Část 2.
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3592017923-1309911898-1257044881-1000_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-3592017923-1309911898-1257044881-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\Jarda\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3592017923-1309911898-1257044881-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-3592017923-1309911898-1257044881-1000_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}\InprocServer32 -> C:\Users\Jarda\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3592017923-1309911898-1257044881-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-3592017923-1309911898-1257044881-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Jarda\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll (Google Inc.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {01F8D001-EC79-4078-98D6-177E8D2F3D61} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {029C139D-0BA2-49EC-93FA-CC6B483FEF12} - System32\Tasks\DelayedItemsByChemtableSoftware\Live Update => C:\Program Files (x86)\MSI\Live Update\Live Update.exe [2016-11-11] (Micro-Star INT'L CO., LTD.)
Task: {0909B576-ECFB-44E0-BA35-C87188CE118C} - \{3FB8732E-1FFC-4C6D-989C-B185C1C453F9} -> No File <==== ATTENTION
Task: {09BC9A11-F581-477E-80B2-8090CE5616FD} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {12033509-85D3-4F12-A984-8C98F61AD1F4} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {13269713-2E00-49A7-A0EA-344FB7E90EE3} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {1448FB9B-4115-40DC-A9E0-6B120A75E7FB} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {15177F34-35F3-4B23-BA45-2AD42FF9AD96} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1657F6A4-8794-4F75-8C2A-A9336925B602} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {1819CDDD-C28B-49EB-8EEF-E6E01434F477} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {193AD872-D90E-42E6-8279-9869C6508DED} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {1F2DAFA4-B384-4C1C-8EB1-A941FA21396F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation)
Task: {2D9A506F-F8A1-4160-9A74-F6EE155121D5} - System32\Tasks\GoogleUpdateTaskMachineUA1d12cb2950e3d70 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {2DCDA659-F6E8-4212-A3C6-B5BD70EA5A0C} - \avast! Windows 10 Start Menu helper -> No File <==== ATTENTION
Task: {31F5C710-AFF6-46C6-8591-A8B18BD9BBB2} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3592017923-1309911898-1257044881-1000Core1d257e71819bacf => C:\Users\Jarda\AppData\Local\Google\Update\GoogleUpdate.exe [2015-12-02] (Google Inc.)
Task: {322E1D9D-B59B-4AF2-A82B-18F77F9756E5} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3749EF22-5FC2-4440-9703-4E9709EBE885} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {3940DBD6-0570-4164-8649-AA9AB975F752} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {39C8549B-1186-499D-B460-66CC5DB78839} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3C46B3AB-4F3B-48BB-AE06-A96B3E011799} - System32\Tasks\{79B0425F-6AAB-432E-ACC4-3B0FAA60CE3F} => C:\Program Files (x86)\MSI\Command Center\CC_LoadingPage.exe [2016-11-29] (MSI)
Task: {3CAE6307-9229-4652-A418-0EDE8A1CB249} - System32\Tasks\GoogleUpdateTaskMachineCore1d12cb29460bcd6 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {3DB44A93-2DFB-4AFD-9E55-87E11506D32B} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {401EBA64-E1DA-4CBA-904C-2AAE4933ABB2} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {4124BBC1-33F7-460A-98D6-53CC8C3FCB6A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation)
Task: {41AD8C4F-DC80-4F6A-ABAC-21E279DB005D} - System32\Tasks\Intel(R) Small Business Advantage\Notifier => C:\Program Files\Intel\Intel(R) Small Business Advantage\UI\SBA_Notifier.exe [2013-03-13] (Intel Corporation)
Task: {429D2811-D49E-4E04-9BF9-FF0DB3179606} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {42EA49E5-0A7F-4789-91FD-89E7ED441A14} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {4716E9B8-4CE9-4454-A258-3D58AB4D9480} - System32\Tasks\{66FDDA73-62B3-43DC-A90F-5DF9F5ACE184} => pcalua.exe -a "C:\Program Files (x86)\MSI\Live Update\LU5\DL_FILE\Realtek_PCIE_Network_Drivers_7.77.1126.2013\setup.exe" -d C:\Windows\system32 -c /s /f2c:\mylog.log /z[-rpC:\RHDSetup.log]
Task: {4F836CE2-2DF1-4988-844C-2E9B3F6A202A} - System32\Tasks\{B5DD29FC-5E38-47B2-9922-2BC092B063B7} => pcalua.exe -a "C:\Program Files\McAfee Security Scan\uninstall.exe"
Task: {521F643C-D16E-4E70-A6D6-0409502C1BB0} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-01-07] (Adobe Systems Incorporated)
Task: {5856D949-036A-4D5D-AF91-0F35F99E5ABC} - System32\Tasks\{E2936294-7028-4EC9-B103-3148156EA466} => C:\Program Files (x86)\MSI\Command Center\CC_LoadingPage.exe [2016-11-29] (MSI)
Task: {5CE01177-CAD6-4324-B885-2CCAA13F80F2} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Jarda\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
Task: {62BA2543-5803-4933-A2B0-FB6BFA04AC8A} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {68ED01EA-A8EC-45DE-A1CE-9E3177151B71} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6FC43239-6170-4EA6-BBA0-F1C1D75CF765} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {72D488B2-7FA6-44BE-91B4-20F15235D81B} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {771B5976-222F-4F52-905F-3E4ABFC40DE3} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {79AFA258-F5D6-49FC-ABE0-50BB13CB43F4} - System32\Tasks\{ACD7CDF9-566A-492E-AA22-AF98E6249402} => pcalua.exe -a "C:\Program Files (x86)\CENEGA CZECH\Chameleon\Chameleon.exe" -d "C:\Program Files (x86)\CENEGA CZECH\Chameleon"
Task: {79C10E6C-39A1-494F-B1DD-C4433FECBEDF} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7EF9A117-63C4-4FC3-B721-96A7A0C25E8C} - System32\Tasks\{63ADAFA0-F6A8-4DD3-ACCF-1969F9424CB0} => C:\YoutubeMusicDownloader\Downloader.exe [2013-12-01] (YouTubeMusicDownloader.com)
Task: {851B3570-E0A3-4224-8032-8B72AD423A04} - System32\Tasks\DelayedItemsByChemtableSoftware\DAEMON Tools Lite => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04] (Disc Soft Ltd)
Task: {883E5324-7951-48E9-9509-EE6335C63358} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {88C63A35-11C1-4424-898B-4B79EBCB40A2} - System32\Tasks\{557B6AB5-6D23-438A-A276-C58A65D29C4E} => pcalua.exe -a C:\Users\Jarda\Downloads\FreeRapid-0.9u4\FreeRapid-0.9u4\frd.exe -d C:\Users\Jarda\Downloads\FreeRapid-0.9u4\FreeRapid-0.9u4
Task: {8BD50D32-67C4-4CC3-AB6D-C7CE093FC860} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {8DD5B604-80D9-493F-A506-7EC68E46FEBD} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {907B094A-978B-4616-9167-14D35C3D7AF9} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3592017923-1309911898-1257044881-1000UA1d257e7182871bd => C:\Users\Jarda\AppData\Local\Google\Update\GoogleUpdate.exe [2015-12-02] (Google Inc.)
