Prosím o kontrolu logu

[Anomiki]

Ty dva zbytky antivirů sem vymazal. S tou adresou routeru tak sem nikdy nepřenastavoval ani sem nikdy v USA nebyl..
Pokud se dívám správně tak Adresa IP : 192.168.0.1

[Reklama]

[jaro3]

Bude lepší , když dáš nový sken FRST , je-li vše smazáno.

[Anomiki]

FRST :

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 25-02-2017
Ran by Jakub (administrator) on JAKUB-PC (27-02-2017 20:13:19)
Running from C:\Users\Jakub\Downloads\Desktop
Loaded Profiles: Jakub (Available Profiles: Jakub)
Platform: Microsoft Windows 10 Home Version 1607 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(LogMeIn, Inc.) C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
(Teruten) C:\Windows\System32\FsUsbExService.Exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Ulead Systems, Inc.) C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(Copyright 2017.) C:\Program Files\Zemana AntiMalware\ZAM.exe
(LogMeIn Inc.) C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.32.7\GoogleCrashHandler.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(© 2015 Microsoft Corporation) C:\Users\Jakub\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\LeagueClient.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_1.6.2.0_x86__8wekyb3d8bbwe\Microsoft.StickyNotes.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [HDAudDeck] => C:\Program Files\VIA\VIAudioi\VDeck\VDeck.exe [1486848 2009-08-28] (VIA)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59240 2011-09-27] (Apple Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM\...\Run: [SwitchBoard] => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeCS5ServiceManager] => C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated)
HKLM\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [383424 2012-02-05] (Autodesk, Inc.)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2585744 2016-01-29] (NVIDIA Corporation)
HKLM\...\Run: [LogMeIn GUI] => C:\Program Files\LogMeIn\x86\LogMeInSystray.exe [63048 2015-06-15] (LogMeIn, Inc.)
HKLM\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [5565960 2016-11-11] (LogMeIn Inc.)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [483840 2016-07-16] (Microsoft Corporation)
HKLM\...\Run: [ZAM] => C:\Program Files\Zemana AntiMalware\ZAM.exe [14416624 2017-02-02] (Copyright 2017.)
HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\Run: [BingSvc] => C:\Users\Jakub\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-12] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\Run: [Voobly] => C:\Program Files\Voobly\voobly.exe [159744 2016-04-03] (Voobly)
HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [7416536 2017-02-08] (Piriform Ltd)
HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\Policies\Explorer: []
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Jakub\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileSyncShell.dll [2016-09-12] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Jakub\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileSyncShell.dll [2016-09-12] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Jakub\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileSyncShell.dll [2016-09-12] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2015-02-06] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [Správa překryvné ikony digitálních podpisů AutoCADu ] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2015-02-06] (Autodesk, Inc.)
Startup: C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk [2016-04-07]
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{0ccc13c1-fd50-48b8-bdc6-8042ddc467bc}: [DhcpNameServer] 7.254.254.254
Tcpip\..\Interfaces\{3325e624-3a70-41e6-8fd6-9b5edc45d376}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{74b70064-3414-49ba-b68c-92788b8bbbb8}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{8db9411a-25d6-4ea6-b22b-1913f0554876}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{fdd04cc3-ae0f-4cdb-96bd-c490418bd7b2}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-2460206527-1493759754-90791392-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-2460206527-1493759754-90791392-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-2460206527-1493759754-90791392-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=SK2M&ocid=SK2MDHP&osmkt=en-ww
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKU\S-1-5-21-2460206527-1493759754-90791392-1000 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2460206527-1493759754-90791392-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-06-22] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-06-22] (Oracle Corporation)
DPF: {CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.5.0/jinsta ... s-i586.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2013-11-20] (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2017-01-01] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\xwMkUhdM.default [2017-02-27]
FF NewTab: Mozilla\Firefox\Profiles\xwMkUhdM.default -> about:newtab
FF Homepage: Mozilla\Firefox\Profiles\xwMkUhdM.default -> about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_24_0_0_221.dll [2017-02-20] ()
FF Plugin: @gamersfirst.com/LiveLauncher -> C:\Program Files\GamersFirst\LIVE!\nplivelauncher.dll [No File]
FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-06-22] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-06-22] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin: @ngm.nexoneu.com/NxGame -> C:\ProgramData\NexonEU\NGM\npNxGameeu.dll [2012-04-14] (Nexon)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-11-14] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-11-14] (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-02-27]
CHR Extension: (Prezentace Google) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-02-26]
CHR Extension: (Dokumenty Google) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2017-02-26]
CHR Extension: (Disk Google) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-02-26]
CHR Extension: (YouTube) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-02-26]
CHR Extension: (Tabulky Google) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-02-26]
CHR Extension: (Avira Browser Safety) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2017-02-26]
CHR Extension: (Dokumenty Google offline) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-02-26]
CHR Extension: (Skype) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-02-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-02-26]
CHR Extension: (Gmail) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-02-26]
CHR Extension: (Chrome Media Router) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-26]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-03-03]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 chromoting; C:\Program Files\Google\Chrome Remote Desktop\56.0.2924.51\remoting_host.exe [72024 2017-01-03] (Google Inc.)
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [1044816 2014-03-11] (Flexera Software, Inc.)
R2 FsUsbExService; C:\Windows\system32\FsUsbExService.Exe [217088 2009-12-22] (Teruten) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [915600 2016-01-29] (NVIDIA Corporation)
S2 gupdate1cac9dd563a9e30; C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-09-17] (Google Inc.)
R2 Hamachi2Svc; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [1962504 2016-11-11] (LogMeIn Inc.)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 LMIGuardianSvc; C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe [405424 2016-11-11] (LogMeIn, Inc.)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [3303888 2017-01-20] (Malwarebytes)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1706128 2016-01-29] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19775632 2016-01-29] (NVIDIA Corporation)
S3 ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [620544 2008-11-11] (Nokia.) [File not signed]
S2 sfrem01; C:\Windows\system32\sfrem01.exe [353912 2006-05-10] (Protection Technology (StarForce))
S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 TunngleService; C:\Program Files\Tunngle\TnglCtrl.exe [838128 2016-12-15] (Tunngle.net GmbH)
R2 UleadBurningHelper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152 2005-01-31] (Ulead Systems, Inc.) [File not signed]
R2 VIAKaraokeService; C:\WINDOWS\system32\viakaraokesrv.exe [36504 2015-06-22] (VIA Technologies, Inc.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [271496 2016-07-16] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [84928 2016-07-16] (Microsoft Corporation)
R2 ZAMSvc; C:\Program Files\Zemana AntiMalware\ZAM.exe [14416624 2017-02-02] (Copyright 2017.)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\WINDOWS\System32\drivers\AsIO.sys [12400 2007-12-17] ()
R3 athur; C:\WINDOWS\System32\drivers\athur.sys [1501696 2010-03-09] (Atheros Communications, Inc.)
R2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [83872 2012-11-22] ()
R1 dtsoftbus01; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [243128 2015-02-24] (Disc Soft Ltd)
S3 ENTECH; C:\Windows\system32\DRIVERS\ENTECH.sys [21664 2004-10-25] (EnTech Taiwan) [File not signed]
R3 FsUsbExDisk; C:\Windows\system32\FsUsbExDisk.SYS [36640 2009-12-22] () [File not signed]
R3 Hamachi; C:\WINDOWS\System32\drivers\Hamdrv.sys [38512 2015-08-03] (LogMeIn Inc.)
R2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [25888 2012-11-22] ()
R1 MpKsl0f47fa7c; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{55321439-7798-4B11-93FB-C755582A2FFE}\MpKsl0f47fa7c.sys [39168 2017-02-27] (Microsoft Corporation)
R1 MpKslfbe77a60; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2CD434F9-58FB-4E05-8148-4AF5360D8BA8}\MpKslfbe77a60.sys [39168 2017-02-26] (Microsoft Corporation)
R3 MTsensor; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [6504 2009-05-13] ()
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [62976 2016-07-16] ()
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [18576 2016-01-29] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad32v.sys [32912 2016-01-29] (NVIDIA Corporation)
R0 sfhlp02; C:\WINDOWS\System32\drivers\sfhlp02.sys [6656 2006-05-10] (Protection Technology (StarForce)) [File not signed]
R3 tap0901t; C:\WINDOWS\System32\drivers\tap0901t.sys [44216 2016-04-26] (Tunngle.net GmbH)
R3 VIAHdAudAddService; C:\WINDOWS\system32\drivers\viahduaa.sys [575184 2015-06-22] (VIA Technologies, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37912 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [244576 2016-07-16] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [100192 2016-07-16] (Microsoft Corporation)
R1 ZAM; C:\WINDOWS\System32\drivers\zam32.sys [181496 2017-02-26] (Zemana Ltd.)
R1 ZAM_Guard; C:\WINDOWS\System32\drivers\zamguard32.sys [181496 2017-02-26] (Zemana Ltd.)
U3 idsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-02-27 16:55 - 2017-02-27 16:55 - 00000000 ____D C:\Users\Jakub\AppData\Local\Apple
2017-02-27 13:17 - 2017-02-27 13:17 - 02975136 _____ (Avira Operations GmbH & Co. KG) C:\Users\Jakub\Downloads\avira_registry_cleaner_en.exe
2017-02-27 13:11 - 2017-02-27 13:11 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2017-02-27 13:01 - 2017-02-27 13:01 - 00219584 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\4A700B24.sys
2017-02-26 22:09 - 2017-02-26 22:09 - 00000000 ____D C:\Users\Jakub\AppData\Local\NetworkTiles
2017-02-26 18:31 - 2017-02-27 20:13 - 00000000 ____D C:\FRST
2017-02-26 17:49 - 2017-02-26 17:49 - 00000000 ____D C:\Users\Jakub\AppData\Local\CrashDumps
2017-02-26 17:37 - 2017-02-26 17:37 - 00015600 _____ C:\Users\Jakub\Downloads\MemTest.zip
2017-02-26 15:39 - 2017-02-27 20:13 - 00144414 _____ C:\WINDOWS\ZAM.krnl.trace
2017-02-26 15:39 - 2017-02-27 20:13 - 00114245 _____ C:\WINDOWS\ZAM_Guard.krnl.trace
2017-02-26 15:39 - 2017-02-26 15:39 - 00181496 _____ (Zemana Ltd.) C:\WINDOWS\system32\Drivers\zamguard32.sys
2017-02-26 15:39 - 2017-02-26 15:39 - 00181496 _____ (Zemana Ltd.) C:\WINDOWS\system32\Drivers\zam32.sys
2017-02-26 15:39 - 2017-02-26 15:39 - 00001957 _____ C:\Users\Public\Desktop\Zemana AntiMalware.lnk
2017-02-26 15:39 - 2017-02-26 15:39 - 00000000 ____D C:\Users\Jakub\AppData\Local\Zemana
2017-02-26 15:39 - 2017-02-26 15:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiMalware
2017-02-26 15:39 - 2017-02-26 15:39 - 00000000 ____D C:\Program Files\Zemana AntiMalware
2017-02-26 13:55 - 2017-02-26 13:30 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2017-02-26 13:30 - 2017-02-26 13:53 - 00000000 ____D C:\zoek_backup
2017-02-25 15:22 - 2017-02-25 15:22 - 00000000 ____D C:\ProgramData\Sophos
2017-02-25 15:21 - 2017-02-25 15:21 - 00002763 _____ C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk
2017-02-25 15:21 - 2017-02-25 15:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
2017-02-25 15:21 - 2017-02-25 15:21 - 00000000 ____D C:\Program Files\Sophos
2017-02-25 14:13 - 2017-02-25 14:18 - 00000000 ____D C:\Users\TEMP
2017-02-25 14:01 - 2017-02-25 14:01 - 00000000 ____D C:\Users\Jakub\AppData\Local\Autodesk
2017-02-24 22:36 - 2017-02-25 13:21 - 00000000 ____D C:\AdwCleaner
2017-02-24 22:35 - 2017-02-27 13:11 - 00152512 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-02-24 22:34 - 2017-02-27 13:13 - 00219584 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-02-24 22:34 - 2017-02-27 13:13 - 00094656 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-02-24 22:34 - 2017-02-27 13:13 - 00039360 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-02-24 22:34 - 2017-02-26 17:44 - 00073672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-02-24 22:34 - 2017-02-24 22:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-02-24 22:34 - 2017-02-24 22:34 - 00000000 ____D C:\Program Files\Malwarebytes
2017-02-24 22:34 - 2017-01-20 07:47 - 00059976 _____ C:\WINDOWS\system32\Drivers\mbae.sys
2017-02-24 22:30 - 2017-02-24 22:30 - 00000000 ____D C:\Users\Jakub\AppData\Local\Adobe
2017-02-24 22:25 - 2017-02-26 16:36 - 00000000 ____D C:\Users\Jakub\Downloads\Oprava PC
2017-02-24 20:27 - 2017-02-24 20:27 - 00000000 ____D C:\Program Files\Common Files\Skype
2017-02-24 19:42 - 2017-02-24 19:41 - 00921280 _____ (Microsoft Corporation) C:\WINDOWS\ucrtbase.dll
2017-02-24 19:37 - 2017-02-24 19:37 - 00001034 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-02-24 19:37 - 2017-02-24 19:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-02-24 19:37 - 2017-02-24 19:37 - 00000000 ____D C:\Program Files\CCleaner
2017-02-19 17:17 - 2017-02-19 17:18 - 00000000 ____D C:\ProgramData\Tunngle

