Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-03-2021
Ran by Mimic (20-04-2021 10:44:02)
Running from D:\staženéé
Windows 10 Pro Version 1903 18362.778 (X64) (2019-10-16 07:52:20)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1235492812-2151765122-4279266773-500 - Administrator - Enabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-1235492812-2151765122-4279266773-503 - Limited - Disabled)
Guest (S-1-5-21-1235492812-2151765122-4279266773-501 - Limited - Disabled)
MALUS (S-1-5-21-1235492812-2151765122-4279266773-1003 - Limited - Disabled)
Mimic (S-1-5-21-1235492812-2151765122-4279266773-1002 - Administrator - Enabled) => C:\Users\Mimic
WDAGUtilityAccount (S-1-5-21-1235492812-2151765122-4279266773-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Disabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1235492812-2151765122-4279266773-1002\...\uTorrent) (Version: 3.5.5.45966 - BitTorrent Inc.)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 32.0.0.125 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.387 - Adobe)
Almastriga version build 0.001 (HKLM-x32\...\{03FB0452-F9DD-4F45-A8AC-14E5E7BEF6B1}_is1) (Version: build 0.001 - Taboolicious)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 21.2.2455 - Avast Software)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Black Desert (HKLM-x32\...\BlackDesert_NA_is1) (Version: 1.0 - PearlAbyss Corp.)
Black Desert Online (HKLM-x32\...\{C1F96C92-7B8C-485F-A9CD-37A0708A2A60}) (Version: 1.0.0.10 - Kakao Games Europe B.V.)
CleanUp! (HKLM-x32\...\CleanUp!) (Version:  - )
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
Discord (HKU\S-1-5-21-1235492812-2151765122-4279266773-1002\...\Discord) (Version: 0.0.309 - Discord Inc.)
Gameforge Client (HKLM-x32\...\{d3b2a0c1-f0d0-4888-ae0b-1c5e1febdafb}_is1) (Version: 2.1.21.726 - Gameforge)
Gameforge Login MS2 (HKLM-x32\...\{703bd6d7-79c0-4005-8cd7-89522a05a546}_is1) (Version: 1.3.39 - Gameforge)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 89.0.4389.128 - Google LLC)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.99.0 - Google Inc.) Hidden
iCloud Outlook (HKLM\...\{A8C64C2A-BD34-464F-BA61-A969BA46FC2B}) (Version: 10.9.3.62 - Apple Inc.)
Java 8 Update 161 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180161F0}) (Version: 8.0.1610.12 - Oracle Corporation)
Java 8 Update 191 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends PBE (HKU\S-1-5-21-1235492812-2151765122-4279266773-1002\...\Riot Game league_of_legends.pbe) (Version:  - Riot Games, Inc)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
Microsoft OneDrive (HKU\S-1-5-21-1235492812-2151765122-4279266773-1002\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1235492812-2151765122-4279266773-500\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
Minecraft Launcher (HKLM-x32\...\{E15F69FA-660D-45CC-B28F-6CBC4CAD2091}) (Version: 1.0.0.0 - Mojang)
NirSoft WebBrowserPassView (HKLM-x32\...\NirSoft WebBrowserPassView) (Version:  - )
NosTale (HKLM-x32\...\{dd4e22d6-00d1-44b9-8126-d8b40e0cd7c9}) (Version:  - Gameforge)
NosTale (HKLM-x32\...\Nostale(CZ)_is1) (Version:  - Gameforge 4D GmbH)
NosTale cs-CZ (HKLM-x32\...\{dd4e22d6-00d1-44b9-8126-d8b40e0cd7c9.cs-CZ}) (Version:  - Gameforge)
NVIDIA FrameView SDK 1.1.4923.29548709 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29548709 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.21.0.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.21.0.36 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.40 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 461.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 461.72 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Oh So Hero! (HKLM-x32\...\Oh So Hero!) (Version: 0.15.000 - Full Frontal Frog)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 10.5.90.45798 - Electronic Arts, Inc.)
Outbyte PC Repair (HKLM-x32\...\{D5C6DB0C-BC43-4A77-9121-D1A07591F855}_is1) (Version: 1.1.7.62798 - Outbyte Computing Pty Ltd)
Outlook Express Backup V6.5 (HKLM-x32\...\EditPlus Text Editor_is1) (Version: 4.60.2181.23 - GOM & Company)
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.23258 - Microsoft Corporation)
PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 210318 - Kakao Corp.)
Razer Synapse (HKLM-x32\...\Razer Synapse) (Version: 3.6.0331.031613 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8302 - Realtek Semiconductor Corp.)
Robin Morningwood Adventure The Whellcum's Secret version 0.5.2 (HKLM-x32\...\{0AC36B87-FA0B-4B60-9580-E9028F2A03A3}_is1) (Version: 0.5.2 - Grizzly Gamer)
Robin Morningwood Adventure version 1.9 (HKLM-x32\...\{90438DFC-FAF8-4125-8D8A-959003C55B2B}_is1) (Version: 1.9 - GrizzlyGamerStudio)
ScrSnap (HKLM-x32\...\ScrSnap) (Version:  - ) <==== ATTENTION
TeamSpeak 3 Client (HKU\S-1-5-21-1235492812-2151765122-4279266773-1002\...\TeamSpeak 3 Client) (Version: 3.2.3 - TeamSpeak Systems GmbH)
Twitch (HKU\S-1-5-21-1235492812-2151765122-4279266773-1002\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
UE4 Prerequisites (x64) (HKLM\...\{D7B591D8-1091-4A00-A0B3-5301C45E5D51}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{0d995f46-317b-4b5f-bf3e-9f98bae9d339}) (Version: 1.0.14.0 - Epic Games, Inc.) Hidden
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
UpdateAssistant (HKLM\...\{F49D6A65-1AB6-4728-9FDA-DB5BAB631CF6}) (Version: 1.23.0.0 - Microsoft Corporation) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Warcraft III (HKLM-x32\...\Warcraft III) (Version:  - Blizzard Entertainment)
Web Companion (HKLM-x32\...\{e81fff90-d055-4d36-bb93-31b8ac403cd1}) (Version: 7.0.2417.4248 - Lavasoft)
WebAdvisor od společnosti McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.585 - McAfee, LLC)
WeMod (HKU\S-1-5-21-1235492812-2151765122-4279266773-1002\...\WeMod) (Version: 6.2.16 - WeMod)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version:  - Blizzard Entertainment)
World of Warcraft Classic (HKLM-x32\...\World of Warcraft Classic) (Version:  - Blizzard Entertainment)
World of Warcraft Classic PTR (HKLM-x32\...\World of Warcraft Classic PTR) (Version:  - Blizzard Entertainment)
World of Warcraft Public Test (HKLM-x32\...\World of Warcraft Public Test) (Version:  - Blizzard Entertainment)

