashtop Streamer (HKLM-x32\...\{B7C5EA94-B96A-41F5-BE95-25D78B486678}) (Version: 2.5.5.4 - Splashtop Inc.)
Veetle TV (HKLM-x32\...\Veetle TV) (Version: 0.9.18 - Veetle, Inc)
Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Winamax (HKLM-x32\...\Winamax 3.10.0) (Version: 3.10.0 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.0.0) (Version: 4.0.0 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.1.1) (Version: 4.1.1 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.10.0) (Version: 4.10.0 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.10.1) (Version: 4.10.1 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.2.0) (Version: 4.2.0 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.2.1) (Version: 4.2.1 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.2.2) (Version: 4.2.2 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.2.3) (Version: 4.2.3 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.4.0) (Version: 4.4.0 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.4.1) (Version: 4.4.1 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.4.2) (Version: 4.4.2 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.5.0) (Version: 4.5.0 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.6.1) (Version: 4.6.1 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.6.2) (Version: 4.6.2 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.6.3) (Version: 4.6.3 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.7.0) (Version: 4.7.0 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.7.1) (Version: 4.7.1 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.7.2) (Version: 4.7.2 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.7.3) (Version: 4.7.3 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.8.0) (Version: 4.8.0 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.8.1) (Version: 4.8.1 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.8.3) (Version: 4.8.3 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.9.1) (Version: 4.9.1 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.9.2) (Version: 4.9.2 - Winamax)
Winamax (HKLM-x32\...\Winamax 4.9.3) (Version: 4.9.3 - Winamax)
Winamax Installer (HKLM-x32\...\Winamax Installer 2.0) (Version: 2.0 - Winamax)
Winamp (HKLM-x32\...\Winamp) (Version: 5.62 - Nullsoft, Inc)
Winamp Detector Plug-in (HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Driver Package - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.)
Windows Driver Package - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{28456131-01CD-4BE4-8D67-BDBDD1ED636A}) (Version: 14.0.8117.416 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{B39AA98E-C966-46C9-ACA2-D2586E300988}) (Version: 2.29.0.3 - )
WinRAR 5.40 (64-bitová verzia) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
XW204E (HKLM-x32\...\{5BFF7DE6-C3F0-40F8-AC32-75D628E46C6B}) (Version: 1.00.0000 - XAVi)
yBook2 (HKLM-x32\...\yBook2_is1) (Version: - Spacejock Software)
Zip Motion Block Video codec (Remove Only) (HKLM-x32\...\ZMBV) (Version: - DOSBox Team)
Zoner Photo Studio 12 (HKLM-x32\...\ZonerPhotoStudio12_CZ_is1) (Version: 12.0.1.9 - ZONER software)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001_Classes\CLSID\{9DA854A0-1FDB-C407-56FC-F7DC2DDF3BAB}\InprocServer32 -> C:\windows\system32\ole32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001_Classes\CLSID\{A2C6CB58-C076-425C-ACB7-6D19D64428CD}\localserver32 -> C:\Users\Michal\AppData\Local\Google\Chrome\Application\83.0.4103.116\notification_helper.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001_Classes\CLSID\{BCAFD618-3FAE-4EFE-BF4E-4C43A7E1320B}\InprocServer32 -> C:\Program Files (x86)\Zoner\Photo Studio 12\Program\SHELLEXT64.DLL (ZONER software, a.s. -> ZONER software)
CustomCLSID: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.35.452\psuser_64.dll (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001_Classes\CLSID\{E9E7529D-7F09-410B-AF2A-CC154473B19C}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.35.452\psuser_64.dll (Google LLC -> Google LLC)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-07-03] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-07-03] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-07-03] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_106.dll [2019-07-02] (Free Time) [File not signed]
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => -> No File
ContextMenuHandlers1: [PDFXChange Editor Context menu] -> {2ACD35AB-F74A-4C20-AA9B-2DE80081626D} => C:\Program Files\Tracker Software\Shell Extensions\XCShellMenu.x64.dll [2018-07-25] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-07-03] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_106.dll [2019-07-02] (Free Time) [File not signed]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\windows\system32\igfxpph.dll [2015-05-26] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\windows\system32\nvshext.dll [2010-12-24] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-07-03] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-1554982330-1077266817-2899125201-1001: [ZONERMenu] -> {BCAFD618-3FAE-4EFE-BF4E-4C43A7E1320B} => C:\Program Files (x86)\Zoner\Photo Studio 12\Program\SHELLEXT64.DLL [2011-03-25] (ZONER software, a.s. -> ZONER software)
ContextMenuHandlers2_S-1-5-21-1554982330-1077266817-2899125201-1001: [ZONERMenu] -> {BCAFD618-3FAE-4EFE-BF4E-4C43A7E1320B} => C:\Program Files (x86)\Zoner\Photo Studio 12\Program\SHELLEXT64.DLL [2011-03-25] (ZONER software, a.s. -> ZONER software)
ContextMenuHandlers4_S-1-5-21-1554982330-1077266817-2899125201-1001: [ZONERMenu] -> {BCAFD618-3FAE-4EFE-BF4E-4C43A7E1320B} => C:\Program Files (x86)\Zoner\Photo Studio 12\Program\SHELLEXT64.DLL [2011-03-25] (ZONER software, a.s. -> ZONER software)
ContextMenuHandlers6_S-1-5-21-1554982330-1077266817-2899125201-1001: [ZONERMenu] -> {BCAFD618-3FAE-4EFE-BF4E-4C43A7E1320B} => C:\Program Files (x86)\Zoner\Photo Studio 12\Program\SHELLEXT64.DLL [2011-03-25] (ZONER software, a.s. -> ZONER software)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [msacm.divxa32] => C:\Windows\SysWOW64\msaud32_divx.acm [186368 2003-02-03] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [VIDC.ZMBV] => C:\Windows\SysWOW64\zmbv.dll [94208 2010-04-09] () [File not signed]

