Preventivka PC

[toox]

Zdravím, poprosim o kontrolu logu

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-12-2020
Ran by rodinkasebestovi (03-12-2020 11:23:41)
Running from C:\Users\rodinkasebestovi\Downloads
Windows 10 Home Version 2004 19041.630 (X64) (2020-09-06 19:30:02)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1244017325-3987402715-3454423037-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1244017325-3987402715-3454423037-503 - Limited - Disabled)
Guest (S-1-5-21-1244017325-3987402715-3454423037-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1244017325-3987402715-3454423037-1004 - Limited - Enabled)
rodinkasebestovi (S-1-5-21-1244017325-3987402715-3454423037-1001 - Administrator - Enabled) => C:\Users\rodinkasebestovi
UpdatusUser (S-1-5-21-1244017325-3987402715-3454423037-1002 - Limited - Enabled)
WDAGUtilityAccount (S-1-5-21-1244017325-3987402715-3454423037-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {4FC75CA5-1654-5411-7CFB-1893D506BCF4}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Antivirus (Enabled - Up to date) {F4A6BD41-306E-5B9F-464B-23E1AE81F649}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7Launcher CSGO 1.3.9 (HKLM\...\7l_csgo_is1) (Version: 1.3.9 - SE7EN Solutions)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.3006 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.3011 - Acer Incorporated)
AcerCloud (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 2.01.3115 - Acer Incorporated)
AcerCloud Docs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.00.3201 - Acer Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.3.9120 - Adobe Systems Inc.)
Adobe Photoshop CS5 (HKLM-x32\...\{15FEDA5F-141C-4127-8D7E-B962D1742728}) (Version: 12.0 - Adobe Systems Incorporated)
Agatha Christie - Death on the Nile (HKLM-x32\...\WTA-0f60c575-c0e1-4f21-999f-8ca36be5bcc7) (Version: 2.2.0.98 - WildTangent) Hidden
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Aloha TriPeaks (HKLM-x32\...\WTA-ffb5c439-15b4-4acd-87bc-b71691506210) (Version: 2.2.0.98 - WildTangent) Hidden
Arduino (HKLM-x32\...\Arduino) (Version: 1.8.3 - Arduino LLC)
AVG Internet Security (HKLM-x32\...\AVG Antivirus) (Version: 20.9.3152 - AVG Technologies)
Balada o Solarovi (HKLM-x32\...\Balada o Solarovi) (Version: 1.0.0.0 - Alawar Entertainment Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bejeweled 3 (HKLM-x32\...\WTA-dff480a9-4fe8-4a9a-b4a9-1bcd86918ba3) (Version: 2.2.0.98 - WildTangent) Hidden
Bistro u Amélie: Duch Vánoc (HKLM-x32\...\Bistro u Amélie: Duch Vánoc) (Version: 1.0.0.0 - Alawar Entertainment Inc.)
Blackmagic RAW Common Components (HKLM\...\{B5ABFF44-9702-4CA1-A7D8-DBA659709C49}) (Version: 1.7 - Blackmagic Design)
Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment)
Call Of Duty(R) 2 (HKLM-x32\...\{DBECFA83-42DC-4585-A970-A764AB01A956}) (Version: 1.0 - )
Call of Duty(R) 4 - Modern Warfare(TM) (HKLM-x32\...\{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.00.0000 - Activision) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) (HKLM-x32\...\InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.00.0000 - Activision)
Camtasia 9 (HKLM\...\{8AD50DED-EE14-4FEC-BC2C-F229C3BEFE58}) (Version: 9.0.3.1627 - TechSmith Corporation)
Canon MP140 series (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP140_series) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.56 - Piriform)
clear.fi Media (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.01.3108 - Acer Incorporated)
clear.fi Photo (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 2.01.3108 - Acer Incorporated)
clear.fi SDK - Video 2 (HKLM-x32\...\{EBA33CAD-E071-48d5-A168-FBA4EEB42E93}) (Version: 2.1.1925 - CyberLink Corp.) Hidden
clear.fi SDK- Movie 2 (HKLM-x32\...\{35DA427D-BB23-49B8-9AFD-CFFCFE3B708D}) (Version: 2.1.2008 - CyberLink Corp.) Hidden
CoD2_install_patch (HKLM-x32\...\CoD2_install_patch) (Version: - )
Counter-Strike 1.6 v43g (HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\Counter-Strike 1.6_is1) (Version: - Valve)
Crack Microsoft Office 2010 2.2.3 (HKLM-x32\...\Crack Microsoft Office 2010 2.2.3) (Version: 2.2.3 - Microsoft)
Crazy Chicken Tales (HKLM-x32\...\Crazy Chicken Talesv1.0) (Version: v1.0 - Phenomedia Publishing, gmbh)
CyberLink MediaEspresso 6.5 (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.3103_44819 - CyberLink Corp.)
Čarodějný žertík - Žabí štěstí - Sběratelská edice (HKLM-x32\...\{Carodejny zertik - zabi stesti - Sberatelska edice}_is1) (Version: - Spidla Data Processing, s.r.o.)
Čestina do SimCity 4 Rush Hour a Delux BETA (HKLM-x32\...\Čestina do SimCity 4 Rush Hour a Delux BETA) (Version: 1.00 - Max_2_Max)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.2.0.0114 - Disc Soft Ltd)
DaVinci Resolve Panels (HKLM\...\{567706B7-1501-43BC-81AB-C7E306B40C73}) (Version: 1.3.2.0 - Blackmagic Design)
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
Delicious: Emily's True Love Premium Edition (HKLM-x32\...\WTA-87b3a89f-d47b-425a-aa19-6638f6c251f0) (Version: 2.2.0.98 - WildTangent) Hidden
Discord (HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\Discord) (Version: 0.0.307 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{3ECF91A4-EE22-4A3A-921F-36ECAA04C13D}) (Version: 1.1.147.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Euro Truck Simulator 2 - Heavy Cargo Pack version 1.0 (HKLM-x32\...\Euro Truck Simulator 2 - Heavy Cargo Pack_is1) (Version: 1.0 - SCS Software)
Facebook (HKLM-x32\...\Facebook) (Version: - )
Facebook Video Calling 2.0.0.447 (HKLM-x32\...\{8DF41A9F-FE13-43E8-A003-5F9B55A011EE}) (Version: 2.0.447 - Skype Limited)
Farm Frenzy 4 (HKLM-x32\...\Farm Frenzy 4) (Version: 1.0.0.0 - Alawar Entertainment Inc.)
Final Drive: Nitro (HKLM-x32\...\WTA-d855b4d1-f6e0-472a-8ce3-156639d78f97) (Version: 2.2.0.95 - WildTangent) Hidden
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Google Drive (HKLM-x32\...\{A8DC81F2-D365-4248-892A-FA3B5951F731}) (Version: 2.34.9392.7803 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.88 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 - Google LLC) Hidden
Google Video Support Plugin (HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 19.12.1000.0 - Google, LLC.)
Governor of Poker 2 Premium Edition (HKLM-x32\...\WTA-b180099a-315f-438d-8471-1d76285268d7) (Version: 2.2.0.110 - WildTangent) Hidden
Grand Theft Auto Vice City (HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\{4B35F00C-E63D-40DC-9839-DF15A33EAC46}) (Version: 1.00.000 - )
Hledači pokladů: Ztracené město (HKLM-x32\...\Hledači pokladů: Ztracené město) (Version: 1.0.0.0 - Alawar Entertainment Inc.)
Hotkey Utility (HKLM-x32\...\{A6DC88AD-501A-44BC-884D-57435F972E2C}) (Version: 3.00.3001 - Acer Incorporated)
Charity Engine (HKLM\...\{A7D31CBC-80AF-4E68-83D7-20D01917C034}) (Version: 7.6.33 - Charity Engine)
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.3004 - Acer Incorporated)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation)
Intel(R) Network Connections 17.2.153.0 (HKLM\...\PROSetDX) (Version: 17.2.153.0 - Intel)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.0.1207 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: - )
IrfanView 64 (remove only) (HKLM\...\IrfanView64) (Version: 4.42 - Irfan Skiljan)
Java 8 Update 231 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180231F0}) (Version: 8.0.2310.11 - Oracle Corporation)
Jewel Match 3 (HKLM-x32\...\WTA-a910ee64-34a3-4cf6-af97-b7764748a72b) (Version: 2.2.0.98 - WildTangent) Hidden
John Deere Drive Green (HKLM-x32\...\WTA-cd10da4e-ee59-49ba-8a93-045c4529db16) (Version: 2.2.0.95 - WildTangent) Hidden
KAO the Kangaroo (HKLM-x32\...\KAO the Kangaroo) (Version: - )
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Ledová růže - Sběratelská edice (HKLM-x32\...\{Ledova ruze - Sberatelska edice}_is1) (Version: - Spidla Data Processing, s.r.o.)
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.3003 - Acer Incorporated)
Magic Academy (HKLM-x32\...\WTA-104cd28d-e08e-4937-82a4-f4cfc0a87328) (Version: 2.2.0.98 - WildTangent) Hidden
Malwarebytes verze 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
Medvěd Míša - Rybí dobrodružství (HKLM-x32\...\Medvěd Míša - Rybí dobrodružství) (Version: - )
Medvědí bratři (HKLM-x32\...\{B489D5F8-D960-4399-9286-C59BF21991B5}) (Version: 1.0 - )
MEmu (HKLM-x32\...\MEmu) (Version: 7.1.6.0 - Microvirt Software Technology Co. Ltd.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.52 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.59 - )
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Language Pack 2013 - Czech/čeština (HKLM-x32\...\Office15.OMUI.cs-cz) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\OneDriveSetup.exe) (Version: 20.169.0823.0008 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Minecraft Beta Cracked (HKLM-x32\...\Minecraft Beta Cracked) (Version: - )
Mozilla Firefox 83.0 (x64 cs) (HKLM\...\Mozilla Firefox 83.0 (x64 cs)) (Version: 83.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 65.0.2 - Mozilla)
MSXML4 Parser (HKLM-x32\...\{01501EBA-EC35-4F9F-8889-3BE346E5DA13}) (Version: 1.0.0 - Microsoft Game Studios)
My Farm Life 2 (HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\My Farm Life 2) (Version: 1.0.0.0 - Alawar Entertainment Inc.)
MyWinLocker (HKLM\...\{0B78ECB0-1A6B-4E6D-89D7-0E7CE77F0427}) (Version: 4.0.14.35 - Egis Technology Inc.) Hidden
MyWinLocker 4 (HKLM-x32\...\{39F15B50-A977-4CA6-B1C3-6A8724CDA025}) (Version: 4.0.14.35 - Egis Technology Inc.) Hidden
MyWinLocker Suite (HKLM-x32\...\{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}) (Version: 4.0.14.24 - Egis Technology Inc.) Hidden
MyWinLocker Suite (HKLM-x32\...\InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}) (Version: 4.0.14.24 - Egis Technology Inc.)
NAPS2 5.2.1 (HKLM-x32\...\NAPS2 (Not Another PDF Scanner 2)_is1) (Version: - Ben Olden-Cooligan)
Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština (HKLM-x32\...\{90150000-001F-0405-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2013 - slovenčina (HKLM-x32\...\{90150000-001F-041B-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Nero 12 Essentials OEM.a01 (HKLM-x32\...\{9BF0D9FE-9893-4647-81B9-17B7BEA4E6FD}) (Version: 12.5.00000 - Nero AG)
NHL™ 09 (HKLM-x32\...\{827B97A9-B347-4110-9F89-37AF2B758F94}) (Version: 2.0.1.0 - Electronic Arts)
NVIDIA 3D Vision Controller Driver 305.29 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 305.29 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.54 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.54 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.12.0213 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.0213 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 26.0.2 - OBS Project)
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.01.3200 - Acer)
Office Addin 2003 (HKLM-x32\...\{1FCC073B-CC01-4443-AD20-E559F66E6E83}) (Version: 2.01.3200 - Acer)
OpenOffice 4.1.1 (HKLM-x32\...\{C560D6E7-E40A-435D-8B71-62CBCF1701B2}) (Version: 4.11.9775 - Apache Software Foundation)
Oracle VM VirtualBox 5.2.6 (HKLM\...\{EA9602E3-0184-45B9-9E15-028776CD7A6E}) (Version: 5.2.6 - Oracle Corporation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM-x32\...\{90150000-001F-040C-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Ovládací panel NVIDIA 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 376.54 - NVIDIA Corporation) Hidden
PDF Settings CS5 (HKLM-x32\...\{A78FE97A-C0C8-49CE-89D0-EDD524A17392}) (Version: 10.0 - Adobe Systems Incorporated) Hidden
Penguins! (HKLM-x32\...\WTA-fa60ae5a-bd7a-4513-8261-61a03b618086) (Version: 2.2.0.98 - WildTangent) Hidden
Plants vs. Zombies - Game of the Year (HKLM-x32\...\WTA-bac481e1-7267-49fc-be25-fbab63c9d8dd) (Version: 2.2.0.98 - WildTangent) Hidden
Poklady ostrova záhad 1.0 (HKLM-x32\...\{Poklady ostrova zahad}_is1) (Version: - Špidla Data Processing, s.r.o.)
Prerequisite installer (HKLM-x32\...\{3AAB08A3-F129-4BD5-B409-AE674F93759D}) (Version: 12.0.0002 - Nero AG) Hidden
PUBG LITE (HKLM-x32\...\PUBG LITE_is1) (Version: 1.0.1.0 - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6680 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.2.8400.30137 - Realtek Semiconductor Corp.)
Rise of Nations (HKLM-x32\...\RiseOfNationsExpansion 1.0) (Version: 1.0 - Microsoft)
Sada Compatibility Pack pro systém Office 2007 (HKLM-x32\...\{90120000-0020-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Scan to PDF (HKLM-x32\...\Scan to PDF) (Version: 2.50 - Softi Software)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM-x32\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version: - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM-x32\...\{90150000-0100-0405-0000-0000000FF1CE}_Office15.OMUI.cs-cz_{78A9943A-5DB1-4B90-8AEF-5CE30456FB6E}) (Version: - Microsoft)
Seznam Software (HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\SeznamInstall) (Version: - Seznam.cz)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Shredder (HKLM\...\{1F557316-CFC0-41BD-AFF7-8BC49CE444D7}) (Version: 2.0.8.9 - Egis Technology Inc.) Hidden
Shredder (HKLM-x32\...\{C2695E83-CF1D-43D1-84FE-B3BEC561012A}) (Version: 2.0.8.9 - Egis Technology Inc.) Hidden
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Smajlíci 1.5 (HKLM-x32\...\{Smajlici}_is1) (Version: - Špidla Data Processing, s.r.o.)
SMART Common Files (HKLM-x32\...\{ED2455F7-6AA6-4D3C-85E9-A72297DD7051}) (Version: 11.1.11.0 - SMART Technologies ULC)
SMART Notebook Interactive Viewer (HKLM-x32\...\{BDC0E727-AF8C-4360-88FD-439144C833A8}) (Version: 2.0.103.0 - SMART Technologies ULC)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Tales of Lagoona (HKLM-x32\...\WTA-99dc229b-2cd4-48e4-a3a4-5a9635e9bdb2) (Version: 2.2.0.110 - WildTangent) Hidden
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.2.3 - TeamSpeak Systems GmbH)
TeamSpeak 3 Client (HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\TeamSpeak 3 Client) (Version: 3.5.5 - TeamSpeak Systems GmbH)
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.1.18533 - TeamViewer)
Temná pohlazení: Hříchy otců (HKLM-x32\...\Temná pohlazení: Hříchy otců) (Version: 1.0.0.0 - Alawar Entertainment Inc.)
The Saboteur version 1.03 (HKLM-x32\...\The Saboteur_is1) (Version: 1.03 - )
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.0 beta 12 - Ghisler Software GmbH)
Twitch Studio (HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF372B0}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Ulož.to FileManager verze 2.20 (HKLM-x32\...\{7DE5EA5D-C933-4549-9A44-5BC671F23BBF}_is1) (Version: 2.20 - Uloz.to cloud a.s.)
Unity Web Player (HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\UnityWebPlayer) (Version: 4.5.3f3 - Unity Technologies ApS)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4011255) 32-Bit Edition (HKLM-x32\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{2449D2C4-C30E-4854-9A5E-59AA60DE216B}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4011255) 32-Bit Edition (HKLM-x32\...\{90150000-002A-0000-1000-0000000FF1CE}_Office15.PROPLUS_{2449D2C4-C30E-4854-9A5E-59AA60DE216B}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4011255) 32-Bit Edition (HKLM-x32\...\{90150000-012B-0405-0000-0000000FF1CE}_Office15.OMUI.cs-cz_{2449D2C4-C30E-4854-9A5E-59AA60DE216B}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4011255) 32-Bit Edition (HKLM-x32\...\{90150000-012B-0409-0000-0000000FF1CE}_Office15.PROPLUS_{2449D2C4-C30E-4854-9A5E-59AA60DE216B}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
Update Installer for WildTangent Games App (HKLM-x32\...\{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App) (Version: - gamigo, Inc.) Hidden
Vegas Pro 13.0 (64-bit) (HKLM\...\{CDA02BF0-BFBC-11E3-AFA0-F04DA23A5C58}) (Version: 13.0.290 - Sony)
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version: - Microsoft Corporation)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version: - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Wargaming.net Game Center (HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\Wargaming.net Game Center) (Version: 20.7.1.2675 - Wargaming.net)
WebAdvisor od společnosti McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.171 - McAfee, LLC)
WhatsApp (HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\WhatsApp) (Version: 2.2025.7 - WhatsApp)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.3.0 - WildTangent)
WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-acer) (Version: 4.1.1.49 - WildTangent) Hidden
WildTangent Helper (HKLM-x32\...\{A39303AB-4898-4F12-BAA0-0B8630F86DB4}) (Version: 1.0.0.428 - WildTangent) Hidden
WildTangent ShortcutProvider (HKLM-x32\...\{80831F60-19D7-43B3-A60C-5CAF8C478DF6}) (Version: 5.0.0.210 - WildTangent) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation)
WinRAR 5.30 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH)
WinRAR 5.30 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH)
World of Tanks EU (HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)
World_of_Warplanes (HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\WOWP.WW.PRODUCTION) (Version: - Wargaming.net)
Záchranáři v akci (HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\Záchranáři v akci) (Version: 1.0.0.0 - Alawar Entertainment Inc.)
Zoom (HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.)
Zuma's Revenge (HKLM-x32\...\WTA-a8fce3b9-61a7-4375-905b-9b2ed2451b5a) (Version: 2.2.0.98 - WildTangent) Hidden