Packages:
=========
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220 [2020-04-19] (Dolby Laboratories)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-12-04] (Microsoft Corporation)
Fitbit Coach -> C:\Program Files\WindowsApps\Fitbit.FitbitCoach_4.4.133.0_x64__6mqt6hf9g46tw [2018-12-24] (Fitbit)
iCloud -> C:\Program Files\WindowsApps\AppleInc.iCloud_10.9.62.0_x86__nzyj5cx40ttqa [2020-04-10] (Apple Inc.) [Startup Task]
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12106.2.48003.0_x64__nzyj5cx40ttqa [2020-04-17] (Apple Inc.) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-25] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-25] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-26] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-02] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-26] (Microsoft Corporation) [MS Ad]
Phototastic Collage -> C:\Program Files\WindowsApps\ThumbmunkeysLtd.PhototasticCollage_3.9.1.0_x64__nfy108tqq3p12 [2020-04-19] (Thumbmunkeys Ltd) [MS Ad]
PlayList Downloader from Youtube -> C:\Program Files\WindowsApps\299OMANSAK.PlayListDownloaderfromYoutube_1.5.5.0_x64__zratab4wdvxjg [2020-04-08] (OMANSAK) [MS Ad]
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c [2020-02-08] (Skype)
State of Decay 2 -> C:\Program Files\WindowsApps\Microsoft.Dayton_2.384.54.2_x64__8wekyb3d8bbwe [2020-03-14] (Microsoft Studios)
Váš telefon -> C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20041.88.0_x64__8wekyb3d8bbwe [2020-05-08] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1235492812-2151765122-4279266773-1002_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1235492812-2151765122-4279266773-1002_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1235492812-2151765122-4279266773-1002_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1235492812-2151765122-4279266773-1002_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1235492812-2151765122-4279266773-1002_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1235492812-2151765122-4279266773-1002_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1235492812-2151765122-4279266773-1002_Classes\CLSID\{7000EBEA-9341-4C5A-8297-B3541E8D3474} -> [iCloud Drive] => C:\Users\Mimic\iCloudDrive0
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-28] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-05-23] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2021-02-23] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-05-23] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32-x32: [vidc.VP60] => C:\WINDOWS\system32\vp6vfw.dll
HKLM\...\Drivers32-x32: [vidc.VP61] => C:\WINDOWS\system32\vp6vfw.dll

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Mimic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Vysor.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=gidgenkbbabolejbgbpnhbimgjbffefm
ShortcutWithArgument: C:\Users\Mimic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Vzdálená plocha Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=gbchcmhmhahfdphkhkmpfmihenigjmpp

