Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 13-11-2019
Ran by Štěpán (administrator) on ŠTĚPÁN-PC (Gigabyte Technology Co., Ltd. Z170-Gaming K3) (13-11-2019 21:02:37)
Running from C:\Users\Štěpán\Desktop
Loaded Profiles: Štěpán (Available Profiles: Štěpán & Anežka & Guest)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool:
http://www.geekstogo.com/forum/topic/33 ... scan-tool/==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe
() [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.RealTimeOptimizer.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
(cFos Software GmbH -> cFos Software GmbH) C:\Program Files\cFosSpeed\spd.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> Gigabyte Technology CO.) C:\Program Files\GIGABYTE\Smart Backup\RPMDaemon.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngine.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft) C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe
(Gigabyte Technology CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\Smart TimeLock\TimeMgmtDaemon.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MICRO-STAR INTERNATIONAL CO., LTD.) C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\MSI\MSIRegister\MSIRegisterService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\MsiGamingOSD_x64.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MsiGamingOSD_x86.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\EyeRest.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\TriggerModeMonitor.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\VideoCardMonitorII.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.5.21.0\CCleanerBrowserCrashHandler.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.5.21.0\CCleanerBrowserCrashHandler64.exe
(Protexis Inc. -> Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Rivet Networks LLC -> Rivet Networks) C:\Program Files\Killer Networking\Network Manager\KillerService.exe
(Rivet Networks LLC -> Rivet Networks) C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe
(Solute GmbH -> Avira) C:\Program Files (x86)\Avira\Safe Shopping\Avira Safe Shopping.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228800 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [228728 2019-10-17] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira System Speedup User Starter] => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [331352 2019-10-10] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [] => [X]
HKLM\...\RunOnce: [RPMKickstart] => C:\Program Files\GIGABYTE\Smart Backup\RPMKickstartEx.exe [2320384 2014-04-01] (TODO: <Company name>) [File not signed]
HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\GIGABYTE\AppCenter\PreRun.exe [14632 2016-02-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKLM-x32\...\RunOnce: [DualBiosRescue] => C:\Program Files (x86)\GIGABYTE\GigabyteFirmwareUpdateUtility\dbrro.exe [12096 2015-08-19] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-4054239986-3961217788-2411693650-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-4054239986-3961217788-2411693650-1000\...\Policies\Explorer: [NoSecurityTab] 1
HKU\S-1-5-18\...\RunOnce: [SPReview] => "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"hxxp://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.97\Installer\chrmstp.exe [2019-11-12] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\77.1.1834.93\Installer\chrmstp.exe [2019-10-10] (Piriform Software Ltd -> Piriform Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicyUsers\S-1-5-21-4054239986-3961217788-2411693650-1007\User: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0119B909-F8F6-450C-A12F-4E63FA03C633} - System32\Tasks\{94202780-F41C-454E-8416-A97F435E6FB4} => C:\Windows\system32\pcalua.exe -a "C:\Users\Štěpán\Downloads\chromeinstall-8u66 (1).exe" -d C:\Users\Štěpán\Downloads
Task: {080CFE78-1D5F-4ADA-A66C-002C1E859BE3} - System32\Tasks\SIV-VGA => C:\Program Files (x86)\GIGABYTE\SIV\sensord.exe [253872 2019-05-22] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {0F7BF0B1-9CA8-4F5A-9FD2-CD911DD2521E} - System32\Tasks\MSIGH_Host => C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe [3349968 2017-06-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
Task: {14719CB2-A683-4F9B-9FC1-0B39D5A4ED45} - System32\Tasks\{A00F7C7A-2453-4812-AB5A-E248727D6B39} => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228800 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {1566287F-ED78-4F34-8FBB-F68709971A4D} - System32\Tasks\LiquidSensord => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\LiquidSensord.exe [251824 2019-05-07] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {1B6A7748-4957-4E75-BEB9-4D758919D71D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-24] (Google Inc -> Google Inc.)