Packages:
=========
7digital Music Store -> C:\Program Files\WindowsApps\7digitalLtd.7digitalMusicStore_2.1.10.3_x86__qv1vc61z2t2b4 [2017-07-21] (7digital Ltd)
Acer Explorer -> C:\Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.3007.0_x86__48frkmn4z8aw4 [2016-07-07] (Acer Incorporated)
Adera -> C:\Program Files\WindowsApps\Microsoft.Adera_2.5.2.34894_x86__8wekyb3d8bbwe [2014-06-17] (Microsoft Studios)
Arduino IDE -> C:\Program Files\WindowsApps\ArduinoLLC.ArduinoIDE_1.8.42.0_x86__mdqgnx93n4wtt [2020-07-27] (Arduino LLC)
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2020-04-22] (Autodesk Inc.)
Cut The Rope -> C:\Program Files\WindowsApps\ZeptoLabUKLimited.CutTheRope_1.2.0.43_x86__sq9zxnwrk84pj [2014-06-17] (ZeptoLab UK Limited)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-21] (Microsoft Corporation)
Evernote -> C:\Program Files\WindowsApps\Evernote.Evernote_10.4.4.0_x86__q4d96b2w5wcc2 [2020-11-30] (Evernote)
Kindle -> C:\Program Files\WindowsApps\AMZNMobileLLC.KindleforWindows8_2.1.0.2_neutral__stfe6vwa9jnbp [2016-05-19] (AMZN Mobile LLC)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-17] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-17] (Microsoft Corporation) [MS Ad]
Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_4.0.11030.0_x64__8wekyb3d8bbwe [2020-11-25] (Microsoft Studios) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2020-10-24] (Microsoft Studios) [MS Ad]
Microsoft Ultimate Word Games -> C:\Program Files\WindowsApps\Microsoft.Studios.Wordament_3.8.904.0_x64__8wekyb3d8bbwe [2020-09-29] (Microsoft Studios) [MS Ad]
MSN Cestování -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2016-05-19] (Microsoft Corporation) [MS Ad]
MSN Gurmánský svět -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2016-06-01] (Microsoft Corporation) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-30] (Microsoft Corporation) [MS Ad]
MSN Zdraví a fitness -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2016-06-01] (Microsoft Corporation) [MS Ad]
newsXpresso -> C:\Program Files\WindowsApps\esobiIncorporated.newsXpressoMetro_3.1.3.395_x86__sngswjb5h6fyg [2016-05-19] (Yisoubi Co. Ltd.)
Pinball FX2 -> C:\Program Files\WindowsApps\Microsoft.Studios.PinballFx2_1.8.1.957_x86__8wekyb3d8bbwe [2016-06-01] (Microsoft Studios)
Scratch Desktop -> C:\Program Files\WindowsApps\ScratchFoundation.ScratchDesktop_3.6.0.0_x86__wmbdy4q6dbx4t [2019-11-26] (Scratch Foundation)
Skitch Touch -> C:\Program Files\WindowsApps\Evernote.Skitch_2.4.2000.1918_neutral__q4d96b2w5wcc2 [2013-12-17] (Evernote)
Taptiles -> C:\Program Files\WindowsApps\Microsoft.Taptiles_2.6.288.0_x86__8wekyb3d8bbwe [2018-10-25] (Microsoft Studios) [MS Ad]
The Treasures of Montezuma 3 -> C:\Program Files\WindowsApps\09B6C2D8.TheTreasuresofMontezuma3_1.0.1.1742_x86__hbbh9szp6erha [2014-06-17] (Alawar Entertainment Inc.)
TuneIn Radio -> C:\Program Files\WindowsApps\TuneIn.TuneInRadio_4.0.7.0_x64__6bhtb546zcxnj [2019-09-20] (TuneIn) [MS Ad]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-09] (Twitter Inc.)
WeatherBug -> C:\Program Files\WindowsApps\WeatherBug.WeatherBugbeta_2.0.4.0_neutral__j565901s17z26 [2013-12-17] (WeatherBug) [MS Ad]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1244017325-3987402715-3454423037-1001_Classes\CLSID\{6D264B70-DA18-401D-910C-B202D89670C6}\InprocServer32 -> C:\Users\rodinkasebestovi\AppData\Local\Google\Update\1.3.36.32\psuser_64.dll (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-1244017325-3987402715-3454423037-1001_Classes\CLSID\{85D8EE2F-794F-41F0-BB03-49D56A23BEF4}\InprocServer32 -> C:\Users\rodinkasebestovi\AppData\Local\Google\Update\1.3.36.32\psuser_64.dll (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-1244017325-3987402715-3454423037-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\rodinkasebestovi\AppData\Local\Google\Update\1.3.36.32\psuser_64.dll (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-1244017325-3987402715-3454423037-1001_Classes\CLSID\{E9E7529D-7F09-410B-AF2A-CC154473B19C}\InprocServer32 -> C:\Users\rodinkasebestovi\AppData\Local\Google\Update\1.3.35.452\psuser_64.dll => No File
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2217832 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2020-11-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google Inc -> Google)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-11-18] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-11-18] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [MWLIVShellExt] -> {B1B294FE-EC1E-4fef-AF68-D34CE3E38157} => C:\Program Files (x86)\EgisTec MyWinLocker\x64\MWLIVShellExt.dll [2012-07-12] (EGIS TECHNOLOGY INC. -> Egis Technology Inc.)
ContextMenuHandlers3: [ShredderContextMenu] -> {521065F1-DE6C-4E46-BBCB-89B0D0BE860D} => C:\Program Files (x86)\EgisTec Shredder\x64\ShredderContextMenu.dll [2011-03-29] (EGIS TECHNOLOGY INC. -> Egis Technology Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google Inc -> Google)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2020-11-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-11-18] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-11-18] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.i420] => C:\WINDOWS\system32\lvcod64.dll [175392 2012-10-26] (Logitech, Inc. -> Logitech Inc.)
HKLM\...\Drivers32: [VIDC.FPS1] => C:\WINDOWS\system32\frapsv64.dll [71680 2012-08-30] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [vidc.i420] => C:\Windows\SysWOW64\lvcodec2.dll [305000 2012-10-26] (Logitech, Inc. -> Logitech Inc.)
HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2008-09-05] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2008-09-05] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2012-08-30] (Beepa P/L) [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\rodinkasebestovi\Favorites\Acer\Acer.lnk -> hxxp://www.acer.com
ShortcutWithArgument: C:\Users\rodinkasebestovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Facebook\Facebook.lnk -> C:\Program Files\internet explorer\iexplore.exe (Microsoft Corporation) -> hxxps://www.facebook.com/campaign/landing.php?c ... ment=Model 1-20&creative=OIB&keyword=1pIkapTLdWPnyXVnmsh1FZDNcmCFiCQjnslwZpvLdWebynFmkslzYJHLZjjFnSUlnr0hNMaZLzjIpBcywZowJ4WYMjSQyX1klMx1ZJrJd26T%2FlEAAACj%2B0BX&extra_2=CZ