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-02-27 16:02 - 2016-09-12 15:28 - 00000000 ____D C:\Users\Jakub
2017-02-27 15:17 - 2013-05-12 10:15 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\vlc
2017-02-27 13:12 - 2016-09-12 15:53 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-02-27 13:12 - 2016-09-12 15:22 - 00000000 ____D C:\ProgramData\NVIDIA
2017-02-27 13:12 - 2016-07-16 03:22 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2017-02-27 13:11 - 2016-07-16 09:30 - 00002577 _____ C:\WINDOWS\system32\config.nt
2017-02-27 02:04 - 2016-09-12 15:20 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-02-27 02:04 - 2014-05-17 18:30 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\TS3Client
2017-02-26 16:34 - 2015-08-06 21:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2017-02-26 16:34 - 2015-08-06 21:53 - 00000000 ____D C:\Program Files\CrystalDiskInfo
2017-02-26 15:31 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-02-26 13:52 - 2009-07-14 03:37 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2017-02-26 12:09 - 2014-10-30 18:57 - 00024688 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2017-02-25 14:41 - 2016-07-16 09:29 - 00000000 ___HD C:\Program Files\WindowsApps
2017-02-25 14:13 - 2015-09-03 17:37 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-02-25 13:29 - 2015-08-05 19:10 - 00001054 _____ C:\Users\Jakub\Desktop\JRT.txt
2017-02-24 22:34 - 2014-04-20 22:00 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-02-24 21:08 - 2016-09-12 15:25 - 03273728 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-02-24 21:08 - 2016-07-16 18:01 - 01336780 _____ C:\WINDOWS\system32\perfh005.dat
2017-02-24 21:08 - 2016-07-16 18:01 - 00367914 _____ C:\WINDOWS\system32\perfc005.dat
2017-02-24 21:05 - 2014-06-03 18:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2017-02-24 21:05 - 2014-06-03 18:48 - 00000000 ____D C:\Program Files\Common Files\Autodesk Shared
2017-02-24 21:05 - 2014-03-11 22:00 - 00000000 ____D C:\Program Files\Autodesk
2017-02-24 21:05 - 2014-03-11 21:54 - 00000000 ____D C:\ProgramData\Autodesk
2017-02-24 21:04 - 2016-07-16 03:22 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-02-24 21:04 - 2012-01-01 09:42 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2017-02-24 20:48 - 2014-04-22 20:18 - 00000000 ____D C:\Games
2017-02-24 20:47 - 2011-06-15 13:32 - 00000000 ____D C:\EULA SHIT
2017-02-24 20:42 - 2015-05-22 20:45 - 00000000 ____D C:\GOG Games
2017-02-24 20:40 - 2012-01-01 09:42 - 00000000 ____D C:\Program Files\Common Files\InstallShield
2017-02-24 20:36 - 2016-09-07 19:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2017-02-24 20:36 - 2016-07-16 09:28 - 00000000 ____D C:\WINDOWS\INF
2017-02-24 20:34 - 2016-06-26 21:10 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line
2017-02-24 20:27 - 2010-03-22 17:23 - 00000000 ___RD C:\Program Files\Skype
2017-02-24 20:27 - 2010-03-22 17:23 - 00000000 ____D C:\ProgramData\Skype
2017-02-24 20:04 - 2014-03-11 21:54 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\Autodesk
2017-02-24 20:00 - 2016-07-23 18:08 - 00000000 ____D C:\Users\Jakub\AppData\Local\LogMeIn Hamachi
2017-02-24 20:00 - 2012-09-17 21:28 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\DAEMON Tools Lite
2017-02-24 20:00 - 2011-05-27 10:47 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\uTorrent
2017-02-24 19:58 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-02-24 19:48 - 2016-04-23 18:47 - 00000000 ____D C:\Users\Jakub\Downloads\Dont Starve Together
2017-02-24 19:48 - 2015-12-06 15:38 - 00000000 ____D C:\Users\Jakub\Downloads\aoe2conq
2017-02-24 19:45 - 2014-03-10 00:02 - 00000000 ____D C:\temp
2017-02-24 19:37 - 2014-02-20 21:20 - 00000000 ____D C:\ProgramData\AVAST Software
2017-02-24 19:29 - 2013-10-24 00:00 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-02-24 19:25 - 2009-10-15 09:25 - 135086848 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-02-24 19:24 - 2016-07-16 09:19 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-02-23 20:39 - 2015-09-03 17:36 - 00000000 ____D C:\Users\Jakub\AppData\Local\Packages
2017-02-21 21:11 - 2016-01-30 23:42 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\.minecraft
2017-02-20 17:24 - 2015-08-11 22:56 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2017-02-20 01:56 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-02-19 19:07 - 2014-06-09 19:03 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\Tunngle
2017-02-19 17:18 - 2016-04-27 15:12 - 00000000 ____D C:\Program Files\Tunngle
2017-02-19 17:17 - 2016-04-27 15:12 - 00001018 _____ C:\Users\Public\Desktop\Tunngle.lnk
2017-02-19 17:17 - 2016-04-27 15:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tunngle
2017-02-19 16:46 - 2011-02-17 17:06 - 00000000 ____D C:\Users\Jakub\Documents\My Games
2017-02-15 22:04 - 2015-05-02 17:44 - 00001749 _____ C:\Users\Public\Desktop\League of Legends.lnk
2017-02-07 01:50 - 2010-03-22 18:22 - 00002218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-02-06 20:48 - 2016-07-16 09:31 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2017-02-06 20:48 - 2016-07-16 09:31 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2017-01-31 15:54 - 2010-03-22 17:32 - 00000000 ____D C:\Program Files\Google

==================== Files in the root of some directories =======

2014-05-24 20:03 - 2014-05-24 20:03 - 0000037 ___SH () C:\Users\Jakub\AppData\Local\70149b02515b3bb20dd492.47983420
2010-09-21 16:26 - 2011-10-26 09:06 - 0015360 ____H () C:\Users\Jakub\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-06-30 02:33 - 2015-06-30 02:33 - 0000218 _____ () C:\Users\Jakub\AppData\Local\recently-used.xbel
2011-05-13 15:52 - 2014-10-18 17:50 - 0007597 ____H () C:\Users\Jakub\AppData\Local\Resmon.ResmonCfg
2014-03-11 22:06 - 2014-03-11 22:06 - 0000147 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-02-24 19:23

==================== End of FRST.txt ============================

[Anomiki]

Addition:

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 25-02-2017
Ran by Jakub (27-02-2017 20:14:43)
Running from C:\Users\Jakub\Downloads\Desktop
Microsoft Windows 10 Home Version 1607 (X86) (2016-09-12 15:07:58)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2460206527-1493759754-90791392-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2460206527-1493759754-90791392-503 - Limited - Disabled)
Guest (S-1-5-21-2460206527-1493759754-90791392-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2460206527-1493759754-90791392-1002 - Limited - Enabled)
Jakub (S-1-5-21-2460206527-1493759754-90791392-1000 - Administrator - Enabled) => C:\Users\Jakub
kuvwqppwaikg (S-1-5-21-2460206527-1493759754-90791392-1005 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\uTorrent) (Version: 3.4.5.41712 - BitTorrent Inc.)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 2.7.1.19610 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 24.0.0.221 - Adobe Systems Incorporated)
Adobe Media Player (HKLM\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Photoshop CS5 (HKLM\...\{15FEDA5F-141C-4127-8D7E-B962D1742728}) (Version: 12.0 - Adobe Systems Incorporated)
Adobe Reader 8 - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-A81200000003}) (Version: 8.1.2 - Adobe Systems Incorporated)
Aktualizace NVIDIA 17.12.8 (Version: 17.12.8 - NVIDIA Corporation) Hidden
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Apple Application Support (HKLM\...\{A83279FD-CA4B-4206-9535-90974DE76654}) (Version: 2.1.5 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
aTube Catcher (HKLM\...\aTube Catcher) (Version: 3.8.5187 - DsNET Corp)
Audiosurf (HKLM\...\{6D316D67-DA52-4659-9C98-F479963534D6}) (Version: 1.00.0000 - BestGameEver)
AutoCAD 2009 - český (HKLM\...\AutoCAD 2009 - český) (Version: 17.2.56.0 - Autodesk)
AutoCAD 2009 - český (Version: 17.2.56.0 - Autodesk) Hidden
Autodesk Inventor Fusion 2013 (HKLM\...\Autodesk Inventor Fusion 2013) (Version: 2.0.0.206 - Autodesk, Inc.)
Autodesk Inventor Fusion 2013 (Version: 2.0.0.206 - Autodesk, Inc.) Hidden
Autodesk Inventor Fusion plug-in for AutoCAD 2013 (HKLM\...\Modul plug-in aplikace Autodesk Inventor Fusion pro aplikaci AutoCAD 2013) (Version: 0.2.0.230 - Autodesk)
Autodesk Material Library 2013 (HKLM\...\{117EBEEB-5DB0-43C8-9FD6-DD583DB152DD}) (Version: 3.0.13 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2013 (HKLM\...\{606E12B9-641F-4644-A22A-FF38AE980AFD}) (Version: 3.0.13 - Autodesk)
Autodesk Sync (HKLM\...\{EE5F74BC-5CD5-4EF2-86BA-81E6CF46A18F}) (Version: 3.5.24.0 - Autodesk, Inc.)
Avira Browser Safety (HKLM\...\{9E10EA90-5E97-43B7-A246-FC7B4F5E9493}) (Version: 1.4.5.509 - Avira Operations GmbH & Co KG)
Balíček ovladače systému Windows - ASUS Tek. Corporation (ATP) Mouse (09/25/2015 7.0.0.9) (HKLM\...\6C3F8C7AFD19C7A76AF857BA7CD35E4CFAA9F3F0) (Version: 09/25/2015 7.0.0.9 - ASUS Tek. Corporation)
Belkin F6D4050 Enhanced Wireless USB Adapter (HKLM\...\InstallShield_{B97A0C89-29C0-4682-902C-364109A9857C}) (Version: 2.0.0.05 - Belkin)
Belkin F6D4050 Enhanced Wireless USB Adapter (Version: 2.0.0.05 - Belkin) Hidden
Bing Bar Platform (Version: 6.3.2322.0 - Microsoft Corporation) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.27 - Piriform)
CrystalDiskInfo 7.0.5 (HKLM\...\CrystalDiskInfo_is1) (Version: 7.0.5 - Crystal Dew World)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Defraggler (HKLM\...\Defraggler) (Version: 2.18 - Piriform)
DirectX for Managed Code Update (Summer 2004) (Version: 9.02.2904 - Microsoft) Hidden
DWG TrueConvert™ (HKLM\...\{5783F2D7-0221-0405-0000-0060B0CE6BBA}) (Version: 17.0 - Autodesk)
FARO LS 1.1.406.58 (HKLM\...\{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}) (Version: 4.6.58.2 - FARO Scanner Production)
FormatFactory 3.2.1.0 (HKLM\...\FormatFactory) (Version: 3.2.1.0 - Free Time)
Fotogalerie (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
GameRanger (HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\GameRanger) (Version: - GameRanger Technologies)
Google Chrome (HKLM\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.)
Google Update Helper (Version: 1.3.32.7 - Google Inc.) Hidden
Chrome Remote Desktop Host (HKLM\...\{0F4FB60A-EBD8-445B-8117-128E8351647E}) (Version: 56.0.2924.51 - Google Inc.)
IL Shared Libraries (HKLM\...\IL Shared Libraries) (Version: - Image-Line)
inSSIDer Office (HKLM\...\{8C127DE3-EC36-4BA3-A6EE-6DC4A9B6C526}) (Version: 3.1.1.6 - MetaGeek, LLC)
Java 8 Update 91 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.15 - Oracle Corporation)
Jazykový balíček Autodesk Inventor Fusion plug-in pro aplikaci AutoCAD 2013 (Version: 0.2.0.230 - Autodesk) Hidden
Junk Mail filter update (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
League of Legends (HKLM\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (Version: 3.0.1 - Riot Games) Hidden
LogMeIn (HKLM\...\{921037F5-CCA7-4FC5-83AF-42CC0AF14316}) (Version: 4.1.6524 - LogMeIn, Inc.)
LogMeIn Hamachi (HKLM\...\LogMeIn Hamachi) (Version: 2.2.0.541 - LogMeIn, Inc.)
LogMeIn Hamachi (Version: 2.2.0.541 - LogMeIn, Inc.) Hidden
Malwarebytes verze 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
Microsoft Games for Windows - LIVE Redistributable (HKLM\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Excel Viewer (HKLM\...\{95120000-003F-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office PowerPoint Viewer 2007 (Czech) (HKLM\...\{95120000-00AF-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office PowerPoint Viewer 2007 (English) (HKLM\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Word Viewer 2003 (HKLM\...\{90850409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Search Enhancement Pack (HKLM\...\{CFF8B8E8-E086-4DE0-935F-FE22CAB54F80}) (Version: 3.0.133.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Minecraft (HKLM\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Minecraft1.7.2 (HKLM\...\Minecraft1.7.2) (Version: - )
Modul plug-in aplikace Autodesk Inventor Fusion pro aplikaci AutoCAD 2013 (Version: 0.2.0.230 - Autodesk) Hidden
Movie Maker (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML4 Parser (HKLM\...\{01501EBA-EC35-4F9F-8889-3BE346E5DA13}) (Version: 1.0.0 - Microsoft Game Studios)
Nexon Game Manager (HKLM\...\{289AC7E0-0AEE-4a7b-913C-709D9803D23E}) (Version: - )
NVIDIA Display Control Panel (HKLM\...\NVIDIA Display Control Panel) (Version: 6.14.12.5909 - NVIDIA Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.5 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.2.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.2.2 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 342.01 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 342.01 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
osu! (HKLM\...\{682d34e1-f1cb-41bd-ba8d-a00225b0b47e}) (Version: latest - ppy Pty Ltd)
osu! (HKLM\...\{C3592426-531E-4110-911D-BFECE2CE284C}) (Version: 0.0.0.0 - peppy)
Ovládací panel NVIDIA 342.01 (Version: 342.01 - NVIDIA Corporation) Hidden
Paint.NET v3.5.10 (HKLM\...\{529125EF-E3AC-4B74-97E6-F688A7C0F1BF}) (Version: 3.60.0 - dotPDN LLC)
PC Connectivity Solution (HKLM\...\{34610DE0-3C13-42CA-8E32-01FFA38AB6E8}) (Version: 8.47.7.0 - Nokia)
PDF Settings CS5 (Version: 10.0 - Adobe Systems Incorporated) Hidden
Platform (Version: 1.34 - VIA Technologies, Inc.) Hidden
Podélný profil vodní toky 4 (HKLM\...\pp_vtk_4) (Version: - )
Seznam Software (HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\SeznamInstall) (Version: - Seznam.cz)
SHIELD Streaming (Version: 4.0.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 17.12.8 - NVIDIA Corporation) Hidden
Skype Click to Call (HKLM\...\{BB285C9F-C821-4770-8970-56C4AB52C87E}) (Version: 7.1.15383.6004 - Microsoft Corporation)
Skype™ 7.32 (HKLM\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.32.104 - Skype Technologies S.A.)
Sony Ericsson PC Companion 2.02.002 (HKLM\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.02.002 - Sony Ericsson)
Sophos Virus Removal Tool (HKLM\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.5.6 - Sophos Limited)
System Requirements Lab Detection (HKLM\...\{B67A7719-8F0E-4D92-BF9C-D9FBFFF060A2}) (Version: 2.2.1.0 - Husdawg, LLC)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Tunngle (HKLM\...\Tunngle_is1) (Version: 5.8.8 - Tunngle.net GmbH)
Ulead VideoStudio 10 (HKLM\...\{E188D820-1218-4E28-8BCA-91134C3664C2}) (Version: 10.0 - Ulead Systems)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VBA (2627.01) (Version: 6.03.00.9402 - Microsoft Corporation) Hidden
Vegas Pro 9.0 (HKLM\...\{6E5AB107-172B-4F17-8ABB-357C59EF1B08}) (Version: 9.0.704 - Sony)
VIA Platforma Ovladače zařízení (HKLM\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
Windows Live Sync (HKLM\...\{068B46A0-8858-4CEB-80BC-A4AE787A05FC}) (Version: 14.0.8089.726 - Microsoft Corporation)
Windows Phone app for desktop (HKLM\...\{CE9BDD0F-BAF3-474D-B6D8-15B84BDAB229}) (Version: 1.1.2726.0 - Microsoft Corporation)
WinRAR 5.20 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
Zemana AntiMalware (HKLM\...\{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.72.101 - Zemana Ltd.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{00BB2763-6A77-11D0-A535-00C04FD7D062}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{00EEBF57-477D-4084-9921-7AB3C2C9459D}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{03C036F1-A186-11D0-824A-00AA005B4383}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{06EEE834-461C-42C2-8DCF-1502B527B1F9}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{08244EE6-92F0-47F2-9FC9-929BAA2E7235}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{0AF10CEC-2ECD-4B92-9581-34F6AE0637F3}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{0B91A74B-AD7C-4A9D-B563-29EEF9167172}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{0C15D503-D017-47CE-9016-7B3F978721CC}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{0E5AAE11-A475-4C5B-AB00-C66DE400274E}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{104846AB-42B1-4E38-A80D-136F78C3F258}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{14074E0B-7216-4862-96E6-53CADA442A56}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{1685D4AB-A51B-4AF1-A4E5-CEE87002431D}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{18907F3B-9AFB-4F87-B764-F9A4E16A21B8}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{1C0F439D-7C29-4BDE-8952-4EEB6A49E048}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{1C1800C1-3258-44C2-BE80-3DEADB6C5E39}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{1F486A52-3CB1-48FD-8F50-B8DC300D9F9D}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{25336920-03F9-11CF-8FD0-00AA00686F13}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{275C23E2-3747-11D0-9FEA-00AA003F8646}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{28B7AA99-C0F9-4C47-995E-8A8D729603A1}\localserver32 -> C:\Program Files\AutoCAD 2009\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{2F1F7574-ECCA-4361-B4DE-C411BF7EEE23}\localserver32 -> C:\Program Files\AutoCAD 2009\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{30276B4F-F25C-457C-A4B7-08574F8EA528}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{35786D3C-B075-49B9-88DD-029876E11C01}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{3D154A2D-D911-437E-A30C-5F56A9B7081D}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{4955DD33-B159-11D0-8FCF-00AA006BCC59}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{50D5107A-D278-4871-8989-F4CEAAF59CFC}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{50EF4544-AC9F-4A8E-B21B-8A26180DB13F}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{53BD6B4E-3780-4693-AFC3-7161C2F3EE9C}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{603D3800-BD81-11D0-A3A5-00C04FD706EC}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{640167B4-59B0-47A6-B335-A6B3C0695AEA}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{6746C347-576B-4F73-9012-CDFEEA251BC4}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2013\acad.exe => No File
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{6AB55F46-2523-4701-A912-B226F46252BA}\localserver32 -> C:\Program Files\AutoCAD 2009\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{6E682784-1ECA-4CF2-988D-96B6E89E9A4D}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{71F96385-DDD6-48D3-A0C1-AE06E8B055FB}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{76765B11-3F95-4AF2-AC9D-EA55D8994F1A}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{76BE8257-C4C0-4D37-90C0-A23372254D27}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{7AABBB95-79BE-4C0F-8024-EB6AF271231C}\localserver32 -> C:\Program Files\AutoCAD 2009\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{7EFC002A-071F-4CE7-B265-F4B4263D2FD2}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{807C1E6C-1D00-453F-B920-B61BB7CDD997}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{807E5A10-4856-4F9A-8E3C-A1F7E75648B3}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{82C588E7-E54B-408C-9F8C-6AF9ADF6F1E9}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{8856F961-340A-11D0-A96B-00C04FD705A2}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{9113A02D-00A3-46B9-BC5F-9C04DADDD5D7}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{934D4698-6A59-48F8-9F29-9FB30670320E}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{942BC614-676C-464E-B384-D3202AAA02DA}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{989D1DC0-B162-11D1-B6EC-D27DDCF9A923}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{9AC9FBE1-E0A2-4AD6-B4EE-E212013EA917}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{9CFC2DF3-6BA3-46EF-A836-E519E81F0EC4}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{A4A1A128-768F-41E0-BF75-E4FDDD701CBA}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{AF02484C-A0A9-4669-9051-058AB12B9195}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{B056521A-9B10-425E-B616-1FCD828DB3B1}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{B155BDF8-02F0-451E-9A26-AE317CFD7779}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{B2952B16-0E07-4E5A-B993-58C52CB94CAE}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{B54F3743-5B07-11CF-A4B0-00AA004A55E8}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{B8967F85-58AE-4F46-9FB2-5D7904798F4B}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{BD0DEB94-63DB-4392-9420-6EEE05094B1F}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2013\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{CD773740-B187-4974-A1D5-E0FF91372277}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{d0a0ed0a-55ac-4469-a197-1d08ce99cfb9}\localserver32 -> C:\Users\Jakub\AppData\Local\Temp\{4f5e3a76-f453-4882-ab42-7224f3310de7}\IDriver.NonElevated.exe => (the data entry has 7 more characters).
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{D58960BA-2EF3-4910-9E34-C911B1710180}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{D9B3211D-E57F-4426-AAEF-30A806ADD397}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{DB6EFB73-5153-43B7-8078-C6FFC4C0238C}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\AutoCAD 2009\acadficn.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{E7E4BC40-E76A-11CE-A9BB-00AA004AE837}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{EDB5F444-CB8D-445A-A523-EC5AB6EA33C7}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{FE841493-835C-4FA3-B6CC-B4B2D4719848}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{FF393560-C2A7-11CF-BFF4-444553540000}\InprocServer32 -> no filepath