Task: {9129C3A3-44C2-4D70-90A8-60D5595F7F34} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {92256C56-0A52-466E-A587-2C4BAEF81FFC} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {9A2F58B7-738E-496B-8F9F-0D1D3DC03666} - System32\Tasks\DelayedItemsByChemtableSoftware\PlaysTV => C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe [2016-12-23] (Copyright (c) 2016 Plays.tv, LLC)
Task: {A26D436C-4AAD-45E5-AA98-96DBA897042B} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3592017923-1309911898-1257044881-1000UA => C:\Users\Jarda\AppData\Local\Google\Update\GoogleUpdate.exe [2015-12-02] (Google Inc.)
Task: {A6E1D788-6749-42BA-A4BC-0015BFA994C7} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {A8B4110E-44CB-4CD2-8680-195A0DF5D0D2} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {B2B09798-90A6-4DA9-B2D3-C08271EED48B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {B5C5EB19-E553-4428-BC7B-20D82244D8A8} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [2015-05-05] (Intel Corporation)
Task: {B6521AEA-548F-4C65-9DEE-334FD4C5871D} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {BA656828-A35A-4A7F-9F20-BBF8FED99AC7} - System32\Tasks\RtlNetworkGenieVistaStart => C:\Program Files (x86)\MSI\NetworkGenie\NetworkGenie.exe [2014-04-23] (Realtek Semiconductor)
Task: {BFF5E9DE-8D3A-4999-B53B-9E68B921119B} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe [2016-09-07] (Advanced Micro Devices, Inc.)
Task: {C37CAFF9-2858-4940-8EC7-22E52CFF1352} - System32\Tasks\DelayedItemsByChemtableSoftware\Google Update => C:\Users\Jarda\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe [2016-12-16] (Google Inc.) <==== ATTENTION
Task: {C509F66D-823A-43A3-9CDA-C34FF0154A0B} - System32\Tasks\SafeZone scheduled Autoupdate 1451055090 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software)
Task: {C7A52FA3-720B-46B7-A394-29F805C49A0B} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D37EEB5D-2EAC-4B6A-AD4A-593461C939A5} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {D7682B18-5524-412C-B05D-9C36FD57C18B} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {DCA035D3-EB92-4BB1-B9FF-52378A6C3FCC} - System32\Tasks\DelayedItemsByChemtableSoftware\Raptr => C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [2016-08-23] (Raptr, Inc)
Task: {E4EB6EF8-878F-4D77-9180-A5C77CFE7062} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated)
Task: {E683F12E-D6E4-401A-8DCB-1C3BBAB2DA8A} - System32\Tasks\{AE135B0D-C28C-47DE-AF3A-0C6E5A8946C5} => pcalua.exe -a F:\setup.exe -d F:\
Task: {E8F26399-1E98-4142-AC37-E7B48738FD2B} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {EF8F24F6-3A8E-485C-B121-F3DD6B65D725} - System32\Tasks\RegOrganizerQuickLaunch => -RegistryEditor -ForceForeground -NoSplash
Task: {EFC8BA85-72CC-4B8E-A449-C176263438C7} - System32\Tasks\DelayedItemsByChemtableSoftware\World of Tanks => C:\Games\World_of_Tanks\WargamingGameUpdater.exe [2016-11-18] (Wargaming.net)
Task: {F0F6E758-A65B-4F08-861E-64D24B713153} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2017-01-06] (AVAST Software)
Task: {F1AE57D9-7640-48C1-A1FE-1D682EC1FA15} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation)
Task: {F4CBF954-A49C-4A5C-BF12-C3B19BCDB901} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation)
Task: {F599A015-E394-414C-8909-F3503B3CE9AC} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F9F1DDE9-86D0-42BD-B7B9-E5FF30EBC601} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {FB0F4098-A267-4DED-8BD8-37515B4A7A7B} - \{1F6C2DA0-6033-4C49-B47C-E82404351922} -> No File <==== ATTENTION
Task: {FCA667D8-BCC5-4CB4-8987-E15327D65260} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3592017923-1309911898-1257044881-1000Core => C:\Users\Jarda\AppData\Local\Google\Update\GoogleUpdate.exe [2015-12-02] (Google Inc.)