==================== Loaded Modules (Whitelisted) =============

2020-09-06 20:01 - 2016-12-29 13:29 - 000860960 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI64.dll
2020-09-06 20:01 - 2016-12-29 13:29 - 000339072 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\_nvstapisvr64.dll
2013-01-02 17:22 - 2012-02-07 07:59 - 000166912 _____ (Realtek Semiconductor Corp.) [File not signed] C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RsCRLib.dll
2019-03-02 17:49 - 2019-02-01 09:56 - 000035328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\iconengines\qsvgicon.dll
2019-03-02 17:49 - 2019-02-01 09:56 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qico.dll
2019-03-02 17:49 - 2019-02-01 09:56 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qsvg.dll
2019-03-02 17:49 - 2019-02-01 09:56 - 001181184 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\platforms\qwindows.dll
2019-03-02 17:49 - 2019-02-01 09:56 - 000047104 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt\labs\folderlistmodel\qmlfolderlistmodelplugin.dll
2019-03-02 17:49 - 2019-02-01 09:56 - 000027136 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt\labs\settings\qmlsettingsplugin.dll
2019-03-02 17:49 - 2019-02-01 09:55 - 005010944 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
2019-03-02 17:49 - 2019-02-01 09:56 - 005139968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Gui.dll
2019-03-02 17:49 - 2019-02-01 09:56 - 002234880 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Network.dll
2019-03-02 17:49 - 2019-02-01 09:56 - 002950144 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Qml.dll
2019-03-02 17:49 - 2019-02-01 09:56 - 003084800 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Quick.dll
2019-03-02 17:49 - 2019-02-01 09:56 - 000259584 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Svg.dll
2019-03-02 17:49 - 2019-02-01 09:56 - 004571648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Widgets.dll
2019-03-02 17:49 - 2019-02-01 09:56 - 000438272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5WinExtras.dll
2019-03-02 17:49 - 2019-02-01 09:56 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\modelsplugin.dll
2019-03-02 17:49 - 2019-02-01 09:56 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\qtquick2plugin.dll
2019-03-02 17:49 - 2019-02-01 09:56 - 000729088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-03-02 17:49 - 2019-02-01 09:56 - 000179712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\dialogplugin.dll
2019-03-02 17:49 - 2019-02-01 09:56 - 000037888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\Private\dialogsprivateplugin.dll
2019-03-02 17:49 - 2019-02-01 09:56 - 000073216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-03-02 17:49 - 2019-02-01 09:56 - 000101888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\widgetsplugin.dll
2019-03-02 17:49 - 2019-02-01 09:56 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\windowplugin.dll
2019-03-02 17:49 - 2019-02-01 09:56 - 000086016 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtWinExtras\qml_winextras.dll
2019-03-02 17:49 - 2019-02-01 09:56 - 000124928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\styles\qwindowsvistastyle.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com
SearchScopes: HKU\S-1-5-21-1244017325-3987402715-3454423037-1001 -> {0E5DCEAE-D71F-4826-8600-A56FEFF9191E} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_13906
SearchScopes: HKU\S-1-5-21-1244017325-3987402715-3454423037-1001 -> {1107A12D-8BA5-4C9D-BCB7-29D53701E7D2} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_13906
SearchScopes: HKU\S-1-5-21-1244017325-3987402715-3454423037-1001 -> {5B703D85-822C-4A44-999A-50F3A0C47910} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_13906
SearchScopes: HKU\S-1-5-21-1244017325-3987402715-3454423037-1001 -> {6387000F-1C7C-49F4-A7F5-9BDFF8982DF8} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13906
SearchScopes: HKU\S-1-5-21-1244017325-3987402715-3454423037-1001 -> {79996850-6D06-490B-BED4-64CE58211338} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_13906
SearchScopes: HKU\S-1-5-21-1244017325-3987402715-3454423037-1001 -> {98D8FE9B-559E-47DB-9B08-758CF6C8C0A7} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_13906
SearchScopes: HKU\S-1-5-21-1244017325-3987402715-3454423037-1001 -> {A22CD8A4-2284-4AE2-8902-3A991484C5B5} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_13906
SearchScopes: HKU\S-1-5-21-1244017325-3987402715-3454423037-1001 -> {BEF4CC88-2463-448F-A3B5-ECE7638F2CE7} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_13906
SearchScopes: HKU\S-1-5-21-1244017325-3987402715-3454423037-1001 -> {D24389B9-74B3-4B9C-83F2-982C117068F2} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_13906
SearchScopes: HKU\S-1-5-21-1244017325-3987402715-3454423037-1001 -> {E299875A-F013-42FA-A241-4C2722469B5D} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2017-09-12] (Microsoft Corporation -> Microsoft Corporation)
BHO: SMART Notebook Download Utility -> {67BCF957-85FC-4036-8DC4-D4D80E00A77B} -> C:\Program Files (x86)\SMART Technologies\Notebook Interactive Viewer\Win64\NotebookPlugin.dll [2012-07-06] (SMART Technologies ULC -> SMART Technologies ULC.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_231\bin\ssv.dll [2019-12-22] (Oracle America, Inc. -> Oracle Corporation)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2020-11-21] (McAfee, LLC -> McAfee, LLC)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2017-02-23] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_231\bin\jp2ssv.dll [2019-12-22] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2017-09-12] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: SMART Notebook Download Utility -> {67BCF957-85FC-4036-8DC4-D4D80E00A77B} -> C:\Program Files (x86)\SMART Technologies\Notebook Interactive Viewer\Win32\NotebookPlugin.dll [2012-07-06] (SMART Technologies ULC -> SMART Technologies ULC.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2020-11-21] (McAfee, LLC -> McAfee, LLC)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2017-02-23] (Microsoft Corporation -> Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2020-12-03 07:48 - 000003566 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 down.baidu2016.com
127.0.0.1 123.sogou.com
127.0.0.1 www.czzsyzgm.com
127.0.0.1 www.czzsyzxl.com
127.0.0.1 union.baidu2019.com
0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 api.recommendedsw.com
0.0.0.0 rp.yefeneri2.com
0.0.0.0 os.yefeneri2.com
0.0.0.0 os2.yefeneri2.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
0.0.0.0 cdn.msdwnld.com
0.0.0.0 cdn.mypcbackup.com

