Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-05.2019
Ran by Viktor (02-05-2019 06:31:38)
Running from A:\Users\Viktor\Downloads
Windows 10 Home Version 1803 17134.523 (X64) (2018-05-14 15:10:21)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3348608579-3824376785-1914751379-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3348608579-3824376785-1914751379-503 - Limited - Disabled)
Guest (S-1-5-21-3348608579-3824376785-1914751379-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3348608579-3824376785-1914751379-1005 - Limited - Enabled)
Viktor (S-1-5-21-3348608579-3824376785-1914751379-1001 - Administrator - Enabled) => C:\Users\Viktor
WDAGUtilityAccount (S-1-5-21-3348608579-3824376785-1914751379-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

4K Video Downloader 4.4 (HKLM-x32\...\{17CEAB50-0275-4D5E-9C11-CF2963C59FA1}) (Version: 4.4.6.2295 - Open Media LLC)
Adobe Flash Player 11 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 11.1.102.55 - Adobe Systems Incorporated)
Adobe Photoshop CC 2017 (HKLM-x32\...\PHSP_18_0) (Version: 18.0.0 - Adobe Systems Incorporated)
Aktualizace NVIDIA 36.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 36.0.0.0 - NVIDIA Corporation) Hidden
android_driver_install.exe (HKLM-x32\...\android_driver_install_is1) (Version:  - android)
Application Verifier x64 External Package (HKLM\...\{D9908CED-5ABB-FEE9-FC84-743F4D38637C}) (Version: 10.1.16299.15 - Microsoft) Hidden
Assassins Creed Odyssey v.1.0.6 (HKLM-x32\...\Assassins Creed Odyssey_is1) (Version:  - )
Audio Record Wizard (HKLM-x32\...\Audio Record Wizard) (Version: 6.9 - NowSmart)
Avidemux 2.7 - 64 bits (HKLM-x32\...\Avidemux 2.7 - 64 bits (64-bit)) (Version: 2.7.0.170814 - )
Backup and Sync from Google (HKLM\...\{F9EEDE46-6409-4ECC-8AB6-7062464987A4}) (Version: 3.43.4275.9540 - Google, Inc.)
Balíček ovladače systému Windows - Google, Inc (androidusb) USB  (12/11/2012 1.0.0009.00000) (HKLM\...\8E3B176889FB79CA6FE02DF2D2D6DE38BD9FC9F6) (Version: 12/11/2012 1.0.0009.00000 - Google, Inc)
Balíček ovladače systému Windows - Qualcomm (qcusbnet) Net  (10/16/2012 1.0.7.9) (HKLM\...\C03E573DE1B7F7DE10352D707DF6C7E88C0FAA03) (Version: 10/16/2012 1.0.7.9 - Qualcomm)
Balíček ovladače systému Windows - Qualcomm Incorporated (qcusbser) Modem  (10/26/2012 2.1.0.3) (HKLM\...\19E621CD1BB015A1069EB53B72E2877DC34F038C) (Version: 10/26/2012 2.1.0.3 - Qualcomm Incorporated)
Balíček ovladače systému Windows - Qualcomm Incorporated (qcusbser) Ports  (10/26/2012 2.1.0.3) (HKLM\...\521149B020D2896EF887ED07E9FC74DD0C29C17A) (Version: 10/26/2012 2.1.0.3 - Qualcomm Incorporated)
BeamNG.drive version 0.13.0.0.6437 (HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\...\{E0AFE252-65AA-4E81-8014-852E19ED3A21}_is1) (Version: 0.13.0.0.6437 - BeamNG)
Bio Inc. Redemption (HKLM-x32\...\Bio Inc. Redemption_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, markfiter)
Blender (HKLM\...\{E29A1273-2E7A-40E7-AA63-428A11D59429}) (Version: 2.79.2 - Blender Foundation)
CCleaner (HKLM\...\CCleaner) (Version: 5.52 - Piriform)
CPUID CPU-Z 1.88 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.88 - CPUID, Inc.)
Crossout Launcher 1.0.3.78 (HKLM-x32\...\CrossOutLauncher_is1) (Version:  - )
Crusader Kings II Jade Dragon (HKLM-x32\...\Crusader Kings II Jade Dragon_is1) (Version:  - )
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DarthMod Empire (HKLM-x32\...\DarthMod Empire8.0 Platinum) (Version: 8.0 Platinum - )
DarthMod Empire (HKLM-x32\...\DarthMod Empire8.0.1 Platinum) (Version: 8.0.1 Platinum - )
DawnOfMan (HKLM-x32\...\1899257943_is1) (Version: 1.0.0 - GOG.com)
Discord (HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\...\Discord) (Version: 0.0.301 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 398.82 - NVIDIA Corporation) Hidden
Europa Universalis IV Golden Century (HKLM-x32\...\Europa Universalis IV Golden Century_is1) (Version:  - )
Fallout 4 - Čeština (HKLM-x32\...\{75C80A55-C9FC-4BEF-A1A0-C7900DAE9E33}) (Version: 0.9.4 - prekladyher.eu)
Fallout 4 (HKLM-x32\...\Fallout 4_is1) (Version:  - )
Far Cry 5 (HKLM-x32\...\{73B938C4-0DDA-448D-8E46-87401EA87339}_is1) (Version:  - Ubisoft)
