Prosím o pomoc zatížený disk a podezření na viry

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

darkmarek
Level 1.5
Level 1.5
Příspěvky: 131
Registrován: srpen 18
Pohlaví: Muž
Stav:
Offline

Re: Prosím o pomoc zatížený disk a podezření na viry

Příspěvekod darkmarek » 30 srp 2018 20:08

----------------------------------------------------------------------------
CrystalDiskInfo 7.7.0 (C) 2008-2018 hiyohiyo
Crystal Dew World : https://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 10 [10.0 Build 16299] (x64)
Date : 2018/08/30 20:04:44

-- Controller Map ----------------------------------------------------------
+ Intel(R) 5 Series 4 Port SATA AHCI Controller [ATA]
- WDC WD6400BPVT-22HXZT3
- MATSHITA DVD-RAM UJ8B0
- Řadič prostorů úložišť [SCSI]
- DAEMON Tools Lite Virtual SCSI Bus [SCSI]

-- Disk List ---------------------------------------------------------------
(1) WDC WD6400BPVT-22HXZT3 : 640,1 GB [0/0/0, pd1] - wd

----------------------------------------------------------------------------
(1) WDC WD6400BPVT-22HXZT3
----------------------------------------------------------------------------
Model : WDC WD6400BPVT-22HXZT3
Firmware : 01.01A01
Serial Number : WD-WX61A6151558
Disk Size : 640,1 GB (8,4/137,4/640,1/640,1)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 1250263728
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : ---- | SATA/300
Power On Hours : 28127 hod.
Power On Count : 3989 krát
Temperature : 40 C (104 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, AAM, 48bit LBA, NCQ
APM Level : 00FEh [ON]
AAM Level : 80FEh [OFF]
Drive Letter : C:

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 179 175 _21 0000000007E0 Čas na roztočení ploten
04 _87 _87 __0 000000003440 Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 200 200 __0 000000000000 Počet chybných hledání
09 _62 _62 __0 000000006DDF Hodin v činnosti
0A 100 100 __0 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _97 _97 __0 000000000F95 Počet cyklů zapnutí zařízení
BF __1 __1 __0 000000001312 Počet udalostí zaznamenaných otřesovým senzorem
C0 200 200 __0 000000000130 Počet vypnutí disku
C1 __1 __1 __0 0000000E0364 Počet cyklů načítání/vymazání
C2 107 _95 __0 000000000028 Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 100 253 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 100 253 __0 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2057 442D 5758 3631 4136 3135 3135 3538
020: 0000 4000 0032 3031 2E30 3141 3031 5744 4320 5744
030: 3634 3030 4250 5654 2D32 3248 585A 5433 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4001 0000 0000 0007 3FFF 0010 003F FC10 00FB 0100
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 1F06 0000 004C 004C
080: 01FE 0000 746B 7F09 6123 7469 BC09 6123 407F 0050
090: 0050 00FE FFFE 0000 80FE 0000 0000 0000 0000 0000
100: 82B0 4A85 0000 0000 0000 0000 6003 0000 5001 4EE6
110: 56D0 DC44 0000 0000 0000 0000 0000 0000 0000 4018
120: 4018 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 16FE 012D 0000 0000 0000 0000 0000
140: 0000 0000 0004 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 7035 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 101E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 1000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 FBA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 2F 00 C8 C8 00 00 00 00 00 00 00 03 27
010: 00 B3 AF E0 07 00 00 00 00 00 04 32 00 57 57 40
020: 34 00 00 00 00 00 05 33 00 C8 C8 00 00 00 00 00
030: 00 00 07 2E 00 C8 C8 00 00 00 00 00 00 00 09 32
040: 00 3E 3E DF 6D 00 00 00 00 00 0A 32 00 64 64 00
050: 00 00 00 00 00 00 0B 32 00 64 64 00 00 00 00 00
060: 00 00 0C 32 00 61 61 95 0F 00 00 00 00 00 BF 32
070: 00 01 01 12 13 00 00 00 00 00 C0 32 00 C8 C8 30
080: 01 00 00 00 00 00 C1 32 00 01 01 64 03 0E 00 00
090: 00 00 C2 22 00 6B 5F 28 00 00 00 00 00 00 C4 32
0A0: 00 C8 C8 00 00 00 00 00 00 00 C5 32 00 C8 C8 00
0B0: 00 00 00 00 00 00 C6 30 00 64 FD 00 00 00 00 00
0C0: 00 00 C7 32 00 C8 C8 00 00 00 00 00 00 00 C8 08
0D0: 00 64 FD 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 A4 3D 01 7B
170: 03 00 01 00 02 9B 05 00 00 00 00 00 00 00 00 00
180: 00 00 01 04 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 F7

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 C8 C8 C8 C8 00 00 00 00 00 00 03 15
010: 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00
020: 00 00 00 00 00 00 05 8C 00 00 00 00 00 00 00 00
030: 00 00 07 00 C8 C8 C8 C8 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 00 00 00 00 00
050: 00 00 00 00 00 00 0B 00 00 00 00 00 00 00 00 00
060: 00 00 0C 00 00 00 00 00 00 00 00 00 00 00 BF 00
070: 00 00 00 00 00 00 00 00 00 00 C0 00 00 00 00 00
080: 00 00 00 00 00 00 C1 00 00 00 00 00 00 00 00 00
090: 00 00 C2 00 00 00 00 00 00 00 00 00 00 00 C4 00
0A0: 00 00 00 00 00 00 00 00 00 00 C5 00 00 00 00 00
0B0: 00 00 00 00 00 00 C6 00 00 00 00 00 00 00 00 00
0C0: 00 00 C7 00 00 00 00 00 00 00 00 00 00 00 C8 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 BE

Reklama
darkmarek
Level 1.5
Level 1.5
Příspěvky: 131
Registrován: srpen 18
Pohlaví: Muž
Stav:
Offline

Re: Prosím o pomoc zatížený disk a podezření na viry

Příspěvekod darkmarek » 30 srp 2018 20:31

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 23.08.2018
Ran by Marek (administrator) on MAREK-PC (30-08-2018 20:14:38)
Running from C:\Users\Marek\Desktop
Loaded Profiles: Marek (Available Profiles: Marek & Guest & DefaultAppPool)
Platform: Windows 10 Home Version 1709 16299.611 (X64) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\WINDOWS\System32\wlanext.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
(Microsoft Corporation) C:\WINDOWS\System32\mqsvc.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(PackedBytes) C:\Program Files (x86)\Packed Bytes\Packed Chess Free\PackedChessFreeServer.exe
(Microsoft Corporation) C:\WINDOWS\System32\Locator.exe
(Copyright 2017.) C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(AVAST Software) C:\Program Files (x86)\Avast Driver Updater\Avast Driver Updater.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
(Intel Corporation) C:\WINDOWS\System32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\System32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\System32\igfxext.exe
(Intel Corporation) C:\WINDOWS\System32\igfxsrvc.exe
(Intel Corporation) C:\WINDOWS\System32\igfxpers.exe
(Copyright 2017.) C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Hidfind.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.17\GoogleCrashHandler64.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\WINDOWS\System32\smartscreen.exe
(Microsoft Corporation) C:\WINDOWS\System32\msiexec.exe
() C:\Program Files\WindowsApps\2414FC7A.Viber_6.6.21745.1000_x86__p61zvh252yqyr\Native.Host.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18391376 2018-08-15] (Realtek Semiconductor)
HKLM\...\Run: [ETDWare] => C:\Program Files\Elantech\ETDCtrl.exe [649608 2010-04-13] (ELAN Microelectronic Corp.)
HKLM\...\Run: [Acer ePower Management] => C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [860040 2011-01-06] (Acer Incorporated)
HKLM\...\Run: [ALU] => C:\Program Files\Acer\Acer Updater\ALU.exe [2379056 2017-04-21] (Acer Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2017-01-19] (Apple Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242392 2018-08-25] (AVAST Software)
HKLM\...\Run: [ZAM] => C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [15775888 2017-08-09] (Copyright 2017.)
HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [661400 2012-11-09] (Alps Electric Co., Ltd.)
HKLM-x32\...\Run: [EgisTecPMMUpdate] => C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [408432 2011-03-29] (Egis Technology Inc.)
HKLM-x32\...\Run: [EgisUpdate] => C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [202608 2011-03-29] (Egis Technology Inc.)
HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [975952 2010-08-10] (Dritek System Inc.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5885352 2017-06-29] (LogMeIn Inc.)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [433288 2018-08-08] (Geek Software GmbH)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
Winlogon\Notify\igfxcui: c:\windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [5362760 2017-12-20] (GOG.com)
HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\Run: [Voobly] => C:\Program Files (x86)\Voobly\voobly.exe [172032 2018-03-10] (Voobly)
HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\Run: [ManyCam] => C:\Program Files (x86)\ManyCam\ManyCam.exe [11909648 2017-04-13] (Visicom Media Inc.)
HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\Run: [DAEMON Tools Lite Automount] => C:\PROGRAM FILES\DAEMON TOOLS LITE\DTAgent.exe [4836032 2017-08-14] (Disc Soft Ltd)
HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\Run: [com.deezer.deezer-desktop] => C:\Users\Marek\AppData\Local\Programs\deezer-desktop\Deezer.exe [50024256 2018-04-19] (Deezer)
HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\Run: [Spotify] => C:\Users\Marek\AppData\Roaming\Spotify\Spotify.exe [24528272 2018-08-15] (Spotify Ltd)
HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\Policies\Explorer: [NoInternetOpenWith] 1
HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\MountPoints2: E - "E:\AUTORUN\AUTORUN.EXE"
HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\MountPoints2: {8f429a50-e750-11e7-a658-b870f4e3800e} - "G:\splash.exe"
HKU\S-1-5-21-2367062692-840817020-3150738865-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Bubbles.scr [805888 2017-09-29] (Microsoft Corporation)
AppInit_DLLs: C:\WINDOWS\system32\DriverStore\FileRepository\nvaci.inf_amd64_f658c3ebd2a88192\nvinitx.dll => C:\WINDOWS\system32\DriverStore\FileRepository\nvaci.inf_amd64_f658c3ebd2a88192\nvinitx.dll [209128 2018-03-25] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\system32\DriverStore\FileRepository\nvaci.inf_amd64_f658c3ebd2a88192\nvinit.dll => C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_f658c3ebd2a88192\nvinit.dll [182592 2018-03-25] (NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast Cleanup Premium.lnk [2017-12-24]
ShortcutTarget: Avast Cleanup Premium.lnk -> C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Kaspersky Software Updater Beta.lnk [2016-06-20]
ShortcutTarget: Kaspersky Software Updater Beta.lnk -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Software Updater Beta\ksu.exe (AO Kaspersky Lab)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{2e541f08-b5f2-4239-87f9-53959d0c2be4}: [DhcpNameServer] 213.46.172.37 213.46.172.36

Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
URLSearchHook: HKLM-x32 - (No Name) - {74198672-5F7D-4FE9-A611-4AC1D5A66A15} - No File
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox
SearchScopes: HKLM-x32 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-2367062692-840817020-3150738865-1001 -> ToolbarSearchProviderProgress {96bd48dd-741b-41ae-ac4a-aff96ba00f7e}
SearchScopes: HKU\S-1-5-21-2367062692-840817020-3150738865-1001 -> 1CE1DA6C34774AFC908A04A1A0357FF0 URL =
SearchScopes: HKU\S-1-5-21-2367062692-840817020-3150738865-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2367062692-840817020-3150738865-1001 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-2367062692-840817020-3150738865-1001 -> {759f11e8-619b-4411-8df3-188076f850d2} URL = hxxp://www.firmy.cz/phr/{searchTerms}?sourceid=QuickSearch_7625
SearchScopes: HKU\S-1-5-21-2367062692-840817020-3150738865-1001 -> {88f35a13-d52f-4187-a6d3-d2bfc65ec261} URL = hxxp://www.mapy.cz/?query={searchTerms}&sourceid=QuickSearch_7625
SearchScopes: HKU\S-1-5-21-2367062692-840817020-3150738865-1001 -> {8A244612-A1F7-11E0-95C0-E71F4824019B} URL = hxxp://www.bing.com/search?FORM=UP97DF& ... =071513&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-2367062692-840817020-3150738865-1001 -> {CBDE7F90-91D6-408F-AD97-EC3CF1722592} URL =
SearchScopes: HKU\S-1-5-21-2367062692-840817020-3150738865-1001 -> {f8dee56f-a078-43de-bc97-eff41b1eb7a4} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=QuickSearch_7625
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_141\bin\ssv.dll [2017-09-28] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_141\bin\jp2ssv.dll [2017-09-28] (Oracle Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-05-14] (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-05-14] (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2017-07-18] (Skype Technologies)

Edge:
======
Edge Extension: (Translator pro Microsoft Edge) -> MicrosoftTranslate_MicrosoftTranslatorforMicrosoftEdge_8wekyb3d8bbwe => C:\Program Files\WindowsApps\Microsoft.TranslatorforMicrosoftEdge_0.91.48.0_neutral__8wekyb3d8bbwe [2018-07-22]

FireFox:
========
FF DefaultProfile: uflozdnw.default-1469733371159-1530198315290
FF ProfilePath: C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\uflozdnw.default-1469733371159-1530198315290 [2018-08-25]
FF Homepage: Mozilla\Firefox\Profiles\uflozdnw.default-1469733371159-1530198315290 -> about:home
FF NewTab: Mozilla\Firefox\Profiles\uflozdnw.default-1469733371159-1530198315290 -> about:newtab
FF Extension: (Avast SafePrice) - C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\uflozdnw.default-1469733371159-1530198315290\Extensions\sp@avast.com.xpi [2018-07-23]
FF Extension: (Google Translator for Firefox) - C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\uflozdnw.default-1469733371159-1530198315290\Extensions\translator@zoli.bod.xpi [2018-06-28]
FF Extension: (Avast Online Security) - C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\uflozdnw.default-1469733371159-1530198315290\Extensions\wrc@avast.com.xpi [2018-07-22]
FF Extension: (Skype Click to Call) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2016-11-24] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [{ea614400-e918-4741-9a97-7a972ff7c30b}] - C:\Program Files (x86)\Seznam.cz\firefox
FF Extension: (Seznam instalator) - C:\Program Files (x86)\Seznam.cz\firefox [2011-12-26] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [ytfmdownloader@gmail.com] - C:\Program Files (x86)\Freemake\Freemake Youtube Mp3 Converter\BrowserPlugin\Firefox\ytfmdownloader@gmail.com
FF Extension: (Freemake Youtube Download Button) - C:\Program Files (x86)\Freemake\Freemake Youtube Mp3 Converter\BrowserPlugin\Firefox\ytfmdownloader@gmail.com [2014-08-18] [Legacy] [not signed]
FF HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\Firefox\Extensions: [{ea614400-e918-4741-9a97-7a972ff7c30b}] - C:\Program Files (x86)\Seznam.cz\firefox
FF HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_30_0_0_154.dll [2018-08-14] ()
FF Plugin: @java.com/DTPlugin,version=11.141.2 -> C:\Program Files\Java\jre1.8.0_141\bin\dtplugin\npDeployJava1.dll [2017-09-28] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.141.2 -> C:\Program Files\Java\jre1.8.0_141\bin\plugin2\npjp2.dll [2017-09-28] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_154.dll [2018-08-14] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll [2013-04-03] (Adobe Systems, Inc.)
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\18.1.5\\npsitesafety.dll [No File]
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin -> C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2012-02-10] (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-08-12] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-08-12] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @vizzed.com/VizzedRGR -> C:\Program Files (x86)\Vizzed\Vizzed Retro Game Room\NpVizzedRgr.dll [2013-01-11] (Vizzed.com)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\3\NP_wtapp.dll [2017-05-16] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-06-29] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2367062692-840817020-3150738865-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Marek\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin HKU\S-1-5-21-2367062692-840817020-3150738865-1001: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2012-02-10] (Pando Networks)

Chrome:
=======
CHR Profile: C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default [2018-08-30]
CHR Extension: (Adobe Acrobat) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2018-08-25]
CHR Extension: (Avast SafePrice | Comparison, deals, coupons) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-08-26]
CHR Extension: (Avast Online Security) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-08-25]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-08-25]
CHR Extension: (Chrome Media Router) - C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-08-25]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-07-05] (Apple Inc.)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7994520 2018-08-25] (AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-05-29] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [322464 2018-08-25] (AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-05-29] (AVAST Software)
S3 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2018-08-25] (AVAST Software)
R2 CleanupPSvc; C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe [8730648 2018-07-24] (AVAST Software)
S4 Disc Soft Lite Bus Service; C:\PROGRAM FILES\DAEMON TOOLS LITE\DISCSOFTBUSSERVICELITE.EXE [2291904 2017-08-14] (Disc Soft Ltd)
S4 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [532552 2017-12-20] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [8345672 2017-12-07] (GOG.com)
S4 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [399216 2017-05-16] (WildTangent)
S4 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3418024 2017-06-29] (LogMeIn Inc.)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S4 LMIGuardianSvc; C:\PROGRAM FILES (X86)\LOGMEIN HAMACHI\X64\LMIGUARDIANSVC.EXE [419248 2016-05-27] (LogMeIn, Inc.)
S4 ManyCam Service; C:\ProgramData\ManyCam\Service\ManyCamService.exe [544984 2016-03-31] (Visicom Media Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-09] (Malwarebytes)
S4 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2804568 2010-06-02] (Symantec Corporation)
S3 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-24] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-24] (NVIDIA Corporation)
R2 PackedChessFreeServer; C:\Program Files (x86)\Packed Bytes\Packed Chess Free\PackedChessFreeServer.exe [25600 2012-03-06] (PackedBytes) [File not signed]
S4 PDF24; C:\Program Files (x86)\PDF24\pdf24.exe [433288 2018-08-08] (Geek Software GmbH)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
S3 SophosVirusRemovalTool; C:\Program Files (x86)\Sophos\Sophos Virus Removal Tool\SVRTservice.exe [163680 2017-06-15] (Sophos Limited)
S4 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [873968 2017-06-30] (Tunngle.net GmbH) [File not signed]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\NisSrv.exe [3905952 2018-08-12] (Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MsMpEng.exe [110944 2018-08-12] (Microsoft Corporation)
R2 ZAMSvc; C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [15775888 2017-08-09] (Copyright 2017.)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [199712 2018-08-25] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdrivera.sys [229384 2018-08-25] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsha.sys [201320 2018-08-25] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswbloga.sys [346664 2018-08-25] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniva.sys [59568 2018-08-25] (AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15360 2018-07-22] (AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [249016 2018-08-25] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [46968 2018-08-25] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [163272 2018-08-25] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [111864 2018-08-25] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [87904 2018-08-28] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1027720 2018-08-25] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [467232 2018-08-25] (AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [214800 2018-08-25] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [381560 2018-08-25] (AVAST Software)
S3 BstkDrv; C:\Program Files (x86)\BlueStacks\BstkDrv.sys [269408 2018-05-16] (Bluestack System Inc. )
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-10-05] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-10-05] (Disc Soft Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [264552 2016-04-14] (ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [14976 2016-04-14] (ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [186784 2016-04-14] (ESET)
R3 ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [40648 2007-02-16] (SlySoft, Inc.)
R3 ElbyCDFL; C:\Windows\SysWOW64\Drivers\ElbyCDFL.sys [40648 2007-02-16] (SlySoft, Inc.)
R2 epfwwfpr; C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys [170792 2016-04-14] (ESET)
R3 ETDSMBus; C:\WINDOWS\System32\drivers\ETDSMBus.sys [32840 2017-07-12] (ELAN Microelectronic Corp.)
R3 Hamachi; C:\WINDOWS\System32\drivers\Hamdrv.sys [45680 2017-06-29] (LogMeIn Inc.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2016-01-06] (REALiX(tm))
R3 ManyCam; C:\WINDOWS\system32\DRIVERS\mcvidrv.sys [58792 2017-03-05] (Visicom Media Inc.)
S3 Maplom; C:\Windows\System32\Drivers\Maplom.sys [35384 2013-10-29] (SlySoft Inc.)
S3 MaplomL; C:\Windows\System32\Drivers\MaplomL.sys [60472 2013-10-29] (SlySoft Inc.)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [259360 2018-08-30] (Malwarebytes)
R3 mcaudrv_simple; C:\WINDOWS\system32\drivers\mcaudrv_x64.sys [35960 2014-12-29] (Visicom Media Inc.)
R2 NPF; C:\WINDOWS\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_f658c3ebd2a88192\nvlddmkm.sys [17544792 2018-03-25] (NVIDIA Corporation)
R0 nvpciflt; C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_f658c3ebd2a88192\nvpciflt.sys [48480 2018-03-25] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [31168 2018-03-24] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [59240 2018-03-24] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [58816 2018-03-24] (NVIDIA Corporation)
S3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [32936 2016-01-06] (Synaptics Incorporated)
S3 SWDUMon; C:\WINDOWS\system32\DRIVERS\SWDUMon.sys [25608 2018-08-30] (SlimWare Utilities, Inc.)
R3 tap0901t; C:\WINDOWS\System32\drivers\tap0901t.sys [48824 2016-04-26] (Tunngle.net GmbH)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [28272 2018-08-25] ()
R1 VBoxNetAdp; C:\WINDOWS\System32\drivers\VBoxNetAdp6.sys [119712 2016-06-28] (Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [192864 2016-06-28] (Oracle Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46584 2018-08-12] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [340008 2018-08-12] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [61992 2018-08-12] (Microsoft Corporation)
R1 ZAM; C:\WINDOWS\System32\drivers\zam64.sys [203680 2018-08-25] (Zemana Ltd.)
R1 ZAM_Guard; C:\WINDOWS\System32\drivers\zamguard64.sys [203680 2018-08-25] (Zemana Ltd.)
S2 BstHdDrv; \??\C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [X]
U3 idsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-08-30 20:14 - 2018-08-30 20:16 - 000029589 _____ C:\Users\Marek\Desktop\FRST.txt
2018-08-30 20:14 - 2018-08-30 20:14 - 000000000 ____D C:\FRST
2018-08-30 20:12 - 2018-08-30 20:12 - 002413056 _____ (Farbar) C:\Users\Marek\Desktop\FRST64.exe
2018-08-30 13:26 - 2018-08-30 16:46 - 000259360 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2018-08-27 21:57 - 2018-08-27 21:57 - 000000000 ____D C:\WINDOWS\LastGood
2018-08-27 21:39 - 2018-08-27 21:39 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Apfiltr_01009.Wdf
2018-08-27 21:39 - 2018-08-27 21:39 - 000000000 ____D C:\Program Files\Apoint2K
2018-08-27 21:39 - 2014-09-10 18:14 - 000163480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.ocx
2018-08-27 21:39 - 2013-11-25 15:27 - 001070232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscomctl.ocx
2018-08-27 21:39 - 2013-11-25 15:27 - 000660120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscomct2.ocx
2018-08-27 21:39 - 2013-11-25 15:27 - 000617896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.ocx
2018-08-27 21:39 - 2013-11-25 15:27 - 000444328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MShflxgd.ocx
2018-08-27 21:39 - 2013-11-25 15:27 - 000416408 _____ (Microsoft Corporation ) C:\WINDOWS\SysWOW64\comct332.ocx
2018-08-27 21:39 - 2013-11-25 15:27 - 000279192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdatgrd.ocx
2018-08-27 21:39 - 2013-11-25 15:27 - 000259736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msflxgrd.ocx
2018-08-27 21:39 - 2013-11-25 15:27 - 000253080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdatlst.ocx
2018-08-27 21:39 - 2013-11-25 15:27 - 000222360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tabctl32.ocx
2018-08-27 21:39 - 2013-11-25 15:27 - 000219288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\richtx32.ocx
2018-08-27 21:39 - 2013-11-25 15:27 - 000218776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dblist32.ocx
2018-08-27 21:39 - 2013-11-25 15:27 - 000212112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mci32.ocx
2018-08-27 21:39 - 2013-11-25 15:27 - 000179352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmask32.ocx
2018-08-27 21:39 - 2013-11-25 15:27 - 000170920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comct232.ocx
2018-08-27 21:39 - 2013-11-25 15:27 - 000131728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinet.ocx
2018-08-27 21:39 - 2013-11-25 15:27 - 000130712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msstdfmt.dll
2018-08-27 21:39 - 2013-11-25 15:27 - 000127640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswinsck.ocx
2018-08-27 21:39 - 2013-11-25 15:27 - 000119960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mscomm32.ocx
2018-08-27 21:39 - 2013-11-25 15:27 - 000108696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSSTKPRP.DLL
2018-08-27 21:39 - 2013-11-25 15:27 - 000104088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\picclp32.ocx
2018-08-27 21:39 - 2013-11-25 15:27 - 000084624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysinfo.ocx
2018-08-27 21:39 - 2011-01-12 21:36 - 001054208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71u.dll
2018-08-27 21:39 - 2011-01-12 21:25 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71DEU.DLL
2018-08-27 21:39 - 2011-01-12 21:25 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ITA.DLL
2018-08-27 21:39 - 2011-01-12 21:25 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71FRA.DLL
2018-08-27 21:39 - 2011-01-12 21:25 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ESP.DLL
2018-08-27 21:39 - 2011-01-12 21:25 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71ENU.DLL
2018-08-27 21:39 - 2011-01-12 21:25 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71KOR.DLL
2018-08-27 21:39 - 2011-01-12 21:25 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71JPN.DLL
2018-08-27 21:39 - 2011-01-12 21:25 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHT.DLL
2018-08-27 21:39 - 2011-01-12 21:25 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71CHS.DLL
2018-08-27 21:39 - 2011-01-12 21:19 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFC71.dll
2018-08-27 21:39 - 2011-01-12 20:53 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl71.dll
2018-08-27 21:39 - 2008-04-15 14:00 - 001355776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvbvm50.dll
2018-08-27 21:39 - 2007-01-30 18:04 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr70.dll
2018-08-27 21:39 - 2006-08-25 22:28 - 001017344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70u.dll
2018-08-27 21:39 - 2006-08-25 22:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70ita.dll
2018-08-27 21:39 - 2006-08-25 22:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70fra.dll
2018-08-27 21:39 - 2006-08-25 22:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70esp.dll
2018-08-27 21:39 - 2006-08-25 22:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70deu.dll
2018-08-27 21:39 - 2006-08-25 22:15 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70enu.dll
2018-08-27 21:39 - 2006-08-25 22:15 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70kor.dll
2018-08-27 21:39 - 2006-08-25 22:15 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70jpn.dll
2018-08-27 21:39 - 2006-08-25 22:15 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70cht.dll
2018-08-27 21:39 - 2006-08-25 22:15 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70chs.dll
2018-08-27 21:39 - 2006-08-25 22:07 - 001024000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70.dll
2018-08-27 21:39 - 2006-08-25 21:17 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atl70.dll
2018-08-27 21:39 - 2005-01-20 17:25 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvci70.dll
2018-08-27 21:39 - 2002-01-05 03:40 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVCP70.DLL
2018-08-27 21:39 - 1996-01-12 02:00 - 000935632 _____ (Microsoft Corporation) C:\WINDOWS\system\Vb40016.dll
2018-08-27 21:39 - 1996-01-12 02:00 - 000722192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Vb40032.dll
2018-08-27 21:39 - 1994-11-17 23:00 - 000210944 _____ C:\WINDOWS\SysWOW64\msvcrt10.dll
2018-08-27 21:39 - 1993-05-11 19:00 - 000398416 _____ (Microsoft Corporation) C:\WINDOWS\system\Vbrun300.dll
2018-08-27 21:39 - 1992-10-21 00:00 - 000356992 _____ (Microsoft Corporation) C:\WINDOWS\system\vbrun200.dll
2018-08-27 21:39 - 1991-05-10 01:00 - 000271264 _____ C:\WINDOWS\system\vbrun100.dll
2018-08-27 21:37 - 2018-08-27 21:40 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2018-08-27 21:25 - 2018-08-27 21:25 - 000000000 ____D C:\Users\Marek\.cache
2018-08-27 20:32 - 2018-08-30 16:49 - 000000500 _____ C:\WINDOWS\Tasks\Avast Driver Updater Startup.job
2018-08-27 20:32 - 2018-08-30 16:47 - 000025608 _____ (SlimWare Utilities, Inc.) C:\WINDOWS\system32\Drivers\SWDUMon.sys
2018-08-27 20:32 - 2018-08-27 20:32 - 000002998 _____ C:\WINDOWS\System32\Tasks\Avast Driver Updater Startup
2018-08-27 20:31 - 2018-08-27 20:31 - 000000000 ____D C:\Users\Public\Documents\Downloaded Installers
2018-08-27 19:55 - 2018-08-27 19:56 - 000000000 ____D C:\Users\Marek\AppData\Roaming\DRPSu
2018-08-27 10:54 - 2018-08-27 10:54 - 000619744 _____ (DriverPack) C:\Users\Marek\Downloads\DriverPack-17-Online_1397203958.1535359983.exe
2018-08-27 08:49 - 2018-07-14 07:21 - 001471384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2018-08-27 08:47 - 2018-08-27 08:54 - 000001072 _____ C:\Users\Marek\Desktop\WhoCrashed.lnk
2018-08-27 08:47 - 2018-08-27 08:54 - 000000000 ____D C:\Program Files\WhoCrashed
2018-08-27 08:47 - 2018-08-27 08:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WhoCrashed
2018-08-27 08:45 - 2018-08-27 08:45 - 009252712 _____ (Resplendence Software Projects Sp. ) C:\Users\Marek\Downloads\whocrashedSetup.exe
2018-08-27 08:31 - 2018-08-30 20:02 - 000001273 _____ C:\Users\Marek\Desktop\CrystalDiskInfo.lnk
2018-08-27 08:31 - 2018-08-27 08:32 - 000000000 ____D C:\Program Files (x86)\CrystalDiskInfo
2018-08-27 08:31 - 2018-08-27 08:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2018-08-27 08:29 - 2018-08-27 08:29 - 015352536 _____ C:\Users\Marek\Downloads\CrystalDiskInfo7_7_0.exe
2018-08-26 16:05 - 2018-08-26 16:05 - 000016850 _____ C:\Users\Marek\Downloads\MemTest.zip
2018-08-26 16:02 - 2018-08-26 16:02 - 000000000 ____D C:\Users\Marek\Desktop\backups
2018-08-26 00:04 - 2018-08-26 00:04 - 000000000 ___HD C:\$SysReset
2018-08-25 18:47 - 2018-08-25 18:46 - 000379608 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2018-08-25 18:09 - 2018-08-25 18:09 - 000000000 ____D C:\Users\Marek\AppData\Local\NetworkTiles
2018-08-25 15:11 - 2018-08-30 20:16 - 000112984 _____ C:\WINDOWS\ZAM.krnl.trace
2018-08-25 15:11 - 2018-08-30 20:16 - 000080273 _____ C:\WINDOWS\ZAM_Guard.krnl.trace
2018-08-25 15:11 - 2018-08-26 00:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiMalware
2018-08-25 15:11 - 2018-08-25 15:11 - 000203680 _____ (Zemana Ltd.) C:\WINDOWS\system32\Drivers\zamguard64.sys
2018-08-25 15:11 - 2018-08-25 15:11 - 000203680 _____ (Zemana Ltd.) C:\WINDOWS\system32\Drivers\zam64.sys
2018-08-25 15:11 - 2018-08-25 15:11 - 000001221 _____ C:\Users\Public\Desktop\Zemana AntiMalware.lnk
2018-08-25 15:11 - 2018-08-25 15:11 - 000000000 ____D C:\Program Files (x86)\Zemana AntiMalware
2018-08-25 15:10 - 2018-08-25 15:10 - 000000000 ____D C:\Users\Marek\AppData\Local\Zemana
2018-08-25 14:56 - 2018-08-25 14:56 - 000000000 ____D C:\Users\Marek\AppData\Local\DBG
2018-08-25 14:47 - 2018-08-25 14:47 - 006625600 _____ (Zemana Ltd. ) C:\Users\Marek\Downloads\Zemana.AntiMalware.Setup.exe
2018-08-25 14:37 - 2018-08-25 14:37 - 000000000 ___HD C:\$GetCurrent
2018-08-25 14:35 - 2018-08-25 14:37 - 000000000 ____D C:\Windows10Upgrade
2018-08-25 14:32 - 2018-08-25 14:32 - 006625600 _____ (Zemana Ltd. ) C:\Users\Marek\Desktop\Zemana.AntiMalware.Setup.exe
2018-08-25 14:23 - 2018-08-30 16:52 - 000000000 ____D C:\Users\Marek\AppData\Local\AVAST Software
2018-08-25 14:07 - 2014-02-13 23:59 - 000024064 _____ C:\WINDOWS\zoek-delete.exe
2018-08-25 14:01 - 2018-08-25 14:01 - 000000000 ____D C:\WINDOWS\UpdateAssistant
2018-08-25 11:55 - 2018-08-25 13:43 - 000000000 ____D C:\zoek_backup
2018-08-24 19:55 - 2018-08-26 00:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2018-08-24 19:55 - 2018-08-24 19:55 - 000000903 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2018-08-24 19:49 - 2018-08-24 19:51 - 036835424 _____ (Adlice Software ) C:\Users\Marek\Desktop\RogueKiller_setup.exe
2018-08-23 23:32 - 2013-10-29 00:15 - 000632168 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorA.sys
2018-08-23 23:22 - 2016-04-14 03:46 - 003787304 _____ (Broadcom Corporation) C:\WINDOWS\system32\bcmihvui64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 072522096 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2018-08-23 22:48 - 2018-08-15 20:05 - 015218584 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE3.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 007179856 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 007101712 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 006270160 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 003757808 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 003678544 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2018-08-23 22:48 - 2018-08-15 20:05 - 003417984 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 003320800 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 003306784 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE2.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 003277944 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 003216608 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 003128776 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 002931536 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 002197944 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 001787920 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 001598360 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 001516240 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 001435112 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 001397240 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 001382200 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 001354704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 001337608 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaeapo64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 001313048 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDHF64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 001274592 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 001182112 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 001159152 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 001073416 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 001024416 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SEHDHF32.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000994648 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000964992 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000873424 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000852104 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tosasfapo64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000776376 _____ (ICEpower a/s) C:\WINDOWS\system32\ICEsoundAPO64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000734768 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000715616 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000693552 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000604792 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaemaxapo64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000541088 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000511616 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000467128 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000454664 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000452728 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000448600 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000447152 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\toseaeapo64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000416480 _____ (Harman) C:\WINDOWS\system32\HMUI.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000406416 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2APIPCLL.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000394256 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000381376 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000378352 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000366088 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\HMAPO.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000360312 _____ (Harman) C:\WINDOWS\system32\HMClariFi.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000345096 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000341112 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000341112 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000328656 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000328656 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000267936 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000261232 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000261168 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000260176 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000231880 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000230672 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000221776 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000218240 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000203808 _____ (Harman) C:\WINDOWS\system32\HMHVS.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000194368 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000190904 _____ (Harman) C:\WINDOWS\system32\HMEQ.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000190896 _____ (Harman) C:\WINDOWS\system32\HMEQ_Voice.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000179568 _____ (Harman) C:\WINDOWS\system32\HMLimiter.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000174904 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000158728 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000158664 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000154336 _____ (Harman) C:\WINDOWS\system32\HarmanAudioInterface.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000141144 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000122288 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000117928 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000095288 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000091560 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000090880 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000088312 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000083592 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2018-08-23 22:48 - 2018-08-15 20:05 - 000075512 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2018-08-23 22:48 - 2018-08-15 20:04 - 005346968 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2018-08-23 22:48 - 2018-08-15 20:04 - 002992176 _____ (Audyssey Labs) C:\WINDOWS\system32\AudysseyEfx.dll
2018-08-23 22:48 - 2018-08-15 20:04 - 002444656 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2018-08-23 22:48 - 2018-08-15 20:04 - 001971336 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2018-08-23 22:48 - 2018-08-15 20:04 - 001965128 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2018-08-23 22:48 - 2018-08-15 20:04 - 001544224 _____ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOProp.dll
2018-08-23 22:48 - 2018-08-15 20:04 - 001448744 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyAPOv251gm.dll
2018-08-23 22:48 - 2018-08-15 20:04 - 001372360 _____ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOv251.dll
2018-08-23 22:48 - 2018-08-15 20:04 - 001259696 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOvlldp.dll
2018-08-23 22:48 - 2018-08-15 20:04 - 001164584 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyAPOvlldpgm.dll
2018-08-23 22:48 - 2018-08-15 20:04 - 000751264 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2018-08-23 22:48 - 2018-08-15 20:04 - 000367584 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2018-08-23 22:48 - 2018-08-15 20:04 - 000332976 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2018-08-23 22:48 - 2018-08-15 20:04 - 000315944 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2018-08-23 22:48 - 2018-08-15 20:04 - 000278264 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2018-08-23 22:48 - 2018-08-15 20:04 - 000167160 _____ (ASUSTeK COMPUTER INC.) C:\WINDOWS\system32\ATKWMI.dll
2018-08-23 22:48 - 2018-08-15 20:04 - 000118560 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2018-08-23 22:48 - 2018-08-15 20:04 - 000105304 _____ C:\WINDOWS\system32\audioLibVc.dll
2018-08-23 22:48 - 2018-08-15 19:41 - 019618666 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2018-08-23 17:06 - 2018-08-23 17:07 - 027105848 _____ (Adlice Software) C:\Users\Marek\Downloads\RogueKiller_portable64.exe
2018-08-23 13:11 - 2018-08-28 07:25 - 000004264 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2018-08-20 17:03 - 2018-08-20 17:03 - 000000000 ____D C:\WINDOWS\System32\Tasks\Apple
2018-08-20 16:33 - 2018-08-20 16:33 - 000000000 ____D C:\Users\Marek\AppData\Local\mbam
2018-08-18 10:24 - 2018-08-25 06:53 - 000028272 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2018-08-18 10:23 - 2018-08-18 13:02 - 000000000 ____D C:\ProgramData\RogueKiller
2018-08-18 10:20 - 2018-08-25 06:40 - 000000000 ____D C:\Program Files\RogueKiller
2018-08-18 10:15 - 2018-08-18 10:15 - 000000037 _____ C:\Users\Marek\Downloads\file-not-found.txt
2018-08-18 10:15 - 2018-08-18 10:15 - 000000037 _____ C:\Users\Marek\Downloads\file-not-found (1).txt
2018-08-16 11:26 - 2018-08-16 11:26 - 000002775 _____ C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk
2018-08-16 11:26 - 2018-08-16 11:26 - 000000000 ____D C:\ProgramData\Sophos
2018-08-16 11:26 - 2018-08-16 11:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
2018-08-16 11:25 - 2018-08-16 11:25 - 000000000 ____D C:\Program Files (x86)\Sophos
2018-08-16 11:18 - 2018-08-16 11:19 - 195958672 _____ (Sophos Limited) C:\Users\Marek\Desktop\Sophos Virus Removal Tool.exe
2018-08-16 11:09 - 2018-08-16 11:09 - 000005007 _____ C:\Users\Marek\Desktop\Sken Malwarebytes 16.8.2018.txt
2018-08-15 23:53 - 2018-08-15 23:53 - 000022513 _____ C:\Users\Marek\Desktop\JRT.txt
2018-08-15 23:09 - 2018-08-15 23:09 - 001790024 _____ (Malwarebytes) C:\Users\Marek\Desktop\JRT (1).exe
2018-08-15 23:08 - 2018-08-15 23:09 - 001790024 _____ (Malwarebytes) C:\Users\Marek\Downloads\JRT.exe
2018-08-15 15:31 - 2018-08-15 15:51 - 941659023 _____ C:\Users\Marek\Downloads\Paní Zima (2008) CZ.mp4
2018-08-15 13:27 - 2018-08-15 13:27 - 000000000 ____D C:\Users\Marek\AppData\Local\Adobe
2018-08-15 13:25 - 2018-08-15 13:25 - 000335196 _____ C:\Users\Marek\Downloads\sken malwarebytes 15.8.2018.pdf
2018-08-15 13:16 - 2018-08-26 00:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24
2018-08-15 13:16 - 2018-08-15 13:16 - 000001157 _____ C:\Users\Public\Desktop\PDF24.lnk
2018-08-15 13:12 - 2018-08-15 13:13 - 022102984 _____ (Geek Software GmbH ) C:\Users\Marek\Downloads\pdf24-creator-8.5.0.exe
2018-08-15 12:31 - 2018-08-15 13:04 - 000000000 ____D C:\Users\Marek\Downloads\Sken malwarebytes
2018-08-15 11:42 - 2018-08-15 11:42 - 000426216 _____ C:\Users\Marek\Downloads\sken malwarebytes 15.8.2018.txt
2018-08-15 10:34 - 2018-08-15 10:34 - 000001916 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2018-08-15 10:33 - 2018-08-26 00:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-08-15 10:31 - 2018-08-30 13:25 - 000152688 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2018-08-15 10:29 - 2018-08-15 10:29 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-08-15 10:29 - 2018-08-15 10:29 - 000000000 ____D C:\Program Files\Malwarebytes
2018-08-15 10:09 - 2018-08-15 10:11 - 078989872 _____ (Malwarebytes ) C:\Users\Marek\Desktop\mb3-setup-consumer-3.5.1.2522-1.0.391-1.0.6237.exe
2018-08-15 09:57 - 2018-08-15 22:41 - 000000000 ____D C:\AdwCleaner
2018-08-15 09:55 - 2018-08-15 09:55 - 007395536 _____ (Malwarebytes) C:\Users\Marek\Desktop\AdwCleaner (1).exe
2018-08-15 09:32 - 2018-08-15 09:32 - 000000000 ____D C:\Users\Marek\AppData\Local\Apps\2.0
2018-08-15 09:31 - 2018-08-15 09:31 - 000448512 _____ (OldTimer Tools) C:\Users\Marek\Downloads\TFC.exe
2018-08-15 09:23 - 2018-08-15 09:23 - 000050688 _____ (Atribune.org) C:\Users\Marek\Downloads\ATF-Cleaner.exe
2018-08-14 21:59 - 2018-08-07 08:21 - 000076584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2018-08-14 21:59 - 2018-08-07 08:19 - 001068960 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-08-14 21:59 - 2018-08-07 08:19 - 000599456 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-08-14 21:59 - 2018-08-07 08:17 - 000781384 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2018-08-14 21:59 - 2018-08-07 08:17 - 000383784 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2018-08-14 21:59 - 2018-08-07 08:17 - 000079656 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2018-08-14 21:59 - 2018-08-07 08:13 - 008618392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-08-14 21:59 - 2018-08-07 08:13 - 002515464 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll

darkmarek
Level 1.5
Level 1.5
Příspěvky: 131
Registrován: srpen 18
Pohlaví: Muž
Stav:
Offline

Re: Prosím o pomoc zatížený disk a podezření na viry

Příspěvekod darkmarek » 30 srp 2018 20:41

2018-08-14 21:59 - 2018-08-07 08:13 - 000138656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2018-08-14 21:59 - 2018-08-07 08:13 - 000110008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2018-08-14 21:59 - 2018-08-07 08:11 - 000172328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-08-14 21:59 - 2018-08-07 08:10 - 006281736 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2018-08-14 21:59 - 2018-08-07 08:10 - 000749984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-08-14 21:59 - 2018-08-07 08:10 - 000687560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2018-08-14 21:59 - 2018-08-07 08:10 - 000408992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2018-08-14 21:59 - 2018-08-07 08:08 - 000031672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhv.sys
2018-08-14 21:59 - 2018-08-07 08:07 - 007385096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-08-14 21:59 - 2018-08-07 07:05 - 001933224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2018-08-14 21:59 - 2018-08-07 07:05 - 000312616 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2018-08-14 21:59 - 2018-08-07 07:04 - 000650728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2018-08-14 21:59 - 2018-08-07 06:54 - 003663872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-08-14 21:59 - 2018-08-07 06:53 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2018-08-14 21:59 - 2018-08-07 06:53 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2018-08-14 21:59 - 2018-08-07 06:53 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2018-08-14 21:59 - 2018-08-07 06:53 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2018-08-14 21:59 - 2018-08-07 06:51 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-08-14 21:59 - 2018-08-07 06:49 - 002216400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-08-14 21:59 - 2018-08-07 06:49 - 000559984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2018-08-14 21:59 - 2018-08-07 06:49 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2018-08-14 21:59 - 2018-08-07 06:48 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2018-08-14 21:59 - 2018-08-07 06:47 - 000672768 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-08-14 21:59 - 2018-08-07 06:47 - 000591360 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-08-14 21:59 - 2018-08-07 06:46 - 006480112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-08-14 21:59 - 2018-08-07 06:45 - 008064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-08-14 21:59 - 2018-08-07 06:45 - 004724736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-08-14 21:59 - 2018-08-07 06:44 - 005833216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2018-08-14 21:59 - 2018-08-07 06:44 - 001236992 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2018-08-14 21:59 - 2018-08-07 06:44 - 000808960 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-08-14 21:59 - 2018-08-07 06:28 - 002902528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-08-14 21:59 - 2018-08-07 06:27 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2018-08-14 21:59 - 2018-08-07 06:27 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2018-08-14 21:59 - 2018-08-07 06:27 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2018-08-14 21:59 - 2018-08-07 06:25 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2018-08-14 21:59 - 2018-08-07 06:24 - 018933760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-08-14 21:59 - 2018-08-07 06:24 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2018-08-14 21:59 - 2018-08-07 06:24 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2018-08-14 21:59 - 2018-08-07 06:23 - 000459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-08-14 21:59 - 2018-08-07 06:22 - 000981504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2018-08-14 21:59 - 2018-08-07 06:22 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2018-08-14 21:59 - 2018-08-07 06:20 - 000539136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-08-14 21:59 - 2018-08-07 06:19 - 019360256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-08-14 21:59 - 2018-08-07 06:19 - 000405504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2018-08-14 21:59 - 2018-08-07 06:18 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-08-14 21:59 - 2018-08-07 06:18 - 000598528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2018-08-14 21:59 - 2018-08-07 06:18 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-08-14 21:59 - 2018-08-07 06:17 - 006582272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-08-14 21:59 - 2018-08-07 06:16 - 006013952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-08-14 21:59 - 2018-08-07 06:16 - 003662848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-08-14 21:59 - 2018-08-07 06:15 - 004839424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2018-08-14 21:59 - 2018-08-07 06:15 - 004044800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-08-14 21:59 - 2018-08-07 06:15 - 000920064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2018-08-14 21:59 - 2018-08-07 06:12 - 004053504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2018-08-14 21:59 - 2018-07-18 05:26 - 001849760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2018-08-14 21:59 - 2018-07-18 05:26 - 000939304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2018-08-14 21:59 - 2018-07-18 05:22 - 000437664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2018-08-14 21:59 - 2018-07-18 05:21 - 000428448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2018-08-14 21:59 - 2018-07-18 05:20 - 002712592 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2018-08-14 21:59 - 2018-07-18 05:20 - 002269448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2018-08-14 21:59 - 2018-07-18 05:20 - 001971944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2018-08-14 21:59 - 2018-07-18 05:20 - 001781360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2018-08-14 21:59 - 2018-07-18 05:20 - 001507624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2018-08-14 21:59 - 2018-07-18 05:20 - 001255056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2018-08-14 21:59 - 2018-07-18 05:20 - 001207520 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2018-08-14 21:59 - 2018-07-18 05:20 - 001055696 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-08-14 21:59 - 2018-07-18 05:20 - 000595472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2018-08-14 21:59 - 2018-07-18 05:20 - 000262320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2018-08-14 21:59 - 2018-07-18 04:46 - 000793384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2018-08-14 21:59 - 2018-07-18 04:44 - 006014688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2018-08-14 21:59 - 2018-07-18 04:44 - 004668192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2018-08-14 21:59 - 2018-07-18 04:44 - 002462704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2018-08-14 21:59 - 2018-07-18 04:44 - 001524776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2018-08-14 21:59 - 2018-07-18 04:44 - 001456104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2018-08-14 21:59 - 2018-07-18 04:44 - 001377088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2018-08-14 21:59 - 2018-07-18 04:44 - 001149280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2018-08-14 21:59 - 2018-07-18 04:44 - 001131688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2018-08-14 21:59 - 2018-07-18 04:44 - 001057824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2018-08-14 21:59 - 2018-07-18 04:44 - 001017056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2018-08-14 21:59 - 2018-07-18 04:44 - 001002640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2018-08-14 21:59 - 2018-07-18 04:44 - 000551696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2018-08-14 21:59 - 2018-07-18 04:44 - 000129184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2018-08-14 21:59 - 2018-07-18 04:27 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2018-08-14 21:59 - 2018-07-18 04:27 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2018-08-14 21:59 - 2018-07-18 04:27 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2018-08-14 21:59 - 2018-07-18 04:22 - 000369664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2018-08-14 21:59 - 2018-07-18 04:21 - 001486336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2018-08-14 21:59 - 2018-07-18 04:21 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2018-08-14 21:59 - 2018-07-18 04:19 - 012729856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2018-08-14 21:59 - 2018-07-18 04:16 - 002465792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-08-14 21:59 - 2018-07-18 04:15 - 004248064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2018-08-14 21:59 - 2018-07-18 04:13 - 000621568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2018-08-14 21:59 - 2018-07-18 04:13 - 000620544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-08-14 21:59 - 2018-07-18 04:13 - 000604672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2018-08-14 21:59 - 2018-07-18 04:12 - 000536064 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-08-14 21:59 - 2018-07-18 04:10 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2018-08-14 21:59 - 2018-07-18 04:09 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2018-08-14 21:59 - 2018-07-18 04:03 - 000580608 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2018-08-14 21:59 - 2018-07-18 04:02 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2018-08-14 21:59 - 2018-07-18 03:57 - 002786816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-08-14 21:59 - 2018-07-18 03:56 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2018-08-14 21:59 - 2018-07-18 03:54 - 000941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-08-14 21:59 - 2018-07-18 03:54 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2018-08-14 21:59 - 2018-07-18 03:54 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2018-08-14 21:59 - 2018-07-18 03:53 - 000918528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2018-08-14 21:59 - 2018-07-18 03:53 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2018-08-14 21:59 - 2018-07-13 07:16 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadauthhelper.dll
2018-08-14 21:59 - 2018-07-13 07:11 - 011925504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-08-14 21:59 - 2018-07-13 06:33 - 012832768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-08-14 21:58 - 2018-08-07 10:32 - 001574912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2018-08-14 21:58 - 2018-08-07 10:28 - 001238016 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2018-08-14 21:58 - 2018-08-07 10:28 - 000432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2018-08-14 21:58 - 2018-08-07 08:19 - 001252768 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-08-14 21:58 - 2018-08-07 08:17 - 002870056 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2018-08-14 21:58 - 2018-08-07 08:11 - 001279272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2018-08-14 21:58 - 2018-08-07 08:10 - 002735528 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-08-14 21:58 - 2018-08-07 08:10 - 002573728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-08-14 21:58 - 2018-08-07 08:08 - 021356824 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-08-14 21:58 - 2018-08-07 08:08 - 000070864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2018-08-14 21:58 - 2018-08-07 08:06 - 002775336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-08-14 21:58 - 2018-08-07 08:06 - 001102120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2018-08-14 21:58 - 2018-08-07 08:05 - 000058888 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2018-08-14 21:58 - 2018-08-07 07:12 - 025257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-08-14 21:58 - 2018-08-07 06:51 - 023678464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-08-14 21:58 - 2018-08-07 06:50 - 008033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-08-14 21:58 - 2018-08-07 06:49 - 000675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-08-14 21:58 - 2018-08-07 06:47 - 020290256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-08-14 21:58 - 2018-08-07 06:47 - 000061032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2018-08-14 21:58 - 2018-08-07 06:46 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2018-08-14 21:58 - 2018-08-07 06:44 - 004509184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-08-14 21:58 - 2018-08-07 06:44 - 002086912 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-08-14 21:58 - 2018-08-07 06:41 - 004052480 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2018-08-14 21:58 - 2018-08-07 06:39 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll
2018-08-14 21:58 - 2018-08-07 06:16 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2018-08-14 21:58 - 2018-08-07 06:14 - 000955392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2018-08-14 21:58 - 2018-07-18 09:53 - 021754880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2018-08-14 21:58 - 2018-07-18 09:53 - 017084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2018-08-14 21:58 - 2018-07-18 05:23 - 000891288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2018-08-14 21:58 - 2018-07-18 05:20 - 006793408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2018-08-14 21:58 - 2018-07-18 05:20 - 004508512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2018-08-14 21:58 - 2018-07-18 05:20 - 001695136 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2018-08-14 21:58 - 2018-07-18 05:20 - 001338792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2018-08-14 21:58 - 2018-07-18 04:27 - 002393600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2018-08-14 21:58 - 2018-07-18 04:27 - 000372736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
2018-08-14 21:58 - 2018-07-18 04:23 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2018-08-14 21:58 - 2018-07-18 04:14 - 001328640 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2018-08-14 21:58 - 2018-07-18 04:13 - 001510912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2018-08-14 21:58 - 2018-07-18 04:12 - 000858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-08-14 21:58 - 2018-07-18 04:12 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2018-08-14 21:58 - 2018-07-18 04:12 - 000400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2018-08-14 21:58 - 2018-07-18 04:12 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2018-08-14 21:58 - 2018-07-18 04:12 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2018-08-14 21:58 - 2018-07-18 04:12 - 000250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2018-08-14 21:58 - 2018-07-18 04:12 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2018-08-14 21:58 - 2018-07-18 04:12 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2018-08-14 21:58 - 2018-07-18 04:12 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2018-08-14 21:58 - 2018-07-18 04:06 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2018-08-14 21:58 - 2018-07-18 04:05 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2018-08-14 21:58 - 2018-07-18 04:05 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2018-08-14 21:58 - 2018-07-18 04:01 - 001659904 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2018-08-14 21:58 - 2018-07-18 04:01 - 001496064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-08-14 21:58 - 2018-07-18 03:59 - 000837120 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2018-08-14 21:58 - 2018-07-18 03:58 - 013711360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2018-08-14 21:58 - 2018-07-18 03:58 - 003180544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-08-14 21:58 - 2018-07-18 03:58 - 002212352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-08-14 21:58 - 2018-07-18 03:57 - 001157120 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2018-08-14 21:58 - 2018-07-18 03:56 - 004814336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2018-08-14 21:58 - 2018-07-18 03:56 - 002858496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-08-14 21:58 - 2018-07-18 03:54 - 001717760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2018-08-14 21:58 - 2018-07-18 03:54 - 001348608 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2018-08-14 21:58 - 2018-07-18 03:54 - 000943104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2018-08-14 21:58 - 2018-07-13 06:38 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadauthhelper.dll
2018-08-14 21:58 - 2018-07-13 06:35 - 000623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2018-08-14 21:57 - 2018-08-07 10:40 - 003077272 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2018-08-14 21:57 - 2018-08-07 08:19 - 000118688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scmbus.sys
2018-08-14 21:57 - 2018-08-07 08:18 - 000075680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2018-08-14 21:57 - 2018-08-07 08:18 - 000060320 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvhostsvc.dll
2018-08-14 21:57 - 2018-08-07 08:17 - 001612072 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2018-08-14 21:57 - 2018-08-07 08:17 - 000793896 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2018-08-14 21:57 - 2018-08-07 08:17 - 000690984 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2018-08-14 21:57 - 2018-08-07 08:17 - 000613672 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2018-08-14 21:57 - 2018-08-07 08:17 - 000482088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2018-08-14 21:57 - 2018-08-07 08:17 - 000453416 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2018-08-14 21:57 - 2018-08-07 08:17 - 000447272 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2018-08-14 21:57 - 2018-08-07 08:17 - 000311080 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2018-08-14 21:57 - 2018-08-07 08:17 - 000159120 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2018-08-14 21:57 - 2018-08-07 08:17 - 000146216 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2018-08-14 21:57 - 2018-08-07 08:17 - 000071464 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2018-08-14 21:57 - 2018-08-07 08:17 - 000036648 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2018-08-14 21:57 - 2018-08-07 08:13 - 001954056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-08-14 21:57 - 2018-08-07 08:13 - 001416872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-08-14 21:57 - 2018-08-07 08:13 - 001210784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-08-14 21:57 - 2018-08-07 08:13 - 001093040 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-08-14 21:57 - 2018-08-07 08:13 - 000925168 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-08-14 21:57 - 2018-08-07 08:12 - 000114984 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2018-08-14 21:57 - 2018-08-07 08:11 - 000544040 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-08-14 21:57 - 2018-08-07 07:05 - 001616080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2018-08-14 21:57 - 2018-08-07 07:05 - 000368936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2018-08-14 21:57 - 2018-08-07 06:53 - 001664512 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2018-08-14 21:57 - 2018-08-07 06:52 - 002316440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2018-08-14 21:57 - 2018-08-07 06:52 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmgid.sys
2018-08-14 21:57 - 2018-08-07 06:51 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-08-14 21:57 - 2018-08-07 06:51 - 000047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\tokenbinding.dll
2018-08-14 21:57 - 2018-08-07 06:50 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2018-08-14 21:57 - 2018-08-07 06:50 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2018-08-14 21:57 - 2018-08-07 06:47 - 000837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-08-14 21:57 - 2018-08-07 06:47 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2018-08-14 21:57 - 2018-08-07 06:40 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2018-08-14 21:57 - 2018-08-07 06:39 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll
2018-08-14 21:57 - 2018-08-07 06:39 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2018-08-14 21:57 - 2018-08-07 06:27 - 001470976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2018-08-14 21:57 - 2018-08-07 06:27 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2018-08-14 21:57 - 2018-08-07 06:25 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tokenbinding.dll
2018-08-14 21:57 - 2018-08-07 06:23 - 000192512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2018-08-14 21:57 - 2018-08-07 06:22 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2018-08-14 21:57 - 2018-08-07 06:21 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2018-08-14 21:57 - 2018-08-07 06:11 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2018-08-14 21:57 - 2018-07-18 09:21 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2018-08-14 21:57 - 2018-07-18 05:26 - 000111544 _____ (Microsoft Corporation) C:\WINDOWS\system32\apisetschema.dll
2018-08-14 21:57 - 2018-07-18 05:22 - 000677280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-08-14 21:57 - 2018-07-18 05:22 - 000118360 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2018-08-14 21:57 - 2018-07-18 05:21 - 000204072 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2018-08-14 21:57 - 2018-07-18 05:20 - 001633632 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2018-08-14 21:57 - 2018-07-18 05:20 - 000479232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2018-08-14 21:57 - 2018-07-18 05:20 - 000325832 _____ (Microsoft Corporation) C:\WINDOWS\system32\HdcpHandler.dll
2018-08-14 21:57 - 2018-07-18 05:20 - 000089288 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2018-08-14 21:57 - 2018-07-18 05:19 - 000157592 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2018-08-14 21:57 - 2018-07-18 04:45 - 000184472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2018-08-14 21:57 - 2018-07-18 04:45 - 000105384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2018-08-14 21:57 - 2018-07-18 04:44 - 001652872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2018-08-14 21:57 - 2018-07-18 04:44 - 001558856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2018-08-14 21:57 - 2018-07-18 04:44 - 000454080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2018-08-14 21:57 - 2018-07-18 04:44 - 000225288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HdcpHandler.dll
2018-08-14 21:57 - 2018-07-18 04:44 - 000073424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2018-08-14 21:57 - 2018-07-18 04:25 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2018-08-14 21:57 - 2018-07-18 04:24 - 008962560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL
2018-08-14 21:57 - 2018-07-18 04:23 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll
2018-08-14 21:57 - 2018-07-18 04:22 - 000374272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2018-08-14 21:57 - 2018-07-18 04:22 - 000218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2018-08-14 21:57 - 2018-07-18 04:22 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\raschap.dll
2018-08-14 21:57 - 2018-07-18 04:21 - 000420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2018-08-14 21:57 - 2018-07-18 04:16 - 001546752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2018-08-14 21:57 - 2018-07-18 04:15 - 000440832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2018-08-14 21:57 - 2018-07-18 04:13 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2018-08-14 21:57 - 2018-07-18 04:10 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2018-08-14 21:57 - 2018-07-18 04:09 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedPCCSP.dll
2018-08-14 21:57 - 2018-07-18 04:09 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\EasPolicyManagerBrokerPS.dll
2018-08-14 21:57 - 2018-07-18 04:07 - 008962560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2018-08-14 21:57 - 2018-07-18 04:07 - 000535040 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2018-08-14 21:57 - 2018-07-18 04:06 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\CourtesyEngine.dll
2018-08-14 21:57 - 2018-07-18 04:05 - 000457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2018-08-14 21:57 - 2018-07-18 04:05 - 000167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2018-08-14 21:57 - 2018-07-18 04:05 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\raschap.dll
2018-08-14 21:57 - 2018-07-18 04:05 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmclient.exe
2018-08-14 21:57 - 2018-07-18 04:03 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2018-08-14 21:57 - 2018-07-18 04:03 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\EASPolicyManagerBrokerHost.exe
2018-08-14 21:57 - 2018-07-18 04:01 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2018-08-14 21:57 - 2018-07-18 03:58 - 002836992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2018-08-14 21:57 - 2018-07-18 03:58 - 001777664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2018-08-14 21:57 - 2018-07-18 03:56 - 001760768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2018-08-14 21:57 - 2018-07-18 03:55 - 000518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2018-08-14 21:57 - 2018-07-18 03:54 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2018-08-14 21:57 - 2018-07-18 03:53 - 000971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2018-08-14 21:57 - 2018-07-18 03:51 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdrom.sys
2018-08-14 21:56 - 2018-08-14 21:56 - 000567685 _____ C:\Users\Marek\Downloads\cz_ctyri_dohody_pracovni_kniha.zip
2018-08-14 21:26 - 2018-08-14 21:27 - 013410116 _____ C:\Users\Marek\Downloads\cz_ochrana_pred_astralnimi_parazity.zip
2018-08-14 21:25 - 2018-08-14 21:25 - 000938790 _____ C:\Users\Marek\Downloads\cz_laska_vztahy_a_pratelstvi (1).zip
2018-08-14 20:30 - 2018-08-14 20:30 - 000001892 _____ C:\Users\Marek\Desktop\Spotify.lnk
2018-08-14 14:41 - 2018-08-14 14:41 - 000388608 _____ (Trend Micro Inc.) C:\Users\Marek\Desktop\HijackThis.exe
2018-08-14 12:58 - 2018-08-26 00:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2018-08-14 12:58 - 2018-08-14 12:58 - 000001143 _____ C:\Users\Public\Desktop\VLC media player.lnk
2018-08-14 11:54 - 2018-08-14 12:09 - 791121032 _____ C:\Users\Marek\Downloads\Vlak-detstvi-a-nadeje---2.avi
2018-08-14 10:36 - 2018-08-14 10:41 - 789886402 _____ C:\Users\Marek\Downloads\Vlak dětství a naděje - 1.Sněhurčina smrt (1985) MONTY 698.avi
2018-08-12 13:17 - 2018-08-12 13:17 - 000000000 ____D C:\Users\Marek\Desktop\SFTtech-openage-69223d8
2018-08-12 13:15 - 2018-08-12 13:15 - 002157897 _____ C:\Users\Marek\Downloads\SFTtech-openage-v0.3.0-1312-g69223d8.tar.gz
2018-08-12 10:48 - 2018-08-25 21:57 - 000002305 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-08-12 10:48 - 2018-08-25 21:57 - 000002264 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-08-12 10:47 - 2018-08-12 10:54 - 000003502 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1d432191efa78ce
2018-08-12 10:47 - 2018-08-12 10:54 - 000003378 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1d432191ec39f9a
2018-08-12 07:54 - 2018-08-12 07:55 - 004507874 _____ C:\Users\Marek\Downloads\CrystalDiskInfo7_6_1.zip
2018-08-10 23:47 - 2018-08-10 23:47 - 000003642 _____ C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-08-30 20:14 - 2017-09-29 15:46 - 000000000 ___HD C:\Program Files\WindowsApps
2018-08-30 20:14 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-08-30 20:14 - 2016-02-12 00:39 - 000000000 ____D C:\Users\Marek\AppData\Local\CrashDumps
2018-08-30 19:58 - 2017-12-24 03:25 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-08-30 18:20 - 2018-06-27 08:43 - 000000000 ____D C:\Users\Marek\AppData\Roaming\TIDAL
2018-08-30 17:01 - 2017-12-24 04:13 - 000004196 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{804F7C6F-055E-4B20-9F48-69578A491F24}
2018-08-30 16:59 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\DeliveryOptimization
2018-08-30 16:45 - 2018-01-04 02:51 - 000000000 ____D C:\ProgramData\NVIDIA
2018-08-30 16:45 - 2017-12-24 04:13 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-08-30 16:44 - 2017-09-29 10:45 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2018-08-30 16:42 - 2017-12-24 03:36 - 000000000 ____D C:\Users\Marek
2018-08-30 14:55 - 2017-12-24 03:36 - 000000000 ____D C:\Users\DefaultAppPool
2018-08-30 04:19 - 2018-01-02 04:52 - 000000000 ____D C:\WINDOWS\Minidump
2018-08-28 21:55 - 2018-07-22 17:07 - 000087904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2018-08-28 20:19 - 2018-06-27 08:42 - 000000000 ____D C:\Users\Marek\AppData\Local\TIDAL
2018-08-27 21:43 - 2017-12-24 03:31 - 002796304 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-08-27 21:43 - 2017-09-30 16:31 - 001233898 _____ C:\WINDOWS\system32\perfh005.dat
2018-08-27 21:43 - 2017-09-30 16:31 - 000308740 _____ C:\WINDOWS\system32\perfc005.dat
2018-08-27 21:40 - 2017-09-29 15:44 - 000000000 ____D C:\WINDOWS\INF
2018-08-27 21:39 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\System
2018-08-27 21:38 - 2017-07-12 11:40 - 000000000 ____D C:\WINDOWS\system32\DAX3
2018-08-27 21:38 - 2017-04-27 00:38 - 000000000 ____D C:\WINDOWS\system32\DAX2
2018-08-27 21:37 - 2017-04-27 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2018-08-27 20:31 - 2018-05-26 00:00 - 000002517 _____ C:\Users\Public\Desktop\Avast Driver Updater.lnk
2018-08-27 20:31 - 2018-05-26 00:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Driver Updater
2018-08-27 20:31 - 2018-05-26 00:00 - 000000000 ____D C:\Program Files (x86)\Avast Driver Updater
2018-08-27 09:21 - 2017-09-29 15:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-08-26 14:30 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-08-26 11:58 - 2015-09-12 19:36 - 000000000 ____D C:\Users\Marek\AppData\Roaming\Spotify
2018-08-26 11:53 - 2014-04-18 15:56 - 000000000 ____D C:\Users\Marek\AppData\Local\Spotify
2018-08-26 00:12 - 2018-07-29 14:15 - 000000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Weeny Free Word to PDF Converter
2018-08-26 00:12 - 2018-06-16 13:03 - 000000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PicosmosTools
2018-08-26 00:12 - 2018-03-19 19:19 - 000000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargus
2018-08-26 00:12 - 2018-03-16 19:59 - 000000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2018-08-26 00:12 - 2018-03-15 14:30 - 000000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dune Legacy
2018-08-26 00:12 - 2018-02-28 15:38 - 000000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TIDAL
2018-08-26 00:12 - 2017-12-24 03:36 - 000000000 ____D C:\Users\Guest
2018-08-26 00:12 - 2017-12-19 15:21 - 000000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2018-08-26 00:12 - 2017-12-16 18:27 - 000000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\jose
2018-08-26 00:12 - 2017-10-03 14:28 - 000000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\KoshyJohn.com
2018-08-26 00:12 - 2017-09-29 15:46 - 000000000 __RSD C:\WINDOWS\media
2018-08-26 00:12 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2018-08-26 00:12 - 2016-08-30 13:20 - 000000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DX-Ball Game
2018-08-26 00:12 - 2016-07-05 09:57 - 000000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ICQ
2018-08-26 00:12 - 2016-03-04 18:15 - 000000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer
2018-08-26 00:12 - 2016-01-23 05:26 - 000000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-08-26 00:12 - 2015-06-12 19:42 - 000000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Democracy3LanguageSelector
2018-08-26 00:12 - 2014-06-15 18:49 - 000000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MahjongChamp
2018-08-26 00:12 - 2014-06-11 02:28 - 000000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2018-08-26 00:12 - 2012-11-14 14:51 - 000000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DOSBox-0.72
2018-08-26 00:12 - 2012-10-26 09:35 - 000000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tarot 1.7
2018-08-26 00:12 - 2012-01-16 12:48 - 000000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2018-08-26 00:12 - 2011-12-27 18:59 - 000000000 ____D C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2018-08-26 00:11 - 2017-11-25 13:20 - 000000000 ____D C:\Users\Marek\AppData\Local\LogMeIn Hamachi
2018-08-26 00:11 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-08-26 00:11 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2018-08-26 00:11 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2018-08-26 00:11 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\spool
2018-08-26 00:11 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\oobe
2018-08-26 00:11 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-08-26 00:11 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\system32\IME
2018-08-26 00:11 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\schemas
2018-08-26 00:11 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\Resources
2018-08-26 00:11 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\ModemLogs
2018-08-26 00:11 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-08-26 00:11 - 2017-08-24 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\17082406_stream
2018-08-26 00:11 - 2017-08-24 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\17082404_stream
2018-08-26 00:11 - 2017-08-24 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\17082402_stream
2018-08-26 00:11 - 2017-08-24 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\17082400_stream
2018-08-26 00:11 - 2017-08-23 19:06 - 000000000 ____D C:\WINDOWS\SysWOW64\17082312_stream
2018-08-26 00:11 - 2016-03-20 20:41 - 000000000 ____D C:\WINDOWS\SysWOW64\x64
2018-08-26 00:11 - 2015-05-31 02:55 - 000000000 ____D C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2018-08-26 00:11 - 2014-11-23 11:19 - 000000000 ____D C:\WINDOWS\SysWOW64\vbox
2018-08-26 00:11 - 2014-11-23 11:19 - 000000000 ____D C:\WINDOWS\system32\vbox
2018-08-26 00:11 - 2013-10-13 17:36 - 000000000 ____D C:\WINDOWS\SysWOW64\xlive
2018-08-26 00:11 - 2013-05-01 04:06 - 000000000 ____D C:\WINDOWS\SysWOW64\Adobe
2018-08-26 00:11 - 2011-07-21 15:31 - 000000000 ____D C:\WINDOWS\tr
2018-08-26 00:11 - 2011-07-21 15:31 - 000000000 ____D C:\WINDOWS\th
2018-08-26 00:11 - 2011-07-21 15:31 - 000000000 ____D C:\WINDOWS\sv
2018-08-26 00:11 - 2011-07-21 15:31 - 000000000 ____D C:\WINDOWS\sl
2018-08-26 00:11 - 2011-07-21 15:31 - 000000000 ____D C:\WINDOWS\sk
2018-08-26 00:11 - 2011-07-21 15:31 - 000000000 ____D C:\WINDOWS\ru
2018-08-26 00:11 - 2011-07-21 15:30 - 000000000 ____D C:\WINDOWS\ro
2018-08-26 00:11 - 2011-07-21 15:30 - 000000000 ____D C:\WINDOWS\pl
2018-08-26 00:11 - 2011-07-21 15:30 - 000000000 ____D C:\WINDOWS\no
2018-08-26 00:11 - 2011-07-21 15:30 - 000000000 ____D C:\WINDOWS\nl
2018-08-26 00:11 - 2011-07-21 15:30 - 000000000 ____D C:\WINDOWS\it
2018-08-26 00:11 - 2011-07-21 15:18 - 000000000 ____D C:\WINDOWS\oem
2018-08-26 00:11 - 2011-07-21 14:37 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2018-08-26 00:10 - 2018-07-28 19:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MKVToolNix
2018-08-26 00:10 - 2018-07-28 18:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AoA Audio Extractor
2018-08-26 00:10 - 2018-07-04 19:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Subliminal Flash Full
2018-08-26 00:10 - 2018-05-26 00:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2018-08-26 00:10 - 2018-04-26 00:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Warcraft II (Wargus)
2018-08-26 00:10 - 2018-04-26 00:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Warcraft II (Wargus 64-bit)
2018-08-26 00:10 - 2018-02-16 11:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenTTD
2018-08-26 00:10 - 2017-12-18 11:40 - 000000000 ___HD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\~Spyware Terminator 2015
2018-08-26 00:10 - 2017-12-12 17:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tag&Rename
2018-08-26 00:10 - 2017-12-03 22:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Settlers IV GOLD [GOG.com]
2018-08-26 00:10 - 2017-11-25 17:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tunngle
2018-08-26 00:10 - 2017-11-25 16:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2018-08-26 00:10 - 2017-11-11 00:46 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.4
2018-08-26 00:10 - 2017-10-27 14:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune
2018-08-26 00:10 - 2017-10-15 11:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Voobly
2018-08-26 00:10 - 2017-10-05 20:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2018-08-26 00:10 - 2017-10-05 18:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
2018-08-26 00:10 - 2017-10-03 14:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedCommander 16 (x64)
2018-08-26 00:10 - 2017-09-29 15:46 - 000000000 __SHD C:\Program Files\Windows Sidebar
2018-08-26 00:10 - 2017-09-29 15:46 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2018-08-26 00:10 - 2017-09-29 15:46 - 000000000 __RHD C:\Users\Public\Libraries
2018-08-26 00:10 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\Help
2018-08-26 00:10 - 2017-09-29 15:46 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2018-08-26 00:10 - 2017-09-22 08:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YANG (Yet Another Netplay Guider)
2018-08-26 00:10 - 2017-09-16 16:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DjVu Viewer
2018-08-26 00:10 - 2017-07-22 18:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle Chess [GOG.com]
2018-08-26 00:10 - 2017-07-13 16:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOM
2018-08-26 00:10 - 2017-07-11 14:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Song Downloader
2018-08-26 00:10 - 2017-07-08 18:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ultra AVI Converter
2018-08-26 00:10 - 2017-07-06 14:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZDaemon
2018-08-26 00:10 - 2017-04-27 00:37 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2018-08-26 00:10 - 2017-04-27 00:37 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2018-08-26 00:10 - 2017-04-25 17:09 - 000000000 ____D C:\Program Files\UNP

