Dobrý den,
dnes jsem při zapnutí počítače zjistil, že po příhlášení naběhne jen černá obrazovka s příkazovým řádkem. Po zadání explorer.exe se systém normálně ukáže a tváří se, že funguje normálně. Podezření ale mám, jelikož jsem stahoval a instaloval hru (neofiko).
Níže posílám log z FRST, děkuji předem za kontrolu.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-12-2019
Ran by HP-OMEN (administrator) on DESKTOP-2J4O5S5 (HP OMEN by HP Laptop) (06-01-2020 22:56:33)
Running from C:\Users\HP-OMEN\Desktop
Loaded Profiles: HP-OMEN (Available Profiles: HP-OMEN)
Platform: Windows 10 Home Version 1903 18362.535 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.5.245.0\AvastBrowserCrashHandler.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.5.245.0\AvastBrowserCrashHandler64.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler64.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
(IncognitoVPN) [File not signed] C:\Program Files (x86)\IncognitoVPN\vpn_module.exe
(INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.1725.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.1725.0_x64__8j3eq9eme6ctt\IGCC.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f3a64c75ee4defb7\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_f3a64c75ee4defb7\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_38bfcb542ef4272e\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_38bfcb542ef4272e\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(McAfee, LLC -> McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\browserhost.exe
(McAfee, LLC -> McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19101.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\MsMpEng.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Popcorn Time) [File not signed] C:\Program Files (x86)\Popcorn Time\Updater.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Reimage Ltd. -> reimage) C:\Program Files\Reimage\Reimage Protector\ReimageApp.exe
(Reimage Ltd. -> Reimage) C:\Program Files\Reimage\Reimage Protector\ReiSystem.exe
(Reimage Ltd. -> Reimage®) C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9269352 2019-07-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [268680 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320568 2016-09-20] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [Reimage] => C:\Program Files\Reimage\Reimage Protector\ReimageApp.exe [263832 2019-07-07] (Reimage Ltd. -> reimage)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [707624 2018-08-08] (HP Inc. -> HP Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [644552 2019-07-04] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-2343376451-2767932507-3490548569-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22488952 2019-03-11] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2343376451-2767932507-3490548569-1001\...\Winlogon: [Shell] %comspec% <==== ATTENTION
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.88\Installer\chrmstp.exe [2019-12-20] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\77.2.2152.121\Installer\chrmstp.exe [2019-11-28] (AVAST Software s.r.o. -> AVAST Software)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0175071C-8254-431F-A44D-6056FE47965C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-01-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0416D7B4-EB00-4AC3-86C3-59D5F4617EEB} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [660040 2018-01-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {18CEEAB5-DBE3-4E6A-A45E-E1AB063319D3} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [1930312 2018-01-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1DDC7373-93BF-4C38-9B14-6CE6715DEDA4} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1873288 2019-09-23] (AVAST Software s.r.o. -> AVAST Software)
Task: {1F1BA11C-5C24-48BD-A370-6DAC7BC56621} - System32\Tasks\KMSPico => C:\Windows\KMS\KMSPico.exe [1454191 2014-02-13] (ByELDI 'nova-s release') [File not signed]
Task: {20D600AF-FE52-443D-8CB6-EF1082B2A3E5} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {28F78EA0-2FF0-4175-BBC2-F7204E6C1307} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [145272 2019-10-31] (HP Inc. -> HP Inc.)
Task: {3C345500-DF95-4DDD-8236-C86677CE0756} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506680 2019-06-14] (HP Inc. -> HP Inc.)
Task: {474B424E-1CF0-4BA5-B01C-F6ED7D62EC36} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [198696 2018-05-04] (HP Inc. -> HP Inc.)
Task: {4C93D4C6-B5BF-4CA8-80EC-6DB38B3478E6} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3933576 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
Task: {4DED6405-D2F8-4D3F-BED9-336F59B3AF8C} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-2343376451-2767932507-3490548569-1001 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\Windows\System32\wpninprc.dll [24064 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
Task: {545FA4F7-DF7D-488B-BBF6-48FA6BC0B727} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {616A6AC5-ADB9-44EA-8E76-567665972A6D} - System32\Tasks\HPCeeScheduleForHP-OMEN => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [97656 2018-09-11] (HP Inc. -> HP Inc.)
Task: {62FC85F5-7199-46A8-AFA2-09242D7B0AEB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16494464 2019-03-11] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {6F5CE3D5-21E0-4C5F-AE71-AA75F5D800DF} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1850312 2019-11-05] (AVAST Software s.r.o. -> AVAST Software)
Task: {7031CFF3-D605-46A5-84BD-B948E4F28D79} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519240 2018-01-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {79F905D8-86EF-492C-B81A-3367E4DDA9EF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-12-11] (Adobe Inc. -> Adobe)
Task: {7D0459C1-60C4-4888-B694-5125C3159387} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [660040 2018-01-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7EB463B7-73EE-46FB-B2BD-E271FADB9445} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {7F86FB45-5389-4E43-B1BC-E79158A02F66} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [746056 2018-01-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8C18827C-7AC1-46F7-B8A4-A91FC6DEE620} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [968264 2018-01-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8F443F0B-DA94-4B3C-A576-11DAB6E7CB95} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {A4CFA836-EAB1-4EFE-8314-C1B3B5A579D5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506680 2019-06-14] (HP Inc. -> HP Inc.)
Task: {AAC514B2-5837-4795-8A0D-475FEE752B75} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [202392 2019-07-26] (AVAST Software s.r.o. -> AVAST Software)
Task: {ACCF43F4-E4BB-45ED-B0AB-E47648B82234} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {B5E5B402-EC30-42DD-AB13-D0A97C579BFB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [655736 2019-07-31] (HP Inc. -> HP Inc.)
Task: {B8367F0C-821B-4FCD-870C-C86EE8FF2403} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1850312 2019-11-05] (AVAST Software s.r.o. -> AVAST Software)
Task: {B8E26EB7-6BEA-4303-9463-D0BE21EF6C53} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [655736 2019-07-31] (HP Inc. -> HP Inc.)
Task: {BB6DC990-2606-4337-AF7B-A2302C0FABD5} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_303_pepper.exe [1453112 2019-12-11] (Adobe Inc. -> Adobe)
Task: {C3DA362E-05FB-4E97-BFB7-3ACD4FB048A4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-10] (Google Inc -> Google LLC)
Task: {D3FB7D92-D8D7-48D5-9C4E-AE1CB2259ECE} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [746056 2018-01-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D543816A-1B06-45A3-99E5-6091EC2CB8BD} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [524360 2018-01-10] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D9788312-0F73-4B00-9415-9F909B0D936A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-01-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DC10FB39-5534-4DF1-B770-E8B479396D29} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644472 2019-06-21] (HP Inc. -> HP Inc.)
Task: {DF7C82C4-EE57-49DD-BA3E-2E0075691CC0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-08-10] (Google Inc -> Google LLC)
Task: {DFA7E8A5-FB75-49F1-9AD1-20F09DA319A6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [277880 2019-11-22] (HP Inc. -> HP Inc.)