Task: {1BF39C23-2336-469F-A2D8-4D989BD8A457} - System32\Tasks\cFos\Registration Tasks\Open Browser => "c:\program files (x86)\google\chrome\application\chrome.exe" "hxxp://www.cfos.de/cs/cfosspeed/documentation/status.htm?reg-10.50.2338-gigabyte"
Task: {1C568FB6-027F-4FED-AD4A-86B91F594DCE} - System32\Tasks\AutoKMSCustom => AutoKMS.exe
Task: {21577CC3-73EE-4928-BF79-AF1FD1115C35} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {235EEA7D-1FE7-41AF-B422-9E1E4BA1BB41} - System32\Tasks\EasyTune => C:\Program Files (x86)\GIGABYTE\EasyTune\etinit.exe [15792 2019-02-21] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {2B8CACC1-3A49-469A-8DA3-02183497D3A7} - System32\Tasks\MSISW_Host => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {2C22383D-06CC-4898-801E-E07F77C25741} - System32\Tasks\EasyTune 1 => C:\Program Files (x86)\GIGABYTE\EasyTune\etocfile.exe [18352 2019-02-21] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {2E8E6BC0-9B14-4785-9539-F7DA566DE73F} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_pepper.exe [1453112 2019-10-06] (Adobe Inc. -> Adobe)
Task: {3A772C82-3D52-4A18-9F4A-CAC91318E527} - System32\Tasks\{340ED2C4-4461-44DA-99E7-A964B9E7A76E} => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228800 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {3EB5FA65-E4E3-4E15-85FC-5B73611CC61B} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [209128 2019-09-12] (Piriform Software Ltd -> Piriform Software)
Task: {3FC8BDAF-F149-44F5-A7E9-C7BC380595E5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-24] (Google Inc -> Google Inc.)
Task: {472609C0-F3A8-4292-884D-3A9C6A994A50} - System32\Tasks\Avira\System Speedup\TestScheduler => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [331352 2019-10-10] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {54137F3F-0CD4-4D63-ABFE-D8AC9C746393} - System32\Tasks\{297569C5-DA14-4EF7-8FED-7598AC5493CE} => C:\Program Files (x86)\Valve\Portal 2\portal2.exe [359424 2011-04-19] () [File not signed]
Task: {5806B143-0DD0-4C51-9339-81CD4F1181CE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {68962A13-7D7C-4FD5-B2F3-5397CFA99570} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2759024 2019-10-17] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {690A2F62-F37E-4FD1-A923-9FE0C9979FBD} - System32\Tasks\Avira\System Speedup\Delayed Startup\Štěpán\1 => C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe [19318272 2016-12-16] () [File not signed] <==== ATTENTION
Task: {6C4D7B2C-CCE9-4283-BEBF-00DBD12FDE90} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [1889536 2019-09-25] (Piriform Software Ltd -> Piriform Software)
Task: {6C79DA8D-082A-43D3-9F5A-DAE1AE7F8085} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
Task: {6FF95FE3-7B88-4AA9-9E2F-C096DAE1EBF1} - System32\Tasks\{BE617414-64DF-4E4E-A37E-2C3D4DE1D035} => C:\Program Files (x86)\R.G. Mechanics\Grand Theft Auto V\GTAVLauncher.exe
Task: {895A7215-00F1-4900-9026-DE9CEA19C887} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [27801088 2019-10-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG )
Task: {8976686F-0A9A-414B-BA25-6327E664075D} - System32\Tasks\Avira\System Speedup\Delayed Startup\All users\1 => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [331352 2019-10-10] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {95B7D38F-56A5-4F27-92C8-58B863648103} - System32\Tasks\Avira\Safe Shopping\Update => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [112016 2019-09-10] (Solute GmbH -> Avira)
Task: {9DF68405-7CE6-4294-8EC6-8531C2BC4769} - System32\Tasks\Avira\Safe Shopping\Launch => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [112016 2019-09-10] (Solute GmbH -> Avira)
Task: {A0B4443A-2CDB-4AF6-9AA3-6568914C4B24} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [1889536 2019-09-25] (Piriform Software Ltd -> Piriform Software)
Task: {A1DB57BB-F62E-4BAC-B303-B4DCA83F01B9} - System32\Tasks\{C6A6F853-A458-4029-BD41-98742D2B7D7C} => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228800 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {A8D71F2A-2165-4D97-A113-4667BC76F194} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [209128 2019-09-12] (Piriform Software Ltd -> Piriform Software)
Task: {AD206C0B-478B-4DE9-8D95-DA55354374B4} - System32\Tasks\SIV => C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe [426416 2019-05-22] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {B443FF24-E101-486B-9944-4D4D41A5FB43} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe [3073304 2016-01-06] (Symantec Corporation -> Symantec Corporation)
Task: {BB9B0725-D79A-4E93-94CA-6F028633BF01} - System32\Tasks\{1F25FE04-8C0F-4EB3-8A48-353A470834C9} => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228800 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {C0F9F739-A42B-49CC-94C8-43B00047AFFC} - System32\Tasks\MSIOSDx86_Host => C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MsiGamingOSD_x86.exe [38560 2017-09-05] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
Task: {C43080E7-2433-4ED3-AA32-0D4241FD52A6} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {C591E35B-4290-410F-81C9-23CE8415E322} - System32\Tasks\Avira\Safe Shopping\Check => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [112016 2019-09-10] (Solute GmbH -> Avira)