darkmarek
Level 1.5
Level 1.5
Příspěvky: 131
Registrován: srpen 18
Pohlaví: Muž
Stav:
Offline

Re: Prosím o pomoc zatížený disk a podezření na viry

Příspěvekod darkmarek » 30 srp 2018 20:42

2018-08-26 00:10 - 2017-04-18 13:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ManyCam
2018-08-26 00:10 - 2017-03-16 15:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2018-08-26 00:10 - 2017-02-21 23:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2018-08-26 00:10 - 2016-12-10 13:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grand Prix Circuit
2018-08-26 00:10 - 2016-11-06 16:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2018-08-26 00:10 - 2016-10-17 05:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vlak (DOSBox emulace)
2018-08-26 00:10 - 2016-09-08 19:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Czech Soccer Manager
2018-08-26 00:10 - 2016-08-30 13:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DX-Ball 2
2018-08-26 00:10 - 2016-08-23 03:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Street Wars
2018-08-26 00:10 - 2016-08-04 20:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Warcraft III - Gold Edition
2018-08-26 00:10 - 2016-07-25 20:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rise of the Triad [GOG.com]
2018-08-26 00:10 - 2016-07-03 05:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fallout Tycoon
2018-08-26 00:10 - 2016-07-01 15:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2018-08-26 00:10 - 2016-06-20 23:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Software Updater Beta
2018-08-26 00:10 - 2016-05-23 20:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XLS Reader
2018-08-26 00:10 - 2016-03-30 20:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle Chess 4000 [GOG.com]
2018-08-26 00:10 - 2016-03-30 17:39 - 000000000 ____D C:\Users\Marek\AppData\Local\TileDataLayer
2018-08-26 00:10 - 2016-02-25 18:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnView
2018-08-26 00:10 - 2016-02-14 19:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Prince of Persia
2018-08-26 00:10 - 2016-01-23 05:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2018-08-26 00:10 - 2016-01-20 20:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SolSuite - Solitaire Card Games
2018-08-26 00:10 - 2015-11-30 17:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gigant Checkers
2018-08-26 00:10 - 2015-11-01 15:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mariáš 3.2
2018-08-26 00:10 - 2015-09-17 13:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tropico 1.2FinalCz
2018-08-26 00:10 - 2015-08-19 19:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dune II
2018-08-26 00:10 - 2015-08-19 15:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dyna Blaster
2018-08-26 00:10 - 2015-05-16 15:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2018-08-26 00:10 - 2015-02-28 22:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aTube Catcher
2018-08-26 00:10 - 2015-02-13 13:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DOSBox
2018-08-26 00:10 - 2014-08-27 11:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Real War
2018-08-26 00:10 - 2014-08-18 22:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2018-08-26 00:10 - 2014-08-11 18:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HellSpy Klient
2018-08-26 00:10 - 2014-07-08 19:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2018-08-26 00:10 - 2014-06-21 01:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVBViewer Demo
2018-08-26 00:10 - 2014-06-15 19:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MahJong Suite
2018-08-26 00:10 - 2014-06-15 18:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MahjongChamp
2018-08-26 00:10 - 2014-05-18 12:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
2018-08-26 00:10 - 2014-01-20 13:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III
2018-08-26 00:10 - 2013-12-08 03:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2018-08-26 00:10 - 2013-11-17 00:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MusicJet
2018-08-26 00:10 - 2013-10-22 17:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories
2018-08-26 00:10 - 2013-10-18 09:03 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Crystal Eye Webcam
2018-08-26 00:10 - 2013-10-14 20:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blue Byte
2018-08-26 00:10 - 2013-10-13 17:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace
2018-08-26 00:10 - 2013-10-10 23:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
2018-08-26 00:10 - 2013-08-01 20:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tropico2Demo
2018-08-26 00:10 - 2013-08-01 19:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tropico Demo
2018-08-26 00:10 - 2013-07-16 07:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcaniA - Gothic 4 Demo
2018-08-26 00:10 - 2013-06-09 17:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vizzed Retro Game Room
2018-08-26 00:10 - 2013-05-14 02:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2018-08-26 00:10 - 2013-05-08 13:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VobSub
2018-08-26 00:10 - 2013-05-01 02:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Packed Chess Free
2018-08-26 00:10 - 2013-04-12 10:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Softendo.com
2018-08-26 00:10 - 2013-02-23 22:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Seek and Destroy
2018-08-26 00:10 - 2013-02-23 21:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Super Mario Bros
2018-08-26 00:10 - 2012-11-14 22:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crawler lišta
2018-08-26 00:10 - 2012-11-14 22:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spyware Terminator 2012
2018-08-26 00:10 - 2012-11-14 14:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DOSBox-0.73
2018-08-26 00:10 - 2012-11-14 04:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uplay-Istrip
2018-08-26 00:10 - 2012-10-06 03:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\zBlood (ZDoom engine)
2018-08-26 00:10 - 2012-10-05 02:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rise of The Triad
2018-08-26 00:10 - 2012-07-04 23:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dune 2 Special
2018-08-26 00:10 - 2012-05-15 23:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2018-08-26 00:10 - 2012-04-13 22:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2018-08-26 00:10 - 2012-02-06 20:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\D-Fend Reloaded
2018-08-26 00:10 - 2012-01-16 12:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2018-08-26 00:10 - 2012-01-09 14:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dune II (Dune Legacy)
2018-08-26 00:10 - 2011-12-27 11:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DOSBox-0.74
2018-08-26 00:10 - 2011-11-24 23:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AcerSystem
2018-08-26 00:10 - 2011-09-08 02:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Media Maker 9
2018-08-26 00:10 - 2011-09-08 02:27 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 9
2018-08-26 00:10 - 2011-07-21 15:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\newsXpresso
2018-08-26 00:10 - 2011-07-21 15:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Backup Manager
2018-08-26 00:10 - 2011-07-21 15:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Online Backup
2018-08-26 00:10 - 2011-07-21 15:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EgisTec
2018-08-26 00:10 - 2011-07-21 15:31 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2018-08-26 00:10 - 2011-07-21 15:31 - 000000000 ____D C:\WINDOWS\eu
2018-08-26 00:10 - 2011-07-21 15:31 - 000000000 ____D C:\WINDOWS\ca
2018-08-26 00:10 - 2011-07-21 15:30 - 000000000 ____D C:\WINDOWS\hu
2018-08-26 00:10 - 2011-07-21 15:30 - 000000000 ____D C:\WINDOWS\hr
2018-08-26 00:10 - 2011-07-21 15:30 - 000000000 ____D C:\WINDOWS\he
2018-08-26 00:10 - 2011-07-21 15:30 - 000000000 ____D C:\WINDOWS\fr
2018-08-26 00:10 - 2011-07-21 15:30 - 000000000 ____D C:\WINDOWS\fi
2018-08-26 00:10 - 2011-07-21 15:30 - 000000000 ____D C:\WINDOWS\es
2018-08-26 00:10 - 2011-07-21 15:29 - 000000000 ____D C:\WINDOWS\en
2018-08-26 00:10 - 2011-07-21 15:29 - 000000000 ____D C:\WINDOWS\el
2018-08-26 00:10 - 2011-07-21 15:29 - 000000000 ____D C:\WINDOWS\de
2018-08-26 00:10 - 2011-07-21 15:29 - 000000000 ____D C:\WINDOWS\da
2018-08-26 00:10 - 2011-07-21 15:29 - 000000000 ____D C:\WINDOWS\cs
2018-08-26 00:10 - 2011-07-21 15:29 - 000000000 ____D C:\WINDOWS\bg
2018-08-26 00:10 - 2011-07-21 15:29 - 000000000 ____D C:\WINDOWS\ar
2018-08-26 00:10 - 2011-07-21 15:18 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2018-08-26 00:10 - 2011-07-21 14:35 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2018-08-26 00:10 - 2009-07-14 07:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2018-08-26 00:07 - 2017-07-16 16:18 - 000000000 ____D C:\Users\DefaultAppPool\AppData\Local\TileDataLayer
2018-08-25 23:25 - 2018-04-12 18:55 - 000000000 ___HD C:\$WINDOWS.~BT
2018-08-25 22:21 - 2017-12-24 04:22 - 000000000 ___RD C:\Users\Marek\3D Objects
2018-08-25 22:21 - 2013-04-05 23:06 - 000000000 ___RD C:\Users\Marek\Virtual Machines
2018-08-25 22:19 - 2018-05-31 09:13 - 000002539 _____ C:\Users\Marek\Desktop\Avast Secure Browser.lnk
2018-08-25 22:13 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\Registration
2018-08-25 22:05 - 2016-03-30 17:25 - 000023020 _____ C:\WINDOWS\system32\emptyregdb.dat
2018-08-25 21:58 - 2018-05-29 19:08 - 000002502 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2018-08-25 21:37 - 2015-07-18 00:34 - 000000000 ____D C:\temp
2018-08-25 20:10 - 2017-12-15 10:34 - 000000000 ___DC C:\WINDOWS\Panther
2018-08-25 19:57 - 2017-12-24 04:07 - 000026673 _____ C:\WINDOWS\diagwrn.xml
2018-08-25 19:57 - 2017-12-24 04:07 - 000026673 _____ C:\WINDOWS\diagerr.xml
2018-08-25 18:47 - 2017-09-29 15:46 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2018-08-25 18:46 - 2018-07-22 17:07 - 000467232 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2018-08-25 18:46 - 2018-07-22 17:07 - 000381560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2018-08-25 18:46 - 2018-07-22 17:07 - 000214800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2018-08-25 18:46 - 2018-07-22 17:07 - 000199712 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2018-08-25 18:46 - 2018-07-22 17:07 - 000163272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2018-08-25 18:46 - 2018-07-22 17:07 - 000111864 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2018-08-25 18:46 - 2018-07-22 17:07 - 000046968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2018-08-25 18:45 - 2018-07-22 17:07 - 001027720 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2018-08-25 18:45 - 2018-07-22 17:07 - 000346664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbloga.sys
2018-08-25 18:45 - 2018-07-22 17:07 - 000249016 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2018-08-25 18:45 - 2018-07-22 17:07 - 000229384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
2018-08-25 18:45 - 2018-07-22 17:07 - 000201320 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsha.sys
2018-08-25 18:45 - 2018-07-22 17:07 - 000059568 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniva.sys
2018-08-25 14:13 - 2015-08-30 06:18 - 000000008 _____ C:\ProgramData\ntuser.pol
2018-08-25 13:34 - 2009-07-14 05:20 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
2018-08-25 05:31 - 2017-09-29 10:45 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2018-08-24 11:47 - 2016-08-19 21:31 - 000000000 _____ C:\WINDOWS\SysWOW64\last.dump
2018-08-23 08:17 - 2015-07-26 18:40 - 000000000 ____D C:\The KMPlayer
2018-08-19 20:22 - 2017-12-24 03:38 - 000000000 ____D C:\Users\Marek\AppData\Local\Packages
2018-08-19 20:17 - 2018-06-27 08:43 - 000002241 _____ C:\Users\Marek\Desktop\TIDAL.lnk
2018-08-17 19:43 - 2018-07-12 11:34 - 000000000 ____D C:\Program Files\rempl
2018-08-17 09:58 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\rescache
2018-08-16 11:07 - 2018-06-10 11:06 - 000000000 ___RD C:\Users\Marek\Desktop\zástupci dány v roce 2018
2018-08-16 11:07 - 2016-03-21 23:13 - 000000000 ____D C:\Program Files (x86)\PicosmosTools
2018-08-15 22:43 - 2017-12-24 04:13 - 000003542 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2018-08-15 22:42 - 2014-04-22 18:46 - 000000000 ____D C:\ProgramData\IObit
2018-08-15 20:05 - 2017-11-15 13:51 - 006334288 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2018-08-15 20:05 - 2017-11-15 13:51 - 000025080 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2018-08-15 13:16 - 2016-08-11 18:41 - 000000000 ____D C:\Program Files (x86)\PDF24
2018-08-15 00:21 - 2016-02-13 15:12 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-08-15 00:15 - 2017-12-24 03:24 - 000295240 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-08-15 00:12 - 2017-09-29 15:46 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2018-08-15 00:12 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\TextInput
2018-08-15 00:12 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2018-08-15 00:11 - 2017-09-29 15:46 - 000000000 ___SD C:\WINDOWS\system32\F12
2018-08-15 00:11 - 2017-09-29 15:46 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2018-08-15 00:11 - 2017-09-29 15:46 - 000000000 ___RD C:\WINDOWS\PrintDialog
2018-08-15 00:11 - 2017-09-29 15:46 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2018-08-15 00:11 - 2017-09-29 15:46 - 000000000 ____D C:\WINDOWS\ShellExperiences
2018-08-15 00:11 - 2017-09-29 10:45 - 000000000 ____D C:\WINDOWS\system32\Dism
2018-08-14 23:53 - 2018-07-02 11:59 - 000004640 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-08-14 23:53 - 2017-12-24 04:13 - 000004604 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2018-08-14 21:56 - 2013-07-18 02:23 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-08-14 21:55 - 2017-04-17 22:41 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-08-14 21:46 - 2011-12-26 18:47 - 137343192 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-08-14 20:30 - 2015-09-12 19:37 - 000001878 _____ C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2018-08-14 14:17 - 2016-11-25 01:34 - 000000000 ____D C:\Users\Marek\AppData\LocalLow\Mozilla
2018-08-14 12:55 - 2014-04-20 20:10 - 000000000 ____D C:\Users\Marek\AppData\Roaming\vlc
2018-08-13 09:13 - 2017-12-24 04:13 - 000003362 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2367062692-840817020-3150738865-1001
2018-08-13 09:13 - 2016-03-30 17:52 - 000002429 _____ C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-08-13 09:13 - 2016-03-30 17:52 - 000000000 __RDL C:\Users\Marek\OneDrive
2018-08-12 09:18 - 2012-01-16 12:35 - 000000000 ____D C:\Program Files (x86)\Steam
2018-08-12 07:59 - 2018-06-20 17:20 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2018-08-10 22:19 - 2012-05-24 22:23 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-08-10 21:30 - 2016-11-24 15:11 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-08-10 21:30 - 2012-05-24 22:23 - 000001163 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-08-10 21:20 - 2018-07-11 10:38 - 000000000 ____D C:\ProgramData\Packages
2018-08-06 17:31 - 2018-07-11 10:15 - 000836480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-08-06 17:31 - 2018-07-11 10:15 - 000181120 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