Far Cry Primal (HKLM-x32\...\{80BD47AF-CF13-49B2-99BF-7E78FBA26124}_is1) (Version:  - Ubisoft)
Farming Simulator 19 (HKLM-x32\...\{0E50C0B0-2AEA-40CE-89BD-EA57625BD0BE}) (Version: 1.3.0.1 - Focus Home Interactive)
Frostpunk (HKLM-x32\...\1648559910_is1) (Version: 1.3.2.42665.45362 (2019-02-08 15:16) - GOG.com)
Gaming Keyboard Driver (HKLM-x32\...\{B3CDED64-7DC2-429D-A325-BBC3CF793AA6}) (Version: 1.0 - Senbiz)
GIANTS Editor 8.0.0 64-bit (HKLM-x32\...\giants_editor_8.0.0_win64_is1) (Version: 8.0.0 - GIANTS Software GmbH)
GIMP 2.10.6 (HKLM\...\GIMP-2_is1) (Version: 2.10.6 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 74.0.3729.108 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.7 - Google LLC) Hidden
Hearts of Iron IV Man the Guns (HKLM-x32\...\Hearts of Iron IV Man the Guns_is1) (Version:  - )
HitmanPro 3.8 (HKLM\...\HitmanPro38) (Version: 3.8.11.300 - SurfRight B.V.)
House Flipper v.v1.13 (HKLM-x32\...\House Flipper_is1) (Version:  - )
Cheat Engine 6.7 (HKLM-x32\...\Cheat Engine 6.7_is1) (Version:  - Cheat Engine)
Imperator: Rome - Epirus Flavor Pack (HKLM-x32\...\1566287191_is1) (Version: 1.0.0 (Sulla) - GOG.com)
Imperator: Rome - Hellenistic World Flavor Pack (HKLM-x32\...\1832707361_is1) (Version: 1.0.0 (Sulla) - GOG.com)
Imperator: Rome (HKLM-x32\...\1198397489_is1) (Version: 1.0.0 (Sulla) - GOG.com)
Intel(R) Extreme Tuning Utility (HKLM-x32\...\{92b09894-9d66-465d-97a0-5bcabf264301}) (Version: 6.5.1.321 - Intel Corporation)
Intel(R) Extreme Tuning Utility (HKLM-x32\...\{EC7279C8-6C18-4389-8C21-37884A58C114}) (Version: 6.5.1.321 - Intel Corporation) Hidden
Internet Security Essentials (HKLM-x32\...\ComodoIse) (Version: 1.6.472587.185 - Comodo)
Java 10.0.2 (64-bit) (HKLM\...\{EECB2736-D013-5AC5-9917-7656712F6931}) (Version: 10.0.2.0 - Oracle Corporation)
Just Cause 4 (HKLM-x32\...\Just Cause 4_is1) (Version:  - )
Kits Configuration Installer (HKLM-x32\...\{86E59C8F-61D5-1782-A3CE-60AE7E4D7791}) (Version: 10.1.16299.15 - Microsoft) Hidden
Mafia III Deluxe Edition version 1.90.0.1 (HKLM-x32\...\Mafia III Deluxe Edition_is1) (Version: 1.90.0.1 - Mr DJ)
Malwarebytes verze 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
MediBang Paint Pro 18.0 (64-bit) (HKLM\...\MediBang Paint Pro_is1) (Version: 18.0 - Medibang)
Microsoft OneDrive (HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\...\OneDriveSetup.exe) (Version: 19.043.0304.0007 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27029 (HKLM-x32\...\{64ff2cb0-807c-4ee9-87ef-ec1b2ede0daf}) (Version: 14.16.27029.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.16.27029 (HKLM-x32\...\{f50edb7e-c25e-47b4-bc4f-7ec4a4d256b1}) (Version: 14.16.27029.1 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 1.18.1100.314 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker 6.0 for Windows 7 (64-bit) (HKLM\...\{A7395F20-2B22-4CB8-8510-B452C0F47E02}) (Version: 6.0.0 - Microsoft Corporation)
MSI Development Tools (HKLM-x32\...\{973CACA2-E018-065B-0580-F2784802E299}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.63.14 - Black Tree Gaming)
No Mans Sky The Abyss (HKLM-x32\...\No Mans Sky The Abyss_is1) (Version:  - )
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.5.2 - Notepad++ Team)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.15 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.18.0.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.18.0.94 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 398.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 398.82 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.37.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.4 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 398.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 398.82 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 21.1.2 - OBS Project)
Opus Magnum (HKLM-x32\...\1123993222_is1) (Version: 20180130 - GOG.com)
Ovládací panel NVIDIA 398.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 398.82 - NVIDIA Corporation) Hidden
Project Highrise (HKLM-x32\...\2018730457_is1) (Version: 1.6.0.2 - GOG.com)
Project Highrise: Brilliant Berlin (HKLM-x32\...\1128985727_is1) (Version: 1.6.0.2 - GOG.com)