Task: {FD3C3FAE-50E2-4413-80C8-E944E171A44E} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-09-22] (Oracle Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3592017923-1309911898-1257044881-1000Core.job => C:\Users\Jarda\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3592017923-1309911898-1257044881-1000UA.job => C:\Users\Jarda\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\RtlNetworkGenieVistaStart.job => C:\Program Files (x86)\MSI\NetworkGenie\NetworkGenie.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\Jarda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prince of Persia Písky času\Registrovat online.lnk -> C:\Program Files (x86)\UBISOFT\Prince of Persia The Sands of Time\Support\UbiReg_cze.bat (No File)
Shortcut: C:\Users\Jarda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ICQ\icq.com.lnk ->
hxxp://www.icq.comShortcutWithArgument: C:\Users\Jarda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WorldofTanks\WorldofTanks.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://go.playmmogames.com/aff_c?offer_id=174&aff_id=1034 --app-window-size=1920,1080
==================== Loaded Modules (Whitelisted) ==============
2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-12-15 10:17 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2014-06-05 06:59 - 2011-08-22 12:44 - 01421216 _____ () C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner 2\ACT2Service.exe
2014-09-21 19:36 - 2014-09-21 19:36 - 00066872 _____ () C:\WINDOWS\SysWoW64\PnkBstrA.exe
2016-12-15 10:17 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-12-17 14:11 - 2016-12-17 14:11 - 01678560 _____ () C:\Users\Jarda\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\amd64\ClientTelemetry.dll
2013-09-04 23:17 - 2013-09-04 23:17 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2016-05-17 23:42 - 2016-05-17 23:42 - 00230064 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2017-01-07 21:04 - 2017-01-07 21:04 - 00152944 _____ () C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll
2016-09-15 06:14 - 2016-09-15 06:14 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-12-15 10:17 - 2016-12-09 10:41 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-12-14 20:35 - 2016-12-14 20:37 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-12-14 20:35 - 2016-12-14 20:37 - 00179712 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-12-14 20:35 - 2016-12-14 20:37 - 42130432 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2016-12-14 20:35 - 2016-12-14 20:36 - 02216448 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\roottools.dll
2016-09-14 18:54 - 2016-09-01 11:12 - 03559360 _____ () C:\Program Files (x86)\Reg Organizer\StartupCheckingService.exe
2015-11-26 11:47 - 2016-02-23 09:13 - 00475648 _____ () C:\Program Files (x86)\Ultima Online DP2\UOAM\uoam.exe
2016-11-23 09:02 - 2016-11-23 09:03 - 00019456 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2016-11-23 09:02 - 2016-11-23 09:03 - 20433408 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2016-06-03 18:56 - 2016-06-03 18:57 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
2016-11-23 09:02 - 2016-11-23 09:03 - 01046528 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.Sharing.dll
2016-11-23 09:02 - 2016-11-23 09:03 - 00353792 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Photos.Inking.dll
2016-11-09 02:49 - 2016-11-02 11:21 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-11-09 02:49 - 2016-11-02 11:15 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-11-09 02:49 - 2016-11-02 11:14 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-11-09 02:49 - 2016-11-02 11:16 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-11-09 02:49 - 2016-11-02 11:17 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-12-13 23:27 - 2016-12-13 23:27 - 03810816 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1612.3341.0_x64__8wekyb3d8bbwe\Calculator.exe
2017-01-06 06:58 - 2017-01-06 06:58 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-01-07 14:20 - 2017-01-07 14:20 - 03075072 _____ () C:\Program Files\AVAST Software\Avast\defs\17010700\algo.dll
2017-01-06 06:58 - 2017-01-06 06:58 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2017-01-08 12:59 - 2017-01-08 12:59 - 03138056 _____ () C:\Program Files\AVAST Software\Avast\defs\17010801\algo.dll
2016-12-23 01:00 - 2016-12-23 01:00 - 00033280 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\cx_Logging.cp35-win32.pyd
2016-12-23 01:00 - 2016-12-23 01:00 - 00103424 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32api.pyd
2016-12-23 01:00 - 2016-12-23 01:00 - 00111616 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\pywintypes35.dll
2016-12-23 01:00 - 2016-12-23 01:00 - 00041984 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32process.pyd
2016-12-23 01:00 - 2016-12-23 01:00 - 00405504 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\pythoncom35.dll
2016-12-23 01:00 - 2016-12-23 01:00 - 00173568 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32gui.pyd
2016-12-23 01:00 - 2016-12-23 01:00 - 01934336 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtGui.pyd