Task: {F96B99A4-2ADE-4BD0-885A-B87094161103} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [202392 2019-07-26] (AVAST Software s.r.o. -> AVAST Software)
Task: {F9C99893-D0CB-4845-AB42-49C61DA14E59} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-01-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FD2ED8BF-7444-4233-A8FB-A99A357D0634} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-01-06] (Microsoft Windows Publisher -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\HPCeeScheduleForHP-OMEN.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{42385fa3-dcb6-4586-9555-113afacea9ce}: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{af4e668a-ae58-4841-b9d4-4b58dff92a9f}: [DhcpNameServer] 10.0.0.138
Internet Explorer:
==================
HKU\S-1-5-21-2343376451-2767932507-3490548569-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10454__190810
SearchScopes: HKU\S-1-5-21-2343376451-2767932507-3490548569-1001 -> {993F5746-4C15-42BC-99C1-064A1764271B} URL = hxxps://securesearch.org?q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2019-07-18] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_221\bin\ssv.dll [2019-09-06] (Oracle America, Inc. -> Oracle Corporation)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2019-12-16] (McAfee, LLC -> McAfee, Inc.)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-09-06] (Oracle America, Inc. -> Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2017-10-27] (HP Inc. -> HP Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2019-07-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\ssv.dll [2019-09-06] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2019-12-16] (McAfee, LLC -> McAfee, Inc.)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-09-06] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2017-10-27] (HP Inc. -> HP Inc.)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2019-12-16]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-09-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-09-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2012-09-20] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-09-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-09-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-06-25] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-15] (Google LLC -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-15] (Google LLC -> Google LLC)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2012-09-20] (Adobe Systems Incorporated -> Adobe Systems)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.google.cz/","hxxp://www.yandex.ru/? ... VHCH3NVHCX"
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\HP-OMEN\AppData\Local\Google\Chrome\User Data\Default [2020-01-06]
CHR Extension: (Slides) - C:\Users\HP-OMEN\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-08-10]
CHR Extension: (Just Black) - C:\Users\HP-OMEN\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2019-08-10]
CHR Extension: (Docs) - C:\Users\HP-OMEN\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-08-10]
CHR Extension: (Google Drive) - C:\Users\HP-OMEN\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-08-10]
CHR Extension: (YouTube) - C:\Users\HP-OMEN\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-08-10]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\HP-OMEN\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-10-23]
CHR Extension: (Adblock for Youtube™) - C:\Users\HP-OMEN\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2019-08-10]
CHR Extension: (minerBlock) - C:\Users\HP-OMEN\AppData\Local\Google\Chrome\User Data\Default\Extensions\emikbbbebcdfohonlaifafnoanocnebl [2019-08-10]
CHR Extension: (Avast SafePrice | Comparison, deals, coupons) - C:\Users\HP-OMEN\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-12-21]
CHR Extension: (Sheets) - C:\Users\HP-OMEN\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-08-10]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\HP-OMEN\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2019-12-16]
CHR Extension: (Google Docs Offline) - C:\Users\HP-OMEN\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-08-11]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\HP-OMEN\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-12-18]
CHR Extension: (No Coin - Block miners on the web!) - C:\Users\HP-OMEN\AppData\Local\Google\Chrome\User Data\Default\Extensions\gojamcfopckidlocpkbelmpjcgmbgjcl [2019-08-10]
CHR Extension: (Avast Online Security) - C:\Users\HP-OMEN\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-12-20]
CHR Extension: (FormApps Extension) - C:\Users\HP-OMEN\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2019-08-10]
CHR Extension: (HP Network Check Launcher) - C:\Users\HP-OMEN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkfpchpiljkaemlpmpebnglgkomamfeo [2019-08-10]
CHR Extension: (Chrome Web Store Payments) - C:\Users\HP-OMEN\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\HP-OMEN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-08-10]
CHR Extension: (Chrome Media Router) - C:\Users\HP-OMEN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-13]
CHR Profile: C:\Users\HP-OMEN\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-01-04]
CHR Profile: C:\Users\HP-OMEN\AppData\Local\Google\Chrome\User Data\System Profile [2020-01-04]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [jkfpchpiljkaemlpmpebnglgkomamfeo]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-10-07] (Apple Inc. -> Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6259592 2019-12-19] (AVAST Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [202392 2019-07-26] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [996880 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [202392 2019-07-26] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\77.2.2152.121\elevation_service.exe [970088 2019-11-05] (AVAST Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R2 esifsvc; C:\Windows\System32\Intel\DPTF\esif_uf.exe [1855976 2019-07-25] (Intel Corporation -> Intel Corporation)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (Hewlett-Packard Company -> HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [361848 2019-12-06] (HP Inc. -> HP Inc.)
R2 HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [628768 2017-07-13] (HP Inc. -> HP Inc.)
R2 ibtsiva; C:\Windows\System32\ibtsiva.exe [529912 2018-12-21] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R2 IncognitoVPNSvc; C:\Program Files (x86)\IncognitoVPN\vpn_module.exe [221696 2019-11-28] (IncognitoVPN) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [758552 2018-03-02] (Intel(R) Trust Services -> Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [719640 2018-03-02] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [205968 2017-12-03] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [913208 2019-12-16] (McAfee, LLC -> McAfee, Inc.)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [310880 2018-09-05] (Intel Corporation -> )
S3 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519240 2018-01-10] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519240 2018-01-10] (NVIDIA Corporation -> NVIDIA Corporation)
R2 ReimageRealTimeProtector; C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [8944800 2019-05-23] (Reimage Ltd. -> Reimage®)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [268368 2019-07-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [360872 2018-09-21] (Synaptics Incorporated -> Synaptics Incorporated)
R2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [339968 2019-01-08] (Popcorn Time) [File not signed]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2020-01-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2020-01-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [4059744 2018-09-05] (Intel Corporation -> Intel® Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 Accelerometer; C:\Windows\System32\drivers\Accelerometer.sys [53904 2019-07-22] (HP Inc. -> HP)