==================== Loaded Modules (Whitelisted) =============

2020-04-19 00:20 - 2020-04-19 00:20 - 000165376 _____ () [File not signed] C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220\DAXRPCClient.dll
2020-04-19 00:20 - 2020-04-19 00:20 - 037219328 _____ () [File not signed] C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220\DolbyAccess.dll
2020-04-08 00:19 - 2020-04-08 00:19 - 001165824 _____ () [File not signed] C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220\e_sqlite3.dll
2021-01-23 15:20 - 2014-04-09 06:25 - 000071680 _____ () [File not signed] D:\Steam\bin\mssmp3.asi
2021-01-23 15:20 - 2014-04-09 06:25 - 000153088 _____ () [File not signed] D:\Steam\bin\mssvoice.asi
2021-03-03 05:40 - 2021-03-03 05:40 - 001230336 _____ (Applied Informatics Software Engineering GmbH) [File not signed] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoFoundation.dll
2021-03-03 05:40 - 2021-03-03 05:40 - 000207872 _____ (Applied Informatics Software Engineering GmbH) [File not signed] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoJSON.dll
2021-03-03 05:40 - 2021-03-03 05:40 - 000810496 _____ (Applied Informatics Software Engineering GmbH) [File not signed] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoNet.dll
2021-03-03 05:40 - 2021-03-03 05:40 - 000238592 _____ (Applied Informatics Software Engineering GmbH) [File not signed] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoNetSSLWin.dll
2021-03-03 05:40 - 2021-03-03 05:40 - 000335360 _____ (Applied Informatics Software Engineering GmbH) [File not signed] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoUtil.dll
2021-03-03 05:40 - 2021-03-03 05:40 - 000455168 _____ (Applied Informatics Software Engineering GmbH) [File not signed] C:\Program Files (x86)\Razer Chroma SDK\bin\PocoXML.dll
2021-01-23 15:20 - 2014-05-03 03:16 - 000440320 _____ (RAD Game Tools, Inc.) [File not signed] D:\Steam\bin\mss32.DLL
2021-01-23 15:20 - 2014-04-09 06:25 - 000055296 _____ (RAD Game Tools, Inc.) [File not signed] D:\Steam\bin\mssdsp.flt
2020-04-15 20:37 - 2020-05-19 23:02 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2020-04-15 20:37 - 2020-05-19 23:02 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2020-04-15 20:37 - 2020-05-19 23:02 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2020-12-28 23:04 - 2020-05-19 23:02 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2020-12-28 23:04 - 2020-05-19 23:02 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2020-12-28 23:04 - 2020-05-19 23:02 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2020-12-28 23:04 - 2020-05-19 23:02 - 000146432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2020-12-28 23:04 - 2020-05-19 23:02 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2020-12-28 23:04 - 2020-05-19 23:02 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\35953192.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\52888064.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\66B8A4F9.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\35953192.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\52888064.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\66B8A4F9.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-1235492812-2151765122-4279266773-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://securesearch.org/homepage?hp=2&pId=BT171101&iDate=2020-06-13 10:25:11&bName=
SearchScopes: HKU\S-1-5-21-1235492812-2151765122-4279266773-1002 -> {993F5746-4C15-42BC-99C1-064A1764271B} URL = hxxps://securesearch.org?q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_161\bin\ssv.dll [2018-12-31] (Oracle America, Inc. -> Oracle Corporation)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2021-04-15] (McAfee, LLC -> McAfee, LLC)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_161\bin\jp2ssv.dll [2018-12-31] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll [2018-12-29] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2021-04-15] (McAfee, LLC -> McAfee, LLC)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-12-29] (Oracle America, Inc. -> Oracle Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-1235492812-2151765122-4279266773-1002\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1235492812-2151765122-4279266773-1002\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-12-25 01:47 - 2019-01-04 15:21 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Razer Chroma SDK\bin;C:\Program Files\Razer Chroma SDK\bin;C:\Program Files (x86)\Razer\ChromaBroadcast\bin;C:\Program Files\Razer\ChromaBroadcast\bin;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\Process Lasso\;C:\Users\Mimic\AppData\Local\Microsoft\WindowsApps;C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\WindowsApps
HKU\S-1-5-21-1235492812-2151765122-4279266773-1002\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-21-1235492812-2151765122-4279266773-500\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: Media is not connected to internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{8029EC52-9BFB-4A4A-BD3D-6ECFE32E4B1A}D:\classic offik\world of warcraft\_classic_\utils\wowvoiceproxy.exe] => (Allow) D:\classic offik\world of warcraft\_classic_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{935771FD-1959-42EC-97E3-E980641C7D79}D:\classic offik\world of warcraft\_classic_\utils\wowvoiceproxy.exe] => (Allow) D:\classic offik\world of warcraft\_classic_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{B992D716-4AD0-4D6C-A2E9-A06BAAA54320}D:\league of legends\game\league of legends.exe] => (Allow) D:\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [TCP Query User{12B8A14D-5D5C-4942-A64D-30D9A383EE92}D:\league of legends\game\league of legends.exe] => (Allow) D:\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{D2F8A587-E1E3-4844-9A3B-9A0F98FA1BEB}D:\league of legends\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe => No File
FirewallRules: [TCP Query User{A6165E2F-2EC3-4431-89B3-ACC062060849}D:\league of legends\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.200\deploy\leagueclient.exe => No File
FirewallRules: [UDP Query User{67B94190-5FE1-4D54-9AD4-B3351E543231}D:\league of legends\rads\projects\league_client\releases\0.0.0.198\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.198\deploy\leagueclient.exe => No File
FirewallRules: [TCP Query User{1B11AED1-44F6-49B8-9E25-73A93B1F668A}D:\league of legends\rads\projects\league_client\releases\0.0.0.198\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.198\deploy\leagueclient.exe => No File