Task: {C832660B-A4EB-4237-BD21-983E15149D65} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {CF785B41-219D-4E35-8867-97F44B152378} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_223_Plugin.exe
Task: {D7C894A9-E8EE-45AD-A9C5-2C2E25BD861B} - System32\Tasks\{46282FD8-7C48-4A06-81F8-86B590DCD9F1} => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228800 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {E6020794-CF9A-4F3B-87BA-79D5C9EC9F4C} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [232880 2019-05-07] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {EB997925-7209-4155-BE25-8DD56521DC6D} - System32\Tasks\{BDFA94F2-C042-4676-AE58-BCEAA30C9737} => C:\Program Files (x86)\R.G. Mechanics\Grand Theft Auto V\GTAVLauncher.exe
Task: {ED525213-D6B6-434D-AC5B-7B2C25716BAD} - System32\Tasks\MSIOSDx64_Host => C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\MsiGamingOSD_x64.exe [37536 2017-09-05] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
Task: {ED5768EF-50C4-451F-8776-5157E4487264} - System32\Tasks\Microsoft\Windows\Application Experience\StartupCheckLibrary => C:\Windows\system32\StartupCheck.vbs [392 2018-05-07] () [File not signed]
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 07 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{6745564C-ABCE-44A7-8565-A0599B9815F8}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{E214B8C6-BD32-438A-88F4-DB6326DC9CA9}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page =
hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearchHKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page =
hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhomeHKU\S-1-5-21-4054239986-3961217788-2411693650-1000\Software\Microsoft\Internet Explorer\Main,Search Page =
hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearchSearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-4054239986-3961217788-2411693650-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL =
hxxp://www.google.com/search?q={searchTerms}
BHO: GBHO.BHO -> {45d30484-7ded-43d9-957a-d2fd1f046511} -> C:\Windows\system32\mscoree.dll [2010-11-05] (Microsoft Corporation -> Microsoft Corporation)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_201\bin\ssv.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: AviraBrowserSafety.BrowserSafety -> {c3c77255-42c0-499f-b664-6e981a0b1647} -> C:\Program Files (x86)\Avira\Browser Safety\Avira Browser Safety.dll [2015-03-11] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Toolbar: HKLM - Smart Backup - {1d09c093-f71e-43c3-b948-19316cbd695e} - C:\Windows\system32\mscoree.dll [2010-11-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: abs - {E00957BD-D0E1-4eb9-A025-7743FDC8B27B} - C:\Program Files (x86)\Avira\Browser Safety\Avira Browser Safety.dll [2015-03-11] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
FireFox:
========
FF ProfilePath: C:\Users\Štěpán\AppData\Roaming\TomTom\HOME\Profiles\u4h0dnor.default [2019-09-09]
FF Homepage: TomTom\HOME\Profiles\u4h0dnor.default -> about:home
FF NewTab: TomTom\HOME\Profiles\u4h0dnor.default -> about:newtab
FF ProfilePath: C:\Users\Štěpán\AppData\Roaming\Mozilla\Firefox\Profiles\AiA4Qsa9.default [2019-09-09]
FF Homepage: Mozilla\Firefox\Profiles\AiA4Qsa9.default -> about:home
FF NewTab: Mozilla\Firefox\Profiles\AiA4Qsa9.default -> about:newtab
FF Extension: (Avira Browser Safety) - C:\Users\Štěpán\AppData\Roaming\Mozilla\Firefox\Profiles\AiA4Qsa9.default\Extensions\abs@avira.com [2019-09-09] [hxxps://download.avira.com/package/absnooffers/firefox/update_webext_no_offers.rdf]
FF Extension: (Avira Browser Safety) - C:\Users\Štěpán\AppData\Roaming\Mozilla\Firefox\Profiles\AiA4Qsa9.default\Extensions\abs@avira.com.xpi [2016-02-22] [Legacy]
FF Extension: (Avira Password Manager) - C:\Users\Štěpán\AppData\Roaming\Mozilla\Firefox\Profiles\AiA4Qsa9.default\Extensions\passwordmanager@avira.com [2019-09-09] [hxxps://s3.eu-central-1.amazonaws.com/avira-pwm-extensions/update.rdf]
FF Plugin: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-02-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-09-20] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] (Apple Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-11-10] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-11-10] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-11-13] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-11-13] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-05] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-05] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-10-11] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-09-20] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin HKU\S-1-5-21-4054239986-3961217788-2411693650-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Štěpán\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [No File]
FF Plugin HKU\S-1-5-21-4054239986-3961217788-2411693650-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2019-03-06] (Ubisoft Entertainment Sweden AB -> )
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default ->
hxxp://searchya.com/CHR StartupUrls: Default -> "hxxp://google.cz/"
CHR DefaultSearchURL: Default ->
hxxps://search.avira.com/#web/result?source=omnibar&q={searchTerms}
CHR DefaultSearchKeyword: Default -> Avira
CHR DefaultSuggestURL: Default ->