Project Highrise: Las Vegas (HKLM-x32\...\2116077629_is1) (Version: 1.6.0.2 - GOG.com)
Project Highrise: London Life (HKLM-x32\...\1925663108_is1) (Version: 1.6.0.2 - GOG.com)
Project Highrise: Miami Malls (HKLM-x32\...\1840309235_is1) (Version: 1.6.0.2 - GOG.com)
Project Highrise: Tokyo Towers (HKLM-x32\...\1950120253_is1) (Version: 1.6.0.2 - GOG.com)
Project Hospital (HKLM-x32\...\1660194629_is1) (Version: 1.0.15420.1 - GOG.com)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8036 - Realtek Semiconductor Corp.)
Registry Repair 5.0.1.102 (HKLM-x32\...\Registry Repair) (Version: 5.0.1.102 - Glarysoft Ltd)
Rise Of Industry (HKLM-x32\...\1259329786_is1) (Version: A8.0:2911a - GOG.com)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.4.0 - Rockstar Games)
RogueKiller version 13.1.10.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 13.1.10.0 - Adlice Software)
SDK ARM Additions (HKLM-x32\...\{7922BB77-0B59-840A-AC80-D560A34D75C5}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
SDK ARM Redistributables (HKLM-x32\...\{C87DF65C-A672-7E08-A083-E7D48FE8DB70}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Shadow Tactics: Blades of the Shogun (HKLM-x32\...\1601442230_is1) (Version: 2.2.10.f - GOG.com)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Steel Division Normandy 44 Back to Hell (HKLM-x32\...\Steel Division Normandy 44 Back to Hell_is1) (Version:  - )
Stellaris MegaCorp (HKLM-x32\...\Stellaris MegaCorp_is1) (Version:  - )
TeamSpeak 3 Client (HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\...\TeamSpeak 3 Client) (Version: 3.1.4 - TeamSpeak Systems GmbH)
The Sims 4 StrangerVille (HKLM-x32\...\The Sims 4 StrangerVille_is1) (Version:  - )
The Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.50.67.1020 - Electronic Arts Inc.)
The Witcher 3 HD Reworked Project (HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\...\The Witcher 3 HD Reworked Project 5.1) (Version: 5.1 - HalkHoganPL)
theHunter Call of the Wild Duck and Cover (HKLM-x32\...\theHunter Call of the Wild Duck and Cover_is1) (Version:  - )
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.21a - Ghisler Software GmbH)
UltraISO Premium V9.66 (HKLM-x32\...\UltraISO_is1) (Version:  - )
Unity (HKLM-x32\...\Unity) (Version: 2019.1.0f2 - Unity Technologies ApS)
Unity Hub 1.6.1 (HKLM\...\Unity Technologies - Hub) (Version: 1.6.1 - Unity Technologies Inc.)
Universal CRT Extension SDK (HKLM-x32\...\{A5FA2886-1925-133F-0D41-B9A8ECEA0A2D}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (HKLM-x32\...\{B739B4C5-EEEC-8E70-0276-38C4779AF398}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Universal CRT Redistributable (HKLM-x32\...\{A9D6F52C-694E-3E41-7AB8-5BEB644742A5}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Universal CRT Tools x64 (HKLM\...\{E053089E-7953-3219-814F-F485FC151C54}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Universal CRT Tools x86 (HKLM-x32\...\{B9424F08-0617-C4F6-A798-5A9250C1A738}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Universal General MIDI DLS Extension SDK (HKLM-x32\...\{D261CEA1-AB8D-9CFA-4407-BCEFC78661AC}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F814D094-197F-43C8-87FA-3210BB780486}) (Version: 2.53.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 45.0 - Ubisoft)
vcpp_crt.redist.clickonce (HKLM-x32\...\{F20AEB7F-10E0-4FA1-BEAE-4E9C237EF051}) (Version: 14.16.27012 - Microsoft Corporation) Hidden
Visual Studio Community 2017 (HKLM-x32\...\f3ce5f18) (Version: 15.9.28307.586 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.8 - VideoLAN)
VS Script Debugging Common (HKLM\...\{8B657335-3813-4CF4-A6FE-2AA44BE23F94}) (Version: 16.0.95.0 - Microsoft Corporation) Hidden
vs_communitymsi (HKLM-x32\...\{71797C29-380A-492C-B35A-F5E4A7B57BDC}) (Version: 15.9.28307 - Microsoft Corporation) Hidden
vs_communitymsires (HKLM-x32\...\{226CCDB6-96F9-4DE6-9CCC-DB49D0A0A971}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_devenvmsi (HKLM-x32\...\{BFFA2FFB-1095-4ADD-A352-368806D2412B}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_filehandler_amd64 (HKLM-x32\...\{A254DA0E-26A1-43C3-95BE-7A24D5599473}) (Version: 15.9.28302 - Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM-x32\...\{1F42A73E-CF26-4D67-BA79-752CA56B639F}) (Version: 15.9.28302 - Microsoft Corporation) Hidden