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {058C9AD5-9691-4030-88A9-1999DEB0C6E6} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {0600760F-C80B-4AE9-B1C9-B0893748291C} - System32\Tasks\{6190B3D4-6085-4202-AAF9-9E0A830DEEDB} => C:\Program Files\Gothic II\system\Gothic2.exe
Task: {0B8844C3-63EF-4586-B3FA-81A871384BC3} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => %SystemRoot%\ehome\ehPrivJob.exe
Task: {0F5C7D2E-FECC-4C02-8D11-FBA0D352BC61} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2017-02-20] (Adobe Systems Incorporated)
Task: {14305816-E616-4051-8CE6-D5F2271A707D} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {15E02BCA-9734-4006-A46A-65E1B7C02FAE} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {165998FE-2123-47CC-A6E6-63C89D8A173C} - System32\Tasks\{E8694150-11C4-4DA1-9ED0-4FF4834D3340} => C:\Program Files\Gameforge4D\4Story\4Story.exe
Task: {17B66156-4B04-4071-B438-490501BC0322} - \{C46E5936-604C-4AB1-A79D-38C6A1CD8709} -> No File <==== ATTENTION
Task: {18E8A296-BB71-46D0-BB8F-B7B9A82FB3C2} - System32\Tasks\{0C3442F4-C9B3-4701-997E-009629367FE6} => pcalua.exe -a C:\Users\Jakub\Desktop\battlefield2demo.exe -d C:\Users\Jakub\Desktop
Task: {1D99D803-D69A-4E91-918E-B1C05B7FB866} - \{255F4D84-01B3-47F7-B113-50176D699A5F} -> No File <==== ATTENTION
Task: {1F03AB63-51FE-49B8-B6E1-7B546102B57C} - System32\Tasks\{861CD5A4-36EC-4ED8-A862-D1CABF9774CC} => C:\Users\Jakub\Downloads\battlefield2demo.exe
Task: {220F1AFB-8BE8-40FE-BEC1-07D5FD4B5E65} - System32\Tasks\{084AF887-CD56-4D53-9FBE-B58B78CBA282} => C:\Users\Jakub\Downloads\battlefield2demo.exe
Task: {22781649-29C7-4FCD-BE52-E7F9E6A46A7D} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => %SystemRoot%\ehome\mcupdate.exe
Task: {236145C3-8186-4D31-BB22-2DCB4BCDC3ED} - System32\Tasks\{AE40213A-63FB-49BE-AEB7-55ABE860606A} => pcalua.exe -a D:\ARCANIA\setup.exe -d D:\ARCANIA
Task: {2384A400-1C3E-415C-BFEB-8479B1F18D8B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation)
Task: {25B086CE-7D27-4006-8336-AF499B361945} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => %SystemRoot%\ehome\ehrec.exe
Task: {2821AB5D-9244-49F1-9F00-E114C63066BA} - System32\Tasks\Avira Browser Safety Updater Task => C:\Program Files\Avira\Browser Safety\AviraBrowserSafetyUpdater.exe [2015-03-11] (Avira Operations GmbH & Co. KG)
Task: {288AB656-DC59-41F2-BC68-058C269B1F3A} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => %SystemRoot%\ehome\mcupdate.exe
Task: {2A84CF30-6F34-4761-9C78-CD140529373C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-02-08] (Piriform Ltd)
Task: {2AE3756C-A31D-4A87-A65D-066904779F80} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => %SystemRoot%\ehome\ehPrivJob.exe
Task: {3170B6E4-8488-4E77-BD0F-B009AB41A57E} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => %windir%\ehome\MCUpdate.exe
Task: {322BF951-9B9F-4760-BF90-2118BEFC03ED} - System32\Tasks\{7B9BD579-F235-40EA-9BCA-AFD3787C5079} => C:\Program Files\Codemasters\Worms 4 Totalni narez\launcher.exe
Task: {32BF6004-A9F7-41FF-BF13-75A339C143FD} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => %SystemRoot%\ehome\ehPrivJob.exe
Task: {3469BFEB-C55D-4546-92A2-2F12DFEA1AC6} - \{05EF766E-77C6-4BCA-8DD7-42A694A7B502} -> No File <==== ATTENTION
Task: {3582AA67-61C6-4B7D-BF01-7B6624F53391} - System32\Tasks\{640FCA85-31AB-4EF2-B73C-2D41F0CAA2E7} => C:\Program Files\Codemasters\Worms 4 Totalni narez\launcher.exe
Task: {3BEE59A4-C225-4396-93B2-00A86EEC3191} - System32\Tasks\{38FC791C-0920-4B3C-AC29-7AAD333DE373} => C:\Program Files\Codemasters\Worms 4 Totalni narez\launcher.exe
Task: {3D02A8CC-09B9-4879-B2C5-7DBC2C1765AE} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => %SystemRoot%\ehome\ehPrivJob.exe
Task: {3E6083B4-B80F-465E-89D7-8E2EE58E49E7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-17] (Google Inc.)
Task: {408529E0-8B38-464E-9143-76B6498E3631} - System32\Tasks\{94216756-B60A-48A8-82E7-F0960CC0272D} => C:\Users\Jakub\Downloads\battlefield2demo.exe
Task: {47D448D5-5C86-46BA-9BA9-22824A0C7BE5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation)
Task: {4CAE4515-8B7B-4623-BC43-813B3EB5FDF8} - \{4DD6D639-CC98-4E42-AC56-AA36B84E59B6} -> No File <==== ATTENTION
Task: {4EDF5568-A009-44A4-8180-0B689D6998AB} - System32\Tasks\{31F64227-E8EB-4AE5-895D-AC5CD02F292F} => C:\Program Files\Codemasters\Worms 4 Totalni narez\launcher.exe
Task: {515E559C-8EB9-4AC5-9305-8775FE15996A} - System32\Tasks\{A870B781-2FE2-437D-86B4-8995CB9B2D9C} => pcalua.exe -a "C:\Users\Jakub\Desktop\Ak Elâ Mod 0.1 Beta.exe" -d C:\Users\Jakub\Desktop
Task: {53DCA901-DF27-4D79-8A4F-58855AD16A80} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => %SystemRoot%\ehome\ehPrivJob.exe
Task: {553B8BAC-48BB-4DF2-BF66-556C63E5AECF} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {57C22BCF-5C32-40F6-8B30-78AA5F89628D} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => %SystemRoot%\ehome\ehPrivJob.exe
Task: {58A9F219-ECE1-4894-90A4-7636CC597A83} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {5E7AC3C8-EB20-4097-AF12-9755B374612C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation)
Task: {5F5D7C4B-3D5E-44FC-B8C7-59CBD10C2196} - System32\Tasks\{FBE0BBC3-BEFC-4B43-9DC7-35D1BBD6F90F} => C:\Program Files\Skype\Phone\Skype.exe [2017-02-08] (Skype Technologies S.A.)
Task: {63654BFC-D130-4937-84F0-906C35088FE3} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => %SystemRoot%\ehome\ehPrivJob.exe
Task: {689A1F72-A672-4814-B7CE-57ED1A78D2F2} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => %SystemRoot%\ehome\ehPrivJob.exe
Task: {68F34176-CED9-4C01-8E0D-C5B8FB86C0B9} - System32\Tasks\{231E83E6-AE0A-42B2-A98E-BC68C75FF36C} => C:\Program Files\THQ\Titan Quest\Titan Quest.exe
Task: {6E983407-9DCA-4F57-B829-5D4BAB70D2F7} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => %SystemRoot%\ehome\ehrec.exe
Task: {701E91A0-8D78-4F79-A5E9-03458E8833DC} - System32\Tasks\{BB5A419A-A926-47C4-AC46-F9B89CE24309} => C:\Program Files\Gameforge4D\4Story\4Story.exe
Task: {766265A2-976A-4B33-B87F-719C88938995} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {7DFE6A54-30FB-4B14-ACAF-9AF6E3EE8994} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe
Task: {7E7B86BE-7FF2-48F9-8E62-D725CF8C6485} - System32\Tasks\{620DF12F-46F3-41AA-8C78-72A638B917AC} => pcalua.exe -a D:\score.exe -d D:\
Task: {7F26A3F1-5FFE-4C5A-AE50-F8F8AE8DE034} - System32\Tasks\{781B0311-4727-4C05-9777-441AF3261A8C} => pcalua.exe -a "C:\Users\Jakub\AppData\Local\Temp\Temp2_BF2Demo.zip\Battlefield 2 Demo.exe" <==== ATTENTION
Task: {7FED7A7D-D275-4EC3-A742-699C8DDA7E75} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {833F0D6B-D871-48F5-B236-7A374DDBB6A9} - System32\Tasks\{1CA07491-5284-4E93-9DCC-913845C00CAE} => pcalua.exe -a "C:\Program Files\Alwil Software\Avast4\aswRunDll.exe" -c "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup
Task: {89133E86-CE31-4575-AA9A-AC319D2CD603} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {8AD79378-AD13-4C2C-9D03-4C1888DE62A7} - System32\Tasks\{A8D8077E-6C8B-4B72-9ADF-32BD034EF108} => pcalua.exe -a "C:\Users\Jakub\AppData\Local\Temp\Temp1_BF2Demo.zip\Battlefield 2 Demo.exe" <==== ATTENTION
Task: {8DAFF394-64AB-49F0-8F7E-847265508BC0} - System32\Tasks\{11CC0A3D-C7CF-4D4C-AD7C-3BD92DD27B61} => C:\Program Files\Codemasters\Worms 4 Totalni narez\launcher.exe
Task: {9119BC90-3CD1-40BA-AF68-8BE7DB4BCFAF} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-02-24] (Microsoft Corporation)
Task: {96662C2A-8150-4267-B5BD-B83B9C79C50D} - \{3D7B948F-B370-47B5-AF83-B1A3CBA4817E} -> No File <==== ATTENTION
Task: {96E6CE43-187A-4A89-9758-2BA0501FB489} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [2016-07-16] (Microsoft Corporation)
Task: {A02C4B05-D277-4A56-BC7B-6B91E862BE3D} - System32\Tasks\{EE240858-34C8-4068-9A7D-C0D7A8812F41} => C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe
Task: {A6C60ACA-732F-4B64-84A0-290B4989480F} - System32\Tasks\{A7A84784-B8DE-48B4-B1E7-7E8E2E145664} => C:\Users\Jakub\Downloads\battlefield2demo.exe
Task: {A800DC5A-0DA4-4262-B9DD-9C70BBA6F4A9} - System32\Tasks\GoogleUpdateTaskMachineUA1cf48cd20c95a20 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-17] (Google Inc.)
Task: {A901E003-EADD-4D6E-9231-D570C7C1FE3C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {AABA5F74-F267-4B6E-92A8-3AF35C82568A} - System32\Tasks\{4B1DE031-FE81-43B7-9FBE-C58585F710FC} => pcalua.exe -a C:\Users\Jakub\Downloads\battlefield2demo.exe -d C:\Users\Jakub\Downloads
Task: {AB8B5B77-F3E7-4E0E-AEBF-382C2A14DBF1} - \{6E24917B-ADF8-4F2A-A75D-422397EA5DF7} -> No File <==== ATTENTION
Task: {AC0E3BAD-E946-4239-A12B-81A7C40DCA00} - System32\Tasks\{AD079EEC-6C28-431F-AF41-BEF344F35889} => C:\Program Files\Audiosurf\Audiosurf.exe
Task: {AC5FD1DC-D2DD-4F1C-A43A-4A711822BFD7} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {AD8883C8-02FF-4ED3-B804-4A5224EC6B71} - System32\Tasks\{6EF5867F-8787-470D-9B84-C346DACE8832} => C:\Program Files\Bethesda Softworks\Oblivion\OblivionLauncher.exe
Task: {AE0D9FC2-8BFD-48F7-B18E-879E8053126B} - \{FC1DA9C3-A138-44BA-B18E-0F29DDBC1A6D} -> No File <==== ATTENTION
Task: {B4F21B9C-E494-491A-8352-D45EE00FCA7C} - System32\Tasks\{546C4CFA-2932-4B17-99E7-75451400687B} => pcalua.exe -a F:\setup.exe -d F:\
Task: {B7BCECE4-86C9-42F1-9FA3-F466001E972E} - System32\Tasks\{41F9976B-0882-4ECD-92FA-18CAAC435FC3} => pcalua.exe -a C:\Users\Jakub\Desktop\InstallWoW.exe -d C:\Users\Jakub\Desktop
Task: {B87C658E-550D-43FC-801D-F32AF97DE1DF} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {BB7C28A6-EE2A-4EEF-87EA-ACB9840615BE} - System32\Tasks\{C4D29B72-0CA2-445A-A701-74125B26B084} => C:\Program Files\Codemasters\Worms 4 Totalni narez\launcher.exe
Task: {BDE44979-AEAC-4B94-83BB-07848EA1286D} - System32\Tasks\{6F8832F0-B012-4DAD-849B-50E330BCB3F3} => C:\Program Files\Bethesda Softworks\Oblivion\OblivionLauncher.exe
Task: {C198640D-762A-4CDB-9B06-73D8666C28F6} - System32\Tasks\{DEB1DAA2-49C2-4CD8-8681-AF776A9A34F6} => C:\Program Files\Gothic II\system\Gothic2.exe
Task: {C2562FB3-A03E-465D-8A8D-CB5BFC00E06D} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {C410164E-05BB-4F34-AA09-C40720E7F4CA} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {C5CDC22F-A3AB-49F2-9563-85C02EB2923C} - \{8D4AA04D-9519-40CF-B4B0-48B5B573F0C9} -> No File <==== ATTENTION
Task: {C7A6ED76-7963-4850-8A38-C7C3C463BF06} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => %SystemRoot%\ehome\ehPrivJob.exe
Task: {C8762E7B-C3A3-4325-8715-6C2BB017CB3E} - System32\Tasks\{BC82801B-AA2D-413F-BF3F-60B2351DD286} => C:\Program Files\THQ\Titan Quest\Titan Quest.exe
Task: {C8CBEA15-6386-4F25-B0A8-010648EE1FA1} - System32\Tasks\{67AB9B31-9DE0-4C54-9EA8-8AB8A587F2B3} => pcalua.exe -a D:\score.exe -d D:\
Task: {CAAAB354-415A-481A-BD17-2F87F0C44E77} - System32\Tasks\{95536B2A-9316-4F78-9733-5F5046032007} => pcalua.exe -a "C:\Users\Jakub\Desktop\Left 4 Dead\Left 4 Dead CZ\patch + cestina\Left 4 Dead.exe" -d "C:\Users\Jakub\Desktop\Left 4 Dead\Left 4 Dead CZ\patch + cestina"
Task: {CECCF328-2F66-43E5-965D-B4A7D1AC00C6} - System32\Tasks\{F5BB01D6-F25C-4912-953A-6427229EF386} => C:\Users\Jakub\Downloads\battlefield2demo.exe
Task: {D051B95A-D078-4E32-9DBE-31058B59AF44} - System32\Tasks\{72AB90DC-8A99-4202-BEF0-0515513F1524} => C:\Users\Jakub\Downloads\battlefield2demo.exe
Task: {D32AD087-099A-495F-8A49-90F1240FBC16} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {D3B64E95-3D98-4CC3-BA9F-EB3C65F968EB} - System32\Tasks\{761232D8-2543-40E1-BD9A-4021E5DCF7F1} => C:\Program Files\Gameforge4D\4Story\4Story.exe
Task: {D4F47096-D1D4-4261-B56A-03D738B4AA6C} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => %SystemRoot%\ehome\ehPrivJob.exe
Task: {D5D08984-83CB-40CB-9A23-6A9196D7F6D9} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {D9F05914-16AB-471C-905F-8BE8834236F0} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => %SystemRoot%\ehome\ehPrivJob.exe
Task: {E0E0ADEB-AA09-489B-A07C-EDBD419C4F4B} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => %SystemRoot%\ehome\ehPrivJob.exe
Task: {E12B7B7E-6CAB-49AA-9595-A230E08CE32B} - \{7B29C8A2-3F7A-4611-8DFB-77D62EE6DC5B} -> No File <==== ATTENTION
Task: {E1C6E2ED-C613-43E7-80AE-DA935115E754} - System32\Tasks\{EAF30263-413B-4DA2-8576-2B34FBF6E8F2} => pcalua.exe -a D:\samandmax\Setup.exe -d D:\samandmax
Task: {E5DF5D6C-2B5B-438A-8B9E-3A1D75D2E86C} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => %SystemRoot%\ehome\mcupdate.exe
Task: {EB411D69-F15C-48A1-B760-92396ABD0B8F} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => %SystemRoot%\ehome\ehPrivJob.exe
Task: {EB5B097D-7567-45DC-9698-C195B6B46E22} - System32\Tasks\{F6FCE509-EDCE-46D3-A3F7-DC368A17606C} => pcalua.exe -a "C:\Users\Jakub\Downloads\WindowsPhone (1).exe" -d C:\Users\Jakub\Downloads
Task: {ED430CCE-27DF-43A2-8EC4-3919ADC59803} - \{E94E52BB-A05B-4AFE-BF17-C281ADA79C89} -> No File <==== ATTENTION
Task: {F441C46D-7A28-49AF-BACC-247CC7E8982B} - \{A6235A17-EC21-4A4D-9C17-7DE386FC72B0} -> No File <==== ATTENTION
Task: {F5BFC3C4-7EB9-41E7-8E15-B7CC547D83EA} - System32\Tasks\{7593A9CC-052E-4109-B7C5-F7558108EAC9} => C:\Program Files\Codemasters\Worms 4 Totalni narez\launcher.exe
Task: {F5CC62ED-94CE-495F-BC71-AA6F73EA9B63} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {FADF9029-1F8B-4A33-BD10-2A773CD4D8AB} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {FEBE778C-53F5-4CF9-BDE8-A1A471037471} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Terraria\Dedicated Server.lnk -> C:\Program Files\Terraria\start-server.bat ()

