Re: Sekání pc Vyřešeno

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43054
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Sekání pc

Příspěvekod jaro3 » 11 zář 2019 20:30

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Vyčisti systém CCleanerem

Stáhni si OTC

na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.

Co problémy?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Reklama
Hastrbusy
nováček
Příspěvky: 21
Registrován: září 19
Pohlaví: Muž
Stav:
Offline

Re: Re: Sekání pc

Příspěvekod Hastrbusy » 12 zář 2019 17:03

Chtěl bych Vám mnohokrát poděkovat za pomoc.
Je to o mnoho lepší , nicméně stále zaznamenávám jemné mikrozáseky a trhavé přehrávání videí ikdyž jsou načtená, ale to tedy bude zřejmě problém něčeho jiného.
Ještě jednou děkuji a přeji hezký den :)

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43054
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Sekání pc

Příspěvekod jaro3 » 12 zář 2019 20:35

Stáhni si Memtest:

Políčko , ve kterém je napsáno:
All unused RAM , změň na 2048.
-dej Start , nech nejméně 2h běžet , pokud bude po 2h stále 0 errors , jsou v pořádku.
V případě vyšších kapacit RAM je třeba Memtest spustit několikrát , pro 2GB ( jednotlivá největší kapacita RAM) 2x , pro 4GB 3x , pro 8Gb 4x ap.
poklepej na Memtest , pak znovu a znovu , do políček všech Memtestů napiš 2048 , pak dej u všech Memtestů "Start".

Vypni antivir i firewall.
Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Hastrbusy
nováček
Příspěvky: 21
Registrován: září 19
Pohlaví: Muž
Stav:
Offline

Re: Re: Sekání pc

Příspěvekod Hastrbusy » 13 lis 2019 21:08

1/2
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-11-2019
Ran by Štěpán (13-11-2019 21:03:44)
Running from C:\Users\Štěpán\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2015-12-21 14:13:10)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-4054239986-3961217788-2411693650-500 - Administrator - Disabled)
Anežka (S-1-5-21-4054239986-3961217788-2411693650-1007 - Limited - Enabled) => C:\Users\Anežka
Guest (S-1-5-21-4054239986-3961217788-2411693650-501 - Limited - Disabled) => C:\Users\Guest
HomeGroupUser$ (S-1-5-21-4054239986-3961217788-2411693650-1006 - Limited - Enabled)
Štěpán (S-1-5-21-4054239986-3961217788-2411693650-1000 - Administrator - Enabled) => C:\Users\Štěpán

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Antivirus (Disabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AS: Avira Antivirus (Disabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