vs_FileTracker_Singleton (HKLM-x32\...\{A41E138F-5A3F-443C-B72D-957AB994FB5A}) (Version: 15.9.28128 - Microsoft Corporation) Hidden
vs_minshellinteropmsi (HKLM-x32\...\{3A78DA3D-C8D4-429D-B536-6E59A0088451}) (Version: 15.8.27825 - Microsoft Corporation) Hidden
vs_minshellmsi (HKLM-x32\...\{68B8AD33-CE97-4C3D-9583-669C39D21BA5}) (Version: 15.9.28302 - Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32\...\{B8B65A93-F72B-42C2-AE1A-FF440B44BB67}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_tipsmsi (HKLM-x32\...\{1AC6CC3D-7724-4D84-9270-798A2191AB1C}) (Version: 15.0.27005 - Microsoft Corporation) Hidden
Wargame - Airland Battle (HKLM-x32\...\Wargame - Airland Battle_is1) (Version:  - )
WeMod (HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\...\WeMod) (Version: 6.0.5 - WeMod)
WinAppDeploy (HKLM-x32\...\{9690D51C-4435-1C20-7819-66CCAB0F03F9}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinDirStat 1.1.2 (HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\...\WinDirStat) (Version:  - )
Windows SDK AddOn (HKLM-x32\...\{350F0ECD-0783-4529-8797-98F0AD33EAC0}) (Version: 10.1.0.0 - Microsoft Corporation)
Windows Software Development Kit - Windows 10.0.16299.15 (HKLM-x32\...\{6195c203-b53c-4bb7-983a-6070a902e704}) (Version: 10.1.16299.15 - Microsoft Corporation)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
WinRT Intellisense Desktop - en-us (HKLM-x32\...\{385A1387-A488-9E90-3635-086129610034}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense Desktop - Other Languages (HKLM-x32\...\{D7DD3171-DA58-52A1-95B2-4769640855AF}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - en-us (HKLM-x32\...\{7336279F-8F8F-5530-A543-3BE963846C0A}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - Other Languages (HKLM-x32\...\{E414A474-0A87-4F66-C409-A4D9857CFD34}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense Mobile - en-us (HKLM-x32\...\{CE760B86-975B-F514-5673-0ED4332B801B}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - en-us (HKLM-x32\...\{5E67F8BE-D8D2-257F-CE19-419A2D5125C7}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - Other Languages (HKLM-x32\...\{A2AA063E-AF50-A1F5-8925-A06EB1556644}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - en-us (HKLM-x32\...\{7D4C7F4A-02A9-E434-6451-C8787DF28C1F}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - Other Languages (HKLM-x32\...\{BC467065-9374-5345-DA3F-FCF073304A25}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinSCP 5.13.7 (HKLM-x32\...\winscp3_is1) (Version: 5.13.7 - Martin Prikryl)
Wise Program Uninstaller 2.2.3 (HKLM-x32\...\Wise Program Uninstaller_is1) (Version: 2.2.3 - WiseCleaner.com, Inc.)
YMS 3028 Gaming Mouse v1.1.0 (HKLM-x32\...\{A7642A36-CB25-429B-8D9A-C13AFD75BA45}_is1) (Version:  - )
Zemana AntiMalware (HKLM-x32\...\{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.74.0.150 - Zemana Ltd.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-04-09] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-04-09] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-04-09] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ContextMenuHandlers1: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll [2019-04-25] (Zemana Ltd. -> )
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2017-11-27] (Notepad++ -> )
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-04-09] (Google LLC -> Google)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2015-10-08] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-04-09] (Google LLC -> Google)
ContextMenuHandlers4: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2015-10-08] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-07-30] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll [2019-04-25] (Zemana Ltd. -> )
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => C:\Program Files (x86)\UltraISO\isoshl64.dll [2015-10-08] (SHENZHEN YIBO DIGITAL SYSTEMS DEVELOPMENT CO. LTD. -> EZB Systems, Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