ShortcutWithArgument: C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Vzdálená plocha Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 1" --app-id=gbchcmhmhahfdphkhkmpfmihenigjmpp
ShortcutWithArgument: C:\Users\Jakub\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 1"

==================== Loaded Modules (Whitelisted) ==============

2016-07-16 09:25 - 2016-07-16 09:25 - 00190976 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-12-14 18:48 - 2016-12-09 11:11 - 02048496 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-09-12 15:22 - 2016-11-14 12:00 - 00123448 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll
2016-12-14 18:48 - 2016-12-09 11:11 - 02048496 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-09-12 16:14 - 2016-09-12 16:14 - 00679624 _____ () C:\Users\Jakub\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\ClientTelemetry.dll
2016-07-16 09:25 - 2016-07-16 09:25 - 00108032 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-01-11 14:19 - 2016-12-21 05:42 - 00321536 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-01-11 14:19 - 2016-12-21 05:41 - 00492032 _____ () C:\Windows\ShellExperiences\MtcUvc.dll
2017-01-11 14:19 - 2016-12-21 05:25 - 06726656 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-01-11 14:19 - 2016-12-21 05:21 - 01150464 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-09-15 20:07 - 2016-08-06 04:21 - 00526848 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-01-11 14:19 - 2016-12-21 05:22 - 01724928 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-01-11 14:19 - 2016-12-21 05:24 - 03158016 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 02712568 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\LeagueClient.exe
2017-02-24 14:54 - 2017-02-23 20:46 - 00109048 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\zlib.dll
2017-02-24 14:54 - 2017-02-23 20:46 - 00129016 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\yaml.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00099832 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\libnghttp2.dll
2017-02-24 14:54 - 2017-02-23 20:45 - 01524216 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-patcher\rcp-be-patcher.dll
2017-02-24 14:54 - 2017-02-23 20:45 - 00653304 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-rso-auth\rcp-be-rso-auth.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 01042936 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-login\rcp-be-lol-login.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00485880 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-account-settings\rcp-be-lol-account-settings.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00509944 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-platform-config\rcp-be-lol-platform-config.dll
2017-02-24 14:54 - 2017-02-23 20:45 - 00654328 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-summoner\rcp-be-lol-summoner.dll
2017-02-24 14:54 - 2017-02-23 20:45 - 00568312 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-ranked-stats\rcp-be-lol-ranked-stats.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00546808 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-maps\rcp-be-lol-maps.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00631288 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-game-queues\rcp-be-lol-game-queues.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00773624 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-gameflow\rcp-be-lol-gameflow.dll
2017-02-24 14:54 - 2017-02-23 20:45 - 00539640 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-player-preferences\rcp-be-lol-player-preferences.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00618488 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-game-settings\rcp-be-lol-game-settings.dll
2017-02-24 14:54 - 2017-02-23 20:45 - 00567288 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-settings\rcp-be-lol-settings.dll
2017-02-24 14:54 - 2017-02-23 20:45 - 00558584 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-sanitizer\rcp-be-sanitizer.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 02372600 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-chat\rcp-be-lol-chat.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00180728 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\libexpat.dll
2017-02-24 14:54 - 2017-02-23 20:45 - 00549880 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-riot-messaging-service\rcp-be-lol-riot-messaging-service.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00486904 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-heartbeat\rcp-be-lol-heartbeat.dll
2017-02-24 14:54 - 2017-02-23 20:45 - 00565752 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-shutdown\rcp-be-lol-shutdown.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00522744 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-acs\rcp-be-lol-acs.dll
2017-02-24 14:54 - 2017-02-23 20:45 - 00590328 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-player-notifications\rcp-be-player-notifications.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00545784 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-loyalty\rcp-be-lol-loyalty.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 01025016 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-collections\rcp-be-lol-collections.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00853496 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-loot\rcp-be-lol-loot.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00485880 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-kr-shutdown-law\rcp-be-lol-kr-shutdown-law.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00520184 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-kickout\rcp-be-lol-kickout.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00897016 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-lobby-team-builder\rcp-be-lol-lobby-team-builder.dll
2017-02-24 14:54 - 2017-02-23 20:45 - 00582136 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-queue-eligibility\rcp-be-lol-queue-eligibility.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 01095672 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-lobby\rcp-be-lol-lobby.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00477176 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-license-agreement\rcp-be-lol-license-agreement.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00776184 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-champ-select-legacy\rcp-be-lol-champ-select-legacy.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00582136 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-champ-select\rcp-be-lol-champ-select.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00700408 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-matchmaking\rcp-be-lol-matchmaking.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00527352 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-kr-playtime-reminder\rcp-be-lol-kr-playtime-reminder.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00481272 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-game-client-chat\rcp-be-lol-game-client-chat.dll
2017-02-24 14:54 - 2017-02-23 20:45 - 00579064 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-team-boosts\rcp-be-lol-team-boosts.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00727032 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-end-of-game\rcp-be-lol-end-of-game.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00513528 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-active-boosts\rcp-be-lol-active-boosts.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00540152 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-kudos\rcp-be-lol-kudos.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00585720 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-parties\rcp-be-lol-parties.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00798712 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-leagues\rcp-be-lol-leagues.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00588792 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-pft\rcp-be-lol-pft.dll
2017-02-24 14:54 - 2017-02-23 20:45 - 00614392 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-player-behavior\rcp-be-lol-player-behavior.dll
2017-02-24 14:54 - 2017-02-23 20:45 - 00595448 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-suggested-players\rcp-be-lol-suggested-players.dll
2017-02-24 14:54 - 2017-02-23 20:45 - 00520696 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-service-status\rcp-be-lol-service-status.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00599544 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-leaver-buster\rcp-be-lol-leaver-buster.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00659448 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-match-history\rcp-be-lol-match-history.dll
2017-02-24 14:54 - 2017-02-23 20:45 - 00700920 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-recofriender\rcp-be-recofriender.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00773112 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-clubs\rcp-be-lol-clubs.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00488440 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-missions\rcp-be-lol-missions.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 01686008 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-clubs-public\rcp-be-lol-clubs-public.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00575992 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-esport-stream-notifications\rcp-be-lol-esport-stream-notifications.dll
2017-02-24 14:54 - 2017-02-23 20:45 - 00710136 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-replays\rcp-be-lol-replays.dll
2017-02-24 14:54 - 2017-02-23 20:45 - 00507384 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-spectator\rcp-be-lol-spectator.dll
2017-02-24 14:54 - 2017-02-23 20:45 - 00632824 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-store\rcp-be-lol-store.dll
2017-02-24 14:54 - 2017-02-23 20:45 - 00496632 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-player-level-up\rcp-be-lol-player-level-up.dll
2017-02-24 14:54 - 2017-02-23 20:45 - 00533496 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-tencent-qt\rcp-be-lol-tencent-qt.dll
2017-02-24 14:54 - 2017-02-23 20:44 - 00552952 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-beta-opt-in\rcp-be-lol-beta-opt-in.dll
2017-02-24 14:54 - 2017-02-23 20:45 - 00589816 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-player-messaging\rcp-be-lol-player-messaging.dll
2017-02-24 14:54 - 2017-02-23 20:45 - 00445432 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-user-experience\rcp-be-lol-user-experience.dll
2017-02-24 14:54 - 2017-02-23 20:45 - 00537080 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-lol-simple-dialog-messages\rcp-be-lol-simple-dialog-messages.dll
2017-02-24 14:54 - 2017-02-23 20:45 - 00535032 _____ () C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.52\deploy\Plugins\rcp-be-network-testing\rcp-be-network-testing.dll
2017-01-19 17:19 - 2017-01-19 17:20 - 01427664 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_1.6.2.0_x86__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll
2017-02-10 10:49 - 2017-02-10 10:49 - 00306688 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_1.6.2.0_x86__8wekyb3d8bbwe\Microsoft.Notes.Upgrade.dll
2017-02-07 01:50 - 2017-02-01 10:01 - 01870168 _____ () C:\Program Files\Google\Chrome\Application\56.0.2924.87\libglesv2.dll
2017-02-07 01:50 - 2017-02-01 10:01 - 00085848 _____ () C:\Program Files\Google\Chrome\Application\56.0.2924.87\libegl.dll

[Anomiki]

Addition:

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-2460206527-1493759754-90791392-1000\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1"
HKU\S-1-5-21-2460206527-1493759754-90791392-1000\Software\Classes\.bat: batfile => <===== ATTENTION

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\100sexlinks.com -> 100sexlinks.com

There are 4788 more sites.