2016-12-23 01:00 - 2016-12-23 01:00 - 00077824 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\sip.pyd
2016-12-23 01:00 - 2016-12-23 01:00 - 01780736 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtCore.pyd
2016-12-23 01:00 - 2016-12-23 01:00 - 00505856 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtNetwork.pyd
2016-12-23 01:00 - 2016-12-23 01:00 - 03812864 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtWidgets.pyd
2015-06-02 14:51 - 2015-06-02 14:51 - 00545792 _____ () C:\Program Files (x86)\Trusteer\Rapport\bin\js32.dll
2015-04-23 05:45 - 2013-09-17 02:19 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2017-01-06 06:58 - 2017-01-06 06:58 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\TEMP:B755D674 [270]
AlternateDataStreams: C:\ProgramData\TEMP:D78D6FF7 [394]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2017-01-07 19:55 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3592017923-1309911898-1257044881-1000\Control Panel\Desktop\\Wallpaper -> D:\Foto a video mix\Foto\Upravit plocha\Photo-0159.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [MSMQ-In-TCP] => %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => LPort=808
FirewallRules: [UDP Query User{0D900E25-A0C4-48D0-9D3B-1771FC7A6C86}C:\program files (x86)\ea games\dead space 2\deadspace2.exe] => C:\program files (x86)\ea games\dead space 2\deadspace2.exe
FirewallRules: [TCP Query User{7CEFE6A6-4DFF-49CF-8DD8-0204C2579386}C:\program files (x86)\ea games\dead space 2\deadspace2.exe] => C:\program files (x86)\ea games\dead space 2\deadspace2.exe
FirewallRules: [{5AB28F4E-AED3-4773-99F4-CF0D8A00F053}] => C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{9509D0D5-1931-4CEB-919F-763F0BED79D7}] => C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{7BEFDEEC-61CC-47C0-889C-09B597EF8DA0}] => C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{ED805F50-0927-437F-8EFB-AAE72FF1C0EE}] => C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [UDP Query User{F59A84D9-8D66-424F-903A-0A8A92FB9834}C:\program files (x86)\wolfenstein the new order\wolfneworder_x64.exe] => C:\program files (x86)\wolfenstein the new order\wolfneworder_x64.exe
FirewallRules: [TCP Query User{8E2E6446-6158-42F8-B155-4DA4AD7033A8}C:\program files (x86)\wolfenstein the new order\wolfneworder_x64.exe] => C:\program files (x86)\wolfenstein the new order\wolfneworder_x64.exe
FirewallRules: [UDP Query User{60ECBA28-6375-4E17-BF23-665817B5AC4C}C:\program files (x86)\java\jre1.8.0_101\launch4j-tmp\frd.exe] => C:\program files (x86)\java\jre1.8.0_101\launch4j-tmp\frd.exe
FirewallRules: [TCP Query User{2EAAC806-40A9-4F5B-A81C-C3628CCBC73D}C:\program files (x86)\java\jre1.8.0_101\launch4j-tmp\frd.exe] => C:\program files (x86)\java\jre1.8.0_101\launch4j-tmp\frd.exe
FirewallRules: [{B2812476-455B-4850-A0FD-D8F266D6FAC4}] => C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe
FirewallRules: [{A30C41AA-3DAD-4C66-B477-42DCB3E17286}] => C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe
FirewallRules: [UDP Query User{EC992311-B80A-47CB-90FC-12B3D73B952A}D:\games\call.of.duty.complete.collection.2014.full.rip-bm\1. call.of.duty+united.offensive.updated.v1.51.full.rip-bm\call of duty\cod\codmp.exe] => D:\games\call.of.duty.complete.collection.2014.full.rip-bm\1. call.of.duty+united.offensive.updated.v1.51.full.rip-bm\call of duty\cod\codmp.exe
FirewallRules: [TCP Query User{C281C347-E5ED-47DE-9C4D-3923C6D0837F}D:\games\call.of.duty.complete.collection.2014.full.rip-bm\1. call.of.duty+united.offensive.updated.v1.51.full.rip-bm\call of duty\cod\codmp.exe] => D:\games\call.of.duty.complete.collection.2014.full.rip-bm\1. call.of.duty+united.offensive.updated.v1.51.full.rip-bm\call of duty\cod\codmp.exe
FirewallRules: [UDP Query User{7D3F599F-2068-4269-9835-FF1CC23F8AB5}C:\program files (x86)\java\jre1.8.0_77\launch4j-tmp\frd.exe] => C:\program files (x86)\java\jre1.8.0_77\launch4j-tmp\frd.exe
FirewallRules: [TCP Query User{4E7E5706-1BC1-436B-8ABE-BE8B1777D637}C:\program files (x86)\java\jre1.8.0_77\launch4j-tmp\frd.exe] => C:\program files (x86)\java\jre1.8.0_77\launch4j-tmp\frd.exe
FirewallRules: [{BB89F7D3-68A5-4661-BCAA-76AE11C8EAFB}] => C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{EA948DEF-3D62-416B-BD6A-D17B12FDE6E1}] => C:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{86C6D2D2-9E7F-4D99-BE68-C63EF9B5771F}] => C:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{51291D7F-2C99-469C-BB1C-3820FC4FC38F}] => C:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{608C1AB7-12A1-42D3-ABCE-1BC55729B5B4}] => C:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{BCA97A71-68B6-4239-B13A-0969FAFA35C7}] => C:\Program Files (x86)\Sierra\FEAR\FEARMP.exe
FirewallRules: [{36E60D5A-D2AF-4E73-A8C2-A3C913DE0530}] => C:\Program Files (x86)\Sierra\FEAR\FEARMP.exe
FirewallRules: [{5D0FCB3F-CD2D-4D17-84C6-4CC9E7651DAC}] => C:\Program Files (x86)\Sierra\FEAR\FEAR.exe
FirewallRules: [{65F99AA1-EABD-4A96-B9D5-68B52A985C23}] => C:\Program Files (x86)\Sierra\FEAR\FEAR.exe