Shortcut: C:\Users\Viktor\Desktop\ЗапуститьAssassins Creed Odyssey.lnk -> A:\Games\Assassins Creed Odyssey\ACOdyssey.exe () <==== Cyrillic

==================== Loaded Modules (Whitelisted) ==============

2018-04-12 01:33 - 2019-02-13 13:27 - 000193024 _____ (Microsoft Corporation) [File not signed] C:\Program Files\Windows Defender\MSASCuiL.exe
2019-05-01 17:40 - 2019-05-01 17:40 - 003042304 ____C (Python Software Foundation) [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\python27.dll
2019-05-01 17:40 - 2019-05-01 17:40 - 000113664 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\_ctypes.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000080896 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\bz2.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 001792512 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\_hashlib.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000128512 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\win32api.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000137728 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\pywintypes27.dll
2019-05-01 17:40 - 2019-05-01 17:40 - 000548864 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\pythoncom27.dll
2019-05-01 17:40 - 2019-05-01 17:40 - 000689664 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\unicodedata.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000438784 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\win32com.shell.shell.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 001489408 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\wx._core_.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000202240 ____C (wxWidgets development team) [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\wxbase30u_net_vc90_x64.dll
2019-05-01 17:40 - 2019-05-01 17:40 - 001654784 ____C (wxWidgets development team) [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\wxmsw30u_adv_vc90_x64.dll
2019-05-01 17:40 - 2019-05-01 17:40 - 006542336 ____C (wxWidgets development team) [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\wxmsw30u_core_vc90_x64.dll
2019-05-01 17:40 - 2019-05-01 17:40 - 002831872 ____C (wxWidgets development team) [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\wxbase30u_vc90_x64.dll
2019-05-01 17:40 - 2019-05-01 17:40 - 001007104 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\wx._gdi_.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 001039872 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\wx._windows_.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000773632 ____C (wxWidgets development team) [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\wxmsw30u_html_vc90_x64.dll
2019-05-01 17:40 - 2019-05-01 17:40 - 001325056 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\wx._controls_.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000916992 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\wx._misc_.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 001084416 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\pysqlite2._sqlite.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000149504 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\win32file.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000136192 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\win32security.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000007680 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\hashobjs_ext.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000020992 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\thumbnails_ext.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000118784 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\usb_ext.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000047616 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\_socket.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 002224640 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\_ssl.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000014848 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\common.time34.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000023040 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\win32event.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000034304 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\windows.conditional.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000020480 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\windows.winwrap.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000110080 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\windows.volumes.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000223232 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\win32gui.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000173568 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\_elementtree.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000169472 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\pyexpat.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000048128 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\win32inet.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000103424 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\wx._html2.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000137216 ____C (wxWidgets development team) [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\wxmsw30u_webview_vc90_x64.dll
2019-05-01 17:40 - 2019-05-01 17:40 - 000046080 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\_psutil_windows.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000011776 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\win32crypt.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000301568 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\PIL._imaging.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000032256 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\_multiprocessing.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 005752320 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\cello.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000026112 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\_yappi.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000044032 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\win32process.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000027648 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\win32pipe.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000010752 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\select.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000029696 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\win32pdh.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000038400 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\windows.connectivity.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000073216 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\windows.device_monitor.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000020480 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\win32profile.pyd
2019-05-01 17:40 - 2019-05-01 17:40 - 000026624 ____C () [File not signed] C:\Users\Viktor\AppData\Local\Temp\_MEI103442\win32ts.pyd
2017-10-13 16:58 - 2013-04-09 12:13 - 000270336 _____ () [File not signed] C:\Program Files (x86)\Gaming Keyboard\Monitor.EXE
2017-10-13 16:58 - 2013-01-09 11:47 - 000151552 _____ () [File not signed] C:\Program Files (x86)\Gaming Keyboard\OSD.exe
2017-09-28 18:41 - 2017-09-28 18:41 - 000266240 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbPc.DLL
2019-04-25 01:50 - 2019-03-13 09:22 - 000438272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5WinExtras.dll
2019-04-25 01:50 - 2019-03-13 09:22 - 003084800 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Quick.dll
2019-04-25 01:50 - 2019-03-13 09:22 - 005139968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Gui.dll
2019-04-25 01:50 - 2019-03-13 09:22 - 004571648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Widgets.dll
2019-04-25 01:50 - 2019-03-13 09:22 - 002950144 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Qml.dll
2019-04-25 01:50 - 2019-03-13 09:22 - 002234880 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Network.dll
2019-04-25 01:50 - 2019-03-13 09:22 - 005010944 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
2019-04-25 01:50 - 2019-03-13 09:22 - 001181184 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\platforms\qwindows.dll
2019-04-25 01:50 - 2019-03-13 09:22 - 000124928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\styles\qwindowsvistastyle.dll
2019-04-25 01:50 - 2019-03-13 09:22 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qico.dll
2019-04-25 01:50 - 2019-03-13 09:22 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qsvg.dll
2019-04-25 01:50 - 2019-03-13 09:22 - 000259584 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Svg.dll
2019-04-25 01:50 - 2019-03-13 09:22 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\qtquick2plugin.dll
2019-04-25 01:50 - 2019-03-13 09:22 - 000729088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-04-25 01:50 - 2019-03-13 09:22 - 000073216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-04-25 01:50 - 2019-03-13 09:22 - 000179712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\dialogplugin.dll
2019-04-25 01:50 - 2019-03-13 09:22 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\windowplugin.dll
2019-04-25 01:50 - 2019-03-13 09:22 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\modelsplugin.dll
2019-04-25 01:50 - 2019-03-13 09:22 - 000101888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\widgetsplugin.dll
2019-04-25 01:50 - 2019-03-13 09:22 - 000035328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\iconengines\qsvgicon.dll
2017-10-13 16:58 - 2012-11-05 08:09 - 000057344 _____ () [File not signed] C:\Program Files (x86)\Gaming Keyboard\lan.dll
2017-10-13 16:58 - 2012-11-05 08:37 - 000061440 _____ () [File not signed] C:\Program Files (x86)\Gaming Keyboard\hiddriver.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2019-04-25 01:04 - 000000466 _____ C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1 space1.adminpressure.space
127.0.0.1 trackpressure.website
127.0.0.1 htagzdownload.pw
127.0.0.1 texttotalk.org
127.0.0.1 360devtraking.website
127.0.0.1 room1.360dev.info
127.0.0.1 djapp.info
127.0.0.1 technologievimy.com
127.0.0.1 sharefolder.online
127.0.0.1 install.portmdfmoon.com
127.0.0.1 adkqow01283.pw
127.0.0.1 telechargini.com
127.0.0.1 rothsideadome.pw
127.0.0.1 fffffk.xyz
127.0.0.1 smarttrackk.xyz
127.0.0.1 discretdan.com