==================== Files in the root of some directories =======

2006-01-29 20:50 - 2006-01-29 20:50 - 000983040 _____ () C:\Program Files (x86)\Dostihy 3000 Deluxe.exe
2005-12-11 20:53 - 2005-12-11 20:53 - 004781974 _____ () C:\Program Files (x86)\intro.wmv
2005-12-19 15:42 - 2005-12-19 15:42 - 000001100 _____ () C:\Program Files (x86)\licence.txt
2014-05-02 16:40 - 2014-05-16 15:37 - 000000000 _____ () C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
2015-10-21 16:38 - 2015-10-21 16:38 - 118294111 _____ () C:\Program Files (x86)\openoffice1.cab
2015-10-21 16:36 - 2015-10-21 16:36 - 002306048 _____ () C:\Program Files (x86)\openoffice412.msi
2015-10-21 16:36 - 2015-10-21 16:36 - 000478720 _____ () C:\Program Files (x86)\setup.exe
2015-10-21 16:36 - 2015-10-21 16:36 - 000000279 _____ () C:\Program Files (x86)\setup.ini
2012-06-19 20:13 - 2012-06-19 20:13 - 000005546 _____ () C:\Program Files (x86)\setup.log
2013-09-23 20:39 - 2013-09-23 20:39 - 000003584 _____ () C:\Users\Marek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-08-20 22:30

==================== End of FRST.txt ============================

darkmarek
Level 1.5
Level 1.5
Příspěvky: 131
Registrován: srpen 18
Pohlaví: Muž
Stav:
Offline

Re: Prosím o pomoc zatížený disk a podezření na viry

Příspěvekod darkmarek » 30 srp 2018 20:50

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23.08.2018
Ran by Marek (30-08-2018 20:18:55)
Running from C:\Users\Marek\Desktop
Windows 10 Home Version 1709 16299.611 (X64) (2017-12-24 02:17:00)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2367062692-840817020-3150738865-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2367062692-840817020-3150738865-503 - Limited - Disabled)
Guest (S-1-5-21-2367062692-840817020-3150738865-501 - Limited - Disabled) => C:\Users\Guest
HomeGroupUser$ (S-1-5-21-2367062692-840817020-3150738865-1003 - Limited - Enabled)
Marek (S-1-5-21-2367062692-840817020-3150738865-1001 - Administrator - Enabled) => C:\Users\Marek
WDAGUtilityAccount (S-1-5-21-2367062692-840817020-3150738865-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\uTorrent) (Version: 3.5.0.43804 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 18.011.20058 - Adobe Systems Incorporated)
Adobe Flash Player 30 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 30.0.0.154 - Adobe Systems Incorporated)
Adobe Flash Player 30 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 30.0.0.154 - Adobe Systems Incorporated)
Age of Empires II - the Conquerors WideScreen Patcher (HKLM-x32\...\{BA2F3EBC-FE07-4AB5-B906-14DF2C74C523}) (Version: 1.0.40 - Boekabart)
Akamai NetSession Interface (HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\Akamai) (Version: - Akamai Technologies, Inc)
Aktualizace NVIDIA 31.1.10.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.1.10.0 - NVIDIA Corporation) Hidden
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 8.100.2020.116 - Alps Electric)
AoA Audio Extractor 1.0 (HKLM-x32\...\AoA Audio Extractor_is1) (Version: - AoAMedia.Com)
Apple Mobile Device Support (HKLM\...\{C29B636B-9015-4ED1-A12F-6375A337F23B}) (Version: 11.4.1.46 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
aTube Catcher (HKLM-x32\...\aTube Catcher) (Version: 2.9.4272 - DsNET Corp)
aTube Catcher verze 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Avast Cleanup Premium (HKLM-x32\...\{075CC190-59EE-499F-828B-0B5C098C8C15}_is1) (Version: 18.1.5273 - AVAST Software)
Avast Driver Updater (HKLM-x32\...\{984D8789-07A6-4CD8-9766-35408C67395D}) (Version: 2.4.0 - AVAST Software) Hidden
Avast Driver Updater (HKLM-x32\...\Avast Driver Updater) (Version: 2.4.0 - AVAST Software)
Avast Pro Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 18.6.2349 - AVAST Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 68.0.746.59 - AVAST Software)
Battle Chess (HKLM-x32\...\1207663033_is1) (Version: 2.1.0.26 - GOG.com)
Battle Chess 4000 (HKLM-x32\...\1207663053_is1) (Version: 2.1.0.26 - GOG.com)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CrystalDiskInfo 7.7.0 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.7.0 - Crystal Dew World)
Czech Soccer Manager (HKLM-x32\...\Czech Soccer Manager) (Version: - )
Čeština do Dungeon Siege (HKLM-x32\...\Čeština do Dungeon Siege) (Version: - )
Češtiny-Tropico v 1.2Final Cz (HKLM-x32\...\Češtiny-Tropico v 1.2Final Cz ) (Version: - )
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.6.0.0283 - Disc Soft Ltd)
Dáma 2004 (HKLM-x32\...\Dáma 2004 ) (Version: - )
Deezer (HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\DeezerDrive) (Version: 1.0.769.677 - Deezer)
Deezer 0.6.2 (only current user) (HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\67490f87-0893-5593-ae76-b1e5d0acd13f) (Version: 0.6.2 - Deezer)
Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform)
Democracy3LanguageSelector (HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\6a6d0782c3f0afc2) (Version: 1.0.0.7 - Democracy3LanguageSelector)
D-Fend Reloaded 1.4.0 (Odinstalovat) (HKLM-x32\...\D-Fend Reloaded) (Version: 1.4.4 - Alexander Herzog)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 391.35 - NVIDIA Corporation) Hidden
DjVu Viewer (HKLM-x32\...\{3A959BCB-643A-462F-A692-5B7FE4CE35AC}_is1) (Version: - djvuviewer.com)
Dune II (Dune Legacy) version 0.96.3 (HKLM-x32\...\{2AF26FFE-D35E-4B98-8C58-902EAB44C2A5}_is1) (Version: 0.96.3 - Dune Legacy Project)
Dune II (engine Dune Legacy 0.96.2) (HKLM-x32\...\Dune II (engine Dune Legacy 0.96.2)) (Version: - )
Dune II version 1.0 (HKLM-x32\...\{6D35722E-5A36-477A-A0A7-B4AA865F605F}_is1) (Version: 1.0 - )
Dune Legacy (HKLM\...\Dune Legacy) (Version: - )
DX-Ball 1.09 (HKLM-x32\...\DX-Ball 1.09) (Version: - )
DX-Ball 2 (HKLM-x32\...\DX-Ball 2) (Version: - )
Dyna Blaster version 1.0 (HKLM-x32\...\{3ECEDB80-798E-4BAD-A725-C69C3A4094C2}_is1) (Version: 1.0 - )
EBook Codec 1.0.0.0 (HKLM-x32\...\EBookCodec) (Version: 1.0.0.0 - Free Time)
ETDWare PS/2-x64 7.0.6.5_WHQL (HKLM\...\Elantech) (Version: 7.0.6.5 - ELAN Microelectronics Corp.)
Fallout Tycoon - knihovny (HKLM-x32\...\Fallout Tycoon_is1) (Version: - Vault - Tec)
Flash Drive Tester v1.14 (HKLM-x32\...\{272C8DEE-F54F-406C-9AA6-B4DE2985A47C}) (Version: 1.14 - Virtual Console)
ForceBindIP (HKLM-x32\...\ForceBindIP) (Version: - )
FormatFactory 4.3.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.3.0.0 - Free Time)
Fotogalerija Windows Live (HKLM-x32\...\{E59969EA-3B5B-4B24-8B94-43842A7FBFE9}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galeria de Fotografias do Windows Live (HKLM-x32\...\{0EC0B576-90F9-43C3-8FAD-A4902DF4B8F4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (HKLM-x32\...\{E85A4EFC-82F2-4CEE-8A8E-62FDAD353A66}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galeria fotogràfica del Windows Live (HKLM-x32\...\{4736B0ED-F6A1-48EC-A1B7-C053027648F1}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galeria fotografii usługi Windows Live (HKLM-x32\...\{CB3F59BB-7858-41A1-A7EA-4B8A6FC7D431}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (HKLM-x32\...\{488F0347-C4A7-4374-91A7-30818BEDA710}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie foto Windows Live (HKLM-x32\...\{CB66242D-12B1-4494-82D2-6F53A7E024A3}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
GameRanger (HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\GameRanger) (Version: - GameRanger Technologies)
Gigant 8 (HKLM-x32\...\{7C768CF3-A1A8-4202-A5D4-E877135E8016}_is1) (Version: - P@M soft)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
GOG.com The Settlers 4 GOLD (HKLM\...\{ff2cad6c-eb68-4e98-88d7-49887440affb}.sdb) (Version: - )
GOM Player (HKLM-x32\...\GOM Player) (Version: 2.3.32.5291 - GOM & Company)
Google Earth Pro (HKLM-x32\...\{BF354C72-AC4C-4A87-8D42-B089862BAE58}) (Version: 7.3.2.5491 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 68.0.3440.106 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Grand Prix Circuit version 1.0 (HKLM-x32\...\{857137D5-4D20-404F-AC94-75B2435D5EBF}_is1) (Version: 1.0 - )
HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software)
Chess 2020 (HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\Chess2020) (Version: 2020.7 - Filip Hofer)
ICQ (verze 10.0.12161) (HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\icq.desktop) (Version: 10.0.12161 - ICQ)
iTunes (HKLM\...\{9D0D2A8B-7E7B-4D88-8D50-24286ED6A5EB}) (Version: 12.5.5.5 - Apple Inc.)
Java 8 Update 101 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
Java 8 Update 111 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Java 8 Update 121 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
Java 8 Update 141 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180141F0}) (Version: 8.0.1410.15 - Oracle Corporation)
Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.15 - Oracle Corporation)
jose (HKLM-x32\...\jose-chess) (Version: 1.3 - )
Kaspersky Software Updater Beta (HKLM-x32\...\{94C8D443-1D07-4E6D-A9EB-FDBA45A839D8}) (Version: 1.5.2.228 - Kaspersky Lab) Hidden
Kaspersky Software Updater Beta (HKLM-x32\...\InstallWIX_{94C8D443-1D07-4E6D-A9EB-FDBA45A839D8}) (Version: 1.5.2.228 - Kaspersky Lab)
K-Lite Codec Pack 6.0.4 (Basic) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 6.0.4 - )
KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 4.1.2.2 - PandoraTV)
LogMeIn Hamachi (HKLM-x32\...\{BE82D2D7-6CA2-43B3-8C22-CCF6405806E7}) (Version: 2.2.0.579 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.579 - LogMeIn, Inc.)
Malwarebytes verze 3.5.1.2522 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes)
ManyCam 5.7.2 (HKLM-x32\...\ManyCam) (Version: 5.7.2 - Visicom Media Inc.)
Mariáš 3.2 (HKLM-x32\...\{E91C4E61-DA0E-4A46-AEA6-512BB3698A3F}) (Version: 3.2.0 - Ganttsoft)
Microsoft Age of Empires (HKLM-x32\...\Age of Empires) (Version: - )
Microsoft Age of Empires Expansion (HKLM-x32\...\Age of Empires Expansion 1.0) (Version: - )
Microsoft Age of Empires Expansion Trial (HKLM-x32\...\Age of Empires Expansion Trial 1.00) (Version: - )
Microsoft Age of Empires II: The Conquerors Expansion (HKLM-x32\...\Age of Empires II: The Conquerors Expansion 1.0) (Version: - )
Microsoft Age of Empires Trial (HKLM-x32\...\AOE Trial) (Version: - )
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\OneDriveSetup.exe) (Version: 18.131.0701.0007 - Microsoft Corporation)
Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0405-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
Microsoft_VC100_CRT_x86 (HKLM-x32\...\{6FDDB201-2CA0-42BD-973F-7B2C4A61EA3F}) (Version: 1.0.0 - Microsoft)
MKVToolNix 25.0.0 (64-bit) (HKLM-x32\...\MKVToolNix) (Version: 25.0.0 - Moritz Bunkus)
Mozilla Firefox 61.0.2 (x64 cs) (HKLM\...\Mozilla Firefox 61.0.2 (x64 cs)) (Version: 61.0.2 - Mozilla)
MusicJet (HKLM-x32\...\{683315B1-68E0-4A1B-9397-509C3EB911D2}) (Version: 1.1.0.0 - MusicJet) Hidden
MusicJet (HKLM-x32\...\MusicJet) (Version: 1.1.0.0 - MusicJet)
NVIDIA GeForce Experience 3.13.1.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.13.1.30 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 391.35 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.1.4 (HKLM-x32\...\{6CA4F7F3-B909-4292-B791-AAA959155DE0}) (Version: 4.14.9788 - Apache Software Foundation)
OpenTTD 1.7.2 (HKLM-x32\...\OpenTTD) (Version: 1.7.2 - OpenTTD)
ophcrack 3.6.0 (HKLM\...\ophcrack) (Version: 3.6.0 - OS Objectif Sécurité SA)
Oracle VM VirtualBox 5.0.24 (HKLM\...\{BA15D402-19CA-493E-958B-170A0C446F25}) (Version: 5.0.24 - Oracle Corporation)
Ovládací panel NVIDIA 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 391.35 - NVIDIA Corporation) Hidden
PDF24 Creator 8.5.0 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
PicosmosTools 2.0.0.0 (HKLM-x32\...\PicosmosTools) (Version: 2.0.0.0 - Free Time)
Poczta usługi Windows Live (HKLM-x32\...\{64376910-1860-4CEF-8B34-AA5D205FC5F1}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{E5347310-C82F-4833-AA36-8D11E5A8A86A}) (Version: 6.6 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{D745E014-74DD-43A3-98DF-E7D38164B681}) (Version: 6.6 - Apple Inc.)
Podstawowe programy Windows Live (HKLM-x32\...\{7A9D47BA-6D50-4087-866F-0800D8B89383}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22532 - Microsoft Corporation)
Pošta Windows Live (HKLM-x32\...\{7BA19818-F717-4DFB-BC11-FAF17B2B8AEE}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
PowerISO (HKLM-x32\...\PowerISO) (Version: 6.6 - Power Software Ltd)
Prince of Persia version 1.0 (HKLM-x32\...\{943E7C4B-3DFA-4AD9-BFB1-5C5617C5D5B5}_is1) (Version: 1.0 - )
Prostředí Windows XP Mode (HKLM\...\{1374CC63-B520-4f3f-98E8-E9020BF01CFF}) (Version: 1.3.7600.16422 - Microsoft Corporation)
Raccolta foto di Windows Live (HKLM-x32\...\{ED16B700-D91F-44B0-867C-7EB5253CA38D}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8514 - Realtek Semiconductor Corp.)
Revo Uninstaller 2.0.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.5 - VS Revo Group, Ltd.)
Rise of the Triad (HKLM-x32\...\GOGPACKROTT_is1) (Version: 2.0.0.5 - GOG.com)
Rise of the Triad (WinRottGL 1.64 emulation) (HKLM-x32\...\Rise of the Triad (WinRottGL 1.64 emulation)) (Version: - )
RogueKiller version 12.12.32.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12.12.32.0 - Adlice Software)
Settlers IV (HKLM-x32\...\{80EC6E5A-F710-4BE2-937E-6DA5DC03BFE8}) (Version: 1.00.000 - )
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.)
SolSuite 2017 v17.6 (HKLM-x32\...\SolSuite_is1) (Version: 17.6 - TreeCardGames)
Songr (HKLM-x32\...\Songr) (Version: 1.9 - Xamasoft)
Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.6.1 - Sophos Limited)
SpeedCommander 16 (x64) (HKLM\...\SpeedCommander 16 (x64)) (Version: 16.20.8300 - SWE Sven Ritter)
Spotify (HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\Spotify) (Version: 1.0.87.491.ge2a121fc - Spotify AB)
Stratagus (HKLM-x32\...\Stratagus) (Version: 2.3.0 - )
Street Wars (HKLM-x32\...\Street Wars) (Version: - )
Subliminal Flash Full 3.6 (HKLM-x32\...\Subliminal Flash Full_is1) (Version: - Ded Pyhto, Inc.)
Super Mario 3 : Mario Worker (HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\Super Mario 3 : Mario Worker) (Version: - )
Tag&Rename 3.9.14 (HKLM-x32\...\Tag&Rename_is1) (Version: 3.9.14 - Softpointer Inc)
Tarot 1.7 (HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\Tarot 1.7) (Version: - )
The Settlers IV (HKLM-x32\...\S4Uninst) (Version: - )
The Settlers IV GOLD (HKLM-x32\...\GOGPACKSETTLERS4GOLD_is1) (Version: 2.0.0.4 - GOG.com)
TIDAL (HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\TIDAL) (Version: 2.1.23 - TIDAL Music AS)
Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.8.9 - Tunngle.net GmbH)
Ultra AVI Converter 6.4.1202 (HKLM-x32\...\Ultra AVI Converter_is1) (Version: - Aone Software)
UPatch HD 1.1 (HKLM-x32\...\{90342E10-6EF6-4070-9562-1009F581F8FE}_is1) (Version: 1.1.0.4 - aoe_scout)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{A6F2ADC4-12C4-41E8-B90B-3BE018F5787C}) (Version: 2.48.0.0 - Microsoft Corporation)
Update Installer for WildTangent Games App (HKLM-x32\...\{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App) (Version: - WildTangent) Hidden
UpdateAssistant (HKLM\...\{52C1DD03-104E-4AC6-9DC6-21D585721ED1}) (Version: 1.19.0.0 - Microsoft Corporation) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 17.0 - Ubisoft)
Vlak 1.0 (DOSBox 0.74 emulace) (HKLM-x32\...\Vlak 1.0 (DOSBox 0.74 emulace)) (Version: - )
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
Voobly (HKLM-x32\...\Voobly_is1) (Version: Voobly - Voobly)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Warcraft II (modification Wargus 2.2.7 for Stratagus 2.2.7) for 64-bit Windows (HKLM-x32\...\Warcraft II (modification Wargus 2.2.7 for Stratagus 2.2.7) for 64-bit Windows) (Version: - )
Warcraft II (Wargus) version 2.3 (HKLM-x32\...\{1AD805A3-5DE0-4FF8-B712-741709CD53C1}_is1) (Version: 2.3 - )
Warcraft III - Gold Edition verze 1.26 (HKLM-x32\...\{1DD8BB83-A075-4F9B-9F24-9383BC647D65}_is1) (Version: 1.26 - )
Wargus (HKLM-x32\...\Wargus) (Version: 2.3 - )
Weeny Free Word to PDF Converter 2.0 (HKLM-x32\...\Weeny Free Word to PDF Converter_is1) (Version: - Weeny Software)
WhoCrashed 6.01 (HKLM\...\WhoCrashed_is1) (Version: - Resplendence Software Projects Sp.)
WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-acer) (Version: 4.1.1.30 - WildTangent)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Media Player 64-bit Plug-in Fix (HKLM\...\{00a8ce68-cb2e-4652-aecd-c05c0d9d53a7}.sdb) (Version: - )
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Windows Media Player Plus! 2.6 (HKLM-x32\...\{67E4EF06-E0D6-42E0-A2BA-67199B0143FB}_is1) (Version: 2.6 - BM-productions)
WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
Xilisoft Download YouTube Video (HKLM-x32\...\Xilisoft Download YouTube Video) (Version: 5.1.1.20131226 - Xilisoft)
XLS Reader (HKLM-x32\...\{30D6D257-BE4B-48F2-8D9E-E787A52A0738}_is1) (Version: 1.0 - )
XnView 2.35 (HKLM-x32\...\XnView_is1) (Version: 2.35 - Gougelet Pierre-e)
YANG (Yet Another Netplay Guider) (HKLM-x32\...\YANG) (Version: - )
YouTube Song Downloader (HKLM-x32\...\{4281435C-AD1D-4C8A-B9C0-3961C11EF142}_is1) (Version: 10.3 - Abelssoft)
zBlood (engine ZDoom 6.2.1) (HKLM-x32\...\zBlood (engine ZDoom 6.2.1)) (Version: - )
ZDaemon (remove only) (HKLM-x32\...\ZDaemon) (Version: - )
Zemana AntiMalware (HKLM-x32\...\{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.74.0.150 - Zemana Ltd.)
Zip Motion Block Video codec (Remove Only) (HKLM-x32\...\ZMBV) (Version: - DOSBox Team)
Συλλογή φωτογραφιών του Windows Live (HKLM-x32\...\{C00C2A91-6CB3-483F-80B3-2958E29468F1}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (HKLM-x32\...\{E83DC314-C926-4214-AD58-147691D6FE9F}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Почта Windows Live (HKLM-x32\...\{B63F0CE3-CCD0-490A-9A9C-E1A3B3A17137}) (Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden
Фотоальбом Windows Live (HKLM-x32\...\{77F69CA1-E53D-4D77-8BA3-FA07606CC851}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Фотогалерия на Windows Live (HKLM-x32\...\{4444F27C-B1A8-464E-9486-4C37BAB39A09}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
גלריית התמונות של Windows Live (HKLM-x32\...\{CE929F09-3853-4180-BD90-30764BFF7136}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
بريد Windows Live (HKLM-x32\...\{0A4C4B29-5A9D-4910-A13C-B920D5758744}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
معرض صور Windows Live (HKLM-x32\...\{FBCA06D2-4642-4F33-B20A-A7AB3F0D2E69}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{00000001-4544-5A45-4552-2D4452495645}\InprocServer32 -> C:\Users\Marek\AppData\Roaming\DeezerDrive\DeezerDrive.Native.x64.dll (Deezer)
CustomCLSID: HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{00000003-4544-5a45-4552-2d4452495645}\InprocServer32 -> c:\windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{00000004-4544-5A45-4552-2D4452495645}\InprocServer32 -> C:\Users\Marek\AppData\Roaming\DeezerDrive\DeezerDrive.Native.x64.dll (Deezer)
CustomCLSID: HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{00000005-4544-5A45-4552-2D4452495645}\InprocServer32 -> C:\Users\Marek\AppData\Roaming\DeezerDrive\DeezerDrive.Native.x64.dll (Deezer)
CustomCLSID: HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{00000006-4544-5A45-4552-2D4452495645}\InprocServer32 -> C:\Users\Marek\AppData\Roaming\DeezerDrive\DeezerDrive.Native.x64.dll (Deezer)
CustomCLSID: HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Marek\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay => No File
CustomCLSID: HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Marek\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Marek\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Marek\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Marek\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Marek\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Marek\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Marek\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-08-25] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-08-25] (AVAST Software)
ContextMenuHandlers1: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll [2018-08-25] ()
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-08-25] (AVAST Software)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2016-03-08] (Piriform Ltd)
ContextMenuHandlers1: [FormatFactoryShell] -> {A3777921-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_103.dll [2013-06-17] (Free Time)
ContextMenuHandlers1: [PicosmosShell] -> {A3888921-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\PicosmosTools\ShellEx64_100.dll [2018-05-12] (Free Time)
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2016-05-25] (Power Software Ltd)
ContextMenuHandlers1: [TagRenameShellExt] -> {B806EC81-446D-40C8-A955-315B8519E938} => C:\Program Files (x86)\TagRename\TRShell64.dll [2015-05-12] (Sofpointer Inc)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-08-25] (AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers3: [MWLIVShellExt] -> {B1B294FE-EC1E-4fef-AF68-D34CE3E38157} => C:\Program Files (x86)\EgisTec MyWinLocker\x64\MWLIVShellExt.dll [2011-04-02] (Egis Technology Inc. )
ContextMenuHandlers3: [ShredderContextMenu] -> {521065F1-DE6C-4E46-BBCB-89B0D0BE860D} => C:\Program Files (x86)\EgisTec Shredder\x64\ShredderContextMenu.dll [2011-03-29] (Egis Technology Inc.)
ContextMenuHandlers4: [FormatFactoryShell] -> {A3777921-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_103.dll [2013-06-17] (Free Time)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2016-05-25] (Power Software Ltd)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2012-11-26] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-03-24] (NVIDIA Corporation)
ContextMenuHandlers6: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll [2018-08-25] ()
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-08-25] (AVAST Software)
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2016-03-08] (Piriform Ltd)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2016-05-25] (Power Software Ltd)
ContextMenuHandlers6: [TagRenameShellExt] -> {B806EC81-446D-40C8-A955-315B8519E938} => C:\Program Files (x86)\TagRename\TRShell64.dll [2015-05-12] (Sofpointer Inc)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-04] (Alexander Roshal)

darkmarek
Level 1.5
Level 1.5
Příspěvky: 131
Registrován: srpen 18
Pohlaví: Muž
Stav:
Offline