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2017-02-26 13:32 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts


127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2460206527-1493759754-90791392-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Jakub\AppData\Local\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

HKLM\...\StartupApproved\Run: => "Autodesk Sync"
HKLM\...\StartupApproved\Run: => "LogMeIn Hamachi Ui"
HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\StartupApproved\Run: => "DAEMON Tools Lite"
HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\StartupApproved\Run: => "Steam"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-32bit] => (Allow) LPort=808
FirewallRules: [{86140C6A-8E1E-46E4-8394-CB28317B4062}] => (Block) C:\program files\pc remote\pc remote\pcremote.exe
FirewallRules: [{F27D38A7-3FA9-48B4-8BE2-DBBAD0C22632}] => (Block) C:\program files\pc remote\pc remote\pcremote.exe
FirewallRules: [UDP Query User{548983C4-E2D3-4EA0-828D-04DCA7ED700D}C:\program files\pc remote\pc remote\pcremote.exe] => (Allow) C:\program files\pc remote\pc remote\pcremote.exe
FirewallRules: [TCP Query User{5C1FBDDA-ACD0-4225-9CD3-0668FE5C7A07}C:\program files\pc remote\pc remote\pcremote.exe] => (Allow) C:\program files\pc remote\pc remote\pcremote.exe
FirewallRules: [{DC024EEB-B0AD-4AE6-A773-84A792E28FBB}] => (Block) C:\program files\asus\asus smart gesture\astpcenter\x86\asussgplusbtserver.exe
FirewallRules: [{CC1841DE-8262-4E9F-846E-0AA4EBB44E39}] => (Block) C:\program files\asus\asus smart gesture\astpcenter\x86\asussgplusbtserver.exe
FirewallRules: [UDP Query User{646C8A47-FC1A-4032-B009-419E166799B9}C:\program files\asus\asus smart gesture\astpcenter\x86\asussgplusbtserver.exe] => (Allow) C:\program files\asus\asus smart gesture\astpcenter\x86\asussgplusbtserver.exe
FirewallRules: [TCP Query User{16F69783-362C-46DC-8D4B-DDA49550D7D5}C:\program files\asus\asus smart gesture\astpcenter\x86\asussgplusbtserver.exe] => (Allow) C:\program files\asus\asus smart gesture\astpcenter\x86\asussgplusbtserver.exe
FirewallRules: [UDP Query User{C6DE9EC4-7DD5-455A-86B5-DEBB81402208}C:\program files\minecraft\runtime\jre-x32\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files\minecraft\runtime\jre-x32\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{3E142011-3BAB-4937-836D-B6B12CABD363}C:\program files\minecraft\runtime\jre-x32\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files\minecraft\runtime\jre-x32\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{5C7B7CB2-A4B1-4AF9-B758-3268C4066F74}C:\program files\minecraft\runtime\jre-x32\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files\minecraft\runtime\jre-x32\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{40466C94-AD99-4EEF-84B7-711D5534216E}C:\program files\minecraft\runtime\jre-x32\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files\minecraft\runtime\jre-x32\1.8.0_25\bin\javaw.exe
FirewallRules: [{D0F1DB81-C9AB-4399-A2A3-B3E13A6122FE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{72DCA4C2-CBC7-45E8-A44B-B7D1E48CFBB8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1D575E0F-989E-44F4-A917-BAC519CE32EB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{D8A49E36-79C7-4358-8D6F-8C7C9F567558}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{DFF237F0-BA3F-4ADA-BC1C-3E3C393608E8}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{BCE61410-9AAE-410C-85F9-3867211A4BC2}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{4D4395B3-22A9-4B74-86BF-9AA337E60994}] => (Allow) C:\Users\Jakub\Downloads\Desktop\Terraria\Binding of Isaac\DNT\[www.mpc-g.com]DST172998\bin\dontstarve_steam.exe
FirewallRules: [{C79182E2-852A-41EF-A408-DA996B67E78C}] => (Allow) C:\Users\Jakub\Downloads\Desktop\Terraria\Binding of Isaac\DNT\[www.mpc-g.com]DST172998\bin\dontstarve_steam.exe
FirewallRules: [{D16C33B4-6168-48F2-98E0-4D2CAF65C979}] => (Block) C:\users\jakub\downloads\desktop\terraria\binding of isaac\dnt\[www.mpc-g.com]dst172998\bin\dontstarve_dedicated_server_nullrenderer.exe
FirewallRules: [{FDE8B3F2-A00B-4A2C-B1A8-94E095EA0882}] => (Block) C:\users\jakub\downloads\desktop\terraria\binding of isaac\dnt\[www.mpc-g.com]dst172998\bin\dontstarve_dedicated_server_nullrenderer.exe
FirewallRules: [UDP Query User{A9631DFD-3544-403A-BFAF-297BD42A9B9C}C:\users\jakub\downloads\desktop\terraria\binding of isaac\dnt\[www.mpc-g.com]dst172998\bin\dontstarve_dedicated_server_nullrenderer.exe] => (Allow) C:\users\jakub\downloads\desktop\terraria\binding of isaac\dnt\[www.mpc-g.com]dst172998\bin\dontstarve_dedicated_server_nullrenderer.exe
FirewallRules: [TCP Query User{F022EB80-650D-4928-AE92-FD61356E62B5}C:\users\jakub\downloads\desktop\terraria\binding of isaac\dnt\[www.mpc-g.com]dst172998\bin\dontstarve_dedicated_server_nullrenderer.exe] => (Allow) C:\users\jakub\downloads\desktop\terraria\binding of isaac\dnt\[www.mpc-g.com]dst172998\bin\dontstarve_dedicated_server_nullrenderer.exe
FirewallRules: [UDP Query User{7915FF48-A16D-48E7-B2AE-D98127E1EEED}C:\program files\skype\phone\skype.exe] => (Allow) C:\program files\skype\phone\skype.exe
FirewallRules: [TCP Query User{4FDD1742-EE2E-4B95-81B6-ED85E35DE111}C:\program files\skype\phone\skype.exe] => (Allow) C:\program files\skype\phone\skype.exe
FirewallRules: [UDP Query User{D8A649A9-475E-4E9B-95C3-012E8262426A}C:\users\jakub\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\jakub\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{DA10DE63-A9D1-474B-ABC0-908DE17897D3}C:\users\jakub\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\jakub\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{C4729A13-79FD-45F2-B945-651EB81A2EA8}C:\program files\java\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_91\bin\javaw.exe
FirewallRules: [UDP Query User{230BAA12-CFD0-4734-A722-A05929EBEF18}C:\program files\java\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_91\bin\javaw.exe
FirewallRules: [{11D85D15-EC57-4879-83F4-0C06B4C4372A}] => (Block) C:\program files\java\jre1.8.0_91\bin\javaw.exe
FirewallRules: [{ED832058-EF82-4567-B986-493312BE4492}] => (Block) C:\program files\java\jre1.8.0_91\bin\javaw.exe
FirewallRules: [TCP Query User{A9062A36-ABB3-4FC8-8070-E7EFAD694B5A}C:\users\jakub\documents\curse\minecraft\install\runtime\jre-x32\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\jakub\documents\curse\minecraft\install\runtime\jre-x32\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{74ACC873-3A9E-4E1F-B3CF-F9E47AFFC184}C:\users\jakub\documents\curse\minecraft\install\runtime\jre-x32\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\jakub\documents\curse\minecraft\install\runtime\jre-x32\1.8.0_25\bin\javaw.exe
FirewallRules: [{7127EE65-B067-4566-9D32-95672FB98E87}] => (Block) C:\users\jakub\documents\curse\minecraft\install\runtime\jre-x32\1.8.0_25\bin\javaw.exe
FirewallRules: [{01E4A11A-DBC7-439F-B7B3-48EB7AD87A3C}] => (Block) C:\users\jakub\documents\curse\minecraft\install\runtime\jre-x32\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{DB7543C5-3295-42F1-8A1E-F107BF31B7BE}C:\program files\age of empires 2 & the conquerors expansion - full game\empires2.exe] => (Allow) C:\program files\age of empires 2 & the conquerors expansion - full game\empires2.exe
FirewallRules: [UDP Query User{D7D04458-63CD-44BA-AE29-7BBB9AEEB7EA}C:\program files\age of empires 2 & the conquerors expansion - full game\empires2.exe] => (Allow) C:\program files\age of empires 2 & the conquerors expansion - full game\empires2.exe
FirewallRules: [{C58640EA-CE31-42B3-B7BC-44CE924A2CCC}] => (Block) C:\program files\age of empires 2 & the conquerors expansion - full game\empires2.exe
FirewallRules: [{91092976-9395-4D65-8051-BBF8D3956B1D}] => (Block) C:\program files\age of empires 2 & the conquerors expansion - full game\empires2.exe
FirewallRules: [TCP Query User{1149CEC7-4269-423A-9456-68AF2F136D93}C:\program files\voobly\voobly.exe] => (Allow) C:\program files\voobly\voobly.exe
FirewallRules: [UDP Query User{FDD179CF-3D53-4A03-A57B-FB2A39D60EE8}C:\program files\voobly\voobly.exe] => (Allow) C:\program files\voobly\voobly.exe
FirewallRules: [{AEFD5C43-8961-4DF9-AB8A-77C22C24416A}] => (Block) C:\program files\voobly\voobly.exe
FirewallRules: [{19C26AFD-0724-481C-AE47-97749076354B}] => (Block) C:\program files\voobly\voobly.exe
FirewallRules: [TCP Query User{58D743F5-2D63-44C4-860E-3E7A5D5B60D3}C:\program files\age of empires 2 & the conquerors expansion - full game\age2_x1\age2_x1.exe] => (Allow) C:\program files\age of empires 2 & the conquerors expansion - full game\age2_x1\age2_x1.exe
FirewallRules: [UDP Query User{F553069C-D5A2-4AAA-B771-FC44DAD37C43}C:\program files\age of empires 2 & the conquerors expansion - full game\age2_x1\age2_x1.exe] => (Allow) C:\program files\age of empires 2 & the conquerors expansion - full game\age2_x1\age2_x1.exe
FirewallRules: [{6B7E5932-B215-428A-A7F6-D5CC8A455C67}] => (Block) C:\program files\age of empires 2 & the conquerors expansion - full game\age2_x1\age2_x1.exe
FirewallRules: [{003BBB9F-FD4C-4A3B-ABE5-27E3CEB9A6C9}] => (Block) C:\program files\age of empires 2 & the conquerors expansion - full game\age2_x1\age2_x1.exe
FirewallRules: [TCP Query User{A1D78CD3-51E1-4062-B660-F252BB308FE1}C:\windows\system32\dplaysvr.exe] => (Allow) C:\windows\system32\dplaysvr.exe
FirewallRules: [UDP Query User{66141FD1-60BC-4060-A1DF-E79A3D63B424}C:\windows\system32\dplaysvr.exe] => (Allow) C:\windows\system32\dplaysvr.exe
FirewallRules: [{96F6159D-E9CD-4593-8269-3DAD1363570C}] => (Block) C:\windows\system32\dplaysvr.exe
FirewallRules: [{2EDC4FA8-FB71-47F4-80BD-1D5792003828}] => (Block) C:\windows\system32\dplaysvr.exe
FirewallRules: [TCP Query User{386EAF6A-F5EA-436B-82AC-4A62A2841176}C:\program files\age of empires 2 & the conquerors expansion - full game\myth-age2_x1.exe] => (Allow) C:\program files\age of empires 2 & the conquerors expansion - full game\myth-age2_x1.exe
FirewallRules: [UDP Query User{19D7CFB9-7EA1-4EE7-ADCA-C1E12183C34B}C:\program files\age of empires 2 & the conquerors expansion - full game\myth-age2_x1.exe] => (Allow) C:\program files\age of empires 2 & the conquerors expansion - full game\myth-age2_x1.exe
FirewallRules: [{5AD632FA-2372-49A3-AC62-F1F8A35B030B}] => (Block) C:\program files\age of empires 2 & the conquerors expansion - full game\myth-age2_x1.exe
FirewallRules: [{9E1D4F49-801B-47B4-B90D-25C89EA5917B}] => (Block) C:\program files\age of empires 2 & the conquerors expansion - full game\myth-age2_x1.exe
FirewallRules: [TCP Query User{91369508-198A-4137-AC08-D4BCBE70C55D}C:\users\jakub\downloads\desktop\wow\terraria 1.3.4.3\terraria.exe] => (Allow) C:\users\jakub\downloads\desktop\wow\terraria 1.3.4.3\terraria.exe
FirewallRules: [UDP Query User{871D7BF7-1E85-456B-BEB5-67372782A1D5}C:\users\jakub\downloads\desktop\wow\terraria 1.3.4.3\terraria.exe] => (Allow) C:\users\jakub\downloads\desktop\wow\terraria 1.3.4.3\terraria.exe
FirewallRules: [{FC97EF06-9DFD-4DEE-8C98-8D14FF6A3A07}] => (Block) C:\users\jakub\downloads\desktop\wow\terraria 1.3.4.3\terraria.exe
FirewallRules: [{1A449D79-A08A-4357-87FD-6FC090E24BAB}] => (Block) C:\users\jakub\downloads\desktop\wow\terraria 1.3.4.3\terraria.exe
FirewallRules: [TCP Query User{5AE01F73-E80D-4873-96E3-37810ADE658C}C:\users\jakub\appdata\roaming\gameranger\gameranger\gameranger.exe] => (Allow) C:\users\jakub\appdata\roaming\gameranger\gameranger\gameranger.exe
FirewallRules: [UDP Query User{248B7378-7788-4355-96BB-6F0C87F43BD7}C:\users\jakub\appdata\roaming\gameranger\gameranger\gameranger.exe] => (Allow) C:\users\jakub\appdata\roaming\gameranger\gameranger\gameranger.exe
FirewallRules: [{A6B42EBD-F697-486F-8D9B-B4A89170054A}] => (Block) C:\users\jakub\appdata\roaming\gameranger\gameranger\gameranger.exe
FirewallRules: [{E71FF6D0-EA25-479A-A984-B098216CB75C}] => (Block) C:\users\jakub\appdata\roaming\gameranger\gameranger\gameranger.exe
FirewallRules: [{7480A684-A2A0-4C35-84A9-7C615F7E9FFC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{0A6093DF-EBEB-4F91-9F5E-5B7D1F02A6D7}] => (Allow) C:\Program Files\Google\Chrome Remote Desktop\56.0.2924.51\remoting_host.exe
FirewallRules: [{BB1E0DF4-91B1-4A16-8CC7-BDEA4053D14F}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{1677DA2D-B4A9-4256-A785-3607FB6B50FE}C:\gog games\torchlight 2\torchlight2.exe] => (Allow) C:\gog games\torchlight 2\torchlight2.exe
FirewallRules: [UDP Query User{C707435D-2A40-415F-9575-C8E2B976A77C}C:\gog games\torchlight 2\torchlight2.exe] => (Allow) C:\gog games\torchlight 2\torchlight2.exe
FirewallRules: [{5E824819-57CF-4D2E-AADA-AA3F28B80970}] => (Block) C:\gog games\torchlight 2\torchlight2.exe
FirewallRules: [{3B9444A6-D22C-435A-9464-F0F4935F7529}] => (Block) C:\gog games\torchlight 2\torchlight2.exe
FirewallRules: [{12477714-3CF8-4B5B-8BE4-961008DA8407}] => (Allow) C:\Program Files\Tunngle\TnglCtrl.exe
FirewallRules: [{1E3A5DEE-F619-44D8-8549-016082862920}] => (Allow) C:\Program Files\Tunngle\TnglCtrl.exe
FirewallRules: [{ACF632C8-DC4B-45CF-8578-B0CB9EF035BD}] => (Allow) C:\Program Files\Tunngle\TnglCtrl.exe
FirewallRules: [{0FC08479-F7AA-4927-AF54-C329139A9EA6}] => (Allow) C:\Program Files\Tunngle\TnglCtrl.exe
FirewallRules: [{650F6E8A-AA5B-4CBE-9480-C87E8EE43B78}] => (Allow) C:\Program Files\Tunngle\Tunngle.exe
FirewallRules: [{40F86374-0D01-4621-BBED-3A0E6FFCA994}] => (Allow) C:\Program Files\Tunngle\Tunngle.exe
FirewallRules: [{A84A8D19-3C94-409F-8642-F905B1174229}] => (Allow) C:\Program Files\Tunngle\Tunngle.exe
FirewallRules: [{340E5546-299E-4A2B-858F-0F179EC77864}] => (Allow) C:\Program Files\Tunngle\Tunngle.exe