S3 AppleKmdfFilter; C:\Windows\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37616 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [204824 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [274456 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [209552 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [65120 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [16304 2019-10-02] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [276952 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42736 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [161544 2019-11-03] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [110320 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [83792 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [848432 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [460448 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [236024 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [316528 2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
R3 dptf_acpi; C:\Windows\System32\drivers\dptf_acpi.sys [78680 2019-07-25] (Intel Corporation -> Intel Corporation)
R3 dptf_cpu; C:\Windows\System32\drivers\dptf_cpu.sys [71000 2019-07-25] (Intel Corporation -> Intel Corporation)
R3 esif_lf; C:\Windows\system32\DRIVERS\esif_lf.sys [402264 2019-07-25] (Intel Corporation -> Intel Corporation)
R0 hpdskflt; C:\Windows\System32\drivers\hpdskflt.sys [41104 2019-07-22] (HP Inc. -> HP)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2019-07-25] (Martin Malik - REALiX -> REALiX(tm))
R0 iaStorAC; C:\Windows\System32\drivers\iaStorAC.sys [1035768 2019-07-25] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [257016 2019-07-25] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 MEIx64; C:\Windows\System32\DriverStore\FileRepository\heci.inf_amd64_85021432489d6a1c\x64\TeeDriverW8x64.sys [266128 2019-07-25] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R3 Netwtw04; C:\Windows\System32\drivers\Netwtw04.sys [8720384 2019-08-27] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nvhmi.inf_amd64_36f227864f86e6b6\nvlddmkm.sys [21854352 2019-07-25] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30280 2018-01-10] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [69840 2019-07-26] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [57928 2018-01-10] (NVIDIA Corporation -> NVIDIA Corporation)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> )
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [1154336 2019-07-25] (Realtek Semiconductor Corp. -> Realtek )
S3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [779232 2016-08-22] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
R3 SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [56840 2019-07-25] (Synaptics Incorporated -> Synaptics Incorporated)
R3 tap0901; C:\Windows\System32\drivers\tap0901.sys [27136 2014-11-05] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 usbrndis6; C:\Windows\System32\drivers\usb80236.sys [24576 2019-09-11] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [45664 2020-01-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [355760 2020-01-06] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [54192 2020-01-06] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\Windows\system32\DRIVERS\WirelessButtonDriver64.sys [35392 2019-08-06] (HP Inc. -> HP)
U3 DfSdkS; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-01-06 22:56 - 2020-01-06 22:57 - 000043128 _____ C:\Users\HP-OMEN\Desktop\FRST.txt
2020-01-06 22:56 - 2020-01-06 22:56 - 000000000 ____D C:\FRST
2020-01-06 22:50 - 2020-01-06 22:50 - 002272256 _____ (Farbar) C:\Users\HP-OMEN\Desktop\FRST64.exe
2020-01-06 22:50 - 2020-01-06 22:50 - 000000000 ____D C:\rsit
2020-01-06 22:50 - 2020-01-06 22:50 - 000000000 ____D C:\Program Files\trend micro
2020-01-06 22:49 - 2020-01-06 22:49 - 001222144 _____ C:\Users\HP-OMEN\Desktop\RSITx64.exe
2020-01-06 22:29 - 2020-01-06 22:34 - 000000000 ____D C:\ProgramData\Reimage Protector
2020-01-06 22:29 - 2020-01-06 22:30 - 000000140 _____ C:\Windows\Reimage.ini
2020-01-06 22:29 - 2020-01-06 22:30 - 000000000 ____D C:\rei
2020-01-06 22:29 - 2020-01-06 22:29 - 000001922 _____ C:\Users\Public\Desktop\PC Scan & Repair by Reimage.lnk
2020-01-06 22:29 - 2020-01-06 22:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair
2020-01-06 22:29 - 2020-01-06 22:29 - 000000000 ____D C:\Program Files\Reimage
2020-01-06 22:04 - 2020-01-06 22:04 - 000000000 ____D C:\Windows\pss
2020-01-06 17:50 - 2020-01-06 18:08 - 000000000 ____D C:\Users\HP-OMEN\AppData\Roaming\FileZilla
2020-01-06 17:50 - 2020-01-06 18:08 - 000000000 ____D C:\Users\HP-OMEN\AppData\Local\FileZilla
2020-01-06 17:50 - 2020-01-06 17:50 - 008000936 _____ (Tim Kosse) C:\Users\HP-OMEN\Downloads\FileZilla_3.46.3_win64-setup.exe
2020-01-06 17:50 - 2020-01-06 17:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2020-01-06 17:50 - 2020-01-06 17:50 - 000000000 ____D C:\Program Files\FileZilla FTP Client
2020-01-06 16:48 - 2020-01-06 16:48 - 003673185 _____ C:\Users\HP-OMEN\Desktop\zachrana.pdf
2020-01-06 16:48 - 2020-01-06 16:48 - 002113109 _____ C:\Users\HP-OMEN\Desktop\strategie.pdf
2020-01-06 16:47 - 2020-01-06 16:47 - 003625664 _____ C:\Users\HP-OMEN\Desktop\prevence.pdf
2020-01-06 16:45 - 2020-01-06 16:45 - 000000505 _____ C:\Users\Public\Desktop\Red Dead Redemption 2.lnk
2020-01-06 16:45 - 2020-01-06 16:45 - 000000505 _____ C:\Users\HP-OMEN\AppData\Roaming\Microsoft\Windows\Start Menu\Red Dead Redemption 2.lnk
2020-01-04 21:31 - 2020-01-04 21:33 - 000000000 ____D C:\Users\HP-OMEN\Desktop\Movies
2020-01-04 21:19 - 2020-01-04 21:19 - 000000000 ____D C:\Users\HP-OMEN\Desktop\Surfhouse
2020-01-04 20:52 - 2020-01-04 20:52 - 004840116 _____ C:\Users\HP-OMEN\Desktop\Manual_omnitronic-tmc-02.pdf
2020-01-04 20:16 - 2020-01-04 20:17 - 000000000 ____D C:\Users\HP-OMEN\Desktop\Jested INVERZE
2020-01-04 20:16 - 2019-12-23 18:44 - 049760829 _____ C:\Users\HP-OMEN\Desktop\hprls_harrach_kameny.mp4
2020-01-04 17:40 - 2012-02-02 11:57 - 000000857 _____ C:\Users\HP-OMEN\Desktop\READ-ME.txt
2020-01-04 17:40 - 2012-02-02 11:56 - 000000979 _____ C:\Users\HP-OMEN\Desktop\LIES-MICH.txt
2020-01-04 17:40 - 2012-02-02 11:23 - 032588292 _____ C:\Users\HP-OMEN\Desktop\install_virtualdj_le_v71.0.4.msi
2020-01-04 13:06 - 2020-01-04 13:06 - 000314184 _____ C:\Users\HP-OMEN\Desktop\Byty-Liberec.pdf
2019-12-16 16:00 - 2019-12-16 16:00 - 000000000 ____D C:\Users\HP-OMEN\AppData\Roaming\PowerISO
2019-12-16 14:31 - 2019-12-16 14:31 - 000000000 ____D C:\Program Files\McAfee
2019-12-16 14:30 - 2019-12-16 14:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
2019-12-16 14:30 - 2019-12-16 14:30 - 000000000 ____D C:\ProgramData\McAfee
2019-12-16 14:30 - 2019-12-16 14:30 - 000000000 ____D C:\Program Files\PowerISO
2019-12-16 14:30 - 2017-06-07 01:36 - 000138296 _____ (Power Software Ltd) C:\Windows\system32\Drivers\scdemu.sys
2019-12-15 20:29 - 2019-12-15 20:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2019-12-15 20:29 - 2019-12-15 20:29 - 000000000 ____D C:\Program Files\iTunes
2019-12-15 20:29 - 2019-12-15 20:29 - 000000000 ____D C:\Program Files\iPod
2019-12-14 22:08 - 2019-12-14 22:08 - 000002287 _____ C:\Users\HP-OMEN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\safe-watch.lnk
2019-12-14 22:08 - 2019-12-14 22:08 - 000000000 ____D C:\Users\HP-OMEN\AppData\Local\safe-watch-updater
2019-12-14 22:08 - 2019-12-14 22:08 - 000000000 ____D C:\Program Files\TAP-Windows
2019-12-14 22:08 - 2019-12-14 22:08 - 000000000 ____D C:\Program Files (x86)\IncognitoVPN