Re: Prosím o pomoc zatížený disk a podezření na viry

Příspěvekod darkmarek » 30 srp 2018 20:52

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0007CC0C-32DC-4EC3-9D9D-81C6E1EDA3C6} - System32\Tasks\{205BCFF4-B1B8-45E5-8F8F-CE095CF5CBFC} => C:\Program Files (x86)\Webteh\BSPlayer\bsplayer.exe
Task: {0039CEC0-6B6F-466C-B52E-66B73B624C89} - System32\Tasks\{8B5667B6-2C07-4FFC-9B3E-5AB4D0E096B8} => C:\Program Files (x86)\Microsoft Games\Age of Empires\EMPIRESX.EXE [2016-11-01] (Microsoft Corporation)
Task: {00881D85-3734-460D-BB25-15F8D07401DE} - System32\Tasks\{2465FDE5-AF2E-48B5-BAE9-727D7D3DC2D8} => C:\Users\Marek\Desktop\prboom-2.5.0-win32\prboom.exe
Task: {011015B8-E9AA-41E5-805E-F63B8FBDB82F} - System32\Tasks\{2F850B78-5D2C-4578-8772-2F6FF0A37052} => C:\Users\Marek\Desktop\prince of persia the great escape\Game\win_tge.exe
Task: {0155E028-BD68-4EB4-844F-6BF8CDBD5367} - System32\Tasks\{2CA86309-E44B-4B70-B61E-85A653AC19B9} => C:\Program Files (x86)\Steam\steamapps\common\Dungeon Siege 2\DungeonSiege2.exe
Task: {0181512B-C360-4DB4-A11F-CC80C3F76F06} - System32\Tasks\{C9B207DC-75D7-491D-A852-DC4151A798B5} => C:\Users\Marek\Desktop\Acer_Camera_Suyin_v.5.2.5.3_Win7x86x64\Setup.exe
Task: {024677D2-1F1A-43B8-AA4C-58CC24D88E1E} - System32\Tasks\{2F5CD9FF-648D-494D-9FAD-C99A2A29B0AA} => C:\Users\Marek\Desktop\4D Prince\4D_PRIN.EXE
Task: {0375E74B-7796-4804-91EA-A276B8E2EA44} - System32\Tasks\{EF9EFD5B-1A16-4902-B9D5-2A0F84D7A114} => C:\Program Files (x86)\Steam\steamapps\common\Battle vs Chess\battlevschess.exe [2017-12-06] (Zuxxez Entertainment)
Task: {040783B7-5C15-4147-A9AB-6F8CF39D1729} - System32\Tasks\{531BD2FB-D008-42CD-BD06-76D407B5B684} => C:\Program Files (x86)\Warcraft 2\WAR2.EXE
Task: {06A4117A-0239-40F6-9AD5-B0ADA4BE341D} - System32\Tasks\{A1D13961-F01D-4008-9E2E-6295917322A1} => C:\Users\Marek\Downloads\MSAoE.exe [2012-01-14] ()
Task: {072EDA87-635F-4360-878B-68AA68A0612E} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {092C0DB5-EC8C-47A3-952F-2F4AF070F561} - System32\Tasks\{52621E52-B23E-44B5-AD98-90058B787936} => C:\Program Files (x86)\Steam\steamapps\common\Dungeon Siege 2\DungeonSiege2.exe
Task: {0AD1C948-5A6D-4EE3-B0D8-06759BA40EAF} - System32\Tasks\{E504D950-1284-4A29-9B61-098F3683493E} => C:\Windows\system32\pcalua.exe -a "C:\Users\Marek\Desktop\Mortal Kombat 4\Setup.exe" -d "C:\Users\Marek\Desktop\Mortal Kombat 4"
Task: {0B96453E-AE7B-440D-B24B-E9C77AA108A1} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {0CC02363-50FD-4681-BA49-B9C456C93145} - System32\Tasks\{D80024BC-EE02-4F37-9438-7EFE0524B9A4} => C:\Users\Marek\Downloads\Battle.Chess-windows\chess\CHESS.EXE [2008-12-13] ()
Task: {10461331-D412-4302-A8B0-3931932A9BCA} - System32\Tasks\{7B9A22D4-A236-4B01-9CC4-E05462700B07} => C:\Windows\system32\pcalua.exe -a C:\Users\Marek\Desktop\msaoex.exe -d C:\Users\Marek\Desktop
Task: {131AE3EC-88BF-4493-977D-0C708DAE2839} - System32\Tasks\{B77CC640-DD01-478F-A39B-CC6548C43E4F} => C:\Program Files (x86)\Microsoft Games\Age of Empires\Uninstx.Exe [2018-02-26] (Microsoft Corporation)
Task: {138CF210-FE88-40AE-B160-83FEC7434F9E} - System32\Tasks\{46336AC8-1491-486A-A2FB-5AB7FBEFA014} => C:\Users\Marek\Desktop\4D Prince\4D_PRIN.EXE
Task: {13B57A6E-2671-41FD-B52D-431421C6DF2D} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2367062692-840817020-3150738865-1001UA => C:\Users\Marek\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-03-12] (Facebook Inc.)
Task: {15D28204-5C84-4AEA-A2AB-633D93E2AE62} - System32\Tasks\{86F9603B-E5DA-404E-BFE4-21980E66C4CD} => C:\Users\Marek\Downloads\Battle.Chess-windows\chess\CHESS.EXE [2008-12-13] ()
Task: {164C6DE9-E161-4301-8F83-9C49C5FE2C35} - System32\Tasks\{1F97760B-78A6-488E-95D2-3F62CF0F94D2} => C:\Users\Marek\Desktop\Oldgames hry\24-GAMES-EXPERT\WIN\SETUP.EXE
Task: {16FDD0A8-C8DC-4C7B-AC04-D0903406001F} - System32\Tasks\{A6F12D8C-BD72-4CBF-8B77-6A4146D123DA} => C:\Program Files (x86)\Dyna Blaster\DOSBox.exe
Task: {178786B8-923F-49B1-AB31-F0931AFC7056} - System32\Tasks\{4049DE21-B6DC-4182-84F3-3A4D1A75D3F8} => C:\Program Files (x86)\Warcraft 2\WAR2.EXE
Task: {1B5309EB-C51C-47AB-AB0D-D993CE319898} - System32\Tasks\{F7B65242-A8A6-4BB0-9D1F-9CE17A38AAF0} => C:\Program Files (x86)\JoWooD\TheGuild2\GuildII.exe
Task: {1B845EBC-6338-45A4-9132-B6BCE9207F7B} - System32\Tasks\{A18E81B1-F245-4E51-8CDE-486E33A3BB07} => C:\Program Files (x86)\Acer\Acer Crystal Eye Webcam\WebCam.exe [2012-05-04] (CyberLink Corp.)
Task: {1B935FBA-C430-4E44-8162-B6DD5CD1DE52} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {1E3823E9-EF04-4B1F-9DD0-41CB656D5A21} - System32\Tasks\{3941E27A-3ADB-4F73-A3CD-71D67594B9D1} => C:\Windows\system32\pcalua.exe -a C:\Windows\system32\pcwrun.exe -c "C:\Program Files (x86)\Webteh\BSPlayer\bsplayer.exe"
Task: {1FCCA268-B727-417A-BE09-E6FFE6AE5D21} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-03-24] (NVIDIA Corporation)
Task: {200DDAC7-52F5-4C38-AD47-C4B9347062A5} - System32\Tasks\{338B419E-DB36-4A15-9AF1-F3252306088A} => C:\Users\Marek\Desktop\Real War\Real War - Air, Land, Sea\NoCD Fix\RealWar.exe
Task: {22C4E66F-8F4A-4A41-A03A-E04616AFD2C4} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {27210CDB-E4EE-42A3-BE08-52205AE7E70D} - System32\Tasks\{E41CB287-83F1-44EF-8EB0-F80AE88B7293} => C:\Program Files (x86)\Warcraft 2\WAR2.EXE
Task: {298668CD-2E9D-46AF-A1D7-228BCDDF029B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {2C17819A-DD82-4C6B-9B62-22B4EB32B4D5} - System32\Tasks\{EFE19861-F749-4887-813A-E87343F19100} => C:\Users\Marek\Desktop\ZDooM\zdoom.exe
Task: {2C3FD2EE-3633-4DC3-A14F-3D5ED22A7522} - System32\Tasks\{E6B7CEEF-AFC0-47F8-BD4A-986E72A35814} => C:\Program Files (x86)\Warcraft 2\WAR2.EXE
Task: {2CC405E4-13E0-4477-8352-1A239BD32CC4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-03-21] (Adobe Systems Incorporated)
Task: {2EB5CA0D-96F7-497E-8748-C2ADFE67584D} - System32\Tasks\{C2CEC558-D92F-4698-BC6C-9FD4AEBC4877} => C:\Program Files (x86)\Steam\steamapps\common\Battle vs Chess\battlevschess.exe [2017-12-06] (Zuxxez Entertainment)
Task: {2F4DC5F0-3C7D-4704-A06E-C2DFB5014445} - System32\Tasks\{6617DFC0-9352-4CD8-AC8F-BFC5290236AF} => C:\Program Files (x86)\Warcraft 2\WAR2.EXE
Task: {316B2752-BDFF-4DA8-AF46-7EF61B5E3238} - System32\Tasks\{2E8463E3-C458-42B3-ABE3-23B585D0979F} => C:\Program Files (x86)\Steam\steamapps\common\Battle vs Chess\battlevschess.exe [2017-12-06] (Zuxxez Entertainment)
Task: {35667210-A661-4EA9-8943-FC34FA62AA5B} - System32\Tasks\{A1F622DA-5ED7-450C-9B6E-7800F745BFD9} => C:\Users\Marek\Desktop\doomv19u.exe
Task: {369406FA-DC46-4544-AE6D-51A49826B2CD} - System32\Tasks\{89379BF3-76FD-4BC7-A21F-D86F17ADB63C} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{AD5835F8-909A-11D5-AE12-0050BA40602F}\Setup.exe" -d "C:\Program Files (x86)\InstallShield Installation Information\{AD5835F8-909A-11D5-AE12-0050BA40602F}"
Task: {36A39CCD-8FF6-44FA-8130-D7D3B13092B0} - System32\Tasks\{80DDBAB0-39A1-4338-B738-9A0FDC6143A8} => C:\Program Files (x86)\Microsoft Games\Age of Empires\EMPIRESX.EXE [2016-11-01] (Microsoft Corporation)
Task: {381706B9-507D-4954-90BA-21ADFA3CA78B} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {39D7430E-578D-4389-96D8-380A077D1A70} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {3A67E328-0409-4D48-B5D0-4989810B417E} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3BB6AD8B-73ED-423B-87D5-882812E172D9} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK
Task: {433EA528-4B8E-4B1B-AF2D-A3D2BCCB844F} - System32\Tasks\{8637960E-00F9-453B-86D9-4E226439B43F} => C:\Program Files (x86)\Warcraft 2\WAR2.EXE
Task: {4D885165-66FD-4E45-8F64-477656DCE55C} - System32\Tasks\{DEBFC1AF-8381-4B69-B292-4169365C82EF} => C:\Users\Marek\Desktop\Super Mario Collection 2009\Super_Sonic_Mario_Setup_031908.exe
Task: {4DB3DAFF-E386-4BAE-A5DC-B566BADC5675} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {4DFDA5FA-3752-47CC-BD23-CEE9BD9A694E} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {4E6BF0E3-80CE-4532-A86D-B7D9BD6FE05B} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-03-24] (NVIDIA Corporation)
Task: {4F37EBEF-4909-4F88-9DAE-D7160FDACEBA} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {4F774EA6-8F78-48F4-A0DE-BE7022E214D4} - System32\Tasks\SidebarExecute => C:\PROGRAM FILES\WINDOWS SIDEBAR\SIDEBAR.EXE
Task: {4FB26978-5A19-4E74-A045-E38BCF338210} - System32\Tasks\{B5E16B52-E016-443B-A88E-6BAA25CDC2D4} => C:\Program Files (x86)\Warcraft 2\WAR2.EXE
Task: {52978FE5-9633-4D1D-94B4-93CC771504CE} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {566D4A93-D8DC-4DEE-A153-EBA0BE75617D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
Task: {5A42EC3D-57FB-43C6-AB6B-F78EB0754849} - System32\Tasks\{D0E2278A-46EA-4A1D-B5B9-8D307B9A77B9} => C:\Program Files (x86)\Microsoft Games\Age of Empires\Uninstx.Exe [2018-02-26] (Microsoft Corporation)
Task: {5AC0BDC9-F944-4376-BA5D-92D3D540BD60} - System32\Tasks\{B72E56DB-EA82-4426-8C72-165A9AE4A632} => C:\Program Files (x86)\Prince of Persia\PrinceOfPersia.exe
Task: {5B30EDC0-EBF8-492D-88FB-5037522DD0C7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {5B91DF2B-2055-4069-9076-ABEEFD548F9C} - System32\Tasks\{AC48CDE4-5830-41CF-AF3B-75B08D813196} => C:\Users\Marek\Desktop\4D Prince\4D_PRIN.EXE
Task: {5D3E2446-66DA-4DBB-BF8C-25A36481321E} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-03-24] (NVIDIA Corporation)
Task: {5E918FFA-432C-4B48-8609-BB2DE6EFC202} - System32\Tasks\{91D3AAC9-6B9B-4A94-80CF-A5F35296F934} => C:\WINDOWS\system32\pcalua.exe -a "C:\BlueByte\The Settlers IV\S4.exe" -d "C:\BlueByte\The Settlers IV"
Task: {657C0752-4068-42D6-AACF-910B0149B6CA} - System32\Tasks\{44C51F32-589E-432F-A405-B566FFC4C6DF} => C:\Users\Marek\Downloads\constructor\Constructor\GAME.EXE [1997-08-11] ()
Task: {6762108D-44C4-475B-AB62-8824D10B4A69} - System32\Tasks\{5AFB3A6F-883D-4CC4-B67C-8EA63037CBA6} => C:\Users\Marek\Desktop\Warcraft 2\WAR2.EXE
Task: {67C3CCAB-100F-4BAF-BD78-8318AD35327E} - System32\Tasks\GoogleUpdateTaskMachineUA1d432191efa78ce => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {67E95289-720D-4082-A91C-CAB8B9A06FB7} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-03-24] (NVIDIA Corporation)
Task: {68023763-0983-4563-A03A-6B1DDAFDF9D0} - System32\Tasks\{17EFCF3C-27A4-4F43-89C2-5E62BF385867} => C:\Users\Marek\Desktop\RoRCrk.exe
Task: {6A0AA167-16D7-4A64-A56E-0E93E7EFFF2B} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\avast software\overseer\overseer.exe [2018-08-17] (AVAST Software)
Task: {6A2467D8-89AB-4D4E-B8ED-7C44840B1FE7} - System32\Tasks\{993D4EC5-459C-455E-A18D-4BB0BA6FCABF} => C:\Program Files (x86)\Prince of Persia\PrinceOfPersia.exe
Task: {6A816752-59D6-4FD5-9B31-4A9F259A51F7} - System32\Tasks\{0EF67D80-1EFD-4E4B-9886-571FE45B3230} => C:\Users\Marek\Desktop\Dyna Blaster\DYNA.EXE
Task: {6CE35898-E535-4D84-BEC3-7EE9FD4B0E8F} - System32\Tasks\{3500111B-068A-43E0-AD94-2D34CA7D54CC} => C:\Program Files (x86)\Steam\steamapps\common\Battle vs Chess\battlevschess.exe [2017-12-06] (Zuxxez Entertainment)
Task: {6DCA66B8-B108-4F01-BC82-C61159AB3F61} - System32\Tasks\{8D93442A-3041-4C14-B190-D92155C03E39} => C:\Program Files (x86)\Simon and Schuster\Real War\realwar.exe [2001-09-26] ()
Task: {6F8C9CDE-1BB1-4FB7-9C21-15C93EEF67AD} - System32\Tasks\{D2CDCA68-685A-4DED-937E-B99412884BDC} => C:\Program Files (x86)\Zuxxez\Battle vs. Chess\battlevschess.exe [2011-03-29] (Zuxxez Entertainment)
Task: {6FEAE6FB-C14E-41F2-852C-8BCB8F7B8C31} - System32\Tasks\{04276469-3431-4EA7-8904-0D5367FDDD62} => C:\Users\Marek\Desktop\Pampuch\PAMPUCH.EXE
Task: {7268494A-D3F0-44DC-821C-66657BC61624} - System32\Tasks\{57CB91CA-1EDA-4540-9E1C-9AAED1D1DAD8} => C:\Users\Marek\Desktop\Pampuch\PAMPUCH.EXE
Task: {72D345AC-42E2-426E-A8A0-FB27523EAC7A} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {73B38C1E-E61D-44B8-A633-8707FE14F81D} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {73D9BFB0-A574-447E-9F46-1C6B4C2B62B8} - System32\Tasks\{464AFD1F-1AEC-47B7-A41E-66ACDD903917} => C:\Users\Marek\Desktop\Pampuch\PAMPUCH.EXE
Task: {768D24CC-1EE5-45B7-8102-F74982020F34} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {787D54B0-5991-4BD9-9070-6633241F7380} - System32\Tasks\{62371CD0-B9C8-47C3-898F-594299E25909} => C:\Users\Marek\Downloads\cultures2demo.exe
Task: {78FFE248-7EEF-4A4F-899B-77E6A0A6238B} - System32\Tasks\{91AE497B-9060-450A-B080-932922960DF0} => C:\Program Files (x86)\Steam\steamapps\common\Alone in the Dark - The New Nightmare\alone4.exe
Task: {79AAF5D6-0081-44EB-B588-76AEE4D552B7} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_154_Plugin.exe [2018-08-14] (Adobe Systems Incorporated)
Task: {7DC1C0F1-A0C0-43D7-9A6C-F8D642A0AB23} - System32\Tasks\{314A5BB1-E06B-448C-A9A8-C4CCDA760F05} => C:\Users\Marek\Desktop\Alien force\AFORCE.EXE
Task: {7DE73C67-0036-4237-B22E-38E31E552422} - System32\Tasks\{793241DD-359A-4E34-A891-06BBA0EFADD5} => C:\Program Files (x86)\Dyna Blaster\DOSBox.exe
Task: {7FA8548E-914B-45D7-8BC0-552261854B0A} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7FC14DC8-D32E-485B-87BB-920BE17DE402} - System32\Tasks\GoogleUpdateTaskMachineCore1d432191ec39f9a => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {80779C0E-59B8-407A-A32C-460165E8CC89} - System32\Tasks\{D3836544-9D60-45D6-BD4D-0FC6AE623E27} => C:\Windows\system32\pcalua.exe -a C:\Users\Marek\Desktop\aoe2minipack_saj.exe -d C:\Users\Marek\Desktop
Task: {80D0691E-A148-4D78-AEE1-A49DC255D3A4} - System32\Tasks\{D055E874-DE30-48E5-9BAE-4AD3D69B65DC} => C:\Users\Marek\Desktop\Alien force\AFORCE.EXE
Task: {83048873-F983-4056-BC68-C5A67B39153D} - System32\Tasks\{69279F7C-9129-4266-8956-3B8B06F04E0E} => C:\Program Files (x86)\Microsoft Games\Age of Empires\Uninstx.Exe [2018-02-26] (Microsoft Corporation)
Task: {84260DAB-DFC1-4EAF-9374-C2A36B206F97} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2367062692-840817020-3150738865-1001Core => C:\Users\Marek\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-03-12] (Facebook Inc.)
Task: {85D3AA76-F5A5-4A46-8BA4-1886CC191432} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-03-24] (NVIDIA Corporation)
Task: {872C79AF-DAF2-4DA7-AF04-013ED6F56B68} - System32\Tasks\{AB7DC118-FE7E-4968-90DF-0172E280D53B} => C:\Users\Marek\Desktop\Dyna Blaster\DYNA.EXE
Task: {8782EF11-88FF-413B-B51A-6BF9B63DE45C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {880E0628-9893-4346-B47C-9808F436726A} - System32\Tasks\{71C60A8F-0F8E-4E8F-A566-15E410B1B8B2} => C:\Users\Marek\Desktop\Pampuch\PAMPUCH.EXE
Task: {898B80E1-0840-41A5-B446-AAD5E2A67661} - System32\Tasks\{D0413B20-EB4A-4A41-8687-C4BC73617643} => C:\Users\Marek\Desktop\RoRCrk.exe
Task: {8ADDA376-A3DE-4C77-B441-75DAAA6E135C} - System32\Tasks\{609E35C5-F899-4A14-BEA5-B79A4473A2CD} => C:\Users\Marek\Desktop\Ageofempires1demo\age_of_empires_demo.exe
Task: {8BA40CA5-E532-4343-81C2-348C4803C3CB} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8C70CF06-13A0-4CF8-80ED-7053DF6F5935} - System32\Tasks\{A15AB246-98CB-428E-9A72-629C4C594DB4} => C:\Windows\system32\pcalua.exe -a C:\Users\Marek\Desktop\VirtualDub-1.9.11\auxsetup.exe -d C:\Users\Marek\Desktop\VirtualDub-1.9.11
Task: {8DD6822E-3209-498F-B1FE-0BE0041EB858} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-03-24] (NVIDIA Corporation)
Task: {93346B5A-16E4-4016-B993-B72BAE471282} - System32\Tasks\{B3428879-DDC6-479B-929E-6F56BE698D62} => C:\Users\Marek\Desktop\Alien force\AFORCE.EXE
Task: {95A003F3-730B-4F82-BC5E-A886919F0720} - System32\Tasks\{87651DC5-AC4E-4FFE-AD54-B3858D4C56CF} => C:\Users\Marek\Desktop\4D Prince\4D_PRIN.EXE
Task: {97AA85A4-CBAD-4E05-9BEE-7693B81EC25C} - System32\Tasks\{BB6C5933-D9CB-4DB7-AA5C-E8DFCF97B486} => C:\Users\Marek\Desktop\4D Prince\4D_PRIN.EXE
Task: {99CA0842-90D5-4A32-92C6-157552EDE50B} - System32\Tasks\{0F0C1BD4-E95D-4A19-919C-87014F19C527} => C:\Program Files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\FreeYouTubeToMP3Converter.exe
Task: {9BB2E9CA-41F6-4D0F-B57C-468623E444A9} - System32\Tasks\{B96232EC-F810-432C-987C-9286E2195900} => C:\Windows\system32\pcalua.exe -a C:\Users\Marek\Downloads\Dostihy3000setup.exe -d C:\Users\Marek\Downloads
Task: {9C1C1AC0-0251-4775-92B4-734F5BF8DE63} - System32\Tasks\{84A2B928-6734-4EB9-BCC1-A403DDF978B9} => C:\Program Files (x86)\JoWooD\TheGuild2\GuildII.exe
Task: {9CA1D8A5-B789-42FD-9C99-D3C9DE615E02} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {9CEEEB09-C195-45B1-B951-3C4638911387} - System32\Tasks\{0D06ED0B-9818-450A-B039-A70C015DC0A2} => C:\Users\Marek\Desktop\Alien force\AFORCE.EXE
Task: {9DA311B2-3389-4C23-ADF4-75E28826B8C9} - System32\Tasks\{9F7ECC07-2689-435E-9220-BDAF22004CB8} => C:\Windows\system32\pcalua.exe -a C:\Users\Marek\Downloads\dosbox0.58-win32-installer.exe -d C:\Users\Marek\Downloads
Task: {9F68FFBA-E951-49CB-A107-94EAA92E1603} - System32\Tasks\{D8467927-EB1A-458B-A59D-E08A4C3802A4} => C:\Users\Marek\Desktop\4D Prince\4D_PRIN.EXE
Task: {A020E58E-B779-464B-B2F8-A3D4F7B9B88D} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-08-25] (AVAST Software)
Task: {A3AC4996-C9A6-49A0-A99B-87007A3F6257} - System32\Tasks\{A2A6D68E-956C-4E3A-A60B-8BD9192E174E} => C:\Users\Marek\Desktop\Oldgames hry\Warcraft2\WARCRAFT_2-ARMORY_ADDON\SETUP.EXE
Task: {A59D45FE-C6C5-451C-8939-5C3101E956E6} - System32\Tasks\RegAce Scheduled Scan - Marek => C:\Program Files (x86)\RegAce System Suite\RegAce.exe
Task: {A5C113A7-6871-4D93-954B-934F78CA64EE} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {A8629582-CA69-46D2-81D7-8DF49F6AC663} - System32\Tasks\{1B6896BF-E4B9-4D6E-9223-A9EC0B4C285D} => C:\Users\Marek\Desktop\RoRCrk.exe
Task: {A932A04F-610A-4610-93E8-FE8974C4FC06} - System32\Tasks\{24BA74C0-B87F-4813-B33B-051BFE443746} => C:\Windows\system32\pcalua.exe -a "C:\Users\Marek\Downloads\princetge1.1 (1).exe" -d C:\Users\Marek\Downloads
Task: {A9B29F7B-EA51-46EF-ACE7-F1D918048D93} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-03-24] (NVIDIA Corporation)
Task: {AADB6729-EB07-4209-A841-18A570BC9BDF} - System32\Tasks\{58DB5BEB-6C98-49C4-B8C1-08330045FF34} => C:\Program Files (x86)\Steam\steamapps\common\Battle vs Chess\battlevschess.exe [2017-12-06] (Zuxxez Entertainment)
Task: {AAF261AB-AD20-4657-A10C-5F561FBB37DB} - System32\Tasks\{53D77B83-BAEC-44A1-BF2A-E587CBD25895} => C:\Program Files (x86)\Warcraft2 - Wargus\stratagus.exe
Task: {AC98281E-DF50-4225-AB92-FEDCCCB2F76C} - System32\Tasks\{8C8388FB-EDBF-43DB-889F-1C916E5308B8} => C:\Users\Marek\Desktop\Dyna Blaster\DYNA.EXE
Task: {AF3A3DA2-634F-4046-B9A9-5210D09C8009} - System32\Tasks\{8DC80D35-DBCD-428D-B58F-A7D94D696359} => C:\Program Files (x86)\Steam\steamapps\common\Battle vs Chess\battlevschess.exe [2017-12-06] (Zuxxez Entertainment)
Task: {B121CA0D-A96B-4DAB-AD11-FDD3A3E213D8} - System32\Tasks\{928F3843-4A1C-480A-927E-9BF3F990A43A} => C:\Users\Marek\Desktop\Oldgames hry\24-GAMES-EXPERT\WIN\SETUP.EXE
Task: {B1E6745E-23E4-43EA-AC28-25FC09BE3C72} - System32\Tasks\{1F9F90A9-9450-48A8-AC4F-FDEBBFA279E6} => C:\Users\Marek\Desktop\prince of persia the great escape\Game\win_tge.exe
Task: {B1E9D703-77E2-4DBA-8C61-8CAA7BAF3B50} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {B25454B1-D748-47CD-89ED-A4233A7B0900} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {B25C5696-CBFA-43F1-A36D-15517967FD0E} - System32\Tasks\GoogleUpdateTaskMachineUA1d15da22e9030cd => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {B2CC3A4A-6311-47D0-B53B-64A02A73E0CC} - System32\Tasks\{DEE2D847-8667-4B50-9F70-AFEE58A28012} => C:\Program Files (x86)\Warcraft 2\WAR2.EXE
Task: {B5312828-6DF9-42F0-9B9A-84CCCD1E81D9} - System32\Tasks\{A128A2BB-DBA3-486D-A380-8CEE912130AB} => C:\Users\Marek\Desktop\Oldgames hry\24-GAMES-EXPERT\WIN\SETUP.EXE
Task: {B54ACE89-853E-4299-90DF-9D4302E18544} - System32\Tasks\{A3802294-C38F-4D85-B10C-431B61F4EFC1} => C:\Program Files (x86)\Warcraft 2\WAR2.EXE
Task: {B58FF814-5BCD-4134-8D9A-8306730221B0} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B74CBBFD-CFC1-4738-9331-941A0E1E2AA5} - System32\Tasks\{422D006A-05E5-428B-BFE3-9F81DC52D160} => C:\Users\Marek\Desktop\prince of persia the great escape\Game\win_tge.exe
Task: {B79C43D2-C8E3-45AD-9611-A1F69776D576} - System32\Tasks\{E6860672-792B-408E-A58D-7DE5ED749AB7} => C:\Windows\system32\pcalua.exe -a C:\Windows\IsUninst.exe -c -f"C:\Program Files (x86)\Core Design\Tomb Raider - The Last Revelation\Uninst.isu"
Task: {B97EC5EF-8B3F-4722-8445-D80C3048A826} - System32\Tasks\{D8369A27-8585-46CB-BD71-9B6BE7F9CAAC} => C:\Users\Marek\Desktop\Oldgames hry\24-GAMES-EXPERT\WIN\SETUP.EXE
Task: {B9F15960-9EB0-4192-B542-E0D07D6A31C9} - System32\Tasks\{BB67B24F-4DA7-411D-849C-2675A9DF89E7} => C:\Users\Marek\Desktop\RoRCrk.exe
Task: {BB15F93A-7A92-44D6-B1B8-90C0FA9516A8} - System32\Tasks\{81F6FA5C-EF65-495F-9D42-48C21F0C9EF3} => C:\Program Files (x86)\Warcraft 2\WAR2.EXE
Task: {BCAB267B-86F1-42FC-853A-CC51AB9ABADD} - System32\Tasks\{F69E1C6A-04E5-44A6-9455-269DE32E3207} => C:\Users\Marek\Downloads\Battle.Chess-windows\chess\CHESS.EXE [2008-12-13] ()
Task: {BF3466E8-E69C-4738-BC98-E9B64F0632E3} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-03-24] (NVIDIA Corporation)
Task: {C01CB0A1-78DC-4975-BF2A-EB0B59B54E4D} - System32\Tasks\{A4D68CC6-A232-4948-8EEB-5F5802B99C3C} => C:\Windows\system32\pcalua.exe -a C:\Users\Marek\Downloads\ttdx.2_6_a00r1846.diff2_5_b09.exe -d C:\Users\Marek\Downloads
Task: {C0E89374-6130-4A3C-8037-AA476758CB52} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {C18C49C8-494A-44A1-8C39-716799959800} - \ProtectedSearch\Protected Search -> No File <==== ATTENTION
Task: {C51AE039-0B37-4973-B0C0-8A8D1DF5DBCD} - System32\Tasks\{D460D329-6335-41CA-8492-1E6A8F79B6F1} => C:\Users\Marek\Downloads\Battle.Chess-windows\chess\CHESS.EXE [2008-12-13] ()
Task: {C5F96516-6B47-48BF-A45F-696604E0AC41} - System32\Tasks\{038A6906-8637-449A-86B4-0C8AB85BF23C} => C:\Program Files (x86)\Warcraft III\Warcraft III.exe
Task: {C73C49E7-2924-41BD-BD64-5084F5031D46} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {CB88445F-44F2-4919-9771-105B5CE3D207} - System32\Tasks\{9245E5B8-2EBD-4931-A603-58F62D2DCABE} => C:\Program Files (x86)\Microsoft Games\Age of Empires\Uninstx.Exe [2018-02-26] (Microsoft Corporation)
Task: {CC15D9B4-F286-4758-8646-A3B1799A2B20} - System32\Tasks\{B107E707-86CB-4A9D-A3FE-6CD055A234F6} => C:\Windows\system32\pcalua.exe -a C:\Users\Marek\Desktop\prince_of_persia_demo\PRINCEOFPERSIA3DDEMO.EXE -d C:\Users\Marek\Desktop\prince_of_persia_demo
Task: {D0794C4B-48D7-42DF-980B-280615066654} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-08-14] (Adobe Systems Incorporated)
Task: {D11C4614-4BD8-4D51-95F9-040E5D820D76} - System32\Tasks\Avast Driver Updater Startup => C:\Program Files (x86)\Avast Driver Updater\Avast Driver Updater.exe [2018-07-18] (AVAST Software)
Task: {D27D0B60-2814-4576-996E-551CC62545CC} - System32\Tasks\{710F2BB2-8984-48C3-9A84-9CA5F56AFCD8} => C:\Program Files (x86)\Steam\steamapps\common\Battle vs Chess\battlevschess.exe [2017-12-06] (Zuxxez Entertainment)
Task: {D4EB7A14-37E1-4672-9717-AEE5A9B42AC2} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D5F8F24F-B166-454B-89B0-64AE839E9F46} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {D61530B5-328C-4196-8ED1-55BA71BC678F} - System32\Tasks\{A398C27B-64DE-4AD0-B2CF-5D5705D1C860} => C:\Users\Marek\Downloads\constructor\Constructor\GAME.EXE [1997-08-11] ()
Task: {D780ADD4-3869-4B2A-BC88-BFE3CC747CAA} - System32\Tasks\{C813688B-E74A-4FEA-AF1C-FDEA26BE60A6} => C:\Program Files (x86)\Warcraft2 - Wargus\stratagus.exe
Task: {D9A2E004-3420-455A-93FC-4F6E2DC02771} - System32\Tasks\{BCD6C8EF-9B3B-465F-B06F-90392E22F3DC} => C:\Program Files (x86)\Microsoft Games\Age of Empires\EMPIRESX.EXE [2016-11-01] (Microsoft Corporation)
Task: {DA1D83F5-9811-4606-BADF-9C793BFA7296} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_154_pepper.exe [2018-08-14] (Adobe Systems Incorporated)
Task: {DB376CBD-0C15-4945-89A9-BFB063ADA68D} - System32\Tasks\Adobe Reader Speed Launcher => C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe
Task: {DCB97122-A9B3-489F-B58C-A761EB24D342} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DDF81305-2659-4019-A890-94E20E1DACC6} - System32\Tasks\{ABB74C38-ED80-4CB1-8DC7-76215BB32727} => C:\Users\Marek\Desktop\win95cz\SETUP.EXE
Task: {DE654462-248F-478A-AA67-F48D04D26E3A} - System32\Tasks\{D81801A5-3F9B-4361-98FB-E3A04B309F26} => C:\Program Files (x86)\Microsoft Games\Age of Empires\Uninstx.Exe [2018-02-26] (Microsoft Corporation)
Task: {DEA59FC2-C415-4972-ABCA-E4473DEE6DEF} - System32\Tasks\{CBA91D1D-800D-44BE-B5B7-260BC1174497} => C:\Users\Marek\Desktop\Oldgames hry\24-GAMES-EXPERT\WIN95\SETUP.EXE
Task: {DFC20BA0-7F37-4F99-AC49-E586DE9A8985} - System32\Tasks\UALU notificatin => C:\Program Files\Acer\Acer Updater\UALU.exe [2016-06-08] (Acer Incorporated)
Task: {E07A794C-F832-4FF8-9225-0C7C44764050} - System32\Tasks\{0D5C3326-C01A-41B5-829C-8E732A124DD3} => C:\Users\Marek\Desktop\Warcraft 2\WAR2.EXE
Task: {E1560524-890A-4D04-9C3F-BA6F902ADF5A} - System32\Tasks\GoogleUpdateTaskMachineCore1d15da22e1d972f => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {E21C1039-D01F-4D50-A371-18B2A71DAC52} - System32\Tasks\{B65FD628-B065-4D8E-889B-2A3AFDA92234} => C:\Users\Marek\Downloads\constructor\Constructor\GAME.EXE [1997-08-11] ()
Task: {E2A90A40-9D42-41D4-8D35-41631E362E74} - System32\Tasks\{DDCEA29A-350D-47D9-AB41-D0997B095EC2} => C:\Users\Marek\Desktop\Warcraft 2\WAR2.EXE
Task: {E2B3A6F7-6170-4ED5-ACFE-D3B0D789D3E6} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {E2EFE3E3-0E1F-4F87-B688-2B2C28FF5409} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {E32B8453-A8BF-4E76-AF72-5428DA7FBF40} - System32\Tasks\{112751DA-0B33-4445-BC22-8EC4B968F950} => C:\Users\Marek\Desktop\win95cz\SETUP.EXE
Task: {E3C9680D-BA2B-4BFA-AC08-377FEB061A5C} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E441621B-3294-4B75-9A01-5AD15A492DBF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {E6C301EC-4BD8-4A48-B7C0-826E578CEA51} - System32\Tasks\{FC4AD723-9EC7-465C-B661-7DA1B963770A} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\O2\O2CZ\Uninstall.exe" -d "C:\Program Files (x86)\O2\O2CZ"
Task: {E75879E0-0CCD-4280-9BFF-EF15F7D10F12} - System32\Tasks\{AA67A094-6534-425B-85A7-55325048C552} => C:\Program Files (x86)\Warcraft 2\WAR2.EXE
Task: {E75DD301-97BC-4832-868B-76224494B252} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E83F36A8-524F-47F9-A3AF-06FC413FF814} - System32\Tasks\GoogleUpdateTaskMachineCore1d1ab164e3a4326 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {EB3AA4E7-E606-4C70-BD0A-7A3BFEE3928C} - System32\Tasks\{3C9BB900-52AD-4531-8802-5A5479A6B85D} => C:\Users\Marek\Desktop\Alien force\AFORCE.EXE
Task: {EBDE37A3-9B4C-4BA1-8B18-A1462CC2B1DF} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {ECC3E516-3FA9-4915-9011-5F763FA1E137} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {EE597C2B-74AD-47E0-BF73-86D9DBDEFC87} - System32\Tasks\{ED50E503-F66F-4ADD-813C-6EE921FE4B47} => C:\Users\Marek\Desktop\4D Prince\4D_PRIN.EXE
Task: {F4649165-9903-4944-B62D-1C07AFA0E6E8} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {F5313A98-722D-447B-8DBA-AE153DB5A6F5} - System32\Tasks\GoogleUpdateTaskMachineUA1d1ab164e9fd951 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {F6989D93-4C90-4AC6-82C4-9FFB9332A31B} - System32\Tasks\{CC882A05-A423-488A-8B4E-B44196AFEF8A} => C:\Program Files (x86)\Warcraft 2\WAR2.EXE
Task: {F79E6FAD-8DB1-4D2C-BBED-05EC30FD6E5A} - System32\Tasks\{24D121EB-F282-40EB-8E0F-5E4F5BDE8C2E} => C:\Users\Marek\AppData\Roaming\Spotify\Spotify.exe [2018-08-15] (Spotify Ltd)
Task: {F862B80E-715D-4D42-93FA-AFC302A877D5} - System32\Tasks\{736C19FD-8109-49F2-AD6F-F930B0E4C066} => C:\Users\Marek\Desktop\Oldgames hry\Warcraft2\WARCRAFT_2-ARMORY_ADDON\SETUP.EXE
Task: {F956E7AC-F47F-427A-BC20-6AA441246A9C} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {F963435A-3D5B-43F2-BBA0-B691311C1173} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {F976E112-A7A0-4DF6-8B5C-967B49383AC9} - System32\Tasks\Adobe ARM => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-03-21] (Adobe Systems Incorporated)
Task: {F9CFD67F-73C5-4147-AF32-464BAAA11E49} - System32\Tasks\{2DF4BA8A-4624-4AA5-87E6-5B11A7D46185} => C:\Program Files (x86)\Steam\steamapps\common\Battle vs Chess\battlevschess.exe [2017-12-06] (Zuxxez Entertainment)
Task: {FABD773E-3D51-4828-91CF-0A6985DF0B06} - System32\Tasks\{8FFDC0B8-D80A-4D0C-8B2C-D232F0F75ACF} => C:\Users\Marek\Desktop\cdman\CDMAN2.EXE
Task: {FBC5A780-D6C4-4AD7-95EF-14C56CEFD0B0} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {FE15FD98-CE59-48AC-9950-7131250B3590} - System32\Tasks\{BDC419AB-A3AD-4CA8-BE3F-45883E93EFA3} => C:\Program Files (x86)\Microsoft Games\Age of Empires\Uninstx.Exe [2018-02-26] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Avast Driver Updater Startup.job => C:\Program Files (x86)\Avast Driver Updater\Avast Driver Updater.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2367062692-840817020-3150738865-1001Core.job => C:\Users\Marek\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2367062692-840817020-3150738865-1001UA.job => C:\Users\Marek\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d15da22e1d972f.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d15da22e9030cd.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\RegAce Scheduled Scan - Marek.job => C:\Program Files (x86)\RegAce System Suite\RegAce.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