@BIOS (HKLM-x32\...\{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.19.0619.1 - GIGABYTE) Hidden
@BIOS (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.19.0619.1 - GIGABYTE)
µTorrent (HKU\S-1-5-21-4054239986-3961217788-2411693650-1000\...\uTorrent) (Version: 3.5.5.45341 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.021.20049 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.3.0.256 - Adobe Systems Incorporated)
Adobe Flash Player 20 ActiveX (HKLM-x32\...\{7B0961DB-15EB-41AF-85DA-C296924CA408}) (Version: 20.0.0.228 - Adobe Systems Incorporated)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.255 - Adobe)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe InDesign CS6 (HKLM-x32\...\{CFB770D7-8D43-1014-922B-CC2715FADE3F}) (Version: 8.0 - Adobe Systems Incorporated)
Adobe Photoshop CC 2018 (HKLM\...\{65627652-1535-451C-A31B-ACAF785F5812}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CC 2018 (HKLM-x32\...\PHSP_19_0) (Version: 19.0 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2018 (HKLM-x32\...\PPRO_12_0_0) (Version: 12.0.0 - Adobe Systems Incorporated)
ALTools Update (HKLM-x32\...\ALUpdate_is1) (Version: v11.4.28.1 - ESTsoft Corp.)
ALZip 8.51 (HKLM-x32\...\ALZip_is1) (Version: v8.51 - ESTsoft Corp.)
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.2.3 - Electronic Arts, Inc.)
APP Center (HKLM-x32\...\{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.19.0704.1 - GIGABYTE) Hidden
APP Center (HKLM-x32\...\InstallShield_{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.19.0704.1 - GIGABYTE)
Application Verifier x64 External Package (HKLM\...\{B27BC1FC-8474-9E32-73C2-6F7CD58AD1E3}) (Version: 10.1.17763.132 - Microsoft) Hidden
Application Verifier x64 External Package (HKLM\...\{D9908CED-5ABB-FEE9-FC84-743F4D38637C}) (Version: 10.1.16299.15 - Microsoft) Hidden
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.26.1 - Asmedia Technology)
Assassin's Creed III (HKLM-x32\...\Uplay Install 54) (Version: - Ubisoft)
Avira (HKLM-x32\...\{1db45392-716a-490d-9b3e-2d96adbb5ab0}) (Version: 1.2.136.25116 - Avira Operations GmbH & Co. KG)
Avira (HKLM-x32\...\{d1005689-1fdc-458f-956d-498db20c18df}) (Version: 1.2.138.20753 - Avira Operations GmbH & Co. KG)
Avira (HKLM-x32\...\{DA7052FA-B589-48D9-BF78-0A5AC11CB59A}) (Version: 1.2.138.20753 - Avira Operations GmbH & Co. KG) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.1910.1604 - Avira Operations GmbH & Co. KG)
Avira Browser Safety (HKLM-x32\...\{9E10EA90-5E97-43B7-A246-FC7B4F5E9493}) (Version: 1.4.5.509 - Avira Operations GmbH & Co KG)
Avira Phantom VPN (HKLM-x32\...\Avira Phantom VPN) (Version: 2.29.1.28212 - Avira Operations GmbH & Co. KG)
Avira Privacy Pal (HKLM-x32\...\{F2BC8305-DFBE-4C02-A906-9BBD8EE299A3}_is1) (Version: 1.6.0.1583 - Avira Operations GmbH & Co. KG)
Avira Safe Shopping (HKLM-x32\...\{7EB58250-F316-40E3-B07E-6CB6ED714120}) (Version: 1.1.43.3959 - Avira Operations GmbH & Co. KG)
Avira Software Updater (HKLM-x32\...\{D72D7C97-7AEC-43E0-A8CF-B23F27422FE0}) (Version: 2.0.6.22870 - Avira Operations GmbH & Co. KG)
Avira System Speedup (HKLM-x32\...\Avira System Speedup_is1) (Version: 6.3.0.10788 - Avira Operations GmbH & Co. KG)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Blender (HKLM\...\{E29A1273-2E7A-40E7-AA63-428A11D59429}) (Version: 2.79.2 - Blender Foundation)
Bloody6 (HKLM-x32\...\Bloody3) (Version: 16.12.0011 - Bloody)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.61 - Piriform)
CCleaner Browser (HKLM-x32\...\CCleaner Browser) (Version: 77.1.1834.93 - Autoři prohlížeče CCleaner Browser)
ClickOnce Bootstrapper Package for Microsoft .NET Framework (HKLM-x32\...\{D256A5B9-68DA-4F6C-A447-A93E5639A46D}) (Version: 4.7.03083 - Microsoft Corporation) Hidden
CloudStation (HKLM-x32\...\{6D8DA122-A40A-421B-9D95-FE4C806BCDBE}) (Version: 1.00.0021 - GIGABYTE) Hidden
CloudStation (HKLM-x32\...\InstallShield_{6D8DA122-A40A-421B-9D95-FE4C806BCDBE}) (Version: 1.00.0021 - GIGABYTE)
Cooking Simulator (HKLM-x32\...\Cooking Simulator_is1) (Version: - )
Core Temp 1.15.1 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.15.1 - ALCPU)
Corel Shell Extension - 64Bit (HKLM\...\{7F05E704-30A6-421A-97A7-8EEB1C7FF011}) (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Capture (HKLM-x32\...\{7F05E704-30A6-421A-97A7-8EEB1C7FF012}) (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Content (HKLM-x32\...\{7F05E704-30A6-421A-97A7-8EEB1C7FF016}) (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Draw (HKLM-x32\...\{7F05E704-30A6-421A-97A7-8EEB1C7FF013}) (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Filters (HKLM-x32\...\{7F05E704-30A6-421A-97A7-8EEB1C7FF017}) (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - FontNav (HKLM-x32\...\{7F05E704-30A6-421A-97A7-8EEB1C7FF019}) (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics SUite X4 - ICA (HKLM-x32\...\{7F05E704-30A6-421A-97A7-8EEB1C7FF010}) (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - IPM (HKLM-x32\...\{9D0798D0-AF6C-4E62-94B1-AEBF1A43E00A}) (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Lang EN (HKLM-x32\...\{7F05E704-30A6-421A-97A7-8EEB1C7FF100}) (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - PP (HKLM-x32\...\{7F05E704-30A6-421A-97A7-8EEB1C7FF014}) (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - VBA (HKLM-x32\...\{BF439B41-0252-48DE-8B8B-0430CB26A181}) (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 (HKLM-x32\...\{44A27085-0616-4181-A0C3-81C7ECA17F73}) (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW(R) Graphics Suite X4 - Windows Shell Extension (HKLM-x32\...\_{CE2DA11A-917F-4CF5-AB55-755EC115DD10}) (Version: - Corel Corporation)
CorelDRAW(R) Graphics Suite X4 - Windows Shell Extension (HKLM-x32\...\{CE2DA11A-917F-4CF5-AB55-755EC115DD10}) (Version: 1.0 - Corel Corporation) Hidden
CorelDRAW(R) Graphics Suite X4 (HKLM-x32\...\_{7F05E704-30A6-421A-97A7-8EEB1C7FF010}) (Version: - Corel Corporation)
CPUID CPU-Z Aorus 1.87 (HKLM\...\CPUID CPU-Z Aorus_is1) (Version: 1.87 - CPUID, Inc.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.1.0230 - Disc Soft Ltd)
DiagnosticsHub_CollectionService (HKLM\...\{440C5592-4EA5-4772-B256-969D66068843}) (Version: 15.9.28016 - Microsoft Corporation) Hidden
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 416.94 - NVIDIA Corporation) Hidden
EasyTune (HKLM-x32\...\{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.19.0226.1 - GIGABYTE) Hidden
EasyTune (HKLM-x32\...\InstallShield_{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.19.0226.1 - GIGABYTE)
EasyTuneEngineService (HKLM-x32\...\{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.19.0522.1 - GIGABYTE) Hidden
EasyTuneEngineService (HKLM-x32\...\InstallShield_{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.19.0522.1 - GIGABYTE)
Entity Framework 6.2.0 Tools for Visual Studio 2017 (HKLM-x32\...\{B843915F-00A1-44B1-994C-1AE0A6400AE3}) (Version: 6.2.61807.0 - Microsoft Corporation) Hidden
Epic Games Launcher (HKLM-x32\...\{93BFE5DF-776E-436F-8693-DF1F72C0E3C1}) (Version: 1.1.151.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Euro Truck Simulator 2 (HKLM\...\Euro Truck Simulator 2_is1) (Version: 1.31.0.92 - )
EZRAID (HKLM-x32\...\{8F307CB5-FE1C-4BF3-8747-305D14161916}) (Version: 1.00.0000 - GIGABYTE) Hidden
FiveM (HKU\S-1-5-21-4054239986-3961217788-2411693650-1000\...\CitizenFX_FiveM) (Version: - The CitizenFX Collective)
Game Boost (HKLM-x32\...\{644B5310-D2AA-42A8-9F3B-7B92C856C8D7}) (Version: 1.00.0006 - Gigabyte) Hidden
Game Boost (HKLM-x32\...\InstallShield_{644B5310-D2AA-42A8-9F3B-7B92C856C8D7}) (Version: 1.00.0006 - Gigabyte)
Gigabyte Speed v10.50 (HKLM\...\Gigabyte Speed) (Version: 10.50 - cFos Software GmbH, Bonn)
GigabyteFirmwareUpdateUtility (HKLM-x32\...\{1CBA99CE-1AB3-4366-AFB4-7F7B75EBBE35}) (Version: 1.18.0208.1 - GIGABYTE) Hidden
GigabyteFirmwareUpdateUtility (HKLM-x32\...\InstallShield_{1CBA99CE-1AB3-4366-AFB4-7F7B75EBBE35}) (Version: 1.18.0208.1 - GIGABYTE)
Goldstarway Trading (remove only) (HKLM-x32\...\Goldstarway Trading) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 78.0.3904.97 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.341 - Google LLC) Hidden
GService (HKLM-x32\...\{D9CB4282-7B2A-4840-AD1D-9DA72B973DD9}) (Version: 1.16.1202.1 - GIGABYTE)
HITMAN, âĺđńč˙ 1.12.1 (HKLM-x32\...\HITMAN_is1) (Version: 1.12.1 - Other s)
icecap_collection_neutral (HKLM-x32\...\{A3B4D258-74E1-49D6-9A86-2DFEFEE48DEC}) (Version: 15.8.27906 - Microsoft Corporation) Hidden
icecap_collection_x64 (HKLM\...\{E524832A-C567-499A-8872-0D79596E4DEE}) (Version: 15.8.27906 - Microsoft Corporation) Hidden
icecap_collectionresources (HKLM-x32\...\{7F104712-BE1D-4359-B8EA-8003E9721001}) (Version: 15.8.27924 - Microsoft Corporation) Hidden
icecap_collectionresourcesx64 (HKLM-x32\...\{99A768BB-C508-44E5-AE78-72ABE55728CF}) (Version: 15.8.27924 - Microsoft Corporation) Hidden
Installer (HKLM\...\{E9675998-9B12-4560-8E98-A6CCCDE0BE18}) (Version: 1.0.0 - Default Company Name)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4206 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.8.0.1042 - Intel Corporation)
Intel(R) Smart Connect Technology (HKLM\...\{20F70BB1-9240-43D2-985C-A8F5C6AAA1C7}) (Version: 5.0.10.2907 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 4.0.1.40 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden
IntelliTraceProfilerProxy (HKLM-x32\...\{ACBAA378-519A-441D-9349-C0AAD8DEAD04}) (Version: 15.0.17289.01 - Microsoft Corporation) Hidden
iTunes (HKLM\...\{9F4BF859-C3A4-4AB6-BDD1-9C5D58188598}) (Version: 12.4.1.6 - Apple Inc.)
Java 8 Update 201 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
Jazyk popisů ovládacích prvků systému Microsoft Office 2010 – čeština (HKLM-x32\...\{90140000-00BD-0405-0000-0000000FF1CE}) (Version: 14.0.4763.1011 - Microsoft Corporation)
Kerbal Space Program (HKLM-x32\...\1429864849_is1) (Version: 2.4.0.6 - GOG.com)
Killer Bandwidth Control Filter Driver (HKLM\...\{B7E3FD6A-264E-47A7-96C3-59BB9CFD51D0}) (Version: 1.1.57.1346 - Rivet Networks) Hidden
Killer E240x Drivers (HKLM\...\{A055CF47-FBFC-425E-9C7E-B0695525B489}) (Version: 1.1.57.1346 - Rivet Networks) Hidden
Killer Network Manager (HKLM\...\{2FF1AE25-2625-449A-AB47-E133BAB4996E}) (Version: 1.1.57.1346 - Rivet Networks) Hidden
Killer Performance Suite (HKLM-x32\...\{009DF489-4590-4579-BAB2-0136BB829E4A}) (Version: 1.1.57.1346 - Rivet Networks)
Kits Configuration Installer (HKLM-x32\...\{29B915AE-013F-151F-3E61-67F7363C3A09}) (Version: 10.1.17763.132 - Microsoft) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft .NET Core SDK 2.1.503 (x64) (HKLM-x32\...\{ce5280a9-88d6-42e4-90bc-8399a3f94460}) (Version: 2.1.503 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3994d355-238a-4612-af93-26d13deddef1}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27024 (HKLM-x32\...\{5fb2083a-f3cc-4b78-93ff-bd9788b5de01}) (Version: 14.16.27024.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.16.27024 (HKLM-x32\...\{2ff11a2a-f7ac-4a6c-8cd4-c7bb974f3642}) (Version: 14.16.27024.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 1.18.1100.314 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSI Development Tools (HKLM-x32\...\{6C961B30-A670-8A05-3BFE-3947E84DD4E4}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
MSI Development Tools (HKLM-x32\...\{973CACA2-E018-065B-0580-F2784802E299}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
MSI DragonEye (HKLM\...\{7116875E-F251-4C33-AB3F-37DE05B15595}_is1) (Version: 0.0.2.6 - MSI)
MSI Gaming APP (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 6.2.0.35 - MSI)
MSI Kombustor 2.5.9 (HKLM-x32\...\{0B7C79A5-5CB2-4ABD-A9C1-92A6213CE8DD}_is1) (Version: - MSI Co., LTD)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.2.0.22 - MSI)
MSIRegister (HKLM-x32\...\{80B995A4-3A86-4690-98A6-563F1A788835}_is1) (Version: 2.0.0.10 - MSI)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Need For Speed Hot Pursuit version 1.0.5.0 (HKLM-x32\...\Need For Speed Hot Pursuit_is1) (Version: 1.0.5.0 - Mr DJ)
NVIDIA Ovladač 3D Vision 416.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 416.94 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.4 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 416.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 416.94 - NVIDIA Corporation)
NVIDIA Photoshop Plug-ins 64 bit (HKLM-x32\...\{5E386C5B-CDE7-435A-B5C9-EC73A1B0553A}) (Version: 8.50 - )
NVIDIA Systémový software PhysX 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation)
ON_OFF Charge 2 B15.0709.1 (HKLM-x32\...\{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.00.0000 - GIGABYTE) Hidden
ON_OFF Charge 2 B15.0709.1 (HKLM-x32\...\InstallShield_{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.00.0000 - GIGABYTE)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 10.5.50.31938 - Electronic Arts, Inc.)
Outlast 2 (HKLM-x32\...\Outlast 2_is1) (Version: - )
Ovládací panel NVIDIA 416.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 416.94 - NVIDIA Corporation) Hidden
PAYDAY.2.Ultimate.Edition.With.Update.165.v1.82.445 verze 1.82 (HKLM-x32\...\{2580C6AF-3058-46CA-853B-BD688C687BC7}}_is1) (Version: 1.82 - Ali213.net)
PixelSquid Photoshop extension version 1.130 (HKLM-x32\...\{F685A41E-5BF3-43DD-AC31-627B4A9910EE}_is1) (Version: 1.130 - Pixelsquid)
PlatformPowerManagement (HKLM-x32\...\{7A6EB543-522C-4784-9DB5-4FC87522EBDF}) (Version: 1.18.0910.1 - GIGABYTE) Hidden
PlatformPowerManagement (HKLM-x32\...\InstallShield_{7A6EB543-522C-4784-9DB5-4FC87522EBDF}) (Version: 1.18.0910.1 - GIGABYTE)
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{26356515-5821-40FA-9C3D-9785052A1062}) (Version: 4.3.1 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{C2651553-6CA3-4822-B2E6-BC4ACA6E0EA2}) (Version: 4.3.1 - Apple Inc.)
Portal 2 (HKLM-x32\...\Postal 2_is1) (Version: - )
Prison Architect (HKLM-x32\...\1441974651_is1) (Version: 2.6.0.9 - GOG.com)
Project Hospital (HKLM-x32\...\1660194629_is1) (Version: 1.0.14224 RC4 - GOG.com)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.100.422.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8186 - Realtek Semiconductor Corp.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.6.132 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.3.1 - Rockstar Games)
SDK ARM Additions (HKLM-x32\...\{0B5D6FB7-05A5-271B-5B99-82384219A471}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
SDK ARM Redistributables (HKLM-x32\...\{4A5F6E94-7967-A333-8231-CA9AF35E03BD}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
Secure Folder (HKU\S-1-5-21-4054239986-3961217788-2411693650-1000\...\SecureFolder) (Version: 8.2.0.0 - SubiSoft Softwares)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
SGX Install (HKLM-x32\...\{3EC52501-2CDF-46D9-AA54-9205C96A5EFE}) (Version: 2.2.104.49337 - GIGABYTE)
SIV (HKLM-x32\...\{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.19.0522.1 - GIGABYTE) Hidden
SIV (HKLM-x32\...\InstallShield_{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.19.0522.1 - GIGABYTE)
Smart Backup (x64) (HKLM-x32\...\{BC1FA5CF-A36F-4C61-9638-09D0B431B006}) (Version: 3.18.0911.1 - GIGABYTE)
Smart TimeLock (HKLM-x32\...\{5D93E30A-78A3-4890-962F-56B61A5873DD}) (Version: 2.18.0731.1 - GIGABYTE) Hidden
Smart TimeLock (HKLM-x32\...\InstallShield_{5D93E30A-78A3-4890-962F-56B61A5873DD}) (Version: 2.18.0731.1 - GIGABYTE)
SmartKeyboard (HKLM-x32\...\{75B74C36-A9C6-4912-B4BB-C461AA36D01E}) (Version: 1.00.0000 - GIGABYTE) Hidden
SmartKeyboard (HKLM-x32\...\InstallShield_{75B74C36-A9C6-4912-B4BB-C461AA36D01E}) (Version: 1.00.0000 - GIGABYTE)
Sniper Elite 4 (HKLM\...\Sniper Elite 4_is1) (Version: 1.0 - )
Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.7.0 - Sophos Limited)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
The Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.54.120.1020 - Electronic Arts Inc.)
TomTom HOME (HKLM-x32\...\{0E778C56-3A87-497E-BEF0-EF0D3EE4871C}) (Version: 2.10.2 - Název společnosti:)
TypeScript SDK (HKLM-x32\...\{3CBDDAE8-99AE-4168-BDA7-8352BF15BE73}) (Version: 3.1.2.0 - Microsoft Corporation) Hidden
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Unity (HKLM-x32\...\Unity) (Version: 2018.3.0f2 - Unity Technologies ApS)
Universal CRT Extension SDK (HKLM-x32\...\{1FBCBC17-4527-2340-0832-B1D49C41FF67}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Extension SDK (HKLM-x32\...\{7D225043-6CC5-7B56-11DD-AFF90E4C1C0C}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
Universal CRT Extension SDK (HKLM-x32\...\{A5FA2886-1925-133F-0D41-B9A8ECEA0A2D}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (HKLM-x32\...\{8BFBEC30-33CC-13B4-849F-3B036F27466A}) (Version: 10.0.26624 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (HKLM-x32\...\{B739B4C5-EEEC-8E70-0276-38C4779AF398}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (HKLM-x32\...\{CB19DBA2-C210-5646-9522-695A1317CD34}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
Universal CRT Redistributable (HKLM-x32\...\{5F577A45-3C65-352B-061D-D6A57F05402C}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
Universal CRT Redistributable (HKLM-x32\...\{A9D6F52C-694E-3E41-7AB8-5BEB644742A5}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Universal CRT Tools x64 (HKLM\...\{3B588BBE-EB02-D1B2-5CD5-7DB85AD8A3E7}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
Universal CRT Tools x86 (HKLM-x32\...\{D2DC1EDF-EE04-9B5F-BDD7-06645D859EC3}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
Universal General MIDI DLS Extension SDK (HKLM-x32\...\{CE83D0BD-418A-F3D1-D6CE-687E96D1EBD0}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
Universal General MIDI DLS Extension SDK (HKLM-x32\...\{D261CEA1-AB8D-9CFA-4407-BCEFC78661AC}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 22.2 - Ubisoft)
Usb Game Pad (HKLM-x32\...\Usb Game Pad) (Version: - )
vcpp_crt.redist.clickonce (HKLM-x32\...\{F20AEB7F-10E0-4FA1-BEAE-4E9C237EF051}) (Version: 14.16.27012 - Microsoft Corporation) Hidden
Vegas Pro 13.0 (64-bit) (HKLM\...\{D0360940-CCC6-11E3-B9C6-F04DA23A5C58}) (Version: 13.0.310 - Sony)
Visual Studio Community 2017 (HKLM-x32\...\01fecf20) (Version: 15.9.28307.280 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)
VS Immersive Activate Helper (HKLM-x32\...\{54FBC9A9-CCA1-417E-ACA6-203A32A39F37}) (Version: 16.0.95.0 - Microsoft Corporation) Hidden
VS JIT Debugger (HKLM\...\{4B816AD0-D12B-498A-8148-7CBE3ED328DE}) (Version: 16.0.95.0 - Microsoft Corporation) Hidden
VS Script Debugging Common (HKLM\...\{8B657335-3813-4CF4-A6FE-2AA44BE23F94}) (Version: 16.0.95.0 - Microsoft Corporation) Hidden
vs_BlendMsi (HKLM-x32\...\{C5D83E0F-12E7-4BA3-98E6-DAE0E73B5BF9}) (Version: 15.0.27205 - Microsoft Corporation) Hidden
vs_clickoncebootstrappermsi (HKLM-x32\...\{A68D7884-F036-4A0D-AE1A-410E0311E135}) (Version: 15.0.27005 - Microsoft Corporation) Hidden
vs_clickoncebootstrappermsires (HKLM-x32\...\{91DDDFB5-1782-48C2-BA2A-8F4D9DE39D27}) (Version: 15.0.27005 - Microsoft Corporation) Hidden
vs_clickoncesigntoolmsi (HKLM-x32\...\{6A1ECF65-2CBF-4B33-9D4A-D1C0A0E5FE45}) (Version: 15.0.27005 - Microsoft Corporation) Hidden
vs_communitymsi (HKLM-x32\...\{71797C29-380A-492C-B35A-F5E4A7B57BDC}) (Version: 15.9.28307 - Microsoft Corporation) Hidden
vs_communitymsires (HKLM-x32\...\{226CCDB6-96F9-4DE6-9CCC-DB49D0A0A971}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_devenvmsi (HKLM-x32\...\{BFFA2FFB-1095-4ADD-A352-368806D2412B}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_filehandler_amd64 (HKLM-x32\...\{A254DA0E-26A1-43C3-95BE-7A24D5599473}) (Version: 15.9.28302 - Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM-x32\...\{1F42A73E-CF26-4D67-BA79-752CA56B639F}) (Version: 15.9.28302 - Microsoft Corporation) Hidden
vs_FileTracker_Singleton (HKLM-x32\...\{A41E138F-5A3F-443C-B72D-957AB994FB5A}) (Version: 15.9.28128 - Microsoft Corporation) Hidden
vs_Graphics_Singletonx64 (HKLM\...\{B6BAC9A6-A70D-4E4D-B90A-7EE2B336E090}) (Version: 15.8.27729 - Microsoft Corporation) Hidden
vs_Graphics_Singletonx86 (HKLM-x32\...\{3161DA68-DD37-4798-82DB-B3A0BD6BA233}) (Version: 15.8.27729 - Microsoft Corporation) Hidden
vs_minshellinteropmsi (HKLM-x32\...\{3A78DA3D-C8D4-429D-B536-6E59A0088451}) (Version: 15.8.27825 - Microsoft Corporation) Hidden
vs_minshellmsi (HKLM-x32\...\{68B8AD33-CE97-4C3D-9583-669C39D21BA5}) (Version: 15.9.28302 - Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32\...\{B8B65A93-F72B-42C2-AE1A-FF440B44BB67}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_SQLClickOnceBootstrappermsi (HKLM-x32\...\{5779B6DD-604A-41CE-BC3D-9D4BDDA22AD2}) (Version: 15.0.27005 - Microsoft Corporation) Hidden
vs_tipsmsi (HKLM-x32\...\{1AC6CC3D-7724-4D84-9270-798A2191AB1C}) (Version: 15.0.27005 - Microsoft Corporation) Hidden
WinAppDeploy (HKLM-x32\...\{716AE8F2-1BE3-7657-DF6B-F23DEEC75AF9}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
WinAppDeploy (HKLM-x32\...\{9690D51C-4435-1C20-7819-66CCAB0F03F9}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Movie Maker 2018 (HKLM-x32\...\{3CC29C1A-B5FE-457B-8F22-32A2557A92C7}}_is1) (Version: - www.topwin-movie-maker.com)
Windows SDK AddOn (HKLM-x32\...\{350F0ECD-0783-4529-8797-98F0AD33EAC0}) (Version: 10.1.0.0 - Microsoft Corporation)
Windows Software Development Kit - Windows 10.0.16299.15 (HKLM-x32\...\{6195c203-b53c-4bb7-983a-6070a902e704}) (Version: 10.1.16299.15 - Microsoft Corporation)
Windows Software Development Kit - Windows 10.0.17763.132 (HKLM-x32\...\{5fe95b9d-9219-4d8b-a031-71323ae48a81}) (Version: 10.1.17763.132 - Microsoft Corporation)
WinRT Intellisense Desktop - en-us (HKLM-x32\...\{00B12DF9-5428-9406-DE2C-8E8A1A062B05}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
WinRT Intellisense Desktop - en-us (HKLM-x32\...\{385A1387-A488-9E90-3635-086129610034}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense Desktop - Other Languages (HKLM-x32\...\{D7DD3171-DA58-52A1-95B2-4769640855AF}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense Desktop - Other Languages (HKLM-x32\...\{E82A4A6C-C21C-35FE-B805-3E44318F6D63}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - en-us (HKLM-x32\...\{7336279F-8F8F-5530-A543-3BE963846C0A}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - en-us (HKLM-x32\...\{7E898893-9C42-A572-7F57-FDE55CE812F7}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - Other Languages (HKLM-x32\...\{E414A474-0A87-4F66-C409-A4D9857CFD34}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - Other Languages (HKLM-x32\...\{E8B1CB29-5C24-D882-3CEF-F8A7263BC63D}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
WinRT Intellisense Mobile - en-us (HKLM-x32\...\{CE760B86-975B-F514-5673-0ED4332B801B}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense Mobile - en-us (HKLM-x32\...\{F6F11150-93DE-0507-FCA0-F746E0207017}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - en-us (HKLM-x32\...\{5E67F8BE-D8D2-257F-CE19-419A2D5125C7}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - en-us (HKLM-x32\...\{8329C3A0-8582-D1C2-67FF-800654BFDF45}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - Other Languages (HKLM-x32\...\{771C9DEF-7C0B-85DA-6426-7A20F06BEC94}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - Other Languages (HKLM-x32\...\{A2AA063E-AF50-A1F5-8925-A06EB1556644}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - en-us (HKLM-x32\...\{7D4C7F4A-02A9-E434-6451-C8787DF28C1F}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - en-us (HKLM-x32\...\{B047C746-63E8-41C7-A5C0-7ABD390CF3E6}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - Other Languages (HKLM-x32\...\{0063AF94-397B-9C64-1C71-D404B27C5D96}) (Version: 10.1.17763.132 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - Other Languages (HKLM-x32\...\{BC467065-9374-5345-DA3F-FCF073304A25}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
XSplit Broadcaster (HKLM-x32\...\{B33AA6A7-38DD-4EE2-80AC-EEE987FCAB37}) (Version: 3.5.1808.2937 - SplitmediaLabs)
XSplit Gamecaster (HKLM-x32\...\{8915913F-E4AF-46C5-B4EF-3535D83BFFDE}) (Version: 2.5.1507.3018 - SplitmediaLabs)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-4054239986-3961217788-2411693650-1000_Classes\CLSID\{0E771C20-CCC9-4F7B-8FCB-A49BF3FBE6F4}\InprocServer32 -> c:\Program Files (x86)\Common Files\Corel\Shared\Shell Extension\ShellXP64.dll (Corel Corporation -> Corel Corporation)
CustomCLSID: HKU\S-1-5-21-4054239986-3961217788-2411693650-1000_Classes\CLSID\{0E771C21-CCC9-4F7B-8FCB-A49BF3FBE6F4}\InprocServer32 -> c:\Program Files (x86)\Common Files\Corel\Shared\Shell Extension\ShellXP64.dll (Corel Corporation -> Corel Corporation)
CustomCLSID: HKU\S-1-5-21-4054239986-3961217788-2411693650-1000_Classes\CLSID\{0E771C22-CCC9-4F7B-8FCB-A49BF3FBE6F4}\InprocServer32 -> c:\Program Files (x86)\Common Files\Corel\Shared\Shell Extension\ShellXP64.dll (Corel Corporation -> Corel Corporation)
CustomCLSID: HKU\S-1-5-21-4054239986-3961217788-2411693650-1000_Classes\CLSID\{1462EBAA-96E7-4D93-9A66-0E4068DE4FCF}\InprocServer32 -> c:\Program Files (x86)\Common Files\Corel\Shared\Shell Extension\ShellXP64.dll (Corel Corporation -> Corel Corporation)
CustomCLSID: HKU\S-1-5-21-4054239986-3961217788-2411693650-1000_Classes\CLSID\{1462EBAB-96E7-4D93-9A66-0E4068DE4FCF}\InprocServer32 -> c:\Program Files (x86)\Common Files\Corel\Shared\Shell Extension\ShellXP64.dll (Corel Corporation -> Corel Corporation)
CustomCLSID: HKU\S-1-5-21-4054239986-3961217788-2411693650-1000_Classes\CLSID\{1462EBAC-96E7-4D93-9A66-0E4068DE4FCF}\InprocServer32 -> c:\Program Files (x86)\Common Files\Corel\Shared\Shell Extension\ShellXP64.dll (Corel Corporation -> Corel Corporation)
CustomCLSID: HKU\S-1-5-21-4054239986-3961217788-2411693650-1000_Classes\CLSID\{7AD101F2-0B93-4D66-A1CA-DF73F3C4377B}\InprocServer32 -> c:\Program Files (x86)\Common Files\Corel\Shared\Shell Extension\ShellVista64.dll (Corel Corporation -> Corel Corporation)
CustomCLSID: HKU\S-1-5-21-4054239986-3961217788-2411693650-1000_Classes\CLSID\{7DDDBFE0-09C4-4680-9E13-8CE7D00EDE57}\InprocServer32 -> c:\Program Files (x86)\Common Files\Corel\Shared\Shell Extension\ShellXP64.dll (Corel Corporation -> Corel Corporation)
CustomCLSID: HKU\S-1-5-21-4054239986-3961217788-2411693650-1000_Classes\CLSID\{7DDDBFE1-09C4-4680-9E13-8CE7D00EDE57}\InprocServer32 -> c:\Program Files (x86)\Common Files\Corel\Shared\Shell Extension\ShellXP64.dll (Corel Corporation -> Corel Corporation)
CustomCLSID: HKU\S-1-5-21-4054239986-3961217788-2411693650-1000_Classes\CLSID\{7DDDBFE2-09C4-4680-9E13-8CE7D00EDE57}\InprocServer32 -> c:\Program Files (x86)\Common Files\Corel\Shared\Shell Extension\ShellXP64.dll (Corel Corporation -> Corel Corporation)
CustomCLSID: HKU\S-1-5-21-4054239986-3961217788-2411693650-1000_Classes\CLSID\{7FA63AC0-F5BC-4F3B-A9CF-94328D812B62}\InprocServer32 -> c:\Program Files (x86)\Common Files\Corel\Shared\Shell Extension\ShellVista64.dll (Corel Corporation -> Corel Corporation)
CustomCLSID: HKU\S-1-5-21-4054239986-3961217788-2411693650-1000_Classes\CLSID\{7FA63AC1-F5BC-4F3B-A9CF-94328D812B62}\InprocServer32 -> c:\Program Files (x86)\Common Files\Corel\Shared\Shell Extension\ShellVista64.dll (Corel Corporation -> Corel Corporation)
CustomCLSID: HKU\S-1-5-21-4054239986-3961217788-2411693650-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation - pGFX -> Intel Corporation)
CustomCLSID: HKU\S-1-5-21-4054239986-3961217788-2411693650-1000_Classes\CLSID\{8EF5DC20-419C-4E43-A088-DE5B5625CA47}\InprocServer32 -> c:\Program Files (x86)\Common Files\Corel\Shared\Shell Extension\ShellXP64.dll (Corel Corporation -> Corel Corporation)
CustomCLSID: HKU\S-1-5-21-4054239986-3961217788-2411693650-1000_Classes\CLSID\{DE902992-61FC-4A01-8091-53E1895C9775}\InprocServer32 -> c:\Program Files (x86)\Common Files\Corel\Shared\Shell Extension\ShellXP64.dll (Corel Corporation -> Corel Corporation)
CustomCLSID: HKU\S-1-5-21-4054239986-3961217788-2411693650-1000_Classes\CLSID\{DE902993-61FC-4A01-8091-53E1895C9775}\InprocServer32 -> c:\Program Files (x86)\Common Files\Corel\Shared\Shell Extension\ShellXP64.dll (Corel Corporation -> Corel Corporation)
CustomCLSID: HKU\S-1-5-21-4054239986-3961217788-2411693650-1000_Classes\CLSID\{DE902994-61FC-4A01-8091-53E1895C9775}\InprocServer32 -> c:\Program Files (x86)\Common Files\Corel\Shared\Shell Extension\ShellXP64.dll (Corel Corporation -> Corel Corporation)
CustomCLSID: HKU\S-1-5-21-4054239986-3961217788-2411693650-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems)
CustomCLSID: HKU\S-1-5-21-4054239986-3961217788-2411693650-1000_Classes\CLSID\{F9633464-9E18-4C06-9D3A-E131C036A9FA}\InprocServer32 -> c:\Program Files (x86)\Common Files\Corel\Shared\Shell Extension\ShellXP64.dll (Corel Corporation -> Corel Corporation)
CustomCLSID: HKU\S-1-5-21-4054239986-3961217788-2411693650-1000_Classes\CLSID\{F9633465-9E18-4C06-9D3A-E131C036A9FA}\InprocServer32 -> c:\Program Files (x86)\Common Files\Corel\Shared\Shell Extension\ShellXP64.dll (Corel Corporation -> Corel Corporation)
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6671064 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [ALZip] -> {4EB37360-49E8-11D3-95B5-004033382980} => C:\Program Files (x86)\ESTsoft\ALZip\AZCTM64.dll [2011-11-02] (ESTsoft Corp. -> ESTsoft Corp.)
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2019-10-17] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [SystemSpeedupFilesMenu] -> {14cb2bd0-2375-3d10-9b5d-5e18865c8959} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2019-10-10] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll -> No File
ContextMenuHandlers2: [ALZip] -> {4EB37360-49E8-11D3-95B5-004033382980} => C:\Program Files (x86)\ESTsoft\ALZip\AZCTM64.dll [2011-11-02] (ESTsoft Corp. -> ESTsoft Corp.)
ContextMenuHandlers4: [ALZip] -> {4EB37360-49E8-11D3-95B5-004033382980} => C:\Program Files (x86)\ESTsoft\ALZip\AZCTM64.dll [2011-11-02] (ESTsoft Corp. -> ESTsoft Corp.)
ContextMenuHandlers4: [SystemSpeedupFoldersMenu] -> {700866bb-c8e9-3e71-b359-abb28baed0e8} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2019-10-10] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers4: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll -> No File
ContextMenuHandlers5: [ALZip] -> {4EB37360-49E8-11D3-95B5-004033382980} => C:\Program Files (x86)\ESTsoft\ALZip\AZCTM64.dll [2011-11-02] (ESTsoft Corp. -> ESTsoft Corp.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2015-05-06] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2018-11-13] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers5: [SystemSpeedupDesktopMenu] -> {0cab5786-30e8-3185-9b3b-ccefbf1b8afe} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2019-10-10] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [ALZip] -> {4EB37360-49E8-11D3-95B5-004033382980} => C:\Program Files (x86)\ESTsoft\ALZip\AZCTM64.dll [2011-11-02] (ESTsoft Corp. -> ESTsoft Corp.)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2019-10-17] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll -> No File