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2018-08-03 13:39 - 2020-06-09 15:53 - 001899520 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\ffmpeg.dll
2018-08-03 13:39 - 2020-06-09 15:53 - 000115712 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\libegl.dll
2018-08-03 13:39 - 2020-06-09 15:53 - 006668800 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\libglesv2.dll
2011-07-29 11:00 - 2009-12-10 13:28 - 000172032 _____ () [File not signed] C:\Program Files (x86)\PostgreSQL\8.4\bin\LIBPQ.dll
2011-07-29 11:00 - 2009-02-12 21:01 - 000976384 _____ () [File not signed] C:\Program Files (x86)\PostgreSQL\8.4\bin\libxml2.dll
2011-07-29 11:00 - 2005-07-20 12:48 - 000059904 _____ () [File not signed] C:\Program Files (x86)\PostgreSQL\8.4\bin\zlib1.dll
2011-03-27 07:34 - 2010-10-05 14:43 - 001892352 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\xerces-c_2_7.dll
2011-07-29 11:00 - 2006-05-03 22:57 - 000888832 _____ (Free Software Foundation) [File not signed] C:\Program Files (x86)\PostgreSQL\8.4\bin\iconv.dll
2011-07-29 11:00 - 2009-01-06 16:51 - 000968886 _____ (Free Software Foundation) [File not signed] C:\Program Files (x86)\PostgreSQL\8.4\bin\libiconv-2.dll
2011-07-29 11:00 - 2009-01-06 16:51 - 000083906 _____ (Free Software Foundation) [File not signed] C:\Program Files (x86)\PostgreSQL\8.4\bin\libintl-8.dll
2019-07-02 11:29 - 2019-07-02 11:29 - 000301568 _____ (Free Time) [File not signed] C:\Program Files (x86)\FormatFactory\ShellEx64_106.dll
2011-03-27 07:34 - 2010-10-05 14:38 - 000069632 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\StatusStrings.dll
2014-04-24 17:34 - 2014-04-24 17:34 - 000504320 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2014-04-24 17:34 - 2014-04-24 17:34 - 000286720 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
2011-07-26 17:49 - 2008-01-09 04:00 - 000013824 _____ (Logitech, Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\AdobeHookDll.dll
2011-07-26 17:49 - 2008-01-09 04:00 - 000014336 _____ (Logitech, Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\AOLHookDll.dll
2011-07-26 17:49 - 2008-01-09 04:00 - 000057344 _____ (Logitech, Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\GameHook.dll
2011-07-26 17:49 - 2008-01-09 04:00 - 000012288 _____ (Logitech, Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\HookDll.dll
2011-07-26 17:49 - 2008-01-09 04:00 - 000010752 _____ (Logitech, Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\IMHook.dll
2011-07-26 17:49 - 2008-01-09 04:00 - 000022528 _____ (Logitech, Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\KEMHook.dll
2011-07-26 17:49 - 2008-01-09 04:00 - 000069632 _____ (Logitech, Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\lgscroll.dll
2011-07-26 17:49 - 2008-01-09 04:00 - 000069632 _____ (Logitech, Inc.) [File not signed] C:\Program Files\Logitech\SetPoint\x86\MessengerHook.dll
2011-07-29 11:00 - 2009-04-13 14:23 - 000012288 _____ (Massachusetts Institute of Technology.) [File not signed] C:\Program Files (x86)\PostgreSQL\8.4\bin\comerr32.dll
2011-07-29 11:00 - 2009-04-13 14:23 - 000135168 _____ (Massachusetts Institute of Technology.) [File not signed] C:\Program Files (x86)\PostgreSQL\8.4\bin\gssapi32.dll
2011-07-29 11:00 - 2009-04-13 14:23 - 000019968 _____ (Massachusetts Institute of Technology.) [File not signed] C:\Program Files (x86)\PostgreSQL\8.4\bin\k5sprt32.dll