hxxps://search.avira.com/suggestions?q={searchTerms}&li=ff&hl=en
CHR Profile: C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default [2019-11-13]
CHR Extension: (Prezentace) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-09-09]
CHR Extension: (Disk Google) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-09-10]
CHR Extension: (Audiotool) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkgoccjhfjgjedhkiefaclppgbmoobnk [2019-09-10]
CHR Extension: (YouTube) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-09-09]
CHR Extension: (Avira Password Manager) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2019-11-11]
CHR Extension: (uBlock Origin) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2019-10-31]
CHR Extension: (Soundtrap - Make Music Online) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\epaknpicfmoglpinnnjckaobafganajf [2019-09-10]
CHR Extension: (Tabulky) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-09-09]
CHR Extension: (Avira Browser Safety) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2019-10-12]
CHR Extension: (Dokumenty Google offline) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-09-10]
CHR Extension: (Avira SafeSearch Plus) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipmkfpcnmccejididiaagpgchgjfajgp [2019-09-10]
CHR Extension: (Until AM Web App) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\kodigjkcpaoeodlnmcnekemakpnmegnk [2019-09-10]
CHR Extension: (Fair AdBlocker) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgblnfidahcdcjddiepkckcfdhpknnjh [2019-09-10]
CHR Extension: (BIODIGITAL HUMAN) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\meefjekipolcgabfgaclcpdkbghhmoah [2019-09-10]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Chrome Media Router) - C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-10-23]
CHR Profile: C:\Users\Štěpán\AppData\Local\Google\Chrome\User Data\System Profile [2019-09-12]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1209328 2019-10-17] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [483408 2019-10-17] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [483408 2019-10-17] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [500272 2019-09-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] (Giga-Byte Technology -> )
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [591872 2019-10-17] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2989536 2019-08-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [379552 2019-11-04] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [146224 2019-10-31] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8404720 2019-11-06] (BattlEye Innovations e.K. -> )
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [209128 2019-09-12] (Piriform Software Ltd -> Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\77.1.1834.93\elevation_service.exe [984880 2019-09-25] (Piriform Software Ltd -> Piriform Software)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [209128 2019-09-12] (Piriform Software Ltd -> Piriform Software)
R2 cFosSpeedS; C:\Program Files\cFosSpeed\spd.exe [595288 2019-03-21] (cFos Software GmbH -> cFos Software GmbH)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1471168 2017-02-07] (Disc Soft Ltd -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [777856 2019-10-26] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 EasyTuneEngineService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [142768 2019-05-22] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 gadjservice; C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe [17920 2015-06-25] () [File not signed]
R2 GamingApp_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe [47056 2017-08-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 GamingHotkey_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe [2019792 2016-10-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 Gservice; C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe [19888 2016-12-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft)
S3 HwmRecordService; C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe [128944 2019-05-22] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [344168 2015-05-06] (Intel Corporation - pGFX -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel® Trusted Connect Service -> Intel(R) Corporation)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [21304 2017-09-28] (Microsoft Corporation -> Microsoft Corporation)
S2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [209712 2014-08-25] (Intel CASE -> )
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [158496 2014-11-10] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 Killer Service V2; C:\Program Files\Killer Networking\Network Manager\KillerService.exe [454872 2016-02-12] (Rivet Networks LLC -> Rivet Networks)
R2 MSIREGISTER_MR; C:\MSI\MSIRegister\MSIRegisterService.exe [128976 2017-07-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_ActiveX_Service; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe [83616 2017-09-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2298040 2017-09-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [163280 2015-05-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [30240 2013-09-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> MICRO-STAR INTERNATIONAL CO., LTD.)