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Viktor\Desktop\Nová složka\Bigstock-Old-grunge-brick-wall-photos.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run: => "WindowsDefender"
HKLM\...\StartupApproved\Run: => "COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}"
HKLM\...\StartupApproved\Run: => "ZAM"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "IseUI"
HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\...\StartupApproved\Run: => "Gaijin.Net Agent"
HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3348608579-3824376785-1914751379-1001\...\StartupApproved\Run: => "keh9A#4lRW.exe"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{D28A3B92-AC37-480B-A8F7-73441033CF0A}] => (Allow) A:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{00558D4E-4678-4166-9381-49EEF54CA064}] => (Allow) A:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{6A4E3756-B9BB-4DF8-8127-94F463F42A69}] => (Allow) A:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{677AD27E-B4B4-41F8-95DD-52AFB16141EC}] => (Allow) A:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{D4188D62-3500-4E37-8BBC-7C26A77A458C}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\ProjectZomboid\ProjectZomboid64.exe () [File not signed]
FirewallRules: [{D5373DD4-D715-4DD2-B00E-8C4A64E186B6}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\ProjectZomboid\ProjectZomboid64.exe () [File not signed]
FirewallRules: [{A6C3A821-8D42-4620-9593-654402917605}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Kerbal Space Program\KSP_x64.exe (Take-Two Interactive Software, Inc. -> )
FirewallRules: [{07D86E73-2595-42BC-A54D-62AD6FA0DE8C}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Kerbal Space Program\KSP_x64.exe (Take-Two Interactive Software, Inc. -> )
FirewallRules: [{83EA3D3E-F179-4C3E-A9D2-13A8E86158A4}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect64.exe () [File not signed]
FirewallRules: [{5CE5E4E5-9423-4F5B-8E1E-C1CD6966F9A9}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect64.exe () [File not signed]
FirewallRules: [{A7D7C6B4-2223-4A5E-8A23-14A17CF7BE0F}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe () [File not signed]
FirewallRules: [{04C5750F-1B07-4307-8C78-F60DE8A84A70}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe () [File not signed]
FirewallRules: [{25F109A4-33A1-48AA-A2DD-CC4F22A5BCD1}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\7 Days To Die\7dLauncher.exe () [File not signed]
FirewallRules: [{A2A68F6F-C7EA-4A7C-976D-F8F2FFC16791}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\7 Days To Die\7dLauncher.exe () [File not signed]
FirewallRules: [{6DCFD00A-C3CE-4030-84D4-733601CEF1B6}] => (Allow) C:\SteamLibrary\steamapps\common\Total War Saga Thrones of Britannia\launcher\launcher.exe (The Creative Assembly Limited -> Creative Assembly Ltd)
FirewallRules: [{9032AF92-8714-496C-A7A1-422EB88657BA}] => (Allow) C:\SteamLibrary\steamapps\common\Total War Saga Thrones of Britannia\launcher\launcher.exe (The Creative Assembly Limited -> Creative Assembly Ltd)
FirewallRules: [{14B2C147-5B13-4A12-AF87-C82FC049C0CA}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Naval Action\Client.exe () [File not signed]
FirewallRules: [{2233B375-1549-4F31-BE84-74F220CC4A2C}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Naval Action\Client.exe () [File not signed]
FirewallRules: [{7F72AA1C-867E-44CE-99E3-BE491A223A94}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Naval Action\NavalActionCrashSender.exe () [File not signed]
FirewallRules: [{9DD8DFDA-F16B-483A-9638-4BAB8D29D641}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Naval Action\NavalActionCrashSender.exe () [File not signed]
FirewallRules: [{1F27F1D7-CC12-4A0D-9A92-D1F9F1862C08}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Total War Attila\launcher\launcher.exe (The Creative Assembly Limited -> Creative Assembly Ltd)
FirewallRules: [{1C8B769D-B4DF-4F16-931F-BCB0BA23D5FC}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Total War Attila\launcher\launcher.exe (The Creative Assembly Limited -> Creative Assembly Ltd)
FirewallRules: [{8D02B77A-61C7-4E4A-BBBD-1A9984A1AD71}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{136F1C20-F601-421B-BB52-AA55EC235C15}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{61616784-A7F2-41F1-A904-58E375D6A053}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe (Wildcard Properties LLC -> Epic Games, Inc.)
FirewallRules: [{6DF05920-BEDB-4D7A-AE26-41A825798881}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe (Wildcard Properties LLC -> Epic Games, Inc.)
FirewallRules: [{6332E65C-FCCC-4F9C-9F0C-892DA06BFD80}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
FirewallRules: [TCP Query User{EC4B4635-59A0-4FEA-9FEA-4C5959154C4D}C:\users\viktor\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\viktor\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{B31C2A03-F3D6-4821-AD50-19E89931CE6B}C:\users\viktor\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\viktor\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{D1971988-79C7-4330-B627-01DBE4289D76}A:\games\kenshi v1.0.25\kenshi_x64.exe] => (Allow) A:\games\kenshi v1.0.25\kenshi_x64.exe No File
FirewallRules: [UDP Query User{0BBF82C8-C133-45BC-8906-8EB17A2870D2}A:\games\kenshi v1.0.25\kenshi_x64.exe] => (Allow) A:\games\kenshi v1.0.25\kenshi_x64.exe No File