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsv64.dll [84992 2011-03-31] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [86016 2011-03-31] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\Štěpán\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft\Minecraft Debugger.lnk -> C:\Users\Štěpán\AppData\Roaming\.minecraft\minecraft launcher\Debug.bat (No File)
ShortcutWithArgument: C:\Users\Štěpán\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eTeks Sweet Home 3D\Sweet Home 3D.lnk -> C:\ProgramData\Oracle\Java\javapath\javaws.exe (Oracle Corporation) -> -localfile -offline -J-Djnlp.application.href=hxxp://www.sweethome3d.com/SweetHome3D.jnlp "C:\Users\Štěpán\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\247e2df4-58aa56a5"

==================== Loaded Modules (Whitelisted) =============

2016-12-18 21:53 - 2016-05-26 14:28 - 004672512 _____ () [File not signed] C:\Program Files (x86)\Bloody6\Bloody6\Data\RES\Forms\Internet_Advertisement\Internet_Advertisement_DLL.dll
2016-12-18 21:53 - 2013-10-11 08:43 - 000085504 _____ () [File not signed] C:\Program Files (x86)\Bloody6\Bloody6\DLL\DLL_ZoomControl.dll
2019-06-25 15:12 - 2019-06-25 15:12 - 001864192 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\BDR_info.dll
2017-10-15 09:47 - 2016-06-14 15:35 - 000187392 _____ () [File not signed] C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\D3D11FontDraw.dll
2017-10-15 09:47 - 2016-06-14 15:35 - 000163328 _____ () [File not signed] C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\D3D11FontDraw.dll
2017-10-15 09:47 - 2015-06-23 15:41 - 000082432 _____ (Fintek) [File not signed] C:\Program Files (x86)\MSI\Gaming APP\Lib\FintekUSBDll.dll
2019-04-15 15:24 - 2019-04-15 15:24 - 000155648 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\yccV2.dll
2019-04-15 15:24 - 2019-04-15 15:24 - 000155648 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\yccV2.dll
2019-08-02 19:25 - 2013-03-08 10:28 - 000187392 _____ (Gigabyte Technology CO., LTD.) [File not signed] C:\Program Files\Gigabyte\Smart Backup\RescuePlan.dll
2019-08-02 19:25 - 2014-09-15 15:52 - 000705536 _____ (Gigabyte Technology CO., LTD.) [File not signed] C:\Program Files\Gigabyte\Smart Backup\srpCore.dll
2017-09-28 18:41 - 2017-09-28 18:41 - 000266240 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbPc.DLL
2018-03-26 11:58 - 2018-03-26 11:58 - 000112128 _____ (Microsoft Corporation) [File not signed] C:\Windows\Microsoft.Net\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
2019-10-10 19:31 - 2019-10-10 19:31 - 002873344 _____ (Newtonsoft) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\45af8e33c37dfb8f3f2d7d680ae2c37f\Newtonsoft.Json.ni.dll
2019-10-10 19:30 - 2019-10-10 19:30 - 000880128 _____ (ServiceStack) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_32\ServiceStack.Text\e6feb77ee99da8eb78da1d2d5f4a25cd\ServiceStack.Text.ni.dll
2019-09-13 07:34 - 2019-06-11 07:21 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2019-10-18 13:41 - 2019-06-11 07:22 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2019-09-13 07:34 - 2019-07-12 08:23 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2019-09-13 07:34 - 2019-07-12 08:23 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2019-09-13 07:34 - 2019-07-12 08:23 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2019-09-13 07:34 - 2019-07-12 08:23 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2019-10-18 13:41 - 2019-07-12 08:23 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2019-10-18 13:41 - 2019-07-12 08:23 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
2015-10-14 00:15 - 2015-10-14 00:15 - 002042368 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\osvi.dll
2019-03-27 13:15 - 2019-03-27 13:15 - 008703488 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GbtNvGpuLib.dll

Hastrbusy
nováček
Příspěvky: 21
Registrován: září 19
Pohlaví: Muž
Stav:
Offline

Re: Re: Sekání pc

Příspěvekod Hastrbusy » 13 lis 2019 21:09

2/2
==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Public\AppData:CSM [468]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [480]
AlternateDataStreams: C:\Users\Štěpán\Data aplikací:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Štěpán\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-09-09 18:57 - 2019-09-09 18:57 - 000000027 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4054239986-3961217788-2411693650-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Štěpán\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\Services: PnkBstrA => 2
MSCONFIG\Services: TomTomHOMEService => 2
MSCONFIG\startupreg: Gigabyte Speed => C:\Program Files\cFosSpeed\cFosSpeed.exe