2011-07-29 11:00 - 2009-04-13 14:23 - 000634880 _____ (Massachusetts Institute of Technology.) [File not signed] C:\Program Files (x86)\PostgreSQL\8.4\bin\krb5_32.dll
2011-07-29 11:00 - 2008-04-08 16:13 - 000348160 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\PostgreSQL\8.4\bin\MSVCR71.dll
2011-07-28 11:15 - 2011-07-28 11:15 - 000113664 _____ (Microsoft Corporation) [File not signed] C:\windows\WinSxS\amd64_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8a1dd9552ed7f8d8\ATL80.DLL
2011-07-28 11:15 - 2011-07-28 11:15 - 001654784 _____ (Microsoft Corporation) [File not signed] C:\windows\WinSxS\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8448b2bd328df189\MFC80U.DLL
2011-07-28 11:25 - 2011-07-28 11:25 - 000225280 _____ (Microsoft Corporation) [File not signed] C:\windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll
2020-07-03 10:27 - 2020-07-03 10:27 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1051\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll
2020-07-03 10:27 - 2020-07-03 10:27 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1051\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll
2020-07-03 10:27 - 2020-07-03 10:27 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1051\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll
2020-07-03 10:27 - 2020-07-03 10:27 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1051\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll
2020-07-03 10:27 - 2020-07-03 10:27 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1051\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll
2020-07-03 10:27 - 2020-07-03 10:27 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1051\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll
2020-07-03 10:27 - 2020-07-03 10:27 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1051\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll
2020-07-03 10:27 - 2020-07-03 10:27 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1051\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll
2020-07-03 10:27 - 2020-07-03 10:27 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1051\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll
2020-07-03 10:27 - 2020-07-03 10:27 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1051\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll
2020-07-03 10:27 - 2020-07-03 10:27 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1051\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll
2020-07-03 10:27 - 2020-07-03 10:27 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1051\avast.local_vc142.crt\ucrtbase.DLL
2020-07-03 10:27 - 2020-07-03 10:27 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Avast Software\Avast\1051\avast.local_vc142.crt\VCRUNTIME140.dll
2011-07-29 11:00 - 2009-04-13 16:09 - 001032192 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\PostgreSQL\8.4\bin\LIBEAY32.dll
2011-07-29 11:00 - 2009-04-13 16:09 - 000212992 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\PostgreSQL\8.4\bin\SSLEAY32.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Windows:nlsPreferences [386]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\...\100sexlinks.com -> 100sexlinks.com