FirewallRules: [UDP Query User{1511F20F-9F9C-46B6-B585-8775AE8926EC}D:\league of legends\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe => No File
FirewallRules: [TCP Query User{BE6C583F-3D5C-4DE3-BEA1-D3A4E4EFACBC}D:\league of legends\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.197\deploy\leagueclient.exe => No File
FirewallRules: [UDP Query User{2136E8B7-405B-4681-96A9-69E18EFB1DDB}D:\league of legends\rads\projects\league_client\releases\0.0.0.196\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.196\deploy\leagueclient.exe => No File
FirewallRules: [TCP Query User{B897E717-C6A6-4D72-AFC2-6D19C5D37A6C}D:\league of legends\rads\projects\league_client\releases\0.0.0.196\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.196\deploy\leagueclient.exe => No File
FirewallRules: [UDP Query User{D7454C61-EC00-4D57-8699-8896A0E8031C}D:\league of legends\rads\projects\league_client\releases\0.0.0.195\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.195\deploy\leagueclient.exe => No File
FirewallRules: [TCP Query User{1B1BEF2C-0088-4866-A7E8-C63739194F78}D:\league of legends\rads\projects\league_client\releases\0.0.0.195\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.195\deploy\leagueclient.exe => No File
FirewallRules: [UDP Query User{CD6B6B07-0AB4-4DD6-91AA-42182240325D}D:\league of legends\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe => No File
FirewallRules: [TCP Query User{A8C5B25F-4631-40E8-8E9D-EBD325800452}D:\league of legends\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.194\deploy\leagueclient.exe => No File
FirewallRules: [UDP Query User{EFFDE2AB-6369-4A2F-BF72-8F753AD4BCFE}D:\league of legends\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe => No File
FirewallRules: [TCP Query User{52E9227D-F6D3-4DD5-8918-3FED9C1CDF1A}D:\league of legends\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.193\deploy\leagueclient.exe => No File
FirewallRules: [UDP Query User{F81CC3BA-00DE-4E55-AAE2-DD2C1B2ACA6E}D:\league of legends\rads\projects\league_client\releases\0.0.0.190\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.190\deploy\leagueclient.exe => No File
FirewallRules: [TCP Query User{FAA3116E-B54A-4459-AFB3-6F95E098DAF0}D:\league of legends\rads\projects\league_client\releases\0.0.0.190\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.190\deploy\leagueclient.exe => No File
FirewallRules: [UDP Query User{755B8356-49CA-436E-9471-928AF271B9A1}D:\league of legends\rads\projects\league_client\releases\0.0.0.189\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.189\deploy\leagueclient.exe => No File
FirewallRules: [TCP Query User{727B4094-01C8-4932-AF25-3861D758D55C}D:\league of legends\rads\projects\league_client\releases\0.0.0.189\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.189\deploy\leagueclient.exe => No File
FirewallRules: [UDP Query User{158AEE44-E4C1-4607-928E-F52EA9DE72F1}D:\league of legends\rads\projects\league_client\releases\0.0.0.184\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.184\deploy\leagueclient.exe => No File
FirewallRules: [TCP Query User{DE11E38C-873F-4DFB-A407-5E74CC5A4E3F}D:\league of legends\rads\projects\league_client\releases\0.0.0.184\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.184\deploy\leagueclient.exe => No File
FirewallRules: [UDP Query User{096F6BA9-15D6-468B-897D-4F53D145DB11}D:\league of legends\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe => No File
FirewallRules: [TCP Query User{28AC4DF0-3506-452A-A759-0F57D88DA92D}D:\league of legends\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe => No File
FirewallRules: [UDP Query User{53702A04-72DC-45A9-B0EE-29EDE2B99C79}D:\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe => No File
FirewallRules: [TCP Query User{8BBBD486-4A49-4125-A2BD-B256BECE799E}D:\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe => No File
FirewallRules: [UDP Query User{BF3C59EB-F68C-4DA6-9D8F-78D50FDC4618}D:\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe => No File
FirewallRules: [TCP Query User{36DCFA73-5BD8-4EFC-B05A-4E8908FF7813}D:\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe => No File
FirewallRules: [UDP Query User{2B92B0F6-CA02-41B3-82BE-CABAEEF959B4}C:\users\mimic\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\mimic\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{8FABF57D-244A-48E1-B363-78329F468E96}C:\users\mimic\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\mimic\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{F7554FAB-3AAD-453E-BA62-6AC05A36623E}C:\program files (x86)\java\jre1.8.0_191\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_191\bin\javaw.exe
FirewallRules: [TCP Query User{B3C4F9DE-EAEB-4BA3-8BEB-5970D5F786D3}C:\program files (x86)\java\jre1.8.0_191\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_191\bin\javaw.exe
FirewallRules: [{0B58D1CE-5F7B-4CC2-BB89-962CF449D6A5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A3603895-6D9A-4409-927E-BC09D6A1DCC0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{7F054086-0750-480F-A761-B25574282C98}D:\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe => No File
FirewallRules: [TCP Query User{FD615BA5-CDA3-4BE1-BD74-DD068A777B36}D:\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe => No File
FirewallRules: [TCP Query User{F3F17166-4CCF-4B73-A1DB-88C25B27D447}D:\classic offik\world of warcraft\_retail_\utils\wowvoiceproxy.exe] => (Block) D:\classic offik\world of warcraft\_retail_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{C5B0D094-E644-4B45-96B1-9ED7BAF19760}D:\classic offik\world of warcraft\_retail_\utils\wowvoiceproxy.exe] => (Block) D:\classic offik\world of warcraft\_retail_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{215354C0-76C2-4636-B2E5-5E86AEB05DFA}] => (Allow) C:\Users\Mimic\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{02AAF38C-CD4E-49C9-9255-3D2791C41CE1}] => (Allow) C:\Users\Mimic\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{2C7FD055-0E95-43EB-8E53-06EED82AE80C}D:\games\outlast 2\binaries\win64\outlast2.exe] => (Allow) D:\games\outlast 2\binaries\win64\outlast2.exe => No File
FirewallRules: [UDP Query User{72603C6B-0B21-415B-9035-D72FA9D526A7}D:\games\outlast 2\binaries\win64\outlast2.exe] => (Allow) D:\games\outlast 2\binaries\win64\outlast2.exe => No File