FirewallRules: [UDP Query User{ACCA9855-5F41-47A5-8885-82644BDB7D82}C:\program files (x86)\java\jre1.8.0_74\launch4j-tmp\frd.exe] => C:\program files (x86)\java\jre1.8.0_74\launch4j-tmp\frd.exe
FirewallRules: [TCP Query User{234F1B16-37B8-4A24-AEEF-F82102C546B1}C:\program files (x86)\java\jre1.8.0_74\launch4j-tmp\frd.exe] => C:\program files (x86)\java\jre1.8.0_74\launch4j-tmp\frd.exe
FirewallRules: [TCP Query User{961AEA7A-5893-40FB-88B7-5F78DBBC54FA}C:\program files (x86)\ultima online dp2\uoam\uoam.exe] => C:\program files (x86)\ultima online dp2\uoam\uoam.exe
FirewallRules: [UDP Query User{6D378447-34D5-45DD-9A78-11439F33F4A9}C:\program files (x86)\ultima online dp2\uoam\uoam.exe] => C:\program files (x86)\ultima online dp2\uoam\uoam.exe
FirewallRules: [TCP Query User{CD74F362-092E-4C5F-A8D0-36255B6024F8}C:\program files (x86)\ultima online dp2\client.exe] => C:\program files (x86)\ultima online dp2\client.exe
FirewallRules: [UDP Query User{6CAE7032-1E22-4578-AA84-3E9CF24308F6}C:\program files (x86)\ultima online dp2\client.exe] => C:\program files (x86)\ultima online dp2\client.exe
FirewallRules: [TCP Query User{F45D5158-A8B0-4BAB-9124-D62C58F89B5A}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [UDP Query User{123AD01C-476F-49F3-A726-86ECF0780D66}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [TCP Query User{77E28C3E-785E-4A58-9FDD-781F60E9429F}C:\Program Files (x86)\EA Games\need for speed most wanted\NFS13.exe] => C:\Program Files (x86)\EA Games\need for speed most wanted\NFS13.exe
FirewallRules: [UDP Query User{31FD4C3C-3B5C-4E7C-95D6-06D1B4F2095D}C:\Program Files (x86)\EA Games\need for speed most wanted\NFS13.exe] => C:\Program Files (x86)\EA Games\need for speed most wanted\NFS13.exe
FirewallRules: [{F290267A-65C4-4216-8B47-0CD5DF0DB19A}] => C:\Users\Jarda\AppData\Roaming\ICQM\icq.exe
FirewallRules: [{046F01C8-341A-4DA3-A89C-C995BA18F679}] => C:\Users\Jarda\AppData\Roaming\ICQM\icq.exe
FirewallRules: [{023DBB3C-B8A5-4145-9D0F-31D01E78EA5F}] => LPort=80
FirewallRules: [{82E4FDC2-D52A-4A31-8C9B-B48EECC7B847}] => LPort=443
FirewallRules: [{09B78A8F-78A7-4BFE-9CB9-BB9B27270C4F}] => LPort=20010
FirewallRules: [{949CFDB6-CBF5-4BAF-AFB8-7EC32938E692}] => LPort=3478
FirewallRules: [{76F42703-98BD-4C74-96A9-D6D24DF54A2D}] => LPort=7850
FirewallRules: [{8E2C7983-E8F5-484C-8408-DDB186FBD549}] => LPort=7852
FirewallRules: [{162AA92F-6263-4277-9932-1604DFBE4DC3}] => LPort=7853
FirewallRules: [{0BA015C8-F673-4084-8E82-3FFD2E88500C}] => LPort=27022
FirewallRules: [{A0E09F73-C4EC-477E-BE8D-C3CF7E60EA37}] => LPort=6881
FirewallRules: [{1CF0E6CA-050E-45CC-8F4E-7D048D95ABEE}] => LPort=33333
FirewallRules: [{BB726C53-2325-47A0-A99C-B2141000226B}] => LPort=20443
FirewallRules: [{7C279E3A-D478-4460-9B30-82DD81EB59AC}] => LPort=8090
FirewallRules: [TCP Query User{2487492B-1EE7-4BBE-B057-D827BEC4E3C9}C:\program files (x86)\java\jre7\launch4j-tmp\frd.exe] => C:\program files (x86)\java\jre7\launch4j-tmp\frd.exe
FirewallRules: [UDP Query User{A2B1D29F-43DC-4AB8-845A-69DACC33C50F}C:\program files (x86)\java\jre7\launch4j-tmp\frd.exe] => C:\program files (x86)\java\jre7\launch4j-tmp\frd.exe
FirewallRules: [{B74E640C-A4D1-4678-B5ED-0019A7C5B0B6}] => C:\Users\Jarda\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{36521CE3-80C4-480B-9073-607E933DDBBC}] => C:\Users\Jarda\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [TCP Query User{3B2ABAE4-EB89-40AD-B33B-390E6B433B99}C:\program files (x86)\ultima online dp2\client.exe] => C:\program files (x86)\ultima online dp2\client.exe
FirewallRules: [UDP Query User{2CB73192-F024-4505-89E3-552D1C6B2D06}C:\program files (x86)\ultima online dp2\client.exe] => C:\program files (x86)\ultima online dp2\client.exe
FirewallRules: [TCP Query User{3A5EE25A-3785-44EC-9B46-130305B1DDAE}C:\users\jarda\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe] => C:\users\jarda\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe
FirewallRules: [UDP Query User{C526FDC8-8149-424B-BBC2-0B1C01EF31E6}C:\users\jarda\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe] => C:\users\jarda\appdata\roaming\xiaomi\miphonemanager\plugin\xunlei\download\minithunderplatform.exe
FirewallRules: [{23C5D4B2-931B-42ED-8C0B-D612E8402A34}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F21927D0-98DD-43F5-9BC1-CD26434AD862}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{F041D1CF-77FB-43CE-AA61-D5EFE3EE5256}C:\program files (x86)\java\jre1.8.0_31\launch4j-tmp\frd.exe] => C:\program files (x86)\java\jre1.8.0_31\launch4j-tmp\frd.exe
FirewallRules: [UDP Query User{AB5499B5-CA8A-4931-87C7-B24DA8C32739}C:\program files (x86)\java\jre1.8.0_31\launch4j-tmp\frd.exe] => C:\program files (x86)\java\jre1.8.0_31\launch4j-tmp\frd.exe
FirewallRules: [TCP Query User{4E39FDCB-FC17-41CF-A0DB-3BBF146CA17C}C:\program files (x86)\freetime\formatfactory\formatfactory.exe] => C:\program files (x86)\freetime\formatfactory\formatfactory.exe
FirewallRules: [UDP Query User{42D9C22B-8F34-4A66-9984-312CDE8F2E66}C:\program files (x86)\freetime\formatfactory\formatfactory.exe] => C:\program files (x86)\freetime\formatfactory\formatfactory.exe