There are 4752 more sites.


==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2019-03-01 09:27 - 000000841 _____ C:\windows\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\PC Connectivity Solution\;C:\ProgramData\Oracle\Java\javapath;C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;C:\windows\system32;C:\windows;C:\windows\System32\Wbem;C:\windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Windows Live\Shared;C:\adb;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64
HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Michal\AppData\Roaming\Virtual Desktop Manager\PVDesktopWallpaper_0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\Services: ServiceLayer => 3
MSCONFIG\Services: SplashtopRemoteService => 2
MSCONFIG\Services: SSUService => 2
MSCONFIG\startupreg: BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} => "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
MSCONFIG\startupreg: KiesPreload => C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
MSCONFIG\startupreg: KiesTrayAgent => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
MSCONFIG\startupreg: KrosMeninyP => True
MSCONFIG\startupreg: WinampAgent => "C:\Program Files (x86)\Winamp\winampa.exe"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{64ECDB03-5553-4E1C-BC8C-7E6E7882510A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9CAF03F4-AD24-4B04-B6D9-7BD1B2323A69}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{27ED6732-13A2-40DA-AB5A-5F90C353421B}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{351AE17A-9CCE-48EA-8DF6-C92CB0DC7FBA}] => (Allow) C:\windows\system32\svchost.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{08FFF3A6-A503-4D2C-8DE0-BEDDACDD78E6}] => (Allow) C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{648B78CF-6758-4AEC-AE3B-61DE517C316B}] => (Allow) LPort=5432
FirewallRules: [{BB0C598B-A846-482B-A341-C056E8839726}] => (Allow) LPort=21261
FirewallRules: [{E0A25A22-93CE-4E88-A484-3428B89A4CF6}] => (Allow) LPort=21261
FirewallRules: [{A520D568-6146-4B4E-9A18-4A6F1CD4BFB9}] => (Allow) LPort=21261
FirewallRules: [{7B6FCEE1-6B19-4F09-B656-4E6713C87329}] => (Allow) LPort=21261
FirewallRules: [{A9AA73D5-5C78-4527-8415-5DA709FE7F18}] => (Allow) C:\Program Files (x86)\Veetle\Player\VeetleNet.exe (Veetle Inc. -> )
FirewallRules: [{E6EF6C77-B832-4357-B4B9-DF1F4267C069}] => (Allow) C:\Windows\SysWOW64\muzapp.exe (Musiccity Co.Ltd.) [File not signed]
FirewallRules: [{90D8ABE5-04B7-4853-8B5F-2F04F0904746}] => (Allow) C:\Windows\SysWOW64\muzapp.exe (Musiccity Co.Ltd.) [File not signed]
FirewallRules: [{DF43B722-9439-459C-B0A8-BC4BFA60832A}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{99D10D2D-6116-4788-834F-DEAD5A01B93B}] => (Allow) LPort=2869
FirewallRules: [{35AC1FF6-9FC0-4047-B07F-4025BF2169FE}] => (Allow) LPort=1900
FirewallRules: [{5618F72B-1B04-443F-86AD-026D7DA317A6}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FF20E8E4-E3A4-48D8-877D-6A5197A6205A}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\DeviceSetup.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{7FC85F2D-06BB-4E5A-A765-88914725CEF5}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicator.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{FDEA321A-974F-4A10-92AE-535DD71043F0}] => (Allow) C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{68429C95-7837-4C3E-B556-C5B628CC4CA3}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{5CB3C093-AF48-4909-9E9E-0B05E301F71D}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{ADC577D0-F9D9-4CFC-BB82-703CB5333599}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{522FA538-6950-4575-828F-4E11C51C8B4B}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{51B64FB4-C5F4-4FD5-949C-B60C83B08D36}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{82BF01E3-5426-49A6-A085-0756E8400341}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{E521647C-AB64-4A94-9A7C-0C792E575893}] => (Allow) C:\Users\Michal\AppData\Local\MiPhoneManager\main\MiPCSuite.exe (Xiaomi Technology Inc -> Xiaomi.Inc)
FirewallRules: [{0A54C715-A686-4842-B541-D52801BF90DD}] => (Allow) C:\Program Files\BitComet\BitComet.exe (Xing Wang -> www.BitComet.com)
FirewallRules: [{552E9962-637E-4E62-A847-91B171586F52}] => (Allow) C:\Program Files\BitComet\BitComet.exe (Xing Wang -> www.BitComet.com)
FirewallRules: [{279F59D7-0EE5-4FDA-8AF1-9159653F6B0B}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{5E125F88-C20F-45F7-BB67-C7655C24D753}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [TCP Query User{92F3B6E5-A4C8-4AC5-8BCE-DAC182668DD1}C:\users\michal\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe] => (Block) C:\users\michal\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司)
FirewallRules: [UDP Query User{919D46C3-B9DB-4442-955A-596451190236}C:\users\michal\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe] => (Block) C:\users\michal\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe (ShenZhen Thunder Networking Technologies Ltd. -> 深圳市迅雷网络技术有限公司)
FirewallRules: [TCP Query User{F6E6B50F-5BBC-44FB-B500-5DA5A52056B2}C:\program files (x86)\microsoft\skype for desktop\skype.exe] => (Allow) C:\program files (x86)\microsoft\skype for desktop\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{B2229A85-DF41-4A5B-9E24-CE470C3427D5}C:\program files (x86)\microsoft\skype for desktop\skype.exe] => (Allow) C:\program files (x86)\microsoft\skype for desktop\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D9A80FAB-5219-409E-BD4C-229A4B38FB03}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{DD1D91B8-AEB9-4885-964E-CD9F1CA7B992}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{DD6B8302-C716-4513-9A0C-012CD247DA95}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{3413467C-01ED-4B57-9A27-F4424AD447B3}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{99C4B35A-C7AF-4E24-9D11-603802208E56}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{87BB4E0D-EA3A-45EF-AFA8-A5F3B9EAC5F8}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{E294E05D-B125-4130-A92C-1390ADBB45CE}] => (Allow) C:\Program Files\BitComet\BitComet.exe (Xing Wang -> www.BitComet.com)
FirewallRules: [{F0905B91-194D-4986-9448-7A50C3AB75EB}] => (Allow) C:\Program Files\BitComet\BitComet.exe (Xing Wang -> www.BitComet.com)
FirewallRules: [{C5224985-8AE1-4C3A-97B8-9263BE88015B}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A8C14882-336B-4073-AB4E-B68F78278952}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B56E4055-D563-4EA9-AC96-AA4E25994426}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\84.0.4147.39\remoting_host.exe (Google LLC -> Spoločnosť Google Inc.)
FirewallRules: [{D2C7AB31-3FE5-490D-A4DF-FCE0BB606D1C}] => (Allow) C:\Users\Michal\AppData\Local\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