FirewallRules: [{619D17E9-DBB0-494E-A43F-A7AE9B9B988F}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Transport Fever\TransportFever.exe () [File not signed]
FirewallRules: [{E3A78DAF-CA97-4975-A8E9-8B1AB47A397A}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Transport Fever\TransportFever.exe () [File not signed]
FirewallRules: [{D7817086-2856-4B42-9F4A-07C14BE45D6C}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Planet Coaster\PlanetCoaster.exe (Frontier Developments) [File not signed]
FirewallRules: [{216F6D12-DDCA-4771-AD43-3530F5BF3C9E}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Planet Coaster\PlanetCoaster.exe (Frontier Developments) [File not signed]
FirewallRules: [TCP Query User{96BB432D-3636-4B60-93B1-38FC1A07B3BB}A:\gog games\imperatorrome\binaries\imperator.exe] => (Allow) A:\gog games\imperatorrome\binaries\imperator.exe (Paradox Interactive) [File not signed]
FirewallRules: [UDP Query User{54EB4FBE-6818-4FA0-819D-247AFC15378E}A:\gog games\imperatorrome\binaries\imperator.exe] => (Allow) A:\gog games\imperatorrome\binaries\imperator.exe (Paradox Interactive) [File not signed]
FirewallRules: [{DB4DE75B-83C9-45EC-99C5-7FF14877C81C}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\MedievalEngineers\Bin64\MedievalEngineers.exe (Keen Software House a.s. -> Keen Software House)
FirewallRules: [{1EA880CD-0614-4D74-A213-80B657F0C672}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\MedievalEngineers\Bin64\MedievalEngineers.exe (Keen Software House a.s. -> Keen Software House)
FirewallRules: [{906FBA33-2CE9-4590-9148-BFDCC2E9E856}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\SovietRepublic\SETUPAPPLICATION SOVIET.exe (3DIVISION) [File not signed]
FirewallRules: [{D7B03F82-69D8-4A06-8419-22C6C95A4506}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\SovietRepublic\SETUPAPPLICATION SOVIET.exe (3DIVISION) [File not signed]
FirewallRules: [TCP Query User{607F9153-7A98-4C96-801F-C4B435731475}A:\program files (x86)\steam\steamapps\common\war thunder\launcher.exe] => (Allow) A:\program files (x86)\steam\steamapps\common\war thunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [UDP Query User{82D3D51F-B927-42AA-A234-9FF066680F11}A:\program files (x86)\steam\steamapps\common\war thunder\launcher.exe] => (Allow) A:\program files (x86)\steam\steamapps\common\war thunder\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [TCP Query User{D63B6787-59FD-4094-952C-C41E155CA64F}A:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) A:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [UDP Query User{9FF77EE0-F361-477A-A6E8-5CA3815F1CF4}A:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe] => (Allow) A:\program files (x86)\steam\steamapps\common\war thunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{D3E2E5E8-579B-48CD-BA51-28B08D3CF17A}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\World of Castles\World of Castles.exe () [File not signed]
FirewallRules: [{D91FFC41-12C3-4E84-A60B-01FAE7646DAD}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\World of Castles\World of Castles.exe () [File not signed]
FirewallRules: [{F7ACCA52-9EE1-46E2-A16B-255EB71A65E5}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Freeman Guerrilla Warfare\Freeman Guerrilla Warfare.exe () [File not signed]
FirewallRules: [{CDADC3DE-1A5E-47E1-8358-3C207809941F}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Freeman Guerrilla Warfare\Freeman Guerrilla Warfare.exe () [File not signed]
FirewallRules: [TCP Query User{D9A61E91-70D2-4843-BF46-D7576C90CFB4}C:\steamlibrary\steamapps\common\total war warhammer ii\warhammer2.exe] => (Allow) C:\steamlibrary\steamapps\common\total war warhammer ii\warhammer2.exe (The Creative Assembly Limited -> The Creative Assembly Ltd)
FirewallRules: [UDP Query User{468E15F2-D56E-474C-B006-15FC58179C4F}C:\steamlibrary\steamapps\common\total war warhammer ii\warhammer2.exe] => (Allow) C:\steamlibrary\steamapps\common\total war warhammer ii\warhammer2.exe (The Creative Assembly Limited -> The Creative Assembly Ltd)
FirewallRules: [{8A41AE9E-9692-4526-8324-8F2CAEBF11F3}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Factorio\bin\x64\factorio.exe (Wube Software) [File not signed]
FirewallRules: [{158F26D2-DF3D-47E3-B1D7-A4BBF10A921F}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Factorio\bin\x64\factorio.exe (Wube Software) [File not signed]
FirewallRules: [{2177E7EC-8E79-42BF-B130-DD49F2F964A6}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe (Keen Software House a.s. -> Keen Software House)
FirewallRules: [{2B249D9D-1D7C-4C62-B0A1-2B64F79AE5CD}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe (Keen Software House a.s. -> Keen Software House)
FirewallRules: [{A9332976-394E-41CE-950A-846EBF20E52A}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Total War Rome II\launcher\launcher.exe (The Creative Assembly Limited -> Creative Assembly Ltd)
FirewallRules: [{0E9EDD59-33F4-47BD-B526-50151F2036BB}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Total War Rome II\launcher\launcher.exe (The Creative Assembly Limited -> Creative Assembly Ltd)
FirewallRules: [{E7DB2CAD-DDC9-4D08-9498-E958FDE52192}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\RisingWorld\risingworldx64.exe (JIW-Games) [File not signed]
FirewallRules: [{F6939C9D-8498-4136-B2D4-7BD45797ED71}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\RisingWorld\risingworldx64.exe (JIW-Games) [File not signed]
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe] => Enabled:Flashget3