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{BFB86C88-0C29-491E-82F0-D749D69F6B1E}C:\old disc\call of duty modern warfare 3\call of duty modern warfare 3\iw5sp.exe] => (Block) C:\old disc\call of duty modern warfare 3\call of duty modern warfare 3\iw5sp.exe (Valve Corporation -> ) [File not signed]
FirewallRules: [UDP Query User{FF0EC65E-9EDB-48A1-83E5-936C419CE27E}C:\old disc\call of duty modern warfare 3\call of duty modern warfare 3\iw5sp.exe] => (Block) C:\old disc\call of duty modern warfare 3\call of duty modern warfare 3\iw5sp.exe (Valve Corporation -> ) [File not signed]
FirewallRules: [{82BA6596-2E82-4E71-A73C-1F028931D668}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{136A5B22-98E5-4EC9-8206-485FED44B2A7}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{1857B079-FECD-4C16-90F1-D0ACE41DC69D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 2\iw4mp.exe (Activision Publishing Inc -> )
FirewallRules: [{0DD129EE-8796-4021-8463-486D96212B6F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 2\iw4mp.exe (Activision Publishing Inc -> )
FirewallRules: [{1677183F-925D-4D9C-8E62-0FA9F645FA29}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 2\iw4sp.exe (Valve Corp. -> ) [File not signed]
FirewallRules: [{64B883EB-2737-4AFA-9704-FD0F94FE5547}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Modern Warfare 2\iw4sp.exe (Valve Corp. -> ) [File not signed]
FirewallRules: [TCP Query User{70249CFF-2857-40B0-B1CE-69CA50E82757}C:\users\štěpán\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\štěpán\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{0579163A-9C6B-4E19-B838-3DE9464E934C}C:\users\štěpán\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\štěpán\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{6BC4272F-972A-4DC7-A083-F21CD1141288}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe (Ubisoft Entertainment Sweden AB -> Ubisoft)
FirewallRules: [{2F91CCCF-71CE-462D-A402-F4CDAAB6C284}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe (Ubisoft Entertainment Sweden AB -> Ubisoft)
FirewallRules: [TCP Query User{5BB61270-F612-4C5D-A3F6-01EDCD8B6501}C:\old disc\call of duty modern warfare 3\call of duty modern warfare 3\iw5sp.exe] => (Block) C:\old disc\call of duty modern warfare 3\call of duty modern warfare 3\iw5sp.exe (Valve Corporation -> ) [File not signed]
FirewallRules: [UDP Query User{F45025F6-1D00-432C-9614-095B675C8A58}C:\old disc\call of duty modern warfare 3\call of duty modern warfare 3\iw5sp.exe] => (Block) C:\old disc\call of duty modern warfare 3\call of duty modern warfare 3\iw5sp.exe (Valve Corporation -> ) [File not signed]
FirewallRules: [TCP Query User{E4F97DFD-128F-458A-B944-3130FB68E5A6}C:\users\štěpán\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\štěpán\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{223FF185-2212-4566-9CBC-522B624E0F3E}C:\users\štěpán\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\štěpán\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{440C3791-4FB6-452E-8E98-AD4758304D30}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{57639C40-7AB5-4A1C-B10D-D2740BD3048C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{26BFE147-E4ED-4BF5-9EAC-170340B80475}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{FF5371D9-615B-4CDB-B816-ABAE355E0ECA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B404B96C-D40D-4203-B61D-5333A25D1E20}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{412A25DF-FE5D-4452-B243-5870F66AB541}C:\old disc\nfs hot pursuit\nfs11.exe] => (Block) C:\old disc\nfs hot pursuit\nfs11.exe (Electronic Arts) [File not signed]
FirewallRules: [UDP Query User{9CBF478C-8E79-459B-B184-5EA64F0336DB}C:\old disc\nfs hot pursuit\nfs11.exe] => (Block) C:\old disc\nfs hot pursuit\nfs11.exe (Electronic Arts) [File not signed]
FirewallRules: [TCP Query User{D243490B-9DA6-426C-BE99-AD3906EF9445}C:\users\štěpán\appdata\roaming\utorrent\updates\3.4.8_42449.exe] => (Allow) C:\users\štěpán\appdata\roaming\utorrent\updates\3.4.8_42449.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{59DA6004-9EA2-480A-B459-F8628A991A84}C:\users\štěpán\appdata\roaming\utorrent\updates\3.4.8_42449.exe] => (Allow) C:\users\štěpán\appdata\roaming\utorrent\updates\3.4.8_42449.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{369E8375-DCE4-442B-8D67-DCAD7998E6C5}C:\old disc\nfs hot pursuit\nfs11.exe] => (Block) C:\old disc\nfs hot pursuit\nfs11.exe (Electronic Arts) [File not signed]
FirewallRules: [UDP Query User{634AF5CD-43C4-4DBF-BF1F-9D512604EE10}C:\old disc\nfs hot pursuit\nfs11.exe] => (Block) C:\old disc\nfs hot pursuit\nfs11.exe (Electronic Arts) [File not signed]
FirewallRules: [{5676184A-A190-4B5E-8542-127A6410A82D}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{136670A1-8766-4DEC-8F59-F086766C8604}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [TCP Query User{3FAF4FCA-48CB-4FC4-B10C-2062412FD8B3}C:\program files (x86)\outlast 2\binaries\win64\outlast2.exe] => (Block) C:\program files (x86)\outlast 2\binaries\win64\outlast2.exe (Red Barrels Inc.) [File not signed]
FirewallRules: [UDP Query User{E6BEC76C-1688-4905-8945-6F6387CD6F3B}C:\program files (x86)\outlast 2\binaries\win64\outlast2.exe] => (Block) C:\program files (x86)\outlast 2\binaries\win64\outlast2.exe (Red Barrels Inc.) [File not signed]
FirewallRules: [{621C8540-9F90-4B37-8489-497510D66165}] => (Allow) C:\Program Files (x86)\Mr DJ\Need For Speed Hot Pursuit\NFS11.exe () [File not signed]
FirewallRules: [{D9AE7768-1CC7-4EAD-942E-CF9829163886}] => (Allow) C:\Program Files (x86)\Mr DJ\Need For Speed Hot Pursuit\NFS11.exe () [File not signed]
FirewallRules: [{13EAE600-C146-4691-9340-5556D859E1A5}] => (Allow) C:\Program Files (x86)\Mr DJ\Need For Speed Hot Pursuit\ConfigTool.exe (Electronic Arts) [File not signed]
FirewallRules: [{2B41319B-F2B0-47F8-A601-8543DE0D52BC}] => (Allow) C:\Program Files (x86)\Mr DJ\Need For Speed Hot Pursuit\ConfigTool.exe (Electronic Arts) [File not signed]
FirewallRules: [{754C4FFB-D31A-4411-8B55-2AB306A686EF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{B8FDC607-27CD-4AD0-A0A0-B9B39BF76F8C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [TCP Query User{549A4763-F734-429C-B8A2-2A1A19A72084}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{A5C34BE2-3309-4A93-8565-B1BB5262DC71}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{C03F55CC-EDBE-4417-9A46-D934212ED377}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{03E934FB-F3F4-482E-A778-40695841AC3E}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{665CC052-E02C-4615-BA27-854B46722B1A}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{2C226CA7-3D99-4053-9623-8769053A3FD3}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{E8F70F2D-3AFB-4172-BC4A-4B09C864A660}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Layers of Fear\Layers of Fear.exe () [File not signed]
FirewallRules: [{6E9DACC6-2ED3-43AF-A43E-111B15D17822}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Layers of Fear\Layers of Fear.exe () [File not signed]
FirewallRules: [TCP Query User{7D4F9294-4CFE-490C-BE5E-F3A1DB76BCCB}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{D09C49C2-0343-4EC7-86E6-EE1EBD270BA3}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{318BB14B-7659-417A-B624-568C21FCCA75}C:\program files (x86)\payday 2 ultimate edition\payday2_win32_release.exe] => (Block) C:\program files (x86)\payday 2 ultimate edition\payday2_win32_release.exe () [File not signed]
FirewallRules: [UDP Query User{0F096670-CB51-44B8-8348-2E57412E78C6}C:\program files (x86)\payday 2 ultimate edition\payday2_win32_release.exe] => (Block) C:\program files (x86)\payday 2 ultimate edition\payday2_win32_release.exe () [File not signed]
FirewallRules: [{14D36747-0671-418D-9B78-EF492FA10B62}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Grid\grid.exe (Codemasters) [File not signed]
FirewallRules: [{BBA9DAFA-7A02-4A1A-9128-2C2DFCE7893C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Grid\grid.exe (Codemasters) [File not signed]
FirewallRules: [{F465717B-58C6-42ED-B3A1-C278E308ECF8}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed III\AC3SP.exe (Ubisoft Entertainment -> )
FirewallRules: [{9D126674-8840-46B8-98A2-A2E4FE456091}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed III\AC3SP.exe (Ubisoft Entertainment -> )
FirewallRules: [{FDD69278-B217-4E25-B3C9-6D604D3EF0E9}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed III\AC3MP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{F6AB3DD7-3E5C-42F4-9A6F-CFB2737A8C70}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed III\AC3MP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{533ED373-E831-43A8-8E7A-D99470FDC16F}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{72777692-5278-4BAA-AEDA-F60B450E7132}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{1E818909-423C-4BDC-AB63-D156688ABE54}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{4870F94F-62D5-40CF-B187-074677F0FC9F}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{64783715-6F34-4692-989E-EBCEE606B945}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{6C8CC94E-0506-4162-9B63-0898F2AF9F97}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{B09AC668-AD9F-4672-BF82-3F3784699D25}C:\games\sniper ghost warrior 3\win_x64\sgw3.exe] => (Block) C:\games\sniper ghost warrior 3\win_x64\sgw3.exe (CI Games S.A.) [File not signed]
FirewallRules: [UDP Query User{43F83156-6C81-4EDB-BC71-22B893FD6668}C:\games\sniper ghost warrior 3\win_x64\sgw3.exe] => (Block) C:\games\sniper ghost warrior 3\win_x64\sgw3.exe (CI Games S.A.) [File not signed]
FirewallRules: [TCP Query User{CF1AC52F-DAA0-4064-A6C0-4C32DD404A33}C:\program files (x86)\valve\portal 2\portal2.exe] => (Allow) C:\program files (x86)\valve\portal 2\portal2.exe () [File not signed]
FirewallRules: [UDP Query User{916A0028-AE4A-4CD1-B76D-AF7208C76519}C:\program files (x86)\valve\portal 2\portal2.exe] => (Allow) C:\program files (x86)\valve\portal 2\portal2.exe () [File not signed]
FirewallRules: [{437B16D9-8CEB-43D7-86F6-2AC47326AC74}] => (Allow) C:\Program Files\Unity\Editor\Unity.exe (Unity Technologies Aps -> Unity Technologies ApS)
FirewallRules: [{DB8C0BBD-EBF9-4F03-ACB4-1E84D685C365}] => (Block) C:\Program Files\Unity\Editor\Unity.exe (Unity Technologies Aps -> Unity Technologies ApS)
FirewallRules: [TCP Query User{88A50274-1095-4C28-97E9-87A01BD6702D}C:\program files\unity\editor\unity.exe] => (Allow) C:\program files\unity\editor\unity.exe (Unity Technologies Aps -> Unity Technologies ApS)
FirewallRules: [UDP Query User{6D9AA1F2-0129-4963-A462-D5A948ED80B0}C:\program files\unity\editor\unity.exe] => (Allow) C:\program files\unity\editor\unity.exe (Unity Technologies Aps -> Unity Technologies ApS)
FirewallRules: [{8BE6B155-B6AB-473C-8166-DF4E61FDFC40}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BB9E98F1-12C0-4B8D-8F67-673F30168485}] => (Allow) LPort=2869
FirewallRules: [{27B1CCBB-1C6A-4470-BE46-4F27CA75F2C1}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{650684B0-B01F-4CD6-8729-238AD13CD517}C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe] => (Allow) C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{80EA6CEF-D2ED-4499-B8C4-FCEAAEA14776}C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe] => (Allow) C:\program files\epic games\unrealtournament\engine\binaries\win64\ue4-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{87C3F9A7-5526-438A-9075-6E92F3928BD3}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{7C30FC14-D1AD-496C-A8FE-0695219016B6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{B904C49A-C3C2-447A-93C4-1E11ACA571B1}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{6697A640-9CC9-4555-B97F-BB8FED47A847}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{40ADF285-FD21-46CD-93BC-F40006510F8D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe (Valve -> )
FirewallRules: [{DCC3501B-CCA9-481C-ABD4-9BA93DF65281}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe (Valve -> )
FirewallRules: [{39481212-312E-43D8-8EFA-9A1F2859FE4D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E3031B24-5514-46BB-B862-5EFE4BCBA3AC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{AB0200FA-319E-4C42-AD43-9609AE31C4B9}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6AC95654-B6F0-4E15-A6D5-A1AA4953AEF3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{89FC69B4-65D7-4D0C-9001-FAD758AB715A}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{4DF68DB2-4FFA-422F-A39A-81B4FCC5471D}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{A2DFD47A-F4E0-4165-9B9C-5A0586D86C15}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Broadcaster\x64\XSplit.Core.exe (SplitmediaLabs Limited -> SplitMediaLabs)
FirewallRules: [{2E79226B-9E01-4074-9061-F60F8D21B916}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Broadcaster\x64\XSplit.cam.exe (SplitmediaLabs Limited -> SplitmediaLabs Limited)
FirewallRules: [{EAADF8CD-F363-478D-AB48-9FFD737ADF38}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Broadcaster\x64\XSplit.Core.exe (SplitmediaLabs Limited -> SplitMediaLabs)
FirewallRules: [{CAA4B7E4-C82F-414D-87E3-321CC40B6731}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Broadcaster\x64\XSplit.cam.exe (SplitmediaLabs Limited -> SplitmediaLabs Limited)
FirewallRules: [{736388E3-284F-4D69-8F8D-037B67620CD0}] => (Allow) LPort=9009
FirewallRules: [{2D2488EC-777D-46C9-A340-9AF1D013D43B}] => (Allow) LPort=9009
FirewallRules: [{1C444DD5-4B0F-44DC-8505-C5B205C25434}] => (Allow) LPort=9009
FirewallRules: [{3D7178EA-CA9C-49F1-9645-FD6DA0D1D754}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{AEA227A7-8CEA-4D33-BF87-FD880BCB556B}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{35F1FF71-A8AD-4222-802A-07F0A1817246}] => (Allow) LPort=9009
FirewallRules: [{4B9500B7-5F8C-4339-8361-D37C1A43D0A3}] => (Allow) LPort=9009
FirewallRules: [{3AF51125-FC73-4CCA-BF3F-D05FE2D821AE}] => (Allow) LPort=9009
FirewallRules: [{63936A8A-DCFD-449E-8702-1D17C92C7105}] => (Allow) LPort=9009
FirewallRules: [{77CBF74A-693D-49F1-9C7F-2C92D235E589}] => (Allow) LPort=9009
FirewallRules: [{D84D23C6-6B3B-4853-B820-C4092D8FAAF0}] => (Allow) LPort=9009
FirewallRules: [{720180D2-47CA-4812-A90C-D6B6ACBE8244}] => (Allow) LPort=9009
FirewallRules: [{B6F6E27F-7ABD-4A06-B2BA-9CDE1609C19F}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{7630EAF9-B6FB-4C47-90EC-5D7F6CF7F8BF}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{C0BE43A1-59BF-4D61-8348-CF48D6DF95FF}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{2F29D174-CAB6-4C96-8408-ACB34F878836}] => (Allow) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{713A24B4-E620-44CC-85D3-0EC6EC9E164C}] => (Allow) LPort=9009
FirewallRules: [{73D462EF-DC39-4C21-99E8-DFDD815B6566}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{F384F969-4354-4743-8B9D-FACF2FB676B8}C:\program files\java\jre1.8.0_201\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_201\bin\javaw.exe
FirewallRules: [UDP Query User{5D4C4B9E-D957-450E-A5EA-EF7C59076CE0}C:\program files\java\jre1.8.0_201\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_201\bin\javaw.exe
FirewallRules: [{E505499F-0B0D-4D32-B06E-74BFC8D306E2}] => (Allow) LPort=9009
FirewallRules: [{DD3E0DB7-39EA-4CB4-9117-12D67D738E6E}] => (Allow) LPort=9009
FirewallRules: [{8FA1986F-B897-40B1-834D-0CFAEE7F4D8B}] => (Allow) LPort=9009
FirewallRules: [{01CDA073-CE1F-4BF1-8393-836B07FE73AA}] => (Allow) LPort=9009
FirewallRules: [{A5656E98-1B11-48C5-A42A-40D95F89798C}] => (Allow) LPort=9009
FirewallRules: [{EC38452F-3A76-45DB-A484-1382C60CE9C4}] => (Allow) LPort=9009
FirewallRules: [{274AD03F-E034-4DE4-84B9-CFB169E8B47E}] => (Allow) LPort=9009
FirewallRules: [{807A0929-1B96-4E55-A006-33B907669110}] => (Allow) LPort=9009
FirewallRules: [{F48D576A-4C4F-4B6D-A6E4-6E26E112EE5E}] => (Allow) LPort=9009
FirewallRules: [{32EC9FD7-C872-485B-91B6-4E479A2CC876}] => (Allow) LPort=9009
FirewallRules: [{911E921C-6A6C-46C6-B002-0F8947AF9EEA}] => (Allow) LPort=9009
FirewallRules: [{99CDE8F2-B35D-454E-B507-DE7BB01EC3C3}] => (Allow) LPort=9009
FirewallRules: [{D471A2D0-517E-4402-B6EF-81EBF9CF43A0}] => (Allow) LPort=9009
FirewallRules: [{7D0FC7CA-E1B6-4EFD-9982-3F1D85178B4C}] => (Allow) LPort=9009
FirewallRules: [{CBE26FAD-14AC-4412-A6FC-7238363EC9D4}] => (Allow) LPort=9009
FirewallRules: [{2A2CA677-C30E-4D93-96DA-680ACF489C2C}] => (Allow) LPort=9009
FirewallRules: [{1C48471F-FE75-42FA-B868-37F483E6D6E3}] => (Allow) LPort=9009
FirewallRules: [{F3938F3F-A8F8-4365-989D-4B499682A21A}] => (Allow) LPort=9009
FirewallRules: [{D66D26F5-B752-4F69-88A4-B8168ED31E4D}] => (Allow) LPort=9009
FirewallRules: [{C776FA2C-A8DF-4113-B72C-4AF792AAB49C}] => (Allow) LPort=9009
FirewallRules: [{6DB75924-5EC6-443B-9B7C-174877790DFA}] => (Allow) LPort=9009
FirewallRules: [{08E14E5B-73AE-4E18-A298-B032C3809C47}] => (Allow) LPort=9009
FirewallRules: [{32F480F0-65B3-4E1F-AEA2-48EBC23791FC}] => (Allow) LPort=9009
FirewallRules: [{5E819A04-BB11-4EEB-A74E-E586EE2AAC94}] => (Allow) LPort=9009
FirewallRules: [{0B822237-681A-4CA6-85F9-2493D98B8A38}] => (Allow) LPort=9009
FirewallRules: [{66B5796D-2CC4-4EB2-9ECC-96BEC6AE9F4D}] => (Allow) LPort=26789
FirewallRules: [{9EC8FB12-2AD7-4811-B99A-65D536061DA2}] => (Allow) LPort=9009
FirewallRules: [{AC825731-64C9-4D3A-946C-9B95B3F0DDF9}] => (Allow) LPort=9009
FirewallRules: [{A4F8642A-E660-40CC-9145-29BD10D1DC8A}] => (Allow) LPort=9009
FirewallRules: [{5D4A4D14-5CFD-48CB-A873-480B959588CB}] => (Allow) LPort=9009
FirewallRules: [{2F1D7FD7-AA3C-4990-8A32-2626A0793CDB}] => (Allow) LPort=9009
FirewallRules: [{DCF7C7EB-162E-441D-A62B-07923AC155A3}] => (Allow) LPort=9009
FirewallRules: [{953B0872-2F4E-46D4-AC5A-70003B3F2EB3}] => (Allow) LPort=9009
FirewallRules: [{1B37D3F1-9E75-4152-A0B8-F7F64CB891B4}] => (Allow) LPort=9009
FirewallRules: [{A2B82674-AEAD-410E-A41A-B4C0CDEE7EA6}] => (Allow) LPort=9009
FirewallRules: [{6C1EFC03-4AA0-4B75-A864-E39F8384A376}] => (Allow) LPort=9009
FirewallRules: [{7E42104B-A0B2-4E5E-9DEE-1997B82F65A3}] => (Allow) LPort=9009
FirewallRules: [{0730D427-AC2C-4E23-BF6D-3A6FA7450E0F}] => (Allow) LPort=9009
FirewallRules: [{909E9583-C3D7-4B7B-8835-135176AA55E2}] => (Allow) LPort=9009
FirewallRules: [{3F87F0ED-8E64-4510-96B9-2B71D4E8E550}] => (Allow) LPort=9009
FirewallRules: [{2CFCDF5F-C0FE-4B5A-B507-1BB19ABBB6FA}] => (Allow) LPort=9009
FirewallRules: [{C07FC572-1D68-4A37-B83C-6B4C066166F3}] => (Allow) LPort=9009
FirewallRules: [{491EA62A-8EFC-42F1-9945-A1E95826D694}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{07731FD7-7ACF-40B8-A391-4D8A56EE5E1E}C:\old disc\call of duty modern warfare 3\call of duty modern warfare 3\iw5mp.exe] => (Block) C:\old disc\call of duty modern warfare 3\call of duty modern warfare 3\iw5mp.exe (Valve Corporation -> ) [File not signed]
FirewallRules: [UDP Query User{F2FBE844-D797-4B32-9F88-ECF8C285FA28}C:\old disc\call of duty modern warfare 3\call of duty modern warfare 3\iw5mp.exe] => (Block) C:\old disc\call of duty modern warfare 3\call of duty modern warfare 3\iw5mp.exe (Valve Corporation -> ) [File not signed]
FirewallRules: [{89A64D95-776E-4E99-BF6D-50C4C4905C67}] => (Allow) LPort=9009
FirewallRules: [{165BC85E-A37B-4F0F-8226-FA38C61BE6E0}] => (Allow) LPort=9009
FirewallRules: [{02EE044A-6B33-4CD7-B6A2-B23AB9AD8235}] => (Allow) LPort=9009
FirewallRules: [{B302B1EF-6554-4AEB-B276-6A05AB1D9571}] => (Allow) LPort=9009
FirewallRules: [{E8702CC3-709D-4178-B0A6-31585A828454}] => (Allow) LPort=9009
FirewallRules: [{0946EEEA-BDC5-4E54-B8D8-7A93F87A1EBA}] => (Allow) LPort=9009
FirewallRules: [{39C01005-E977-480A-AC21-466AA3F7B0EC}] => (Allow) LPort=9009
FirewallRules: [{4E1A3AC0-7B3C-4B72-9894-2DB05CB2D7BF}] => (Allow) LPort=9009
FirewallRules: [{01651C1E-E17E-46A7-9A87-06FC2484CB9D}] => (Allow) LPort=9009
FirewallRules: [{A6675772-1EF2-40AC-A421-8EAAC98AB2DC}] => (Allow) LPort=9009
FirewallRules: [{2FEE9CB1-FD71-4E90-95C6-C3E20C2A1962}] => (Allow) LPort=9009
FirewallRules: [{DAA65919-AB10-4732-AF02-BA43107B741A}] => (Allow) LPort=9009
FirewallRules: [{887997B8-A080-433A-BBB6-B92B49D3C25A}] => (Allow) LPort=9009
FirewallRules: [{7C54A0DE-37A8-439A-9B8C-B607A23F715E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{60429F10-54B1-4019-80A1-225B1E445DC6}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{C7356E3F-07C9-4B23-A029-EFB138424C16}] => (Allow) LPort=9009
FirewallRules: [{C5282571-8DB8-4B0D-ACE2-C213D3D14589}] => (Allow) LPort=9009
FirewallRules: [{8B71CB60-513D-4E8D-8B36-C339FB9EF566}] => (Allow) LPort=9009
FirewallRules: [{94AF5993-584A-4355-A9A8-E68E7930802E}] => (Allow) LPort=9009
FirewallRules: [{6EA3A655-D12A-46AC-A4C2-B11F8F8547DE}] => (Allow) LPort=9009
FirewallRules: [{F722A102-106E-41A9-A3A2-E1EC51A0E7E8}] => (Allow) LPort=9009
FirewallRules: [{466854CD-9B28-4C08-9F87-0990AC70E8F2}] => (Allow) LPort=9009
FirewallRules: [{B8FB2EEE-06BE-4B41-BA0F-296D76DF7191}] => (Allow) LPort=9009
FirewallRules: [{2076B2E2-6FF2-446E-A8B0-BBC81B1DA24F}] => (Allow) LPort=9009
FirewallRules: [{209A049D-560E-4B53-BE3C-C38E8115DBA8}] => (Allow) LPort=9009
FirewallRules: [{A2FB9BFE-A18E-4222-859E-1716E44394EB}] => (Allow) LPort=9009
FirewallRules: [{0933B881-6504-467C-A6C7-200DAAECB75D}] => (Allow) LPort=9009
FirewallRules: [{8F14AA34-D758-4561-B5A7-3971347098B7}] => (Allow) LPort=9009
FirewallRules: [{D65C4204-2C2E-4877-9FCC-D107DD6BC0CA}] => (Allow) LPort=9009
FirewallRules: [{1644C19D-D222-439C-9937-D118FDC9970C}] => (Allow) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe (Piriform Software Ltd -> Piriform Software)
FirewallRules: [{6F8B2E0B-BFA4-49D4-B3ED-1DAFD86C8C24}] => (Allow) LPort=9009
FirewallRules: [{E3E8600B-1EDC-4F54-9117-51AD3D5B6A59}] => (Allow) LPort=9009
FirewallRules: [{38A06F86-1B1E-45C2-B83A-911C01CDD6CF}] => (Allow) LPort=9009
FirewallRules: [{6377D02A-F5EC-439F-BE78-563AD2C0CE2A}] => (Allow) LPort=9009
FirewallRules: [{28C22D61-6375-4D2F-BAF7-CABCA4FDECC5}] => (Allow) LPort=9009
FirewallRules: [{96D92DA2-6D1F-4FD8-94C5-6E8ACC732F34}] => (Allow) LPort=9009
FirewallRules: [{0BE1F162-CF0F-4E8C-9A08-A2199C84233C}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{2E5C6C11-B7AB-4840-B65A-26214D8C9437}C:\program files (x86)\tom clancys rainbow six siege\rainbowsix.exe] => (Block) C:\program files (x86)\tom clancys rainbow six siege\rainbowsix.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [UDP Query User{5C12EFA3-52AF-4160-90F6-4DDDFB356CB2}C:\program files (x86)\tom clancys rainbow six siege\rainbowsix.exe] => (Block) C:\program files (x86)\tom clancys rainbow six siege\rainbowsix.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{2C81750C-9A69-4286-87C1-E2C24705C3B2}] => (Allow) C:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{CB4CB250-A9C7-47B7-86AD-0558DA681207}] => (Allow) C:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{1750D4A6-3E42-45C2-A2CF-A2FF8A950BFA}] => (Allow) LPort=9009
FirewallRules: [{080F0986-902E-4B5A-9D42-B205AD68AC9B}] => (Allow) LPort=9009
FirewallRules: [{0DD59AD1-F2C4-453B-866A-3D06D08C2FDE}] => (Allow) LPort=9009
FirewallRules: [{22082E9E-07EB-42F3-AA5E-8B351BB7CED4}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{1D2204AF-9473-4713-AF7A-AF7C689DA3B0}C:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) C:\program files (x86)\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [UDP Query User{6F33DD27-9F13-47CC-88CC-32A194234218}C:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) C:\program files (x86)\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [{CDF8AE8E-284C-46FA-9B63-9B889536B82E}] => (Allow) LPort=9009
FirewallRules: [{9FB16661-12CC-4270-BC8B-78459FE7919B}] => (Allow) LPort=9009
FirewallRules: [{E7E6484D-DA37-46D3-9622-16A5289FB824}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{F7EA30E9-0D71-4656-BB0F-A52E750F9A49}C:\users\štěpán\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Block) C:\users\štěpán\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (cfx-collective) [File not signed]
FirewallRules: [UDP Query User{C4D7B2E7-9DC2-45B4-81F6-16CAE9EE3B4C}C:\users\štěpán\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Block) C:\users\štěpán\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (cfx-collective) [File not signed]
FirewallRules: [{0E91A745-BC7A-4892-B5B5-A62016D1E9D5}] => (Allow) LPort=9009
FirewallRules: [{51A7E531-76BD-4057-A061-A09A6AEB7E14}] => (Allow) LPort=9009
FirewallRules: [{23ADEE50-BFDF-4430-9250-C3153E2F435D}] => (Allow) LPort=9009
FirewallRules: [{567E36FC-3E8D-4899-9931-80C56E800DC8}] => (Allow) LPort=9009
FirewallRules: [{98EE984E-1FD8-4083-AEBB-CAAEA0A0A90A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (Bluehole, Inc. -> PUBG Corporation )
FirewallRules: [{0BCFEEA4-71EC-4341-8A8A-11FBC000190E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (Bluehole, Inc. -> PUBG Corporation )
FirewallRules: [TCP Query User{D1271D37-6453-4246-A3A9-0771B6A43B71}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [UDP Query User{0E79C6D4-2C6C-42B4-B2A9-C265430C29F6}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [{E35E68CB-06EC-4EAB-B1DD-FA9B205E5136}] => (Allow) LPort=9009
FirewallRules: [{A40C341C-06B9-4051-B63B-EC6FFF0ECCD4}] => (Allow) LPort=9009
FirewallRules: [{FE6604EC-5AF5-49D6-9F9F-E97B75AB0FBD}] => (Allow) LPort=9009
FirewallRules: [{F91B9F30-7900-4863-AB48-CFA8E669C775}] => (Allow) LPort=9009
FirewallRules: [{B7CA0165-3184-466F-9D3F-462E26279A1E}] => (Allow) LPort=9009
FirewallRules: [{C678E71D-A019-4788-AE60-4B0EA2D596BF}] => (Allow) LPort=9009
FirewallRules: [{980E5BAB-4361-4C0B-84F2-B7424040CA3C}] => (Allow) LPort=9009
FirewallRules: [{43DFF70D-AF11-43D9-AA41-5483FB3D9CB5}] => (Allow) LPort=9009
FirewallRules: [{8091FB76-61D2-4C72-BFDA-77E0D729AB15}] => (Allow) LPort=9009
FirewallRules: [{C356FD88-B649-4957-8F7E-F11E4D5BCA69}] => (Allow) LPort=9009
FirewallRules: [{01B01AB5-66AB-4381-A6F5-D9AB4A475F29}] => (Allow) LPort=9009
FirewallRules: [{0500A004-5002-4FA0-A335-5C4400FF5C8C}] => (Allow) LPort=9009
FirewallRules: [{D50575C1-702D-42A0-8864-1C34DDD535E6}] => (Allow) LPort=9009
FirewallRules: [{673CFF98-E5DD-4FFE-8F69-1502CA7E6633}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{B537187A-3514-4ED8-B4E5-5D0DF64E3833}C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [UDP Query User{C08B66B4-7ADE-4119-AB2F-D3B7542E8C11}C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [TCP Query User{5243D3A0-78A3-4816-A043-A341BAE0C507}C:\program files (x86)\steam\steamapps\common\pubg_experimental\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg_experimental\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [UDP Query User{0548E591-EA61-4147-A6F5-E32C9025FE77}C:\program files (x86)\steam\steamapps\common\pubg_experimental\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg_experimental\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [{67827C56-B907-4E08-9FDD-107FEF107BC3}] => (Allow) LPort=9009
FirewallRules: [{E7B5CCD6-E11B-42E9-BD88-D107D31260B4}] => (Allow) LPort=9009
FirewallRules: [{A8217E6B-3A92-4C49-BF5A-A837ABF74676}] => (Allow) LPort=9009
FirewallRules: [{41864BA1-7D67-43C9-BC24-6085527CF73E}] => (Allow) LPort=9009
FirewallRules: [{1CC0B325-6E72-4209-B5B1-4F90B8FEB5B1}] => (Allow) LPort=9009
FirewallRules: [{2B07F436-A50F-4AAE-9545-3FC97CE6D6BC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\American Truck Simulator\bin\win_x64\amtrucks.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{98A7BE76-20DC-4753-8BB6-7994CD009526}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\American Truck Simulator\bin\win_x64\amtrucks.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{8350DF6E-2877-43E4-8CB3-9AD1C42E5F51}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
FirewallRules: [{B016B317-8BAB-4D80-BB76-DBC9B004D552}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
FirewallRules: [{7C22E728-AFF9-4D25-ABCD-BD92E62EDD14}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
FirewallRules: [{B73CF6BA-6AD6-4BAA-BD55-85693CDB449B}] => (Allow) LPort=9009
FirewallRules: [{F6EE447D-6651-4E0C-B226-9B047C2747F3}] => (Allow) LPort=9009
FirewallRules: [{DCE8980B-46B3-456E-A7BC-11D1D4867BE3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{35CE9734-2129-461A-8168-3444B45C3DB2}] => (Allow) LPort=9009
FirewallRules: [{D8080AD9-1A8B-4240-B3A7-BD0F2C7C67D8}] => (Allow) LPort=9009