FirewallRules: [{EB9D5BF6-FC61-4220-9FBC-A84532C6590E}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12106.2.48003.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4E030515-2D49-408E-AFD0-45772A87DBC3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12106.2.48003.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{22BB9CB9-7CFC-43FB-AD76-4E4AC4F9AC00}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12106.2.48003.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E908B8D5-1C91-48CD-91A1-D065411D0AC0}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12106.2.48003.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D855C73C-0B77-456D-B309-E2757AC46A09}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12106.2.48003.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B8165DDD-D695-4FFB-A613-BC2542BF28C4}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12106.2.48003.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C1B71D93-1041-449B-BC83-254C613DD8EF}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12106.2.48003.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{BBF22A65-CC99-464C-BDC2-1B4BE6C631EF}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12106.2.48003.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{524A7336-5E55-4F98-8669-441052FFD714}C:\users\mimic\appdata\roaming\twitch\bin\electron\twitchui.exe] => (Allow) C:\users\mimic\appdata\roaming\twitch\bin\electron\twitchui.exe (Twitch Interactive, Inc. -> Twitch Interactive, Inc.)
FirewallRules: [UDP Query User{54735A18-A5B6-4B5E-A85C-C8AA885F95D1}C:\users\mimic\appdata\roaming\twitch\bin\electron\twitchui.exe] => (Allow) C:\users\mimic\appdata\roaming\twitch\bin\electron\twitchui.exe (Twitch Interactive, Inc. -> Twitch Interactive, Inc.)
FirewallRules: [TCP Query User{4A848F37-B344-412D-A37D-D323EDCFFC0D}C:\program files\java\jre1.8.0_161\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_161\bin\javaw.exe
FirewallRules: [UDP Query User{013B8A78-4D65-44C3-90DE-BF6345702C82}C:\program files\java\jre1.8.0_161\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_161\bin\javaw.exe
FirewallRules: [{61D0DB09-1DDB-49F0-B259-A95AF5815881}] => (Allow) D:\Dyinig light\steamapps\common\Dying Light\DyingLightGame.exe (Techland Sp. z o.o. -> Techland)
FirewallRules: [{C9AE2363-6C9E-4A7F-A0CF-C50836A9EA3D}] => (Allow) D:\Dyinig light\steamapps\common\Dying Light\DyingLightGame.exe (Techland Sp. z o.o. -> Techland)
FirewallRules: [{3C072DFF-8ABC-42C2-8EBF-CBA4C04A2416}] => (Allow) D:\Dyinig light\steamapps\common\The Witcher 3\bin\x64\witcher3.exe => No File
FirewallRules: [{BB28A6EE-92FF-4653-B41D-16A38A3D398E}] => (Allow) D:\Dyinig light\steamapps\common\The Witcher 3\bin\x64\witcher3.exe => No File
FirewallRules: [{6ED204CD-7C5E-4B07-A8D0-65408456DC0B}] => (Allow) D:\Dyinig light\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [File not signed]
FirewallRules: [{B990E38D-7CBD-4AD3-975B-7C571B44C8CF}] => (Allow) D:\Dyinig light\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [File not signed]
FirewallRules: [TCP Query User{30ADEA13-D9F4-48B1-A900-8BE6E022C032}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{2602CD8E-29D6-4BA2-8636-FB24D0521976}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{098265FB-6761-42DA-9A3E-7EF3583A1CB0}] => (Allow) D:\Dyinig light\steamapps\common\Left 4 Dead 2\left4dead2.exe () [File not signed]
FirewallRules: [{9FE1C4B5-98AE-4409-8D9B-A47B21643625}] => (Allow) D:\Dyinig light\steamapps\common\Left 4 Dead 2\left4dead2.exe () [File not signed]
FirewallRules: [{D0BC2476-010B-47EF-9035-C8C818166714}] => (Allow) D:\Dyinig light\steamapps\common\The Forest\TheForest.exe () [File not signed]
FirewallRules: [{B153ACDE-A8A5-4196-BCBC-CA71F80BF04F}] => (Allow) D:\Dyinig light\steamapps\common\The Forest\TheForest.exe () [File not signed]
FirewallRules: [{B0729BB9-A897-416B-B459-5E9A004EFFC5}] => (Allow) D:\Dyinig light\steamapps\common\The Forest\TheForestVR.exe () [File not signed]
FirewallRules: [{D934C1E9-8491-4161-9F6E-44A8810FD9B9}] => (Allow) D:\Dyinig light\steamapps\common\The Forest\TheForestVR.exe () [File not signed]
FirewallRules: [{47450C3D-A78F-436D-B38B-BD8A98151B84}] => (Allow) D:\Dyinig light\steamapps\common\TheForestDedicatedServer\TheForestDedicatedServer.exe () [File not signed]
FirewallRules: [{310F8167-92B5-41A8-A138-5812776942A5}] => (Allow) D:\Dyinig light\steamapps\common\TheForestDedicatedServer\TheForestDedicatedServer.exe () [File not signed]
FirewallRules: [TCP Query User{25B11BFF-B7BF-4866-808B-976A2C4A32FA}D:\classic offik\diablo iii\x64\diablo iii64.exe] => (Allow) D:\classic offik\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{ADDDBBDA-EAF9-47A2-B687-7086D31D7058}D:\classic offik\diablo iii\x64\diablo iii64.exe] => (Allow) D:\classic offik\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{D1C0352B-FEBA-4735-9154-93C4005A63DE}D:\riots game\patch\lewd red riding hoof-v1.03\ost_game\binaries\win64\ost_game-win64-shipping.exe] => (Block) D:\riots game\patch\lewd red riding hoof-v1.03\ost_game\binaries\win64\ost_game-win64-shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [UDP Query User{B15FC298-9193-4CD8-BAD7-9F6DE3388ECB}D:\riots game\patch\lewd red riding hoof-v1.03\ost_game\binaries\win64\ost_game-win64-shipping.exe] => (Block) D:\riots game\patch\lewd red riding hoof-v1.03\ost_game\binaries\win64\ost_game-win64-shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [TCP Query User{1D5C3CCA-D67E-4E87-B757-7B627C055270}D:\riots game\patch\farm\breeding farm.exe] => (Allow) D:\riots game\patch\farm\breeding farm.exe () [File not signed]
FirewallRules: [UDP Query User{96ED3C99-AEF1-41CB-842B-0D76DF146B6E}D:\riots game\patch\farm\breeding farm.exe] => (Allow) D:\riots game\patch\farm\breeding farm.exe () [File not signed]
FirewallRules: [TCP Query User{E1D44D9F-BEB5-477F-972A-0E7D48749969}D:\riots game\patch\uncleneighbor\uncleneighbor.exe] => (Allow) D:\riots game\patch\uncleneighbor\uncleneighbor.exe () [File not signed]
FirewallRules: [UDP Query User{2295E70E-C491-4C25-9CB9-4A9F68E20BFC}D:\riots game\patch\uncleneighbor\uncleneighbor.exe] => (Allow) D:\riots game\patch\uncleneighbor\uncleneighbor.exe () [File not signed]
FirewallRules: [TCP Query User{99A2FABD-654F-4BFC-A381-AEF92393AE44}D:\riots game\patch\lotw\lotw\binaries\win64\lotw.exe] => (Allow) D:\riots game\patch\lotw\lotw\binaries\win64\lotw.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [UDP Query User{B045B97C-781E-479A-9DF9-900B21986B76}D:\riots game\patch\lotw\lotw\binaries\win64\lotw.exe] => (Allow) D:\riots game\patch\lotw\lotw\binaries\win64\lotw.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{778FF7DE-A0D2-4E1C-B9F4-BEEDD9D1B7DE}] => (Allow) D:\Dyinig light\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland Sp. z o.o. -> Techland)