FirewallRules: [TCP Query User{3323EE1C-A915-4797-A8DE-1AE9DC9866B9}C:\program files (x86)\mozilla firefox\firefox.exe] => C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{91267BF2-E9C1-4F71-8EA2-4773484537EF}C:\program files (x86)\mozilla firefox\firefox.exe] => C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{603355A0-BCDC-497B-A749-C875653ABF55}C:\program files (x86)\ultima online dp2\uoam\uoam.exe] => C:\program files (x86)\ultima online dp2\uoam\uoam.exe
FirewallRules: [UDP Query User{A6A2F82F-B756-4F07-92AF-6622B0035608}C:\program files (x86)\ultima online dp2\uoam\uoam.exe] => C:\program files (x86)\ultima online dp2\uoam\uoam.exe
FirewallRules: [TCP Query User{F6A78A6F-9405-450E-A0D1-3992C7F7FA77}C:\program files (x86)\java\jre1.8.0_40\launch4j-tmp\frd.exe] => C:\program files (x86)\java\jre1.8.0_40\launch4j-tmp\frd.exe
FirewallRules: [UDP Query User{B9D48ECC-28C1-4C8F-B977-63E10D18C3FF}C:\program files (x86)\java\jre1.8.0_40\launch4j-tmp\frd.exe] => C:\program files (x86)\java\jre1.8.0_40\launch4j-tmp\frd.exe
FirewallRules: [TCP Query User{F23DD1F9-28E3-4843-872D-4DA87C4ED219}C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\frd.exe] => C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\frd.exe
FirewallRules: [UDP Query User{C85AFFFE-22D0-4E16-A78E-BFCD17062941}C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\frd.exe] => C:\program files (x86)\java\jre1.8.0_45\launch4j-tmp\frd.exe
FirewallRules: [TCP Query User{1ED468F2-2B66-4A58-8507-6D7DC348ED76}F:\et\et.exe] => F:\et\et.exe
FirewallRules: [UDP Query User{F4813DAB-8AA2-4CA8-9769-99AFD0909C24}F:\et\et.exe] => F:\et\et.exe
FirewallRules: [{684C675F-0AF0-4817-91E6-CE56AA325F5D}] => C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{C75EC1AA-B88E-48B3-9571-286D72433CDB}] => C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{82002F01-B03A-4D85-B01C-709FB7505B28}] => C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{A5AE344D-1116-4055-9132-B81A11F90B40}] => C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{862DF811-E101-45DA-9A50-96ABD822197D}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{6FB61FF3-6AE0-44F8-A46B-A6EB892C7E0C}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{C59B41DD-0474-426B-A6E8-C00F91B09C55}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{11ECCDB3-74DB-4AF9-BFC0-9D49060B4897}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{CF68A46A-3FAA-4DDB-BE4A-DB32CA298912}] => C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{F8292824-4696-4749-A4B7-69BC36C95EA2}] => C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{E81EA36D-EFB7-48EB-B457-A0A53DB554F8}] => C:\Program Files (x86)\Steam\steamapps\common\Steel Ocean\Binaries\win32\SeaGame.exe
FirewallRules: [{921F54FE-6A1F-45AD-8D06-DB35CB5A1FFF}] => C:\Program Files (x86)\Steam\steamapps\common\Steel Ocean\Binaries\win32\SeaGame.exe
FirewallRules: [TCP Query User{2BAF6B6C-624A-4868-AD86-24FFD20BA7AF}C:\program files (x86)\java\jre1.8.0_66\launch4j-tmp\frd.exe] => C:\program files (x86)\java\jre1.8.0_66\launch4j-tmp\frd.exe
FirewallRules: [UDP Query User{94F5A545-2E0A-4DDE-A337-21F38EF87165}C:\program files (x86)\java\jre1.8.0_66\launch4j-tmp\frd.exe] => C:\program files (x86)\java\jre1.8.0_66\launch4j-tmp\frd.exe
FirewallRules: [TCP Query User{EE9AD38B-B5BE-4B56-9C25-BE8FC251C4B8}C:\program files (x86)\thq\titan quest\titan quest.exe] => C:\program files (x86)\thq\titan quest\titan quest.exe
FirewallRules: [UDP Query User{2AC0D3FD-8EF8-4EC7-89FE-F6F371BEB75D}C:\program files (x86)\thq\titan quest\titan quest.exe] => C:\program files (x86)\thq\titan quest\titan quest.exe
FirewallRules: [TCP Query User{08D80107-9FA1-4856-AD26-9AD21E390187}C:\games\call of duty modern warfare 2\iw4m.exe] => C:\games\call of duty modern warfare 2\iw4m.exe
FirewallRules: [UDP Query User{E929627C-5ACD-4838-A1BC-78B6B0728526}C:\games\call of duty modern warfare 2\iw4m.exe] => C:\games\call of duty modern warfare 2\iw4m.exe
FirewallRules: [TCP Query User{E7559FEC-E6FB-4F07-B2A0-27DCB87A134B}C:\games\call of duty modern warfare 2\iw4sp.exe] => C:\games\call of duty modern warfare 2\iw4sp.exe
FirewallRules: [UDP Query User{73F58843-6AF4-45BB-8395-F926D481E05F}C:\games\call of duty modern warfare 2\iw4sp.exe] => C:\games\call of duty modern warfare 2\iw4sp.exe
FirewallRules: [TCP Query User{95249CA7-76D3-4C9C-94FA-66DB311D8EE8}C:\max payne 3 cz\maxpayne3.exe] => C:\max payne 3 cz\maxpayne3.exe
FirewallRules: [UDP Query User{E35BB803-CF94-446D-8F5E-16DBA8639EF0}C:\max payne 3 cz\maxpayne3.exe] => C:\max payne 3 cz\maxpayne3.exe
FirewallRules: [TCP Query User{D5DA124E-E683-4896-9BE4-79AF244AB6AD}C:\program files (x86)\java\jre1.8.0_111\launch4j-tmp\frd.exe] => C:\program files (x86)\java\jre1.8.0_111\launch4j-tmp\frd.exe
FirewallRules: [UDP Query User{C1758E8B-CEC0-4C10-B435-885CB5870F50}C:\program files (x86)\java\jre1.8.0_111\launch4j-tmp\frd.exe] => C:\program files (x86)\java\jre1.8.0_111\launch4j-tmp\frd.exe
FirewallRules: [TCP Query User{E9082D8B-C948-4606-AA9C-D5B15599C049}C:\hybrid wars en\hw.exe] => C:\hybrid wars en\hw.exe
