Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-07-2021 01
Ran by Pegas (26-07-2021 21:24:19)
Running from C:\Users\Pegas\Downloads
Windows 10 Home Version 21H1 19043.1110 (X64) (2020-12-16 22:24:11)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1156052103-1126085748-2276357170-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1156052103-1126085748-2276357170-503 - Limited - Disabled)
Guest (S-1-5-21-1156052103-1126085748-2276357170-501 - Limited - Disabled)
Pegas (S-1-5-21-1156052103-1126085748-2276357170-1001 - Administrator - Enabled) => C:\Users\Pegas
WDAGUtilityAccount (S-1-5-21-1156052103-1126085748-2276357170-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 21.005.20058 - Adobe Systems Incorporated)
Affinity Designer (HKLM\...\{6F0DC7EB-161A-409C-9B26-3EB3FE9ED69D}) (Version: 1.8.3.641 - Serif (Europe) Ltd)
Affinity Photo (HKLM\...\{D39FC096-62B2-4F21-BA48-04DAC525F929}) (Version: 1.8.3.641 - Serif (Europe) Ltd)
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 2.05.04.352 - Advanced Micro Devices, Inc.)
AMD Product Verification Tool version 1.0.5.6 (HKLM\...\{4242685A-EF3E-45FF-B4AE-758E49020936}}_is1) (Version: 1.0.5.6 - AMD)
AMD Ryzen Master SDK (HKLM\...\{DBD50508-5F75-416B-995D-C42433A00944}) (Version: 2.1.0.1236 - Advanced Micro Devices, Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 20.11.2 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{810a2b63-212d-4a59-bfb5-f2d575cd44f0}) (Version: 2.05.04.352 - Advanced Micro Devices, Inc.) Hidden
ANT Drivers Installer x64 (HKLM\...\{EE89194D-B4FC-4C28-B76E-A646216D689F}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
ASPI - Klient (HKLM-x32\...\ASPI - Klient_is1) (Version:  - Wolters Kluwer ČR, a.s.)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 21.5.2470 - Avast Software)
Balíček ovladače systému Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Balíček ovladače systému Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB  (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Bethesda.net Launcher (HKLM-x32\...\{3448917E-E4FE-4E30-9502-9FD52EABB6F5}_is1) (Version: 1.66.0 - Bethesda Softworks)
Bloody7 (HKLM-x32\...\Bloody3) (Version: 21.03.0001 - Bloody)
Branding64 (HKLM\...\{856DA29A-EA4A-468B-BBC2-B5F60DD75BFE}) (Version: 1.00.0002 - Advanced Micro Devices, Inc.) Hidden
CPUID CPU-Z MSI 1.89 (HKLM\...\CPUID CPU-Z MSI_is1) (Version: 1.89 - CPUID, Inc.)
Elevated Installer (HKLM-x32\...\{1DEEE496-814A-4747-AF7F-493821C79297}) (Version: 7.4.1.0 - Garmin Ltd or its subsidiaries) Hidden
Epic Games Launcher (HKLM-x32\...\{DCE27B29-200D-491A-BBC5-98ECEFEC0843}) (Version: 1.1.257.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Garmin Express (HKLM-x32\...\{2E960C0A-DC54-48F0-A2A8-15CFBE15D980}) (Version: 7.4.1.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express (HKLM-x32\...\{4e81ac57-fa02-490f-aa91-18b44ebae651}) (Version: 7.4.1.0 - Garmin Ltd or its subsidiaries)
Garmin USB Drivers (HKLM-x32\...\{3D5D6CFC-3097-425A-8D8F-7EAF5D57641D}) (Version: 2.3.1.0 - Garmin Ltd or its subsidiaries)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version:  - GOG.com)
Google Earth Pro (HKLM\...\{FB8010D4-05F4-420D-8DFC-2F911A6DD100}) (Version: 7.3.3.7786 - Google)
Java 8 Update 281 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180281F0}) (Version: 8.0.2810.9 - Oracle Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{659D4AA6-69A7-4281-B320-90E7E2F21530}) (Version: 2.3.2106.25001 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Lightshot-5.5.0.7 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.5.0.7 - Skillbrains)
Mable & The Wood (HKLM-x32\...\1331379816_is1) (Version: 1.1.0 - GOG.com)
Microsoft 365 Apps pro firmy - cs-cz (HKLM\...\O365BusinessRetail - cs-cz) (Version: 16.0.14131.20332 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 92.0.902.55 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 92.0.902.55 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1156052103-1126085748-2276357170-1001\...\OneDriveSetup.exe) (Version: 21.129.0627.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{E5A95BC5-81DF-4F0C-B910-B59DD012F037}) (Version: 2.81.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 90.0.2 (x64 cs)) (Version: 90.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.5.0 - Mozilla)
Mozilla Thunderbird 78.12.0 (x64 cs) (HKLM\...\Mozilla Thunderbird 78.12.0 (x64 cs)) (Version: 78.12.0 - Mozilla)
MSI APP Manager (HKLM-x32\...\{00F47104-12BA-4E58-A7E6-F456C1BA338E}}_is1) (Version: 1.0.0.34 - MSI)
MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 3.0.1.02 - MSI)
MSIRegister (HKLM-x32\...\{80B995A4-3A86-4690-98A6-563F1A788835}_is1) (Version: 2.0.0.19 - MSI)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14131.20332 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14131.20332 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
OpenVPN 2.3.10-I603  (HKLM\...\OpenVPN) (Version: 2.3.10-I603 - )
Origin (HKLM-x32\...\Origin) (Version: 10.5.96.47386 - Electronic Arts, Inc.)
PDFCreator (HKLM\...\{00010FEF-82A2-497E-983A-7105A0167FA7}) (Version: 4.0.3 - pdfforge GmbH)
PDF-XChange Editor (HKLM\...\{3FBC3C23-A3D4-47F9-9C70-BA0E1F0C864C}) (Version: 7.0.328.2 - Tracker Software Products (Canada) Ltd.) Hidden
PDF-XChange Editor (HKLM-x32\...\{a2362c81-7950-4a4d-a3ec-51b358ed5a12}) (Version: 7.0.328.2 - Tracker Software Products (Canada) Ltd.)
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 2.0.1.0 - Advanced Micro Devices, Inc.) Hidden
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8975.1 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.35.510.2019 - Realtek)
SafeNet Authentication Client 10.4 (HKLM\...\{E77087C7-615C-4396-87D5-B9957BF166F5}) (Version: 10.4.40.0 - Gemalto)
Sapphire TRIXX 7.3.0 (HKLM-x32\...\{49272457-BEDE-4A3A-808F-7BBD4840E85B}_is1) (Version: 7.3.0 - Sapphire)
Software602 Form Filler (HKLM-x32\...\{9210AEE3-6ECB-4271-A125-1039E94A6A51}) (Version: 4.75 - Software602 a.s.)
Star Wars X-Wing Alliance (HKLM\...\{a218c2db-d769-44eb-b757-b7fc41b6596c}.sdb) (Version:  - )
STAR WARS™ Battlefront™ II (HKLM-x32\...\{8a882ce0-0c0b-4eb2-850c-28ebadab4f50}) (Version: 1.1.8.16162 - Electronic Arts)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TAP-Windows 9.21.1 (HKLM\...\TAP-Windows) (Version: 9.21.1 - )
Teams Machine-Wide Installer (HKLM-x32\...\{39AF0813-FA7B-4860-ADBE-93B9B214B914}) (Version: 1.2.0.34161 - Microsoft Corporation)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 103.2 - Ubisoft)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Western Digital SSD Dashboard (HKLM-x32\...\Western Digital SSD Dashboard) (Version: 2.6.0.0 - Western Digital Corporation)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (04/19/2012 2.3.1.0) (HKLM\...\98157A226B40B173301B0F53C8E98C47805D5152) (Version: 04/19/2012 2.3.1.0 - Garmin)

Packages:
=========
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-08-13] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-03-02] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-03-02] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.6151.0_x64__8wekyb3d8bbwe [2021-06-19] (Microsoft Studios) [MS Ad]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.14.222.0_x64__dt26b99r8h8gj [2020-07-16] (Realtek Semiconductor Corp)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-07-26] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-07-26] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-07-26] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2019-11-19] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [PDFXChange Editor Context menu] -> {2ACD35AB-F74A-4C20-AA9B-2DE80081626D} => C:\Program Files\Tracker Software\Shell Extensions\XCShellMenu.x64.dll [2019-01-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-07-26] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\WINDOWS\System32\atiacm64.dll [2020-11-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-07-26] (Avast Software s.r.o. -> AVAST Software)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2020-03-02 05:51 - 2019-02-21 18:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2020-03-19 17:20 - 2020-03-19 17:20 - 000116736 _____ (pdfforge GmbH) [File not signed] C:\WINDOWS\System32\pdfcmon.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\ssv.dll [2021-01-31] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\jp2ssv.dll [2021-01-31] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-07-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-07-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-07-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-07-07] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-1156052103-1126085748-2276357170-1001\...\sharepoint.com -> hxxps://mestohermanuvmestec-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\SafeNet\Authentication\SAC\x64;C:\Program Files\SafeNet\Authentication\SAC\x32;C:\Program Files\OpenVPN\bin
HKU\S-1-5-21-1156052103-1126085748-2276357170-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{9989D291-775E-4D0B-92C9-419A1EA6DA7B}C:\program files (x86)\steam\steamapps\common\succubus prologue\succubus\binaries\win64\succubus-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\succubus prologue\succubus\binaries\win64\succubus-win64-shipping.exe => No File
FirewallRules: [TCP Query User{7E140418-0C4A-4522-8743-D316B10402B2}C:\program files (x86)\steam\steamapps\common\succubus prologue\succubus\binaries\win64\succubus-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\succubus prologue\succubus\binaries\win64\succubus-win64-shipping.exe => No File
FirewallRules: [UDP Query User{CDF0C5AB-AF51-41AC-8EFB-83F63F8CF8DD}C:\program files (x86)\steam\steamapps\common\paradise lost demo\paradiselost\binaries\win64\paradiselost-win64-shipping.exe] => (Block) C:\program files (x86)\steam\steamapps\common\paradise lost demo\paradiselost\binaries\win64\paradiselost-win64-shipping.exe => No File
FirewallRules: [TCP Query User{75E45487-1080-411A-A581-074ADC254C6B}C:\program files (x86)\steam\steamapps\common\paradise lost demo\paradiselost\binaries\win64\paradiselost-win64-shipping.exe] => (Block) C:\program files (x86)\steam\steamapps\common\paradise lost demo\paradiselost\binaries\win64\paradiselost-win64-shipping.exe => No File
FirewallRules: [UDP Query User{D1D06F52-11D7-4523-9515-F8F74FD6095F}C:\program files\epic games\heavyraindemo\heavyrain.exe] => (Allow) C:\program files\epic games\heavyraindemo\heavyrain.exe => No File
FirewallRules: [TCP Query User{074DBE65-67F1-40B1-B601-99FA05AD423F}C:\program files\epic games\heavyraindemo\heavyrain.exe] => (Allow) C:\program files\epic games\heavyraindemo\heavyrain.exe => No File
FirewallRules: [UDP Query User{8298DE48-CC2B-4B76-919E-8452F889EED1}C:\users\pegas\downloads\castlevania_636\castlevania\castlevania.exe] => (Block) C:\users\pegas\downloads\castlevania_636\castlevania\castlevania.exe => No File
FirewallRules: [TCP Query User{B47788F8-9B83-4AC4-AB7B-B50C5DE3B1D9}C:\users\pegas\downloads\castlevania_636\castlevania\castlevania.exe] => (Block) C:\users\pegas\downloads\castlevania_636\castlevania\castlevania.exe => No File
FirewallRules: [UDP Query User{4C62490D-543E-4AA9-B325-A186010C4DC5}C:\users\pegas\downloads\agony_ue4_remake_prototype\windowsnoeditor\engine\binaries\win64\ue4game.exe] => (Block) C:\users\pegas\downloads\agony_ue4_remake_prototype\windowsnoeditor\engine\binaries\win64\ue4game.exe => No File
FirewallRules: [TCP Query User{4C2DB790-2679-4852-A7C6-F0DD04D27A17}C:\users\pegas\downloads\agony_ue4_remake_prototype\windowsnoeditor\engine\binaries\win64\ue4game.exe] => (Block) C:\users\pegas\downloads\agony_ue4_remake_prototype\windowsnoeditor\engine\binaries\win64\ue4game.exe => No File
FirewallRules: [UDP Query User{7C24045A-1339-4D25-B86C-DB79E9B1868D}C:\program files (x86)\steam\steamapps\common\gears5\geargame\binaries\steam\gears5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\gears5\geargame\binaries\steam\gears5.exe => No File
FirewallRules: [TCP Query User{E0742EF1-4AE5-4429-A4A6-9E04527F703F}C:\program files (x86)\steam\steamapps\common\gears5\geargame\binaries\steam\gears5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\gears5\geargame\binaries\steam\gears5.exe => No File
FirewallRules: [{6E855799-D07D-4259-8EA8-B5D090A5172F}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe (Software602 a.s. -> ) [File not signed]
FirewallRules: [{4D78EB1D-8400-430F-9652-86C5A4D77452}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe (Software602 a.s. -> ) [File not signed]
FirewallRules: [{EC658590-57AD-465C-8D68-DCB10FB19DCD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Pinball FX3\Pinball FX3.exe () [File not signed]
FirewallRules: [{0A7FF2C5-CC4A-4C81-B497-94882A9720FF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Pinball FX3\Pinball FX3.exe () [File not signed]
FirewallRules: [{D1F44366-9D45-4EF2-8BAB-0925847F5C54}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{8E0BD421-787B-483F-89F6-790D6BA70156}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{C191B030-A7CF-45A4-8CA9-7D1DB294D88A}C:\program files\epic games\kingdomcomedeliverance\bin\win64mastermasterepicpgo\kingdomcome.exe] => (Allow) C:\program files\epic games\kingdomcomedeliverance\bin\win64mastermasterepicpgo\kingdomcome.exe => No File
FirewallRules: [TCP Query User{EF96618A-6A25-4D51-B183-FFE8E32B982C}C:\program files\epic games\kingdomcomedeliverance\bin\win64mastermasterepicpgo\kingdomcome.exe] => (Allow) C:\program files\epic games\kingdomcomedeliverance\bin\win64mastermasterepicpgo\kingdomcome.exe => No File
FirewallRules: [{9963B0D7-7AE6-4E21-B5A6-493265800CE5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rise of the Tomb Raider\ROTTR.exe (Square Enix LTD -> Eidos Inc.)
FirewallRules: [{9D6153BE-8F49-460D-9325-241E19E65574}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rise of the Tomb Raider\ROTTR.exe (Square Enix LTD -> Eidos Inc.)
FirewallRules: [{B5EB5C28-112D-41A2-958F-6492565D95CD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{A3BC4C13-5DAD-4BC6-99AF-BDC06610522D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{B3054D85-8812-4983-B369-8A14FD7AE94F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{E20FDD9A-9473-4CCD-86AF-9D09B0CB44F4}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{6BB62D79-EBBB-4947-98EB-E358B08BAC6A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{40E7CD90-5761-4103-942F-E3D77C47F8A9}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{DC984A42-820C-408C-ADE4-0EAD2A787ABB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Toki\Toki.exe () [File not signed]
FirewallRules: [{B55AD2C2-1903-42ED-A3C3-B9BFF621D992}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Toki\Toki.exe () [File not signed]
FirewallRules: [TCP Query User{54591C86-F38C-4957-9674-10EC7DE5238E}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{62F39FB8-345B-4D30-AFA8-238741140ECF}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{837DC0C1-F764-459E-8B59-93FB4A094C31}] => (Allow) C:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{9E2C5987-1EA8-4576-9D24-00866AA94BE3}] => (Allow) C:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{92D4C119-6492-4CD3-8AE6-2AB46A28B316}] => (Allow) C:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{AA1DDC87-E294-473D-B886-AFC4721AAA2C}] => (Allow) C:\Program Files (x86)\Origin Games\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{71C139BF-6731-4672-8CB3-F328271890B9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Deadly Premonition The Director's Cut\DPLauncher.exe (TODO: <Company name>) [File not signed]
FirewallRules: [{7F1B7AC7-BD0F-4E5B-9FC0-A568BC27522F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Deadly Premonition The Director's Cut\DPLauncher.exe (TODO: <Company name>) [File not signed]
FirewallRules: [{E9428301-39BF-4240-A55F-F1A7DFA8F9A1}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A76CFC68-0DDD-46F7-9CFB-395432A98DA2}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{51DDF91B-7492-4300-8C6C-817BF8DEDA69}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Samorost 1\Samorost1.exe () [File not signed]
FirewallRules: [{C85C71CF-E4E6-4A30-B019-7C36290A2A79}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Samorost 1\Samorost1.exe () [File not signed]
FirewallRules: [{506862D4-DA36-4487-8CE1-45DCF3883F86}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C3F86F4F-2B01-4A33-892D-BF6EA9B789CB}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8EDB7447-0D43-4D2E-9204-3830957029CF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gloomwood Demo\Gloomwood.exe () [File not signed]
FirewallRules: [{EC5CDCFD-DCC7-483D-A296-1DE1BBAF7021}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gloomwood Demo\Gloomwood.exe () [File not signed]
FirewallRules: [{3C0EC955-D4C2-42FB-92F2-BFAC9D9F716B}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{01F20AF5-14BD-4D8C-93F0-137BCC04AC30}C:\program files\openvpn\bin\openvpn.exe] => (Allow) C:\program files\openvpn\bin\openvpn.exe (OpenVPN Technologies, Inc. -> The OpenVPN Project)
FirewallRules: [UDP Query User{D8E64B32-A8BF-43B7-8D07-53B6417ABF56}C:\program files\openvpn\bin\openvpn.exe] => (Allow) C:\program files\openvpn\bin\openvpn.exe (OpenVPN Technologies, Inc. -> The OpenVPN Project)
FirewallRules: [{BD59F82A-700F-4728-8275-6240CDEC4914}] => (Block) C:\program files\openvpn\bin\openvpn.exe (OpenVPN Technologies, Inc. -> The OpenVPN Project)
FirewallRules: [{C3F11F1C-E330-4237-BF54-8BCB5BE7167E}] => (Block) C:\program files\openvpn\bin\openvpn.exe (OpenVPN Technologies, Inc. -> The OpenVPN Project)
FirewallRules: [{52A02A15-AFC0-4442-9CF5-F6F4894D7075}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.73.124.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D824B64A-C76E-4732-8F03-7C6AE60E1D60}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.73.124.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9808A59C-7AB6-4FEE-B32D-ACAF9647A734}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.73.124.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FE7DACF8-DF16-47F6-9520-F42488584673}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.73.124.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{056C0FCF-B772-4B51-A260-513B3C750BF4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Blasphemous\Blasphemous.exe () [File not signed]
FirewallRules: [{E46CE00D-0245-4099-981A-B3F5B662F72F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Blasphemous\Blasphemous.exe () [File not signed]
FirewallRules: [{BCA73464-E03F-4E00-8872-6443B2C66884}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\92.0.902.55\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

14-07-2021 22:28:33 Instalační služba modulů systému Windows
19-07-2021 20:42:22 Instalační služba modulů systému Windows

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (07/25/2021 06:10:18 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (07/25/2021 06:10:18 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (07/25/2021 06:10:01 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: express.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: kód výjimky c0000005, adresa výjimky 65215D4E
Zásobník:

Error: (07/25/2021 12:10:03 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na W10 (I:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (07/25/2021 12:09:37 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na (H:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (07/25/2021 12:09:33 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na W7 (G:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (07/25/2021 12:09:20 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na WXP (F:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (07/21/2021 11:43:44 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.


System errors:
=============
Error: (07/26/2021 08:26:12 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Microsoft Office Klikni a spusť byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.

Error: (07/26/2021 08:26:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Origin Web Helper Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (07/26/2021 08:26:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba MSI Command Center Control Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (07/26/2021 08:26:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba MSIREGISTER_MR byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (07/26/2021 08:26:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba MSI AppManager Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (07/26/2021 08:26:12 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Realtek Audio Universal Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.

Error: (07/26/2021 08:26:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba SACSrv byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (07/26/2021 08:26:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Adobe Acrobat Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.


Windows Defender:
================
Date: 2021-07-26 20:23:27
Description: 
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {A0FBB73F-7BB3-4D9B-8017-EF5624BEBC93}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Úplné prohledávání
Uživatel: DESKTOP-I7479OQ\Pegas

Date: 2021-07-26 19:54:38
Description: 
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=VirTool:Win32/DefenderTamperingRestore&threatid=2147741622&enterprise=0
Název: VirTool:Win32/DefenderTamperingRestore
Závažnost: Vážné
Kategorie: Nástroj
Cesta: regkeyvalue:_hklm\software\microsoft\windows defender\spynet\\DisableBlockAtFirstSeen
Původ detekce: Neznámý
Typ detekce: Konkrétní
Zdroj detekce: Uživatel
Uživatel: DESKTOP-I7479OQ\Pegas
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.343.1714.0, AS: 1.343.1714.0, NIS: 1.343.1714.0
Verze modulu: AM: 1.1.18300.4, NIS: 1.1.18300.4

Date: 2021-07-21 20:31:04
Description: 
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {A03C61C3-B8BC-4AC7-A536-7347A5780CA4}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-07-18 22:48:42
Description: 
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {CAA565B6-3913-4D80-8DB6-6ED012FF5EF9}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-07-18 21:33:21
Description: 
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/CoinMiner&threatid=227033&enterprise=0
Název: PUA:Win32/CoinMiner
Závažnost: Nízké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\$Recycle.Bin\S-1-5-21-1156052103-1126085748-2276357170-1001\$REE83P7.exe; file:_C:\$Recycle.Bin\S-1-5-21-1156052103-1126085748-2276357170-1001\$RJNLFKZ.exe; file:_C:\$Recycle.Bin\S-1-5-21-1156052103-1126085748-2276357170-1001\$RN0RY4T.exe; file:_C:\$Recycle.Bin\S-1-5-21-1156052103-1126085748-2276357170-1001\$RPGSYQR.exe; file:_C:\$Recycle.Bin\S-1-5-21-1156052103-1126085748-2276357170-1001\$RU7O1II.exe; file:_C:\$Recycle.Bin\S-1-5-21-1156052103-1126085748-2276357170-1001\$RWMDEYD.exe; file:_C:\Users\Pegas\Desktop\NESPOUSTET\gpu_update.exe
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-I7479OQ\Pegas
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.343.1233.0, AS: 1.343.1233.0, NIS: 1.343.1233.0
Verze modulu: AM: 1.1.18300.4, NIS: 1.1.18300.4

Date: 2021-06-29 21:00:02
Description: 
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.343.25.0
Předchozí verze bezpečnostních informací: 1.341.1626.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Delta
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.18300.4
Předchozí verze modulu: 1.1.18200.4
Kód chyby: 0x80070666
Popis chyby: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy. 

Date: 2021-06-29 21:00:02
Description: 
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.343.25.0
Předchozí verze bezpečnostních informací: 1.341.1626.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Delta
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.18300.4
Předchozí verze modulu: 1.1.18200.4
Kód chyby: 0x80070666
Popis chyby: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy. 

Date: 2021-06-29 21:00:02
Description: 
Program Antivirová ochrana v programu Microsoft Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu: 1.1.18300.4
Předchozí verze modulu: 1.1.18200.4
Uživatel: NT AUTHORITY\SYSTEM
Kód chyby: 0x80070666
Popis chyby: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy. 

CodeIntegrity:
===============
Date: 2021-07-26 20:29:53
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.2106.6-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2021-07-26 20:29:53
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2021-07-26 20:29:53
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Avast Software\Avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info =========================== 

BIOS: American Megatrends Inc. 3.70 06/09/2020
Motherboard: Micro-Star International Co., Ltd B450 TOMAHAWK MAX (MS-7C02)
Processor: AMD Ryzen 5 3600 6-Core Processor 
Percentage of memory in use: 37%
Total physical RAM: 16334.73 MB
Available physical RAM: 10283.32 MB
Total Virtual: 18766.73 MB
Available Virtual: 11193.55 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.13 GB) (Free:50.15 GB) NTFS
Drive d: () (Fixed) (Total:0.54 GB) (Free:0.52 GB) NTFS
Drive f: (WXP) (Fixed) (Total:97.65 GB) (Free:33.01 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive g: (W7) (Fixed) (Total:97.65 GB) (Free:18.67 GB) NTFS
Drive h: () (Fixed) (Total:302.73 GB) (Free:78.52 GB) NTFS
Drive i: (W10) (Fixed) (Total:94.09 GB) (Free:31.77 GB) NTFS
Drive j: (SSD_W10) (Fixed) (Total:232.35 GB) (Free:24.91 GB) NTFS
Drive l: (KINGSTON) (Removable) (Total:1.92 GB) (Free:1.11 GB) FAT32

\\?\Volume{9da55a21-4c37-4410-b293-aceb10b4f904}\ () (Fixed) (Total:0.52 GB) (Free:0.09 GB) NTFS
\\?\Volume{0f8492d9-3577-474a-a8c0-4a8b06ff4639}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 9C4AEC94)
Partition 1: (Not Active) - (Size=549 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.3 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 596.2 GB) (Disk ID: 20CD20CC)
Partition 1: (Active) - (Size=97.7 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=498.5 GB) - (Type=0F Extended)

==========================================================
Disk: 2 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 3 (Size: 1.9 GB) (Disk ID: 61AD9AA6)
Partition 1: (Active) - (Size=1.9 GB) - (Type=0C)

==================== End of Addition.txt =======================