2019-12-12 11:31 - 2019-12-12 11:31 - 025443840 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 018020352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 009927992 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-12-12 11:31 - 2019-12-12 11:31 - 007754240 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 007600448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 006516648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 006083832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 005943296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 005914112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 005764664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 004129416 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 002800640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2019-12-12 11:31 - 2019-12-12 11:31 - 002762296 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 002698768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2019-12-12 11:31 - 2019-12-12 11:31 - 002494432 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 002147328 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 002082208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 001743888 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 001697280 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 001664904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 001647072 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 001610752 _____ (Microsoft Corporation) C:\Windows\system32\HologramCompositor.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 001539584 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 001458688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 001413840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 001399312 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2019-12-12 11:31 - 2019-12-12 11:31 - 001261464 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 001098928 _____ (Microsoft Corporation) C:\Windows\system32\DolbyDecMFT.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 001072952 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2019-12-12 11:31 - 2019-12-12 11:31 - 001054864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 000921600 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 000842552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostCommon.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 000822416 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2019-12-12 11:31 - 2019-12-12 11:31 - 000797112 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 000774456 _____ (Microsoft Corporation) C:\Windows\system32\securekernel.exe
2019-12-12 11:31 - 2019-12-12 11:31 - 000701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.Internal.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 000674280 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2019-12-12 11:31 - 2019-12-12 11:31 - 000673456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2019-12-12 11:31 - 2019-12-12 11:31 - 000646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 000595968 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 000593128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 000578560 _____ (Microsoft Corporation) C:\Windows\system32\SppExtComObj.Exe
2019-12-12 11:31 - 2019-12-12 11:31 - 000532480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 000511000 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 000430080 _____ (Microsoft Corporation) C:\Windows\system32\fhcfg.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 000406480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Enumeration.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 000342528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2019-12-12 11:31 - 2019-12-12 11:31 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32k.sys
2019-12-12 11:31 - 2019-12-12 11:31 - 000210744 _____ (Microsoft Corporation) C:\Windows\system32\tcbloader.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 000155136 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 000139776 _____ (Microsoft Corporation) C:\Windows\system32\Chakrathunk.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 000138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 000117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 000105472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakrathunk.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 000100352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdfs.sys
2019-12-12 11:31 - 2019-12-12 11:31 - 000099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 000097080 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 000089536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32u.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\fdProxy.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 000032056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2019-12-12 11:31 - 2019-12-12 11:31 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 000011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 000010752 _____ (Microsoft Corporation) C:\Windows\system32\DMAlertListener.ProxyStub.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DMAlertListener.ProxyStub.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 000003072 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2019-12-12 11:31 - 2019-12-12 11:31 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2019-12-12 11:30 - 2019-12-12 11:31 - 007263992 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2019-12-12 11:30 - 2019-12-12 11:30 - 007905000 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2019-12-12 11:30 - 2019-12-12 11:30 - 007278592 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2019-12-12 11:30 - 2019-12-12 11:30 - 003729408 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2019-12-12 11:30 - 2019-12-12 11:30 - 003703296 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2019-12-12 11:30 - 2019-12-12 11:30 - 002716672 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2019-12-12 11:30 - 2019-12-12 11:30 - 002284544 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2019-12-12 11:30 - 2019-12-12 11:30 - 001757304 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-12-12 11:30 - 2019-12-12 11:30 - 001748480 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2019-12-12 11:30 - 2019-12-12 11:30 - 001656600 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2019-12-12 11:30 - 2019-12-12 11:30 - 001512528 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2019-12-12 11:30 - 2019-12-12 11:30 - 001451520 _____ (Microsoft Corporation) C:\Windows\system32\usocoreworker.exe
2019-12-12 11:30 - 2019-12-12 11:30 - 001366128 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-12-12 11:30 - 2019-12-12 11:30 - 001182448 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2019-12-12 11:30 - 2019-12-12 11:30 - 001149712 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2019-12-12 11:30 - 2019-12-12 11:30 - 001066496 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2019-12-12 11:30 - 2019-12-12 11:30 - 001006904 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostCommon.dll
2019-12-12 11:30 - 2019-12-12 11:30 - 000986936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refsv1.sys
2019-12-12 11:30 - 2019-12-12 11:30 - 000878080 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Service.dll
2019-12-12 11:30 - 2019-12-12 11:30 - 000826368 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2019-12-12 11:30 - 2019-12-12 11:30 - 000598016 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2019-12-12 11:30 - 2019-12-12 11:30 - 000550400 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-12-12 11:30 - 2019-12-12 11:30 - 000530944 _____ (Microsoft Corporation) C:\Windows\system32\usosvc.dll
2019-12-12 11:30 - 2019-12-12 11:30 - 000524264 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Enumeration.dll
2019-12-12 11:30 - 2019-12-12 11:30 - 000513536 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2019-12-12 11:30 - 2019-12-12 11:30 - 000457216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cldflt.sys
2019-12-12 11:30 - 2019-12-12 11:30 - 000422712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2019-12-12 11:30 - 2019-12-12 11:30 - 000404480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2019-12-12 11:30 - 2019-12-12 11:30 - 000201728 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll
2019-12-12 11:30 - 2019-12-12 11:30 - 000127272 _____ (Microsoft Corporation) C:\Windows\system32\win32u.dll
2019-12-12 11:30 - 2019-12-12 11:30 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\CustomInstallExec.exe
2019-12-12 11:30 - 2019-12-12 11:30 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\autopilot.dll
2019-12-12 11:30 - 2019-12-12 11:30 - 000070656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2019-12-12 11:30 - 2019-12-12 11:30 - 000067112 _____ (Microsoft Corporation) C:\Windows\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2019-12-12 11:30 - 2019-12-12 11:30 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2019-12-12 11:30 - 2019-12-12 11:30 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\DevQueryBroker.dll
2019-12-12 11:30 - 2019-12-12 11:30 - 000025600 _____ (Microsoft Corporation) C:\Windows\system32\autopilotdiag.dll
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-01-06 22:54 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-01-06 22:40 - 2019-07-25 12:34 - 000000000 ____D C:\Users\HP-OMEN\AppData\Local\D3DSCache