FirewallRules: [UDP Query User{B6E031A5-17A8-4ADB-9016-E8B61C5F8E1E}C:\hybrid wars en\hw.exe] => C:\hybrid wars en\hw.exe
FirewallRules: [TCP Query User{00079F02-E7EB-4E7C-9D29-AE258ADB7811}C:\program files\call of duty infinite warfare\iw7_ship.exe] => C:\program files\call of duty infinite warfare\iw7_ship.exe
FirewallRules: [UDP Query User{4DA82666-5BDD-41EC-B94A-F6E5D9073F11}C:\program files\call of duty infinite warfare\iw7_ship.exe] => C:\program files\call of duty infinite warfare\iw7_ship.exe
FirewallRules: [{639FCCB4-D0FC-42F4-9E8D-2493B8EB1754}] => C:\Games\World_of_Warships\WoWSLauncher.exe
FirewallRules: [{614AC833-9734-4B45-94CE-DA95652ADA06}] => C:\Games\World_of_Warships\WoWSLauncher.exe
FirewallRules: [{CE32AA29-3921-44BD-8E0D-0E57A8EDDF32}] => C:\Games\World_of_Warships\worldofwarships.exe
FirewallRules: [{92B369B7-BE8E-4DC7-BA00-31AB0A76CB24}] => C:\Games\World_of_Warships\worldofwarships.exe
FirewallRules: [TCP Query User{8C888CB6-51CC-46B0-AFE9-AA330961A369}C:\program files (x86)\kodi\kodi.exe] => C:\program files (x86)\kodi\kodi.exe
FirewallRules: [UDP Query User{8D56BB3A-912E-4768-B3DD-332ADB5ACEC0}C:\program files (x86)\kodi\kodi.exe] => C:\program files (x86)\kodi\kodi.exe
FirewallRules: [{33436FF7-E43C-49E8-B080-DD2AABE5E21E}] => C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{45A9F1DA-F998-459F-B35B-C0C110178244}] => C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{1CAD8226-D515-4241-B4C4-E553AB9440EB}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{239AAD96-31C4-4935-8CEF-FECBA982F8BD}] => C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
FirewallRules: [{4249461C-29C4-4959-B903-C65348A8E67E}] => C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
==================== Restore Points =========================
06-01-2017 07:40:00 Naplánovaný kontrolní bod
06-01-2017 10:40:26 JRT Pre-Junkware Removal
07-01-2017 15:05:15 zoek.exe restore point
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (01/07/2017 11:15:00 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program uoam.exe verze 8.2.0.1 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Zabezpečení a údržba.
ID procesu: 13d8
Čas spuštění: 01d26929a34ea611
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files (x86)\Ultima Online DP2\UOAM\uoam.exe
ID hlášení: b9bca700-d526-11e6-834d-d43d7eecf40d
Úplný název balíčku s chybou:
ID aplikace související s balíčkem s chybou:
Error: (01/07/2017 09:00:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MSI_LiveUpdate_Service.exe, verze: 1.0.0.37, časové razítko: 0x582449b8
Název chybujícího modulu: ntdll.dll, verze: 10.0.14393.479, časové razítko: 0x58256ca0
Kód výjimky: 0xc0000374
Posun chyby: 0x000d9d11
ID chybujícího procesu: 0xae0
Čas spuštění chybující aplikace: 0x01d2691d2e277b11
Cesta k chybující aplikaci: C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 7d0d8f86-2995-4830-943f-aabded9524e3
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/07/2017 09:00:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ZAM.exe, verze: 0.0.0.0, časové razítko: 0x00000000
Název chybujícího modulu: RPCRT4.dll, verze: 10.0.14393.82, časové razítko: 0x57a55b62
Kód výjimky: 0xc0020043
Posun chyby: 0x000432d2
ID chybujícího procesu: 0x322c
Čas spuštění chybující aplikace: 0x01d2691e58d4d1d3
Cesta k chybující aplikaci: C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\RPCRT4.dll
ID zprávy: 283ec94d-4317-4721-b347-878e3c0f8632
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/07/2017 07:55:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: DaS_21.exe, verze: 2.1.0.4, časové razítko: 0x540c90b2
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.14393.479, časové razítko: 0x582588e6
Kód výjimky: 0xe0434352
Posun chyby: 0x0000000000017788
ID chybujícího procesu: 0x250c
Čas spuštění chybující aplikace: 0x01d2691798ce7b0c
Cesta k chybující aplikaci: C:\Users\Jarda\AppData\Local\Temp\DaS_21.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 1840bdbd-96e8-428a-9c58-c62c3ad03f15
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/07/2017 07:55:21 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: DaS_21.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.IO.IOException
na System.IO.__Error.WinIOError(Int32, System.String)
na System.Console.SetWindowSize(Int32, Int32)
na DriverAndServicesOut.Program.Main(System.String[])
Error: (01/07/2017 07:54:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: zoek.com, verze: 0.0.0.0, časové razítko: 0x00000000
Název chybujícího modulu: KERNEL32.DLL, verze: 10.0.14393.0, časové razítko: 0x57898ef6
Kód výjimky: 0xc0000409
Posun chyby: 0x000149aa
ID chybujícího procesu: 0x22cc
Čas spuštění chybující aplikace: 0x01d269177621052f
Cesta k chybující aplikaci: C:\Users\Jarda\Desktop\zoek\zoek.com
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNEL32.DLL
ID zprávy: 681a1713-4f5f-4047-9541-d6700d6d49bc
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/07/2017 07:53:23 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program uoam.exe verze 8.2.0.1 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Zabezpečení a údržba.