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\EgisTec MyWinLocker\x64;C:\Program Files (x86)\EgisTec MyWinLocker\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\rodinkasebestovi\Desktop\Martin\Windows_Final_3840p_v10_opt.png
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "boinctray"
HKLM\...\StartupApproved\Run: => "boincmgr"
HKLM\...\StartupApproved\Run: => "Norton Online Backup"
HKLM\...\StartupApproved\Run32: => "SwitchBoard"
HKLM\...\StartupApproved\Run32: => "AdobeCS5ServiceManager"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "seznam-listicka-distribuce"
HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "SecurityHealth"
HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\StartupApproved\Run: => "Facebook Update"
HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\StartupApproved\Run: => "cz.seznam.software.autoupdate"
HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\StartupApproved\Run: => "cz.seznam.software.szndesktop"
HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\StartupApproved\Run: => "DAEMON Tools Lite"
HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\StartupApproved\Run: => "GoogleDriveSync"
HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\StartupApproved\Run: => "World of Tanks"
HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\StartupApproved\Run: => "Gaijin.Net Agent"
HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\StartupApproved\Run: => "Skype for Desktop"
HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\StartupApproved\Run: => "Gaijin.Net Updater"
HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\StartupApproved\Run: => "Google Update"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{E0ACF4F2-CDFF-4041-8DC2-F1DC01FCF5EE}C:\program files (x86)\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe] => (Allow) C:\program files (x86)\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe => No File
FirewallRules: [TCP Query User{C9CBCC24-E407-4820-A463-09EC96353E59}C:\program files (x86)\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe] => (Allow) C:\program files (x86)\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe => No File
FirewallRules: [{0953BA62-71A2-4935-B6A2-79530948E906}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fishing Planet\FishingPlanet.exe () [File not signed]
FirewallRules: [{7E909AD1-1738-46C1-884C-6A9FB7521CAF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fishing Planet\FishingPlanet.exe () [File not signed]
FirewallRules: [{16B6037E-665F-4C32-ACD0-037EF86AF05A}] => (Allow) LPort=8318
FirewallRules: [{1DC93790-8F98-4542-9470-1B89140CF9A1}] => (Allow) C:\Users\rodinkasebestovi\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{F2583F69-4029-4FF5-B9DC-CA663CB0AA89}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{D222AFC6-4962-4B66-AC1A-EE32588035B2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{368E2DA9-B807-4CE7-8B9D-0DAA210094C4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{9BD99B07-1F33-4A7B-92A4-BEE6CBE6175F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{8BBE389D-FA7E-44CE-BCC6-8C4EB376E473}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{A5B7BB11-8589-4C3C-B075-BD0D2B2AD832}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{9EFF2FBA-5916-452B-8113-B630ED0A90B4}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{5246416C-45B9-44CF-A40E-B5D7EC9AC12C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{360A5C10-6311-416F-A8BE-D5A5CC239622}] => (Allow) C:\Program Files\Counter-Strike Global Offensive\csgo.exe () [File not signed]
FirewallRules: [{CB5619DE-B506-4216-B5D3-B8D926188A51}] => (Allow) C:\Program Files\Counter-Strike Global Offensive\csgo.exe () [File not signed]
FirewallRules: [{19E74A66-1C27-4AB9-B779-40819607832B}] => (Allow) C:\Program Files\Counter-Strike Global Offensive\Run_CSGO.exe (IP Rainskiy Dmitriy Valeryevich -> SE7EN Solutions)
FirewallRules: [{2D5CBC39-D7A0-49D7-87A9-5C058911E055}] => (Allow) C:\Program Files\Counter-Strike Global Offensive\Run_CSGO.exe (IP Rainskiy Dmitriy Valeryevich -> SE7EN Solutions)
FirewallRules: [{0360C7BB-44D0-4BFB-A90C-02F00FFE2482}] => (Allow) C:\Program Files\Counter-Strike Global Offensive\7launcher\tools\steamcmd\steamcmd.exe (Valve -> Valve Corporation)
FirewallRules: [{4E55E42E-442E-443F-B114-A5802D6DC793}] => (Allow) C:\Program Files\Counter-Strike Global Offensive\7launcher\tools\steamcmd\steamcmd.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{32B2F621-448E-46F9-8A46-98EA8676235D}C:\users\rodinkasebestovi\appdata\local\warthunder\win64\aces.exe] => (Block) C:\users\rodinkasebestovi\appdata\local\warthunder\win64\aces.exe => No File
FirewallRules: [TCP Query User{64F93205-39C0-4148-B082-05054BACE483}C:\users\rodinkasebestovi\appdata\local\warthunder\win64\aces.exe] => (Block) C:\users\rodinkasebestovi\appdata\local\warthunder\win64\aces.exe => No File
FirewallRules: [UDP Query User{79BA0192-9AFF-4A23-87E7-82DA3E287419}C:\users\rodinkasebestovi\appdata\local\warthunder\launcher.exe] => (Allow) C:\users\rodinkasebestovi\appdata\local\warthunder\launcher.exe => No File
FirewallRules: [TCP Query User{DD39C1C1-9792-4FFF-B12C-0A4FD0496493}C:\users\rodinkasebestovi\appdata\local\warthunder\launcher.exe] => (Allow) C:\users\rodinkasebestovi\appdata\local\warthunder\launcher.exe => No File
FirewallRules: [{8B3A816D-CF17-43C5-A32B-8B1FDA00CCF2}] => (Allow) C:\Program Files (x86)\Microsoft Games\Rise of Nations\thrones.exe (Big Huge Games, Inc.) [File not signed]
FirewallRules: [{8E61A6B1-F3D9-4D1D-A274-1B51E560864D}] => (Allow) C:\Program Files (x86)\Microsoft Games\Rise of Nations\thrones.exe (Big Huge Games, Inc.) [File not signed]
FirewallRules: [{C994B0D1-6735-446C-B38D-EAC3F25AB399}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{D076A4D5-DC0E-415C-9EF7-32D3D79EDEDD}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{FA60C04F-DE70-434D-A273-715CC57C5AE5}] => (Allow) C:\Users\rodinkasebestovi\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe (Skype Technologies SA -> Skype Limited)
FirewallRules: [{2BC92AE7-7865-4425-A698-38FAE0491A5E}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{06DC3720-C90C-4AA9-9736-4CE6B788441F}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{DBF35025-031F-4BC2-9310-3F4C0836815F}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe (Acer Incorporated -> acer)
FirewallRules: [{5C86F2D8-CABF-4227-93F4-81FA01731827}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe (Acer Incorporated -> acer)
FirewallRules: [{C289566D-10AE-421D-A851-AFD3FDEFFF42}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe (Acer Incorporated -> acer)
FirewallRules: [{A103C16E-B3BD-46B2-90C8-4D1B3E035B9E}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe (Acer Incorporated -> acer)
FirewallRules: [{57D47D93-A835-47DB-90F8-5F70DBB93A21}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK21\Video\VideoPlayer.exe (CyberLink -> )
FirewallRules: [{EBBA697C-9D52-4B40-8F47-1979C532E76A}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe (Acer Incorporated -> acer)
FirewallRules: [{A841006E-CB2B-4791-9990-42FC4ED511C3}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe (Acer Incorporated -> acer)
FirewallRules: [{A589C1F4-D0B1-4050-A330-65B970F06B4F}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe (Acer Incorporated -> acer)
FirewallRules: [{34870069-1393-448A-9CD5-775204499F26}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe (Acer Incorporated -> acer)
FirewallRules: [{6FD7340D-4E98-472B-8310-773715E2269D}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\ccd.exe (Acer Incorporated -> Acer Cloud Technology)
FirewallRules: [{DDCAA07C-405A-4913-B7B6-73518F0C7F68}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\ccd.exe (Acer Incorporated -> Acer Cloud Technology)
FirewallRules: [{416B09A3-CE0B-4486-A9A9-80D744FDFFCE}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2B7A28D9-34DF-45BA-AFD4-75FB6E92AED8}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{78699D4D-41F7-41B8-97D8-678FBDB7BDB4}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{21B3F35D-B303-44C7-B413-8449C142DF65}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{07DD9825-12F2-4FEA-82FF-3E9FC1DFFC11}C:\program files (x86)\repacky by tomi2k9\wolfenstein new order\wolfneworder_x64.exe] => (Block) C:\program files (x86)\repacky by tomi2k9\wolfenstein new order\wolfneworder_x64.exe => No File
FirewallRules: [UDP Query User{24CA6BD6-D669-434D-9F71-4DAF5F64165A}C:\program files (x86)\repacky by tomi2k9\wolfenstein new order\wolfneworder_x64.exe] => (Block) C:\program files (x86)\repacky by tomi2k9\wolfenstein new order\wolfneworder_x64.exe => No File
FirewallRules: [{D0C4FD85-3DA1-4E01-98A7-D644F7B31F58}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe () [File not signed]
FirewallRules: [{1B4B106E-1AA8-47DC-9B67-DEB5A8271DA9}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe () [File not signed]
FirewallRules: [{13341499-4A1A-47FF-8DCB-B6DE2788F52E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F308BDF0-B490-424C-88EC-0335FF0589B9}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{77386E66-011B-4C83-9237-D89333062F91}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{15BF6A2B-C0BE-4A96-B3A3-1C7FE8B64B76}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{1C042FEA-3801-4DFE-A379-6926412AA27D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{3D43BECE-1FD7-4726-8103-5E80793BDBB8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [TCP Query User{05314B63-691C-4DB9-B243-7DA6E2BC7E9C}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Block) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{97DBC4DD-458E-4ECF-9070-B32485EC7C45}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Block) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{EA219FA1-0817-4310-B928-B4E2B177E5BA}C:\users\rodinkasebestovi\desktop\martin\hry\nfsw.exe] => (Allow) C:\users\rodinkasebestovi\desktop\martin\hry\nfsw.exe => No File
FirewallRules: [UDP Query User{99AFDC1D-6CDB-49A1-9711-CB891BF2BE01}C:\users\rodinkasebestovi\desktop\martin\hry\nfsw.exe] => (Allow) C:\users\rodinkasebestovi\desktop\martin\hry\nfsw.exe => No File
FirewallRules: [TCP Query User{7BC323ED-0F2C-4446-8983-05A9667FD2D8}C:\nfs world\nfsw.exe] => (Allow) C:\nfs world\nfsw.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [UDP Query User{6AB394E6-B30A-420D-A2DE-D7B74867A8E1}C:\nfs world\nfsw.exe] => (Allow) C:\nfs world\nfsw.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [TCP Query User{A865311A-2BAA-44AE-828E-F5A6CBDF2BE7}C:\users\rodinkasebestovi\appdata\roaming\twitch studio\bin\twitchstudioagent.exe] => (Allow) C:\users\rodinkasebestovi\appdata\roaming\twitch studio\bin\twitchstudioagent.exe (Twitch Interactive, Inc. -> )
FirewallRules: [UDP Query User{15D6F93F-4E07-4CBD-8F7A-3E6C9A8B117E}C:\users\rodinkasebestovi\appdata\roaming\twitch studio\bin\twitchstudioagent.exe] => (Allow) C:\users\rodinkasebestovi\appdata\roaming\twitch studio\bin\twitchstudioagent.exe (Twitch Interactive, Inc. -> )
FirewallRules: [{C68B473F-2BCA-4DC1-96FF-DC1AF14E9A2C}] => (Allow) D:\SteamLibrary\steamapps\common\Apex Legends\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{8E86AF21-E8C0-4CE9-9F44-8E0BAAB7C097}] => (Allow) D:\SteamLibrary\steamapps\common\Apex Legends\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{F38ABCA4-EE36-4127-88EE-BC6A36E52986}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CDFCE0D2-14A1-40F9-A485-7835ED585C9D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D31BF006-D5DA-4378-AD5C-ECCAFCA690BB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E2250785-C4E9-4DA5-9FBE-E9ADB23B6928}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{827B00C3-D950-4BC4-8B0C-594AD39A40AF}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

16-11-2020 20:44:03 Naplánovaný kontrolní bod
25-11-2020 21:12:54 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (12/03/2020 08:54:26 AM) (Source: COM) (EventID: 10035) (User: )
Description: Řadič standardu COM nebyl schopen opravit nesoulad mezi IID {618736E0-3C3D-11CF-810C-00AA00389B71} poskytovaným serverem a IID {00020400-0000-0000-C000-000000000046}, které požaduje klient, s CLSID identifikátorem ovladače {00EB5084-29B8-771F-E902-0A778450EB00}. Kód chybového hlášení byl 0x800401fd.