23-06-2020 19:02:42 Plánovaný kontrolný bod
02-07-2020 12:05:05 Plánovaný kontrolný bod
03-07-2020 10:37:07 Windows Update

==================== Faulty Device Manager Devices ============

Name: staport
Description: staport
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: staport
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: ========================

Application errors:
==================
Error: (07/04/2020 08:55:43 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "c:\program files\avast software\Avast\rescuedisk\aswPEShell.exe".
Dependent Assembly avast.local_vc142.crt,processorArchitecture="amd64",publicKeyToken="b7b3b11e08ac5c30",type="win32",version="14.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (07/04/2020 08:55:42 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "c:\program files\avast software\Avast\rescuedisk\aswPEAntivirus.exe".
Dependent Assembly avast.local_vc142.crt,processorArchitecture="amd64",publicKeyToken="b7b3b11e08ac5c30",type="win32",version="14.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (07/04/2020 08:32:40 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1500) (User: Michal-MSICX640)
Description: Windows cannot log you on because your profile cannot be loaded. Check that you are connected to the network, and that your network is functioning correctly.

DETAIL - Prístup je odmietnutý.

Error: (07/04/2020 07:23:23 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1500) (User: Michal-MSICX640)
Description: Windows cannot log you on because your profile cannot be loaded. Check that you are connected to the network, and that your network is functioning correctly.

DETAIL - Prístup je odmietnutý.

Error: (07/03/2020 06:03:36 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1500) (User: Michal-MSICX640)
Description: Windows cannot log you on because your profile cannot be loaded. Check that you are connected to the network, and that your network is functioning correctly.

DETAIL - Prístup je odmietnutý.

Error: (07/03/2020 10:52:10 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1500) (User: Michal-MSICX640)
Description: Windows cannot log you on because your profile cannot be loaded. Check that you are connected to the network, and that your network is functioning correctly.

DETAIL - Prístup je odmietnutý.

Error: (07/03/2020 10:37:23 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Cryptographic Services zlyhala pri spracovávaní volania OnIdentity() v objekte System Writer.

Details:
AddWin32ServiceFiles: Unable to back up image of service avgbIDSAgent since QueryServiceConfig API failed

System Error:
Systém nemôže nájsť zadaný súbor.
.

Error: (07/03/2020 10:37:23 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Cryptographic Services zlyhala pri spracovávaní volania OnIdentity() v objekte System Writer.

Details:
AddWin32ServiceFiles: Unable to back up image of service AVG Antivirus since QueryServiceConfig API failed

System Error:
Systém nemôže nájsť zadaný súbor.
.


System errors:
=============
Error: (07/04/2020 08:58:57 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x80070643: Aktualizácia analytických nástrojov zabezpečenia pre Windows Defender Antivirus - KB915597 (verzia 1.319.660.0).

Error: (07/04/2020 08:49:59 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x80070643: Aktualizácia analytických nástrojov zabezpečenia pre Windows Defender Antivirus - KB915597 (verzia 1.319.660.0).

Error: (07/04/2020 08:32:40 AM) (Source: Service Control Manager) (EventID: 7005) (User: )
Description: Volanie LoadUserProfile zlyhalo s nasledujúcou chybou:
Prístup je odmietnutý.

Error: (07/04/2020 08:28:43 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Nasledujúce ovládače pre spustenie zavedenia alebo spustenie systému zlyhali pri načítaní:
staport

Error: (07/04/2020 08:23:08 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x80070643: Aktualizácia analytických nástrojov zabezpečenia pre Windows Defender Antivirus - KB915597 (verzia 1.319.660.0).

Error: (07/04/2020 07:48:40 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x80070643: Aktualizácia analytických nástrojov zabezpečenia pre Windows Defender Antivirus - KB915597 (verzia 1.319.660.0).

Error: (07/04/2020 07:41:08 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Zlyhanie inštalácie: Systému Windows sa nepodarilo nainštalovať nasledujúcu aktualizáciu. Vyskytla sa chyba 0x80070643: Aktualizácia analytických nástrojov zabezpečenia pre Windows Defender Antivirus - KB915597 (verzia 1.319.660.0).

Error: (07/04/2020 07:23:23 AM) (Source: Service Control Manager) (EventID: 7005) (User: )
Description: Volanie LoadUserProfile zlyhalo s nasledujúcou chybou:
Prístup je odmietnutý.


Windows Defender:
===================================
Date: 2020-07-04 09:06:08.307
Description:
Windows Defender has encountered an error trying to update signatures.
New Signature Version:1.319.760.0
Previous Signature Version:
Update Source:User
Signature Type:AntiSpyware
Update Type:Full
Current Engine Version:1.1.17200.2
Previous Engine Version:
Error code:0x8007007f
Error description:Zadaná procedúra sa nenašla.

Date: 2020-07-04 09:06:08.307
Description:
Windows Defender has encountered an error trying to update the engine.
New Engine Version:1.1.17200.2
Previous Engine Version:
Update Source:User
Error Code:0x8007007f
Error description:Zadaná procedúra sa nenašla.