Shortcut: C:\Users\Marek\Documents\stažené knihy\Ikony nemazat!\WindowsStart – zástupce.lnk -> C:\Users\Marek\Desktop\Ikony nemazat!\prince of persia the great escape\WindowsStart.bat (No File)
Shortcut: C:\Users\Marek\Desktop\zástupci dány v roce 2018\dosbox – zástupce (2).lnk -> C:\Program Files (x86)\DOSBox-0.73\dosbox.bat ()

ShortcutWithArgument: C:\Users\Marek\Documents\stažené knihy\tobiasek+slozky\KMP Games.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.kmpgames.com
ShortcutWithArgument: C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Spouštěč aplikací Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --show-app-list

==================== Loaded Modules (Whitelisted) ==============

2017-09-29 15:41 - 2017-09-29 15:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2018-05-26 00:47 - 2018-03-24 03:19 - 000544192 _____ () C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\DisplayDriverAnalyzer\_DisplayDriverCrashAnalyzer64.dll
2018-08-15 10:31 - 2018-08-30 13:25 - 002681424 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2009-01-22 01:45 - 2009-01-22 01:45 - 001401856 _____ () C:\Program Files (x86)\EgisTec MyWinLocker\x64\LIBEAY32.dll
2018-08-25 15:11 - 2018-08-25 15:11 - 000155504 _____ () C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll
2012-11-26 23:54 - 2012-11-26 23:54 - 000094208 _____ () C:\WINDOWS\System32\IccLibDll_x64.dll
2017-03-18 14:11 - 2017-03-18 14:12 - 000037888 _____ () C:\Program Files\WindowsApps\2414FC7A.Viber_6.6.21745.1000_x86__p61zvh252yqyr\Native.Host.exe
2010-12-22 19:22 - 2010-12-22 19:22 - 000465576 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\sqlite3.dll
2010-12-22 19:10 - 2010-12-22 19:10 - 001081600 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\ACE.dll
2017-12-24 06:44 - 2016-09-12 15:53 - 048936448 _____ () C:\Program Files (x86)\AVAST Software\Avast Cleanup\libcef.dll
2018-07-22 17:06 - 2018-07-22 17:06 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2018-08-25 18:45 - 2018-08-25 18:45 - 000575704 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:430C6D84 [127]
AlternateDataStreams: C:\ProgramData\Temp:8CE646EE [236]
AlternateDataStreams: C:\ProgramData\Temp:DFC5A2B2 [105]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SophosVirusRemovalTool => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SophosVirusRemovalTool => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\vizzed.com -> www.vizzed.com

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2018-08-26 16:02 - 000000813 _____ C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2367062692-840817020-3150738865-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Marek\Downloads\fantasy_outer_space_planets_wallpaper_science_fiction_gates_to_heaven-1280x800.jpg
DNS Servers: 213.46.172.37 - 213.46.172.36
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Marek^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.3.lnk => C:\Windows\pss\OpenOffice.org 3.3.lnk.Startup
MSCONFIG\startupreg: CloneCDTray => "C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe" /s
MSCONFIG\startupreg: Comrade.exe => C:\Program Files (x86)\GameSpy\Comrade\Comrade.exe
MSCONFIG\startupreg: msnmsgr => "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
MSCONFIG\startupreg: Norton Online Backup => C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
MSCONFIG\startupreg: Pokki => "%LOCALAPPDATA%\Pokki\Engine\pokki.exe"
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
HKLM\...\StartupApproved\StartupFolder: => "Kaspersky Software Updater Beta.lnk"
HKLM\...\StartupApproved\Run: => "SpywareTerminatorShield"
HKLM\...\StartupApproved\Run: => "SpywareTerminatorUpdater"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "ETDWare"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "WindowsDefender"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "EgisUpdate"
HKLM\...\StartupApproved\Run32: => "LManager"
HKLM\...\StartupApproved\Run32: => "EgisTecPMMUpdate"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "PDFPrint"
HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\StartupApproved\Run: => "GalaxyClient"
HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_76888AFBA486CCF068F690F0F6295975"
HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\StartupApproved\Run: => "Voobly"
HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\StartupApproved\Run: => "BlueStacks Agent"
HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\StartupApproved\Run: => "ManyCam"
HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\StartupApproved\Run: => "TIDAL"
HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\StartupApproved\Run: => "com.deezer.deezer-desktop"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{E3934E4B-3F70-482D-9E62-4B079D41A4E2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Simutrans\simutrans.exe
FirewallRules: [{E0450F48-9C90-4349-8416-CECBA4EBF7AD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Simutrans\simutrans.exe
FirewallRules: [{4E0710E9-9CB0-4D67-9D20-4003CDF7A2DC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Simutrans\simpreloader.exe
FirewallRules: [{7B045A7E-3D14-4AC6-B370-8D217DFA3767}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Simutrans\simpreloader.exe
FirewallRules: [{66A26DFA-D532-4D47-ACC4-CFADB6C91D70}] => (Allow) C:\Users\Marek\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{CA799D1F-D9EA-4FAA-9340-5789C12E9CFA}] => (Allow) C:\Users\Marek\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4D0AFF40-F9B1-4421-BCB6-220A570BC1D7}] => (Allow) C:\Users\Marek\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{B0843965-4D07-44B2-A3A6-F19AE3AD0B32}] => (Allow) C:\Users\Marek\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{4D5D68F6-597D-4722-9600-9F74BA7B836B}] => (Allow) C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
FirewallRules: [{D8589B68-D2F8-4E85-831D-11E721D8821B}] => (Allow) C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
FirewallRules: [{82AA92A8-C077-48EF-84AB-5BDC440C3B66}] => (Allow) C:\Program Files (x86)\Spyware Terminator\SpywareTerminator.exe
FirewallRules: [{942CD86F-6DFB-4BB2-822C-2326DAA221C8}] => (Allow) C:\Program Files (x86)\Spyware Terminator\SpywareTerminator.exe
FirewallRules: [{177FFB0A-B9FC-402D-B7CD-DA49B1F0FDF3}] => (Allow) C:\games\warcraft 2 (wargus)\stratagus.exe
FirewallRules: [{1D64D35A-BAA3-44E3-A538-E38EB8ECA980}] => (Allow) C:\games\warcraft 2 (wargus)\stratagus.exe
FirewallRules: [UDP Query User{3C19B932-F0CB-433D-AA31-1289E67EC701}C:\games\warcraft 2 (wargus)\stratagus.exe] => (Allow) C:\games\warcraft 2 (wargus)\stratagus.exe
FirewallRules: [TCP Query User{4851B907-82BD-4116-A616-09DA72345275}C:\games\warcraft 2 (wargus)\stratagus.exe] => (Allow) C:\games\warcraft 2 (wargus)\stratagus.exe
FirewallRules: [{3B8120C9-A044-47B4-96BA-ACB2B0EB8ACB}] => (Allow) C:\Games\Warcraft 2 (Wargus)\wargus.exe
FirewallRules: [{4779A636-E8FA-4AA5-AF56-DE1030D89547}] => (Allow) C:\Games\Warcraft 2 (Wargus)\wargus.exe
FirewallRules: [{431641DA-2A24-4095-B1E5-DDBF971B8A00}] => (Allow) C:\Games\Warcraft 2 (Wargus)\wargus.exe
FirewallRules: [{D50990D4-6752-4C4A-8DFA-7ACF110B3D80}] => (Allow) C:\Games\Warcraft 2 (Wargus)\wargus.exe
FirewallRules: [{013ECE3A-31EE-4A08-A942-DB6B5C494688}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Battle vs Chess\battlevschess.exe
FirewallRules: [{5FF4AD3C-8992-4A29-AEE5-1D49BDDCA776}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Battle vs Chess\battlevschess.exe
FirewallRules: [{E5296DEE-610C-46F5-8853-6961296B15DB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Battle vs Chess\battlevschess.exe
FirewallRules: [{F084E3F5-A6D9-4E73-AE70-184CAB92CCBC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Battle vs Chess\battlevschess.exe
FirewallRules: [{228FF580-687E-4930-9A23-7E4552BF4482}] => (Allow) %SystemDrive%\Games\Warcraft 2 - Wargus\wargus.exe
FirewallRules: [{CA55F921-4BDF-41D0-9814-1CF091FA0728}] => (Allow) %SystemDrive%\Games\Warcraft 2 - Wargus\stratagus.exe
FirewallRules: [{118CB7DF-BDBC-4FA0-8868-785329D75E02}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
FirewallRules: [{4819D520-CD8C-42D1-8C16-65133D263292}] => (Block) C:\program files (x86)\microsoft games\age of empires ii\age2_x1\rome returns.exe
FirewallRules: [{A32E356D-6846-4681-972E-609F05C593A0}] => (Block) C:\program files (x86)\microsoft games\age of empires ii\age2_x1\rome returns.exe
FirewallRules: [UDP Query User{BEAEC434-7D9C-44A7-B1F8-94A87B630AC5}C:\program files (x86)\microsoft games\age of empires ii\age2_x1\rome returns.exe] => (Allow) C:\program files (x86)\microsoft games\age of empires ii\age2_x1\rome returns.exe
FirewallRules: [TCP Query User{2847A92B-D0C5-4AF1-9B09-A25CDFD22A3E}C:\program files (x86)\microsoft games\age of empires ii\age2_x1\rome returns.exe] => (Allow) C:\program files (x86)\microsoft games\age of empires ii\age2_x1\rome returns.exe
FirewallRules: [{D30CF3D8-B973-4F92-9F59-AFDBBE234DFF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MortalKombat_KompleteEdition\DiscContentPC\MKLauncher.exe
FirewallRules: [{E383D89F-5618-40ED-B3AB-7A95BBA5DA0C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MortalKombat_KompleteEdition\DiscContentPC\MKLauncher.exe
FirewallRules: [{03D1676E-9189-485A-AD58-8A7C666B6006}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MortalKombat_KompleteEdition\DiscContentPC\MKKE.exe
FirewallRules: [{8B095A4C-EFDC-49D8-B2CF-25BEAB5C61AC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MortalKombat_KompleteEdition\DiscContentPC\MKKE.exe
FirewallRules: [{B06BA2DC-2250-469B-A3C3-9833DFA286DC}] => (Allow) %ProgramFiles% (x86)\Steam\steamapps\common\Battle vs Chess\battlevschess.exe
FirewallRules: [{7E96A694-C6D3-4336-849E-5D03FADCD20A}] => (Allow) LPort=14298
FirewallRules: [{31670B46-2262-46B3-A717-BC86369B565C}] => (Allow) LPort=14297
FirewallRules: [{3A4102EB-7B43-40DD-BE36-99D2FE9B5432}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Battle vs Chess\battlevschess.exe
FirewallRules: [{DB26D683-E800-455E-9B9E-BF93B1A1C81A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Battle vs Chess\battlevschess.exe
FirewallRules: [{50D775B5-8A01-4512-8DDE-86226E3AEEF8}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{969AA194-B09F-4A10-B160-D070203D81E2}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{129C528D-23B9-456C-9064-91361BDDD1C1}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{2866B1DE-200A-4C28-923D-DE36536A7A94}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [UDP Query User{9F553364-7A8E-4FF6-A041-BE64F49CB3A2}C:\program files (x86)\microsoft games\age of empires ii\empires2.exe] => (Block) C:\program files (x86)\microsoft games\age of empires ii\empires2.exe
FirewallRules: [TCP Query User{DD5EB663-AB25-4F40-B57B-DDBBF9B7D0AF}C:\program files (x86)\microsoft games\age of empires ii\empires2.exe] => (Block) C:\program files (x86)\microsoft games\age of empires ii\empires2.exe
FirewallRules: [UDP Query User{9D6BFF0C-D921-4A61-8257-EE3D300A145A}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe
FirewallRules: [TCP Query User{E125C8CD-5AA4-448B-B4CE-F7F6A559AFFC}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe
FirewallRules: [UDP Query User{994ED7BF-747A-4E8F-B372-4723BC892424}C:\games\age of kings (00.11.26.0701) (beta)\empires2.exe] => (Block) C:\games\age of kings (00.11.26.0701) (beta)\empires2.exe
FirewallRules: [TCP Query User{E78BC3D5-4613-4279-86C6-E0C83D085491}C:\games\age of kings (00.11.26.0701) (beta)\empires2.exe] => (Block) C:\games\age of kings (00.11.26.0701) (beta)\empires2.exe
FirewallRules: [UDP Query User{46CC8B95-9177-4D81-8A46-9401EDE11DED}C:\users\marek\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\marek\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{36D0A3BE-CBDC-47F1-A664-D546A51A033B}C:\users\marek\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\marek\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{86C58E56-F478-4C17-B66A-E06860541BDD}C:\program files (x86)\microsoft games\age of empires\setupreg.exe.exe] => (Block) C:\program files (x86)\microsoft games\age of empires\setupreg.exe.exe
FirewallRules: [TCP Query User{F39D8C25-2A11-4805-AE66-756C113BAB48}C:\program files (x86)\microsoft games\age of empires\setupreg.exe.exe] => (Block) C:\program files (x86)\microsoft games\age of empires\setupreg.exe.exe
FirewallRules: [UDP Query User{106D4BFA-C85A-4D6F-A318-D686D24EFC29}C:\program files (x86)\microsoft games\age of empires\empiresx.exe] => (Block) C:\program files (x86)\microsoft games\age of empires\empiresx.exe
FirewallRules: [TCP Query User{382A36EE-9026-4305-8520-49F0B6E1A2FD}C:\program files (x86)\microsoft games\age of empires\empiresx.exe] => (Block) C:\program files (x86)\microsoft games\age of empires\empiresx.exe
FirewallRules: [UDP Query User{B2268071-5169-4457-9419-7EA3299B37DB}C:\program files (x86)\voobly\voobly.exe] => (Allow) C:\program files (x86)\voobly\voobly.exe
FirewallRules: [TCP Query User{3148B727-058B-4A88-9A61-1A90CA080291}C:\program files (x86)\voobly\voobly.exe] => (Allow) C:\program files (x86)\voobly\voobly.exe
FirewallRules: [{07037C03-95FC-4BA4-A7DD-AE74704357D6}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Settlers 7\Data\Base\_Dbg\Bin\Release\Settlers7R.exe
FirewallRules: [{1B184F73-228B-454B-8513-6B8DCEEBF4DD}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Settlers 7\Data\Base\_Dbg\Bin\Release\Settlers7R.exe
FirewallRules: [UDP Query User{3A8CC842-ABE2-48DF-A46C-DBF10A515F14}C:\program files (x86)\picosmostools\picosmosshows.exe] => (Allow) C:\program files (x86)\picosmostools\picosmosshows.exe
FirewallRules: [TCP Query User{968D9D85-0F4E-4F38-B7CB-623EBEF22635}C:\program files (x86)\picosmostools\picosmosshows.exe] => (Allow) C:\program files (x86)\picosmostools\picosmosshows.exe
FirewallRules: [UDP Query User{BC2D03E7-4778-4092-B3AD-C73CCB083231}C:\program files (x86)\picosmostools\picosmostools.exe] => (Allow) C:\program files (x86)\picosmostools\picosmostools.exe
FirewallRules: [TCP Query User{2E690297-429C-4BA1-817C-356A1549A8F2}C:\program files (x86)\picosmostools\picosmostools.exe] => (Allow) C:\program files (x86)\picosmostools\picosmostools.exe
FirewallRules: [UDP Query User{884E3115-5E0B-4781-9631-1908FA6A367D}C:\program files\java\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_91\bin\javaw.exe
FirewallRules: [TCP Query User{82C44BA5-E226-4E83-9ED7-10EA12A4A796}C:\program files\java\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_91\bin\javaw.exe
FirewallRules: [{F78DB68A-2C14-4147-8367-6FE1CEB31D81}] => (Block) LPort=445
FirewallRules: [{0B2141AC-7CC1-4E88-BE27-CA885595DD8A}] => (Block) LPort=445
FirewallRules: [{100C7A73-4857-4AAA-950A-082CBDDC024F}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe
FirewallRules: [{8CA7574B-9D32-4CB4-83A2-0C08A235042C}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
FirewallRules: [{36C1E83C-8BA5-4355-88F0-3BA6E31159DF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MortalKombat_KompleteEdition\DiscContentPC\MKLauncher.exe
FirewallRules: [{F4FD2568-DC01-4F1C-9C3A-ABB9149061EB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MortalKombat_KompleteEdition\DiscContentPC\MKLauncher.exe
FirewallRules: [{6B98C9F5-181C-428A-B6BB-19713988BC3C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MortalKombat_KompleteEdition\DiscContentPC\MKKE.exe
FirewallRules: [{ECD7B043-BDDC-481B-A742-AD4DE8DF0471}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MortalKombat_KompleteEdition\DiscContentPC\MKKE.exe
FirewallRules: [UDP Query User{710EE911-37BD-49D2-B8CF-BF33C7C9DED0}C:\zdaemon\zlauncher.exe] => (Allow) C:\zdaemon\zlauncher.exe
FirewallRules: [TCP Query User{C7217A04-9090-4F02-9C03-2B28F734BB10}C:\zdaemon\zlauncher.exe] => (Allow) C:\zdaemon\zlauncher.exe
FirewallRules: [{80C99590-5E29-4E02-BAA8-7C57D2665397}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{66B19114-30A2-4079-B486-585A9E61D023}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{419B8B9A-13FE-4251-A61A-A575F26DD261}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mobrule Classic\MR.exe
FirewallRules: [{A846DEDF-7173-4EB5-877E-8538175BBC2F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mobrule Classic\MR.exe
FirewallRules: [{AA8CF3B0-6047-411E-B295-D854F662BE95}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ultimate Doom\base\dosbox.exe
FirewallRules: [{04178DA0-38DE-445C-BA4E-89CD85B512FB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ultimate Doom\base\dosbox.exe
FirewallRules: [{AEA4DAD3-8BBD-4B1A-A1EE-0E6C5808A81B}] => (Allow) C:\Program Files (x86)\PicosmosTools\PTInstOnline.exe
FirewallRules: [{D31E58DB-E73E-4DAE-BC2B-5F79DABBE103}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe
FirewallRules: [{5C60542A-7155-4A74-ACA0-AAF00AAFBB0E}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe

darkmarek
Level 1.5
Level 1.5
Příspěvky: 131
Registrován: srpen 18
Pohlaví: Muž
Stav:
Offline