Error: (12/01/2020 06:40:18 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na DATA (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (12/01/2020 06:40:07 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Acer (C:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (11/30/2020 10:22:00 AM) (Source: COM) (EventID: 10035) (User: )
Description: Řadič standardu COM nebyl schopen opravit nesoulad mezi IID {618736E0-3C3D-11CF-810C-00AA00389B71} poskytovaným serverem a IID {00020400-0000-0000-C000-000000000046}, které požaduje klient, s CLSID identifikátorem ovladače {75C9B1E9-E2A0-0136-10DF-C9755BB2231B}. Kód chybového hlášení byl 0x800401fd.

Error: (11/30/2020 08:33:50 AM) (Source: COM) (EventID: 10035) (User: )
Description: Řadič standardu COM nebyl schopen opravit nesoulad mezi IID {618736E0-3C3D-11CF-810C-00AA00389B71} poskytovaným serverem a IID {00020400-0000-0000-C000-000000000046}, které požaduje klient, s CLSID identifikátorem ovladače {75DB29B8-84D8-0136-8450-EB00B829DB75}. Kód chybového hlášení byl 0x80010114.

Error: (11/30/2020 08:33:50 AM) (Source: COM) (EventID: 10035) (User: )
Description: Řadič standardu COM nebyl schopen opravit nesoulad mezi IID {618736E0-3C3D-11CF-810C-00AA00389B71} poskytovaným serverem a IID {00020400-0000-0000-C000-000000000046}, které požaduje klient, s CLSID identifikátorem ovladače {0000001D-0000-0023-4B00-000000003B01}. Kód chybového hlášení byl 0x80010114.

Error: (11/28/2020 05:31:41 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (11/28/2020 05:31:41 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]


System errors:
=============
Error: (12/03/2020 11:23:43 AM) (Source: DCOM) (EventID: 10001) (User: SEBESTOVI)
Description: Nelze spustit server DCOM: {9AA46009-3CE0-458A-A354-715610A075E6} jako Není k dispozici/Není k dispozici. Došlo k chybě:
2147943140
při provádění příkazu:
C:\WINDOWS\System32\rundll32.exe C:\WINDOWS\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

Error: (12/03/2020 11:23:43 AM) (Source: DCOM) (EventID: 10001) (User: SEBESTOVI)
Description: Nelze spustit server DCOM: {9AA46009-3CE0-458A-A354-715610A075E6} jako Není k dispozici/Není k dispozici. Došlo k chybě:
2147943140
při provádění příkazu:
C:\WINDOWS\System32\rundll32.exe C:\WINDOWS\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

Error: (12/03/2020 11:23:43 AM) (Source: DCOM) (EventID: 10001) (User: SEBESTOVI)
Description: Nelze spustit server DCOM: {9AA46009-3CE0-458A-A354-715610A075E6} jako Není k dispozici/Není k dispozici. Došlo k chybě:
2147943140
při provádění příkazu:
C:\WINDOWS\System32\rundll32.exe C:\WINDOWS\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

Error: (12/03/2020 11:23:41 AM) (Source: DCOM) (EventID: 10001) (User: SEBESTOVI)
Description: Nelze spustit server DCOM: {9AA46009-3CE0-458A-A354-715610A075E6} jako Není k dispozici/Není k dispozici. Došlo k chybě:
2147943140
při provádění příkazu:
C:\WINDOWS\System32\rundll32.exe C:\WINDOWS\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

Error: (12/03/2020 11:23:41 AM) (Source: DCOM) (EventID: 10001) (User: SEBESTOVI)
Description: Nelze spustit server DCOM: {9AA46009-3CE0-458A-A354-715610A075E6} jako Není k dispozici/Není k dispozici. Došlo k chybě:
2147943140
při provádění příkazu:
C:\WINDOWS\System32\rundll32.exe C:\WINDOWS\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

Error: (12/03/2020 11:20:54 AM) (Source: DCOM) (EventID: 10001) (User: SEBESTOVI)
Description: Nelze spustit server DCOM: {9AA46009-3CE0-458A-A354-715610A075E6} jako Není k dispozici/Není k dispozici. Došlo k chybě:
2147943140
při provádění příkazu:
C:\WINDOWS\System32\rundll32.exe C:\WINDOWS\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

Error: (12/03/2020 11:20:54 AM) (Source: DCOM) (EventID: 10001) (User: SEBESTOVI)
Description: Nelze spustit server DCOM: {9AA46009-3CE0-458A-A354-715610A075E6} jako Není k dispozici/Není k dispozici. Došlo k chybě:
2147943140
při provádění příkazu:
C:\WINDOWS\System32\rundll32.exe C:\WINDOWS\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

Error: (12/03/2020 11:19:40 AM) (Source: DCOM) (EventID: 10001) (User: SEBESTOVI)
Description: Nelze spustit server DCOM: {9AA46009-3CE0-458A-A354-715610A075E6} jako Není k dispozici/Není k dispozici. Došlo k chybě:
2147943140
při provádění příkazu:
C:\WINDOWS\System32\rundll32.exe C:\WINDOWS\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding


CodeIntegrity:
===================================

Date: 2020-12-03 09:52:13.1210000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-12-03 09:51:58.8320000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-12-03 09:51:56.9920000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-12-03 09:51:52.8910000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-12-03 09:47:01.3330000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-12-03 09:47:01.0340000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-12-03 09:47:00.6820000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-12-03 09:46:58.5360000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. P11-A3 10/18/2012
Motherboard: Acer Aspire M1935
Processor: Intel(R) Core(TM) i3-3220 CPU @ 3.30GHz
Percentage of memory in use: 67%
Total physical RAM: 8128.97 MB
Available physical RAM: 2673.02 MB
Total Virtual: 16832.97 MB
Available Virtual: 10319.32 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:452.59 GB) (Free:60.73 GB) NTFS
Drive d: (DATA) (Fixed) (Total:453.61 GB) (Free:287.53 GB) NTFS

\\?\Volume{0c12a3d3-f5c2-421e-bbc8-35ee36616cf2}\ (Recovery) (Fixed) (Total:0.39 GB) (Free:0.12 GB) NTFS
\\?\Volume{fa949485-29c5-4773-bfb1-7b63c2a2b434}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS
\\?\Volume{375748e3-8709-4c10-8f72-81c561a3bb21}\ (Push Button Reset) (Fixed) (Total:24 GB) (Free:7.59 GB) NTFS
\\?\Volume{bf0fd382-fa9f-42ec-b773-5b1c012ee9b8}\ (ESP) (Fixed) (Total:0.29 GB) (Free:0.26 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: BB858C2C)

Partition: GPT.