2020-01-06 22:19 - 2019-07-25 12:25 - 000000000 ____D C:\Windows\system32\Drivers\wd
2020-01-06 22:13 - 2019-07-25 14:39 - 000748816 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2020-01-06 22:13 - 2019-07-25 12:32 - 001609600 _____ C:\Windows\system32\PerfStringBackup.INI
2020-01-06 22:13 - 2019-03-19 12:55 - 000686306 _____ C:\Windows\system32\perfh005.dat
2020-01-06 22:13 - 2019-03-19 12:55 - 000138470 _____ C:\Windows\system32\perfc005.dat
2020-01-06 22:13 - 2019-03-19 05:50 - 000000000 ____D C:\Windows\INF
2020-01-06 22:08 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\AppReadiness
2020-01-06 22:08 - 2019-03-19 05:37 - 000032768 _____ C:\Windows\system32\config\ELAM
2020-01-06 22:05 - 2019-07-26 08:41 - 000000000 ____D C:\ProgramData\NVIDIA
2020-01-06 22:05 - 2019-07-26 08:14 - 000000000 __SHD C:\Users\HP-OMEN\IntelGraphicsProfiles
2020-01-06 22:05 - 2019-07-25 12:25 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-01-06 22:05 - 2019-03-19 05:37 - 000786432 _____ C:\Windows\system32\config\BBI
2020-01-06 21:51 - 2019-07-26 16:18 - 000000372 _____ C:\Windows\Tasks\HPCeeScheduleForHP-OMEN.job
2020-01-06 18:04 - 2019-10-05 16:18 - 000002608 _____ C:\Windows\system32\Tasks\AdobeGCInvoker-1.0
2020-01-06 18:04 - 2019-08-10 22:02 - 000003402 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-01-06 18:04 - 2019-08-10 22:02 - 000003178 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-01-06 18:04 - 2019-08-10 21:52 - 000002238 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-01-06 18:04 - 2019-08-06 13:27 - 000003788 _____ C:\Windows\system32\Tasks\Adobe Flash Player PPAPI Notifier
2020-01-06 18:04 - 2019-08-06 13:27 - 000003488 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-01-06 18:04 - 2019-07-26 16:18 - 000002814 _____ C:\Windows\system32\Tasks\HPCeeScheduleForHP-OMEN
2020-01-06 18:04 - 2019-07-26 09:28 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2020-01-06 18:04 - 2019-07-26 09:15 - 000002496 _____ C:\Windows\system32\Tasks\KMSPico
2020-01-06 18:04 - 2019-07-26 08:45 - 000002766 _____ C:\Windows\system32\Tasks\HPAudioSwitch
2020-01-06 18:04 - 2019-07-26 08:41 - 000003398 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-06 18:04 - 2019-07-26 08:41 - 000003176 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-06 18:04 - 2019-07-26 08:41 - 000002984 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-06 18:04 - 2019-07-26 08:41 - 000002956 _____ C:\Windows\system32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-06 18:04 - 2019-07-26 08:41 - 000002914 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-06 18:04 - 2019-07-26 08:41 - 000002838 _____ C:\Windows\system32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-06 18:04 - 2019-07-26 08:41 - 000002786 _____ C:\Windows\system32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-06 18:04 - 2019-07-26 08:41 - 000002744 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-06 18:04 - 2019-07-25 12:31 - 000002862 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2343376451-2767932507-3490548569-1001
2020-01-06 17:41 - 2019-10-05 16:18 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2020-01-06 13:34 - 2019-07-25 12:35 - 000000000 ____D C:\Users\HP-OMEN\AppData\Roaming\vlc
2020-01-06 13:29 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-01-06 11:08 - 2019-07-25 12:25 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-01-04 20:31 - 2019-07-26 08:31 - 000000000 ____D C:\Users\HP-OMEN\Documents\Adobe
2020-01-04 20:31 - 2019-07-25 12:29 - 000000000 ____D C:\Users\HP-OMEN\AppData\Roaming\Adobe
2020-01-04 19:30 - 2019-07-25 12:29 - 000000000 ____D C:\Users\HP-OMEN\AppData\Local\Packages
2020-01-04 19:26 - 2019-08-06 09:52 - 000000000 ____D C:\Users\HP-OMEN\AppData\Local\CrashDumps
2020-01-04 19:22 - 2019-08-10 21:45 - 000000000 ____D C:\Users\HP-OMEN\AppData\Roaming\uTorrent
2020-01-04 14:45 - 2019-07-26 09:28 - 000004264 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2019-12-27 21:47 - 2019-11-29 11:57 - 000000000 ____D C:\Users\HP-OMEN\Documents\YouTubeDownloads
2019-12-20 16:25 - 2019-08-10 22:03 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-12-17 12:29 - 2019-07-25 12:26 - 000000000 ____D C:\Windows\minidump
2019-12-17 12:29 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\LiveKernelReports
2019-12-16 10:12 - 2019-07-25 12:31 - 000000000 ___RD C:\Users\HP-OMEN\OneDrive
2019-12-14 22:07 - 2019-08-10 20:20 - 000000000 ____D C:\Program Files (x86)\Popcorn Time
2019-12-12 12:53 - 2019-08-05 19:00 - 000629896 _____ C:\Windows\system32\FNTCACHE.DAT
2019-12-12 12:53 - 2019-07-25 12:29 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-12-12 12:53 - 2019-07-25 12:29 - 000000000 ___RD C:\Users\HP-OMEN\3D Objects
2019-12-12 12:52 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SystemResources
2019-12-12 12:52 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\ShellExperiences
2019-12-12 12:52 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\bcastdvr
2019-12-12 11:35 - 2019-07-25 14:46 - 000000000 ____D C:\Windows\system32\MRT
2019-12-12 11:33 - 2019-07-25 14:46 - 129221664 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-12-12 11:33 - 2019-03-19 05:37 - 000000000 ____D C:\Windows\CbsTemp
2019-12-12 11:32 - 2019-07-26 09:03 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2019-12-11 16:01 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2019-12-11 16:01 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\Macromed
==================== Files in the root of some directories ========
2019-11-29 11:59 - 2019-11-29 12:51 - 000063312 _____ () C:\Users\HP-OMEN\AppData\Roaming\downloads.json
2019-08-09 14:18 - 2019-08-09 14:18 - 000000000 _____ () C:\Users\HP-OMEN\AppData\Local\oobelibMkey.log
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Po spuštění černá obrazovka+CMD
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
JohnyHubage
- Návštěvník
- Příspěvky: 59
- Registrován: 05 bře 2007 22:01
- Bydliště: Liberec
- Kontaktovat uživatele:
-
JohnyHubage
- Návštěvník
- Příspěvky: 59
- Registrován: 05 bře 2007 22:01
- Bydliště: Liberec
- Kontaktovat uživatele:
Re: Po spuštění černá obrazovka+CMD
Tady je ještě log Addition:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-12-2019
Ran by HP-OMEN (06-01-2020 22:57:21)
Running from C:\Users\HP-OMEN\Desktop
Windows 10 Home Version 1903 18362.535 (X64) (2019-07-25 11:26:58)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2343376451-2767932507-3490548569-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2343376451-2767932507-3490548569-503 - Limited - Disabled)
Guest (S-1-5-21-2343376451-2767932507-3490548569-501 - Limited - Disabled)
HP-OMEN (S-1-5-21-2343376451-2767932507-3490548569-1001 - Administrator - Enabled) => C:\Users\HP-OMEN
WDAGUtilityAccount (S-1-5-21-2343376451-2767932507-3490548569-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
4Videosoft iOS Transfer 8.2.58 (HKLM-x32\...\{E8C3E38D-FE43-4a26-8B93-886E4F2C4710}_is1) (Version: 8.2.58 - 4Videosoft Studio)
Adobe After Effects 2019 (HKLM-x32\...\AEFT_16_1_1) (Version: 16.1.1 - Adobe Systems Incorporated)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.303 - Adobe)
Adobe Illustrator 2019 (HKLM-x32\...\ILST_23_0_3) (Version: 23.0.3 - Adobe Systems Incorporated)
Adobe Lightroom Classic CC (HKLM-x32\...\LTRM_8_2_1) (Version: 8.2.1 - Adobe Systems Incorporated)
Adobe Media Encoder 2019 (HKLM-x32\...\AME_13_1) (Version: 13.1 - Adobe Systems Incorporated)
Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0_2) (Version: 20.0.2 - Adobe Systems Incorporated)
Adobe Premiere Pro 2019 (HKLM-x32\...\PPRO_13_1) (Version: 13.1 - Adobe Systems Incorporated)
Aktualizace NVIDIA 31.0.11.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.0.11.0 - NVIDIA Corporation) Hidden
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{f8c930bd-0a68-425f-8c11-87723d1e2c97}) (Version: 20.90.0 - Intel Corporation)
Apple Mobile Device Support (HKLM\...\{45DDDFED-AABC-450C-B49C-5B4A5E547F5B}) (Version: 13.0.0.38 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.8.2393 - AVAST Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 77.2.2152.121 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.5.245.0 - AVAST Software) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.74.1085 - AB Team, d.o.o.)