S2 OcButtonService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe [125872 2019-05-09] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2348336 2019-10-15] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3228976 2019-10-15] (Electronic Arts, Inc. -> Electronic Arts)
S4 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2018-07-02] (Even Balance, Inc. -> )
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [471696 2019-10-07] (Rockstar Games, Inc. -> Rockstar Games)
R2 Smart TimeLock; C:\Program Files (x86)\GIGABYTE\Smart TimeLock\TimeMgmtDaemon.exe [102400 2013-02-22] (Gigabyte Technology CO., LTD.) [File not signed]
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [157480 2018-08-02] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
S2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe [X]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [22240 2013-10-28] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [68152 2019-06-17] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [220128 2019-09-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [175808 2019-09-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [36072 2019-03-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [78600 2017-03-02] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [35376 2019-03-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 BfLwf; C:\Windows\System32\DRIVERS\bflwfx64.sys [147528 2016-02-12] (Rivet Networks LLC -> Rivet Networks, LLC.)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2017-05-21] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2017-05-21] (Disc Soft Ltd -> Disc Soft Ltd)
R3 gdrv; C:\Windows\gdrv.sys [26792 2019-08-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R3 gdrv2; C:\Windows\gdrv2.sys [32600 2019-08-02] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R3 I2cHkBurn; C:\Windows\System32\drivers\I2cHkBurn.sys [41760 2015-07-27] (Feature Integration Technology -> FINTEK Corp.)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [31728 2015-11-12] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [22216 2014-05-27] (Intel CASE -> )
R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [22728 2014-05-27] (Intel CASE -> )
S3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [25800 2014-05-27] (Intel CASE -> )
S3 ISCT; C:\Windows\System32\DRIVERS\ISCTD.sys [44744 2014-05-27] (Intel CASE -> )
R3 KillerEth; C:\Windows\System32\DRIVERS\e2xw7x64.sys [134296 2016-02-12] (Rivet Networks LLC -> Qualcomm Atheros, Inc.)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [178976 2015-07-28] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [13368 2012-10-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 phantomtap; C:\Windows\System32\DRIVERS\phantomtap.sys [35664 2018-08-14] (Avira Operations GmbH & Co. KG -> The OpenVPN Project)
S3 qcusbser; C:\Windows\System32\DRIVERS\qcusbser.sys [254520 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2015-11-05] (Apple, Inc.) [File not signed]
S1 UsbCharger; C:\Windows\System32\DRIVERS\UsbCharger.sys [22240 2013-10-24] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [159936 2016-08-16] (NGO -> MBB)