==================== End of Addition.txt =======================


--

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-12-2020
Ran by rodinkasebestovi (administrator) on SEBESTOVI (Acer Aspire M1935) (03-12-2020 11:18:34)
Running from C:\Users\rodinkasebestovi\Downloads
Loaded Profiles: rodinkasebestovi
Platform: Windows 10 Home Version 2004 19041.630 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\aswEngSrv.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\avgToolsSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe <3>
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe
(Byte Technologies LLC -> Byte Technologies LLC.) C:\Program Files\ByteFence\rtop\bin\rtop_bg.exe
(Byte Technologies LLC -> Byte Technologies LLC.) C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe
(Discord Inc. -> Discord Inc.) C:\Users\rodinkasebestovi\AppData\Local\Discord\app-0.0.308\Discord.exe <6>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler64.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\mcafee\WebAdvisor\uihost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2011.11613.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2009.4.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <11>
(Nero AG -> Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Realsil Microelectronics Inc.) [File not signed] C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Shanghai Microvirt Software Technology Co., Ltd. -> ) C:\Program Files (x86)\Microvirt\MEmu\MemuService.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer.exe <3>
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wargamingerrormonitor.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wgc.exe
(WildTangent Inc -> ) C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12921488 2012-07-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [165000 2020-11-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [boinctray] => C:\Program Files\BOINC\boinctray.exe [69952 2018-01-19] (Grid Republic (COMPUTATIONAL CHARITY PROJECT INC) -> Charity Engine)
HKLM\...\Run: [boincmgr] => C:\Program Files\BOINC\charityengine.exe [8662848 2018-01-19] (Grid Republic (COMPUTATIONAL CHARITY PROJECT INC) -> Charity Engine)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] (Seznam.cz, a.s. -> )
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645648 2019-10-05] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\rodinkasebestovi\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\rodinkasebestovi\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [92664 2013-04-12] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [25638872 2018-04-23] (Google Inc -> Google)
HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files (x86)\DAEMON Tools Lite\DTAgent.exe [4179288 2015-11-30] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2481016 2020-11-24] (Wargaming.net Limited -> Wargaming.net)
HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\Run: [Discord] => C:\Users\rodinkasebestovi\AppData\Local\Discord\app-0.0.308\Discord.exe [91023672 2020-09-10] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3424032 2020-10-29] (Valve -> Valve Corporation)
HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\...\Run: [Google Update] => C:\Users\rodinkasebestovi\AppData\Local\Google\Update\1.3.36.32\GoogleUpdateCore.exe [219592 2020-10-15] (Google LLC -> Google LLC)
HKLM\...\Windows x64\Print Processors\Canon MP140 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPD8R.DLL [27648 2007-03-19] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.88\Installer\chrmstp.exe [2020-12-02] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {02514443-A5E5-41D5-AEC5-409B76127D47} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\Antivirus Emergency Update" /ENABLE
Task: {02514443-A5E5-41D5-AEC5-409B76127D47} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\BlueStacksHelper" /ENABLE
Task: {02514443-A5E5-41D5-AEC5-409B76127D47} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\CCleaner Update" /ENABLE
Task: {02514443-A5E5-41D5-AEC5-409B76127D47} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\CCleanerSkipUAC" /ENABLE
Task: {02514443-A5E5-41D5-AEC5-409B76127D47} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\DeviceDetector" /ENABLE
Task: {02514443-A5E5-41D5-AEC5-409B76127D47} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {02514443-A5E5-41D5-AEC5-409B76127D47} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
Task: {02514443-A5E5-41D5-AEC5-409B76127D47} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\GoogleUpdateTaskUserS-1-5-21-1244017325-3987402715-3454423037-1001Core" /ENABLE
Task: {02514443-A5E5-41D5-AEC5-409B76127D47} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\GoogleUpdateTaskUserS-1-5-21-1244017325-3987402715-3454423037-1001UA" /ENABLE
Task: {02514443-A5E5-41D5-AEC5-409B76127D47} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore" /ENABLE
Task: {02514443-A5E5-41D5-AEC5-409B76127D47} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(11): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineUA" /ENABLE
Task: {02514443-A5E5-41D5-AEC5-409B76127D47} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(12): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-1244017325-3987402715-3454423037-1001" /ENABLE
Task: {02514443-A5E5-41D5-AEC5-409B76127D47} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(13): schtasks.exe -> /Change /TN "\Sstt2-TaskPlan" /ENABLE
Task: {02514443-A5E5-41D5-AEC5-409B76127D47} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(14): schtasks.exe -> /Change /TN "\User_Feed_Synchronization-{6A9C517E-DC9A-4C21-9D9B-97839B1A7CC3}" /ENABLE
Task: {02514443-A5E5-41D5-AEC5-409B76127D47} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(15): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {077379C3-F6F4-44C1-9500-09377759C51C} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe
Task: {0DC0DAD2-F84F-429D-B085-411AE7CDE2D5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {1D84DCDA-C409-40EA-8509-5F79DDA00F27} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1244017325-3987402715-3454423037-1001Core => C:\Users\rodinkasebestovi\AppData\Local\Google\Update\GoogleUpdate.exe [156104 2020-04-22] (Google LLC -> Google LLC)
Task: {1DFB426B-9D70-45DE-B1E9-007A73702D61} - System32\Tasks\Sstt2-TaskPlan => C:\Program Files\Gaming\YMS 3017\YMS 3017.EXE
Task: {215D45E0-E924-4546-B7C5-0851D87DB176} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1244017325-3987402715-3454423037-1001UA => C:\Users\rodinkasebestovi\AppData\Local\Google\Update\GoogleUpdate.exe [156104 2020-04-22] (Google LLC -> Google LLC)
Task: {287EB61E-849D-44F1-BF41-56B2A8081F95} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {2CD3E04E-AC26-4DD5-871D-7A7D9A31E79D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {2DD183D2-8A7B-4C07-907C-59611F74DF78} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-11-25] (Google Inc -> Google Inc.)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {37CA337D-F22F-4282-BC1F-499C3B942C34} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-11-25] (Google Inc -> Google Inc.)
Task: {4145606B-AE45-4C5D-ACBB-6C55CBBC3D07} - System32\Tasks\EgisUpdate => C:\Program Files\EgisTec IPS\EgisUpdate.exe [202832 2012-07-12] (EGIS TECHNOLOGY INC. -> Egis Technology Inc.)
Task: {47D5971B-9449-4914-A73F-89D0E96CB0D5} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1773192 2020-09-18] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {4B03D51E-48E3-4168-BDC3-466B3DB04209} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {535B0DE2-4B12-4D75-8CFC-B3B19F1CF014} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [39568 2012-06-22] (Acer Incorporated -> )
Task: {63700C6F-EA33-4393-8289-B482449CE6A5} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [990320 2012-07-04] (CyberLink -> CyberLink)
Task: {63E45310-37A4-48F5-96F1-521D3FAF83AB} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [3331216 2012-08-24] (Acer Incorporated -> )
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {7A7555DE-2E2C-4F8C-9CEA-86E9456C54F7} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {7B857988-3067-4E13-8891-998F430972F7} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {88CBE776-A11E-4EDB-B6F6-C1FCB6E738E2} - System32\Tasks\Agent Activation Runtime\S-1-5-21-1244017325-3987402715-3454423037-1001 => C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe [13312 2020-10-14] (Microsoft Windows -> )
Task: {93AAA027-E8E0-428A-8EFE-DE0F7270F11A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-04-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {9768ABD2-EB67-498E-A669-15A536AF817A} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {ADB318DF-5612-4957-851E-44D91C22CC08} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [5294736 2012-08-23] (Acer Incorporated -> Acer Incorporated)
Task: {C415FE0E-DDCB-44E0-A459-B9164B72424B} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {CDD7C086-3583-4259-B2B7-A36C68AA9FA9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {CE8618EE-75D3-4AA9-A594-119EEC00D84B} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [4665480 2020-11-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {D5811BD5-3B3A-4129-B503-F872119B66C6} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe <==== ATTENTION
Task: {E4813DB8-8F9A-4576-972A-6DEC66CFA0B5} - System32\Tasks\PMMUpdate => C:\Program Files\EgisTec IPS\PMMUpdate.exe [467024 2012-07-12] (EGIS TECHNOLOGY INC. -> Egis Technology Inc.)
Task: {E8E7D636-6B21-436B-A1A2-A728C8BF4787} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [670928 2020-11-21] (Mozilla Corporation -> Mozilla Foundation)
Task: {E944AE98-0341-42E6-A809-F66BD9BAF31F} - System32\Tasks\Hotkey Utility => C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [553616 2012-07-06] (Acer Incorporated -> Acer Incorporated)
Task: {FF13C414-A940-4E30-9A30-1225689809FD} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16509040 2019-04-12] (Piriform Software Ltd -> Piriform Software Ltd)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{3781d16a-bc32-403b-b9e6-483734b228ec}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{a79d757c-dded-4c37-a8cf-2f7bf90433fe}: [DhcpNameServer] 192.168.0.1

Edge:
======
Edge Notifications: HKU\S-1-5-21-1244017325-3987402715-3454423037-1001 -> hxxps://online.freemusicdownloads.world
Edge Profile: C:\Users\rodinkasebestovi\AppData\Local\Microsoft\Edge\User Data\Default [2020-11-30]
Edge Notifications: Default -> hxxps://online.freemusicdownloads.world
Edge HomePage: Default -> hxxp://www.seznam.cz/
Edge StartupUrls: Default -> "hxxps://google.cz/"

FireFox:
========
FF DefaultProfile: upydx2yj.default
FF ProfilePath: C:\Users\rodinkasebestovi\AppData\Roaming\Mozilla\Firefox\Profiles\upydx2yj.default [2020-12-03]
FF Notifications: Mozilla\Firefox\Profiles\upydx2yj.default -> hxxps://www3a.samcunningham.pro; hxxps://p4.spufficerrea.club
FF HomepageOverride: Mozilla\Firefox\Profiles\upydx2yj.default -> Disabled: _brMembers_@free.yourtemplatefinder.com
FF NewTabOverride: Mozilla\Firefox\Profiles\upydx2yj.default -> Enabled: {4e72d89b-8481-40ae-93d9-93d3316a5d40}
FF NewTabOverride: Mozilla\Firefox\Profiles\upydx2yj.default -> Disabled: _brMembers_@free.yourtemplatefinder.com
FF Extension: (AdBlock — best ad blocker) - C:\Users\rodinkasebestovi\AppData\Roaming\Mozilla\Firefox\Profiles\upydx2yj.default\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2020-11-20]
FF Plugin: @java.com/DTPlugin,version=11.231.2 -> C:\Program Files\Java\jre1.8.0_231\bin\dtplugin\npDeployJava1.dll [2019-12-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.231.2 -> C:\Program Files\Java\jre1.8.0_231\bin\plugin2\npjp2.dll [2019-12-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN -> VideoLAN)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-09-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-29] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-29] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN -> VideoLAN)
FF Plugin HKU\S-1-5-21-1244017325-3987402715-3454423037-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\rodinkasebestovi\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2013-11-06] (Skype Technologies SA -> Skype Limited)
FF Plugin HKU\S-1-5-21-1244017325-3987402715-3454423037-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\rodinkasebestovi\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-07-13] (Unity Technologies SF -> Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-1244017325-3987402715-3454423037-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\rodinkasebestovi\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-19] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