Call Of Duty World At War version 1.7.1263.0 (HKLM-x32\...\Call Of Duty World At War_is1) (Version: 1.7.1263.0 - Mr DJ)
CCleaner (HKLM\...\{DCC7ED81-4222-4555-87F4-AE3E8B0C10D6}_is1) (Version: 5.55.7108 - Piriform)
FileZilla Client 3.46.3 (HKLM-x32\...\FileZilla Client) (Version: 3.46.3 - Tim Kosse)
Flvto Youtube Downloader (HKLM-x32\...\Flvto Youtube Downloader) (Version: 1.3.9 - Flvto.biz)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.88 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden
HP Audio Switch (HKLM-x32\...\{3A5141D4-47DB-4302-9B1C-272BE585BC8A}) (Version: 1.0.179.0 - HP Inc.)
HP Support Assistant (HKLM-x32\...\{F322B446-B157-4257-B44F-4F22D41F8EDB}) (Version: 8.8.24.33 - HP Inc.)
HP Support Solutions Framework (HKLM-x32\...\{682A0055-EB89-425A-812B-80C18244DC61}) (Version: 12.14.49.15 - HP Inc.)
HP System Event Utility (HKLM-x32\...\{57058272-92B0-4EFA-8FDD-ED3E5D689D37}) (Version: 1.4.32 - HP Inc.)
IncognitoVPN (HKLM-x32\...\{DEB67CBD-66D0-45C8-B487-8B61289722DB}_is1) (Version: 1.0.1.10 - IncognitoVPN)
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1069 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.2.0.1020 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.49.166.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{df682aff-4294-4ad1-aaa7-276931d5781f}) (Version: 1.49.166.0 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000020-0200-1029-84C8-B8D95FA3C8C3}) (Version: 20.20.0 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{226be6c3-8e08-4d52-bd3a-d361008448c5}) (Version: 10.1.1.37 - Intel(R) Corporation) Hidden
iTunes (HKLM\...\{65D2540A-990F-45BC-AF4C-482488F457E4}) (Version: 12.10.3.1 - Apple Inc.)
Java 8 Update 221 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180221F0}) (Version: 8.0.2210.11 - Oracle Corporation)
Java 8 Update 221 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180221F0}) (Version: 8.0.2210.11 - Oracle Corporation)
LRTimelapse 4.5 (HKLM-x32\...\{3B86296C-F4C8-4FE7-8561-CC5F444098D4}}_is1) (Version: 4.5 - Gunther Wegner)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.57 - McAfee, LLC.)
MediaHuman Video Converter verze 1.2.1 (HKLM-x32\...\MHVideoConverter_is1) (Version: 1.2.1 - MediaHuman)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2343376451-2767932507-3490548569-1001\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.15.26706 (HKLM-x32\...\{95ac1cfa-f4fb-4d1b-8912-7f9d5fbb140d}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština (HKLM\...\{90150000-001F-0405-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2013 - slovenčina (HKLM\...\{90150000-001F-041B-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
NVIDIA GeForce Experience 3.12.0.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.12.0.84 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Ovládací panel NVIDIA 431.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 431.36 - NVIDIA Corporation) Hidden
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{C3A282C9-4C8B-4A63-B449-3A064FB378D7}) (Version: 8.2 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{CC046FB9-E84E-4092-B924-DBE33DA2BE75}) (Version: 8.2 - Apple Inc.)
Popcorn Time (HKLM-x32\...\Popcorn Time_is1) (Version: 6.2.0.13 - Popcorn Time) <==== ATTENTION
PowerISO (HKLM-x32\...\PowerISO) (Version: 7.5 - Power Software Ltd)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.21292 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8581 - Realtek Semiconductor Corp.)
Red Dead Redemption 2 version final (HKLM-x32\...\Red Dead Redemption 2_is1) (Version: final - The)
Reimage Repair (HKLM\...\Reimage Repair) (Version: 1.8.9.8 - Reimage) <==== ATTENTION
Safe Watch (HKU\S-1-5-21-2343376451-2767932507-3490548569-1001\...\11b9ea7a-35e8-5cfb-8216-8caab4be266f) (Version: 1.1.18 - )
Synaptics ClickPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.5.10.75 - Synaptics Incorporated)
TAP-Windows 9.21.1 (HKLM\...\TAP-Windows) (Version: 9.21.1 - )
Update for Skype for Business 2015 (KB4475564) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{CD0EE05F-11E6-46FA-BB7B-D2A28C47A4F3}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4475564) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{CD0EE05F-11E6-46FA-BB7B-D2A28C47A4F3}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4475564) 64-Bit Edition (HKLM\...\{90150000-012B-0405-1000-0000000FF1CE}_Office15.PROPLUS_{CD0EE05F-11E6-46FA-BB7B-D2A28C47A4F3}) (Version: - Microsoft)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Packages:
=========
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-12] (Microsoft Corporation)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.2.0.0_x64__8j3eq9eme6ctt [2019-07-25] (INTEL CORP)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-07-26] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-07-26] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-16] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-18] (Microsoft Corporation) [MS Ad]
Ovládací centrum grafiky Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.1725.0_x64__8j3eq9eme6ctt [2019-11-23] (INTEL CORP) [Startup Task]
Raw Image Extension -> C:\Program Files\WindowsApps\Microsoft.RawImageExtension_1.0.21991.0_x64__8wekyb3d8bbwe [2019-10-11] (Microsoft Corporation)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0 [2019-12-21] (Spotify AB) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2019-09-15] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2019-09-15] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-07-03] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2019-09-15] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2019-12-12 19:56 - 2019-12-12 19:56 - 000138240 _____ ( ) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.IWs06dcaa36#\73d34090e18bd2a5d6ca6e9445d05751\Interop.IWshRuntimeLibrary.ni.dll
2019-11-23 04:48 - 2019-11-23 04:48 - 001322496 _____ () [File not signed] C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.1725.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\e_sqlite3.DLL
2019-11-23 04:48 - 2019-11-23 04:48 - 001322496 _____ () [File not signed] C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.1725.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\x64\e_sqlite3.dll
2019-12-12 19:56 - 2019-12-12 19:56 - 000134656 _____ (hardcodet.net) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_32\Hardcodet.W6cab32f3#\90ef9eec75f5c70a3eb88b1b76cbf21c\Hardcodet.Wpf.TaskbarNotification.ni.dll
2019-11-23 04:48 - 2019-11-23 04:48 - 040914432 _____ (Intel) [File not signed] C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.1725.0_x64__8j3eq9eme6ctt\IGCC.dll
2019-12-12 19:56 - 2019-12-12 19:56 - 001701888 _____ (Mark Heath & Contributors) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_32\NAudio\3e339fdd0ff8a301cca4ed76ecf8fb94\NAudio.ni.dll
2019-12-12 19:56 - 2019-12-12 19:56 - 003060736 _____ (Newtonsoft) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\c9e29742d37172af77ab1897076e91ef\Newtonsoft.Json.ni.dll
2019-12-12 19:56 - 2019-12-12 19:56 - 000793088 _____ (The Apache Software Foundation) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_32\log4net\4aa22377093c96a03b2bb88f1818b1f5\log4net.ni.dll
2019-12-14 22:08 - 2016-09-25 07:09 - 001012224 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\IncognitoVPN\platforms\qwindows.dll
2019-12-14 22:08 - 2019-01-14 21:25 - 004679168 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\IncognitoVPN\Qt5Core.dll
2019-12-14 22:08 - 2016-09-25 07:02 - 005026816 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\IncognitoVPN\Qt5Gui.dll
2019-12-14 22:08 - 2016-09-25 07:00 - 000855040 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\IncognitoVPN\Qt5Network.dll
2019-12-14 22:08 - 2016-09-25 07:06 - 004480512 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\IncognitoVPN\Qt5Widgets.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-2343376451-2767932507-3490548569-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-2343376451-2767932507-3490548569-1001\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-19 05:49 - 2013-03-10 11:32 - 000006913 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 192.150.14.69
127.0.0.1 192.150.18.101
127.0.0.1 192.150.18.108
127.0.0.1 192.150.22.40
127.0.0.1 192.150.8.100
127.0.0.1 192.150.8.118
127.0.0.1 209-34-83-73.ood.opsource.net
127.0.0.1 3dns-1.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 3dns-2.adobe.de
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-3.adobe.de
127.0.0.1 3dns-4.adobe.com
127.0.0.1 3dns-5.adobe.com
127.0.0.1 3dns.adobe.com
127.0.0.1 a125-252-224-90.deploy.akamaitechnologies.com
127.0.0.1 a125-252-224-91.deploy.akamaitechnologies.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 activate-sea.adobe.de
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 activate-sjc0.adobe.de
127.0.0.1 activate.adobe.com
127.0.0.1 activate.adobe.de
127.0.0.1 activate.nero.com
127.0.0.1 activate.nero.de
127.0.0.1 activate.wip.adobe.com
127.0.0.1 activate.wip1.adobe.com
127.0.0.1 activate.wip2.adobe.com
There are 163 more lines.