==================== Restore Points =========================

09-11-2019 23:14:36 Instalace balíčku ovladače zařízení: Phantom TAP-Windows Provider V9 Síťové adaptéry

==================== Faulty Device Manager Devices ============

Name: AMSDK Driver
Description: AMSDK Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: amsdk
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Standardní klávesnice PS/2
Description: Standardní klávesnice PS/2
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardní klávesnice)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: ========================

Application errors:
==================
Error: (11/13/2019 08:21:52 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: CCleaner Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (11/13/2019 07:22:03 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: CCleaner Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (11/13/2019 06:21:53 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: CCleaner Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (11/13/2019 05:21:53 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: CCleaner Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (11/13/2019 05:16:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Avira.SystemSpeedup.Maintenance.exe, verze: 6.3.0.10788, časové razítko: 0x5d9f2b9a
Název chybujícího modulu: clr.dll, verze: 4.7.3468.0, časové razítko: 0x5d490e65
Kód výjimky: 0xc0000409
Posun chyby: 0x002f8fd9
ID chybujícího procesu: 0x2514
Čas spuštění chybující aplikace: 0x01d59a3dbbf70bc9
Cesta k chybující aplikaci: C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Maintenance.exe
Cesta k chybujícímu modulu: C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll
ID zprávy: fa02b639-0630-11ea-a1c8-1c1b0d94907a

Error: (11/13/2019 04:21:53 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: CCleaner Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (11/13/2019 03:21:53 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: CCleaner Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (11/13/2019 02:21:55 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: CCleaner Update Helper -- Error 1316. Zadaný účet již existuje.