ID procesu: 2b80
Čas spuštění: 01d2691556bf8a86
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files (x86)\Ultima Online DP2\UOAM\uoam.exe
ID hlášení: 8f8c25fb-d50a-11e6-834c-d43d7eecf40d
Úplný název balíčku s chybou:
ID aplikace související s balíčkem s chybou:
Error: (01/07/2017 07:52:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: zoek.com, verze: 0.0.0.0, časové razítko: 0x00000000
Název chybujícího modulu: KERNEL32.DLL, verze: 10.0.14393.0, časové razítko: 0x57898ef6
Kód výjimky: 0xc0000409
Posun chyby: 0x000149aa
ID chybujícího procesu: 0x31ec
Čas spuštění chybující aplikace: 0x01d269173bdd7c9a
Cesta k chybující aplikaci: C:\Users\Jarda\Desktop\zoek\zoek.com
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNEL32.DLL
ID zprávy: 1306b9f8-90b2-4fff-a7c7-b76600cc18e2
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/07/2017 03:05:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: DaS_21.exe, verze: 2.1.0.4, časové razítko: 0x540c90b2
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.14393.479, časové razítko: 0x582588e6
Kód výjimky: 0xe0434352
Posun chyby: 0x0000000000017788
ID chybujícího procesu: 0x28e0
Čas spuštění chybující aplikace: 0x01d268ef2803cc3c
Cesta k chybující aplikaci: C:\Users\Jarda\AppData\Local\Temp\DaS_21.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 0972f9dd-c272-47e1-a51a-6e059145db07
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/07/2017 03:05:52 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: DaS_21.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.IO.IOException
na System.IO.__Error.WinIOError(Int32, System.String)
na System.Console.SetWindowSize(Int32, Int32)
na DriverAndServicesOut.Program.Main(System.String[])
System errors:
=============
Error: (01/07/2017 09:00:42 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba MSI Live Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (01/07/2017 08:42:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba RapportIaso neuspěla při spuštění v důsledku následující chyby:
{Chyba aplikace}
Aplikaci (0x%lx) se nepodařilo správně spustit. Kliknutím na tlačítko OK aplikaci ukončete.
Error: (01/07/2017 08:40:29 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba RapportIaso neuspěla při spuštění v důsledku následující chyby:
{Chyba aplikace}
Aplikaci (0x%lx) se nepodařilo správně spustit. Kliknutím na tlačítko OK aplikaci ukončete.
Error: (01/07/2017 08:35:28 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
a APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (01/07/2017 08:35:19 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba NetTcpActivator závisí na službě NetTcpPortSharing, která neuspěla při spuštění v důsledku následující chyby:
Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.
Error: (01/07/2017 08:34:32 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Chemtable Startup Checking se po přijetí pokynu pro vypnutí neukončila správně.
Error: (01/07/2017 08:34:32 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby seclogon bylo dosaženo časového limitu (30000 ms).
Error: (01/07/2017 08:34:02 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Server datového modelu dlaždic byla ukončena s následující chybou:
%%2147943515 = Probíhá vypnutí systému.
Error: (01/07/2017 08:16:55 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (01/07/2017 08:16:55 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
CodeIntegrity:
===================================
Date: 2017-01-07 18:37:43.403
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-01-06 20:20:37.368
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-01-06 20:20:37.364
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-01-06 20:20:37.355
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-01-06 20:20:37.351
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-01-06 20:20:37.342
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-01-06 20:20:37.338
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-01-06 20:20:37.317
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-01-06 20:20:37.282
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-01-06 20:20:37.250
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-4440 CPU @ 3.10GHz
Percentage of memory in use: 31%
Total physical RAM: 8120 MB
Available physical RAM: 5560.59 MB
Total Virtual: 16312 MB
Available Virtual: 12743.04 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:243.6 GB) (Free:47.62 GB) NTFS
Drive d: () (Fixed) (Total:687.37 GB) (Free:113.1 GB) NTFS
Drive i: (20100121_2355) (CDROM) (Total:4.24 GB) (Free:0 GB) CDFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or
(Size: 931.5 GB) (Disk ID: C8635980)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=243.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
Partition 4: (Not Active) - (Size=687.4 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================