S3 XtuAcpiDriver; C:\Windows\System32\DRIVERS\XtuAcpiDriver.sys [54344 2016-11-22] (Intel Corporation -> Intel Corporation)
S3 ALSysIO; \??\C:\Users\TPN~1\AppData\Local\Temp\ALSysIO64.sys [X] <==== ATTENTION
S1 amsdk; \??\C:\Windows\system32\drivers\amsdk.sys [X]
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]
S4 nvvad_WaveExtensible; system32\drivers\nvvad64v.sys [X]
S4 nvvhci; system32\DRIVERS\nvvhci.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-11-13 21:02 - 2019-11-13 21:03 - 000046473 _____ C:\Users\Štěpán\Desktop\FRST.txt
2019-11-13 21:01 - 2019-11-13 21:03 - 000000000 ____D C:\FRST
2019-11-13 21:00 - 2019-11-13 21:00 - 002260480 _____ (Farbar) C:\Users\Štěpán\Desktop\FRST64.exe
2019-11-13 19:22 - 2019-11-13 19:39 - 315302717 _____ C:\Users\Štěpán\Desktop\Jak prosté S04E11.Down Where the Dead Delight.mkv
2019-11-09 21:40 - 2019-11-10 00:07 - 311086534 _____ C:\Users\Štěpán\Desktop\IMG_6071.psd
2019-11-09 10:14 - 2019-11-09 10:25 - 196427458 _____ C:\Users\Anežka\Downloads\90210-Nová-generace-04x24.cz_xvid.avi
2019-11-07 22:05 - 2019-11-07 22:16 - 192519270 _____ C:\Users\Anežka\Downloads\90210 Nová generace 04x23 Příběh dvou mejdanů,CZ dabing,(Angel).avi
2019-11-07 20:59 - 2019-11-07 21:10 - 194590110 _____ C:\Users\Anežka\Downloads\90210-Nová-generace-4x22_xvid.avi
2019-11-07 20:19 - 2019-11-07 20:30 - 193773046 _____ C:\Users\Anežka\Downloads\90210-Nová-generace-4x21_xvid.avi
2019-11-07 19:38 - 2019-11-07 20:02 - 442012918 _____ C:\Users\Anežka\Downloads\90210 Nová generace 4x20.avi
2019-11-07 19:27 - 2019-11-07 19:38 - 196833798 _____ C:\Users\Anežka\Downloads\90210-Nová-generace-4x19_xvid.avi
2019-11-06 20:27 - 2019-11-06 20:51 - 441780858 _____ C:\Users\Anežka\Downloads\90210 Nová generace 04x18 Krev není voda,CZ dabing,(Angel).avi
2019-11-06 19:33 - 2019-11-06 19:57 - 435722044 _____ C:\Users\Anežka\Downloads\90210 Nová generace 4x17.avi
2019-11-06 19:03 - 2019-11-06 19:29 - 481531178 _____ C:\Users\Anežka\Downloads\90210_Nová generace 4x16 XviD DVB CZ.avi
2019-11-05 17:06 - 2019-11-05 19:51 - 2991220181 _____ C:\Users\Štěpán\Desktop\Typci a zbrane 2016 HD1080p CZ.mkv
2019-11-05 13:34 - 2019-11-05 14:02 - 2079362773 _____ C:\Users\Štěpán\Desktop\foto (2).rar
2019-11-04 22:04 - 2019-11-09 20:39 - 000000000 ____D C:\Users\Štěpán\Desktop\Déňa dýmovnice
2019-11-03 12:16 - 2019-11-03 12:42 - 482682880 _____ C:\Users\Anežka\Downloads\90210 Nová generace 04x14 Mami, slyšíš mě,CZ dabing,(Angel).avi
2019-11-03 11:35 - 2019-11-03 11:46 - 195845204 _____ C:\Users\Anežka\Downloads\90210-Nová-generace-4x13_xvid.avi
2019-11-03 11:24 - 2019-11-03 11:35 - 195651632 _____ C:\Users\Anežka\Downloads\90210-Nová-generace-4x12_xvid.avi
2019-11-02 11:11 - 2019-11-02 11:38 - 498442240 _____ C:\Users\Anežka\Downloads\90210 Nová generace 4x11.avi
2019-10-31 10:39 - 2019-11-03 22:37 - 000000000 ____D C:\Users\Štěpán\Desktop\les Krásné
2019-10-26 15:07 - 2019-10-26 15:07 - 000000000 ____D C:\Users\Štěpán\AppData\Local\TslGame
2019-10-26 15:06 - 2019-10-26 15:06 - 000000000 ____D C:\Users\Štěpán\AppData\Local\BattlEye
2019-10-26 14:03 - 2019-10-26 14:03 - 000000222 _____ C:\Users\Štěpán\Desktop\PUBG Test Server.url