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%INTEL_DEV_REDIST%redist\intel64\compiler;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT
HKU\S-1-5-21-2343376451-2767932507-3490548569-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\HP-OMEN\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run32: => "PWRISOVM.EXE"
HKU\S-1-5-21-2343376451-2767932507-3490548569-1001\...\StartupApproved\Run: => "Zoner Photo Studio Autoupdate"
HKU\S-1-5-21-2343376451-2767932507-3490548569-1001\...\StartupApproved\Run: => "OneDrive"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{748BDE03-4B92-499A-83F7-664121A7733B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E89B142F-66D9-4497-9B43-F944A89B92CE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{1B6F71E4-BB30-4B5C-B826-9C951C6C0D2C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{6BC8F6DD-4231-4F04-AF73-37079FF5C06E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{23F3CE10-4816-4B51-A4BD-E96F29E3AA4E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{8CF6A9D1-1C2C-41B6-8054-D3387D636790}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{0AC72AB2-9293-4877-B1A2-7E06E338744C}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{5A115AAD-B21F-4358-A70C-6C685F4AC9CA}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7ECB3527-E1A3-42D8-AF0F-F35FC1453C0A}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2C572517-F76E-475B-AB3B-E789C68B5730}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7220B7F9-15CC-464D-9EBA-93E8B64BD088}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{BAC457E7-A299-4DC8-B60B-C4EC6B624193}C:\users\hp-omen\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\hp-omen\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{962FF666-29EF-4CF5-B503-F39E05FB9324}C:\users\hp-omen\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\hp-omen\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{E8B48E33-7C68-440A-B9A2-6A7AFE206AC3}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{A839F0E5-5318-4BB1-B5DF-CA817C5BCB87}C:\program files (x86)\popcorn time\nodejs\node.exe] => (Block) C:\program files (x86)\popcorn time\nodejs\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [UDP Query User{832C1738-DF12-4EC3-9850-661842298333}C:\program files (x86)\popcorn time\nodejs\node.exe] => (Block) C:\program files (x86)\popcorn time\nodejs\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [{96C3B826-EBD2-428E-AA7A-4C050B04A179}] => (Allow) C:\Program Files (x86)\Mr DJ\Call Of Duty World At War\CoDWaW.exe (Activision Publishing -> Activision Blizzard, Inc.) [File not signed]
FirewallRules: [{F39B9E3B-A9C4-4AAA-9AFD-60E3C53FEE78}] => (Allow) C:\Program Files (x86)\Mr DJ\Call Of Duty World At War\CoDWaW.exe (Activision Publishing -> Activision Blizzard, Inc.) [File not signed]
FirewallRules: [TCP Query User{F5A0368B-47F8-49E4-B36A-4B51F792CA94}C:\program files (x86)\mr dj\call of duty world at war\codwaw lanfixed.exe] => (Allow) C:\program files (x86)\mr dj\call of duty world at war\codwaw lanfixed.exe (Activision Blizzard, Inc.) [File not signed]
FirewallRules: [UDP Query User{02B8AACB-ADDB-4BB2-B7F3-9A4386E0EA53}C:\program files (x86)\mr dj\call of duty world at war\codwaw lanfixed.exe] => (Allow) C:\program files (x86)\mr dj\call of duty world at war\codwaw lanfixed.exe (Activision Blizzard, Inc.) [File not signed]
FirewallRules: [{295EAD61-A74D-4BDB-AD5E-3349E69CB0C9}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3BAD7DBC-D8B5-4A28-83C3-3F66E62F2CEE}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{12D724D0-6131-4D9F-994A-36CBB8A4B464}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{CCE24CB4-0DF7-46B3-B9A2-64DCC6C17F90}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{CAF15FDA-5B17-4E3B-856E-9687143A2962}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{80C4867B-02E3-4CBE-8D54-841B2D344A17}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe (Popcorn Time) [File not signed]
FirewallRules: [{D278860C-32D0-44A8-9939-A8AB6D6683CA}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe (Popcorn Time) [File not signed]
FirewallRules: [{319BC4BC-2920-4825-B77A-FCC4D0B28A72}] => (Allow) C:\Program Files (x86)\Popcorn Time\PopcornTimeDesktop.exe () [File not signed]
FirewallRules: [{DE75B206-7BB9-4EE8-B0A8-6502CA7AADDF}] => (Allow) C:\Program Files (x86)\Popcorn Time\PopcornTimeDesktop.exe () [File not signed]
FirewallRules: [{7849E398-1E7A-443C-8A57-DA29D3601E86}] => (Allow) C:\Program Files (x86)\Popcorn Time\nodejs\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [{8B5EEA69-DF13-4F89-9C43-36510E6C6B18}] => (Allow) C:\Program Files (x86)\Popcorn Time\nodejs\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [{40D57679-42B6-499F-BE48-B93FE1EC730A}] => (Allow) C:\Program Files (x86)\Popcorn Time\chromecast\node.exe (Joyent Inc -> Joyent, Inc)
FirewallRules: [{ABBD5142-BF9F-4198-BE91-AB25E9F871DB}] => (Allow) C:\Program Files (x86)\Popcorn Time\chromecast\node.exe (Joyent Inc -> Joyent, Inc)
FirewallRules: [{34B0BC6B-FC11-4833-AA6A-5B12BF12FDFD}] => (Allow) C:\Program Files (x86)\IncognitoVPN\vpn_module.exe (IncognitoVPN) [File not signed]
FirewallRules: [{7CDDCE52-A7A2-4FE3-ABDA-6007151FCFC0}] => (Allow) C:\Program Files (x86)\IncognitoVPN\vpn_module.exe (IncognitoVPN) [File not signed]
FirewallRules: [{4BC6AA1E-444E-417C-932D-1004778D56E4}] => (Allow) C:\Program Files (x86)\IncognitoVPN\openvpn.exe (ANONYMOUS VPN CONNECTIONS LTD -> The OpenVPN Project) [File not signed]
FirewallRules: [{A44EB71B-028D-41AC-9158-F37DE82B1237}] => (Allow) C:\Program Files (x86)\IncognitoVPN\openvpn.exe (ANONYMOUS VPN CONNECTIONS LTD -> The OpenVPN Project) [File not signed]
FirewallRules: [{27045A91-709B-4482-8146-2DE765EDDBCA}] => (Allow) C:\Users\HP-OMEN\AppData\Local\Programs\safe-watch\safe-watch.exe (SAFEVATCH, TOV -> GitHub, Inc.)