==================== Restore Points =========================

27-02-2017 17:29:46 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (02/27/2017 05:29:57 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (02/27/2017 05:29:46 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny ConvertStringSidToSid(S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415.bak) došlo k neočekávané chybě. hr= 0x80070539, Struktura ID zabezpečení není platná.
.


Operace:
Událost OnIdentify
Shromažďování dat modulu pro zápis

Kontext:
Kontext spuštění: Shadow Copy Optimization Writer
ID třídy modulu pro zápis: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Název modulu pro zápis: Shadow Copy Optimization Writer
ID instance modulu pro zápis: {17624b17-9a06-45f1-a588-4bfbba23c350}

Error: (02/27/2017 02:01:28 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Procedura Open pro službu BITS v knihovně DLL C:\Windows\System32\bitsperf.dll se nezdařila. Výkonnostní data pro tuto službu nebudou k dispozici. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.

Error: (02/27/2017 01:11:24 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Jakub-PC)
Description: Aplikaci Microsoft.Getstarted_4.5.6.0_x86__8wekyb3d8bbwe:App.AppX7mv0s3r0wanj0n66dy6vax24ps6avzvz.mca se nepovedlo aktivovat, protože došlo k chybě: -2144927149. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (02/27/2017 01:01:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: mbamservice.exe, verze: 3.1.0.415, časové razítko: 0x5881b6c9
Název chybujícího modulu: RTPControllerImpl.dll_unloaded, verze: 3.0.0.280, časové razítko: 0x587655b9
Kód výjimky: 0xc00001a5
Posun chyby: 0x0015551e
ID chybujícího procesu: 0x17cc
Čas spuštění chybující aplikace: 0x01d290f1413ed7b5
Cesta k chybující aplikaci: C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
Cesta k chybujícímu modulu: RTPControllerImpl.dll
ID zprávy: f99733c3-497d-40ae-81cf-eae6fab41320
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (02/27/2017 01:00:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: mbamservice.exe, verze: 3.1.0.415, časové razítko: 0x5881b6c9
Název chybujícího modulu: ntdll.dll, verze: 10.0.14393.479, časové razítko: 0x58256cad
Kód výjimky: 0xc0000005
Posun chyby: 0x00040e48
ID chybujícího procesu: 0x1abc
Čas spuštění chybující aplikace: 0x01d290f1190db983
Cesta k chybující aplikaci: C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: a98c498c-388b-44b1-b830-7322621a2a85
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (02/26/2017 05:49:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: vlc.exe, verze: 2.2.1.0, časové razítko: 0x00000004
Název chybujícího modulu: libqt4_plugin.dll, verze: 2.2.1.0, časové razítko: 0x00020002
Kód výjimky: 0x40000015
Posun chyby: 0x007ca10a
ID chybujícího procesu: 0x1cc0
Čas spuštění chybující aplikace: 0x01d29050331c66d8
Cesta k chybující aplikaci: C:\Program Files\VideoLAN\VLC\vlc.exe
Cesta k chybujícímu modulu: C:\Program Files\VideoLAN\VLC\plugins\gui\libqt4_plugin.dll
ID zprávy: 549f17d4-db86-4287-ad0a-a825098e3f58
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (02/26/2017 04:45:13 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files\CrystalDiskInfo\DiskInfo64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (02/26/2017 04:45:02 PM) (Source: SideBySide) (EventID: 59) (User: )
Description: Generování kontextu aktivace pro C:\Program Files\Microsoft\Search Enhancement Pack\Search Box Extension\SrchBxEx.dll se nezdařilo. Chyba v souboru manifestu nebo zásady C:\Program Files\Microsoft\Search Enhancement Pack\Search Box Extension\SrchBxEx.dll na řádku 2.
Neplatná syntaxe XML.

Error: (02/26/2017 04:44:56 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro c:\program files\crystaldiskinfo\DiskInfoX64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.


System errors:
=============
Error: (02/27/2017 01:16:41 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
a APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (02/27/2017 01:12:59 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba NetTcpActivator závisí na službě NetTcpPortSharing, která neuspěla při spuštění v důsledku následující chyby:
Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.

Error: (02/27/2017 01:12:59 PM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: Tento počítač je nakonfigurován jako člen pracovní skupiny, nikoliv jako
člen domény. Přihlašovací služba Netlogon nepotřebuje být spuštěna v této
konfiguraci.

Error: (02/27/2017 01:12:58 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN se nepodařilo spustit.

Cesta k modulu: C:\WINDOWS\system32\athExt.dll
Kód chyby: 126

Error: (02/27/2017 01:11:28 PM) (Source: DCOM) (EventID: 10005) (User: Jakub-PC)
Description: Služba DCOM zjistila chybu 1068 při pokusu o spuštění služby netprofm s argumenty Není k dispozici za účelem spuštění serveru:
{A47979D2-C419-11D9-A5B4-001185AD2B89}

Error: (02/27/2017 01:11:28 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
Nepodařilo se zahájit závislou službu nebo skupinu.

Error: (02/27/2017 01:11:28 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Sledování umístění v síti (NLA) závisí na službě Klient DHCP, která neuspěla při spuštění v důsledku následující chyby:
Nepodařilo se zahájit závislou službu nebo skupinu.

Error: (02/27/2017 01:11:28 PM) (Source: DCOM) (EventID: 10005) (User: Jakub-PC)
Description: Služba DCOM zjistila chybu 1068 při pokusu o spuštění služby netprofm s argumenty Není k dispozici za účelem spuštění serveru:
{A47979D2-C419-11D9-A5B4-001185AD2B89}

Error: (02/27/2017 01:11:28 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
Nepodařilo se zahájit závislou službu nebo skupinu.

Error: (02/27/2017 01:11:28 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Sledování umístění v síti (NLA) závisí na službě Klient DHCP, která neuspěla při spuštění v důsledku následující chyby:
Nepodařilo se zahájit závislou službu nebo skupinu.


CodeIntegrity:
===================================
Date: 2017-02-27 15:37:44.409
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-02-26 14:38:13.176
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-02-25 14:43:42.390
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-02-24 19:23:33.996
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-02-20 19:54:40.096
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-02-19 17:25:17.629
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-02-17 16:52:26.408
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-02-15 16:49:10.957
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-02-08 20:50:07.025
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-02-07 23:41:04.679
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

Processor: AMD Athlon(tm) II X2 240 Processor
Percentage of memory in use: 35%
Total physical RAM: 2943.23 MB
Available physical RAM: 1908.78 MB
Total Virtual: 7357.23 MB
Available Virtual: 5939.26 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:595.2 GB) (Free:353.43 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or (Size: 596.2 GB) (Disk ID: 7D826B35)
Partition 1: (Active) - (Size=539 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=595.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

==================== End of Addition.txt ============================

[jerabina]

Odinstaluj Bing

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CreateRestorePoint:
CloseProcesses:

HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM\...\Run: [ZAM] => C:\Program Files\Zemana AntiMalware\ZAM.exe [14416624 2017-02-02] (Copyright 2017.)
HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\Run: [BingSvc] => C:\Users\Jakub\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-12] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [7416536 2017-02-08] (Piriform Ltd)
HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\Policies\Explorer: []

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-2460206527-1493759754-90791392-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKLM -> DefaultScope value is missing

FF NewTab: Mozilla\Firefox\Profiles\xwMkUhdM.default -> about:newtab
FF Homepage: Mozilla\Firefox\Profiles\xwMkUhdM.default -> about:home
FF Plugin: @gamersfirst.com/LiveLauncher -> C:\Program Files\GamersFirst\LIVE!\nplivelauncher.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)