2019-10-26 14:03 - 2019-10-26 14:03 - 000000222 _____ C:\Users\Štěpán\Desktop\PUBG Experimental Server.url
2019-10-26 14:03 - 2019-10-26 14:03 - 000000222 _____ C:\Users\Štěpán\Desktop\PLAYERUNKNOWN'S BATTLEGROUNDS.url
2019-10-22 07:02 - 2019-10-22 07:02 - 000000000 ____D C:\ProgramData\SystemAcCrux
2019-10-22 07:00 - 2019-10-22 07:00 - 000000000 ____D C:\Program Files\EaseUS
2019-10-18 17:37 - 2019-10-18 17:37 - 000000000 ____D C:\Users\Anežka\AppData\LocalLow\Adobe
2019-10-18 17:36 - 2019-10-18 17:37 - 000000000 ____D C:\Users\Anežka\AppData\Local\Adobe
2019-10-18 14:09 - 2019-10-18 14:09 - 000001126 _____ C:\Users\Public\Desktop\Apex Legends.lnk
2019-10-18 14:09 - 2019-10-18 14:09 - 000001126 _____ C:\ProgramData\Desktop\Apex Legends.lnk
2019-10-18 14:09 - 2019-10-18 14:09 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2019-10-18 14:09 - 2019-10-18 14:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apex Legends
2019-10-18 13:39 - 2019-10-18 13:39 - 000000280 _____ C:\Users\Štěpán\Desktop\Metro 2033 Redux.url
2019-10-18 13:28 - 2019-10-18 15:53 - 2484300978 _____ C:\Users\Štěpán\Desktop\Stážista (2015) CZ.mkv
2019-10-18 09:14 - 2019-10-18 09:14 - 000003662 _____ C:\Windows\system32\Tasks\AviraSystemSpeedupUpdate
2019-10-17 15:36 - 2019-10-17 15:37 - 000000000 ____D C:\Users\Štěpán\Desktop\wetransfer-0fa16e
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-11-13 20:57 - 2019-10-06 15:58 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2019-11-13 20:57 - 2019-10-06 15:58 - 000000000 ___HD C:\ProgramData\Documents\AdobeGCData
2019-11-13 20:33 - 2016-01-02 23:54 - 000000000 ____D C:\Program Files (x86)\Steam
2019-11-13 20:33 - 2015-12-31 10:12 - 000000000 ____D C:\Users\Štěpán\AppData\Roaming\vlc
2019-11-13 19:20 - 2019-02-15 11:46 - 000000000 ____D C:\Users\Public\Speedup Sessions
2019-11-13 18:12 - 2016-09-15 23:04 - 000000000 ____D C:\ProgramData\NVIDIA
2019-11-13 11:26 - 2009-07-14 05:45 - 000015328 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-11-13 11:26 - 2009-07-14 05:45 - 000015328 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-11-13 11:19 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-11-12 17:06 - 2015-12-21 15:27 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-11-11 18:03 - 2019-06-19 09:36 - 000000000 ____D C:\Users\Anežka\AppData\Roaming\vlc
2019-11-09 23:31 - 2016-02-16 22:13 - 000007603 _____ C:\Users\Štěpán\AppData\Local\Resmon.ResmonCfg
2019-11-09 23:15 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2019-11-09 23:14 - 2016-02-22 20:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2019-11-05 17:04 - 2019-09-06 19:40 - 000000000 ____D C:\Users\Štěpán\AppData\Roaming\ESTsoft
2019-11-05 11:57 - 2015-12-21 15:27 - 000003388 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2019-11-05 11:57 - 2015-12-21 15:27 - 000003260 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2019-11-05 11:56 - 2015-12-21 15:27 - 000000000 ____D C:\Program Files (x86)\Google
2019-11-04 22:04 - 2016-01-03 19:15 - 000000000 ____D C:\Users\Štěpán\AppData\Local\ElevatedDiagnostics