FirewallRules: [{7AB79D43-AE00-45EB-9B2D-4B9135A58DC0}] => (Allow) D:\Dyinig light\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland Sp. z o.o. -> Techland)
FirewallRules: [TCP Query User{88BB794C-DF94-4716-9F16-870C2E6EF314}D:\riots game\patch\thelewdknight0.3.5\the lewd knight.exe] => (Allow) D:\riots game\patch\thelewdknight0.3.5\the lewd knight.exe () [File not signed]
FirewallRules: [UDP Query User{9B69EF41-0AE2-492E-B1FC-26F5839D621C}D:\riots game\patch\thelewdknight0.3.5\the lewd knight.exe] => (Allow) D:\riots game\patch\thelewdknight0.3.5\the lewd knight.exe () [File not signed]
FirewallRules: [TCP Query User{C5D9F686-4710-4E07-9A1B-244737B3004B}D:\classic offik\warcraft iii\_retail_\x86_64\warcraft iii.exe] => (Block) D:\classic offik\warcraft iii\_retail_\x86_64\warcraft iii.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc)
FirewallRules: [UDP Query User{B5BF3530-6314-4F11-A110-31EA2600C560}D:\classic offik\warcraft iii\_retail_\x86_64\warcraft iii.exe] => (Block) D:\classic offik\warcraft iii\_retail_\x86_64\warcraft iii.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc)
FirewallRules: [{BC62ED5E-E579-4106-8819-274A061A6F6F}] => (Allow) D:\Dyinig light\steamapps\common\NARUTO SHIPPUDEN ULTIMATE NINJA STORM REVOLUTION\NSUNSR_launcher.exe () [File not signed]
FirewallRules: [{FDB3E626-F556-4C3A-B59D-ED907E839A22}] => (Allow) D:\Dyinig light\steamapps\common\NARUTO SHIPPUDEN ULTIMATE NINJA STORM REVOLUTION\NSUNSR_launcher.exe () [File not signed]
FirewallRules: [{235D8EC2-45CC-4CEE-A506-8C5D1B248A25}] => (Allow) D:\Dyinig light\steamapps\common\Planet Zoo\PlanetZoo.exe (Frontier Developments) [File not signed]
FirewallRules: [{ED32F3AF-C340-48A5-B9EB-3A6C0EF104C0}] => (Allow) D:\Dyinig light\steamapps\common\Planet Zoo\PlanetZoo.exe (Frontier Developments) [File not signed]
FirewallRules: [{21D29E25-EDE8-4B13-BE6C-2D4F69FCA7E8}] => (Allow) D:\Dyinig light\steamapps\common\Ori DE\oriDE.exe () [File not signed]
FirewallRules: [{00692236-CBAB-4B8F-92A1-13C0EB51B991}] => (Allow) D:\Dyinig light\steamapps\common\Ori DE\oriDE.exe () [File not signed]
FirewallRules: [{F4CFF9FB-116A-428F-AB89-92860FE66F72}] => (Allow) D:\Dyinig light\steamapps\common\Ori\ori.exe () [File not signed]
FirewallRules: [{F38EC794-B7C7-4804-A2E2-18C9E971E909}] => (Allow) D:\Dyinig light\steamapps\common\Ori\ori.exe () [File not signed]
FirewallRules: [{6F36F5F1-CEDA-424E-82E1-835A1DC858A5}] => (Allow) D:\Dyinig light\steamapps\common\Trine\_enchanted_edition_\trine1_launcher.exe () [File not signed]
FirewallRules: [{5125D724-14B5-4294-8E76-B0ED12139F48}] => (Allow) D:\Dyinig light\steamapps\common\Trine\_enchanted_edition_\trine1_launcher.exe () [File not signed]
FirewallRules: [TCP Query User{0A302999-D746-4C2E-91BF-A6E07042A990}D:\dyinig light\steamapps\common\trine\_enchanted_edition_\trine1_32bit.exe] => (Block) D:\dyinig light\steamapps\common\trine\_enchanted_edition_\trine1_32bit.exe () [File not signed]
FirewallRules: [UDP Query User{F1F6AB90-0542-4961-BB03-57FEADEDC3CD}D:\dyinig light\steamapps\common\trine\_enchanted_edition_\trine1_32bit.exe] => (Block) D:\dyinig light\steamapps\common\trine\_enchanted_edition_\trine1_32bit.exe () [File not signed]
FirewallRules: [{F6D9E75B-CE9D-4A10-8EE1-F01BC383072D}] => (Allow) D:\Dyinig light\steamapps\common\Trine 2\trine2_launcher.exe () [File not signed]
FirewallRules: [{DDC979DF-6C31-48BC-AB91-9B2C4183A917}] => (Allow) D:\Dyinig light\steamapps\common\Trine 2\trine2_launcher.exe () [File not signed]
FirewallRules: [TCP Query User{74E9CA75-1668-46B6-93B6-13D6961777E4}C:\program files (x86)\quadcorem2\pack\core.bin] => (Allow) C:\program files (x86)\quadcorem2\pack\core.bin => No File
FirewallRules: [UDP Query User{8EF1FF6C-68FD-4FDA-9EDC-5D39766E92AB}C:\program files (x86)\quadcorem2\pack\core.bin] => (Allow) C:\program files (x86)\quadcorem2\pack\core.bin => No File
FirewallRules: [TCP Query User{BD7F689C-92FF-4190-80EE-39756E978EB6}D:\riots game\patch\cybernance\cralpha0.7\rigsandbox\binaries\win64\rigsandbox-win64-test.exe] => (Allow) D:\riots game\patch\cybernance\cralpha0.7\rigsandbox\binaries\win64\rigsandbox-win64-test.exe (Nemesis Soft LTD) [File not signed]
FirewallRules: [UDP Query User{DBC01F10-8CDB-4333-99D6-3DAB658D2B19}D:\riots game\patch\cybernance\cralpha0.7\rigsandbox\binaries\win64\rigsandbox-win64-test.exe] => (Allow) D:\riots game\patch\cybernance\cralpha0.7\rigsandbox\binaries\win64\rigsandbox-win64-test.exe (Nemesis Soft LTD) [File not signed]
FirewallRules: [{68A1D9DC-501A-412F-A12C-FDC9D51A265F}] => (Allow) D:\Steam\steam.exe (Valve -> Valve Corporation)
FirewallRules: [{C8C259B2-D4C0-4086-9787-1038157ED570}] => (Allow) D:\Steam\steam.exe (Valve -> Valve Corporation)
FirewallRules: [{D03C281D-316B-4A9B-9354-44B0DB27FF68}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{9FE01952-F1D9-416D-B63E-566547E8CCD5}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{953B297B-289D-4162-8914-008778EAF1AD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{21A7403D-FB28-4B8B-A4D0-0BD47D97B78F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C28E73E6-92DB-41C8-A0F7-AE57DD58F9F3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{7671A118-3EE9-4C5C-8516-43D6028364AB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{AED6E6F7-845B-4378-864C-8A22DFEDB3A6}] => (Allow) D:\Dyinig light\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland Sp. z o.o. -> Techland)
FirewallRules: [{E16D29EF-1460-4A29-A8AA-B41897E62278}] => (Allow) D:\Dyinig light\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland Sp. z o.o. -> Techland)
FirewallRules: [{C9E6AC34-EBF0-4894-A39D-47109D6BD24A}] => (Allow) D:\Steam\steamapps\common\Trine 4 The Nightmare Prince\trine4.exe () [File not signed]
FirewallRules: [{BA1F3C46-270E-467C-BA66-7C93B480CCEF}] => (Allow) D:\Steam\steamapps\common\Trine 4 The Nightmare Prince\trine4.exe () [File not signed]
FirewallRules: [{532FB980-3B72-4BF5-830E-5C0A7C48ECE8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{E66CA2B1-39DF-4E27-A901-B33AC497BED2}D:\riots game\patch\uncleneighbor\uncleneighbor.exe] => (Allow) D:\riots game\patch\uncleneighbor\uncleneighbor.exe () [File not signed]
FirewallRules: [UDP Query User{CFB79707-04F0-42C5-98B6-FB62CFEA566B}D:\riots game\patch\uncleneighbor\uncleneighbor.exe] => (Allow) D:\riots game\patch\uncleneighbor\uncleneighbor.exe () [File not signed]

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:111.25 GB) (Free:22.14 GB) (20%)

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (04/20/2021 10:37:08 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (23320,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (04/20/2021 10:24:25 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Razer Synapse Service Process.exe, verze: 1.0.0.0, časové razítko: 0x605039d3
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc000041d
Posun chyby: 0x032acce0
ID chybujícího procesu: 0x5f34
Čas spuštění chybující aplikace: 0x01d7350264151631
Cesta k chybující aplikaci: C:\Program Files (x86)\Razer\Synapse3\Service\..\UserProcess\Razer Synapse Service Process.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: dfe9e89f-b663-4896-9bd2-9cbc50eb0237
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (04/20/2021 10:20:22 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: Razer Synapse Service Process.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: kód výjimky c0000005, adresa výjimky 00000000
Zásobník:
   na System.Windows.Forms.UnsafeNativeMethods.CallWindowProc(IntPtr, IntPtr, Int32, IntPtr, IntPtr)
   na System.Windows.Forms.NativeWindow.DefWndProc(System.Windows.Forms.Message ByRef)
   na System.Windows.Forms.NativeWindow.WndProc(System.Windows.Forms.Message ByRef)
   na System.Windows.Forms.NativeWindow.Callback(IntPtr, Int32, IntPtr, IntPtr)
   na System.Windows.Forms.UnsafeNativeMethods.PeekMessage(MSG ByRef, System.Runtime.InteropServices.HandleRef, Int32, Int32, Int32)
   na System.Windows.Forms.Application+ComponentManager.System.Windows.Forms.UnsafeNativeMethods.IMsoComponentManager.FPushMessageLoop(IntPtr, Int32, Int32)
   na System.Windows.Forms.Application+ThreadContext.RunMessageLoopInner(Int32, System.Windows.Forms.ApplicationContext)
   na System.Windows.Forms.Application+ThreadContext.RunMessageLoop(Int32, System.Windows.Forms.ApplicationContext)
   na System.Windows.Forms.Application.Run(System.Windows.Forms.Form)
   na Synapse3.UserInteractive.Program.Main()

Error: (04/20/2021 09:58:52 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (41108,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (04/20/2021 08:58:52 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (24448,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (04/20/2021 07:58:52 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (26420,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (04/20/2021 06:58:52 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (35984,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).

Error: (04/20/2021 05:58:52 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (29844,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).


System errors:
=============
Error: (04/20/2021 10:43:27 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba wuauserv byla ukončena s následující chybou: 
Systém nemůže nalézt uvedený soubor.

Error: (04/20/2021 10:43:27 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-0G63EDE)
Description: Server {E60687F7-01A1-40AA-86AC-DB1CBF673334} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/20/2021 10:41:27 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba wuauserv byla ukončena s následující chybou: 
Systém nemůže nalézt uvedený soubor.

Error: (04/20/2021 10:41:27 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-0G63EDE)
Description: Server {E60687F7-01A1-40AA-86AC-DB1CBF673334} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/20/2021 10:39:27 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba wuauserv byla ukončena s následující chybou: 
Systém nemůže nalézt uvedený soubor.

Error: (04/20/2021 10:39:27 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-0G63EDE)
Description: Server {E60687F7-01A1-40AA-86AC-DB1CBF673334} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/20/2021 10:37:27 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba wuauserv byla ukončena s následující chybou: 
Systém nemůže nalézt uvedený soubor.

Error: (04/20/2021 10:35:41 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {E60687F7-01A1-40AA-86AC-DB1CBF673334} se v daném časovém limitu neregistroval u služby DCOM.


Windows Defender:
================
Date: 2019-10-20 09:57:33.067
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {2C93FBD5-A97B-4952-96D7-42FE3B86E0FF}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-10-16 12:41:55.285
Description: 
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Netpass&threatid=2147605535&enterprise=0
Název: HackTool:Win32/Netpass
Závažnost: High
Kategorie: Tool
Cesta: file:_C:\Program Files (x86)\NirSoft\WebBrowserPassView\WebBrowserPassView.exe; file:_C:\Users\Mimic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NirSoft WebBrowserPassView\WebBrowserPassView.lnk; startup:_C:\Users\Mimic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NirSoft WebBrowserPassView\WebBrowserPassView.lnk
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-0G63EDE\Mimic
Název procesu: C:\Windows\System32\RuntimeBroker.exe
Verze bezpečnostních informací: AV: 1.303.1818.0, AS: 1.303.1818.0, NIS: 1.303.1818.0
Verze modulu: AM: 1.1.16400.2, NIS: 1.1.16400.2

Date: 2019-10-16 12:41:29.005
Description: 
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Netpass&threatid=2147605535&enterprise=0
Název: HackTool:Win32/Netpass
Závažnost: High
Kategorie: Tool
Cesta: file:_C:\Program Files (x86)\NirSoft\WebBrowserPassView\WebBrowserPassView.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-0G63EDE\Mimic
Název procesu: C:\Windows\System32\RuntimeBroker.exe
Verze bezpečnostních informací: AV: 1.303.1818.0, AS: 1.303.1818.0, NIS: 1.303.1818.0
Verze modulu: AM: 1.1.16400.2, NIS: 1.1.16400.2
﻿
==================== Memory info =========================== 

BIOS: American Megatrends Inc. F22b 02/13/2018
Motherboard: Gigabyte Technology Co., Ltd. AB350-Gaming 3-CF
Processor: AMD Ryzen 5 1600 Six-Core Processor 
Percentage of memory in use: 39%
Total physical RAM: 16335.28 MB
Available physical RAM: 9941.38 MB
Total Virtual: 26985.26 MB
Available Virtual: 15446.09 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.25 GB) (Free:22.14 GB) NTFS
Drive d: () (Fixed) (Total:931.5 GB) (Free:16.13 GB) NTFS

\\?\Volume{d933678a-0000-0000-0000-100000000000}\ (System Reserved) (Fixed) (Total:0.54 GB) (Free:0.1 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: D933678A)
Partition 1: (Active) - (Size=549 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.3 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================