System errors:
=============
Error: (11/13/2019 07:21:10 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (11/13/2019 07:21:09 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (11/13/2019 03:22:59 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (11/13/2019 03:22:59 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (11/13/2019 11:23:50 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba MSI Live Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (11/13/2019 11:22:50 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (11/13/2019 11:22:26 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (11/13/2019 11:22:09 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.


Windows Defender:
===================================
Date: 2018-07-08 20:22:56.441
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci.
Nová verze podpisu:1.271.645.0
Předchozí verze podpisu:1.261.104.0
Zdroj aktualizace:Uživatel
Typ podpisu:Antispywarový program
Typ aktualizace:Delta
Uživatel:NT AUTHORITY\SYSTEM
Aktuální verze modulu:1.1.15000.2
Předchozí verze modulu:1.1.14500.5
Kód chyby:0x80070666
Popis chyby:Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

Date: 2018-07-08 20:22:56.441
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.15000.2
Předchozí verze modulu:1.1.14500.5
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x80070666
Popis chyby:Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

CodeIntegrity:
===================================

Date: 2019-09-09 19:57:10.577
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-09-09 19:57:10.545
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

BIOS: American Megatrends Inc. F22 03/06/2017
Motherboard: Gigabyte Technology Co., Ltd. Z170-Gaming K3-CF
Processor: Intel(R) Core(TM) i7-6700 CPU @ 3.40GHz
Percentage of memory in use: 38%
Total physical RAM: 16339.43 MB
Available physical RAM: 10098.53 MB
Total Virtual: 32677 MB
Available Virtual: 25394.08 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:1862.92 GB) (Free:772.04 GB) NTFS
Drive d: (Místní disk) (Fixed) (Total:465.76 GB) (Free:338.66 GB) NTFS
Drive e: (Nový svazek) (Fixed) (Total:0.1 GB) (Free:0.08 GB) NTFS
Drive z: (Záložní disk) (Fixed) (Total:465.66 GB) (Free:234.59 GB) NTFS

\\?\Volume{f5755843-a826-11e5-948e-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 52E1B164)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: E7F49C31)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1862.9 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 5DB676DC)
Partition 1: (Not Active) - (Size=99 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Hastrbusy
nováček
Příspěvky: 21
Registrován: září 19
Pohlaví: Muž
Stav:
Offline

Re: Re: Sekání pc

Příspěvekod Hastrbusy » 13 lis 2019 21:09

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 13-11-2019
Ran by Štěpán (administrator) on ŠTĚPÁN-PC (Gigabyte Technology Co., Ltd. Z170-Gaming K3) (13-11-2019 21:02:37)
Running from C:\Users\Štěpán\Desktop
Loaded Profiles: Štěpán (Available Profiles: Štěpán & Anežka & Guest)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe
() [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.RealTimeOptimizer.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
(cFos Software GmbH -> cFos Software GmbH) C:\Program Files\cFosSpeed\spd.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> Gigabyte Technology CO.) C:\Program Files\GIGABYTE\Smart Backup\RPMDaemon.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngine.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft) C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe
(Gigabyte Technology CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\Smart TimeLock\TimeMgmtDaemon.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MICRO-STAR INTERNATIONAL CO., LTD.) C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\MSI\MSIRegister\MSIRegisterService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\MsiGamingOSD_x64.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MsiGamingOSD_x86.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\EyeRest.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\TriggerModeMonitor.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\VideoCardMonitorII.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.5.21.0\CCleanerBrowserCrashHandler.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.5.21.0\CCleanerBrowserCrashHandler64.exe
(Protexis Inc. -> Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Rivet Networks LLC -> Rivet Networks) C:\Program Files\Killer Networking\Network Manager\KillerService.exe
(Rivet Networks LLC -> Rivet Networks) C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe
(Solute GmbH -> Avira) C:\Program Files (x86)\Avira\Safe Shopping\Avira Safe Shopping.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228800 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [228728 2019-10-17] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira System Speedup User Starter] => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [331352 2019-10-10] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [] => [X]
HKLM\...\RunOnce: [RPMKickstart] => C:\Program Files\GIGABYTE\Smart Backup\RPMKickstartEx.exe [2320384 2014-04-01] (TODO: <Company name>) [File not signed]
HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\GIGABYTE\AppCenter\PreRun.exe [14632 2016-02-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKLM-x32\...\RunOnce: [DualBiosRescue] => C:\Program Files (x86)\GIGABYTE\GigabyteFirmwareUpdateUtility\dbrro.exe [12096 2015-08-19] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-4054239986-3961217788-2411693650-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-4054239986-3961217788-2411693650-1000\...\Policies\Explorer: [NoSecurityTab] 1
HKU\S-1-5-18\...\RunOnce: [SPReview] => "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"hxxp://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.97\Installer\chrmstp.exe [2019-11-12] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\77.1.1834.93\Installer\chrmstp.exe [2019-10-10] (Piriform Software Ltd -> Piriform Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicyUsers\S-1-5-21-4054239986-3961217788-2411693650-1007\User: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0119B909-F8F6-450C-A12F-4E63FA03C633} - System32\Tasks\{94202780-F41C-454E-8416-A97F435E6FB4} => C:\Windows\system32\pcalua.exe -a "C:\Users\Štěpán\Downloads\chromeinstall-8u66 (1).exe" -d C:\Users\Štěpán\Downloads
Task: {080CFE78-1D5F-4ADA-A66C-002C1E859BE3} - System32\Tasks\SIV-VGA => C:\Program Files (x86)\GIGABYTE\SIV\sensord.exe [253872 2019-05-22] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {0F7BF0B1-9CA8-4F5A-9FD2-CD911DD2521E} - System32\Tasks\MSIGH_Host => C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe [3349968 2017-06-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
Task: {14719CB2-A683-4F9B-9FC1-0B39D5A4ED45} - System32\Tasks\{A00F7C7A-2453-4812-AB5A-E248727D6B39} => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228800 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {1566287F-ED78-4F34-8FBB-F68709971A4D} - System32\Tasks\LiquidSensord => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\LiquidSensord.exe [251824 2019-05-07] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {1B6A7748-4957-4E75-BEB9-4D758919D71D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-24] (Google Inc -> Google Inc.)
Task: {1BF39C23-2336-469F-A2D8-4D989BD8A457} - System32\Tasks\cFos\Registration Tasks\Open Browser => "c:\program files (x86)\google\chrome\application\chrome.exe" "hxxp://www.cfos.de/cs/cfosspeed/documentation/status.htm?reg-10.50.2338-gigabyte"
Task: {1C568FB6-027F-4FED-AD4A-86B91F594DCE} - System32\Tasks\AutoKMSCustom => AutoKMS.exe
Task: {21577CC3-73EE-4928-BF79-AF1FD1115C35} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {235EEA7D-1FE7-41AF-B422-9E1E4BA1BB41} - System32\Tasks\EasyTune => C:\Program Files (x86)\GIGABYTE\EasyTune\etinit.exe [15792 2019-02-21] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {2B8CACC1-3A49-469A-8DA3-02183497D3A7} - System32\Tasks\MSISW_Host => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {2C22383D-06CC-4898-801E-E07F77C25741} - System32\Tasks\EasyTune 1 => C:\Program Files (x86)\GIGABYTE\EasyTune\etocfile.exe [18352 2019-02-21] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {2E8E6BC0-9B14-4785-9539-F7DA566DE73F} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_pepper.exe [1453112 2019-10-06] (Adobe Inc. -> Adobe)
Task: {3A772C82-3D52-4A18-9F4A-CAC91318E527} - System32\Tasks\{340ED2C4-4461-44DA-99E7-A964B9E7A76E} => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228800 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {3EB5FA65-E4E3-4E15-85FC-5B73611CC61B} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [209128 2019-09-12] (Piriform Software Ltd -> Piriform Software)
Task: {3FC8BDAF-F149-44F5-A7E9-C7BC380595E5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-24] (Google Inc -> Google Inc.)
Task: {472609C0-F3A8-4292-884D-3A9C6A994A50} - System32\Tasks\Avira\System Speedup\TestScheduler => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [331352 2019-10-10] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {54137F3F-0CD4-4D63-ABFE-D8AC9C746393} - System32\Tasks\{297569C5-DA14-4EF7-8FED-7598AC5493CE} => C:\Program Files (x86)\Valve\Portal 2\portal2.exe [359424 2011-04-19] () [File not signed]
Task: {5806B143-0DD0-4C51-9339-81CD4F1181CE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {68962A13-7D7C-4FD5-B2F3-5397CFA99570} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2759024 2019-10-17] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {690A2F62-F37E-4FD1-A923-9FE0C9979FBD} - System32\Tasks\Avira\System Speedup\Delayed Startup\Štěpán\1 => C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe [19318272 2016-12-16] () [File not signed] <==== ATTENTION
Task: {6C4D7B2C-CCE9-4283-BEBF-00DBD12FDE90} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [1889536 2019-09-25] (Piriform Software Ltd -> Piriform Software)
Task: {6C79DA8D-082A-43D3-9F5A-DAE1AE7F8085} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
Task: {6FF95FE3-7B88-4AA9-9E2F-C096DAE1EBF1} - System32\Tasks\{BE617414-64DF-4E4E-A37E-2C3D4DE1D035} => C:\Program Files (x86)\R.G. Mechanics\Grand Theft Auto V\GTAVLauncher.exe
Task: {895A7215-00F1-4900-9026-DE9CEA19C887} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [27801088 2019-10-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG )
Task: {8976686F-0A9A-414B-BA25-6327E664075D} - System32\Tasks\Avira\System Speedup\Delayed Startup\All users\1 => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [331352 2019-10-10] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {95B7D38F-56A5-4F27-92C8-58B863648103} - System32\Tasks\Avira\Safe Shopping\Update => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [112016 2019-09-10] (Solute GmbH -> Avira)
Task: {9DF68405-7CE6-4294-8EC6-8531C2BC4769} - System32\Tasks\Avira\Safe Shopping\Launch => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [112016 2019-09-10] (Solute GmbH -> Avira)
Task: {A0B4443A-2CDB-4AF6-9AA3-6568914C4B24} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [1889536 2019-09-25] (Piriform Software Ltd -> Piriform Software)
Task: {A1DB57BB-F62E-4BAC-B303-B4DCA83F01B9} - System32\Tasks\{C6A6F853-A458-4029-BD41-98742D2B7D7C} => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228800 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {A8D71F2A-2165-4D97-A113-4667BC76F194} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [209128 2019-09-12] (Piriform Software Ltd -> Piriform Software)
Task: {AD206C0B-478B-4DE9-8D95-DA55354374B4} - System32\Tasks\SIV => C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe [426416 2019-05-22] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {B443FF24-E101-486B-9944-4D4D41A5FB43} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe [3073304 2016-01-06] (Symantec Corporation -> Symantec Corporation)
Task: {BB9B0725-D79A-4E93-94CA-6F028633BF01} - System32\Tasks\{1F25FE04-8C0F-4EB3-8A48-353A470834C9} => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228800 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {C0F9F739-A42B-49CC-94C8-43B00047AFFC} - System32\Tasks\MSIOSDx86_Host => C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MsiGamingOSD_x86.exe [38560 2017-09-05] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
Task: {C43080E7-2433-4ED3-AA32-0D4241FD52A6} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {C591E35B-4290-410F-81C9-23CE8415E322} - System32\Tasks\Avira\Safe Shopping\Check => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [112016 2019-09-10] (Solute GmbH -> Avira)
Task: {C832660B-A4EB-4237-BD21-983E15149D65} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {CF785B41-219D-4E35-8867-97F44B152378} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_223_Plugin.exe
Task: {D7C894A9-E8EE-45AD-A9C5-2C2E25BD861B} - System32\Tasks\{46282FD8-7C48-4A06-81F8-86B590DCD9F1} => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228800 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {E6020794-CF9A-4F3B-87BA-79D5C9EC9F4C} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [232880 2019-05-07] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {EB997925-7209-4155-BE25-8DD56521DC6D} - System32\Tasks\{BDFA94F2-C042-4676-AE58-BCEAA30C9737} => C:\Program Files (x86)\R.G. Mechanics\Grand Theft Auto V\GTAVLauncher.exe
Task: {ED525213-D6B6-434D-AC5B-7B2C25716BAD} - System32\Tasks\MSIOSDx64_Host => C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\MsiGamingOSD_x64.exe [37536 2017-09-05] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
Task: {ED5768EF-50C4-451F-8776-5157E4487264} - System32\Tasks\Microsoft\Windows\Application Experience\StartupCheckLibrary => C:\Windows\system32\StartupCheck.vbs [392 2018-05-07] () [File not signed]

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 07 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{6745564C-ABCE-44A7-8565-A0599B9815F8}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{E214B8C6-BD32-438A-88F4-DB6326DC9CA9}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-4054239986-3961217788-2411693650-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-4054239986-3961217788-2411693650-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: GBHO.BHO -> {45d30484-7ded-43d9-957a-d2fd1f046511} -> C:\Windows\system32\mscoree.dll [2010-11-05] (Microsoft Corporation -> Microsoft Corporation)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_201\bin\ssv.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: AviraBrowserSafety.BrowserSafety -> {c3c77255-42c0-499f-b664-6e981a0b1647} -> C:\Program Files (x86)\Avira\Browser Safety\Avira Browser Safety.dll [2015-03-11] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Toolbar: HKLM - Smart Backup - {1d09c093-f71e-43c3-b948-19316cbd695e} - C:\Windows\system32\mscoree.dll [2010-11-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: abs - {E00957BD-D0E1-4eb9-A025-7743FDC8B27B} - C:\Program Files (x86)\Avira\Browser Safety\Avira Browser Safety.dll [2015-03-11] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