Re: Prosím o pomoc zatížený disk a podezření na viry

Příspěvekod darkmarek » 30 srp 2018 20:55

97E3-F95501888203}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sega Classics\SEGAGameRoom.exe
FirewallRules: [{BED3AB02-D156-4A56-8AE7-16D10D7DA926}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sega Classics\SEGAGameRoom.exe
FirewallRules: [UDP Query User{A0CF1DBF-5DCC-4E7A-BD84-B6F47BC12A85}C:\games\warcraft 2 - wargus\stratagus.exe] => (Allow) C:\games\warcraft 2 - wargus\stratagus.exe
FirewallRules: [TCP Query User{954D3669-43F7-4EC6-9729-61EA9FEF3881}C:\games\warcraft 2 - wargus\stratagus.exe] => (Allow) C:\games\warcraft 2 - wargus\stratagus.exe
FirewallRules: [{3347CFED-B719-47E4-8511-6885A056E787}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Divinity - Original Sin\Shipping\EoCApp.exe
FirewallRules: [{71D022E9-A6F9-4A9E-A58B-0AC716455AC6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Divinity - Original Sin\Shipping\EoCApp.exe
FirewallRules: [{6EE095E8-914F-44BB-BA9E-D6C5BF096C5C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rise of the Triad\Binaries\ROTTLauncher.exe
FirewallRules: [{725C896C-913F-4EEA-A70A-FA2C7F961F8C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rise of the Triad\Binaries\ROTTLauncher.exe
FirewallRules: [{62E6D471-0B2E-4C06-ADC2-FF8BBF3F33F1}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{1F1CAF00-DB95-44AE-B03F-0424C41F12CF}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{20829B61-DE25-444A-A3ED-AB9945687AC6}] => (Allow) LPort=2869
FirewallRules: [{691682D9-473A-4571-A369-490A0F174C81}] => (Allow) LPort=1900
FirewallRules: [{B0B5D819-A9E9-4E27-B227-9A24CF820411}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{22CA1AFA-D2AE-4BC9-84E4-1C1717ADA867}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{C07785C6-DD18-4965-A8EE-775A905B242B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{0878CCF5-CC67-4368-969F-BC6553054356}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD9.EXE
FirewallRules: [{484B317B-5AD6-4D57-A5B7-A4E0E07FB9D9}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{57A239F2-B2DF-49C7-A2B2-F1F776CC58C4}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{52B7374C-0654-4AD5-947F-75E6D37A6346}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{D583DBFD-A451-4342-B4E6-530FBC0FEAAE}] => (Allow) C:\Users\Marek\AppData\Local\Akamai\netsession_win.exe
FirewallRules: [{929700EB-B628-4202-88CC-4BCB2ACD53B1}] => (Allow) C:\Users\Marek\AppData\Local\Akamai\netsession_win.exe
FirewallRules: [{4982650C-BDE6-4417-8B57-4F16BD7641FC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{156F442B-AA7B-4E04-B8DE-7B9A0F220FB0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [TCP Query User{40E24C5D-B555-4605-A433-A2E37022F0C9}C:\users\marek\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\marek\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{D537FBA0-3F3D-4C34-84A2-C29D4A230718}C:\users\marek\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\marek\appdata\local\akamai\netsession_win.exe
FirewallRules: [{1598EEE8-BC94-4E23-8B3C-F1791E1C5DEA}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{9B988492-D5F3-41B7-AA99-3152574E3082}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{DBC0B8DB-C114-4B4F-AD58-F337B9D5CE52}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{69422CDF-0034-4D9D-9339-3A2B89D2A832}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [{11B6FFAE-F2A5-4118-B36E-5535496BE76C}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
FirewallRules: [TCP Query User{6FF3DC25-8C4D-41BD-BA03-3EF9CF364280}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [UDP Query User{0B2B6833-066C-4E78-B957-108447A1AE50}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [TCP Query User{E98A5485-EC2E-434C-8C19-99604A158358}C:\program files (x86)\microsoft games\age of empires\empiresx.exe] => (Block) C:\program files (x86)\microsoft games\age of empires\empiresx.exe
FirewallRules: [UDP Query User{F6CF7564-888E-45A0-B81B-6D21E13E40AA}C:\program files (x86)\microsoft games\age of empires\empiresx.exe] => (Block) C:\program files (x86)\microsoft games\age of empires\empiresx.exe
FirewallRules: [TCP Query User{9D52FB26-E566-4A4C-817F-CFBA58A13E0E}C:\program files (x86)\dune legacy\dunelegacy.exe] => (Block) C:\program files (x86)\dune legacy\dunelegacy.exe
FirewallRules: [UDP Query User{E99260DC-38F7-489F-8433-A15747F8B13F}C:\program files (x86)\dune legacy\dunelegacy.exe] => (Block) C:\program files (x86)\dune legacy\dunelegacy.exe
FirewallRules: [{9F6FFC45-AC4B-4318-97C5-BF2FFD690020}] => (Allow) C:\Program Files (x86)\Spyware Terminator\SpywareTerminator.exe
FirewallRules: [{E9BE297A-0128-4F21-939E-8DA7FC37339D}] => (Allow) C:\Program Files (x86)\Spyware Terminator\SpywareTerminator.exe
FirewallRules: [{E18AD8B0-DB85-43BC-BA28-C3956A7DCF79}] => (Allow) C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
FirewallRules: [{0828B2F9-DA41-4DDD-BD55-98F1F54E2ECD}] => (Allow) C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
FirewallRules: [TCP Query User{D8453CB2-28D4-44D8-A5E8-0CD1E24C6F8F}C:\program files (x86)\super mario bros\virtuanes.exe] => (Block) C:\program files (x86)\super mario bros\virtuanes.exe
FirewallRules: [UDP Query User{34940464-282E-47DE-92B1-2FF6C811B4CF}C:\program files (x86)\super mario bros\virtuanes.exe] => (Block) C:\program files (x86)\super mario bros\virtuanes.exe
FirewallRules: [TCP Query User{79A69484-818B-404C-86F9-162BEE6974D5}C:\program files (x86)\winamp\winamp.exe] => (Block) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [UDP Query User{C5649C96-BD98-437F-9F20-0A839C865B02}C:\program files (x86)\winamp\winamp.exe] => (Block) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [{BBC90601-6396-41B4-A4DA-3FDFCB771F79}] => (Allow) C:\Program Files (x86)\Packed Bytes\Packed Chess Free\PackedChessFreeServer.exe
FirewallRules: [{95340496-E0CA-4870-B2AD-0B64833EFB82}] => (Allow) LPort=3702
FirewallRules: [{405F98A4-5BCA-4962-955D-CFCC96DB716B}] => (Allow) C:\Program Files (x86)\Packed Bytes\Packed Chess Free\PackedChessFreeServer.exe
FirewallRules: [{436A07F7-B00E-444B-BFDD-6DB094B61FB7}] => (Allow) LPort=3702
FirewallRules: [{F0CA2932-8560-42A8-B4D8-6D2AF04BD2F7}] => (Allow) C:\Program Files (x86)\Packed Bytes\Packed Chess Free\PackedChessFreeServer.exe
FirewallRules: [{466DA1CB-1525-493D-BEEF-02656A2EB298}] => (Allow) LPort=3702
FirewallRules: [{6F9BF2F4-9BE8-420F-A2F6-C0EE969EDA32}] => (Allow) C:\Program Files (x86)\Packed Bytes\Packed Chess Free\PackedChessFreeServer.exe
FirewallRules: [{37A36C0A-989A-48D9-AD70-68C06897F7B2}] => (Allow) LPort=3702
FirewallRules: [{92070B2D-172F-4A22-B011-FA412F731BC1}] => (Allow) C:\Program Files (x86)\Packed Bytes\Packed Chess Free\PackedChessFreeServer.exe
FirewallRules: [{097F0EB5-F5FF-4926-B760-A2EEFCDC9E62}] => (Allow) LPort=3702
FirewallRules: [{F16D46BD-4DAA-41EA-BF01-0B26218D3116}] => (Allow) C:\Program Files (x86)\Packed Bytes\Packed Chess Free\PackedChessFreeServer.exe
FirewallRules: [{082C9238-ACE7-40FB-A040-3C677716AB01}] => (Allow) LPort=3702
FirewallRules: [{1B7C7F58-AACE-4B62-B134-6C4118F0211D}] => (Allow) C:\Program Files (x86)\Packed Bytes\Packed Chess Free\PackedChessFreeServer.exe
FirewallRules: [{17E80B32-5A7D-4177-A483-E8E6C8729BFC}] => (Allow) LPort=3702
FirewallRules: [{FA6456F9-5DB9-4C6D-A8CB-94C9F8455333}] => (Allow) C:\Program Files (x86)\Packed Bytes\Packed Chess Free\PackedChessFreeServer.exe
FirewallRules: [{E6F8D5EF-C663-419B-8689-7B455FDBE310}] => (Allow) LPort=3702
FirewallRules: [{D4E0BB0B-FD8A-4005-A3CE-8E1A1D4FAAC1}] => (Allow) C:\Program Files (x86)\GSC World Publishing\S.T.A.L.K.E.R. - Call of Pripyat\Stalker-COP.exe
FirewallRules: [{34B421E0-B518-4C59-996D-4FDD22A61CE6}] => (Allow) C:\Program Files (x86)\GSC World Publishing\S.T.A.L.K.E.R. - Call of Pripyat\Stalker-COP.exe
FirewallRules: [{1B3CC881-0EC0-4E48-8681-DB99B5753D58}] => (Allow) C:\Program Files (x86)\GSC World Publishing\S.T.A.L.K.E.R. - Call of Pripyat\bin\xrEngine.exe
FirewallRules: [{39A82C8F-1C41-4E09-B783-F2AE6A2C3128}] => (Allow) C:\Program Files (x86)\GSC World Publishing\S.T.A.L.K.E.R. - Call of Pripyat\bin\xrEngine.exe
FirewallRules: [{AF4C778F-84EC-4244-AAED-7812B94AB45B}] => (Allow) C:\Program Files (x86)\GSC World Publishing\S.T.A.L.K.E.R. - Call of Pripyat\bin\dedicated\xrEngine.exe
FirewallRules: [{5B63C5F3-0BE9-4F41-876E-B0B8F7463F8D}] => (Allow) C:\Program Files (x86)\GSC World Publishing\S.T.A.L.K.E.R. - Call of Pripyat\bin\dedicated\xrEngine.exe
FirewallRules: [{27C5F43F-91DE-44E1-A396-D62D9735C0B2}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3.exe
FirewallRules: [{03E0DF44-3912-4A25-A93D-8B2FAE815C95}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3.exe
FirewallRules: [{50CF4B65-1D63-43CE-8464-A1A631112C24}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3x.exe
FirewallRules: [{A06AD4E9-9BC0-4767-ABF9-4E18F8C6FC2C}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3x.exe
FirewallRules: [{F0DA5201-2571-45CF-8762-80063A399765}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3y.exe
FirewallRules: [{EE831BF0-6677-48DD-B4D9-FF79647DAC2F}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3y.exe
FirewallRules: [{2826E5E6-E407-4415-87EE-09F109337D1D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\townsdemo\Towns.exe
FirewallRules: [{874F87D6-224E-4042-84AC-2185C299CED3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\townsdemo\Towns.exe
FirewallRules: [{2E880948-2C14-4870-88E5-B670122A3014}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Deathtrap Dungeon\DD_CD.EXE
FirewallRules: [{77F9BD6E-A5D2-4AF0-AA32-241FF0CB28A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Deathtrap Dungeon\DD_CD.EXE
FirewallRules: [{4564412C-1634-450D-BCE7-1F6A0FA0CDEB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dungeon siege iii\Dungeon Siege III.exe
FirewallRules: [{7F91FDAB-E42E-49B9-A1C2-6D4EF2C73D31}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dungeon siege iii\Dungeon Siege III.exe
FirewallRules: [TCP Query User{B5E221A3-C35C-405A-AD96-F870667B2553}C:\gog games\stronghold hd\stronghold.exe] => (Allow) C:\gog games\stronghold hd\stronghold.exe
FirewallRules: [UDP Query User{B00EA518-335F-4FAE-9237-14F458AD29C3}C:\gog games\stronghold hd\stronghold.exe] => (Allow) C:\gog games\stronghold hd\stronghold.exe
FirewallRules: [TCP Query User{2A4C00A8-297C-4121-AE13-419C9B2D4508}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe
FirewallRules: [UDP Query User{0A8B8533-4D9C-494A-9761-3C717848CC5A}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe
FirewallRules: [{49CE060A-534F-4041-B0B2-F9590053A96A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.524\Agent.exe
FirewallRules: [{74E5A03D-0A79-4510-946F-D7000081559A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.524\Agent.exe
FirewallRules: [{BBCC8773-A62C-4D05-9B32-FB7E6718F166}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{FD675C80-894C-4264-9E9F-26895A3F63FD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{6717BFA8-8211-40D8-8B94-8AB61652EF19}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [{31BBCF65-88E1-4557-9043-7ADE663E5C30}] => (Allow) C:\Program Files (x86)\Diablo III\Diablo III.exe
FirewallRules: [TCP Query User{84605F8D-88F1-4B5B-9F84-48EC42099FC6}C:\users\marek\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\marek\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{F3EBB7BE-3861-43DA-9257-DC4844BF5669}C:\users\marek\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\marek\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{6E860B5B-D081-4D55-B44D-65BDCB88BC82}C:\users\marek\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\marek\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{3EBF7CD0-7594-4AA8-BEA5-576C177FB1F4}C:\users\marek\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\marek\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{35231A29-FDC9-4AF5-9455-77C4F65784A8}C:\users\marek\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\marek\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{72E0D71E-E0BF-407E-A215-7472657B7923}C:\users\marek\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\marek\appdata\roaming\spotify\spotify.exe
FirewallRules: [{FB47D436-660A-47D3-B46B-3C4B9A6694A5}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{DDD49E61-AB44-497D-9EB9-3895B535F50D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{A158D6C8-74D3-4C8A-92A9-15EF6FCAA6B0}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3023\Agent.exe
FirewallRules: [{BF02E417-D0DA-497F-8E6D-A2B23977E1F8}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3023\Agent.exe
FirewallRules: [{783CBD7C-744D-4642-8FB7-A12BF6C219A0}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{AFFF93FB-7576-4B8C-9DAA-E9DDD60AA913}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{100211EA-E5E0-4378-96D8-7B9B4CC5418F}] => (Allow) C:\Users\Marek\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
FirewallRules: [TCP Query User{D194C5AD-C385-466C-8B0F-D3B34BD3D407}C:\programdata\battle.net\agent\agent.3109\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.3109\agent.exe
FirewallRules: [UDP Query User{CE357FAD-28D0-4579-BB59-F440AB314F23}C:\programdata\battle.net\agent\agent.3109\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.3109\agent.exe
FirewallRules: [TCP Query User{94E704E3-D5E6-4AF2-99FB-8F21FF60D07D}C:\programdata\battle.net\agent\agent.3235\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.3235\agent.exe
FirewallRules: [UDP Query User{10363E50-C78D-40C2-9402-BE8B2C7E7775}C:\programdata\battle.net\agent\agent.3235\agent.exe] => (Allow) C:\programdata\battle.net\agent\agent.3235\agent.exe
FirewallRules: [{534D92E7-B3BC-432E-95BD-0B4E02693150}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{66EE0264-86C6-452F-A201-17767FDC80CC}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{9CABFFC4-43D9-4F0A-90DC-C401BC4B0639}] => (Allow) C:\Program Files (x86)\GameSpy Arcade\Aphex.exe
FirewallRules: [{3E2A7206-6739-4981-B5DC-4F4B5F0614F0}] => (Allow) C:\Program Files (x86)\GameSpy Arcade\Aphex.exe
FirewallRules: [{B3DD7EDD-A1E7-4C3E-AE2B-81B656793E79}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DuckTales Remastered\executable\DuckTales.exe
FirewallRules: [{5C862E86-A8EF-4CA1-BF70-60FDF8F79331}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DuckTales Remastered\executable\DuckTales.exe
FirewallRules: [{E36D19F1-4BBB-4882-8B61-F00A69A78F2F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe
FirewallRules: [{455DB9BB-1EC0-4733-BA5C-C92F4285A82A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe
FirewallRules: [TCP Query User{6102D83C-FB51-45AE-A6CB-B3398130061C}C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe
FirewallRules: [UDP Query User{F2CBB1C8-C2A4-4C83-9CD2-795F0F0D65F8}C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dragon age ultimate edition\bin_ship\daorigins.exe
FirewallRules: [TCP Query User{84745F7B-82B7-4644-9D11-442280CB80C9}C:\program files (x86)\steam\steamapps\common\rise of the triad\binaries\win32\rott.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\rise of the triad\binaries\win32\rott.exe
FirewallRules: [UDP Query User{3B1898B7-183C-48CD-BA03-47A541A3EC86}C:\program files (x86)\steam\steamapps\common\rise of the triad\binaries\win32\rott.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\rise of the triad\binaries\win32\rott.exe
FirewallRules: [TCP Query User{471F887C-BFBB-4BDA-826E-07D74A0AAE22}C:\program files (x86)\freetime\formatfactory\formatfactory.exe] => (Allow) C:\program files (x86)\freetime\formatfactory\formatfactory.exe
FirewallRules: [UDP Query User{94893BF0-3775-4663-9199-2260946834C2}C:\program files (x86)\freetime\formatfactory\formatfactory.exe] => (Allow) C:\program files (x86)\freetime\formatfactory\formatfactory.exe
FirewallRules: [{CFC9E029-18D7-4B3D-BFF3-23DD8C10E251}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{0D48E7F6-901C-499F-83C6-7A7C0262D357}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{5BE19340-3181-4351-B4EB-452B7F26B633}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{BDDA149D-4463-49D8-9FBD-0141068D5623}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [TCP Query User{86E22CB8-1A4D-487B-908D-6C0D40F2EEBF}C:\program files (x86)\steam\steamapps\common\anno 1404\tools\addonweb.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\anno 1404\tools\addonweb.exe
FirewallRules: [UDP Query User{F356C7BC-8E3D-4FCB-98F6-4C437AAAE9FD}C:\program files (x86)\steam\steamapps\common\anno 1404\tools\addonweb.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\anno 1404\tools\addonweb.exe
FirewallRules: [{C846A799-DB9A-4D8C-90F3-905FC45C187F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sega Classics\SEGAGenesisClassics.exe
FirewallRules: [{D5E96C11-5D37-4AD7-9EF8-BF5A3BE9F813}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sega Classics\SEGAGenesisClassics.exe
FirewallRules: [{0A8D3533-B5A8-4C6C-8088-15D034F685D6}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{623273E1-8E7E-48F2-95E4-A17D81F6ED71}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{1114E5D2-91DF-44E5-B4B8-51DD916FA43D}C:\gog games\rollercoaster tycoon deluxe\rct.exe] => (Allow) C:\gog games\rollercoaster tycoon deluxe\rct.exe
FirewallRules: [UDP Query User{1B3754C0-5C12-4748-88EE-4E8FA06BA1A6}C:\gog games\rollercoaster tycoon deluxe\rct.exe] => (Allow) C:\gog games\rollercoaster tycoon deluxe\rct.exe
FirewallRules: [{E1296EB3-989E-4E78-B1C7-8E1E3533E9F7}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{180E838C-0A73-44C3-B73D-9EFEFB81F57C}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{D8A2B0D4-ACB8-4B59-95DB-FBA562CE8B42}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{0642044A-733B-4BF7-AB7F-6BFFBEECE234}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{85AD4040-A532-47EC-8433-8210D4DA450C}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{EF38E1C9-23DD-43F6-8740-60006B6B0457}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{5B7C76F3-6D03-443E-AF48-9C3B312B99E7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Duke Nukem 3D\bin\dosbox\dosbox.exe
FirewallRules: [{D8D2D04A-7CF9-42FB-87AB-A8D5F07CF246}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Duke Nukem 3D\bin\dosbox\dosbox.exe
FirewallRules: [TCP Query User{E6988430-B5FE-4147-B926-CA8025B4DD78}C:\program files (x86)\simplitec\kmpfaster\serviceprovider.exe] => (Block) C:\program files (x86)\simplitec\kmpfaster\serviceprovider.exe
FirewallRules: [UDP Query User{17F4F03A-AA9C-4623-8CE5-BC86C4C83BEA}C:\program files (x86)\simplitec\kmpfaster\serviceprovider.exe] => (Block) C:\program files (x86)\simplitec\kmpfaster\serviceprovider.exe
FirewallRules: [TCP Query User{E2D2341F-F47B-49F9-A457-EA1244E89AED}C:\users\marek\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\marek\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{C24E121B-28C8-4C75-B69E-64DA84290E88}C:\users\marek\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\marek\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{FE68EE47-9C6E-49BE-BED5-58559246FF6F}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe
FirewallRules: [{7F8704B8-2F9E-4BF7-A928-B4FBF21D6634}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
FirewallRules: [{E2267C08-12AE-4B49-9CBD-06238B95621C}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
FirewallRules: [{BA41415A-581B-4B24-87A4-C3A6E5510DB4}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe
FirewallRules: [{43B6390E-0195-4D93-8DBF-94C4449D34E5}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Package\PTInstOnline.exe
FirewallRules: [{A246CA0F-4D2C-4D9E-95AF-C360DA8AB5DC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cossacks 3\cossacks.exe
FirewallRules: [{A7B2D899-33B8-4F2B-9ADF-0600597EBC06}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cossacks 3\cossacks.exe
FirewallRules: [{7A6FD3C0-BB0D-4278-9C6E-045D41921480}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cossacks 3\config.exe
FirewallRules: [{8C4680F4-FC63-45EA-A1BF-988570E5FD8C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cossacks 3\config.exe
FirewallRules: [{7BB240E1-BD90-4CDC-8EC1-5C836266A2B3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cossacks 3\editor.exe
FirewallRules: [{A38A56AE-B5B0-40F9-9E1B-A6485BA9A558}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cossacks 3\editor.exe
FirewallRules: [{6962297B-EB41-4838-A529-8397A8E4C2F1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cossacks 3\modman.exe
FirewallRules: [{AAB967CB-3409-4843-9974-1B6ABF5F6EEF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cossacks 3\modman.exe
FirewallRules: [{02D882E9-58DF-442F-A557-142414D12560}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{D555AC68-407E-4BDF-AE38-0A9BBC4FA4AA}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{B18F1193-F02C-40F0-8B6B-35C99B467A6A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{4D68B323-543F-4767-A136-063CF2A01F6A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{6D17F662-F62B-4C59-A096-F8DF6819A4F0}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{6C9D433E-2178-4013-86E3-E382080A78C2}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{376329F0-76AE-4E1F-B86C-FCA60F130C00}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [TCP Query User{F93078F8-4DD0-4E70-BF2F-24F7B36E31D4}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe
FirewallRules: [UDP Query User{6E91C18F-0778-496E-A616-6EC97D66A099}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe
FirewallRules: [TCP Query User{41105616-3BED-4B27-B2B8-75712B4615B1}C:\program files (x86)\voobly\voobly.exe] => (Allow) C:\program files (x86)\voobly\voobly.exe
FirewallRules: [UDP Query User{51A660D1-733F-440F-82A5-CD19D992DDCD}C:\program files (x86)\voobly\voobly.exe] => (Allow) C:\program files (x86)\voobly\voobly.exe
FirewallRules: [TCP Query User{3647DDBE-14E7-4D4B-9635-D3EDEC7D3C70}C:\program files (x86)\microsoft games\age of empires\empires.exe] => (Allow) C:\program files (x86)\microsoft games\age of empires\empires.exe
FirewallRules: [UDP Query User{04464604-0004-4868-9478-07440107E644}C:\program files (x86)\microsoft games\age of empires\empires.exe] => (Allow) C:\program files (x86)\microsoft games\age of empires\empires.exe
FirewallRules: [{D1A418B3-CAAB-435F-8873-5DFC8A357C48}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
FirewallRules: [{B5EEB9F6-C203-4C9F-BF9A-5323D291F0CD}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe
FirewallRules: [TCP Query User{C932AFDC-3DC7-4355-BC6B-21C57C0B2E2C}C:\users\marek\appdata\local\programs\deezer-desktop\deezer.exe] => (Allow) C:\users\marek\appdata\local\programs\deezer-desktop\deezer.exe
FirewallRules: [UDP Query User{B8D8BC9E-5826-4448-81F3-DF080131B6F7}C:\users\marek\appdata\local\programs\deezer-desktop\deezer.exe] => (Allow) C:\users\marek\appdata\local\programs\deezer-desktop\deezer.exe
FirewallRules: [{C339C763-DB6E-4435-B2A9-7383BD049C86}] => (Block) C:\users\marek\appdata\local\programs\deezer-desktop\deezer.exe
FirewallRules: [{E4FEA6F3-2FBB-4121-8791-A5575F9B5DD8}] => (Block) C:\users\marek\appdata\local\programs\deezer-desktop\deezer.exe
FirewallRules: [{E16AA664-4EAE-4CDC-9904-A2C4ED6A7B5C}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
FirewallRules: [{928BCD44-7448-4F3E-8E66-1E6BBCD67975}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe
FirewallRules: [{E76D39EB-C79A-4815-880D-55C25A8D25CE}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
FirewallRules: [{EADF0E24-55C8-44D3-A875-170EF7C0F4F5}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe
FirewallRules: [{8604A692-D8D9-4FD3-BCCC-8AEA2EE14C3A}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Package\PTInstOnline.exe
FirewallRules: [{F65ED6DC-5311-4149-82D4-25CBBACE751F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [{1B49ECE0-68C4-4225-8FF8-AFFC8E029910}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [{718134DA-3ECB-4B09-AFA4-732FD7C16F6D}] => (Allow) C:\Program Files (x86)\BlueStacks\HD-Player.exe
FirewallRules: [{D9431144-533D-470E-AEB0-A85B79977A35}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{92C05C93-71F3-4192-B98F-567BBD3832A2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{C0146A7C-6E3C-446B-A933-D334834B0EFB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{AB2183A3-1E5D-41C5-837D-0D51288831EF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{8B2279D1-650D-422A-9690-9AA67A2B3926}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{886F7954-8FE4-4CF2-A34F-DF085BF4B1EA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D50F533C-5503-4D7E-9907-285A0FA584DC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{DC14161D-3D25-42A4-A654-64FDC5332493}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe
FirewallRules: [{9D5B5CCC-6744-4D04-84F2-A5A38ABA188E}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{AC1D9A87-253B-468C-83B7-67D31DCAFAD2}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{B9CEA118-32EE-435A-BE06-EFF85F0ACFC1}] => (Allow) C:\Users\Marek\AppData\Local\Temp\7ZipSfx.000\bin\tools\aria2c.exe

==================== Restore Points =========================

27-08-2018 09:19:03 Windows Update

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/30/2018 08:13:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Native.Host.exe, verze: 0.0.0.0, časové razítko: 0x58b81543
Název chybujícího modulu: combase.dll, verze: 10.0.16299.492, časové razítko: 0xcacd8b78
Kód výjimky: 0xc000027b
Posun chyby: 0x001c6411
ID chybujícího procesu: 0xd9c
Čas spuštění chybující aplikace: 0x01d4408cd4327436
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\2414FC7A.Viber_6.6.21745.1000_x86__p61zvh252yqyr\Native.Host.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\combase.dll
ID zprávy: 128a4057-2327-44ce-a2ed-96cbacd0e501
Úplný název chybujícího balíčku: 2414FC7A.Viber_6.6.21745.1000_x86__p61zvh252yqyr
ID aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1

Error: (08/30/2018 08:11:30 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (08/30/2018 07:01:03 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (08/30/2018 06:01:23 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (08/30/2018 05:00:44 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (08/30/2018 04:56:52 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (08/30/2018 04:46:42 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: MAREK-PC)
Description: Balíček Microsoft.Windows.ShellExperienceHost_10.0.16299.611_neutral_neutral_cw5n1h2txyewy+App se ukončil, protože jeho pozastavování trvalo moc dlouho.

Error: (08/30/2018 04:28:09 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.


System errors:
=============
Error: (08/30/2018 08:10:16 PM) (Source: DCOM) (EventID: 10016) (User: MAREK-PC)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli Marek-PC\Marek (SID: S-1-5-21-2367062692-840817020-3150738865-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (08/30/2018 08:05:02 PM) (Source: DCOM) (EventID: 10016) (User: MAREK-PC)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli Marek-PC\Marek (SID: S-1-5-21-2367062692-840817020-3150738865-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (08/30/2018 06:20:19 PM) (Source: DCOM) (EventID: 10016) (User: MAREK-PC)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli Marek-PC\Marek (SID: S-1-5-21-2367062692-840817020-3150738865-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (08/30/2018 04:54:24 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Intel(R) Management & Security Application User Notification Service přestala během spouštění reagovat.

Error: (08/30/2018 04:51:59 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Správce stažených map přestala během spouštění reagovat.

Error: (08/30/2018 04:51:31 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {5B99FA76-721C-423C-ADAC-56D03C8A8007} se v daném časovém limitu neregistroval u služby DCOM.

Error: (08/30/2018 04:51:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba aswbIDSAgent neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (08/30/2018 04:51:08 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby aswbIDSAgent bylo dosaženo časového limitu (60000 ms).


Windows Defender:
===================================
Date: 2018-08-25 15:58:52.950
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Occamy.C
ID: 2147726780
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\Marek\Desktop\zoek.exe
Původ zjišťování: Místní počítač
Typ zjišťování: FastPath
Zdroj zjišťování: Systém
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: Unknown
Verze podpisu: AV: 1.275.151.0, AS: 1.275.151.0, NIS: 1.275.151.0
Verze modulu: AM: 1.1.15200.1, NIS: 1.1.15200.1

Date: 2018-07-10 11:54:21.465
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {917C0C30-9A59-43F8-B401-395D634F0B87}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2018-07-09 23:30:14.363
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {29D64E30-F5DD-4234-BC06-9AC24C51640B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2018-07-09 23:04:40.150
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {37FCD7D1-1292-4E6D-820E-2902AA5DC003}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2018-06-22 15:46:43.516
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Spursint.F!cl
ID: 2147717281
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\$Recycle.Bin\S-1-5-21-2367062692-840817020-3150738865-1001\$RL6VMGH.exe
Původ zjišťování: Místní počítač
Typ zjišťování: FastPath
Zdroj zjišťování: Systém
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: Unknown
Verze podpisu: AV: 1.269.1752.0, AS: 1.269.1752.0, NIS: 1.269.1752.0
Verze modulu: AM: 1.1.14901.4, NIS: 1.1.14901.4

Date: 2018-08-25 15:13:34.195
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.275.151.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.15200.1
Kód chyby: 0x80240016
Popis chyby :Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2018-08-25 10:39:20.594
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu: 1.275.148.0
Předchozí verze podpisu: 1.273.1259.0
Zdroj aktualizace: Uživatel
Typ podpisu: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu: 1.1.15200.1
Předchozí verze modulu: 1.1.15100.1
Kód chyby: 0x80509004
Popis chyby :Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2018-08-25 10:39:20.594
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu: 1.275.148.0
Předchozí verze podpisu: 1.273.1259.0
Zdroj aktualizace: Uživatel
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu: 1.1.15200.1
Předchozí verze modulu: 1.1.15100.1
Kód chyby: 0x80509004
Popis chyby :Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2018-08-25 10:39:20.593
Description:
Program Antivirová ochrana v programu Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu: 1.1.15200.1
Předchozí verze modulu: 1.1.15100.1
Uživatel: NT AUTHORITY\NETWORK SERVICE
Kód chyby: 0x80509004
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2018-08-25 10:34:40.088
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.273.1259.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.15100.1
Kód chyby: 0x80240022
Popis chyby :V daném programu nelze zkontrolovat aktualizace definic.

CodeIntegrity:
===================================

Date: 2018-08-30 20:16:29.943
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-08-30 20:16:29.942
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-08-30 20:14:19.804
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-08-30 20:14:19.802
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-08-30 20:11:54.037
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-08-30 20:11:54.035
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-08-30 19:59:06.603
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2018-08-30 19:59:06.601
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i3 CPU M 370 @ 2.40GHz
Percentage of memory in use: 79%
Total physical RAM: 3766.7 MB
Available physical RAM: 759.17 MB
Total Virtual: 15542.7 MB
Available Virtual: 11517.78 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:581.07 GB) (Free:61.51 GB) NTFS

\\?\Volume{93a27cf2-d9ad-11e0-a154-806e6f6e6963}\ (SYSTEM RESERVED) (Fixed) (Total:0.1 GB) (Free:0.03 GB) NTFS
\\?\Volume{93a27cf1-d9ad-11e0-a154-806e6f6e6963}\ (PQSERVICE) (Fixed) (Total:15 GB) (Free:1.38 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 596.2 GB) (Disk ID: 40ECC789)
Partition 1: (Not Active) - (Size=15 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=581.1 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43054
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o pomoc zatížený disk a podezření na viry

Příspěvekod jaro3 » 30 srp 2018 21:58

Takový svinčík.-.