U3 idsvc; no ImagePath

C:\Users\Jakub\AppData\Local\70149b02515b3bb20dd492.47983420

CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{00BB2763-6A77-11D0-A535-00C04FD7D062}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{00EEBF57-477D-4084-9921-7AB3C2C9459D}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{03C036F1-A186-11D0-824A-00AA005B4383}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{06EEE834-461C-42C2-8DCF-1502B527B1F9}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{08244EE6-92F0-47F2-9FC9-929BAA2E7235}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{0AF10CEC-2ECD-4B92-9581-34F6AE0637F3}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{0B91A74B-AD7C-4A9D-B563-29EEF9167172}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{0C15D503-D017-47CE-9016-7B3F978721CC}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{0E5AAE11-A475-4C5B-AB00-C66DE400274E}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{104846AB-42B1-4E38-A80D-136F78C3F258}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{14074E0B-7216-4862-96E6-53CADA442A56}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{1685D4AB-A51B-4AF1-A4E5-CEE87002431D}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{18907F3B-9AFB-4F87-B764-F9A4E16A21B8}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{1C0F439D-7C29-4BDE-8952-4EEB6A49E048}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{1C1800C1-3258-44C2-BE80-3DEADB6C5E39}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{1F486A52-3CB1-48FD-8F50-B8DC300D9F9D}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{25336920-03F9-11CF-8FD0-00AA00686F13}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{275C23E2-3747-11D0-9FEA-00AA003F8646}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{30276B4F-F25C-457C-A4B7-08574F8EA528}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{35786D3C-B075-49B9-88DD-029876E11C01}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{3D154A2D-D911-437E-A30C-5F56A9B7081D}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{4955DD33-B159-11D0-8FCF-00AA006BCC59}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{50D5107A-D278-4871-8989-F4CEAAF59CFC}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{50EF4544-AC9F-4A8E-B21B-8A26180DB13F}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{53BD6B4E-3780-4693-AFC3-7161C2F3EE9C}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{603D3800-BD81-11D0-A3A5-00C04FD706EC}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{640167B4-59B0-47A6-B335-A6B3C0695AEA}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{6746C347-576B-4F73-9012-CDFEEA251BC4}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2013\acad.exe => No File
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{6E682784-1ECA-4CF2-988D-96B6E89E9A4D}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{71F96385-DDD6-48D3-A0C1-AE06E8B055FB}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{72C24DD5-D70A-438B-8A42-98424B88AFB8}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{76765B11-3F95-4AF2-AC9D-EA55D8994F1A}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{76BE8257-C4C0-4D37-90C0-A23372254D27}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{7EFC002A-071F-4CE7-B265-F4B4263D2FD2}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{807C1E6C-1D00-453F-B920-B61BB7CDD997}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{807E5A10-4856-4F9A-8E3C-A1F7E75648B3}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{82C588E7-E54B-408C-9F8C-6AF9ADF6F1E9}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{871C5380-42A0-1069-A2EA-08002B30309D}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{8856F961-340A-11D0-A96B-00C04FD705A2}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{9113A02D-00A3-46B9-BC5F-9C04DADDD5D7}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{934D4698-6A59-48F8-9F29-9FB30670320E}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{942BC614-676C-464E-B384-D3202AAA02DA}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{989D1DC0-B162-11D1-B6EC-D27DDCF9A923}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{9AC9FBE1-E0A2-4AD6-B4EE-E212013EA917}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{9CFC2DF3-6BA3-46EF-A836-E519E81F0EC4}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{A4A1A128-768F-41E0-BF75-E4FDDD701CBA}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{AF02484C-A0A9-4669-9051-058AB12B9195}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{B056521A-9B10-425E-B616-1FCD828DB3B1}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{B155BDF8-02F0-451E-9A26-AE317CFD7779}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{B2952B16-0E07-4E5A-B993-58C52CB94CAE}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{B54F3743-5B07-11CF-A4B0-00AA004A55E8}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{B8967F85-58AE-4F46-9FB2-5D7904798F4B}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{BD0DEB94-63DB-4392-9420-6EEE05094B1F}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2013\acad.exe /Automation => No File
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{C90250F3-4D7D-4991-9B69-A5C5BC1C2AE6}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{CD773740-B187-4974-A1D5-E0FF91372277}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{d0a0ed0a-55ac-4469-a197-1d08ce99cfb9}\localserver32 -> C:\Users\Jakub\AppData\Local\Temp\{4f5e3a76-f453-4882-ab42-7224f3310de7}\IDriver.NonElevated.exe => (the data entry has 7 more characters).
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{D58960BA-2EF3-4910-9E34-C911B1710180}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{D9B3211D-E57F-4426-AAEF-30A806ADD397}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{DB6EFB73-5153-43B7-8078-C6FFC4C0238C}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{E7E4BC40-E76A-11CE-A9BB-00AA004AE837}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{EDB5F444-CB8D-445A-A523-EC5AB6EA33C7}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{FE841493-835C-4FA3-B6CC-B4B2D4719848}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-2460206527-1493759754-90791392-1000_Classes\CLSID\{FF393560-C2A7-11CF-BFF4-444553540000}\InprocServer32 -> no filepath

Task: {058C9AD5-9691-4030-88A9-1999DEB0C6E6} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {0F5C7D2E-FECC-4C02-8D11-FBA0D352BC61} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2017-02-20] (Adobe Systems Incorporated)
Task: {14305816-E616-4051-8CE6-D5F2271A707D} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {17B66156-4B04-4071-B438-490501BC0322} - \{C46E5936-604C-4AB1-A79D-38C6A1CD8709} -> No File <==== ATTENTION
Task: {1D99D803-D69A-4E91-918E-B1C05B7FB866} - \{255F4D84-01B3-47F7-B113-50176D699A5F} -> No File <==== ATTENTION
Task: {3469BFEB-C55D-4546-92A2-2F12DFEA1AC6} - \{05EF766E-77C6-4BCA-8DD7-42A694A7B502} -> No File <==== ATTENTION
Task: {3E6083B4-B80F-465E-89D7-8E2EE58E49E7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-17] (Google Inc.)
Task: {4CAE4515-8B7B-4623-BC43-813B3EB5FDF8} - \{4DD6D639-CC98-4E42-AC56-AA36B84E59B6} -> No File <==== ATTENTION
Task: {553B8BAC-48BB-4DF2-BF66-556C63E5AECF} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {58A9F219-ECE1-4894-90A4-7636CC597A83} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {766265A2-976A-4B33-B87F-719C88938995} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {7F26A3F1-5FFE-4C5A-AE50-F8F8AE8DE034} - System32\Tasks\{781B0311-4727-4C05-9777-441AF3261A8C} => pcalua.exe -a "C:\Users\Jakub\AppData\Local\Temp\Temp2_BF2Demo.zip\Battlefield 2 Demo.exe" <==== ATTENTION
Task: {8AD79378-AD13-4C2C-9D03-4C1888DE62A7} - System32\Tasks\{A8D8077E-6C8B-4B72-9ADF-32BD034EF108} => pcalua.exe -a "C:\Users\Jakub\AppData\Local\Temp\Temp1_BF2Demo.zip\Battlefield 2 Demo.exe" <==== ATTENTION
Task: {96662C2A-8150-4267-B5BD-B83B9C79C50D} - \{3D7B948F-B370-47B5-AF83-B1A3CBA4817E} -> No File <==== ATTENTION
Task: {A800DC5A-0DA4-4262-B9DD-9C70BBA6F4A9} - System32\Tasks\GoogleUpdateTaskMachineUA1cf48cd20c95a20 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-17] (Google Inc.)
Task: {A901E003-EADD-4D6E-9231-D570C7C1FE3C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {AB8B5B77-F3E7-4E0E-AEBF-382C2A14DBF1} - \{6E24917B-ADF8-4F2A-A75D-422397EA5DF7} -> No File <==== ATTENTION
Task: {AE0D9FC2-8BFD-48F7-B18E-879E8053126B} - \{FC1DA9C3-A138-44BA-B18E-0F29DDBC1A6D} -> No File <==== ATTENTION
Task: {B87C658E-550D-43FC-801D-F32AF97DE1DF} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {C5CDC22F-A3AB-49F2-9563-85C02EB2923C} - \{8D4AA04D-9519-40CF-B4B0-48B5B573F0C9} -> No File <==== ATTENTION
Task: {D32AD087-099A-495F-8A49-90F1240FBC16} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {D5D08984-83CB-40CB-9A23-6A9196D7F6D9} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {E12B7B7E-6CAB-49AA-9595-A230E08CE32B} - \{7B29C8A2-3F7A-4611-8DFB-77D62EE6DC5B} -> No File <==== ATTENTION
Task: {ED430CCE-27DF-43A2-8EC4-3919ADC59803} - \{E94E52BB-A05B-4AFE-BF17-C281ADA79C89} -> No File <==== ATTENTION
Task: {F441C46D-7A28-49AF-BACC-247CC7E8982B} - \{A6235A17-EC21-4A4D-9C17-7DE386FC72B0} -> No File <==== ATTENTION
Task: {FADF9029-1F8B-4A33-BD10-2A773CD4D8AB} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {FEBE778C-53F5-4CF9-BDE8-A1A471037471} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

CHR Extension: (Avira Browser Safety) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2017-02-26]
C:\Users\Jakub\Downloads\avira_registry_cleaner_en.exe
Avira Browser Safety (HKLM\...\{9E10EA90-5E97-43B7-A246-FC7B4F5E9493}) (Version: 1.4.5.509 - Avira Operations GmbH & Co KG)
Avira Browser Safety (HKLM\...\{9E10EA90-5E97-43B7-A246-FC7B4F5E9493}) (Version: 1.4.5.509 - Avira Operations GmbH & Co KG)
Task: {2821AB5D-9244-49F1-9F00-E114C63066BA} - System32\Tasks\Avira Browser Safety Updater Task => C:\Program Files\Avira\Browser Safety\AviraBrowserSafetyUpdater.exe [2015-03-11] (Avira Operations GmbH & Co. KG)
Task: {2821AB5D-9244-49F1-9F00-E114C63066BA} - System32\Tasks\Avira Browser Safety Updater Task => C:\Program Files\Avira\Browser Safety\AviraBrowserSafetyUpdater.exe [2015-03-11] (Avira Operations GmbH & Co. KG)
Task: {2821AB5D-9244-49F1-9F00-E114C63066BA} - System32\Tasks\Avira Browser Safety Updater Task => C:\Program Files\Avira\Browser Safety\AviraBrowserSafetyUpdater.exe [2015-03-11] (Avira Operations GmbH & Co. KG)
C:\Program Files\Avira\Browser Safety
   
C:\ProgramData\AVAST Software
Task: {15E02BCA-9734-4006-A46A-65E1B7C02FAE} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {15E02BCA-9734-4006-A46A-65E1B7C02FAE} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {15E02BCA-9734-4006-A46A-65E1B7C02FAE} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
C:\Program Files\Common Files\AV

IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-2460206527-1493759754-90791392-1000\...\100sexlinks.com -> 100sexlinks.com

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt

Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

[jaro3]

pokud si už udělal script , tak ještě jeden:

Kód: Vybrat vše

Start
CloseProcesses:
Tcpip\..\Interfaces\{0ccc13c1-fd50-48b8-bdc6-8042ddc467bc}: [DhcpNameServer] 7.254.254.254
EmptyTemp:
End


[Anomiki]

Vyhodilo mi to pouze jeden log z prvního fixu, ohledně Bing, ten sem nikdy (je možné že při odklikávání aktualizací se nainstaloval) v počítači neměl, tak sem ho nyní stáhnul, nainstaloval a poté hned odinstaloval. Ještě předtím jsem se díval přes regedit a našlo mi to pár souborů :

@{Microsoft.BingFinance_4.18.37.0_x86__8wekyb3d8bbwe?ms-resource://Microsoft.BingFinance/Files/Assets/AppTiles/Money_LogoSmall.png}

@{Microsoft.BingFinance_4.18.37.0_x86__8wekyb3d8bbwe?ms-resource://Microsoft.BingFinance/Resources/ApplicationTitle}

Microsoft.BingFinance_8wekyb3d8bbwe!AppexFinance

Ale jelikož se v tom nevyznám tak sem s tím nic nedělal, přes regedit sem hledal poprvé..


Figlog:

Fix result of Farbar Recovery Scan Tool (x86) Version: 25-02-2017
Ran by Jakub (27-02-2017 23:48:26) Run:2
Running from C:\Users\Jakub\Downloads\Desktop
Loaded Profiles: Jakub (Available Profiles: Jakub)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
CloseProcesses:
Tcpip\..\Interfaces\{0ccc13c1-fd50-48b8-bdc6-8042ddc467bc}: [DhcpNameServer] 7.254.254.254
EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{0ccc13c1-fd50-48b8-bdc6-8042ddc467bc}\\DhcpNameServer => value removed successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 6364130 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 46687 B
Edge => 0 B
Chrome => 12245685 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
LocalService => 0 B
NetworkService => 0 B
Jakub => 30597 B
DefaultAppPool => 0 B

RecycleBin => 0 B
EmptyTemp: => 17.8 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 23:48:35 ====

[jaro3]

Jestli si nepracoval ještě s regeditem , tak to nech , mohl bys smazat něco důležitého..

Musíš udělat ještě ten script od kolegy jerabina..

Pak napiš , co problémy.

[Anomiki]

Skripty sem udělal oba dva ale otevřel se mi textový dokument pouze u jednoho, který jsem zde poslal. Procesor a paměť už sou na tom líp, akorát nevím co dělat s tím Antimalware service executable, když to rozkliknu tak je tam Služba windows defender, potíž je ale v tom že do nedávna se mi v počítači nezapínala (nebo aspoň neubírala tolik paměti) a nelze vypnout.

[jaro3]

Zkus tento návod:
https://365tipu.wordpress.com/2015/09/2 ... nstalovat/