2019-11-01 19:03 - 2009-07-14 16:18 - 000673860 _____ C:\Windows\system32\perfh005.dat
2019-11-01 19:03 - 2009-07-14 16:18 - 000144138 _____ C:\Windows\system32\perfc005.dat
2019-11-01 19:03 - 2009-07-14 06:13 - 001600350 _____ C:\Windows\system32\PerfStringBackup.INI
2019-10-31 10:13 - 2019-08-30 10:18 - 000000000 ____D C:\Users\Štěpán\AppData\Local\Adobe
2019-10-30 16:53 - 2019-08-30 10:24 - 000000000 ____D C:\Users\Štěpán\AppData\Local\CrashDumps
2019-10-29 17:57 - 2019-10-02 16:01 - 000000000 ____D C:\ProgramData\Package Cache
2019-10-26 15:07 - 2018-01-09 21:37 - 000000000 ____D C:\Users\Štěpán\AppData\Local\UnrealEngine
2019-10-26 14:03 - 2016-01-03 20:53 - 000000000 ____D C:\Users\Štěpán\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2019-10-25 16:29 - 2016-02-03 20:14 - 000000000 ____D C:\Users\Štěpán\AppData\Roaming\Origin
2019-10-25 15:52 - 2016-02-03 20:16 - 000000000 ____D C:\Program Files (x86)\Origin Games
2019-10-25 15:52 - 2016-02-03 20:08 - 000000000 ____D C:\ProgramData\Origin
2019-10-24 19:48 - 2019-04-02 19:02 - 000000000 ____D C:\Users\Štěpán\AppData\Local\FiveM
2019-10-24 17:32 - 2019-02-01 21:19 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-10-23 17:09 - 2019-10-04 18:40 - 000003446 _____ C:\Windows\system32\Tasks\AdobeGCInvoker-1.0
2019-10-21 19:19 - 2017-09-21 18:19 - 000003292 _____ C:\Windows\system32\Tasks\Avira_Antivirus_Systray
2019-10-21 14:51 - 2018-09-06 19:20 - 000000000 ____D C:\Users\Štěpán\AppData\Roaming\EasyAntiCheat
2019-10-18 17:37 - 2019-06-19 09:23 - 000000000 ____D C:\Users\Anežka\AppData\Roaming\Adobe
2019-10-18 13:59 - 2017-08-15 18:54 - 000000000 ____D C:\Program Files (x86)\Tom Clancys Rainbow Six Siege
2019-10-18 13:47 - 2016-11-17 22:47 - 000000000 ____D C:\ProgramData\EA Logs
2019-10-18 13:41 - 2016-02-03 20:06 - 000000000 ____D C:\Program Files (x86)\Origin
2019-10-17 08:30 - 2019-09-12 14:15 - 000000000 ____D C:\Program Files\CCleaner
2019-10-16 09:21 - 2019-02-01 21:19 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
==================== Files in the root of some directories ========
2016-03-28 19:28 - 2016-06-01 18:06 - 000000132 _____ () C:\Users\Štěpán\AppData\Roaming\Adobe Formát GIF CS6 – předvolby
2016-05-15 10:38 - 2018-06-27 11:01 - 000000132 _____ () C:\Users\Štěpán\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2016-07-09 21:19 - 2016-07-09 21:19 - 000000132 _____ () C:\Users\Štěpán\AppData\Roaming\Adobe GIF Format CS6 Prefs
2019-07-13 19:36 - 2019-07-13 19:36 - 000000132 _____ () C:\Users\Štěpán\AppData\Roaming\Adobe IllExport Filter CS6 Prefs
2017-01-19 19:36 - 2019-07-11 15:23 - 000000132 _____ () C:\Users\Štěpán\AppData\Roaming\Adobe PNG Format CS6 Prefs
2019-09-06 19:09 - 2019-09-06 19:09 - 000001456 _____ () C:\Users\Štěpán\AppData\Local\Adobe Save for Web 13.0 Prefs
2016-02-16 22:13 - 2019-11-09 23:31 - 000007603 _____ () C:\Users\Štěpán\AppData\Local\Resmon.ResmonCfg
2017-11-05 10:52 - 2017-11-05 10:52 - 000032038 _____ () C:\Users\Štěpán\AppData\Local\SquareClock.Production_Home_Siko_WebIcon.ico
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2019-07-16 14:56
==================== End of FRST.txt ========================