FireFox:
========
FF ProfilePath: C:\Users\Štěpán\AppData\Roaming\TomTom\HOME\Profiles\u4h0dnor.default [2019-09-09]
FF Homepage: TomTom\HOME\Profiles\u4h0dnor.default -> about:home
FF NewTab: TomTom\HOME\Profiles\u4h0dnor.default -> about:newtab
FF ProfilePath: C:\Users\Štěpán\AppData\Roaming\Mozilla\Firefox\Profiles\AiA4Qsa9.default [2019-09-09]
FF Homepage: Mozilla\Firefox\Profiles\AiA4Qsa9.default -> about:home
FF NewTab: Mozilla\Firefox\Profiles\AiA4Qsa9.default -> about:newtab
FF Extension: (Avira Browser Safety) - C:\Users\Štěpán\AppData\Roaming\Mozilla\Firefox\Profiles\AiA4Qsa9.default\Extensions\abs@avira.com [2019-09-09] [hxxps://download.avira.com/package/absnooffers/firefox/update_webext_no_offers.rdf]
FF Extension: (Avira Browser Safety) - C:\Users\Štěpán\AppData\Roaming\Mozilla\Firefox\Profiles\AiA4Qsa9.default\Extensions\abs@avira.com.xpi [2016-02-22] [Legacy]
FF Extension: (Avira Password Manager) - C:\Users\Štěpán\AppData\Roaming\Mozilla\Firefox\Profiles\AiA4Qsa9.default\Extensions\passwordmanager@avira.com [2019-09-09] [hxxps://s3.eu-central-1.amazonaws.com/avira-pwm-extensions/update.rdf]
FF Plugin: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-09-20] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] (Apple Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-11-10] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-11-10] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-11-13] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-11-13] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-05] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-05] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-10-11] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-09-20] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin HKU\S-1-5-21-4054239986-3961217788-2411693650-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Štěpán\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [No File]
FF Plugin HKU\S-1-5-21-4054239986-3961217788-2411693650-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2019-03-06] (Ubisoft Entertainment Sweden AB -> )

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://searchya.com/
CHR StartupUrls: Default -> "hxxp://google.cz/"
CHR DefaultSearchURL: Default -> hxxps://search.avira.com/#web/result?source=omnibar&q={searchTerms}
CHR DefaultSearchKeyword: Default -> Avira
CHR DefaultSuggestURL: Default -> hxxps://search.avira.com/suggestions?q={searchTerms}&li=ff&hl=en
CHR Profile: C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default [2019-11-13]
CHR Extension: (Prezentace) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-09-09]
CHR Extension: (Disk Google) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-09-10]
CHR Extension: (Audiotool) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkgoccjhfjgjedhkiefaclppgbmoobnk [2019-09-10]
CHR Extension: (YouTube) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-09-09]
CHR Extension: (Avira Password Manager) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2019-11-11]
CHR Extension: (uBlock Origin) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2019-10-31]
CHR Extension: (Soundtrap - Make Music Online) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\epaknpicfmoglpinnnjckaobafganajf [2019-09-10]
CHR Extension: (Tabulky) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-09-09]
CHR Extension: (Avira Browser Safety) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2019-10-12]
CHR Extension: (Dokumenty Google offline) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-09-10]
CHR Extension: (Avira SafeSearch Plus) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipmkfpcnmccejididiaagpgchgjfajgp [2019-09-10]
CHR Extension: (Until AM Web App) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\kodigjkcpaoeodlnmcnekemakpnmegnk [2019-09-10]
CHR Extension: (Fair AdBlocker) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgblnfidahcdcjddiepkckcfdhpknnjh [2019-09-10]
CHR Extension: (BIODIGITAL HUMAN) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\meefjekipolcgabfgaclcpdkbghhmoah [2019-09-10]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Chrome Media Router) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-10-23]
CHR Profile: C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\System Profile [2019-09-12]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1209328 2019-10-17] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [483408 2019-10-17] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [483408 2019-10-17] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [500272 2019-09-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] (Giga-Byte Technology -> )
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [591872 2019-10-17] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2989536 2019-08-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [379552 2019-11-04] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [146224 2019-10-31] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8404720 2019-11-06] (BattlEye Innovations e.K. -> )
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [209128 2019-09-12] (Piriform Software Ltd -> Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\77.1.1834.93\elevation_service.exe [984880 2019-09-25] (Piriform Software Ltd -> Piriform Software)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [209128 2019-09-12] (Piriform Software Ltd -> Piriform Software)
R2 cFosSpeedS; C:\Program Files\cFosSpeed\spd.exe [595288 2019-03-21] (cFos Software GmbH -> cFos Software GmbH)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2017-02-07] (Disc Soft Ltd -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [777856 2019-10-26] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 EasyTuneEngineService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [142768 2019-05-22] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 gadjservice; C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe [17920 2015-06-25] () [File not signed]
R2 GamingApp_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe [47056 2017-08-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 GamingHotkey_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe [2019792 2016-10-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 Gservice; C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe [19888 2016-12-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft)
S3 HwmRecordService; C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe [128944 2019-05-22] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [344168 2015-05-06] (Intel Corporation - pGFX -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel® Trusted Connect Service -> Intel(R) Corporation)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [21304 2017-09-28] (Microsoft Corporation -> Microsoft Corporation)
S2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [209712 2014-08-25] (Intel CASE -> )
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [158496 2014-11-10] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 Killer Service V2; C:\Program Files\Killer Networking\Network Manager\KillerService.exe [454872 2016-02-12] (Rivet Networks LLC -> Rivet Networks)
R2 MSIREGISTER_MR; C:\MSI\MSIRegister\MSIRegisterService.exe [128976 2017-07-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_ActiveX_Service; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe [83616 2017-09-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2298040 2017-09-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [163280 2015-05-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [30240 2013-09-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> MICRO-STAR INTERNATIONAL CO., LTD.)
S2 OcButtonService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe [125872 2019-05-09] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2348336 2019-10-15] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3228976 2019-10-15] (Electronic Arts, Inc. -> Electronic Arts)
S4 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2018-07-02] (Even Balance, Inc. -> )
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [471696 2019-10-07] (Rockstar Games, Inc. -> Rockstar Games)
R2 Smart TimeLock; C:\Program Files (x86)\GIGABYTE\Smart TimeLock\TimeMgmtDaemon.exe [102400 2013-02-22] (Gigabyte Technology CO., LTD.) [File not signed]
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [157480 2018-08-02] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
S2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [22240 2013-10-28] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [68152 2019-06-17] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [220128 2019-09-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [175808 2019-09-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [36072 2019-03-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [78600 2017-03-02] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [35376 2019-03-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 BfLwf; C:\Windows\System32\DRIVERS\bflwfx64.sys [147528 2016-02-12] (Rivet Networks LLC -> Rivet Networks, LLC.)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2017-05-21] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2017-05-21] (Disc Soft Ltd -> Disc Soft Ltd)
R3 gdrv; C:\Windows\gdrv.sys [26792 2019-08-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R3 gdrv2; C:\Windows\gdrv2.sys [32600 2019-08-02] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R3 I2cHkBurn; C:\Windows\System32\drivers\I2cHkBurn.sys [41760 2015-07-27] (Feature Integration Technology -> FINTEK Corp.)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [31728 2015-11-12] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [22216 2014-05-27] (Intel CASE -> )
R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [22728 2014-05-27] (Intel CASE -> )
S3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [25800 2014-05-27] (Intel CASE -> )
S3 ISCT; C:\Windows\System32\DRIVERS\ISCTD.sys [44744 2014-05-27] (Intel CASE -> )
R3 KillerEth; C:\Windows\System32\DRIVERS\e2xw7x64.sys [134296 2016-02-12] (Rivet Networks LLC -> Qualcomm Atheros, Inc.)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [178976 2015-07-28] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [13368 2012-10-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 phantomtap; C:\Windows\System32\DRIVERS\phantomtap.sys [35664 2018-08-14] (Avira Operations GmbH & Co. KG -> The OpenVPN Project)
S3 qcusbser; C:\Windows\System32\DRIVERS\qcusbser.sys [254520 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2015-11-05] (Apple, Inc.) [File not signed]
S1 UsbCharger; C:\Windows\System32\DRIVERS\UsbCharger.sys [22240 2013-10-24] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [159936 2016-08-16] (NGO -> MBB)
S3 XtuAcpiDriver; C:\Windows\System32\DRIVERS\XtuAcpiDriver.sys [54344 2016-11-22] (Intel Corporation -> Intel Corporation)
S3 ALSysIO; \??\C:\Users\TPN~1\AppData\Local\Temp\ALSysIO64.sys [X] <==== ATTENTION
S1 amsdk; \??\C:\Windows\system32\drivers\amsdk.sys [X]
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]
S4 nvvad_WaveExtensible; system32\drivers\nvvad64v.sys [X]
S4 nvvhci; system32\DRIVERS\nvvhci.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-11-13 21:02 - 2019-11-13 21:03 - 000046473 _____ C:\Users\Štěpán\Desktop\FRST.txt
2019-11-13 21:01 - 2019-11-13 21:03 - 000000000 ____D C:\FRST
2019-11-13 21:00 - 2019-11-13 21:00 - 002260480 _____ (Farbar) C:\Users\Štěpán\Desktop\FRST64.exe
2019-11-13 19:22 - 2019-11-13 19:39 - 315302717 _____ C:\Users\Štěpán\Desktop\Jak prosté S04E11.Down Where the Dead Delight.mkv
2019-11-09 21:40 - 2019-11-10 00:07 - 311086534 _____ C:\Users\Štěpán\Desktop\IMG_6071.psd
2019-11-09 10:14 - 2019-11-09 10:25 - 196427458 _____ C:\Users\Anežka\Downloads\90210-Nová-generace-04x24.cz_xvid.avi
2019-11-07 22:05 - 2019-11-07 22:16 - 192519270 _____ C:\Users\Anežka\Downloads\90210 Nová generace 04x23 Příběh dvou mejdanů,CZ dabing,(Angel).avi
2019-11-07 20:59 - 2019-11-07 21:10 - 194590110 _____ C:\Users\Anežka\Downloads\90210-Nová-generace-4x22_xvid.avi
2019-11-07 20:19 - 2019-11-07 20:30 - 193773046 _____ C:\Users\Anežka\Downloads\90210-Nová-generace-4x21_xvid.avi
2019-11-07 19:38 - 2019-11-07 20:02 - 442012918 _____ C:\Users\Anežka\Downloads\90210 Nová generace 4x20.avi
2019-11-07 19:27 - 2019-11-07 19:38 - 196833798 _____ C:\Users\Anežka\Downloads\90210-Nová-generace-4x19_xvid.avi
2019-11-06 20:27 - 2019-11-06 20:51 - 441780858 _____ C:\Users\Anežka\Downloads\90210 Nová generace 04x18 Krev není voda,CZ dabing,(Angel).avi
2019-11-06 19:33 - 2019-11-06 19:57 - 435722044 _____ C:\Users\Anežka\Downloads\90210 Nová generace 4x17.avi
2019-11-06 19:03 - 2019-11-06 19:29 - 481531178 _____ C:\Users\Anežka\Downloads\90210_Nová generace 4x16 XviD DVB CZ.avi
2019-11-05 17:06 - 2019-11-05 19:51 - 2991220181 _____ C:\Users\Štěpán\Desktop\Typci a zbrane 2016 HD1080p CZ.mkv
2019-11-05 13:34 - 2019-11-05 14:02 - 2079362773 _____ C:\Users\Štěpán\Desktop\foto (2).rar
2019-11-04 22:04 - 2019-11-09 20:39 - 000000000 ____D C:\Users\Štěpán\Desktop\Déňa dýmovnice
2019-11-03 12:16 - 2019-11-03 12:42 - 482682880 _____ C:\Users\Anežka\Downloads\90210 Nová generace 04x14 Mami, slyšíš mě,CZ dabing,(Angel).avi
2019-11-03 11:35 - 2019-11-03 11:46 - 195845204 _____ C:\Users\Anežka\Downloads\90210-Nová-generace-4x13_xvid.avi
2019-11-03 11:24 - 2019-11-03 11:35 - 195651632 _____ C:\Users\Anežka\Downloads\90210-Nová-generace-4x12_xvid.avi
2019-11-02 11:11 - 2019-11-02 11:38 - 498442240 _____ C:\Users\Anežka\Downloads\90210 Nová generace 4x11.avi
2019-10-31 10:39 - 2019-11-03 22:37 - 000000000 ____D C:\Users\Štěpán\Desktop\les Krásné
2019-10-26 15:07 - 2019-10-26 15:07 - 000000000 ____D C:\Users\Štěpán\AppData\Local\TslGame
2019-10-26 15:06 - 2019-10-26 15:06 - 000000000 ____D C:\Users\Štěpán\AppData\Local\BattlEye
2019-10-26 14:03 - 2019-10-26 14:03 - 000000222 _____ C:\Users\Štěpán\Desktop\PUBG Test Server.url
2019-10-26 14:03 - 2019-10-26 14:03 - 000000222 _____ C:\Users\Štěpán\Desktop\PUBG Experimental Server.url
2019-10-26 14:03 - 2019-10-26 14:03 - 000000222 _____ C:\Users\Štěpán\Desktop\PLAYERUNKNOWN'S BATTLEGROUNDS.url
2019-10-22 07:02 - 2019-10-22 07:02 - 000000000 ____D C:\ProgramData\SystemAcCrux
2019-10-22 07:00 - 2019-10-22 07:00 - 000000000 ____D C:\Program Files\EaseUS
2019-10-18 17:37 - 2019-10-18 17:37 - 000000000 ____D C:\Users\Anežka\AppData\LocalLow\Adobe
2019-10-18 17:36 - 2019-10-18 17:37 - 000000000 ____D C:\Users\Anežka\AppData\Local\Adobe
2019-10-18 14:09 - 2019-10-18 14:09 - 000001126 _____ C:\Users\Public\Desktop\Apex Legends.lnk
2019-10-18 14:09 - 2019-10-18 14:09 - 000001126 _____ C:\ProgramData\Desktop\Apex Legends.lnk
2019-10-18 14:09 - 2019-10-18 14:09 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2019-10-18 14:09 - 2019-10-18 14:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apex Legends
2019-10-18 13:39 - 2019-10-18 13:39 - 000000280 _____ C:\Users\Štěpán\Desktop\Metro 2033 Redux.url
2019-10-18 13:28 - 2019-10-18 15:53 - 2484300978 _____ C:\Users\Štěpán\Desktop\Stážista (2015) CZ.mkv
2019-10-18 09:14 - 2019-10-18 09:14 - 000003662 _____ C:\Windows\system32\Tasks\AviraSystemSpeedupUpdate
2019-10-17 15:36 - 2019-10-17 15:37 - 000000000 ____D C:\Users\Štěpán\Desktop\wetransfer-0fa16e