Date: 2020-07-04 09:06:04.298
Description:
Windows Defender has encountered an error trying to update signatures.
New Signature Version:1.319.760.0
Previous Signature Version:
Update Source:User
Signature Type:AntiSpyware
Update Type:Full
Current Engine Version:1.1.17200.2
Previous Engine Version:
Error code:0x8007007f
Error description:Zadaná procedúra sa nenašla.

Date: 2020-07-04 09:06:04.298
Description:
Windows Defender has encountered an error trying to update the engine.
New Engine Version:1.1.17200.2
Previous Engine Version:
Update Source:User
Error Code:0x8007007f
Error description:Zadaná procedúra sa nenašla.

Date: 2020-07-04 08:58:52.704
Description:
Windows Defender has encountered an error trying to update signatures.
New Signature Version:1.319.660.0
Previous Signature Version:
Update Source:User
Signature Type:AntiSpyware
Update Type:Full
Current Engine Version:1.1.17200.2
Previous Engine Version:
Error code:0x8007007f
Error description:Zadaná procedúra sa nenašla.

CodeIntegrity:
===================================

Date: 2020-07-04 09:24:48.085
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\system32\drivers\staport.sys because the set of per-page image hashes could not be found on the system.

Date: 2020-07-04 09:24:48.069
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\system32\drivers\staport.sys because the set of per-page image hashes could not be found on the system.

Date: 2020-07-04 09:20:42.697
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\system32\drivers\staport.sys because the set of per-page image hashes could not be found on the system.

Date: 2020-07-04 09:20:42.697
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\system32\drivers\staport.sys because the set of per-page image hashes could not be found on the system.

Date: 2020-07-04 09:09:02.498
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\system32\drivers\staport.sys because the set of per-page image hashes could not be found on the system.

Date: 2020-07-04 09:09:02.498
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\system32\drivers\staport.sys because the set of per-page image hashes could not be found on the system.

Date: 2020-07-04 09:06:18.759
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\system32\drivers\staport.sys because the set of per-page image hashes could not be found on the system.

Date: 2020-07-04 09:06:18.759
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\system32\drivers\staport.sys because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

BIOS: American Megatrends Inc. E16Y1IMS.204 02/17/2011
Motherboard: PEGATRON CORPORATION P017
Processor: Intel(R) Core(TM) i3-2310M CPU @ 2.10GHz
Percentage of memory in use: 96%
Total physical RAM: 4008.29 MB
Available physical RAM: 130.98 MB
Total Virtual: 8014.76 MB
Available Virtual: 2313.14 MB

==================== Drives ================================

Drive c: (OS_Install) (Fixed) (Total:268.26 GB) (Free:112.4 GB) NTFS
Drive d: (Data) (Fixed) (Total:178.84 GB) (Free:36.74 GB) NTFS
Drive w: (BIOS_RVY) (Fixed) (Total:18.55 GB) (Free:5.6 GB) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{82ab7a46-5832-11e0-a502-806e6f6e6963}\ (System) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: D05F3ADF)
Partition 1: (Not Active) - (Size=18.6 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=447.1 GB) - (Type=0F Extended)

==================== End of Addition.txt =======================

Re: preventivna kontrola

Napsal: 04 črc 2020 10:44
od Rudy
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1554982330-1077266817-2899125201-1006 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-28] (Google Inc -> Google Inc.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc -> Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-28] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-28] (Google Inc -> Google Inc.)
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - No File
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
S3 ALSysIO; \??\C:\Users\Michal\AppData\Local\Temp\ALSysIO64.sys [X] <==== ATTENTION
U1 aswbdisk; no ImagePath
C:\windows\system32\Tasks\AutoKMS
C:\windows\system32\Tasks\{C085E23B-0534-45AA-A839-250FBD5C15C6}
C:\windows\system32\Tasks\{C9E031BF-BFB3-48FD-8122-25DEC7871821}
C:\windows\system32\Tasks\{29EEF94A-F174-4BB2-A3ED-C7E6F176827B}
C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore
C:\windows\system32\Tasks\{43942417-3446-4888-8CAD-70D0F5BEDA16}
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => -> No File
AlternateDataStreams: C:\Windows:nlsPreferences [386]