==================== Restore Points =========================

25-04-2019 01:17:52 Installing COMODO Antivirus
29-04-2019 02:56:23 Removing COMODO Client - Security

==================== Faulty Device Manager Devices =============

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (05/01/2019 06:43:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: kenshi_x64.exe, verze: 0.0.0.0, časové razítko: 0x5cb748d4
Název chybujícího modulu: kenshi_x64.exe, verze: 0.0.0.0, časové razítko: 0x5cb748d4
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000ce6fb3
ID chybujícího procesu: 0x32a8
Čas spuštění chybující aplikace: 0x01d50037486db9e0
Cesta k chybující aplikaci: A:\Users\Viktor\Downloads\Kenshi.v1.0.25\Kenshi.v1.0.25\kenshi_x64.exe
Cesta k chybujícímu modulu: A:\Users\Viktor\Downloads\Kenshi.v1.0.25\Kenshi.v1.0.25\kenshi_x64.exe
ID zprávy: bed1641b-b255-4a6f-9848-d17b3bcc5eb6
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (05/01/2019 03:46:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: utorrent.exe, verze: 2.2.1.25534, časové razítko: 0x4e4594ce
Název chybujícího modulu: GDI32.dll, verze: 10.0.17134.285, časové razítko: 0x40f0d4bd
Kód výjimky: 0xc000041d
Posun chyby: 0x000063d7
ID chybujícího procesu: 0x2c18
Čas spuštění chybující aplikace: 0x01d4ffe9cbc430e8
Cesta k chybující aplikaci: C:\Users\Viktor\AppData\Roaming\uTorrent\utorrent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\GDI32.dll
ID zprávy: 21defa0e-5c94-456d-8bb1-03101d529080
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (05/01/2019 03:30:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: kenshi_x64.exe, verze: 0.0.0.0, časové razítko: 0x5cb748d4
Název chybujícího modulu: kenshi_x64.exe, verze: 0.0.0.0, časové razítko: 0x5cb748d4
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000ce6fb3
ID chybujícího procesu: 0x324c
Čas spuštění chybující aplikace: 0x01d5000c7a2c7cbe
Cesta k chybující aplikaci: A:\Users\Viktor\Downloads\Kenshi.v1.0.25\Kenshi.v1.0.25\kenshi_x64.exe
Cesta k chybujícímu modulu: A:\Users\Viktor\Downloads\Kenshi.v1.0.25\Kenshi.v1.0.25\kenshi_x64.exe
ID zprávy: ac4b348c-d8f1-4ea3-b0c4-d8822fc5f576
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (05/01/2019 12:30:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: kenshi_x64.exe, verze: 0.0.0.0, časové razítko: 0x5cb748d4
Název chybujícího modulu: kenshi_x64.exe, verze: 0.0.0.0, časové razítko: 0x5cb748d4
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000ce6fb3
ID chybujícího procesu: 0x2b00
Čas spuštění chybující aplikace: 0x01d4ffe9bfb11e44
Cesta k chybující aplikaci: A:\Users\Viktor\Downloads\Kenshi.v1.0.25\Kenshi.v1.0.25\kenshi_x64.exe
Cesta k chybujícímu modulu: A:\Users\Viktor\Downloads\Kenshi.v1.0.25\Kenshi.v1.0.25\kenshi_x64.exe
ID zprávy: cad489da-9f86-442c-bf6c-20abbeb0053c
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (05/01/2019 05:41:26 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 a APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (05/01/2019 05:41:06 PM) (Source: DCOM) (EventID: 10016) (User: Gronus)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 a APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 uživateli Gronus\Viktor (SID: S-1-5-21-3348608579-3824376785-1914751379-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (05/01/2019 05:40:40 PM) (Source: DCOM) (EventID: 10016) (User: Gronus)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 a APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 uživateli Gronus\Viktor (SID: S-1-5-21-3348608579-3824376785-1914751379-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (05/01/2019 05:40:09 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 a APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 uživateli NT AUTHORITY\NETWORK SERVICE (SID: S-1-5-20) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (05/01/2019 05:40:09 PM) (Source: DCOM) (EventID: 10016) (User: Gronus)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID 
{7022A3B3-D004-4F52-AF11-E9E987FEE25F}
 a APPID 
{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}
 uživateli Gronus\Viktor (SID: S-1-5-21-3348608579-3824376785-1914751379-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (05/01/2019 05:40:09 PM) (Source: DCOM) (EventID: 10016) (User: Gronus)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID 
{7022A3B3-D004-4F52-AF11-E9E987FEE25F}
 a APPID 
{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}
 uživateli Gronus\Viktor (SID: S-1-5-21-3348608579-3824376785-1914751379-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (05/01/2019 05:40:08 PM) (Source: DCOM) (EventID: 10016) (User: Gronus)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID 
{7022A3B3-D004-4F52-AF11-E9E987FEE25F}
 a APPID 
{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}
 uživateli Gronus\Viktor (SID: S-1-5-21-3348608579-3824376785-1914751379-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (05/01/2019 05:40:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba avast! Antivirus neuspěla při spuštění v důsledku následující chyby: 
Systém nemůže nalézt uvedený soubor.


Windows Defender:
===================================
Date: 2019-02-02 12:26:32.340
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {669CA4B7-AE66-4518-A948-9376B7F13403}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-02-02 09:05:40.238
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {BC26D851-9F59-43F9-BAF2-CCB5061D72F7}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

CodeIntegrity:
===================================

Date: 2019-04-29 02:54:09.832
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-04-29 02:51:55.042
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-04-29 02:51:54.949
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-04-29 02:41:49.397
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-04-29 02:00:22.641
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-04-28 18:41:50.037
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-04-28 10:08:23.947
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-04-28 10:06:19.213
Description: 
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info =========================== 

BIOS: American Megatrends Inc. V1.1 04/26/2013
Motherboard: MSI Z87-G41 PC Mate(MS-7850)
Processor: Intel(R) Core(TM) i5-4670K CPU @ 3.40GHz
Percentage of memory in use: 18%
Total physical RAM: 24520.61 MB
Available physical RAM: 20046.34 MB
Total Virtual: 26056.61 MB
Available Virtual: 21147.18 MB

==================== Drives ================================

Drive a: (Nový svazek) (Fixed) (Total:2794.13 GB) (Free:824.34 GB) NTFS
Drive c: () (Fixed) (Total:222.55 GB) (Free:79.59 GB) NTFS
Drive d: () (Fixed) (Total:931.41 GB) (Free:770.51 GB) NTFS
Drive e: (SAMSUNG) (Fixed) (Total:931.51 GB) (Free:155.75 GB) NTFS

\\?\Volume{fb29c4a9-f092-495e-96fc-5092616bb5ab}\ (Obnovení) (Fixed) (Total:0.29 GB) (Free:0.28 GB) NTFS
\\?\Volume{4a7d663a-6901-430f-8595-5b9a57ea63e1}\ () (Fixed) (Total:0.46 GB) (Free:0.09 GB) NTFS
\\?\Volume{088e0a34-8172-4b25-b271-1021ea6d7a5c}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: CB312B5F)
Partition 1: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Protective MBR) (Size: 2794.5 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 2 (Size: 931.5 GB) (Disk ID: BAFA25DE)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (Protective MBR) (Size: 223.6 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt ============================