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-11-13 20:57 - 2019-10-06 15:58 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2019-11-13 20:57 - 2019-10-06 15:58 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
2019-11-13 20:33 - 2016-01-02 23:54 - 000000000 ____D C:\Program Files (x86)\Steam
2019-11-13 20:33 - 2015-12-31 10:12 - 000000000 ____D C:\Users\Štěpán\AppData\Roaming\vlc
2019-11-13 19:20 - 2019-02-15 11:46 - 000000000 ____D C:\Users\Public\Speedup Sessions
2019-11-13 18:12 - 2016-09-15 23:04 - 000000000 ____D C:\ProgramData\NVIDIA
2019-11-13 11:26 - 2009-07-14 05:45 - 000015328 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-11-13 11:26 - 2009-07-14 05:45 - 000015328 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-11-13 11:19 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-11-12 17:06 - 2015-12-21 15:27 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-11-11 18:03 - 2019-06-19 09:36 - 000000000 ____D C:\Users\Anežka\AppData\Roaming\vlc
2019-11-09 23:31 - 2016-02-16 22:13 - 000007603 _____ C:\Users\Štěpán\AppData\Local\Resmon.ResmonCfg
2019-11-09 23:15 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2019-11-09 23:14 - 2016-02-22 20:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2019-11-05 17:04 - 2019-09-06 19:40 - 000000000 ____D C:\Users\Štěpán\AppData\Roaming\ESTsoft
2019-11-05 11:57 - 2015-12-21 15:27 - 000003388 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2019-11-05 11:57 - 2015-12-21 15:27 - 000003260 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2019-11-05 11:56 - 2015-12-21 15:27 - 000000000 ____D C:\Program Files (x86)\Google
2019-11-04 22:04 - 2016-01-03 19:15 - 000000000 ____D C:\Users\Štěpán\AppData\Local\ElevatedDiagnostics
2019-11-01 19:03 - 2009-07-14 16:18 - 000673860 _____ C:\Windows\system32\perfh005.dat
2019-11-01 19:03 - 2009-07-14 16:18 - 000144138 _____ C:\Windows\system32\perfc005.dat
2019-11-01 19:03 - 2009-07-14 06:13 - 001600350 _____ C:\Windows\system32\PerfStringBackup.INI
2019-10-31 10:13 - 2019-08-30 10:18 - 000000000 ____D C:\Users\Štěpán\AppData\Local\Adobe
2019-10-30 16:53 - 2019-08-30 10:24 - 000000000 ____D C:\Users\Štěpán\AppData\Local\CrashDumps
2019-10-29 17:57 - 2019-10-02 16:01 - 000000000 ____D C:\ProgramData\Package Cache
2019-10-26 15:07 - 2018-01-09 21:37 - 000000000 ____D C:\Users\Štěpán\AppData\Local\UnrealEngine
2019-10-26 14:03 - 2016-01-03 20:53 - 000000000 ____D C:\Users\Štěpán\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2019-10-25 16:29 - 2016-02-03 20:14 - 000000000 ____D C:\Users\Štěpán\AppData\Roaming\Origin
2019-10-25 15:52 - 2016-02-03 20:16 - 000000000 ____D C:\Program Files (x86)\Origin Games
2019-10-25 15:52 - 2016-02-03 20:08 - 000000000 ____D C:\ProgramData\Origin
2019-10-24 19:48 - 2019-04-02 19:02 - 000000000 ____D C:\Users\Štěpán\AppData\Local\FiveM
2019-10-24 17:32 - 2019-02-01 21:19 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-10-23 17:09 - 2019-10-04 18:40 - 000003446 _____ C:\Windows\system32\Tasks\AdobeGCInvoker-1.0
2019-10-21 19:19 - 2017-09-21 18:19 - 000003292 _____ C:\Windows\system32\Tasks\Avira_Antivirus_Systray
2019-10-21 14:51 - 2018-09-06 19:20 - 000000000 ____D C:\Users\Štěpán\AppData\Roaming\EasyAntiCheat
2019-10-18 17:37 - 2019-06-19 09:23 - 000000000 ____D C:\Users\Anežka\AppData\Roaming\Adobe
2019-10-18 13:59 - 2017-08-15 18:54 - 000000000 ____D C:\Program Files (x86)\Tom Clancys Rainbow Six Siege
2019-10-18 13:47 - 2016-11-17 22:47 - 000000000 ____D C:\ProgramData\EA Logs
2019-10-18 13:41 - 2016-02-03 20:06 - 000000000 ____D C:\Program Files (x86)\Origin
2019-10-17 08:30 - 2019-09-12 14:15 - 000000000 ____D C:\Program Files\CCleaner
2019-10-16 09:21 - 2019-02-01 21:19 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task

==================== Files in the root of some directories ========

2016-03-28 19:28 - 2016-06-01 18:06 - 000000132 _____ () C:\Users\Štěpán\AppData\Roaming\Adobe Formát GIF CS6 – předvolby
2016-05-15 10:38 - 2018-06-27 11:01 - 000000132 _____ () C:\Users\Štěpán\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2016-07-09 21:19 - 2016-07-09 21:19 - 000000132 _____ () C:\Users\Štěpán\AppData\Roaming\Adobe GIF Format CS6 Prefs
2019-07-13 19:36 - 2019-07-13 19:36 - 000000132 _____ () C:\Users\Štěpán\AppData\Roaming\Adobe IllExport Filter CS6 Prefs
2017-01-19 19:36 - 2019-07-11 15:23 - 000000132 _____ () C:\Users\Štěpán\AppData\Roaming\Adobe PNG Format CS6 Prefs
2019-09-06 19:09 - 2019-09-06 19:09 - 000001456 _____ () C:\Users\Štěpán\AppData\Local\Adobe Save for Web 13.0 Prefs
2016-02-16 22:13 - 2019-11-09 23:31 - 000007603 _____ () C:\Users\Štěpán\AppData\Local\Resmon.ResmonCfg
2017-11-05 10:52 - 2017-11-05 10:52 - 000032038 _____ () C:\Users\Štěpán\AppData\Local\SquareClock.Production_Home_Siko_WebIcon.ico

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2019-07-16 14:56
==================== End of FRST.txt ========================

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43054
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Sekání pc

Příspěvekod jaro3 » 13 lis 2019 22:53

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CreateRestorePoint:
CloseProcesses:
ContextMenuHandlers1: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll -> No File
ContextMenuHandlers4: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers6: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll -> No File
Shortcut: C:\Users\Štěpán\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft\Minecraft Debugger.lnk -> C:\Users\Štěpán\AppData\Roaming\.minecraft\minecraft launcher\Debug.bat (No File)
AlternateDataStreams: C:\Users\Štěpán\Data aplikací:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Štěpán\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
GroupPolicyUsers\S-1-5-21-4054239986-3961217788-2411693650-1007\User: Restriction <==== ATTENTION
BootExecute: autocheck autochk * sdnclean64.exe
Task: {1B6A7748-4957-4E75-BEB9-4D758919D71D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-24] (Google Inc -> Google Inc.)
Task: {1C568FB6-027F-4FED-AD4A-86B91F594DCE} - System32\Tasks\AutoKMSCustom => AutoKMS.exe
Task: {3FC8BDAF-F149-44F5-A7E9-C7BC380595E5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-24] (Google Inc -> Google Inc.)
Task: {690A2F62-F37E-4FD1-A923-9FE0C9979FBD} - System32\Tasks\Avira\System Speedup\Delayed Startup\Štěpán\1 => C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe [19318272 2016-12-16] () [File not signed] <==== ATTENTION
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-4054239986-3961217788-2411693650-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin HKU\S-1-5-21-4054239986-3961217788-2411693650-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Štěpán\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [No File]
CHR HomePage: Default -> hxxp://searchya.com/
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp]
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 ALSysIO; \??\C:\Users\TPN~1\AppData\Local\Temp\ALSysIO64.sys [X] <==== ATTENTION
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

Co ten Memtest??

Name: AMSDK Driver
Description: AMSDK Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: amsdk
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Zkus aktualizovat ovladače , třeba pomocí:
Stáhni si Slim Drivers
Pomůže ti najít a aktualizovat ovladače..

nebo Drive Booster ap.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Hastrbusy
nováček
Příspěvky: 21
Registrován: září 19
Pohlaví: Muž
Stav:
Offline

Re: Sekání pc

Příspěvekod Hastrbusy » 14 lis 2019 12:41

memtest byl v pohodě.

Fix result of Farbar Recovery Scan Tool (x64) Version: 13-11-2019
Ran by Štěpán (14-11-2019 10:52:22) Run:1
Running from C:\Users\Štěpán\Desktop
Loaded Profiles: Štěpán (Available Profiles: Štěpán & Anežka & Guest)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
ContextMenuHandlers1: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll -> No File
ContextMenuHandlers4: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers6: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll -> No File
Shortcut: C:\Users\�t�p�n\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft\Minecraft Debugger.lnk -> C:\Users\�t�p�n\AppData\Roaming\.minecraft\minecraft launcher\Debug.bat (No File)
AlternateDataStreams: C:\Users\�t�p�n\Data aplikac�:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\�t�p�n\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
GroupPolicyUsers\S-1-5-21-4054239986-3961217788-2411693650-1007\User: Restriction <==== ATTENTION
BootExecute: autocheck autochk * sdnclean64.exe
Task: {1B6A7748-4957-4E75-BEB9-4D758919D71D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-24] (Google Inc -> Google Inc.)
Task: {1C568FB6-027F-4FED-AD4A-86B91F594DCE} - System32\Tasks\AutoKMSCustom => AutoKMS.exe
Task: {3FC8BDAF-F149-44F5-A7E9-C7BC380595E5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-24] (Google Inc -> Google Inc.)
Task: {690A2F62-F37E-4FD1-A923-9FE0C9979FBD} - System32\Tasks\Avira\System Speedup\Delayed Startup\�t�p�n\1 => C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe [19318272 2016-12-16] () [File not signed] <==== ATTENTION
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-4054239986-3961217788-2411693650-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin HKU\S-1-5-21-4054239986-3961217788-2411693650-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\�t�p�n\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [No File]
CHR HomePage: Default -> hxxp://searchya.com/
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp]
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 ALSysIO; \??\C:\Users\TPN~1\AppData\Local\Temp\ALSysIO64.sys [X] <==== ATTENTION
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End
*****************

Restore point was successfully created.
Processes closed successfully.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\UnLockerMenu => removed successfully
HKLM\Software\Classes\CLSID\{410BF280-86EF-4E0F-8279-EC5848546AD3} => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\UnLockerMenu => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\UnLockerMenu => removed successfully
"C:\Users\�t�p�n\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft\Minecraft Debugger.lnk" => not found
"C:\Users\�t�p�n\Data aplikac�" => ":00e481b5e22dbe1f649fcddd505d3eb7" ADS not found.
"C:\Users\�t�p�n\AppData\Roaming" => ":00e481b5e22dbe1f649fcddd505d3eb7" ADS not found.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
C:\Windows\system32\GroupPolicyUsers\S-1-5-21-4054239986-3961217788-2411693650-1007\User => moved successfully
HKLM\System\CurrentControlSet\Control\Session Manager\\BootExecute => value restored successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1B6A7748-4957-4E75-BEB9-4D758919D71D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1B6A7748-4957-4E75-BEB9-4D758919D71D}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1C568FB6-027F-4FED-AD4A-86B91F594DCE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1C568FB6-027F-4FED-AD4A-86B91F594DCE}" => removed successfully
C:\Windows\System32\Tasks\AutoKMSCustom => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoKMSCustom" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3FC8BDAF-F149-44F5-A7E9-C7BC380595E5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3FC8BDAF-F149-44F5-A7E9-C7BC380595E5}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{690A2F62-F37E-4FD1-A923-9FE0C9979FBD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{690A2F62-F37E-4FD1-A923-9FE0C9979FBD}" => removed successfully
"C:\Windows\System32\Tasks\Avira\System Speedup\Delayed Startup\�t�p�n\1" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Avira\System Speedup\Delayed Startup\�t�p�n\1" => not found
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
HKU\S-1-5-21-4054239986-3961217788-2411693650-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} => removed successfully
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKU\S-1-5-21-4054239986-3961217788-2411693650-1000\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0 => removed successfully
"C:\Users\�t�p�n\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll" => not found
"Chrome HomePage" => removed successfully
HKLM\SOFTWARE\Google\Chrome\Extensions\caljgklbbfbcjjanaijlacgncafpegll => removed successfully
HKLM\SOFTWARE\Google\Chrome\Extensions\flliilndjeohchalpbbcdekjklbdgfkk => removed successfully
HKLM\SOFTWARE\Google\Chrome\Extensions\ipmkfpcnmccejididiaagpgchgjfajgp => removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\caljgklbbfbcjjanaijlacgncafpegll => removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\flliilndjeohchalpbbcdekjklbdgfkk => removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\ipmkfpcnmccejididiaagpgchgjfajgp => removed successfully
HKLM\System\CurrentControlSet\Services\AppMgmt => removed successfully
AppMgmt => service removed successfully
HKLM\System\CurrentControlSet\Services\ALSysIO => removed successfully
ALSysIO => service removed successfully
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore" => not found

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 46538213 B
Java, Flash, Steam htmlcache => 384119129 B
Windows/system/drivers => 127152661 B
Edge => 0 B
Chrome => 411174666 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 33058 B
Public => 33058 B
ProgramData => 33058 B
systemprofile => 66244 B
systemprofile32 => 99430 B
LocalService => 132555 B
NetworkService => 132555 B
Štěpán => 343364115 B
Anežka => 453108201 B
Guest => 453108201 B

RecycleBin => 21005905347 B
EmptyTemp: => 21.6 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 11:04:09 ====

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43054
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Sekání pc

Příspěvekod jaro3 » 14 lis 2019 18:12

Stáhni si zde DelFix
Další odkazy:
https://toolslib.net/downloads/viewdownload/2-delfix/
http://ccm.net/download/download-24087-delfix
https://www.bleepingcomputer.com/download/delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7, 8 a10 musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt

Víc s tím neuděláme , jestli to blbne pořád , problém bude jinde.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Hastrbusy
nováček
Příspěvky: 21
Registrován: září 19
Pohlaví: Muž
Stav:
Offline

Re: Re: Sekání pc

Příspěvekod Hastrbusy » 14 lis 2019 19:35

# DelFix v1.013 - Logfile created 14/11/2019 at 19:34:01
# Updated 17/04/2016 by Xplode
# Username : Štěpán - ŠTĚPÁN-PC
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)

~ Removing disinfection tools ...

Deleted : C:\Qoobox
Deleted : C:\FRST
Deleted : C:\zoek_backup
Deleted : C:\AdwCleaner
Deleted : C:\Users\Štěpán\Desktop\Addition.txt
Deleted : C:\Users\Štěpán\Desktop\Fixlog.txt
Deleted : C:\Users\Štěpán\Desktop\FRST.txt
Deleted : C:\Users\Štěpán\Desktop\FRST64.exe
Deleted : HKLM\SOFTWARE\Swearware
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis
Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\combofix.exe

~ Cleaning system restore ...

Deleted : RP #324 [Instalace balíčku ovladače zařízení: Phantom TAP-Windows Provider V9 Síťové adaptéry | 11/09/2019 22:14:36]
Deleted : RP #325 [Windows Update | 11/13/2019 21:51:55]
Deleted : RP #326 [Windows Update | 11/14/2019 08:10:49]
Deleted : RP #328 [Restore Point Created by FRST | 11/14/2019 09:52:26]
Deleted : RP #329 [Driver Booster : Android Composite ADB Interface | 11/14/2019 11:46:08]

New restore point created !

########## - EOF - ##########

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43054
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Sekání pc

Příspěvekod jaro3 » 14 lis 2019 19:58

Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Hastrbusy
nováček
Příspěvky: 21
Registrován: září 19
Pohlaví: Muž
Stav:
Offline

Re: Re: Sekání pc

Příspěvekod Hastrbusy » 15 lis 2019 10:28

Je to o mnohé lepší, nicméně stále nejsem na původním stavu což nejspíš bude tedy něčím jiným.
Mnohokrát děkuji za pomoc a cenné rady :)


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 10 hostů