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: preventivna kontrola

Napsal: 04 črc 2020 11:41
od ahola
Fix result of Farbar Recovery Scan Tool (x64) Version: 04-07-2020
Ran by Michal (04-07-2020 12:24:33) Run:1
Running from C:\Users\Michal\Desktop
Loaded Profiles: Michal & postgres
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1554982330-1077266817-2899125201-1006 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-28] (Google Inc -> Google Inc.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc -> Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-28] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-1554982330-1077266817-2899125201-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-28] (Google Inc -> Google Inc.)
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - No File
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
S3 ALSysIO; \??\C:\Users\Michal\AppData\Local\Temp\ALSysIO64.sys [X] <==== ATTENTION
U1 aswbdisk; no ImagePath
C:\windows\system32\Tasks\AutoKMS
C:\windows\system32\Tasks\{C085E23B-0534-45AA-A839-250FBD5C15C6}
C:\windows\system32\Tasks\{C9E031BF-BFB3-48FD-8122-25DEC7871821}
C:\windows\system32\Tasks\{29EEF94A-F174-4BB2-A3ED-C7E6F176827B}
C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore
C:\windows\system32\Tasks\{43942417-3446-4888-8CAD-70D0F5BEDA16}
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => -> No File
AlternateDataStreams: C:\Windows:nlsPreferences [386]

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Local Page"="C:\Windows\SysWOW64\blank.htm" => value restored successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
"HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
"HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
"HKU\S-1-5-21-1554982330-1077266817-2899125201-1006\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7} => removed successfully
HKLM\Software\Classes\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7} => removed successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => removed successfully
HKLM\Software\Classes\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => removed successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => removed successfully
"HKU\S-1-5-21-1554982330-1077266817-2899125201-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F}" => removed successfully
HKLM\Software\Classes\PROTOCOLS\Handler\linkscanner => removed successfully
HKLM\Software\Classes\PROTOCOLS\Handler\skype4com => removed successfully
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\System\CurrentControlSet\Services\ALSysIO => removed successfully
ALSysIO => service removed successfully
HKLM\System\CurrentControlSet\Services\aswbdisk => could not remove, key could be protected
C:\windows\system32\Tasks\AutoKMS => moved successfully
C:\windows\system32\Tasks\{C085E23B-0534-45AA-A839-250FBD5C15C6} => moved successfully
C:\windows\system32\Tasks\{C9E031BF-BFB3-48FD-8122-25DEC7871821} => moved successfully
C:\windows\system32\Tasks\{29EEF94A-F174-4BB2-A3ED-C7E6F176827B} => moved successfully
C:\windows\system32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\windows\system32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\windows\system32\Tasks\{43942417-3446-4888-8CAD-70D0F5BEDA16} => moved successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\PDFCreator.ShellContextMenu => removed successfully
C:\Windows => ":nlsPreferences" ADS removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 44307962 B
Java, Flash, Steam htmlcache => 1128 B
Windows/system/drivers => 33828835 B
Edge => 0 B
Chrome => 480167414 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 33058 B
systemprofile32 => 66244 B
LocalService => 99369 B
NetworkService => 375436 B
TEMP.Michal-MSICX640.004 => 375436 B
UpdatusUser => 375436 B
Michal => 302387479 B
postgres => 302387479 B

RecycleBin => 0 B
EmptyTemp: => 1.1 GB temporary data Removed.

================================

Re: preventivna kontrola

Napsal: 04 črc 2020 14:27
od Rudy
Smazáno. Nastala nějaká změna?

Re: preventivna kontrola

Napsal: 04 črc 2020 16:05
od ahola
vyskusam a ked tak sa ozvem, islo o preventivku tak myslim ze to bude v poriadku.
diky za pomoc.

Re: preventivna kontrola

Napsal: 04 črc 2020 17:52
od Rudy
OK. Nemáte zač! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz