Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu... (možný problém)

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Simicek
Návštěvník
Návštěvník
Příspěvky: 163
Registrován: 23 črc 2008 19:09

Prosím o kontrolu... (možný problém)

#1 Příspěvek od Simicek »

Poprosil bych o kontrolu logu. Dneska se mi 2x stalo, když jsem hrál Path of Exile obrazovka mi 2x z černala. Myslel jsem, že je problém v grafice zkusil jsem stahnout novej ovladač a problém přetrval. Dokonce se mi potom stalo, že jsem zapl poe cca na 1-5min a následně mi to hodilo černou obrazovku a restartoval se mi sám PC. Děkuji za mrknutí na log a za vaší práci.
PS: Grafická karta se nepřehřívá teploty v zátěži kolem 50-65 stupnů.. Zítra zkusím ještě pročistit bednu od prachu. Zkoušel jsem a po zapnutí pc se ihned objevila černá obrazovka.

LOG:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-01-2020
Ran by David Hynek (administrator) on DESKTOP-KR0LJ7U (Gigabyte Technology Co., Ltd. Z390 GAMING X) (15-01-2020 01:16:17)
Running from C:\Users\David Hynek\Desktop
Loaded Profiles: David Hynek (Available Profiles: David Hynek)
Platform: Windows 10 Home Version 1809 17763.973 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\2.00.06\atkexComSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\AVAST Software\Avast\wsc_proxy.exe
(Discord Inc. -> Discord Inc.) C:\Users\David Hynek\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\David Hynek\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\David Hynek\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\David Hynek\AppData\Local\Discord\app-0.0.305\Discord.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\GIGABYTE\RGBFusion\Check_Kill.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\GIGABYTE\RGBFusion\RGBFusion.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngine.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft) C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler64.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) INTELND1820 -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\David Hynek\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19101.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Open Source Developer, Phillip Gibbons -> Highresolution Enterprises) C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Ltd) D:\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Swift Media Entertainment, Inc. -> Blitz Inc.) C:\Users\David Hynek\AppData\Local\Blitz\current\Blitz.exe
(Swift Media Entertainment, Inc. -> Blitz Inc.) C:\Users\David Hynek\AppData\Local\Blitz\current\Blitz.exe
(Swift Media Entertainment, Inc. -> Blitz Inc.) C:\Users\David Hynek\AppData\Local\Blitz\current\Blitz.exe
(Swift Media Entertainment, Inc. -> Blitz Inc.) C:\Users\David Hynek\AppData\Local\Blitz\current\Blitz.exe
(Swift Media Entertainment, Inc. -> Blitz Inc.) C:\Users\David Hynek\AppData\Local\Blitz\current\Blitz.exe
(Swift Media Entertainment, Inc. -> Blitz Inc.) C:\Users\David Hynek\AppData\Local\Blitz\current\Blitz.exe
(Swift Media Entertainment, Inc. -> Blitz Inc.) C:\Users\David Hynek\AppData\Local\Blitz\current\Blitz.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [856288 2019-10-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\AVAST Software\Avast\AvLaunch.exe [268680 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [XMouseButtonControl] => C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe [1605344 2019-05-06] (Open Source Developer, Phillip Gibbons -> Highresolution Enterprises)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\RunOnce: [DualBiosRescue] => C:\Program Files (x86)\GIGABYTE\GigabyteFirmwareUpdateUtility\dbrro.exe [12096 2015-08-19] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKLM-x32\...\RunOnce: [SelLed] => C:\Program Files (x86)\GIGABYTE\RGBFusion\RunLed.exe [50096 2019-03-13] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Run: [CCleaner Smart Cleaning] => D:\CCleaner\CCleaner64.exe [24552064 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Run: [TSMApplication] => D:\TradeSkillMaster Application\app\TSMApplication.exe [1623040 2019-09-15] () [File not signed]
HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Run: [Discord] => C:\Users\David Hynek\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Run: [com.blitz.app] => C:\Users\David Hynek\AppData\Local\Blitz\Update.exe [1849928 2019-11-09] (Swift Media Entertainment, Inc. -> Blitz Inc)
HKU\S-1-5-21-994775172-3552113607-2548991599-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [37888 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.117\Installer\chrmstp.exe [2020-01-09] (Google LLC -> Google LLC)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0C8B3859-B73B-4902-BF64-49B1ED04323E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\Adobe Acrobat Update Task" /ENABLE
Task: {0C8B3859-B73B-4902-BF64-49B1ED04323E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\CCleaner Update" /ENABLE
Task: {0C8B3859-B73B-4902-BF64-49B1ED04323E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\CCleanerSkipUAC" /ENABLE
Task: {0C8B3859-B73B-4902-BF64-49B1ED04323E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\EasyTune" /ENABLE
Task: {0C8B3859-B73B-4902-BF64-49B1ED04323E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\EasyTune 1" /ENABLE
Task: {0C8B3859-B73B-4902-BF64-49B1ED04323E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {0C8B3859-B73B-4902-BF64-49B1ED04323E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
Task: {0C8B3859-B73B-4902-BF64-49B1ED04323E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\GraphicsCardEngine" /ENABLE
Task: {0C8B3859-B73B-4902-BF64-49B1ED04323E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\Intel PTT EK Recertification" /ENABLE
Task: {0C8B3859-B73B-4902-BF64-49B1ED04323E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\LiquidSensord" /ENABLE
Task: {0C8B3859-B73B-4902-BF64-49B1ED04323E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(11): schtasks.exe -> /Change /TN "\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {0C8B3859-B73B-4902-BF64-49B1ED04323E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(12): schtasks.exe -> /Change /TN "\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {0C8B3859-B73B-4902-BF64-49B1ED04323E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(13): schtasks.exe -> /Change /TN "\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {0C8B3859-B73B-4902-BF64-49B1ED04323E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(14): schtasks.exe -> /Change /TN "\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {0C8B3859-B73B-4902-BF64-49B1ED04323E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(15): schtasks.exe -> /Change /TN "\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {0C8B3859-B73B-4902-BF64-49B1ED04323E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(16): schtasks.exe -> /Change /TN "\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {0C8B3859-B73B-4902-BF64-49B1ED04323E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(17): schtasks.exe -> /Change /TN "\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {0C8B3859-B73B-4902-BF64-49B1ED04323E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(18): schtasks.exe -> /Change /TN "\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {0C8B3859-B73B-4902-BF64-49B1ED04323E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(19): schtasks.exe -> /Change /TN "\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {0C8B3859-B73B-4902-BF64-49B1ED04323E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(20): schtasks.exe -> /Change /TN "\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {0C8B3859-B73B-4902-BF64-49B1ED04323E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(21): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-994775172-3552113607-2548991599-1001" /ENABLE
Task: {0C8B3859-B73B-4902-BF64-49B1ED04323E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(22): schtasks.exe -> /Change /TN "\Overwolf Updater Task" /ENABLE
Task: {0C8B3859-B73B-4902-BF64-49B1ED04323E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(23): schtasks.exe -> /Change /TN "\SIV" /ENABLE
Task: {0C8B3859-B73B-4902-BF64-49B1ED04323E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(24): schtasks.exe -> /Change /TN "\SIV-VGA" /ENABLE
Task: {0C8B3859-B73B-4902-BF64-49B1ED04323E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(25): schtasks.exe -> /Change /TN "\User_Feed_Synchronization-{510D5DF9-0BEE-4CDD-B373-29CC29393D2A}" /ENABLE
Task: {0C8B3859-B73B-4902-BF64-49B1ED04323E} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(26): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {0EF9095E-67D6-4BF4-A1A4-9DC425A85C2E} - System32\Tasks\CCleanerSkipUAC => D:\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
Task: {130A2970-E407-43B8-91D3-C1ED5CD716B6} - System32\Tasks\EasyTune => C:\Program Files (x86)\GIGABYTE\EasyTune\etinit.exe [15792 2018-09-10] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {2139EF7F-CC7D-4807-AC89-519F645236CB} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {22A6EF24-BC50-4EFF-A268-68EE1C18DB36} - System32\Tasks\Overwolf Updater Task => D:\Overwolf\OverwolfUpdater.exe [2436936 2019-12-25] (Overwolf Ltd -> Overwolf LTD)
Task: {477E7250-3E5C-4500-9573-9F7139285900} - System32\Tasks\EasyTune 1 => C:\Program Files (x86)\GIGABYTE\EasyTune\etocfile.exe [18352 2018-09-10] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {4C5BE41D-7474-4BAB-9D42-2AF0E5FF8A21} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24625520 2020-01-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {53766456-3667-4100-85D5-7AE41DE3C465} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5D361E7F-0248-482F-BAC3-A35D17609FE5} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302880 2019-12-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {62E8FDE2-4EA4-4479-B0FB-17088B78916C} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1376360 2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {766D2D03-B90F-4A03-AD23-3C2BFF309B56} - System32\Tasks\SIV-VGA => C:\Program Files (x86)\GIGABYTE\SIV\sensord.exe [253872 2018-09-18] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {7B0F887D-B495-48A2-862E-6628027AD590} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [837344 2018-09-14] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {7F9547D1-2C55-4A99-807C-E23FC04D76FA} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {83BD173A-9A8A-4F8F-808C-427F8BCA2528} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1376360 2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {8A8A746F-7B4B-4557-A73D-AF008BCD3247} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {90E5AEB9-842F-4EFF-B079-C84A1F3BAE25} - System32\Tasks\LiquidSensord => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\LiquidSensord.exe [251824 2019-02-21] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {97938E78-27E9-4D94-A7A5-E75B33F04F47} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4360000 2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {9D17C513-EFD7-4834-A726-0690DFA97BFB} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115032 2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {9E5E0872-14CD-4CD0-91CC-766D8A23F20F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24625520 2020-01-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {B012BA3B-2723-4974-8573-19DC6B2F7613} - System32\Tasks\CCleaner Update => D:\CCleaner\CCUpdate.exe [608384 2019-10-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {B280FD9E-EA79-4C7C-AA33-190893EB2050} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115032 2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {B6FB1AC2-BCCB-4FFE-870F-DF4E24F11D5E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B93DCABA-AA07-4439-AE32-C66E96728472} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653848 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B96482CC-A0C3-4FD2-B355-67A597FEDA67} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D16890F7-649D-4C69-8103-A4364CECC271} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4360000 2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {D44A89F3-F910-4ABF-83AB-6850A7FEDF35} - System32\Tasks\SIV => C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe [426416 2018-09-18] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {D650CD26-DEAA-4F98-9F59-063C98325DB2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-28] (Google Inc -> Google LLC)
Task: {DCA80CCC-CE2C-4144-9695-CDFDEF4A102C} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EC88C19C-F05C-443D-AA28-979BABED0990} - System32\Tasks\Avast Emergency Update => C:\AVAST Software\Avast\AvEmUpdate.exe [3933576 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
Task: {F16E0F1C-4A1E-47C0-827B-7F293103BADC} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1873288 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
Task: {F2FB020F-FFE4-401C-A169-88D6B3C7542E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {F556EA49-864E-47A0-9C50-D8A8E5649936} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FE744EC4-550B-45D1-9844-511254A259F5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-28] (Google Inc -> Google LLC)
Task: {FF472D25-C970-443B-9D1A-4440ECE23998} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [232880 2019-02-21] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{013838db-2b9b-489b-adc2-b1af1a53491a}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKU\S-1-5-21-994775172-3552113607-2548991599-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10454__190428
SearchScopes: HKU\S-1-5-21-994775172-3552113607-2548991599-1001 -> {993F5746-4C15-42BC-99C1-064A1764271B} URL = hxxps://securesearch.org?q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Java\bin\ssv.dll [2019-07-07] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Java\bin\jp2ssv.dll [2019-07-07] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF Plugin-x32: @java.com/DTPlugin,version=11.211.2 -> D:\Java\bin\dtplugin\npDeployJava1.dll [2019-07-07] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.211.2 -> D:\Java\bin\plugin2\npjp2.dll [2019-07-07] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-12-02] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Notifications: Default -> hxxps://badoo.com; hxxps://cz19.the-west.cz; hxxps://discordapp.com; hxxps://www.pathofexile.com; hxxps://www.tipsport.cz; hxxps://www.youtube.com
CHR Profile: C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default [2020-01-15]
CHR DownloadDir: D:\ChromeDownloads
CHR Extension: (Prezentace) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-04-28]
CHR Extension: (BetterTTV) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2020-01-13]
CHR Extension: (Dokumenty) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-04-28]
CHR Extension: (Disk Google) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-04-28]
CHR Extension: (YouTube) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-04-28]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-10-23]
CHR Extension: (Tampermonkey) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2019-11-30]
CHR Extension: (Tabulky) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-04-28]
CHR Extension: (Dokumenty Google offline) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-15]
CHR Extension: (Avast Online Security) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-12-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-28]
CHR Extension: (Chrome Media Router) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-18]
CHR Profile: C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\System Profile [2019-05-06]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\2.00.06\atkexComSvc.exe [411456 2019-04-30] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R3 aswbIDSAgent; C:\AVAST Software\Avast\aswidsagent.exe [6259592 2019-12-19] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\AVAST Software\Avast\AvastSvc.exe [996880 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\AVAST Software\Avast\wsc_proxy.exe [57504 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8403672 2019-06-29] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11164232 2020-01-07] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-11-12] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 EasyTuneEngineService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [142768 2019-03-18] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 gadjservice; C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe [17920 2015-06-25] () [File not signed]
S3 GalaxyClientService; D:\GOG Galaxy\GalaxyClientService.exe [1226824 2019-07-18] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6816840 2019-07-18] (GOG Sp. z o.o. -> GOG.com)
R2 Gservice; C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe [19888 2016-12-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft)
S3 HwmRecordService; C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe [128944 2018-09-18] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [775904 2018-09-14] (Intel(R) Trust Services -> Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [705760 2018-09-14] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\Intel(R) Management Engine Components\DAL\jhi_service.exe [218176 2018-11-16] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 LMS; C:\Intel(R) Management Engine Components\LMS\LMS.exe [625240 2018-11-16] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
R2 OcButtonService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe [123824 2019-02-21] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2475312 2020-01-11] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [3393848 2020-01-11] (Electronic Arts, Inc. -> Electronic Arts)
S3 OverwolfUpdater; D:\Overwolf\OverwolfUpdater.exe [2436936 2019-12-25] (Overwolf Ltd -> Overwolf LTD)
R2 RtkAudioUniversalService; C:\Windows\System32\RtkAudUService64.exe [856288 2019-10-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
S3 uncheater_bgl; C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe [2097008 2019-11-12] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3831576 2019-06-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [110944 2018-09-15] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2019-04-30] (ASUSTeK Computer Inc. -> )
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37616 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [204824 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [274456 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [209552 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [65120 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [16304 2019-10-03] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [276952 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42736 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [161544 2019-11-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [110320 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [83792 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [848432 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [460448 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [236024 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [316528 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
S3 cpuz149; C:\Windows\temp\cpuz149\cpuz149_x64.sys [44320 2020-01-15] (CPUID S.A.R.L.U. -> CPUID)
R3 e1dexpress; C:\Windows\System32\DriverStore\FileRepository\e1d68x64.inf_amd64_b44028fc7fdf4fca\e1d68x64.sys [599920 2019-09-13] (Intel(R) INTELND1820 -> Intel Corporation)
R3 gdrv; C:\Windows\gdrv.sys [26792 2019-04-28] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R3 gdrv2; C:\Windows\gdrv2.sys [32600 2019-07-29] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R1 GLCKIO2; C:\Windows\system32\drivers\GLCKIO2.sys [19392 2018-04-23] (ASUSTeK Computer Inc. -> )
R3 iaLPSS2_GPIO2; C:\Windows\System32\drivers\iaLPSS2_GPIO2.sys [131744 2018-10-16] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S0 iaStorAC; C:\Windows\System32\drivers\iaStorAC.sys [1017200 2019-03-25] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ce13a81bcfac4a48\nvlddmkm.sys [23251968 2019-12-28] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-12-07] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [69840 2019-04-18] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [75600 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 UcmCxUcsiNvppc; C:\Windows\system32\DRIVERS\UcmCxUcsiNvppc.sys [715224 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46584 2018-09-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [340008 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [61992 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\Windows\xhunter1.sys [74552 2019-12-05] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-01-15 01:16 - 2020-01-15 01:16 - 000038794 _____ C:\Users\David Hynek\Desktop\FRST.txt
2020-01-15 01:16 - 2020-01-15 01:16 - 000000000 ____D C:\FRST
2020-01-15 01:15 - 2020-01-15 01:15 - 002573312 _____ (Farbar) C:\Users\David Hynek\Desktop\FRST64.exe
2020-01-15 01:09 - 2020-01-15 01:09 - 000000000 ___HD C:\OneDriveTemp
2020-01-15 01:05 - 2019-03-28 10:11 - 000029232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll
2020-01-15 01:05 - 2019-03-28 10:11 - 000017968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr100_clr0400.dll
2020-01-15 01:05 - 2019-03-28 10:09 - 000032816 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll
2020-01-15 01:05 - 2019-03-28 10:09 - 000017968 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100_clr0400.dll
2020-01-15 01:05 - 2019-03-28 07:35 - 000772176 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase_clr0400.dll
2020-01-15 01:05 - 2019-03-28 07:35 - 000702400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase_clr0400.dll
2020-01-15 01:05 - 2019-03-28 07:35 - 000622832 _____ (Microsoft Corporation) C:\Windows\system32\msvcp140_clr0400.dll
2020-01-15 01:05 - 2019-03-28 07:35 - 000433448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp140_clr0400.dll
2020-01-15 01:05 - 2019-03-28 07:35 - 000087296 _____ (Microsoft Corporation) C:\Windows\system32\vcruntime140_clr0400.dll
2020-01-15 01:05 - 2019-03-28 07:35 - 000083768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vcruntime140_clr0400.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 009668408 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2020-01-15 01:04 - 2020-01-15 01:04 - 008905728 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 007922688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 007645392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 006543736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 005436696 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 004588544 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2020-01-15 01:04 - 2020-01-15 01:04 - 003637248 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2020-01-15 01:04 - 2020-01-15 01:04 - 002707968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2020-01-15 01:04 - 2020-01-15 01:04 - 002469440 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 002419712 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2020-01-15 01:04 - 2020-01-15 01:04 - 002323896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 002149160 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 001936520 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 001721144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 001708544 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 001701888 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 001677088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 001670800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 001665712 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 001484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 001258296 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2020-01-15 01:04 - 2020-01-15 01:04 - 001200920 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 001084416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 001050624 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2020-01-15 01:04 - 2020-01-15 01:04 - 001049400 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2020-01-15 01:04 - 2020-01-15 01:04 - 000949248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000930816 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000878080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2020-01-15 01:04 - 2020-01-15 01:04 - 000842752 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000839680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000817152 _____ (Microsoft Corporation) C:\Windows\system32\MdmDiagnostics.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000677144 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000673792 _____ (Microsoft Corporation) C:\Windows\system32\wiaaut.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000651776 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000578560 _____ (Microsoft Corporation) C:\Windows\system32\SppExtComObj.Exe
2020-01-15 01:04 - 2020-01-15 01:04 - 000572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiaaut.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000541264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000410616 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000405304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2020-01-15 01:04 - 2020-01-15 01:04 - 000378368 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000350416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000326144 _____ (Microsoft Corporation) C:\Windows\system32\DiagnosticLogCSP.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000322048 _____ (Microsoft Corporation) C:\Windows\system32\sti.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000315904 _____ (Microsoft Corporation) C:\Windows\system32\ConhostV1.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000289792 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000228864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sti.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000228864 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000189440 _____ (Microsoft Corporation) C:\Windows\system32\sti_ci.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000154976 _____ (Microsoft Corporation) C:\Windows\system32\dmcmnutils.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe
2020-01-15 01:04 - 2020-01-15 01:04 - 000145920 _____ (Microsoft Corporation) C:\Windows\system32\wiadss.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000145920 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000124416 _____ (Microsoft Corporation) C:\Windows\system32\cryptcatsvc.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000122568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmcmnutils.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000119808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiadss.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\enterpriseresourcemanager.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000083968 _____ (Microsoft Corporation) C:\Windows\system32\wiarpc.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000083456 _____ (Microsoft Corporation) C:\Windows\system32\provtool.exe
2020-01-15 01:04 - 2020-01-15 01:04 - 000073728 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000066560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\enterpriseresourcemanager.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2020-01-15 01:04 - 2020-01-15 01:04 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2020-01-15 01:04 - 2020-01-15 01:04 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2020-01-15 01:04 - 2020-01-15 01:04 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2020-01-15 01:04 - 2020-01-15 01:04 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2020-01-15 01:04 - 2020-01-15 01:04 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2020-01-15 01:04 - 2020-01-15 01:04 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2020-01-15 01:04 - 2020-01-15 01:04 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
2020-01-14 22:35 - 2019-12-28 04:55 - 011843296 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2020-01-14 22:35 - 2019-12-28 04:55 - 010169416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2020-01-14 22:35 - 2019-12-28 04:55 - 001729448 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2020-01-14 22:35 - 2019-12-28 04:55 - 001729448 _____ C:\Windows\system32\vulkaninfo.exe
2020-01-14 22:35 - 2019-12-28 04:55 - 001329568 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-01-14 22:35 - 2019-12-28 04:55 - 001329568 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2020-01-14 22:35 - 2019-12-28 04:55 - 001079200 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2020-01-14 22:35 - 2019-12-28 04:55 - 001079200 _____ C:\Windows\system32\vulkan-1.dll
2020-01-14 22:35 - 2019-12-28 04:55 - 000937888 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2020-01-14 22:35 - 2019-12-28 04:55 - 000937888 _____ C:\Windows\SysWOW64\vulkan-1.dll
2020-01-14 22:35 - 2019-12-28 04:55 - 000450176 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2020-01-14 22:35 - 2019-12-28 04:55 - 000354520 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2020-01-14 22:35 - 2019-12-28 04:54 - 002076080 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2020-01-14 22:35 - 2019-12-28 04:54 - 001485688 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2020-01-14 22:35 - 2019-12-28 04:54 - 001145280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2020-01-14 22:35 - 2019-12-28 04:54 - 000824064 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcumd.dll
2020-01-14 22:35 - 2019-12-28 04:54 - 000685256 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2020-01-14 22:35 - 2019-12-28 04:54 - 000678264 _____ C:\Windows\system32\nvofapi64.dll
2020-01-14 22:35 - 2019-12-28 04:54 - 000558080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2020-01-14 22:35 - 2019-12-28 04:54 - 000544976 _____ C:\Windows\SysWOW64\nvofapi.dll
2020-01-14 22:35 - 2019-12-28 04:53 - 040510200 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2020-01-14 22:35 - 2019-12-28 04:53 - 035380240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2020-01-14 22:35 - 2019-12-28 04:53 - 017462152 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2020-01-14 22:35 - 2019-12-28 04:53 - 015029720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2020-01-14 22:35 - 2019-12-28 04:53 - 005383184 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2020-01-14 22:35 - 2019-12-28 04:53 - 004718512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2020-01-14 22:35 - 2019-12-28 04:53 - 001727320 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6444187.dll
2020-01-14 22:35 - 2019-12-28 04:53 - 001570160 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2020-01-14 22:35 - 2019-12-28 04:53 - 001492480 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6444187.dll
2020-01-14 22:35 - 2019-12-28 04:53 - 001371512 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2020-01-14 22:35 - 2019-12-28 04:53 - 001064368 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2020-01-14 22:35 - 2019-12-28 04:53 - 000813984 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2020-01-14 21:35 - 2020-01-14 21:35 - 000000080 ___SH C:\bootTel.dat
2019-12-22 20:56 - 2020-01-12 22:06 - 000000000 ____D C:\Users\David Hynek\AppData\LocalLow\uTorrent

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-01-15 01:14 - 2019-04-28 09:08 - 000000000 ____D C:\ProgramData\NVIDIA
2020-01-15 01:13 - 2019-11-09 23:53 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\Blitz
2020-01-15 01:12 - 2019-08-18 13:06 - 000003164 _____ C:\Windows\system32\Tasks\Overwolf Updater Task
2020-01-15 01:12 - 2019-06-12 18:53 - 000002948 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-15 01:12 - 2019-06-12 18:53 - 000002948 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-15 01:12 - 2019-06-12 18:53 - 000002948 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-15 01:12 - 2019-06-12 18:53 - 000002948 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-15 01:12 - 2019-04-30 14:28 - 000003364 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{510D5DF9-0BEE-4CDD-B373-29CC29393D2A}
2020-01-15 01:12 - 2019-04-29 12:29 - 000003482 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2020-01-15 01:12 - 2019-04-28 19:44 - 000003402 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-01-15 01:12 - 2019-04-28 19:44 - 000003178 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-01-15 01:12 - 2019-04-28 18:01 - 000002960 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-01-15 01:12 - 2019-04-28 18:01 - 000002208 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-01-15 01:12 - 2019-04-28 12:50 - 000002512 _____ C:\Windows\system32\Tasks\SIV-VGA
2020-01-15 01:12 - 2019-04-28 12:50 - 000002506 _____ C:\Windows\system32\Tasks\SIV
2020-01-15 01:12 - 2019-04-28 12:49 - 000002622 _____ C:\Windows\system32\Tasks\EasyTune 1
2020-01-15 01:12 - 2019-04-28 12:49 - 000002522 _____ C:\Windows\system32\Tasks\EasyTune
2020-01-15 01:12 - 2019-04-28 12:45 - 000002606 _____ C:\Windows\system32\Tasks\GraphicsCardEngine
2020-01-15 01:12 - 2019-04-28 12:45 - 000002570 _____ C:\Windows\system32\Tasks\LiquidSensord
2020-01-15 01:12 - 2019-04-28 09:10 - 000003174 _____ C:\Windows\system32\Tasks\Intel PTT EK Recertification
2020-01-15 01:12 - 2019-04-28 09:08 - 000003398 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-15 01:12 - 2019-04-28 09:08 - 000003196 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-15 01:12 - 2019-04-28 09:08 - 000003152 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-15 01:12 - 2019-04-28 09:08 - 000002984 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-15 01:12 - 2019-04-28 09:08 - 000002914 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-15 01:12 - 2019-04-28 09:08 - 000002744 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-15 01:12 - 2019-04-28 08:51 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\Discord
2020-01-15 01:12 - 2019-04-28 08:17 - 000002858 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-994775172-3552113607-2548991599-1001
2020-01-15 01:12 - 2019-04-28 08:17 - 000000000 ___RD C:\Users\David Hynek\OneDrive
2020-01-15 01:12 - 2019-04-28 08:14 - 000000000 ____D C:\Users\David Hynek
2020-01-15 01:12 - 2019-04-28 08:01 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-01-15 01:12 - 2019-04-28 08:01 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-01-15 01:12 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-01-15 01:12 - 2018-09-15 08:31 - 000000000 ____D C:\Windows\INF
2020-01-15 01:11 - 2019-06-19 11:59 - 000000000 ____D C:\Program Files\UNP
2020-01-15 01:11 - 2019-04-28 09:37 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2020-01-15 01:09 - 2019-04-28 08:01 - 000446928 _____ C:\Windows\system32\FNTCACHE.DAT
2020-01-15 01:08 - 2019-04-28 09:37 - 000000000 ____D C:\Windows\system32\MRT
2020-01-15 01:08 - 2018-09-15 08:33 - 000000000 ___SD C:\Windows\system32\UNP
2020-01-15 01:08 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\ShellExperiences
2020-01-15 01:08 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\bcastdvr
2020-01-15 01:08 - 2018-09-15 07:09 - 000524288 _____ C:\Windows\system32\config\BBI
2020-01-15 01:06 - 2019-04-28 09:37 - 120202352 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-01-15 01:06 - 2018-09-15 08:23 - 000000000 ____D C:\Windows\CbsTemp
2020-01-15 01:04 - 2019-04-28 08:58 - 000408634 __RSH C:\bootmgr
2020-01-15 00:57 - 2019-04-28 08:06 - 001697130 _____ C:\Windows\system32\PerfStringBackup.INI
2020-01-15 00:57 - 2018-09-15 18:32 - 000717998 _____ C:\Windows\system32\perfh005.dat
2020-01-15 00:57 - 2018-09-15 18:32 - 000145576 _____ C:\Windows\system32\perfc005.dat
2020-01-15 00:25 - 2019-04-28 18:15 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\Spotify
2020-01-15 00:18 - 2019-04-28 18:24 - 000000000 ____D C:\Users\David Hynek\AppData\Local\NVIDIA
2020-01-14 23:21 - 2019-05-06 18:24 - 000000694 _____ C:\Users\Public\Desktop\Apex Legends.lnk
2020-01-14 23:21 - 2019-05-06 17:23 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\Origin
2020-01-14 23:03 - 2019-05-06 17:23 - 000000000 ____D C:\Users\David Hynek\AppData\Local\Origin
2020-01-14 23:03 - 2019-05-06 17:23 - 000000000 ____D C:\ProgramData\Origin
2020-01-14 22:39 - 2019-04-30 14:20 - 000000000 ____D C:\Users\David Hynek\Documents\PoE-TradeMacro
2020-01-14 22:36 - 2019-04-28 09:06 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-01-14 22:28 - 2019-04-29 17:25 - 000000000 ____D C:\World of Warcraft
2020-01-14 22:28 - 2019-04-28 16:28 - 000000000 ____D C:\Users\David Hynek\AppData\Local\Battle.net
2020-01-14 22:25 - 2019-04-28 09:08 - 000001443 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2020-01-14 22:25 - 2019-04-28 09:08 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-01-14 22:25 - 2019-04-28 09:07 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-01-14 22:23 - 2019-12-12 17:23 - 000000000 ____D C:\Users\David Hynek\Desktop\Trash
2020-01-14 21:51 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2020-01-14 21:51 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\AppReadiness
2020-01-14 12:30 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\system32\NDF
2020-01-14 05:27 - 2019-11-09 23:54 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\Blitz-helpers
2020-01-13 17:29 - 2019-04-28 18:26 - 000000000 ____D C:\Users\David Hynek\AppData\Local\Spotify
2020-01-13 02:53 - 2019-05-07 01:54 - 000000000 ____D C:\Program Files (x86)\Origin Games
2020-01-12 23:22 - 2019-04-28 08:16 - 000000000 ____D C:\Users\David Hynek\AppData\Local\Packages
2020-01-12 22:06 - 2019-07-16 22:27 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\uTorrent
2020-01-12 21:25 - 2019-04-28 19:24 - 000000000 ____D C:\Users\David Hynek\AppData\Local\BitTorrentHelper
2020-01-12 17:00 - 2019-05-07 15:45 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-01-10 12:48 - 2019-11-09 23:53 - 000002249 _____ C:\Users\David Hynek\Desktop\Blitz.lnk
2020-01-10 12:48 - 2019-11-09 23:53 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blitz Inc
2020-01-10 12:48 - 2019-11-09 23:53 - 000000000 ____D C:\Users\David Hynek\AppData\Local\Blitz
2020-01-09 01:49 - 2019-04-28 19:47 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-01-09 01:49 - 2019-04-28 19:47 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-12-28 04:53 - 2019-04-28 09:07 - 000659288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2019-12-28 04:49 - 2019-04-28 09:07 - 004963480 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2019-12-28 04:49 - 2019-04-28 09:07 - 004229024 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2019-12-26 10:33 - 2019-04-28 19:50 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\ICQ
2019-12-25 08:15 - 2019-04-28 12:49 - 000000000 ____D C:\Users\David Hynek\AppData\Local\CrashDumps
2019-12-24 11:54 - 2019-04-28 09:07 - 000055783 _____ C:\Windows\system32\nvinfo.pb
2019-12-24 09:29 - 2019-04-28 09:08 - 005574128 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2019-12-24 09:29 - 2019-04-28 09:08 - 002655072 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2019-12-24 09:29 - 2019-04-28 09:08 - 001767280 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2019-12-24 09:29 - 2019-04-28 09:08 - 000670048 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2019-12-24 09:29 - 2019-04-28 09:08 - 000454696 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2019-12-24 09:29 - 2019-04-28 09:08 - 000129560 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2019-12-24 09:29 - 2019-04-28 09:08 - 000083440 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2019-12-22 20:28 - 2019-04-28 09:08 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
2019-12-21 23:27 - 2019-05-06 18:24 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2019-12-20 07:47 - 2019-04-29 12:29 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-12-19 00:26 - 2019-04-28 09:08 - 008861662 _____ C:\Windows\system32\nvcoproc.bin
2019-12-18 17:10 - 2019-04-28 12:34 - 000000000 ____D C:\Users\David Hynek\AppData\Local\D3DSCache
2019-12-18 12:07 - 2019-04-28 08:51 - 000000000 ____D C:\Users\David Hynek\AppData\Local\PlaceholderTileLogoFolder
2019-12-17 19:36 - 2019-04-28 16:26 - 000000000 ____D C:\Battle.net

==================== Files in the root of some directories ========

2019-04-28 12:28 - 2019-04-28 12:28 - 000000017 _____ () C:\Users\David Hynek\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 111879
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu... (možný problém)

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Simicek
Návštěvník
Návštěvník
Příspěvky: 163
Registrován: 23 črc 2008 19:09

Re: Prosím o kontrolu... (možný problém)

#3 Příspěvek od Simicek »

# -------------------------------
# Malwarebytes AdwCleaner 8.0.1.0
# -------------------------------
# Build: 12-17-2019
# Database: 2020-01-13.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 01-15-2020
# Duration: 00:00:01
# OS: Windows 10 Home
# Cleaned: 9
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\ProgramData\Application Data\Lavasoft\Web Companion

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Conduit
Deleted HKCU\Software\Lavasoft\Web Companion
Deleted HKCU\Software\Microsoft\Internet Explorer\Main|Start Page
Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{993F5746-4C15-42BC-99C1-064A1764271B}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Web Companion
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKLM\Software\Wow6432Node\Conduit
Deleted HKLM\Software\Wow6432Node\Lavasoft\Web Companion

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [2093 octets] - [15/01/2020 11:19:13]
AdwCleaner[S01].txt - [2154 octets] - [15/01/2020 11:21:26]
AdwCleaner[S02].txt - [2215 octets] - [15/01/2020 11:24:30]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C02].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 111879
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu... (možný problém)

#4 Příspěvek od Rudy »

DSejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Simicek
Návštěvník
Návštěvník
Příspěvky: 163
Registrován: 23 črc 2008 19:09

Re: Prosím o kontrolu... (možný problém)

#5 Příspěvek od Simicek »

FRST

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-01-2020
Ran by David Hynek (administrator) on DESKTOP-KR0LJ7U (Gigabyte Technology Co., Ltd. Z390 GAMING X) (15-01-2020 15:13:52)
Running from C:\Users\David Hynek\Desktop
Loaded Profiles: David Hynek (Available Profiles: David Hynek)
Platform: Windows 10 Home Version 1809 17763.973 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
() [File not signed] C:\Program Files\AutoHotkey\AutoHotkey.exe
() [File not signed] C:\Program Files\AutoHotkey\AutoHotkey.exe
() [File not signed] D:\Path of Building\Path of Building.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\2.00.06\atkexComSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\AVAST Software\Avast\wsc_proxy.exe
(Discord Inc. -> Discord Inc.) C:\Users\David Hynek\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\David Hynek\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\David Hynek\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\David Hynek\AppData\Local\Discord\app-0.0.305\Discord.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\GIGABYTE\RGBFusion\Check_Kill.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\GIGABYTE\RGBFusion\RGBFusion.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft) C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler64.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) INTELND1820 -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\David Hynek\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19081.22010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19101.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> ) D:\MSI Afterburner\MSIAfterburner.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Open Source Developer, Phillip Gibbons -> Highresolution Enterprises) C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Oracle America, Inc. -> Oracle Corporation) D:\Java\bin\javaw.exe
(Piriform Software Ltd -> Piriform Ltd) D:\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp) C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.3.180.0_x64__dt26b99r8h8gj\RtkUWP.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Swift Media Entertainment, Inc. -> Blitz Inc.) C:\Users\David Hynek\AppData\Local\Blitz\current\Blitz.exe
(Swift Media Entertainment, Inc. -> Blitz Inc.) C:\Users\David Hynek\AppData\Local\Blitz\current\Blitz.exe
(Swift Media Entertainment, Inc. -> Blitz Inc.) C:\Users\David Hynek\AppData\Local\Blitz\current\Blitz.exe
(Swift Media Entertainment, Inc. -> Blitz Inc.) C:\Users\David Hynek\AppData\Local\Blitz\current\Blitz.exe
(Swift Media Entertainment, Inc. -> Blitz Inc.) C:\Users\David Hynek\AppData\Local\Blitz\current\Blitz.exe
(Swift Media Entertainment, Inc. -> Blitz Inc.) C:\Users\David Hynek\AppData\Local\Blitz\current\Blitz.exe
(Swift Media Entertainment, Inc. -> Blitz Inc.) C:\Users\David Hynek\AppData\Local\Blitz\current\Blitz.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [856288 2019-10-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\AVAST Software\Avast\AvLaunch.exe [268680 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [XMouseButtonControl] => C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe [1605344 2019-05-06] (Open Source Developer, Phillip Gibbons -> Highresolution Enterprises)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\RunOnce: [DualBiosRescue] => C:\Program Files (x86)\GIGABYTE\GigabyteFirmwareUpdateUtility\dbrro.exe [12096 2015-08-19] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKLM-x32\...\RunOnce: [SelLed] => C:\Program Files (x86)\GIGABYTE\RGBFusion\RunLed.exe [50096 2019-03-13] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Run: [CCleaner Smart Cleaning] => D:\CCleaner\CCleaner64.exe [24552064 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Run: [TSMApplication] => D:\TradeSkillMaster Application\app\TSMApplication.exe [1623040 2019-09-15] () [File not signed]
HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Run: [Discord] => C:\Users\David Hynek\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Run: [com.blitz.app] => C:\Users\David Hynek\AppData\Local\Blitz\Update.exe [1849928 2019-11-09] (Swift Media Entertainment, Inc. -> Blitz Inc)
HKU\S-1-5-21-994775172-3552113607-2548991599-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [37888 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.117\Installer\chrmstp.exe [2020-01-09] (Google LLC -> Google LLC)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0EF9095E-67D6-4BF4-A1A4-9DC425A85C2E} - System32\Tasks\CCleanerSkipUAC => D:\CCleaner\CCleaner.exe [18458752 2019-10-16] (Piriform Software Ltd -> Piriform Ltd)
Task: {130A2970-E407-43B8-91D3-C1ED5CD716B6} - System32\Tasks\EasyTune => C:\Program Files (x86)\GIGABYTE\EasyTune\etinit.exe [15792 2018-09-10] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {2139EF7F-CC7D-4807-AC89-519F645236CB} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {22A6EF24-BC50-4EFF-A268-68EE1C18DB36} - System32\Tasks\Overwolf Updater Task => D:\Overwolf\OverwolfUpdater.exe [2436936 2019-12-25] (Overwolf Ltd -> Overwolf LTD)
Task: {477E7250-3E5C-4500-9573-9F7139285900} - System32\Tasks\EasyTune 1 => C:\Program Files (x86)\GIGABYTE\EasyTune\etocfile.exe [18352 2018-09-10] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {4C5BE41D-7474-4BAB-9D42-2AF0E5FF8A21} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24625520 2020-01-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {53766456-3667-4100-85D5-7AE41DE3C465} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5D361E7F-0248-482F-BAC3-A35D17609FE5} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302880 2019-12-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {62E8FDE2-4EA4-4479-B0FB-17088B78916C} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1376360 2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {766D2D03-B90F-4A03-AD23-3C2BFF309B56} - System32\Tasks\SIV-VGA => C:\Program Files (x86)\GIGABYTE\SIV\sensord.exe [253872 2018-09-18] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {7B0F887D-B495-48A2-862E-6628027AD590} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [837344 2018-09-14] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {7F9547D1-2C55-4A99-807C-E23FC04D76FA} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {83BD173A-9A8A-4F8F-808C-427F8BCA2528} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1376360 2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {8A8A746F-7B4B-4557-A73D-AF008BCD3247} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {90E5AEB9-842F-4EFF-B079-C84A1F3BAE25} - System32\Tasks\LiquidSensord => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\LiquidSensord.exe [251824 2019-02-21] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {97938E78-27E9-4D94-A7A5-E75B33F04F47} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4360000 2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {9D17C513-EFD7-4834-A726-0690DFA97BFB} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115032 2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {9E5E0872-14CD-4CD0-91CC-766D8A23F20F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24625520 2020-01-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {B012BA3B-2723-4974-8573-19DC6B2F7613} - System32\Tasks\CCleaner Update => D:\CCleaner\CCUpdate.exe [608384 2019-10-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {B280FD9E-EA79-4C7C-AA33-190893EB2050} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115032 2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {B6FB1AC2-BCCB-4FFE-870F-DF4E24F11D5E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B93DCABA-AA07-4439-AE32-C66E96728472} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653848 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B96482CC-A0C3-4FD2-B355-67A597FEDA67} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D16890F7-649D-4C69-8103-A4364CECC271} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4360000 2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {D44A89F3-F910-4ABF-83AB-6850A7FEDF35} - System32\Tasks\SIV => C:\Program Files (x86)\GIGABYTE\SIV\thermald.exe [426416 2018-09-18] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {D650CD26-DEAA-4F98-9F59-063C98325DB2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-28] (Google Inc -> Google LLC)
Task: {DCA80CCC-CE2C-4144-9695-CDFDEF4A102C} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EC88C19C-F05C-443D-AA28-979BABED0990} - System32\Tasks\Avast Emergency Update => C:\AVAST Software\Avast\AvEmUpdate.exe [3933576 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
Task: {F16E0F1C-4A1E-47C0-827B-7F293103BADC} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1873288 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
Task: {F2FB020F-FFE4-401C-A169-88D6B3C7542E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {F556EA49-864E-47A0-9C50-D8A8E5649936} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FE744EC4-550B-45D1-9844-511254A259F5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-28] (Google Inc -> Google LLC)
Task: {FF472D25-C970-443B-9D1A-4440ECE23998} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [232880 2019-02-21] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{013838db-2b9b-489b-adc2-b1af1a53491a}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Java\bin\ssv.dll [2019-07-07] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Java\bin\jp2ssv.dll [2019-07-07] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF Plugin-x32: @java.com/DTPlugin,version=11.211.2 -> D:\Java\bin\dtplugin\npDeployJava1.dll [2019-07-07] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.211.2 -> D:\Java\bin\plugin2\npjp2.dll [2019-07-07] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-12-02] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Notifications: Default -> hxxps://badoo.com; hxxps://cz19.the-west.cz; hxxps://discordapp.com; hxxps://www.pathofexile.com; hxxps://www.tipsport.cz; hxxps://www.youtube.com
CHR Profile: C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default [2020-01-15]
CHR DownloadDir: D:\ChromeDownloads
CHR Extension: (Prezentace) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-04-28]
CHR Extension: (BetterTTV) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2020-01-13]
CHR Extension: (Dokumenty) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-04-28]
CHR Extension: (Disk Google) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-04-28]
CHR Extension: (YouTube) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-04-28]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-10-23]
CHR Extension: (Tampermonkey) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2019-11-30]
CHR Extension: (Tabulky) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-04-28]
CHR Extension: (Dokumenty Google offline) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-15]
CHR Extension: (Avast Online Security) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-12-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-28]
CHR Extension: (Chrome Media Router) - C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-18]
CHR Profile: C:\Users\David Hynek\AppData\Local\Google\Chrome\User Data\System Profile [2019-05-06]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\2.00.06\atkexComSvc.exe [411456 2019-04-30] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R3 aswbIDSAgent; C:\AVAST Software\Avast\aswidsagent.exe [6259592 2019-12-19] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\AVAST Software\Avast\AvastSvc.exe [996880 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\AVAST Software\Avast\wsc_proxy.exe [57504 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8403672 2019-06-29] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11164232 2020-01-07] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-11-12] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 EasyTuneEngineService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [142768 2019-03-18] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 gadjservice; C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe [17920 2015-06-25] () [File not signed]
S3 GalaxyClientService; D:\GOG Galaxy\GalaxyClientService.exe [1226824 2019-07-18] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6816840 2019-07-18] (GOG Sp. z o.o. -> GOG.com)
R2 Gservice; C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe [19888 2016-12-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft)
S3 HwmRecordService; C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe [128944 2018-09-18] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [775904 2018-09-14] (Intel(R) Trust Services -> Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [705760 2018-09-14] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\Intel(R) Management Engine Components\DAL\jhi_service.exe [218176 2018-11-16] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 LMS; C:\Intel(R) Management Engine Components\LMS\LMS.exe [625240 2018-11-16] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
R2 OcButtonService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe [123824 2019-02-21] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2475312 2020-01-11] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [3393848 2020-01-11] (Electronic Arts, Inc. -> Electronic Arts)
S3 OverwolfUpdater; D:\Overwolf\OverwolfUpdater.exe [2436936 2019-12-25] (Overwolf Ltd -> Overwolf LTD)
R2 RtkAudioUniversalService; C:\Windows\System32\RtkAudUService64.exe [856288 2019-10-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
S3 uncheater_bgl; C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe [2097008 2019-11-12] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3831576 2019-06-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [110944 2018-09-15] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2019-04-30] (ASUSTeK Computer Inc. -> )
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37616 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [204824 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [274456 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [209552 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [65120 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [16304 2019-10-03] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [276952 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42736 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [161544 2019-11-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [110320 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [83792 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [848432 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [460448 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [236024 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [316528 2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
S3 cpuz149; C:\Windows\temp\cpuz149\cpuz149_x64.sys [44320 2020-01-15] (CPUID S.A.R.L.U. -> CPUID)
R3 e1dexpress; C:\Windows\System32\DriverStore\FileRepository\e1d68x64.inf_amd64_b44028fc7fdf4fca\e1d68x64.sys [599920 2019-09-13] (Intel(R) INTELND1820 -> Intel Corporation)
R3 gdrv; C:\Windows\gdrv.sys [26792 2019-04-28] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R3 gdrv2; C:\Windows\gdrv2.sys [32600 2019-07-29] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R1 GLCKIO2; C:\Windows\system32\drivers\GLCKIO2.sys [19392 2018-04-23] (ASUSTeK Computer Inc. -> )
R3 iaLPSS2_GPIO2; C:\Windows\System32\drivers\iaLPSS2_GPIO2.sys [131744 2018-10-16] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S0 iaStorAC; C:\Windows\System32\drivers\iaStorAC.sys [1017200 2019-03-25] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_ce13a81bcfac4a48\nvlddmkm.sys [23251968 2019-12-28] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-12-07] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [69840 2019-04-18] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [75600 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 RTCore64; D:\MSI Afterburner\RTCore64.sys [24000 2019-09-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
R3 UcmCxUcsiNvppc; C:\Windows\system32\DRIVERS\UcmCxUcsiNvppc.sys [715224 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46584 2018-09-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [340008 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [61992 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\Windows\xhunter1.sys [74552 2019-12-05] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-01-15 12:11 - 2020-01-15 12:11 - 000000000 ___HD C:\OneDriveTemp
2020-01-15 11:29 - 2020-01-15 11:29 - 000000000 ____D C:\UserBenchmark
2020-01-15 11:21 - 2020-01-15 11:21 - 008237744 _____ (Malwarebytes) C:\Users\David Hynek\Desktop\AdwCleaner.exe
2020-01-15 11:18 - 2020-01-15 11:25 - 000000000 ____D C:\AdwCleaner
2020-01-15 11:17 - 2020-01-15 11:17 - 008237744 _____ (Malwarebytes) C:\Users\David Hynek\Desktop\adwcleaner_8.0.1.exe
2020-01-15 09:54 - 2020-01-15 11:33 - 000000000 ____D C:\ProgramData\boost_interprocess
2020-01-15 09:53 - 2020-01-15 09:53 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2020-01-15 09:52 - 2020-01-15 09:52 - 000000650 _____ C:\Users\David Hynek\Desktop\MSI Afterburner.lnk
2020-01-15 09:52 - 2020-01-15 09:52 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2020-01-15 01:16 - 2020-01-15 15:14 - 000035251 _____ C:\Users\David Hynek\Desktop\FRST.txt
2020-01-15 01:16 - 2020-01-15 15:14 - 000000000 ____D C:\FRST
2020-01-15 01:16 - 2020-01-15 01:17 - 000063225 _____ C:\Users\David Hynek\Desktop\Addition.txt
2020-01-15 01:15 - 2020-01-15 01:15 - 002573312 _____ (Farbar) C:\Users\David Hynek\Desktop\FRST64.exe
2020-01-15 01:05 - 2019-03-28 10:11 - 000029232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll
2020-01-15 01:05 - 2019-03-28 10:11 - 000017968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr100_clr0400.dll
2020-01-15 01:05 - 2019-03-28 10:09 - 000032816 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll
2020-01-15 01:05 - 2019-03-28 10:09 - 000017968 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100_clr0400.dll
2020-01-15 01:05 - 2019-03-28 07:35 - 000772176 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase_clr0400.dll
2020-01-15 01:05 - 2019-03-28 07:35 - 000702400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase_clr0400.dll
2020-01-15 01:05 - 2019-03-28 07:35 - 000622832 _____ (Microsoft Corporation) C:\Windows\system32\msvcp140_clr0400.dll
2020-01-15 01:05 - 2019-03-28 07:35 - 000433448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp140_clr0400.dll
2020-01-15 01:05 - 2019-03-28 07:35 - 000087296 _____ (Microsoft Corporation) C:\Windows\system32\vcruntime140_clr0400.dll
2020-01-15 01:05 - 2019-03-28 07:35 - 000083768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vcruntime140_clr0400.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 009668408 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2020-01-15 01:04 - 2020-01-15 01:04 - 008905728 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 007922688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 007645392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 006543736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 005436696 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 004588544 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2020-01-15 01:04 - 2020-01-15 01:04 - 003637248 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2020-01-15 01:04 - 2020-01-15 01:04 - 002707968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2020-01-15 01:04 - 2020-01-15 01:04 - 002469440 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 002419712 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2020-01-15 01:04 - 2020-01-15 01:04 - 002323896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 002149160 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 001936520 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 001721144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 001708544 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 001701888 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 001677088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 001670800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 001665712 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 001484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 001258296 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2020-01-15 01:04 - 2020-01-15 01:04 - 001200920 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 001084416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 001050624 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2020-01-15 01:04 - 2020-01-15 01:04 - 001049400 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2020-01-15 01:04 - 2020-01-15 01:04 - 000949248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000930816 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000878080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2020-01-15 01:04 - 2020-01-15 01:04 - 000842752 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000839680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000817152 _____ (Microsoft Corporation) C:\Windows\system32\MdmDiagnostics.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000677144 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000673792 _____ (Microsoft Corporation) C:\Windows\system32\wiaaut.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000651776 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000578560 _____ (Microsoft Corporation) C:\Windows\system32\SppExtComObj.Exe
2020-01-15 01:04 - 2020-01-15 01:04 - 000572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiaaut.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000541264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000410616 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000405304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2020-01-15 01:04 - 2020-01-15 01:04 - 000378368 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000350416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000326144 _____ (Microsoft Corporation) C:\Windows\system32\DiagnosticLogCSP.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000322048 _____ (Microsoft Corporation) C:\Windows\system32\sti.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000315904 _____ (Microsoft Corporation) C:\Windows\system32\ConhostV1.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000289792 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000228864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sti.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000228864 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000189440 _____ (Microsoft Corporation) C:\Windows\system32\sti_ci.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000154976 _____ (Microsoft Corporation) C:\Windows\system32\dmcmnutils.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe
2020-01-15 01:04 - 2020-01-15 01:04 - 000145920 _____ (Microsoft Corporation) C:\Windows\system32\wiadss.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000145920 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000124416 _____ (Microsoft Corporation) C:\Windows\system32\cryptcatsvc.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000122568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmcmnutils.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000119808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiadss.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\enterpriseresourcemanager.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000083968 _____ (Microsoft Corporation) C:\Windows\system32\wiarpc.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000083456 _____ (Microsoft Corporation) C:\Windows\system32\provtool.exe
2020-01-15 01:04 - 2020-01-15 01:04 - 000073728 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000066560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\enterpriseresourcemanager.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2020-01-15 01:04 - 2020-01-15 01:04 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2020-01-15 01:04 - 2020-01-15 01:04 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2020-01-15 01:04 - 2020-01-15 01:04 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2020-01-15 01:04 - 2020-01-15 01:04 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2020-01-15 01:04 - 2020-01-15 01:04 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2020-01-15 01:04 - 2020-01-15 01:04 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2020-01-15 01:04 - 2020-01-15 01:04 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2020-01-15 01:04 - 2020-01-15 01:04 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
2020-01-14 22:35 - 2019-12-28 04:55 - 011843296 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2020-01-14 22:35 - 2019-12-28 04:55 - 010169416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2020-01-14 22:35 - 2019-12-28 04:55 - 001729448 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2020-01-14 22:35 - 2019-12-28 04:55 - 001729448 _____ C:\Windows\system32\vulkaninfo.exe
2020-01-14 22:35 - 2019-12-28 04:55 - 001329568 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-01-14 22:35 - 2019-12-28 04:55 - 001329568 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2020-01-14 22:35 - 2019-12-28 04:55 - 001079200 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2020-01-14 22:35 - 2019-12-28 04:55 - 001079200 _____ C:\Windows\system32\vulkan-1.dll
2020-01-14 22:35 - 2019-12-28 04:55 - 000937888 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2020-01-14 22:35 - 2019-12-28 04:55 - 000937888 _____ C:\Windows\SysWOW64\vulkan-1.dll
2020-01-14 22:35 - 2019-12-28 04:55 - 000450176 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2020-01-14 22:35 - 2019-12-28 04:55 - 000354520 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2020-01-14 22:35 - 2019-12-28 04:54 - 002076080 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2020-01-14 22:35 - 2019-12-28 04:54 - 001485688 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2020-01-14 22:35 - 2019-12-28 04:54 - 001145280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2020-01-14 22:35 - 2019-12-28 04:54 - 000824064 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcumd.dll
2020-01-14 22:35 - 2019-12-28 04:54 - 000685256 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2020-01-14 22:35 - 2019-12-28 04:54 - 000678264 _____ C:\Windows\system32\nvofapi64.dll
2020-01-14 22:35 - 2019-12-28 04:54 - 000558080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2020-01-14 22:35 - 2019-12-28 04:54 - 000544976 _____ C:\Windows\SysWOW64\nvofapi.dll
2020-01-14 22:35 - 2019-12-28 04:53 - 040510200 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2020-01-14 22:35 - 2019-12-28 04:53 - 035380240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2020-01-14 22:35 - 2019-12-28 04:53 - 017462152 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2020-01-14 22:35 - 2019-12-28 04:53 - 015029720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2020-01-14 22:35 - 2019-12-28 04:53 - 005383184 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2020-01-14 22:35 - 2019-12-28 04:53 - 004718512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2020-01-14 22:35 - 2019-12-28 04:53 - 001727320 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6444187.dll
2020-01-14 22:35 - 2019-12-28 04:53 - 001570160 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2020-01-14 22:35 - 2019-12-28 04:53 - 001492480 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6444187.dll
2020-01-14 22:35 - 2019-12-28 04:53 - 001371512 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2020-01-14 22:35 - 2019-12-28 04:53 - 001064368 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2020-01-14 22:35 - 2019-12-28 04:53 - 000813984 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2020-01-14 21:35 - 2020-01-14 21:35 - 000000080 ___SH C:\bootTel.dat
2019-12-22 20:56 - 2020-01-12 22:06 - 000000000 ____D C:\Users\David Hynek\AppData\LocalLow\uTorrent

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-01-15 15:12 - 2019-11-09 23:53 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\Blitz
2020-01-15 15:09 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-01-15 15:08 - 2019-04-28 18:26 - 000000000 ____D C:\Users\David Hynek\AppData\Local\Spotify
2020-01-15 15:08 - 2019-04-28 18:01 - 000002208 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-01-15 15:07 - 2019-04-28 09:37 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2020-01-15 14:23 - 2019-04-28 18:15 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\Spotify
2020-01-15 12:26 - 2019-04-28 09:08 - 000000000 ____D C:\ProgramData\NVIDIA
2020-01-15 12:25 - 2019-04-30 14:20 - 000000000 ____D C:\Users\David Hynek\Documents\PoE-TradeMacro
2020-01-15 12:17 - 2019-04-28 08:06 - 001697130 _____ C:\Windows\system32\PerfStringBackup.INI
2020-01-15 12:17 - 2018-09-15 18:32 - 000717998 _____ C:\Windows\system32\perfh005.dat
2020-01-15 12:17 - 2018-09-15 18:32 - 000145576 _____ C:\Windows\system32\perfc005.dat
2020-01-15 12:17 - 2018-09-15 08:31 - 000000000 ____D C:\Windows\INF
2020-01-15 12:11 - 2019-04-28 08:17 - 000000000 ___RD C:\Users\David Hynek\OneDrive
2020-01-15 12:11 - 2019-04-28 08:01 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-01-15 12:11 - 2018-09-15 07:09 - 000524288 _____ C:\Windows\system32\config\BBI
2020-01-15 12:10 - 2019-04-28 18:52 - 000000000 ____D C:\Users\David Hynek\AppData\Local\ElevatedDiagnostics
2020-01-15 12:05 - 2019-04-28 12:49 - 000000000 ____D C:\Users\David Hynek\AppData\Local\CrashDumps
2020-01-15 12:01 - 2019-04-28 08:01 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-01-15 11:18 - 2019-04-28 08:51 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\Discord
2020-01-15 09:59 - 2019-10-03 18:38 - 000000000 ____D C:\Windows\Minidump
2020-01-15 09:54 - 2019-04-28 09:09 - 000000000 ____D C:\Users\David Hynek\AppData\Local\NVIDIA Corporation
2020-01-15 09:53 - 2019-04-29 12:23 - 000000000 ____D C:\Windows\SysWOW64\directx
2020-01-15 02:45 - 2019-04-28 08:14 - 000000000 ____D C:\Users\David Hynek
2020-01-15 01:48 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\LiveKernelReports
2020-01-15 01:45 - 2019-08-18 13:06 - 000003224 _____ C:\Windows\system32\Tasks\Overwolf Updater Task
2020-01-15 01:45 - 2019-06-12 18:53 - 000003008 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-15 01:45 - 2019-06-12 18:53 - 000003008 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-15 01:45 - 2019-06-12 18:53 - 000003008 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-15 01:45 - 2019-06-12 18:53 - 000003008 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-15 01:45 - 2019-04-30 14:28 - 000003424 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{510D5DF9-0BEE-4CDD-B373-29CC29393D2A}
2020-01-15 01:45 - 2019-04-29 12:29 - 000003542 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2020-01-15 01:45 - 2019-04-28 19:44 - 000003462 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-01-15 01:45 - 2019-04-28 19:44 - 000003238 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-01-15 01:45 - 2019-04-28 18:01 - 000003020 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-01-15 01:45 - 2019-04-28 12:50 - 000002572 _____ C:\Windows\system32\Tasks\SIV-VGA
2020-01-15 01:45 - 2019-04-28 12:50 - 000002566 _____ C:\Windows\system32\Tasks\SIV
2020-01-15 01:45 - 2019-04-28 12:49 - 000002682 _____ C:\Windows\system32\Tasks\EasyTune 1
2020-01-15 01:45 - 2019-04-28 12:49 - 000002582 _____ C:\Windows\system32\Tasks\EasyTune
2020-01-15 01:45 - 2019-04-28 12:45 - 000002666 _____ C:\Windows\system32\Tasks\GraphicsCardEngine
2020-01-15 01:45 - 2019-04-28 12:45 - 000002630 _____ C:\Windows\system32\Tasks\LiquidSensord
2020-01-15 01:45 - 2019-04-28 09:10 - 000003234 _____ C:\Windows\system32\Tasks\Intel PTT EK Recertification
2020-01-15 01:45 - 2019-04-28 09:08 - 000003458 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-15 01:45 - 2019-04-28 09:08 - 000003256 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-15 01:45 - 2019-04-28 09:08 - 000003212 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-15 01:45 - 2019-04-28 09:08 - 000003044 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-15 01:45 - 2019-04-28 09:08 - 000002974 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-15 01:45 - 2019-04-28 09:08 - 000002804 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-15 01:45 - 2019-04-28 08:17 - 000002918 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-994775172-3552113607-2548991599-1001
2020-01-15 01:28 - 2019-04-28 16:28 - 000000000 ____D C:\Users\David Hynek\AppData\Local\Battle.net
2020-01-15 01:22 - 2019-04-29 17:25 - 000000000 ____D C:\World of Warcraft
2020-01-15 01:11 - 2019-06-19 11:59 - 000000000 ____D C:\Program Files\UNP
2020-01-15 01:09 - 2019-04-28 08:01 - 000446928 _____ C:\Windows\system32\FNTCACHE.DAT
2020-01-15 01:08 - 2019-04-28 09:37 - 000000000 ____D C:\Windows\system32\MRT
2020-01-15 01:08 - 2018-09-15 08:33 - 000000000 ___SD C:\Windows\system32\UNP
2020-01-15 01:08 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\ShellExperiences
2020-01-15 01:08 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\bcastdvr
2020-01-15 01:06 - 2019-04-28 09:37 - 120202352 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-01-15 01:06 - 2018-09-15 08:23 - 000000000 ____D C:\Windows\CbsTemp
2020-01-15 01:04 - 2019-04-28 08:58 - 000408634 __RSH C:\bootmgr
2020-01-15 00:18 - 2019-04-28 18:24 - 000000000 ____D C:\Users\David Hynek\AppData\Local\NVIDIA
2020-01-14 23:21 - 2019-05-06 18:24 - 000000694 _____ C:\Users\Public\Desktop\Apex Legends.lnk
2020-01-14 23:21 - 2019-05-06 17:23 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\Origin
2020-01-14 23:03 - 2019-05-06 17:23 - 000000000 ____D C:\Users\David Hynek\AppData\Local\Origin
2020-01-14 23:03 - 2019-05-06 17:23 - 000000000 ____D C:\ProgramData\Origin
2020-01-14 22:36 - 2019-04-28 09:06 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-01-14 22:25 - 2019-04-28 09:08 - 000001443 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2020-01-14 22:25 - 2019-04-28 09:08 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-01-14 22:25 - 2019-04-28 09:07 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-01-14 22:23 - 2019-12-12 17:23 - 000000000 ____D C:\Users\David Hynek\Desktop\Trash
2020-01-14 21:51 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2020-01-14 21:51 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\AppReadiness
2020-01-14 12:30 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\system32\NDF
2020-01-14 05:27 - 2019-11-09 23:54 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\Blitz-helpers
2020-01-13 02:53 - 2019-05-07 01:54 - 000000000 ____D C:\Program Files (x86)\Origin Games
2020-01-12 23:22 - 2019-04-28 08:16 - 000000000 ____D C:\Users\David Hynek\AppData\Local\Packages
2020-01-12 22:06 - 2019-07-16 22:27 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\uTorrent
2020-01-12 21:25 - 2019-04-28 19:24 - 000000000 ____D C:\Users\David Hynek\AppData\Local\BitTorrentHelper
2020-01-12 17:00 - 2019-05-07 15:45 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-01-10 12:48 - 2019-11-09 23:53 - 000002249 _____ C:\Users\David Hynek\Desktop\Blitz.lnk
2020-01-10 12:48 - 2019-11-09 23:53 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blitz Inc
2020-01-10 12:48 - 2019-11-09 23:53 - 000000000 ____D C:\Users\David Hynek\AppData\Local\Blitz
2020-01-09 01:49 - 2019-04-28 19:47 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-01-09 01:49 - 2019-04-28 19:47 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-12-28 04:53 - 2019-04-28 09:07 - 000659288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2019-12-28 04:49 - 2019-04-28 09:07 - 004963480 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2019-12-28 04:49 - 2019-04-28 09:07 - 004229024 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2019-12-26 10:33 - 2019-04-28 19:50 - 000000000 ____D C:\Users\David Hynek\AppData\Roaming\ICQ
2019-12-24 11:54 - 2019-04-28 09:07 - 000055783 _____ C:\Windows\system32\nvinfo.pb
2019-12-24 09:29 - 2019-04-28 09:08 - 005574128 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2019-12-24 09:29 - 2019-04-28 09:08 - 002655072 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2019-12-24 09:29 - 2019-04-28 09:08 - 001767280 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2019-12-24 09:29 - 2019-04-28 09:08 - 000670048 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2019-12-24 09:29 - 2019-04-28 09:08 - 000454696 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2019-12-24 09:29 - 2019-04-28 09:08 - 000129560 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2019-12-24 09:29 - 2019-04-28 09:08 - 000083440 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2019-12-22 20:28 - 2019-04-28 09:08 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
2019-12-21 23:27 - 2019-05-06 18:24 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2019-12-20 07:47 - 2019-04-29 12:29 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-12-19 00:26 - 2019-04-28 09:08 - 008861662 _____ C:\Windows\system32\nvcoproc.bin
2019-12-18 17:10 - 2019-04-28 12:34 - 000000000 ____D C:\Users\David Hynek\AppData\Local\D3DSCache
2019-12-18 12:07 - 2019-04-28 08:51 - 000000000 ____D C:\Users\David Hynek\AppData\Local\PlaceholderTileLogoFolder
2019-12-17 19:36 - 2019-04-28 16:26 - 000000000 ____D C:\Battle.net

==================== Files in the root of some directories ========

2019-04-28 12:28 - 2019-04-28 12:28 - 000000017 _____ () C:\Users\David Hynek\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Simicek
Návštěvník
Návštěvník
Příspěvky: 163
Registrován: 23 črc 2008 19:09

Re: Prosím o kontrolu... (možný problém)

#6 Příspěvek od Simicek »

Addition

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-01-2020
Ran by David Hynek (15-01-2020 15:14:30)
Running from C:\Users\David Hynek\Desktop
Windows 10 Home Version 1809 17763.973 (X64) (2019-04-28 07:02:44)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-994775172-3552113607-2548991599-500 - Administrator - Disabled)
David Hynek (S-1-5-21-994775172-3552113607-2548991599-1001 - Administrator - Enabled) => C:\Users\David Hynek
DefaultAccount (S-1-5-21-994775172-3552113607-2548991599-503 - Limited - Disabled)
Guest (S-1-5-21-994775172-3552113607-2548991599-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-994775172-3552113607-2548991599-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

@BIOS (HKLM-x32\...\{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 3.18.0709.1 - GIGABYTE) Hidden
@BIOS (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 3.18.0709.1 - GIGABYTE)
µTorrent (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\uTorrent) (Version: 3.5.5.45505 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.021.20061 - Adobe Systems Incorporated)
Aktualizace NVIDIA 38.0.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.4.0 - NVIDIA Corporation) Hidden
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.2.7 - Electronic Arts, Inc.)
APP Center (HKLM-x32\...\{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.19.0704.1 - GIGABYTE) Hidden
APP Center (HKLM-x32\...\InstallShield_{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.19.0704.1 - GIGABYTE)
ASUS GLCKIO2 Driver (HKLM-x32\...\{548dd834-70c5-4426-8065-fbeabdd2bb5d}) (Version: 1.0.10 - ASUSTeK Computer Inc.) Hidden
ASUS GLCKIO2 Driver (HKLM-x32\...\{5960FD0F-BB3B-49AF-B175-F77DC91E995A}) (Version: 1.0.10 - ASUSTeK Computer Inc.) Hidden
AutoHotkey 1.1.26.01 (HKLM\...\AutoHotkey) (Version: 1.1.26.01 - Lexikos)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.8.2393 - AVAST Software)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Blitz (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Blitz) (Version: 1.6.5 - Blitz Inc.)
Bloody6 (HKLM-x32\...\Bloody3) (Version: 19.04.0008 - Bloody)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.74.1085 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.62 - Piriform)
CPUID HWMonitor 1.41 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.41 - CPUID, Inc.)
Discord (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Discord) (Version: 0.0.305 - Discord Inc.)
EasyTune (HKLM-x32\...\{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.18.1005.1 - GIGABYTE) Hidden
EasyTune (HKLM-x32\...\InstallShield_{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.18.1005.1 - GIGABYTE)
EasyTuneEngineService (HKLM-x32\...\{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.19.0318.1 - GIGABYTE) Hidden
EasyTuneEngineService (HKLM-x32\...\InstallShield_{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.19.0318.1 - GIGABYTE)
Epic Games Launcher (HKLM-x32\...\{19BC09B5-F319-4A61-A878-475E7F7054EA}) (Version: 1.1.195.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
G.SKILL AURA DRAM Component (HKLM\...\{46EEF4E1-2117-4D64-A953-F1DE092495EB}) (Version: 1.00.10 - G.SKILL International Enterprise) Hidden
G.SKILL AURA DRAM Component (HKLM-x32\...\{4961d0dd-74e6-4696-abce-8f69a5badc6a}) (Version: 1.00.10 - G.SKILL International Enterprise) Hidden
GigabyteFirmwareUpdateUtility (HKLM-x32\...\{1CBA99CE-1AB3-4366-AFB4-7F7B75EBBE35}) (Version: 1.18.0208.1 - GIGABYTE) Hidden
GigabyteFirmwareUpdateUtility (HKLM-x32\...\InstallShield_{1CBA99CE-1AB3-4366-AFB4-7F7B75EBBE35}) (Version: 1.18.0208.1 - GIGABYTE)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.117 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden
GService (HKLM-x32\...\{D9CB4282-7B2A-4840-AD1D-9DA72B973DD9}) (Version: 1.16.1202.1 - GIGABYTE)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
Heroes of the Storm Public Test (HKLM-x32\...\Heroes of the Storm Public Test) (Version: - Blizzard Entertainment)
ICQ (verze 10.0.38922) (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\icq.desktop) (Version: 10.0.38922 - Mail.ru LLC)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1846.12.0.1177 - Intel Corporation)
Intel(R) Network Connections 23.5.0.0 (HKLM\...\PROSetDX) (Version: 23.5.0.0 - Intel)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1841.2 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.50.638.1 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{99ee3c29-c7cd-450f-8db9-d43cc49de1c7}) (Version: 1.50.638.1 - Intel Corporation) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{fcfc894b-0d54-4d39-826f-dcb39ce5dde7}) (Version: 10.1.17861.8101 - Intel(R) Corporation)
Intel® Optane™ Pinning Explorer Extensions (HKLM\...\{7EBADAB6-B7AC-4560-85A7-FF345559F193}) (Version: 17.2.6.1027 - Intel Corporation)
Java 8 Update 211 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180211F0}) (Version: 8.0.2110.12 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
Locklizard Safeguard - PDF Viewer (HKLM-x32\...\Locklizard Safeguard - PDF Viewer_sf) (Version: 2.6.50 - Locklizard Ltd.)
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProPlusRetail - cs-cz) (Version: 16.0.12325.20288 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3994d355-238a-4612-af93-26d13deddef1}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.2.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.2.34 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 441.87 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 441.87 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA USBC Driver 1.38.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.38.831.832 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12325.20288 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12325.20288 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12325.20280 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.12325.20288 - Microsoft Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.5.58.36192 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.140.0.33 - Overwolf Ltd.)
Ovládací panel NVIDIA 441.87 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 441.87 - NVIDIA Corporation) Hidden
Path of Building version 1.4.137 (HKLM-x32\...\{72FA9AB7-189F-4BDE-8856-72DEB90C157B}_is1) (Version: 1.4.137 - Openarl)
Path of Exile (HKLM-x32\...\{90A4562F-D4A1-4B65-906D-41F236CF6902}) (Version: 3.6.3.56888 - Grinding Gear Games) Hidden
Path of Exile (HKLM-x32\...\{c07fe85b-ad7c-4852-b9be-3e05358d71f5}) (Version: 3.6.3.56888 - Grinding Gear Games)
PlatformPowerManagement (HKLM-x32\...\{7A6EB543-522C-4784-9DB5-4FC87522EBDF}) (Version: 1.18.0910.1 - GIGABYTE) Hidden
PlatformPowerManagement (HKLM-x32\...\InstallShield_{7A6EB543-522C-4784-9DB5-4FC87522EBDF}) (Version: 1.18.0910.1 - GIGABYTE)
Pokémon Trading Card Game Online (HKLM-x32\...\{8CD5CE22-F319-4556-9B19-FAAFF59C63A0}) (Version: 2.63.0 - The Pokémon Company International)
PUBG Lite (HKLM-x32\...\PUBG Lite_is1) (Version: 1.0.0.7 - )
RaiderIO 1.2.0 (HKLM\...\ea53c16d-4ef5-533f-83dc-5b0c5bb40cb2) (Version: 1.2.0 - jah@raider.io)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8586 - Realtek Semiconductor Corp.)
RGB Fusion (HKLM-x32\...\{FFA8F1FA-3C2C-4A94-AC0B-0DF47272C25F}) (Version: 3.19.0402.1 - GIGABYTE)
RivaTuner Statistics Server 7.2.3 (HKLM-x32\...\RTSS) (Version: 7.2.3 - Unwinder)
SIV (HKLM-x32\...\{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.18.0918.1 - GIGABYTE) Hidden
SIV (HKLM-x32\...\InstallShield_{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.18.0918.1 - GIGABYTE)
Spotify (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Spotify) (Version: 1.1.22.633.g1bab253a - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Streamlabs OBS 0.14.1 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.14.1 - General Workings, Inc.)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.2.5 - TeamSpeak Systems GmbH)
TFTactics (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\Overwolf_delfmdadipjjmpajblkalfkbebcbldbknecigjpc) (Version: 0.1.4 - Overwolf app)
TradeSkillMaster Application version 1.0 (HKLM-x32\...\{c44da794-b956-4d50-8733-346d56ae63c7}_is1) (Version: 1.0 - TradeSkillMaster)
Twitch (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Uplay (HKLM-x32\...\Uplay) (Version: 86.0 - Ubisoft)
Warcraft Logs Uploader 2.0.4 (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\bcc11bd8-bf2f-5f00-925b-921594bc2ca4) (Version: 2.0.4 - warcraftlogs)
Warcraft Logs Uploader 4.0.8 (HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\{bcc11bd8-bf2f-5f00-925b-921594bc2ca4}) (Version: 4.0.8 - warcraftlogs)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
World of Warcraft Classic (HKLM-x32\...\World of Warcraft Classic) (Version: - Blizzard Entertainment)
World of Warcraft Public Test (HKLM-x32\...\World of Warcraft Public Test) (Version: - Blizzard Entertainment)
X-Mouse Button Control 2.18.7 (HKLM-x32\...\X-Mouse Button Control) (Version: 2.18.7 - Highresolution Enterprises)

Packages:
=========
Code Writer -> C:\Program Files\WindowsApps\ActiproSoftwareLLC.562882FEEB491_4.1.39.0_x64__24pqs290vpjk0 [2019-08-23] (Actipro Software LLC)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-04-28] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-04-28] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.34.20074.0_x64__8wekyb3d8bbwe [2020-01-14] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-10] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-18] (Microsoft Corporation) [MS Ad]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.3.180.0_x64__dt26b99r8h8gj [2019-11-28] (Realtek Semiconductor Corp)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-03-19] () [File not signed]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\AVAST Software\Avast\ashShell.dll [2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\AVAST Software\Avast\ashShell.dll [2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\AVAST Software\Avast\ashShell.dll [2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\Program Files\Intel\OptaneShellExtensions\OptaneShellExt.dll [2019-03-19] () [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-12-24] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\AVAST Software\Avast\ashShell.dll [2019-10-03] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2020-01-15 12:12 - 2020-01-15 12:12 - 000111616 _____ () [File not signed] \\?\C:\Users\David Hynek\AppData\Local\Temp\5635e943-f496-4586-8041-7ac92a5345e1.tmp.node
2020-01-15 12:12 - 2020-01-15 12:12 - 000424448 _____ () [File not signed] \\?\C:\Users\David Hynek\AppData\Local\Temp\5fafcd72-75a0-48de-ab74-d609d9268ffc.tmp.node
2020-01-15 12:12 - 2020-01-15 12:12 - 001049600 _____ () [File not signed] \\?\C:\Users\David Hynek\AppData\Local\Temp\620b8cc4-6e08-4c8e-8b7d-7b335aeb00e8.tmp.node
2020-01-15 12:12 - 2020-01-15 12:12 - 000140288 _____ () [File not signed] \\?\C:\Users\David Hynek\AppData\Local\Temp\6d1b99db-de7c-45d9-ace3-2042d0c0c5c6.tmp.node
2020-01-15 12:12 - 2020-01-15 12:12 - 000174080 _____ () [File not signed] \\?\C:\Users\David Hynek\AppData\Local\Temp\88a04266-acda-4bb9-a407-d9da1e183752.tmp.node
2020-01-15 12:12 - 2020-01-15 12:12 - 001111040 _____ () [File not signed] \\?\C:\Users\David Hynek\AppData\Local\Temp\e2b7ab6b-898d-4cfb-ac50-093406a13999.tmp.node
2018-10-24 10:08 - 2018-10-24 10:08 - 000879616 _____ () [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\Aac3572DramHal_x86.dll
2019-11-09 23:53 - 2020-01-10 12:48 - 001990144 _____ () [File not signed] C:\Users\David Hynek\AppData\Local\Blitz\current\ffmpeg.dll
2019-12-13 17:49 - 2020-01-10 12:48 - 000259584 _____ () [File not signed] C:\Users\David Hynek\AppData\Local\Blitz\current\swiftshader\libegl.dll
2019-12-13 17:49 - 2020-01-10 12:48 - 003044352 _____ () [File not signed] C:\Users\David Hynek\AppData\Local\Blitz\current\swiftshader\libglesv2.dll
2020-01-15 12:25 - 2020-01-15 12:25 - 000080114 _____ () [File not signed] C:\Users\David Hynek\AppData\Local\Temp\JNativeHook-6226022989342293533.dll
2019-10-26 12:04 - 2019-10-26 12:04 - 000232960 _____ () [File not signed] D:\MSI Afterburner\RTCore.dll
2019-10-26 12:03 - 2019-10-26 12:03 - 000057344 _____ () [File not signed] D:\MSI Afterburner\RTFC.dll
2019-10-26 12:04 - 2019-10-26 12:04 - 000650240 _____ () [File not signed] D:\MSI Afterburner\RTHAL.dll
2019-10-26 12:03 - 2019-10-26 12:03 - 000074240 _____ () [File not signed] D:\MSI Afterburner\RTMUI.dll
2019-10-26 12:03 - 2019-10-26 12:03 - 000369664 _____ () [File not signed] D:\MSI Afterburner\RTUI.dll
2019-04-28 18:24 - 2017-05-20 02:19 - 000114176 _____ () [File not signed] D:\Path of Building\lcurl.dll
2019-04-28 18:24 - 2017-01-31 00:06 - 000346624 _____ () [File not signed] D:\Path of Building\lua51.dll
2019-04-28 18:24 - 2017-12-07 20:13 - 000747008 _____ () [File not signed] D:\Path of Building\SimpleGraphic.dll
2019-02-25 15:33 - 2019-02-25 15:33 - 000154624 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\yccV2.dll
2019-02-25 15:33 - 2019-02-25 15:33 - 000154624 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\yccV2.DLL
2019-03-04 16:40 - 2019-03-04 16:40 - 000287232 _____ (GIGABYTE Technology Co.,Ltd.) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\GVBIOSLib.dll
2018-12-19 17:05 - 2018-12-19 17:05 - 000430592 _____ (GIGABYTE Technology Co.,Ltd.) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\GVDisplay.dll
2018-09-11 18:53 - 2018-09-11 18:53 - 000237056 _____ (GIGABYTE Technology Co.,Ltd.) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\GvIllumLib.dll
2019-03-21 16:35 - 2019-03-21 16:35 - 002058240 _____ (GIGABYTE) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\AACDDR_Lib.dll
2019-03-19 15:57 - 2019-03-19 15:57 - 000126976 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\OptaneShellExtensions\iaStorAfsServiceApi.dll
2018-10-29 10:25 - 2018-10-29 10:25 - 000372736 _____ (Intel(R) Corporation) [File not signed] C:\Windows\system32\NCS2Setp.dll
2016-12-07 19:44 - 2016-12-07 19:44 - 000373248 _____ (IntelleSoft) [File not signed] C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\BugTrapU-x64.dll
2020-01-15 12:25 - 2020-01-15 12:25 - 000207360 ____N (Java(TM) Native Access (JNA)) [File not signed] C:\Users\David Hynek\AppData\Local\Temp\jna--197957129\jna6711245109928035339.dll
2019-04-28 18:24 - 2017-04-19 17:33 - 000473672 _____ (Stefan Kanthak -> The curl library, hxxps://curl.haxx.se/) [File not signed] D:\Path of Building\libcurl.dll
2019-04-28 09:08 - 2019-04-28 09:08 - 000023040 _____ (Synaptics Incorporated.) [File not signed] C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.3.180.0_x64__dt26b99r8h8gj\SynAudSrvDll.dll
2017-10-05 14:26 - 2017-10-05 14:26 - 002247168 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\CRtive.dll
2018-12-08 07:22 - 2018-12-08 07:22 - 002059264 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\GHidApi.dll
2019-03-28 18:32 - 2019-03-28 18:32 - 000386048 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\GvLedLib.dll
2019-04-02 09:14 - 2019-04-02 09:14 - 002099712 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\SMBCtrl.dll
2017-07-24 15:36 - 2017-07-24 15:36 - 000481792 _____ (TODO: <公司名稱>) [File not signed] C:\Program Files (x86)\GIGABYTE\RGBFusion\SDKDLL.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\David Hynek\Data aplikací:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]
AlternateDataStreams: C:\Users\David Hynek\OneDrive:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity [130]
AlternateDataStreams: C:\Users\David Hynek\AppData\Roaming:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-994775172-3552113607-2548991599-1001\...\localhost -> localhost

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-09-15 08:31 - 2018-09-15 08:31 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\NVIDIA Corporation\NVIDIA NGX;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-994775172-3552113607-2548991599-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\David Hynek\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\316696.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{E4460200-D8F8-4674-89A3-C907CCA70A25}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CF135468-1721-4884-9975-0A3D2BA85F3D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{1C98354A-3192-4FB5-9555-533E8F0F55F6}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{0738DE21-1378-4CE5-B818-24F3388CBFDF}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{E03A5199-CFAD-4D9B-9724-E4976F926686}] => (Allow) LPort=9009
FirewallRules: [{2DCDFEC9-D5D9-47E9-A526-DCD66CE6BE0B}] => (Allow) LPort=9009
FirewallRules: [{15811EC0-129F-45F5-9EB2-43DD9AB758C8}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{B3FB4712-033F-45DF-AB43-58CA54097EFB}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
FirewallRules: [UDP Query User{83C7257D-9D49-4530-824C-AE7630FAAA0C}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
FirewallRules: [{0FC6BCEE-17E8-463F-8CA5-3FDBC4D1706A}] => (Allow) LPort=9009
FirewallRules: [{27B19139-D5F0-4453-8270-AB024AD25FE3}] => (Allow) LPort=9009
FirewallRules: [{A6AA4F33-1253-47CF-8994-74D855FAC4E3}] => (Allow) LPort=9009
FirewallRules: [{6A04AEAB-1C3C-4432-8268-AB7853776839}] => (Allow) LPort=9009
FirewallRules: [{0909E4A3-4720-4A3C-846E-D575A6ADA172}] => (Allow) LPort=9009
FirewallRules: [{37713443-23E7-40BB-AEBD-66270F21169E}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{4A163C9A-3CC5-4A19-B211-2DC0C4AF5711}D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{187CDEBE-3D83-4FF6-96AC-1483E64BCC5A}D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{68C838FC-7087-4FD6-8B79-14F6CAE8D6F9}D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{DA5FA6ED-8E54-4D80-AA26-2DF29C1B88CE}D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{49DA017E-727C-4805-9789-9F7F07D1FC52}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{E76C79DF-2B96-40CF-8CA6-C19AD5C238D8}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{A6B921F0-8BC6-4C08-A005-CF81DB615DBD}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{57D7205B-1687-4FC7-BF14-639D66CC957D}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [TCP Query User{0855B462-3291-434D-952E-4EAA3D202EB4}C:\users\david hynek\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\david hynek\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{DF4ED434-670F-4ED1-91CB-98ADE1508B03}C:\users\david hynek\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\david hynek\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4B961E8C-3877-46AE-8CE7-DF285188DE46}] => (Allow) C:\Users\David Hynek\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{BD32CB5D-629D-4A3F-AD88-E49B97B2998D}] => (Allow) C:\Users\David Hynek\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{BFE956D6-5012-4140-9282-56973C71C528}C:\overwatch\overwatch.exe] => (Allow) C:\overwatch\overwatch.exe No File
FirewallRules: [UDP Query User{D9C14D29-C408-4F57-9FDF-0F6AD9588D3C}C:\overwatch\overwatch.exe] => (Allow) C:\overwatch\overwatch.exe No File
FirewallRules: [{D11EDE88-64B1-4462-9158-F2C97E083D88}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{EA1BC9CA-2FF4-4B9B-B6E7-CA4B4A7D8322}D:\heroes of the storm\versions\base73493\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base73493\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{4D5521CD-20CD-4093-BBDA-6CF4C99F6752}D:\heroes of the storm\versions\base73493\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base73493\heroesofthestorm_x64.exe No File
FirewallRules: [{DF553598-E53A-4D0D-AA2B-0921C8B30FB8}] => (Allow) LPort=9009
FirewallRules: [{172DA29F-85E1-4AF0-AC3E-858E2367A56C}] => (Allow) LPort=9009
FirewallRules: [{EF7ACCAC-B90B-4355-A77A-D81F4C484F72}] => (Allow) LPort=9009
FirewallRules: [{BA65679B-05AE-40E2-893E-278C26C503FB}] => (Allow) LPort=9009
FirewallRules: [{DD9005A2-C444-4380-A43C-32DA897D123B}] => (Allow) LPort=9009
FirewallRules: [{45E6A2F0-52BC-416F-99C2-933B669D7B3F}] => (Allow) LPort=9009
FirewallRules: [{0A646DBE-0201-4170-8F1B-E5E8357B6F2A}] => (Allow) LPort=9009
FirewallRules: [{76F8FCF1-0163-46CA-BAA3-F5DD7FF1E467}] => (Allow) LPort=9009
FirewallRules: [{E9A47F5F-6E88-4B60-BC8D-24F47807D8D1}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{696DF624-7A97-44DA-9C71-0A7A09BB8769}D:\heroes of the storm\versions\base73662\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base73662\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{9B622421-B298-4BEB-B409-89F5591D23DD}D:\heroes of the storm\versions\base73662\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base73662\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{4B4B9B0D-C7F0-4BC0-AC4E-79372E1A3B80}C:\world of warcraft\_retail_\utils\wowvoiceproxy.exe] => (Allow) C:\world of warcraft\_retail_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{979BDA58-AAB2-4EBF-8998-4BBB333B9F16}C:\world of warcraft\_retail_\utils\wowvoiceproxy.exe] => (Allow) C:\world of warcraft\_retail_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{143EFF28-A06A-4757-9A0D-ABC33F960729}] => (Allow) LPort=9009
FirewallRules: [{3CF4218A-3397-4152-B295-9416277F1FED}] => (Allow) LPort=9009
FirewallRules: [{C47EC4FC-29F0-4AC3-A227-3BC6AE40DACB}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{2A548190-97D9-4104-8245-5AE0F9D99611}D:\origin games\apex\r5apex.exe] => (Allow) D:\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [UDP Query User{F9C1E24A-F17B-46BF-92C1-A1A7F591BB61}D:\origin games\apex\r5apex.exe] => (Allow) D:\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [{1BEEEC29-FF83-4075-A7E2-E444557FF320}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F245A0BA-C1BE-4FF1-9FE4-23B3F849F8C4}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8D3F99BD-34D2-44A8-9437-2002426444D8}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B539E3E6-F27C-43AB-BE13-4766EE5307B8}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A9618CA9-DC43-4E36-A49D-69261F636897}] => (Allow) LPort=9009
FirewallRules: [{83F9BE79-ECFB-405A-92BB-8911EBBEF598}] => (Allow) LPort=9009
FirewallRules: [{CEA272C0-9B56-47F6-B3AA-05E679DC4C58}] => (Allow) LPort=9009
FirewallRules: [{D35D5F3E-4F0C-41B4-BE3B-445E9C51F992}] => (Allow) LPort=9009
FirewallRules: [{B83A7325-3BFB-4898-A8CD-C97D29393F65}] => (Allow) LPort=9009
FirewallRules: [{56AF4973-A23B-4591-90E5-8030FB6006E4}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{3AB4FFEA-274E-4618-9FD2-9F71F84B0DE0}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{EA7B8E5E-F9B5-4039-859A-B6129E4E8A73}D:\heroes of the storm\versions\base74238\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base74238\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{2697DB33-A03C-4E29-924B-DA71E440BD61}D:\heroes of the storm\versions\base74238\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base74238\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{FB0461F4-3510-4356-A5FA-CB1EE9837304}D:\spellbreak\g3\binaries\win64\spellbreak.exe] => (Allow) D:\spellbreak\g3\binaries\win64\spellbreak.exe No File
FirewallRules: [UDP Query User{775AFC79-8D1E-4592-8C93-E923378C0E17}D:\spellbreak\g3\binaries\win64\spellbreak.exe] => (Allow) D:\spellbreak\g3\binaries\win64\spellbreak.exe No File
FirewallRules: [TCP Query User{6F0B347E-3B11-479C-B875-9484B9C66E95}D:\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe] => (Allow) D:\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe No File
FirewallRules: [UDP Query User{C9BF3583-D9DB-47C8-98B7-2817D60191CB}D:\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe] => (Allow) D:\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe No File
FirewallRules: [{5931BB60-1E39-42FA-9630-DFA54952C993}] => (Allow) LPort=9009
FirewallRules: [{91CFCF52-FEAC-4A38-B4B3-F72443DC3007}] => (Allow) LPort=9009
FirewallRules: [{2FB8FB5E-4C61-462F-A7CD-D02F3F5141B9}] => (Allow) LPort=9009
FirewallRules: [{24630393-E746-4C58-B432-905C363C5387}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{858D0080-986F-4A87-B60C-FCEF6452D49A}D:\heroes of the storm\versions\base74739\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base74739\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{81A89D4E-5288-491A-A0A2-72A01A12EE81}D:\heroes of the storm\versions\base74739\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base74739\heroesofthestorm_x64.exe No File
FirewallRules: [{2E01E808-67B8-48B3-B414-C3379336F017}] => (Allow) LPort=9009
FirewallRules: [{959415FB-8F9E-4B09-88D5-017F332F8421}] => (Allow) LPort=9009
FirewallRules: [{85BD08D8-82AD-4BC4-ABB4-B0C0A4B2A1E5}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{D8899AD9-C3A0-4B72-BA2D-752E42E650DD}D:\heroes of the storm\versions\base75132\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base75132\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{DF800D10-6153-4906-BA08-5F39C4B02C25}D:\heroes of the storm\versions\base75132\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base75132\heroesofthestorm_x64.exe No File
FirewallRules: [{F8C617B0-E81B-4D03-A21E-EC87FCB44833}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{63FFD340-38C6-4E1E-A129-90F6EC74516F}C:\overwatch\_retail_\overwatch.exe] => (Allow) C:\overwatch\_retail_\overwatch.exe No File
FirewallRules: [UDP Query User{7EFA5820-E283-4281-8250-AA1C88CA5987}C:\overwatch\_retail_\overwatch.exe] => (Allow) C:\overwatch\_retail_\overwatch.exe No File
FirewallRules: [TCP Query User{86A336B6-45DA-4D22-8EBE-2C2834B62103}D:\ubisoft\ubisoft game launcher\games\ghost recon breakpoint\grb.exe] => (Allow) D:\ubisoft\ubisoft game launcher\games\ghost recon breakpoint\grb.exe No File
FirewallRules: [UDP Query User{530AA404-C594-4FE5-82ED-F482B2FB5AC5}D:\ubisoft\ubisoft game launcher\games\ghost recon breakpoint\grb.exe] => (Allow) D:\ubisoft\ubisoft game launcher\games\ghost recon breakpoint\grb.exe No File
FirewallRules: [{0E2D956F-D52D-42A9-A82F-AD393882CC9A}] => (Allow) LPort=9009
FirewallRules: [{75E77101-129E-4770-B91C-5F3F7485A4D2}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{1CFECDE2-BD8A-45A1-9FE3-A62DAAFBF7BA}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{13562350-2404-4723-A296-16433D5296E6}] => (Allow) LPort=9009
FirewallRules: [{F2B1713C-25A6-4BDB-B5AA-1F2890207E33}] => (Allow) LPort=9009
FirewallRules: [{DD92D7FA-06ED-43B2-9E42-55D73B30E66D}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{6CB5AFDE-0EE1-4EFA-B3FF-6118A03CEC59}D:\world of warcraft\_classic_\utils\wowvoiceproxy.exe] => (Allow) D:\world of warcraft\_classic_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{924612A4-63E6-4AD0-B801-BC97D16250A3}D:\world of warcraft\_classic_\utils\wowvoiceproxy.exe] => (Allow) D:\world of warcraft\_classic_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{E62862F4-88AE-436B-9E3C-DF3D83D22996}D:\heroes of the storm\versions\base75589\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base75589\heroesofthestorm_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [UDP Query User{65D8107F-419F-4ADE-B7D3-C563C2281011}D:\heroes of the storm\versions\base75589\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base75589\heroesofthestorm_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [{7654ECA3-E827-48A8-91CF-29594F035E88}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{A0F78DFA-952A-40DA-ACAA-FDC389B0D7CA}D:\hearthstone\hearthstone.exe] => (Allow) D:\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [UDP Query User{6A284015-A5FE-451A-ACFD-C2A58300B3AF}D:\hearthstone\hearthstone.exe] => (Allow) D:\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [{11FEACA3-7B17-4C72-B9E7-F2DDB3EA1B15}] => (Allow) LPort=9009
FirewallRules: [{2626EE50-671D-4E2B-B251-D603C64A6113}] => (Allow) D:\Riot Games\League of Legends\LeagueClient.exe (Riot Games, Inc. -> )
FirewallRules: [{2E2D00BD-89AF-4DF7-AA30-C91AA5B94470}] => (Allow) D:\Riot Games\League of Legends\LeagueClient.exe (Riot Games, Inc. -> )
FirewallRules: [TCP Query User{C372174F-C6FC-4616-990F-DEE59BEFACD6}D:\riot games\league of legends\game\league of legends.exe] => (Allow) D:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{3685A82B-C8E1-42C5-9F27-1F0D91C8DBD6}D:\riot games\league of legends\game\league of legends.exe] => (Allow) D:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> )
FirewallRules: [{79BCD827-B558-4709-AE3E-86B687C7A250}] => (Allow) LPort=9009
FirewallRules: [{31010383-C929-4102-B4CB-1EF71467932F}] => (Allow) LPort=9009
FirewallRules: [{D57AAB80-23B6-48FE-A0AD-D89BFB746C85}] => (Allow) LPort=9009
FirewallRules: [{D1EAAE3A-C629-4626-8998-67B4656E642B}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{27A6BDC9-261D-4005-82EE-813A9E8C9F0B}D:\heroes of the storm\versions\base76124\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76124\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{CC8E371C-A493-4A7C-9381-6235865C3FBD}D:\heroes of the storm\versions\base76124\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76124\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{DFC6D8CB-95C3-4F0A-B5A7-BB563E3D3FBE}D:\heroes of the storm\versions\base76437\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76437\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{8F3B792C-2A40-4907-BFEA-65BB29BF9BE0}D:\heroes of the storm\versions\base76437\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76437\heroesofthestorm_x64.exe No File
FirewallRules: [{50A3B8CD-AAA4-4556-B3E0-1D7141CEBD69}] => (Allow) LPort=9009
FirewallRules: [{430B3BA8-C973-406D-B28F-124043774B66}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{0C538D14-4B87-4657-9B75-60C87C59561F}D:\openshot video editor\launch.exe] => (Allow) D:\openshot video editor\launch.exe No File
FirewallRules: [UDP Query User{1562D0F7-0956-4917-8ABF-9DBE95D61879}D:\openshot video editor\launch.exe] => (Allow) D:\openshot video editor\launch.exe No File
FirewallRules: [TCP Query User{0DB8C8B2-7952-477B-97CB-893D3F989353}D:\heroes of the storm\versions\base76517\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76517\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{9A70F9B6-CB29-4EB6-9FAB-3AC0EC3B7605}D:\heroes of the storm\versions\base76517\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76517\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{C12AA359-19D6-40F7-8FB5-0DCC88803891}D:\heroes of the storm\versions\base76781\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76781\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{751A16F4-6366-41F9-8465-87D8A057937A}D:\heroes of the storm\versions\base76781\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76781\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{436FB514-1439-4D23-BD14-63C823B5CF78}D:\heroes of the storm\versions\base76893\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76893\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{3BBF8298-AD2F-4D03-9F23-673632D4040A}D:\heroes of the storm\versions\base76893\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76893\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{BE1E1DF9-2417-40DE-B0B3-9BB996908C0C}D:\heroes of the storm public test\versions\base76268\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm public test\versions\base76268\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{41172E1B-0538-4120-AEEA-45C2DAE2E1CC}D:\heroes of the storm public test\versions\base76268\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm public test\versions\base76268\heroesofthestorm_x64.exe No File
FirewallRules: [{7C3F98AE-0B8A-4E8A-A2FE-7F3E3327EF62}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FDE263EF-D67A-4821-9511-D4BAEE17888E}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{032077D1-273C-4807-B4BF-88A32BA1CC01}C:\users\david hynek\appdata\local\blitz\current\blitz.exe] => (Allow) C:\users\david hynek\appdata\local\blitz\current\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.)
FirewallRules: [UDP Query User{A0B4778B-6724-43DB-A5CF-9853B9D88641}C:\users\david hynek\appdata\local\blitz\current\blitz.exe] => (Allow) C:\users\david hynek\appdata\local\blitz\current\blitz.exe (Swift Media Entertainment, Inc. -> Blitz Inc.)
FirewallRules: [TCP Query User{9CE9D299-69EF-4715-BBF3-94074B4FA077}D:\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe] => (Allow) D:\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe (PUBG CORPORATION -> PUBG Works)
FirewallRules: [UDP Query User{053A5613-DE54-411D-82A5-F4897ABCD923}D:\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe] => (Allow) D:\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe (PUBG CORPORATION -> PUBG Works)
FirewallRules: [TCP Query User{20BE661C-FDDA-47C4-B9B0-D76EABB8388E}D:\heroes of the storm\versions\base77205\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base77205\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{8FD38498-7E85-4223-903A-F945F5F62EAC}D:\heroes of the storm\versions\base77205\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base77205\heroesofthestorm_x64.exe No File
FirewallRules: [{4ECED490-BD68-4235-A5EB-C684BA7EB83F}] => (Allow) LPort=9009
FirewallRules: [{810F18A7-631F-422E-B140-FF8D88873526}] => (Allow) LPort=9009
FirewallRules: [{EA385262-161A-4BB0-AEF8-BDF4C630C996}] => (Allow) LPort=9009
FirewallRules: [{8202B220-A98E-4149-B2AC-FBA3028D8468}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{A903AE1C-3BEA-41FF-B8BA-D057B5EC942B}D:\heroes of the storm\versions\base77406\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base77406\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{C36F9DF8-B76B-4EDA-89BF-E400A1606877}D:\heroes of the storm\versions\base77406\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base77406\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{48CC1429-5FB0-4A25-B235-05A53163998D}D:\heroes of the storm public test\versions\base77435\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm public test\versions\base77435\heroesofthestorm_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [UDP Query User{8631D5DE-1487-4BB5-BB50-C785BEE48F1D}D:\heroes of the storm public test\versions\base77435\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm public test\versions\base77435\heroesofthestorm_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [{47C0D660-7D88-4361-91D0-6BF14916CD5E}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{B96AD29C-FC47-46E3-890A-55C944871F4E}D:\overwatch\_retail_\overwatch.exe] => (Allow) D:\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{86A8832F-C937-4BE9-8FAE-D4CBDD64BB42}D:\overwatch\_retail_\overwatch.exe] => (Allow) D:\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{AA8BAE71-32B7-4E95-A107-71501041FCD3}D:\heroes of the storm\versions\base77548\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base77548\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{48F901C1-292B-4B06-AAE0-C7643C06EB2A}D:\heroes of the storm\versions\base77548\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base77548\heroesofthestorm_x64.exe No File
FirewallRules: [{C82E0285-6E64-44B0-A2B2-C3CE3F737FD1}] => (Allow) LPort=9009
FirewallRules: [{A14876D4-9644-482C-BC59-3E41746AB2B9}] => (Allow) LPort=9009
FirewallRules: [TCP Query User{397051C7-F356-418B-A23A-186F81FA8EB5}D:\heroes of the storm\versions\base77692\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base77692\heroesofthestorm_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [UDP Query User{1E733919-9244-4ED6-AE3C-47191B40C37D}D:\heroes of the storm\versions\base77692\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base77692\heroesofthestorm_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [{D883609F-D519-4928-BE8D-5D59D91F4A1D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{4A69E99A-9330-4BC4-A9CC-C1CECA9771A1}] => (Allow) LPort=9009
FirewallRules: [{D07953FD-4EFF-4B3A-B300-2CA3138769B8}] => (Allow) LPort=9009
FirewallRules: [{F51139F2-17B9-4174-8894-E42E32222DD7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{6891CC99-908A-49C1-8CE1-672E626AD595}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BEED0DD0-8513-4BDF-BAA7-92C209EF5CC9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B806FCB4-F60E-413C-BBBC-FF6E4D15FE63}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{25BC78CD-FFD8-4CD1-AC4C-50355D019EC7}] => (Allow) D:\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{3A406A6A-89DF-4020-BA7C-7A147B7411F3}] => (Allow) D:\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{555DC1FF-E90D-4EE4-AB68-DB7F35AAAEB8}] => (Allow) LPort=9009
FirewallRules: [{FDF24605-7062-482A-9D82-3EDAA33B50CC}] => (Allow) LPort=9009
FirewallRules: [{8C4ACEB5-024C-4631-B52B-0BC5A78E6465}] => (Allow) LPort=9009
FirewallRules: [{23EECF9F-AD40-4DE9-A5D1-EEC29FE16537}] => (Allow) LPort=9009
FirewallRules: [{6E38216A-3FD3-43B4-9B2D-F0C45C893892}] => (Allow) LPort=9009
FirewallRules: [{D25BCC7D-142F-42B2-8BC6-1A3E31B35B72}] => (Allow) LPort=9009
FirewallRules: [{E4D57339-FF78-489D-9958-C414B0283074}] => (Allow) LPort=9009
FirewallRules: [{6EB9ABA9-D303-4C7E-94B3-3CB516D18229}] => (Allow) LPort=9009
FirewallRules: [{08DA8708-41B9-4980-B3B6-DAA609E929C5}] => (Allow) LPort=9009

==================== Restore Points =========================

12-01-2020 16:58:10 Naplánovaný kontrolní bod
14-01-2020 23:21:32 Nainstalováno rozhraní DirectX

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (01/15/2020 12:05:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: gpu_stressor.exe, verze: 0.0.0.0, časové razítko: 0x5c48c60b
Název chybujícího modulu: gpu_stressor.exe, verze: 0.0.0.0, časové razítko: 0x5c48c60b
Kód výjimky: 0xc0000409
Posun chyby: 0x0000000000198f41
ID chybujícího procesu: 0x169c
Čas spuštění chybující aplikace: 0x01d5cb92de096879
Cesta k chybující aplikaci: D:\MSI Afterburner\Bundle\OCScanner\gpu_stressor.exe
Cesta k chybujícímu modulu: D:\MSI Afterburner\Bundle\OCScanner\gpu_stressor.exe
ID zprávy: 277a5c38-1d3a-4324-8b79-bfa6ca3b63d6
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/15/2020 11:41:10 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: gpu_stressor.exe, verze: 0.0.0.0, časové razítko: 0x5c48c60b
Název chybujícího modulu: gpu_stressor.exe, verze: 0.0.0.0, časové razítko: 0x5c48c60b
Kód výjimky: 0xc0000409
Posun chyby: 0x0000000000198f41
ID chybujícího procesu: 0x24e4
Čas spuštění chybující aplikace: 0x01d5cb8f28db8c8c
Cesta k chybující aplikaci: D:\MSI Afterburner\Bundle\OCScanner\gpu_stressor.exe
Cesta k chybujícímu modulu: D:\MSI Afterburner\Bundle\OCScanner\gpu_stressor.exe
ID zprávy: f6c006fb-1e58-4350-a496-c7c526c4855b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/15/2020 11:16:00 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program MSIOCScanner_x64.exe verze 1.6.0.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 2ca8

Čas spuštění: 01d5cb815e1b234d

Čas ukončení: 2

Cesta k aplikaci: D:\MSI Afterburner\Bundle\OCScanner\MSIOCScanner_x64.exe

ID hlášení: 6709ba46-efd5-414b-a192-44af5f5757ae

Úplný název balíčku s chybou:

ID aplikace relativní podle balíčku s chybou:

Typ zablokování: Unknown

Error: (01/15/2020 10:22:15 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: gpu_stressor.exe, verze: 0.0.0.0, časové razítko: 0x5c48c60b
Název chybujícího modulu: gpu_stressor.exe, verze: 0.0.0.0, časové razítko: 0x5c48c60b
Kód výjimky: 0xc0000409
Posun chyby: 0x0000000000198f41
ID chybujícího procesu: 0x169c
Čas spuštění chybující aplikace: 0x01d5cb8464d2bc98
Cesta k chybující aplikaci: D:\MSI Afterburner\Bundle\OCScanner\gpu_stressor.exe
Cesta k chybujícímu modulu: D:\MSI Afterburner\Bundle\OCScanner\gpu_stressor.exe
ID zprávy: 976e300d-7ad0-4e99-941c-e3e6f9add97c
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/15/2020 10:15:44 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: gpu_stressor.exe, verze: 0.0.0.0, časové razítko: 0x5c48c60b
Název chybujícího modulu: gpu_stressor.exe, verze: 0.0.0.0, časové razítko: 0x5c48c60b
Kód výjimky: 0xc0000409
Posun chyby: 0x0000000000198f41
ID chybujícího procesu: 0x31cc
Čas spuštění chybující aplikace: 0x01d5cb835252da74
Cesta k chybující aplikaci: D:\MSI Afterburner\Bundle\OCScanner\gpu_stressor.exe
Cesta k chybujícímu modulu: D:\MSI Afterburner\Bundle\OCScanner\gpu_stressor.exe
ID zprávy: f6efcd29-bd5b-4186-b95c-f0f46c812032
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/14/2020 10:36:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: NVDisplay.Container.exe, verze: 1.15.2586.5913, časové razítko: 0x5c75252f
Název chybujícího modulu: AppXDeploymentClient.dll, verze: 10.0.17763.737, časové razítko: 0x5b471ea8
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000160dd
ID chybujícího procesu: 0x970
Čas spuštění chybující aplikace: 0x01d5cb1a2f37994f
Cesta k chybující aplikaci: C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
Cesta k chybujícímu modulu: C:\Windows\System32\AppXDeploymentClient.dll
ID zprávy: a86e3211-ce94-4da7-b7f3-ac97410d6121
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/12/2020 06:44:41 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program Microsoft.Photos.exe verze 2019.19081.22010.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 3ea4

Čas spuštění: 01d5c93821633902

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19081.22010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe

ID hlášení: d25a768b-2236-4667-b4b4-040d0f244b2e

Úplný název balíčku s chybou: Microsoft.Windows.Photos_2019.19081.22010.0_x64__8wekyb3d8bbwe

ID aplikace relativní podle balíčku s chybou: App

Typ zablokování: Quiesce

Error: (01/09/2020 06:34:24 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: OriginWebHelperService.exe, verze: 10.5.57.35162, časové razítko: 0x5df243e3
Název chybujícího modulu: OriginWebHelperService.exe, verze: 10.5.57.35162, časové razítko: 0x5df243e3
Kód výjimky: 0xc0000005
Posun chyby: 0x00099d50
ID chybujícího procesu: 0x12a4
Čas spuštění chybující aplikace: 0x01d5c6ae70ffda08
Cesta k chybující aplikaci: D:\Origin\OriginWebHelperService.exe
Cesta k chybujícímu modulu: D:\Origin\OriginWebHelperService.exe
ID zprávy: c0f6ffa1-c956-4239-8e4b-4968d1416d3e
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (01/15/2020 01:17:22 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-KR0LJ7U)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-KR0LJ7U\David Hynek (SID: S-1-5-21-994775172-3552113607-2548991599-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/15/2020 12:12:02 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-KR0LJ7U)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-KR0LJ7U\David Hynek (SID: S-1-5-21-994775172-3552113607-2548991599-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/15/2020 12:11:51 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-KR0LJ7U)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-KR0LJ7U\David Hynek (SID: S-1-5-21-994775172-3552113607-2548991599-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/15/2020 12:11:45 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-KR0LJ7U)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-KR0LJ7U\David Hynek (SID: S-1-5-21-994775172-3552113607-2548991599-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/15/2020 12:11:05 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1115 při pokusu o spuštění služby SecurityHealthService s argumenty Není k dispozici za účelem spuštění serveru:
{2D15188C-D298-4E10-83B2-64666CCBEBBD}

Error: (01/15/2020 12:10:09 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-KR0LJ7U)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-KR0LJ7U\David Hynek (SID: S-1-5-21-994775172-3552113607-2548991599-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/15/2020 12:08:40 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-KR0LJ7U)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-KR0LJ7U\David Hynek (SID: S-1-5-21-994775172-3552113607-2548991599-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/15/2020 12:08:05 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-KR0LJ7U)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-KR0LJ7U\David Hynek (SID: S-1-5-21-994775172-3552113607-2548991599-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.


CodeIntegrity:
===================================

Date: 2020-01-15 15:13:43.454
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-01-15 15:13:43.452
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-01-15 15:13:16.696
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-01-15 15:13:16.695
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-01-15 15:13:13.661
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-01-15 15:13:13.659
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

Date: 2020-01-15 15:10:27.153
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-01-15 15:10:27.151
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. F7 03/14/2019
Motherboard: Gigabyte Technology Co., Ltd. Z390 GAMING X-CF
Processor: Intel(R) Core(TM) i7-8700 CPU @ 3.20GHz
Percentage of memory in use: 42%
Total physical RAM: 16315.38 MB
Available physical RAM: 9367.84 MB
Total Virtual: 26555.38 MB
Available Virtual: 15581.92 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.35 GB) (Free:41.45 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Data) (Fixed) (Total:1863.01 GB) (Free:1606.38 GB) NTFS


==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 838D87BF)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 3B3FFE23)
Partition 1: (Active) - (Size=232.3 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 111879
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu... (možný problém)

#7 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
AlternateDataStreams: C:\Users\David Hynek\Data aplikací:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]
AlternateDataStreams: C:\Users\David Hynek\OneDrive:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity [130]
AlternateDataStreams: C:\Users\David Hynek\AppData\Roaming:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]
FirewallRules: [{A6B921F0-8BC6-4C08-A005-CF81DB615DBD}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{57D7205B-1687-4FC7-BF14-639D66CC957D}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [TCP Query User{BFE956D6-5012-4140-9282-56973C71C528}C:\overwatch\overwatch.exe] => (Allow) C:\overwatch\overwatch.exe No File
FirewallRules: [UDP Query User{D9C14D29-C408-4F57-9FDF-0F6AD9588D3C}C:\overwatch\overwatch.exe] => (Allow) C:\overwatch\overwatch.exe No File
FirewallRules: [TCP Query User{EA7B8E5E-F9B5-4039-859A-B6129E4E8A73}D:\heroes of the storm\versions\base74238\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base74238\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{2697DB33-A03C-4E29-924B-DA71E440BD61}D:\heroes of the storm\versions\base74238\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base74238\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{FB0461F4-3510-4356-A5FA-CB1EE9837304}D:\spellbreak\g3\binaries\win64\spellbreak.exe] => (Allow) D:\spellbreak\g3\binaries\win64\spellbreak.exe No File
FirewallRules: [UDP Query User{775AFC79-8D1E-4592-8C93-E923378C0E17}D:\spellbreak\g3\binaries\win64\spellbreak.exe] => (Allow) D:\spellbreak\g3\binaries\win64\spellbreak.exe No File
FirewallRules: [TCP Query User{6F0B347E-3B11-479C-B875-9484B9C66E95}D:\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe] => (Allow) D:\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe No File
FirewallRules: [UDP Query User{C9BF3583-D9DB-47C8-98B7-2817D60191CB}D:\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe] => (Allow) D:\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe No File
FirewallRules: [TCP Query User{858D0080-986F-4A87-B60C-FCEF6452D49A}D:\heroes of the storm\versions\base74739\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base74739\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{81A89D4E-5288-491A-A0A2-72A01A12EE81}D:\heroes of the storm\versions\base74739\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base74739\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{D8899AD9-C3A0-4B72-BA2D-752E42E650DD}D:\heroes of the storm\versions\base75132\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base75132\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{DF800D10-6153-4906-BA08-5F39C4B02C25}D:\heroes of the storm\versions\base75132\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base75132\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{63FFD340-38C6-4E1E-A129-90F6EC74516F}C:\overwatch\_retail_\overwatch.exe] => (Allow) C:\overwatch\_retail_\overwatch.exe No File
FirewallRules: [UDP Query User{7EFA5820-E283-4281-8250-AA1C88CA5987}C:\overwatch\_retail_\overwatch.exe] => (Allow) C:\overwatch\_retail_\overwatch.exe No File
FirewallRules: [TCP Query User{86A336B6-45DA-4D22-8EBE-2C2834B62103}D:\ubisoft\ubisoft game launcher\games\ghost recon breakpoint\grb.exe] => (Allow) D:\ubisoft\ubisoft game launcher\games\ghost recon breakpoint\grb.exe No File
FirewallRules: [UDP Query User{530AA404-C594-4FE5-82ED-F482B2FB5AC5}D:\ubisoft\ubisoft game launcher\games\ghost recon breakpoint\grb.exe] => (Allow) D:\ubisoft\ubisoft game launcher\games\ghost recon breakpoint\grb.exe No File
FirewallRules: [TCP Query User{27A6BDC9-261D-4005-82EE-813A9E8C9F0B}D:\heroes of the storm\versions\base76124\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76124\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{CC8E371C-A493-4A7C-9381-6235865C3FBD}D:\heroes of the storm\versions\base76124\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76124\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{DFC6D8CB-95C3-4F0A-B5A7-BB563E3D3FBE}D:\heroes of the storm\versions\base76437\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76437\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{8F3B792C-2A40-4907-BFEA-65BB29BF9BE0}D:\heroes of the storm\versions\base76437\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76437\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{0C538D14-4B87-4657-9B75-60C87C59561F}D:\openshot video editor\launch.exe] => (Allow) D:\openshot video editor\launch.exe No File
FirewallRules: [UDP Query User{1562D0F7-0956-4917-8ABF-9DBE95D61879}D:\openshot video editor\launch.exe] => (Allow) D:\openshot video editor\launch.exe No File
FirewallRules: [TCP Query User{0DB8C8B2-7952-477B-97CB-893D3F989353}D:\heroes of the storm\versions\base76517\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76517\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{9A70F9B6-CB29-4EB6-9FAB-3AC0EC3B7605}D:\heroes of the storm\versions\base76517\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76517\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{C12AA359-19D6-40F7-8FB5-0DCC88803891}D:\heroes of the storm\versions\base76781\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76781\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{751A16F4-6366-41F9-8465-87D8A057937A}D:\heroes of the storm\versions\base76781\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76781\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{436FB514-1439-4D23-BD14-63C823B5CF78}D:\heroes of the storm\versions\base76893\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76893\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{3BBF8298-AD2F-4D03-9F23-673632D4040A}D:\heroes of the storm\versions\base76893\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76893\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{BE1E1DF9-2417-40DE-B0B3-9BB996908C0C}D:\heroes of the storm public test\versions\base76268\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm public test\versions\base76268\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{41172E1B-0538-4120-AEEA-45C2DAE2E1CC}D:\heroes of the storm public test\versions\base76268\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm public test\versions\base76268\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{20BE661C-FDDA-47C4-B9B0-D76EABB8388E}D:\heroes of the storm\versions\base77205\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base77205\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{8FD38498-7E85-4223-903A-F945F5F62EAC}D:\heroes of the storm\versions\base77205\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base77205\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{A903AE1C-3BEA-41FF-B8BA-D057B5EC942B}D:\heroes of the storm\versions\base77406\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base77406\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{C36F9DF8-B76B-4EDA-89BF-E400A1606877}D:\heroes of the storm\versions\base77406\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base77406\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{AA8BAE71-32B7-4E95-A107-71501041FCD3}D:\heroes of the storm\versions\base77548\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base77548\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{48F901C1-292B-4B06-AAE0-C7643C06EB2A}D:\heroes of the storm\versions\base77548\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base77548\heroesofthestorm_x64.exe No File
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {D650CD26-DEAA-4F98-9F59-063C98325DB2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-28] (Google Inc -> Google LLC)
Task: {FE744EC4-550B-45D1-9844-511254A259F5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-28] (Google Inc -> Google LLC)
CHR Notifications: Default -> hxxps://badoo.com
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Simicek
Návštěvník
Návštěvník
Příspěvky: 163
Registrován: 23 črc 2008 19:09

Re: Prosím o kontrolu... (možný problém)

#8 Příspěvek od Simicek »

Fix result of Farbar Recovery Scan Tool (x64) Version: 15-01-2020
Ran by David Hynek (15-01-2020 19:28:39) Run:1
Running from C:\Users\David Hynek\Desktop
Loaded Profiles: David Hynek (Available Profiles: David Hynek)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
AlternateDataStreams: C:\Users\David Hynek\Data aplikac�:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]
AlternateDataStreams: C:\Users\David Hynek\OneDrive:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity [130]
AlternateDataStreams: C:\Users\David Hynek\AppData\Roaming:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]
FirewallRules: [{A6B921F0-8BC6-4C08-A005-CF81DB615DBD}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{57D7205B-1687-4FC7-BF14-639D66CC957D}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [TCP Query User{BFE956D6-5012-4140-9282-56973C71C528}C:\overwatch\overwatch.exe] => (Allow) C:\overwatch\overwatch.exe No File
FirewallRules: [UDP Query User{D9C14D29-C408-4F57-9FDF-0F6AD9588D3C}C:\overwatch\overwatch.exe] => (Allow) C:\overwatch\overwatch.exe No File
FirewallRules: [TCP Query User{EA7B8E5E-F9B5-4039-859A-B6129E4E8A73}D:\heroes of the storm\versions\base74238\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base74238\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{2697DB33-A03C-4E29-924B-DA71E440BD61}D:\heroes of the storm\versions\base74238\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base74238\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{FB0461F4-3510-4356-A5FA-CB1EE9837304}D:\spellbreak\g3\binaries\win64\spellbreak.exe] => (Allow) D:\spellbreak\g3\binaries\win64\spellbreak.exe No File
FirewallRules: [UDP Query User{775AFC79-8D1E-4592-8C93-E923378C0E17}D:\spellbreak\g3\binaries\win64\spellbreak.exe] => (Allow) D:\spellbreak\g3\binaries\win64\spellbreak.exe No File
FirewallRules: [TCP Query User{6F0B347E-3B11-479C-B875-9484B9C66E95}D:\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe] => (Allow) D:\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe No File
FirewallRules: [UDP Query User{C9BF3583-D9DB-47C8-98B7-2817D60191CB}D:\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe] => (Allow) D:\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe No File
FirewallRules: [TCP Query User{858D0080-986F-4A87-B60C-FCEF6452D49A}D:\heroes of the storm\versions\base74739\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base74739\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{81A89D4E-5288-491A-A0A2-72A01A12EE81}D:\heroes of the storm\versions\base74739\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base74739\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{D8899AD9-C3A0-4B72-BA2D-752E42E650DD}D:\heroes of the storm\versions\base75132\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base75132\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{DF800D10-6153-4906-BA08-5F39C4B02C25}D:\heroes of the storm\versions\base75132\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base75132\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{63FFD340-38C6-4E1E-A129-90F6EC74516F}C:\overwatch\_retail_\overwatch.exe] => (Allow) C:\overwatch\_retail_\overwatch.exe No File
FirewallRules: [UDP Query User{7EFA5820-E283-4281-8250-AA1C88CA5987}C:\overwatch\_retail_\overwatch.exe] => (Allow) C:\overwatch\_retail_\overwatch.exe No File
FirewallRules: [TCP Query User{86A336B6-45DA-4D22-8EBE-2C2834B62103}D:\ubisoft\ubisoft game launcher\games\ghost recon breakpoint\grb.exe] => (Allow) D:\ubisoft\ubisoft game launcher\games\ghost recon breakpoint\grb.exe No File
FirewallRules: [UDP Query User{530AA404-C594-4FE5-82ED-F482B2FB5AC5}D:\ubisoft\ubisoft game launcher\games\ghost recon breakpoint\grb.exe] => (Allow) D:\ubisoft\ubisoft game launcher\games\ghost recon breakpoint\grb.exe No File
FirewallRules: [TCP Query User{27A6BDC9-261D-4005-82EE-813A9E8C9F0B}D:\heroes of the storm\versions\base76124\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76124\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{CC8E371C-A493-4A7C-9381-6235865C3FBD}D:\heroes of the storm\versions\base76124\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76124\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{DFC6D8CB-95C3-4F0A-B5A7-BB563E3D3FBE}D:\heroes of the storm\versions\base76437\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76437\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{8F3B792C-2A40-4907-BFEA-65BB29BF9BE0}D:\heroes of the storm\versions\base76437\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76437\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{0C538D14-4B87-4657-9B75-60C87C59561F}D:\openshot video editor\launch.exe] => (Allow) D:\openshot video editor\launch.exe No File
FirewallRules: [UDP Query User{1562D0F7-0956-4917-8ABF-9DBE95D61879}D:\openshot video editor\launch.exe] => (Allow) D:\openshot video editor\launch.exe No File
FirewallRules: [TCP Query User{0DB8C8B2-7952-477B-97CB-893D3F989353}D:\heroes of the storm\versions\base76517\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76517\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{9A70F9B6-CB29-4EB6-9FAB-3AC0EC3B7605}D:\heroes of the storm\versions\base76517\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76517\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{C12AA359-19D6-40F7-8FB5-0DCC88803891}D:\heroes of the storm\versions\base76781\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76781\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{751A16F4-6366-41F9-8465-87D8A057937A}D:\heroes of the storm\versions\base76781\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76781\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{436FB514-1439-4D23-BD14-63C823B5CF78}D:\heroes of the storm\versions\base76893\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76893\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{3BBF8298-AD2F-4D03-9F23-673632D4040A}D:\heroes of the storm\versions\base76893\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base76893\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{BE1E1DF9-2417-40DE-B0B3-9BB996908C0C}D:\heroes of the storm public test\versions\base76268\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm public test\versions\base76268\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{41172E1B-0538-4120-AEEA-45C2DAE2E1CC}D:\heroes of the storm public test\versions\base76268\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm public test\versions\base76268\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{20BE661C-FDDA-47C4-B9B0-D76EABB8388E}D:\heroes of the storm\versions\base77205\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base77205\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{8FD38498-7E85-4223-903A-F945F5F62EAC}D:\heroes of the storm\versions\base77205\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base77205\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{A903AE1C-3BEA-41FF-B8BA-D057B5EC942B}D:\heroes of the storm\versions\base77406\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base77406\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{C36F9DF8-B76B-4EDA-89BF-E400A1606877}D:\heroes of the storm\versions\base77406\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base77406\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{AA8BAE71-32B7-4E95-A107-71501041FCD3}D:\heroes of the storm\versions\base77548\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base77548\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{48F901C1-292B-4B06-AAE0-C7643C06EB2A}D:\heroes of the storm\versions\base77548\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base77548\heroesofthestorm_x64.exe No File
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {D650CD26-DEAA-4F98-9F59-063C98325DB2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-28] (Google Inc -> Google LLC)
Task: {FE744EC4-550B-45D1-9844-511254A259F5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-04-28] (Google Inc -> Google LLC)
CHR Notifications: Default -> hxxps://badoo.com
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End
*****************

Processes closed successfully.
"C:\Users\David Hynek\Data aplikac�" => ":fbd50e2f7662a5c33287ddc6e65ab5a1" ADS not found.
C:\Users\David Hynek\OneDrive => ":${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity" ADS could not remove.
C:\Users\David Hynek\AppData\Roaming => ":fbd50e2f7662a5c33287ddc6e65ab5a1" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A6B921F0-8BC6-4C08-A005-CF81DB615DBD}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{57D7205B-1687-4FC7-BF14-639D66CC957D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{BFE956D6-5012-4140-9282-56973C71C528}C:\overwatch\overwatch.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D9C14D29-C408-4F57-9FDF-0F6AD9588D3C}C:\overwatch\overwatch.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{EA7B8E5E-F9B5-4039-859A-B6129E4E8A73}D:\heroes of the storm\versions\base74238\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{2697DB33-A03C-4E29-924B-DA71E440BD61}D:\heroes of the storm\versions\base74238\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{FB0461F4-3510-4356-A5FA-CB1EE9837304}D:\spellbreak\g3\binaries\win64\spellbreak.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{775AFC79-8D1E-4592-8C93-E923378C0E17}D:\spellbreak\g3\binaries\win64\spellbreak.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{6F0B347E-3B11-479C-B875-9484B9C66E95}D:\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{C9BF3583-D9DB-47C8-98B7-2817D60191CB}D:\dauntless\archon\binaries\win64\dauntless-win64-shipping.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{858D0080-986F-4A87-B60C-FCEF6452D49A}D:\heroes of the storm\versions\base74739\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{81A89D4E-5288-491A-A0A2-72A01A12EE81}D:\heroes of the storm\versions\base74739\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{D8899AD9-C3A0-4B72-BA2D-752E42E650DD}D:\heroes of the storm\versions\base75132\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{DF800D10-6153-4906-BA08-5F39C4B02C25}D:\heroes of the storm\versions\base75132\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{63FFD340-38C6-4E1E-A129-90F6EC74516F}C:\overwatch\_retail_\overwatch.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{7EFA5820-E283-4281-8250-AA1C88CA5987}C:\overwatch\_retail_\overwatch.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{86A336B6-45DA-4D22-8EBE-2C2834B62103}D:\ubisoft\ubisoft game launcher\games\ghost recon breakpoint\grb.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{530AA404-C594-4FE5-82ED-F482B2FB5AC5}D:\ubisoft\ubisoft game launcher\games\ghost recon breakpoint\grb.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{27A6BDC9-261D-4005-82EE-813A9E8C9F0B}D:\heroes of the storm\versions\base76124\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{CC8E371C-A493-4A7C-9381-6235865C3FBD}D:\heroes of the storm\versions\base76124\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{DFC6D8CB-95C3-4F0A-B5A7-BB563E3D3FBE}D:\heroes of the storm\versions\base76437\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{8F3B792C-2A40-4907-BFEA-65BB29BF9BE0}D:\heroes of the storm\versions\base76437\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0C538D14-4B87-4657-9B75-60C87C59561F}D:\openshot video editor\launch.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{1562D0F7-0956-4917-8ABF-9DBE95D61879}D:\openshot video editor\launch.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0DB8C8B2-7952-477B-97CB-893D3F989353}D:\heroes of the storm\versions\base76517\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{9A70F9B6-CB29-4EB6-9FAB-3AC0EC3B7605}D:\heroes of the storm\versions\base76517\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C12AA359-19D6-40F7-8FB5-0DCC88803891}D:\heroes of the storm\versions\base76781\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{751A16F4-6366-41F9-8465-87D8A057937A}D:\heroes of the storm\versions\base76781\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{436FB514-1439-4D23-BD14-63C823B5CF78}D:\heroes of the storm\versions\base76893\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{3BBF8298-AD2F-4D03-9F23-673632D4040A}D:\heroes of the storm\versions\base76893\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{BE1E1DF9-2417-40DE-B0B3-9BB996908C0C}D:\heroes of the storm public test\versions\base76268\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{41172E1B-0538-4120-AEEA-45C2DAE2E1CC}D:\heroes of the storm public test\versions\base76268\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{20BE661C-FDDA-47C4-B9B0-D76EABB8388E}D:\heroes of the storm\versions\base77205\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{8FD38498-7E85-4223-903A-F945F5F62EAC}D:\heroes of the storm\versions\base77205\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{A903AE1C-3BEA-41FF-B8BA-D057B5EC942B}D:\heroes of the storm\versions\base77406\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{C36F9DF8-B76B-4EDA-89BF-E400A1606877}D:\heroes of the storm\versions\base77406\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{AA8BAE71-32B7-4E95-A107-71501041FCD3}D:\heroes of the storm\versions\base77548\heroesofthestorm_x64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{48F901C1-292B-4B06-AAE0-C7643C06EB2A}D:\heroes of the storm\versions\base77548\heroesofthestorm_x64.exe" => removed successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D650CD26-DEAA-4F98-9F59-063C98325DB2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D650CD26-DEAA-4F98-9F59-063C98325DB2}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FE744EC4-550B-45D1-9844-511254A259F5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FE744EC4-550B-45D1-9844-511254A259F5}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"Chrome Notifications" => removed successfully
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore" => not found

=========== EmptyTemp: ==========

BITS transfer queue => 10772480 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 358658154 B
Java, Flash, Steam htmlcache => 248233520 B
Windows/system/drivers => 29437880 B
Edge => 1955355 B
Chrome => 554555180 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 69512 B
NetworkService => 71180 B
David Hynek => 242948991 B

RecycleBin => 14905 B
EmptyTemp: => 1.3 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 19:29:05 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 111879
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu... (možný problém)

#9 Příspěvek od Rudy »

Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Simicek
Návštěvník
Návštěvník
Příspěvky: 163
Registrován: 23 črc 2008 19:09

Re: Prosím o kontrolu... (možný problém)

#10 Příspěvek od Simicek »

Ohledně té grafické karty tak dneska ráno jsem zkoušel MSI Afterburner a poté jsem udělal benchmark, který proběhl v pořádku. Následně pár hodin hraní taky v pořádku. Nyní jsem ještě nehrál,ale budu to pozorovat a pokud by nastal problém znova napíšu. Každopádně to chování bylo zvláštní. Jinak to je vše?

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 111879
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu... (možný problém)

#11 Příspěvek od Rudy »

Zatím vše.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Odpovědět