Chrome:
=======
CHR Profile: C:\Users\rodinkasebestovi\AppData\Local\Google\Chrome\User Data\Default [2020-12-02]
CHR Notifications: Default -> hxxps://aternos.org; hxxps://meet.google.com
CHR DefaultSearchURL: Default -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=E210CZ91105G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR Extension: (Prezentace) - C:\Users\rodinkasebestovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-11-11]
CHR Extension: (Dokumenty) - C:\Users\rodinkasebestovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-11-11]
CHR Extension: (Disk Google) - C:\Users\rodinkasebestovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25]
CHR Extension: (YouTube) - C:\Users\rodinkasebestovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-20]
CHR Extension: (Tabulky) - C:\Users\rodinkasebestovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-11-11]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\rodinkasebestovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2020-11-17]
CHR Extension: (Dokumenty Google offline) - C:\Users\rodinkasebestovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-18]
CHR Extension: (Skype) - C:\Users\rodinkasebestovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-12-23]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\rodinkasebestovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2020-10-12]
CHR Extension: (AVG SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\rodinkasebestovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2020-08-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\rodinkasebestovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-08]
CHR Extension: (Gmail) - C:\Users\rodinkasebestovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\rodinkasebestovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-18]
CHR Profile: C:\Users\rodinkasebestovi\AppData\Local\Google\Chrome\User Data\System Profile [2020-09-27]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKU\S-1-5-21-1244017325-3987402715-3454423037-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl]
CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [366232 2020-11-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Tools; C:\Program Files (x86)\AVG\Antivirus\avgToolsSvc.exe [3096712 2020-11-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe [8502208 2020-11-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AvgWscReporter; C:\Program Files (x86)\AVG\Antivirus\wsc_proxy.exe [110608 2020-11-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8577760 2019-07-24] (BattlEye Innovations e.K. -> )
R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2435728 2012-08-24] (Acer Incorporated -> Acer Incorporated)
S3 Disc Soft Lite Bus Service; C:\Program Files (x86)\DAEMON Tools Lite\DiscSoftBusService.exe [1368408 2015-11-30] (Disc Soft Ltd -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [805488 2020-11-13] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [658576 2012-08-23] (Acer Incorporated -> Acer Incorporated)
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [2451456 2012-07-13] (Realsil Microelectronics Inc.) [File not signed]
R3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [955656 2020-11-21] (McAfee, LLC -> McAfee, LLC)
R2 MEmuSVC; C:\Program Files (x86)\Microvirt\MEmu\MemuService.exe [85304 2019-07-02] (Shanghai Microvirt Software Technology Co., Ltd. -> )
R2 rtop; c:\program files\bytefence\rtop\bin\rtop_svc.exe [297288 2020-04-22] (Byte Technologies LLC -> Byte Technologies LLC.) <==== ATTENTION
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11665240 2019-02-26] (TeamViewer GmbH -> TeamViewer GmbH)
S3 TwitchService; C:\Program Files\Common Files\Twitch\TwitchService.exe [334208 2020-11-13] (Twitch Interactive, Inc. -> )
S3 uncheater_bgl; C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe [2097008 2020-06-15] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WildTangentHelper; C:\Program Files (x86)\WildTangent Games\Integration\WildTangentHelperService.exe [1640240 2020-10-05] (WildTangent Inc -> )
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [206472 2020-11-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [332432 2020-11-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [247952 2020-11-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [97424 2020-11-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [16832 2020-11-26] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [42848 2020-11-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [176808 2020-11-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [521816 2020-11-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [109352 2020-11-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [84928 2020-11-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [851680 2020-11-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [469896 2020-11-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [217408 2020-11-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [326488 2020-11-26] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-03-26] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2015-12-23] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [46392 2015-12-23] (Disc Soft Ltd -> Disc Soft Ltd)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-02-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [274416 2020-12-03] (Malwarebytes Corporation -> Malwarebytes)
R1 MEmuDrv; C:\WINDOWS\system32\DRIVERS\MEmuDrv.sys [319192 2019-09-21] (Shanghai Microvirt Software Technology Co., Ltd. -> Maiwei Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 tesrsdt; C:\WINDOWS\system32\drivers\tesrsdt.sys [812208 2020-06-15] (Tencent Technology(Shenzhen) Company Limited -> TENCENT)
S3 UniSafe; C:\WINDOWS\system32\drivers\UniSafe.sys [581912 2020-06-15] (Tencent Technology(Shenzhen) Company Limited -> TENCENT)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [74552 2020-07-07] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-12-03 11:18 - 2020-12-03 11:20 - 000034283 _____ C:\Users\rodinkasebestovi\Downloads\FRST.txt
2020-12-03 11:17 - 2020-12-03 11:17 - 002288640 _____ (Farbar) C:\Users\rodinkasebestovi\Downloads\FRST64.exe
2020-12-03 09:37 - 2020-12-03 09:37 - 000274416 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-12-02 11:20 - 2002-08-29 17:33 - 000319488 _____ () C:\WINDOWS\SysWOW64\MafiaSetup.exe
2020-11-28 16:58 - 2020-11-28 17:06 - 176424503 _____ C:\Users\rodinkasebestovi\Desktop\2020-11-28 16-58-33.mkv
2020-11-26 16:13 - 2020-11-26 16:13 - 000340104 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2020-11-26 16:13 - 2020-11-26 16:13 - 000217408 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys
2020-11-25 19:22 - 2020-11-25 19:23 - 000000000 ____D C:\Users\rodinkasebestovi\Desktop\online hodina blbosti
2020-11-24 19:49 - 2020-11-29 15:27 - 000000000 ____D C:\Users\rodinkasebestovi\AppData\Roaming\obs-studio
2020-11-24 19:45 - 2020-11-24 19:45 - 000000768 _____ C:\Users\Public\Desktop\OBS Studio.lnk
2020-11-24 19:45 - 2020-11-24 19:45 - 000000000 ____D C:\ProgramData\obs-studio-hook
2020-11-24 19:45 - 2020-11-24 19:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2020-11-24 13:55 - 2020-11-24 16:29 - 001108772 _____ C:\Users\rodinkasebestovi\Desktop\20201124_1622_usa-A19_T2_lt_19_monastery.wotreplay
2020-11-21 11:58 - 2020-11-21 11:58 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2020-11-19 13:21 - 2020-11-19 13:21 - 001522129 _____ C:\Users\rodinkasebestovi\Downloads\Tereza Šebestová - Pracovní list dějepis.pdf
2020-11-18 15:14 - 2020-11-18 15:14 - 000000000 ____D C:\Users\rodinkasebestovi\AppData\Local\TeamSpeak 3
2020-11-17 12:07 - 2020-11-17 12:07 - 000024887 _____ C:\Users\rodinkasebestovi\Downloads\Skam S04E07.srt
2020-11-14 21:24 - 2020-11-14 21:28 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2020-11-14 21:00 - 2020-11-14 21:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Call of Duty Modern Warfare
2020-11-14 17:30 - 2020-11-14 17:30 - 000000000 ____D C:\ProgramData\Blizzard Entertainment
2020-11-14 17:25 - 2020-11-14 21:43 - 000000000 ____D C:\Users\rodinkasebestovi\AppData\Local\Battle.net
2020-11-14 17:24 - 2020-11-14 17:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2020-11-14 17:20 - 2020-11-14 17:20 - 000000000 ____D C:\Users\rodinkasebestovi\AppData\Local\Blizzard Entertainment
2020-11-13 18:58 - 2020-11-13 18:58 - 000000000 ____D C:\Users\rodinkasebestovi\AppData\LocalLow\Kinetic Games
2020-11-13 18:21 - 2020-11-14 10:49 - 000000000 ____D C:\Users\rodinkasebestovi\Desktop\Phasmophobia
2020-11-13 15:59 - 2020-11-13 17:59 - 1058745035 _____ C:\Users\rodinkasebestovi\Downloads\PhasmophobiaNexusgames.to.rar
2020-11-13 14:04 - 2020-11-14 21:44 - 000000000 ____D C:\Users\rodinkasebestovi\AppData\Roaming\Twitch Studio
2020-11-13 14:04 - 2020-11-13 14:05 - 000000000 ____D C:\Program Files\Common Files\Twitch
2020-11-13 14:04 - 2020-11-13 14:04 - 000001182 _____ C:\Users\rodinkasebestovi\Desktop\Twitch Studio.lnk
2020-11-13 14:04 - 2020-11-13 14:04 - 000001168 _____ C:\Users\rodinkasebestovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Twitch Studio.lnk
2020-11-12 09:30 - 2020-11-12 09:30 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-11-12 09:30 - 2020-11-12 09:30 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-11-12 09:30 - 2020-11-12 09:30 - 000152576 _____ C:\WINDOWS\system32\EoAExperiences.exe
2020-11-12 09:30 - 2020-11-12 09:30 - 000009265 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-11-12 09:29 - 2020-11-12 09:29 - 000197632 _____ C:\WINDOWS\system32\IHDS.dll
2020-11-09 21:39 - 2020-11-18 15:14 - 000000000 ____D C:\team speak 3
2020-11-09 21:38 - 2020-11-18 15:15 - 000000000 ____D C:\Users\rodinkasebestovi\AppData\Roaming\TS3Client
2020-11-09 21:37 - 2020-11-09 21:37 - 000000746 _____ C:\Users\rodinkasebestovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-12-03 11:19 - 2019-03-02 19:54 - 000000000 ____D C:\FRST
2020-12-03 11:17 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-12-03 11:10 - 2020-09-06 19:58 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-12-03 11:04 - 2020-03-01 14:42 - 000000000 ____D C:\Users\rodinkasebestovi\AppData\Roaming\discord
2020-12-03 08:50 - 2020-03-08 17:11 - 000000000 ____D C:\Program Files (x86)\Steam
2020-12-03 08:48 - 2014-02-07 15:07 - 000000000 ____D C:\ProgramData\Mozilla
2020-12-03 08:47 - 2019-03-02 22:23 - 000000000 ____D C:\Users\rodinkasebestovi\AppData\LocalLow\Mozilla
2020-12-03 08:33 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-12-03 08:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-12-03 08:13 - 2016-06-16 17:31 - 000000000 ____D C:\ProgramData\Avg
2020-12-03 08:05 - 2020-09-06 20:29 - 000003660 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-1244017325-3987402715-3454423037-1001UA
2020-12-03 08:05 - 2020-09-06 20:29 - 000003572 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-12-03 08:05 - 2020-09-06 20:29 - 000003460 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-12-03 08:05 - 2020-09-06 20:29 - 000003424 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{6A9C517E-DC9A-4C21-9D9B-97839B1A7CC3}
2020-12-03 08:05 - 2020-09-06 20:29 - 000003392 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-1244017325-3987402715-3454423037-1001Core
2020-12-03 08:05 - 2020-09-06 20:29 - 000003348 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-12-03 08:05 - 2020-09-06 20:29 - 000003254 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-12-03 08:05 - 2020-09-06 20:29 - 000003236 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-12-03 08:05 - 2020-09-06 20:29 - 000003116 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2020-12-03 08:05 - 2020-09-06 20:29 - 000003026 _____ C:\WINDOWS\system32\Tasks\BlueStacksHelper
2020-12-03 08:05 - 2020-09-06 20:29 - 000002922 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1244017325-3987402715-3454423037-1001
2020-12-03 08:05 - 2020-09-06 20:29 - 000002900 _____ C:\WINDOWS\system32\Tasks\Sstt2-TaskPlan
2020-12-03 08:05 - 2020-09-06 20:29 - 000002452 _____ C:\WINDOWS\system32\Tasks\DeviceDetector
2020-12-03 08:05 - 2020-09-06 20:29 - 000002298 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-12-03 08:05 - 2020-09-06 20:29 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2020-12-03 07:48 - 2020-09-06 20:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-12-03 07:48 - 2020-09-06 19:57 - 000008192 ___SH C:\DumpStack.log.tmp
2020-12-03 07:48 - 2019-03-03 20:35 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-12-03 07:48 - 2016-10-04 21:11 - 000000000 ____D C:\ProgramData\NVIDIA
2020-12-02 22:46 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-12-02 20:54 - 2017-04-20 08:13 - 000002305 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-12-02 20:54 - 2017-04-20 08:13 - 000002264 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-12-02 17:39 - 2020-07-17 11:06 - 000002423 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-12-02 17:39 - 2020-07-17 11:06 - 000002261 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-12-02 11:17 - 2020-04-22 09:48 - 000000000 ____D C:\Users\rodinkasebestovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MEmu
2020-12-01 12:06 - 2020-10-07 12:16 - 000000000 ____D C:\Users\rodinkasebestovi\Desktop\Distanční výuka
2020-11-30 20:08 - 2017-12-13 23:04 - 000000000 ____D C:\Users\rodinkasebestovi\AppData\Local\Packages
2020-11-30 18:47 - 2020-09-10 15:05 - 000000000 ____D C:\Users\rodinkasebestovi\AppData\Local\Deployment
2020-11-29 18:00 - 2016-06-20 14:39 - 000000000 ____D C:\Users\rodinkasebestovi\AppData\Roaming\vlc
2020-11-29 10:33 - 2013-12-16 21:22 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-11-29 10:29 - 2013-12-16 21:22 - 133736600 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-11-28 19:38 - 2019-08-09 20:04 - 000000000 ____D C:\Users\rodinkasebestovi\Desktop\Bloger
2020-11-28 16:56 - 2020-06-10 12:00 - 000000000 ____D C:\Users\rodinkasebestovi\Documents\Camtasia Studio
2020-11-28 16:53 - 2014-12-27 15:39 - 000000000 ___RD C:\Users\rodinkasebestovi\Desktop\Martin
2020-11-26 16:13 - 2020-10-27 11:52 - 000176808 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2020-11-26 16:13 - 2020-06-16 11:52 - 000521816 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgNetHub.sys
2020-11-26 16:13 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-11-26 16:13 - 2019-01-31 11:42 - 000332432 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys
2020-11-26 16:13 - 2019-01-30 13:44 - 000247952 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsh.sys
2020-11-26 16:13 - 2019-01-30 13:44 - 000097424 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniv.sys
2020-11-26 16:13 - 2018-10-24 14:20 - 000042848 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys
2020-11-26 16:13 - 2018-07-22 17:48 - 000016832 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgElam.sys
2020-11-26 16:13 - 2018-02-11 12:35 - 000851680 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2020-11-26 16:13 - 2018-02-11 12:35 - 000469896 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2020-11-26 16:13 - 2018-02-11 12:35 - 000326488 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2020-11-26 16:13 - 2018-02-11 12:35 - 000206472 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2020-11-26 16:13 - 2018-02-11 12:35 - 000109352 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2020-11-26 16:13 - 2018-02-11 12:35 - 000084928 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2020-11-25 23:16 - 2013-12-07 02:02 - 000000000 ____D C:\Users\rodinkasebestovi\AppData\Local\CrashDumps
2020-11-21 20:49 - 2019-03-02 22:23 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-11-21 20:49 - 2019-03-02 22:23 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-11-21 11:59 - 2020-06-24 20:36 - 000000000 ____D C:\Fraps
2020-11-21 11:58 - 2019-03-02 22:23 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-11-17 09:21 - 2020-09-06 20:17 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-11-17 09:21 - 2019-12-07 15:41 - 000716612 _____ C:\WINDOWS\system32\perfh005.dat
2020-11-17 09:21 - 2019-12-07 15:41 - 000144790 _____ C:\WINDOWS\system32\perfc005.dat
2020-11-17 09:21 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2020-11-16 20:43 - 2014-12-07 15:27 - 000000000 ____D C:\Users\rodinkasebestovi\AppData\Local\ElevatedDiagnostics
2020-11-16 18:54 - 2018-01-08 15:54 - 000000132 _____ C:\Users\rodinkasebestovi\AppData\Roaming\Adobe Formát PNG CS5 – předvolby
2020-11-13 19:34 - 2018-05-05 19:40 - 000000000 ____D C:\Users\rodinkasebestovi\AppData\Roaming\EasyAntiCheat
2020-11-13 19:34 - 2017-04-13 09:29 - 000000000 ____D C:\ProgramData\Package Cache
2020-11-13 16:10 - 2020-03-08 17:23 - 000000000 ____D C:\Users\rodinkasebestovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2020-11-13 08:04 - 2020-09-06 19:57 - 005227024 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-11-12 22:29 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-11-12 22:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-11-12 22:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-11-12 22:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2020-11-12 22:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2020-11-12 22:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-11-12 22:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-11-12 22:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-11-12 22:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-11-12 22:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-11-12 09:35 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-11-12 09:29 - 2020-09-06 20:01 - 002876928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll

==================== Files in the root of some directories ========

2018-01-08 15:54 - 2020-11-16 18:54 - 000000132 _____ () C:\Users\rodinkasebestovi\AppData\Roaming\Adobe Formát PNG CS5 – předvolby
2017-12-24 12:19 - 2002-08-29 17:33 - 000319488 _____ () C:\Users\rodinkasebestovi\AppData\Roaming\MafiaSetup.exe
2019-06-18 20:59 - 2020-10-23 21:05 - 000006144 _____ () C:\Users\rodinkasebestovi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

[JaRon]

ahoj,
citat:
•Spustte poznamkovy blok (Start-spustit-notepad)
•Zkopirujte skript >>

Kód: Vybrat vše

Start
FirewallRules: [UDP Query User{E0ACF4F2-CDFF-4041-8DC2-F1DC01FCF5EE}C:\program files (x86)\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe] => (Allow) C:\program files (x86)\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe => No File
FirewallRules: [TCP Query User{C9CBCC24-E407-4820-A463-09EC96353E59}C:\program files (x86)\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe] => (Allow) C:\program files (x86)\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe => No File
FirewallRules: [UDP Query User{32B2F621-448E-46F9-8A46-98EA8676235D}C:\users\rodinkasebestovi\appdata\local\warthunder\win64\aces.exe] => (Block) C:\users\rodinkasebestovi\appdata\local\warthunder\win64\aces.exe => No File
 FirewallRules: [TCP Query User{64F93205-39C0-4148-B082-05054BACE483}C:\users\rodinkasebestovi\appdata\local\warthunder\win64\aces.exe] => (Block) C:\users\rodinkasebestovi\appdata\local\warthunder\win64\aces.exe => No File
 FirewallRules: [UDP Query User{79BA0192-9AFF-4A23-87E7-82DA3E287419}C:\users\rodinkasebestovi\appdata\local\warthunder\launcher.exe] => (Allow) C:\users\rodinkasebestovi\appdata\local\warthunder\launcher.exe => No File
 FirewallRules: [TCP Query User{DD39C1C1-9792-4FFF-B12C-0A4FD0496493}C:\users\rodinkasebestovi\appdata\local\warthunder\launcher.exe] => (Allow) C:\users\rodinkasebestovi\appdata\local\warthunder\launcher.exe => No File
FirewallRules: [TCP Query User{07DD9825-12F2-4FEA-82FF-3E9FC1DFFC11}C:\program files (x86)\repacky by tomi2k9\wolfenstein new order\wolfneworder_x64.exe] => (Block) C:\program files (x86)\repacky by tomi2k9\wolfenstein new order\wolfneworder_x64.exe => No File
 FirewallRules: [UDP Query User{24CA6BD6-D669-434D-9F71-4DAF5F64165A}C:\program files (x86)\repacky by tomi2k9\wolfenstein new order\wolfneworder_x64.exe] => (Block) C:\program files (x86)\repacky by tomi2k9\wolfenstein new order\wolfneworder_x64.exe => No File
R2 rtop; c:\program files\bytefence\rtop\bin\rtop_svc.exe [297288 2020-04-22] (Byte Technologies LLC -> Byte Technologies LLC.) <==== ATTENTION


Hosts:
EmptyTemp:
Reboot:
End

•Ulozte vytvoreny TXT jako fixlist.txt
•Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe
•Kliknete na Fix
•Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt


+ pozri aka je velkost adresara desktop

[toox]

Fix result of Farbar Recovery Scan Tool (x64) Version: 14-12-2020
Ran by rodinkasebestovi (21-12-2020 09:46:49) Run:2
Running from C:\Users\rodinkasebestovi\Desktop
Loaded Profiles: rodinkasebestovi
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
FirewallRules: [UDP Query User{E0ACF4F2-CDFF-4041-8DC2-F1DC01FCF5EE}C:\program files (x86)\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe] => (Allow) C:\program files (x86)\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe => No File
FirewallRules: [TCP Query User{C9CBCC24-E407-4820-A463-09EC96353E59}C:\program files (x86)\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe] => (Allow) C:\program files (x86)\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe => No File
FirewallRules: [UDP Query User{32B2F621-448E-46F9-8A46-98EA8676235D}C:\users\rodinkasebestovi\appdata\local\warthunder\win64\aces.exe] => (Block) C:\users\rodinkasebestovi\appdata\local\warthunder\win64\aces.exe => No File
FirewallRules: [TCP Query User{64F93205-39C0-4148-B082-05054BACE483}C:\users\rodinkasebestovi\appdata\local\warthunder\win64\aces.exe] => (Block) C:\users\rodinkasebestovi\appdata\local\warthunder\win64\aces.exe => No File
FirewallRules: [UDP Query User{79BA0192-9AFF-4A23-87E7-82DA3E287419}C:\users\rodinkasebestovi\appdata\local\warthunder\launcher.exe] => (Allow) C:\users\rodinkasebestovi\appdata\local\warthunder\launcher.exe => No File
FirewallRules: [TCP Query User{DD39C1C1-9792-4FFF-B12C-0A4FD0496493}C:\users\rodinkasebestovi\appdata\local\warthunder\launcher.exe] => (Allow) C:\users\rodinkasebestovi\appdata\local\warthunder\launcher.exe => No File
FirewallRules: [TCP Query User{07DD9825-12F2-4FEA-82FF-3E9FC1DFFC11}C:\program files (x86)\repacky by tomi2k9\wolfenstein new order\wolfneworder_x64.exe] => (Block) C:\program files (x86)\repacky by tomi2k9\wolfenstein new order\wolfneworder_x64.exe => No File
FirewallRules: [UDP Query User{24CA6BD6-D669-434D-9F71-4DAF5F64165A}C:\program files (x86)\repacky by tomi2k9\wolfenstein new order\wolfneworder_x64.exe] => (Block) C:\program files (x86)\repacky by tomi2k9\wolfenstein new order\wolfneworder_x64.exe => No File
R2 rtop; c:\program files\bytefence\rtop\bin\rtop_svc.exe [297288 2020-04-22] (Byte Technologies LLC -> Byte Technologies LLC.) <==== ATTENTION


Hosts:
EmptyTemp:
Reboot:
End
*****************

"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{E0ACF4F2-CDFF-4041-8DC2-F1DC01FCF5EE}C:\program files (x86)\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C9CBCC24-E407-4820-A463-09EC96353E59}C:\program files (x86)\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{32B2F621-448E-46F9-8A46-98EA8676235D}C:\users\rodinkasebestovi\appdata\local\warthunder\win64\aces.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{64F93205-39C0-4148-B082-05054BACE483}C:\users\rodinkasebestovi\appdata\local\warthunder\win64\aces.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{79BA0192-9AFF-4A23-87E7-82DA3E287419}C:\users\rodinkasebestovi\appdata\local\warthunder\launcher.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{DD39C1C1-9792-4FFF-B12C-0A4FD0496493}C:\users\rodinkasebestovi\appdata\local\warthunder\launcher.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{07DD9825-12F2-4FEA-82FF-3E9FC1DFFC11}C:\program files (x86)\repacky by tomi2k9\wolfenstein new order\wolfneworder_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{24CA6BD6-D669-434D-9F71-4DAF5F64165A}C:\program files (x86)\repacky by tomi2k9\wolfenstein new order\wolfneworder_x64.exe" => removed successfully
rtop => Unable to stop service.
HKLM\System\CurrentControlSet\Services\rtop => removed successfully
rtop => service removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 11821056 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 589122274 B
Java, Flash, Steam htmlcache => 303407392 B
Windows/system/drivers => 3945461 B
Edge => 5400315 B
Chrome => 402807986 B
Firefox => 1201241885 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 1402230 B
NetworkService => 1402230 B
rodinkasebestovi => 398166069 B

RecycleBin => 0 B
EmptyTemp: => 2.7 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 09:52:54 ====

[JaRon]

pokial nie su problemy, tak hotovo

[toox]

děkuji mnohokrát a tu velikost plochy vyřešim ještě

[JaRon]

velkost plochy by nemala presahovat 1GB
rado sa stalo