AVG Secure Search
Crawler lišta
Spyware Terminator 2012
Eset
co najdeš , odinstaluj


Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CloseProcesses:
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\Policies\Explorer: [NoInternetOpenWith] 1
HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\MountPoints2: E - "E:\AUTORUN\AUTORUN.EXE"
HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\MountPoints2: {8f429a50-e750-11e7-a658-b870f4e3800e} - "G:\splash.exe"
URLSearchHook: HKLM-x32 - (No Name) - {74198672-5F7D-4FE9-A611-4AC1D5A66A15} - No File
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox
SearchScopes: HKLM-x32 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-2367062692-840817020-3150738865-1001 -> ToolbarSearchProviderProgress {96bd48dd-741b-41ae-ac4a-aff96ba00f7e}
SearchScopes: HKU\S-1-5-21-2367062692-840817020-3150738865-1001 -> 1CE1DA6C34774AFC908A04A1A0357FF0 URL =
SearchScopes: HKU\S-1-5-21-2367062692-840817020-3150738865-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2367062692-840817020-3150738865-1001 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-2367062692-840817020-3150738865-1001 -> {759f11e8-619b-4411-8df3-188076f850d2} URL = hxxp://www.firmy.cz/phr/{searchTerms}?sourceid=QuickSearch_7625
SearchScopes: HKU\S-1-5-21-2367062692-840817020-3150738865-1001 -> {88f35a13-d52f-4187-a6d3-d2bfc65ec261} URL = hxxp://www.mapy.cz/?query={searchTerms}&sourceid=QuickSearch_7625
SearchScopes: HKU\S-1-5-21-2367062692-840817020-3150738865-1001 -> {8A244612-A1F7-11E0-95C0-E71F4824019B} URL = hxxp://www.bing.com/search?FORM=UP97DF& ... =071513&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-2367062692-840817020-3150738865-1001 -> {CBDE7F90-91D6-408F-AD97-EC3CF1722592} URL =
SearchScopes: HKU\S-1-5-21-2367062692-840817020-3150738865-1001 -> {f8dee56f-a078-43de-bc97-eff41b1eb7a4} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=QuickSearch_7625
FF HKLM-x32\...\Firefox\Extensions: [ytfmdownloader@gmail.com] - C:\Program Files (x86)\Freemake\Freemake Youtube Mp3 Converter\BrowserPlugin\Firefox\ytfmdownloader@gmail.com
FF Extension: (Freemake Youtube Download Button) - C:\Program Files (x86)\Freemake\Freemake Youtube Mp3 Converter\BrowserPlugin\Firefox\ytfmdownloader@gmail.com [2014-08-18] [Legacy] [not signed]
FF HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\Firefox\Extensions: [{ea614400-e918-4741-9a97-7a972ff7c30b}] - C:\Program Files (x86)\Seznam.cz\firefox
FF HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi => not found
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin -> C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [264552 2016-04-14] (ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [14976 2016-04-14] (ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [186784 2016-04-14] (ESET)
R2 epfwwfpr; C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys [170792 2016-04-14] (ESET)
U3 idsvc; no ImagePath
C:\Users\Marek\AppData\Local\DBG
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1d432191efa78ce
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1d432191ec39f9a
C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spyware Terminator 2012
C0CE100EA736}\localserver32 -> C:\Users\Marek\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay => No File
CustomCLSID: HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Marek\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Marek\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Marek\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Marek\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Marek\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Marek\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Marek\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => No File
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
Task: {072EDA87-635F-4360-878B-68AA68A0612E} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {1B935FBA-C430-4E44-8162-B6DD5CD1DE52} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {298668CD-2E9D-46AF-A1D7-228BCDDF029B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {52978FE5-9633-4D1D-94B4-93CC771504CE} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {5B30EDC0-EBF8-492D-88FB-5037522DD0C7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {67C3CCAB-100F-4BAF-BD78-8318AD35327E} - System32\Tasks\GoogleUpdateTaskMachineUA1d432191efa78ce => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {768D24CC-1EE5-45B7-8102-F74982020F34} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {7FC14DC8-D32E-485B-87BB-920BE17DE402} - System32\Tasks\GoogleUpdateTaskMachineCore1d432191ec39f9a => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {8782EF11-88FF-413B-B51A-6BF9B63DE45C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {13B57A6E-2671-41FD-B52D-431421C6DF2D} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2367062692-840817020-3150738865-1001UA => C:\Users\Marek\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-03-12] (Facebook Inc.)
Task: {1B935FBA-C430-4E44-8162-B6DD5CD1DE52} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {298668CD-2E9D-46AF-A1D7-228BCDDF029B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {3BB6AD8B-73ED-423B-87D5-882812E172D9} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK
Task: {52978FE5-9633-4D1D-94B4-93CC771504CE} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {5B30EDC0-EBF8-492D-88FB-5037522DD0C7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {67C3CCAB-100F-4BAF-BD78-8318AD35327E} - System32\Tasks\GoogleUpdateTaskMachineUA1d432191efa78ce => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {768D24CC-1EE5-45B7-8102-F74982020F34} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {7FC14DC8-D32E-485B-87BB-920BE17DE402} - System32\Tasks\GoogleUpdateTaskMachineCore1d432191ec39f9a => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {84260DAB-DFC1-4EAF-9374-C2A36B206F97} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2367062692-840817020-3150738865-1001Core => C:\Users\Marek\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-03-12] (Facebook Inc.)
Task: {8782EF11-88FF-413B-B51A-6BF9B63DE45C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {9CA1D8A5-B789-42FD-9C99-D3C9DE615E02} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {A5C113A7-6871-4D93-954B-934F78CA64EE} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {B1E9D703-77E2-4DBA-8C61-8CAA7BAF3B50} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {B25C5696-CBFA-43F1-A36D-15517967FD0E} - System32\Tasks\GoogleUpdateTaskMachineUA1d15da22e9030cd => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {C18C49C8-494A-44A1-8C39-716799959800} - \ProtectedSearch\Protected Search -> No File <==== ATTENTION
Task: {C73C49E7-2924-41BD-BD64-5084F5031D46} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {E1560524-890A-4D04-9C3F-BA6F902ADF5A} - System32\Tasks\GoogleUpdateTaskMachineCore1d15da22e1d972f => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {E2EFE3E3-0E1F-4F87-B688-2B2C28FF5409} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {E441621B-3294-4B75-9A01-5AD15A492DBF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {E83F36A8-524F-47F9-A3AF-06FC413FF814} - System32\Tasks\GoogleUpdateTaskMachineCore1d1ab164e3a4326 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {F4649165-9903-4944-B62D-1C07AFA0E6E8} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {F5313A98-722D-447B-8DBA-AE153DB5A6F5} - System32\Tasks\GoogleUpdateTaskMachineUA1d1ab164e9fd951 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {F963435A-3D5B-43F2-BBA0-B691311C1173} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {FBC5A780-D6C4-4AD7-95EF-14C56CEFD0B0} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2367062692-840817020-3150738865-1001Core.job => C:\Users\Marek\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2367062692-840817020-3150738865-1001UA.job => C:\Users\Marek\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d15da22e1d972f.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d15da22e9030cd.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Shortcut: C:\Users\Marek\Documents\stažené knihy\Ikony nemazat!\WindowsStart – zástupce.lnk -> C:\Users\Marek\Desktop\Ikony nemazat!\prince of persia the great escape\WindowsStart.bat (No File)
AlternateDataStreams: C:\ProgramData\Temp:430C6D84 [127]
AlternateDataStreams: C:\ProgramData\Temp:8CE646EE [236]
AlternateDataStreams: C:\ProgramData\Temp:DFC5A2B2 [105]
MSCONFIG\startupreg: Pokki => "%LOCALAPPDATA%\Pokki\Engine\pokki.exe"
HKLM\...\StartupApproved\Run: => "SpywareTerminatorShield"
HKLM\...\StartupApproved\Run: => "SpywareTerminatorUpdater"
HKLM\...\StartupApproved\Run: => "iTunesHelper"

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.


Drive c: (Acer) (Fixed) (Total:581.07 GB) (Free:61.51 GB) NTFS
Totální nedostatek volného místa na disku!! Něco odinstaluj , smaž. Máš mít nejméně 15-20% volného místa na syst. disku , pro zajištění bezproblémového chodu windows!!
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

darkmarek
Level 1.5
Level 1.5
Příspěvky: 131
Registrován: srpen 18
Pohlaví: Muž
Stav:
Offline

Re: Prosím o pomoc zatížený disk a podezření na viry

Příspěvekod darkmarek » 31 srp 2018 14:32

Fix result of Farbar Recovery Scan Tool (x64) Version: 23.08.2018
Ran by Marek (31-08-2018 13:51:10) Run:1
Running from C:\Users\Marek\Desktop
Loaded Profiles: Marek & Guest & DefaultAppPool (Available Profiles: Marek & Guest & DefaultAppPool)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\Policies\Explorer: [NoInternetOpenWith] 1
HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\MountPoints2: E - "E:\AUTORUN\AUTORUN.EXE"
HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\MountPoints2: {8f429a50-e750-11e7-a658-b870f4e3800e} - "G:\splash.exe"
URLSearchHook: HKLM-x32 - (No Name) - {74198672-5F7D-4FE9-A611-4AC1D5A66A15} - No File
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox
SearchScopes: HKLM-x32 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-2367062692-840817020-3150738865-1001 -> ToolbarSearchProviderProgress {96bd48dd-741b-41ae-ac4a-aff96ba00f7e}
SearchScopes: HKU\S-1-5-21-2367062692-840817020-3150738865-1001 -> 1CE1DA6C34774AFC908A04A1A0357FF0 URL =
SearchScopes: HKU\S-1-5-21-2367062692-840817020-3150738865-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2367062692-840817020-3150738865-1001 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-2367062692-840817020-3150738865-1001 -> {759f11e8-619b-4411-8df3-188076f850d2} URL = hxxp://www.firmy.cz/phr/{searchTerms}?sourceid=QuickSearch_7625
SearchScopes: HKU\S-1-5-21-2367062692-840817020-3150738865-1001 -> {88f35a13-d52f-4187-a6d3-d2bfc65ec261} URL = hxxp://www.mapy.cz/?query={searchTerms}&sourceid=QuickSearch_7625
SearchScopes: HKU\S-1-5-21-2367062692-840817020-3150738865-1001 -> {8A244612-A1F7-11E0-95C0-E71F4824019B} URL = hxxp://www.bing.com/search?FORM=UP97DF& ... =071513&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-2367062692-840817020-3150738865-1001 -> {CBDE7F90-91D6-408F-AD97-EC3CF1722592} URL =
SearchScopes: HKU\S-1-5-21-2367062692-840817020-3150738865-1001 -> {f8dee56f-a078-43de-bc97-eff41b1eb7a4} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=QuickSearch_7625
FF HKLM-x32\...\Firefox\Extensions: [ytfmdownloader@gmail.com] - C:\Program Files (x86)\Freemake\Freemake Youtube Mp3 Converter\BrowserPlugin\Firefox\ytfmdownloader@gmail.com
FF Extension: (Freemake Youtube Download Button) - C:\Program Files (x86)\Freemake\Freemake Youtube Mp3 Converter\BrowserPlugin\Firefox\ytfmdownloader@gmail.com [2014-08-18] [Legacy] [not signed]
FF HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\Firefox\Extensions: [{ea614400-e918-4741-9a97-7a972ff7c30b}] - C:\Program Files (x86)\Seznam.cz\firefox
FF HKU\S-1-5-21-2367062692-840817020-3150738865-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi => not found
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin -> C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [264552 2016-04-14] (ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [14976 2016-04-14] (ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [186784 2016-04-14] (ESET)
R2 epfwwfpr; C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys [170792 2016-04-14] (ESET)
U3 idsvc; no ImagePath
C:\Users\Marek\AppData\Local\DBG
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1d432191efa78ce
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1d432191ec39f9a
C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spyware Terminator 2012
C0CE100EA736}\localserver32 -> C:\Users\Marek\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay => No File
CustomCLSID: HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Marek\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Marek\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Marek\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Marek\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Marek\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Marek\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Marek\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => No File
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
Task: {072EDA87-635F-4360-878B-68AA68A0612E} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {1B935FBA-C430-4E44-8162-B6DD5CD1DE52} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {298668CD-2E9D-46AF-A1D7-228BCDDF029B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {52978FE5-9633-4D1D-94B4-93CC771504CE} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {5B30EDC0-EBF8-492D-88FB-5037522DD0C7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {67C3CCAB-100F-4BAF-BD78-8318AD35327E} - System32\Tasks\GoogleUpdateTaskMachineUA1d432191efa78ce => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {768D24CC-1EE5-45B7-8102-F74982020F34} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {7FC14DC8-D32E-485B-87BB-920BE17DE402} - System32\Tasks\GoogleUpdateTaskMachineCore1d432191ec39f9a => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {8782EF11-88FF-413B-B51A-6BF9B63DE45C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {13B57A6E-2671-41FD-B52D-431421C6DF2D} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2367062692-840817020-3150738865-1001UA => C:\Users\Marek\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-03-12] (Facebook Inc.)
Task: {1B935FBA-C430-4E44-8162-B6DD5CD1DE52} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {298668CD-2E9D-46AF-A1D7-228BCDDF029B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {3BB6AD8B-73ED-423B-87D5-882812E172D9} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK
Task: {52978FE5-9633-4D1D-94B4-93CC771504CE} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {5B30EDC0-EBF8-492D-88FB-5037522DD0C7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {67C3CCAB-100F-4BAF-BD78-8318AD35327E} - System32\Tasks\GoogleUpdateTaskMachineUA1d432191efa78ce => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {768D24CC-1EE5-45B7-8102-F74982020F34} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {7FC14DC8-D32E-485B-87BB-920BE17DE402} - System32\Tasks\GoogleUpdateTaskMachineCore1d432191ec39f9a => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {84260DAB-DFC1-4EAF-9374-C2A36B206F97} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2367062692-840817020-3150738865-1001Core => C:\Users\Marek\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-03-12] (Facebook Inc.)
Task: {8782EF11-88FF-413B-B51A-6BF9B63DE45C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {9CA1D8A5-B789-42FD-9C99-D3C9DE615E02} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {A5C113A7-6871-4D93-954B-934F78CA64EE} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {B1E9D703-77E2-4DBA-8C61-8CAA7BAF3B50} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {B25C5696-CBFA-43F1-A36D-15517967FD0E} - System32\Tasks\GoogleUpdateTaskMachineUA1d15da22e9030cd => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {C18C49C8-494A-44A1-8C39-716799959800} - \ProtectedSearch\Protected Search -> No File <==== ATTENTION
Task: {C73C49E7-2924-41BD-BD64-5084F5031D46} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {E1560524-890A-4D04-9C3F-BA6F902ADF5A} - System32\Tasks\GoogleUpdateTaskMachineCore1d15da22e1d972f => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {E2EFE3E3-0E1F-4F87-B688-2B2C28FF5409} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {E441621B-3294-4B75-9A01-5AD15A492DBF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {E83F36A8-524F-47F9-A3AF-06FC413FF814} - System32\Tasks\GoogleUpdateTaskMachineCore1d1ab164e3a4326 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {F4649165-9903-4944-B62D-1C07AFA0E6E8} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {F5313A98-722D-447B-8DBA-AE153DB5A6F5} - System32\Tasks\GoogleUpdateTaskMachineUA1d1ab164e9fd951 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {F963435A-3D5B-43F2-BBA0-B691311C1173} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {FBC5A780-D6C4-4AD7-95EF-14C56CEFD0B0} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2367062692-840817020-3150738865-1001Core.job => C:\Users\Marek\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2367062692-840817020-3150738865-1001UA.job => C:\Users\Marek\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d15da22e1d972f.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d15da22e9030cd.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Shortcut: C:\Users\Marek\Documents\sta�en� knihy\Ikony nemazat!\WindowsStart � z�stupce.lnk -> C:\Users\Marek\Desktop\Ikony nemazat!\prince of persia the great escape\WindowsStart.bat (No File)
AlternateDataStreams: C:\ProgramData\Temp:430C6D84 [127]
AlternateDataStreams: C:\ProgramData\Temp:8CE646EE [236]
AlternateDataStreams: C:\ProgramData\Temp:DFC5A2B2 [105]
MSCONFIG\startupreg: Pokki => "%LOCALAPPDATA%\Pokki\Engine\pokki.exe"
HKLM\...\StartupApproved\Run: => "SpywareTerminatorShield"
HKLM\...\StartupApproved\Run: => "SpywareTerminatorUpdater"
HKLM\...\StartupApproved\Run: => "iTunesHelper"

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION => restored successfully
"HKU\S-1-5-21-2367062692-840817020-3150738865-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoInternetOpenWith" => removed successfully
"HKU\S-1-5-21-2367062692-840817020-3150738865-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E" => removed successfully
"HKU\S-1-5-21-2367062692-840817020-3150738865-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8f429a50-e750-11e7-a658-b870f4e3800e}" => removed successfully
HKLM\Software\Classes\CLSID\{8f429a50-e750-11e7-a658-b870f4e3800e} => not found
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\URLSearchHooks\\{74198672-5F7D-4FE9-A611-4AC1D5A66A15}" => removed successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => removed successfully
HKLM\Software\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => not found
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{15C4DF55-4B67-495A-A3D3-A497C4A49EE0}" => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{15C4DF55-4B67-495A-A3D3-A497C4A49EE0} => not found
"HKU\S-1-5-21-2367062692-840817020-3150738865-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\ToolbarSearchProviderProgress" => removed successfully
"HKU\S-1-5-21-2367062692-840817020-3150738865-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\1CE1DA6C34774AFC908A04A1A0357FF0" => removed successfully
HKLM\Software\Classes\CLSID\1CE1DA6C34774AFC908A04A1A0357FF0 => not found
"HKU\S-1-5-21-2367062692-840817020-3150738865-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}" => removed successfully
HKLM\Software\Classes\CLSID\{012E1000-F331-11DB-8314-0800200C9A66} => not found
"HKU\S-1-5-21-2367062692-840817020-3150738865-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{15C4DF55-4B67-495A-A3D3-A497C4A49EE0}" => removed successfully
HKLM\Software\Classes\CLSID\{15C4DF55-4B67-495A-A3D3-A497C4A49EE0} => not found
"HKU\S-1-5-21-2367062692-840817020-3150738865-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{759f11e8-619b-4411-8df3-188076f850d2}" => removed successfully
HKLM\Software\Classes\CLSID\{759f11e8-619b-4411-8df3-188076f850d2} => not found
"HKU\S-1-5-21-2367062692-840817020-3150738865-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{88f35a13-d52f-4187-a6d3-d2bfc65ec261}" => removed successfully
HKLM\Software\Classes\CLSID\{88f35a13-d52f-4187-a6d3-d2bfc65ec261} => not found
"HKU\S-1-5-21-2367062692-840817020-3150738865-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{8A244612-A1F7-11E0-95C0-E71F4824019B}" => removed successfully
HKLM\Software\Classes\CLSID\{8A244612-A1F7-11E0-95C0-E71F4824019B} => not found
"HKU\S-1-5-21-2367062692-840817020-3150738865-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CBDE7F90-91D6-408F-AD97-EC3CF1722592}" => removed successfully
HKLM\Software\Classes\CLSID\{CBDE7F90-91D6-408F-AD97-EC3CF1722592} => not found
"HKU\S-1-5-21-2367062692-840817020-3150738865-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{f8dee56f-a078-43de-bc97-eff41b1eb7a4}" => removed successfully
HKLM\Software\Classes\CLSID\{f8dee56f-a078-43de-bc97-eff41b1eb7a4} => not found
"HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\ytfmdownloader@gmail.com" => removed successfully
C:\Program Files (x86)\Freemake\Freemake Youtube Mp3 Converter\BrowserPlugin\Firefox\ytfmdownloader@gmail.com => moved successfully
"HKU\S-1-5-21-2367062692-840817020-3150738865-1001\Software\Mozilla\Firefox\Extensions\\{ea614400-e918-4741-9a97-7a972ff7c30b}" => removed successfully
"HKU\S-1-5-21-2367062692-840817020-3150738865-1001\Software\Mozilla\SeaMonkey\Extensions\\mozilla_cc2@internetdownloadmanager.com" => removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@mcafee.com/McAfeeMssPlugin" => removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.4" => removed successfully
C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll => moved successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.3" => removed successfully
"C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll" => not found
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5" => removed successfully
"C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll" => not found
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1" => removed successfully
"C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll" => not found
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.2" => removed successfully
"C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll" => not found
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.3" => removed successfully
"C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll" => not found
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4" => removed successfully
"C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll" => not found
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.6" => removed successfully
"C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll" => not found
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.8" => removed successfully
"C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll" => not found
"HKLM\SOFTWARE\Google\Chrome\Extensions\ngpampappnmepgilojfohadhhmbhlaek" => removed successfully
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj" => removed successfully
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck" => removed successfully
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki" => removed successfully
eamonm => Unable to stop service.
"HKLM\System\CurrentControlSet\Services\eamonm" => removed successfully
eamonm => service removed successfully
"HKLM\System\CurrentControlSet\Services\eelam" => removed successfully
eelam => service removed successfully
ehdrv => Unable to stop service.
"HKLM\System\CurrentControlSet\Services\ehdrv" => removed successfully
ehdrv => service removed successfully
epfwwfpr => Unable to stop service.
"HKLM\System\CurrentControlSet\Services\epfwwfpr" => removed successfully
epfwwfpr => service removed successfully
"HKLM\System\CurrentControlSet\Services\idsvc" => removed successfully
idsvc => service removed successfully
C:\Users\Marek\AppData\Local\DBG => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1d432191efa78ce => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1d432191ec39f9a => moved successfully
C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask => moved successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spyware Terminator 2012 => moved successfully
C0CE100EA736}\localserver32 -> C:\Users\Marek\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay => No File => Error: No automatic fix found for this entry.
"HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}" => removed successfully
"HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}" => removed successfully
"HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}" => removed successfully
"HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}" => removed successfully
"HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}" => removed successfully
"HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}" => removed successfully
"HKU\S-1-5-21-2367062692-840817020-3150738865-1001_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}" => removed successfully
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\Gadgets" => removed successfully
HKLM\Software\Classes\CLSID\{6B9228DA-9C15-419e-856C-19E768A13BDC} => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{072EDA87-635F-4360-878B-68AA68A0612E}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{072EDA87-635F-4360-878B-68AA68A0612E}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1B935FBA-C430-4E44-8162-B6DD5CD1DE52}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1B935FBA-C430-4E44-8162-B6DD5CD1DE52}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{298668CD-2E9D-46AF-A1D7-228BCDDF029B}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{298668CD-2E9D-46AF-A1D7-228BCDDF029B}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{52978FE5-9633-4D1D-94B4-93CC771504CE}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{52978FE5-9633-4D1D-94B4-93CC771504CE}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5B30EDC0-EBF8-492D-88FB-5037522DD0C7}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5B30EDC0-EBF8-492D-88FB-5037522DD0C7}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{67C3CCAB-100F-4BAF-BD78-8318AD35327E}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{67C3CCAB-100F-4BAF-BD78-8318AD35327E}" => removed successfully
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1d432191efa78ce" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA1d432191efa78ce" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{768D24CC-1EE5-45B7-8102-F74982020F34}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{768D24CC-1EE5-45B7-8102-F74982020F34}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7FC14DC8-D32E-485B-87BB-920BE17DE402}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7FC14DC8-D32E-485B-87BB-920BE17DE402}" => removed successfully
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1d432191ec39f9a" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore1d432191ec39f9a" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8782EF11-88FF-413B-B51A-6BF9B63DE45C}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8782EF11-88FF-413B-B51A-6BF9B63DE45C}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{13B57A6E-2671-41FD-B52D-431421C6DF2D}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{13B57A6E-2671-41FD-B52D-431421C6DF2D}" => removed successfully
C:\WINDOWS\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2367062692-840817020-3150738865-1001UA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\FacebookUpdateTaskUserS-1-5-21-2367062692-840817020-3150738865-1001UA" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1B935FBA-C430-4E44-8162-B6DD5CD1DE52} => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{298668CD-2E9D-46AF-A1D7-228BCDDF029B} => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3BB6AD8B-73ED-423B-87D5-882812E172D9}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3BB6AD8B-73ED-423B-87D5-882812E172D9}" => removed successfully
"C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CreateExplorerShellUnelevatedTask" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{52978FE5-9633-4D1D-94B4-93CC771504CE} => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5B30EDC0-EBF8-492D-88FB-5037522DD0C7} => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{67C3CCAB-100F-4BAF-BD78-8318AD35327E} => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1d432191efa78ce" => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA1d432191efa78ce => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{768D24CC-1EE5-45B7-8102-F74982020F34} => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7FC14DC8-D32E-485B-87BB-920BE17DE402} => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1d432191ec39f9a" => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore1d432191ec39f9a => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{84260DAB-DFC1-4EAF-9374-C2A36B206F97}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{84260DAB-DFC1-4EAF-9374-C2A36B206F97}" => removed successfully
C:\WINDOWS\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2367062692-840817020-3150738865-1001Core => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\FacebookUpdateTaskUserS-1-5-21-2367062692-840817020-3150738865-1001Core" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8782EF11-88FF-413B-B51A-6BF9B63DE45C} => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9CA1D8A5-B789-42FD-9C99-D3C9DE615E02}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9CA1D8A5-B789-42FD-9C99-D3C9DE615E02}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A5C113A7-6871-4D93-954B-934F78CA64EE}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A5C113A7-6871-4D93-954B-934F78CA64EE}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B1E9D703-77E2-4DBA-8C61-8CAA7BAF3B50}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B1E9D703-77E2-4DBA-8C61-8CAA7BAF3B50}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B25C5696-CBFA-43F1-A36D-15517967FD0E}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B25C5696-CBFA-43F1-A36D-15517967FD0E}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1d15da22e9030cd => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA1d15da22e9030cd" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C18C49C8-494A-44A1-8C39-716799959800}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C18C49C8-494A-44A1-8C39-716799959800}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ProtectedSearch\Protected Search" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C73C49E7-2924-41BD-BD64-5084F5031D46}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C73C49E7-2924-41BD-BD64-5084F5031D46}" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E1560524-890A-4D04-9C3F-BA6F902ADF5A}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E1560524-890A-4D04-9C3F-BA6F902ADF5A}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1d15da22e1d972f => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore1d15da22e1d972f" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E2EFE3E3-0E1F-4F87-B688-2B2C28FF5409}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E2EFE3E3-0E1F-4F87-B688-2B2C28FF5409}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E441621B-3294-4B75-9A01-5AD15A492DBF}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E441621B-3294-4B75-9A01-5AD15A492DBF}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E83F36A8-524F-47F9-A3AF-06FC413FF814}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E83F36A8-524F-47F9-A3AF-06FC413FF814}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore1d1ab164e3a4326 => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore1d1ab164e3a4326" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F4649165-9903-4944-B62D-1C07AFA0E6E8}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F4649165-9903-4944-B62D-1C07AFA0E6E8}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F5313A98-722D-447B-8DBA-AE153DB5A6F5}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F5313A98-722D-447B-8DBA-AE153DB5A6F5}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1d1ab164e9fd951 => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA1d1ab164e9fd951" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F963435A-3D5B-43F2-BBA0-B691311C1173}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F963435A-3D5B-43F2-BBA0-B691311C1173}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FBC5A780-D6C4-4AD7-95EF-14C56CEFD0B0}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FBC5A780-D6C4-4AD7-95EF-14C56CEFD0B0}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => removed successfully
C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2367062692-840817020-3150738865-1001Core.job => moved successfully
C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2367062692-840817020-3150738865-1001UA.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d15da22e1d972f.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d15da22e9030cd.job => moved successfully
"C:\Users\Marek\Documents\sta�en� knihy\Ikony nemazat!\WindowsStart � z�stupce.lnk" => not found
C:\ProgramData\Temp => ":430C6D84" ADS removed successfully
C:\ProgramData\Temp => ":8CE646EE" ADS removed successfully
C:\ProgramData\Temp => ":DFC5A2B2" ADS removed successfully
"HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Pokki" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run\\SpywareTerminatorShield" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\SpywareTerminatorShield" => not found
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run\\SpywareTerminatorUpdater" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\SpywareTerminatorUpdater" => not found
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run\\iTunesHelper" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\iTunesHelper" => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 9723904 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 33137320 B
Java, Flash, Steam htmlcache => 509838267 B
Windows/system/drivers => 718582830 B
Edge => 0 B
Chrome => 521171099 B
Firefox => 1671168 B
Opera => 5468416 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 42900 B
NetworkService => 31404 B
Marek => 60345412 B
Guest => 27604 B
DefaultAppPool => 0 B

RecycleBin => 0 B
EmptyTemp: => 1.7 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 14:03:06 ====

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43054
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o pomoc zatížený disk a podezření na viry

Příspěvekod jaro3 » 31 srp 2018 18:16

Uvolnil sis volné místo na disku?
Co problémy?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

darkmarek
Level 1.5
Level 1.5
Příspěvky: 131
Registrován: srpen 18
Pohlaví: Muž
Stav:
Offline

Re: Prosím o pomoc zatížený disk a podezření na viry

Příspěvekod darkmarek » 31 srp 2018 21:25

Uvolnil jsem 20 giga. O hodně se rychlost zlepšila poté co jsem to fixnul. Notebook ale stále někdy je hlasitý. A v chrome se zase objevila chybová zpráva a stránka se nenačetla. Myslíte že je opravdu vadný nějaký motorek? Disk je zatížený na 100 procent teď to procházím eset online scannerem.

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43054
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Prosím o pomoc zatížený disk a podezření na viry

Příspěvekod jaro3 » 31 srp 2018 21:51

20GB je málo , ještě tak 10GB..

00000000082B Čas na roztočení ploten
0000000007E0 Čas na roztočení ploten

Čas potřebný k roztočení ploten. S časem se zhoršuje, avšak poměrně pomalu. Náhlá změna značí poškození motorku otáčejícího plotny.

číslo se zvedá. udělej ještě jednou CDI.

+
Stáhni si OTL by OldTimer
na plochu. Ujisti se , že máš zavřena všechna ostatní okna a poklepej na ikonu OTL.Nahoře v okně pod Výstup klikni na minimální výstup.Pod Běžné registry změň na Vše. Zatrhni Kontrola na havěť “LOP“ a Kontrola na havěť “ Purity“ . Klikni na Prohledat. Všechny ostatní nastavení ponech jak jsou. Sken může trvat dlouho, až skončí otevřou se dva logy:
OTL.Txt
Extras.Txt

Jsou uloženy ve stejném místě jako OTL. Oba logy sem prosím zkopíruj.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 13 hostů