FirewallRules: [{701BD50B-B646-401C-BB61-2B96A4BEDE71}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{21377E1E-57AC-4A18-9EA3-D6830B601FE4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{98128AB3-E394-46D2-8788-D87FCE606D51}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{CCB8C22C-AAC5-4955-A8AD-F1E9C0586C95}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{24F5E471-C888-499F-80D8-73C19A621684}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4B998B71-9E7A-4D9F-A113-41BAC8D562FC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E162F28C-3548-45F6-A3D4-D5507193A163}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7953D283-80BD-4E72-9504-BCD8AA2CBA00}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{CC7E7828-33CB-45A6-A204-D61BEC880367}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A1D04F06-CBE9-447C-9BB3-27977A9896A2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{2873037A-1959-4D3E-8A88-C744C2E6543D}C:\users\hp-omen\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\hp-omen\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{2AE61507-2988-4668-8FB5-4CB775BEB828}C:\users\hp-omen\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\hp-omen\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{8584D3B8-3AC1-4849-B020-A56FAEB2E19E}] => (Allow) C:\Windows\Temp\KMSpico\AutoPico.exe No File
FirewallRules: [{E5E01A50-7351-4B1C-93F8-25815442E4B0}] => (Allow) C:\Windows\Temp\KMSpico\AutoPico.exe No File
==================== Restore Points =========================
18-12-2019 16:23:51 Naplánovaný kontrolní bod
27-12-2019 23:22:34 Naplánovaný kontrolní bod
04-01-2020 17:07:30 Installed VirtualDJ 2020
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (01/06/2020 10:54:02 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program RSITx64.exe verze 0.0.0.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 30cc
Čas spuštění: 01d5c4db599e3b0d
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Users\HP-OMEN\Desktop\RSITx64.exe
ID hlášení: e3833e0f-26be-447e-96e1-c5ae63c94f7d
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Cross-process
Error: (01/06/2020 10:20:52 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů C:\Windows\system32\sysmain.dll (kód chyby Win32 126).
Error: (01/06/2020 06:10:43 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.
Error: (01/06/2020 06:10:43 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
Error: (01/06/2020 06:10:43 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.
Error: (01/06/2020 06:10:43 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
Error: (01/06/2020 04:34:03 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 19110
Error: (01/06/2020 04:34:03 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 19110
System errors:
=============
Error: (01/06/2020 05:34:59 PM) (Source: disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk2\DR2.
Error: (01/06/2020 03:20:06 PM) (Source: disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk2\DR2.
Error: (01/06/2020 12:10:02 PM) (Source: disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk2\DR3.
Error: (01/06/2020 09:55:42 AM) (Source: BTHUSB) (EventID: 16) (User: )
Description: Vzájemné ověření mezi místním adaptérem Bluetooth a zařízením s adresou adaptéru Bluetooth (b0:ca:68:71:32:74) se nezdařilo.
Error: (01/05/2020 10:52:07 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {DDCFD26B-FEED-44CD-B71D-79487D2E5E5A} se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/05/2020 09:43:08 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {DDCFD26B-FEED-44CD-B71D-79487D2E5E5A} se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/05/2020 09:35:04 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {DDCFD26B-FEED-44CD-B71D-79487D2E5E5A} se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/05/2020 09:15:52 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {DDCFD26B-FEED-44CD-B71D-79487D2E5E5A} se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
===================================
Date: 2020-01-06 22:18:56.866
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {77C9638A-539C-45FC-BCD0-AF847EE1D701}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: DESKTOP-2J4O5S5\HP-OMEN
Date: 2019-07-26 10:15:32.559
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/AutoKMS
ID: 2147685180
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\HP-OMEN\AppData\Local\Temp\KMSpico\AutoPico.exe; file:_C:\Users\HP-OMEN\AppData\Local\Temp\KMSpico\cert\installAll.cmd
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-2J4O5S5\HP-OMEN
Název procesu: C:\Windows\KMS\KMSpico.exe
Verze bezpečnostních informací: AV: 1.299.552.0, AS: 1.299.552.0, NIS: 1.299.552.0
Verze modulu: AM: 1.1.16200.1, NIS: 1.1.16200.1
Date: 2019-07-26 10:15:29.008
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/AutoKMS
ID: 2147685180
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\HP-OMEN\AppData\Local\Temp\KMSpico\cert\installAll.cmd
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-2J4O5S5\HP-OMEN
Název procesu: C:\Windows\KMS\KMSpico.exe
Verze bezpečnostních informací: AV: 1.299.552.0, AS: 1.299.552.0, NIS: 1.299.552.0
Verze modulu: AM: 1.1.16200.1, NIS: 1.1.16200.1
Date: 2019-07-25 13:34:07.123
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/Keygen
ID: 2147593794
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_F:\SW\Acrobat XI Pro 11 CZ+návod na instalaci by senior\Acrobat XI Pro 11 CZ+návod na instalaci by senior\Patch-MPT-DeGun TPB 2012\adobe.acrobat.xi.pro.patch-MPT.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-2J4O5S5\HP-OMEN
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.285.74.0, AS: 1.285.74.0, NIS: 1.285.74.0
Verze modulu: AM: 1.1.15600.4, NIS: 1.1.15600.4
Date: 2019-07-26 09:47:23.105
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.299.484.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16200.1
Kód chyby: 0x80240016
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
CodeIntegrity:
===================================
Date: 2020-01-06 22:57:55.862
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-01-06 22:57:55.858
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.
Date: 2020-01-06 22:57:52.453
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-01-06 22:57:52.450
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.
Date: 2020-01-06 22:57:48.021
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-01-06 22:57:48.016
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.
Date: 2020-01-06 22:57:48.006
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-01-06 22:57:48.003
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: Insyde F.52 05/02/2019
Motherboard: HP 8259
Processor: Intel(R) Core(TM) i7-7700HQ CPU @ 2.80GHz
Percentage of memory in use: 49%
Total physical RAM: 16269.14 MB
Available physical RAM: 8196.57 MB
Total Virtual: 25997.14 MB
Available Virtual: 16667.6 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:465.13 GB) (Free:281.43 GB) NTFS
Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:718.28 GB) NTFS
\\?\Volume{e82e3e18-7886-4a41-8f94-5549fd38db29}\ (Obnovení) (Fixed) (Total:0.52 GB) (Free:0.14 GB) NTFS
\\?\Volume{f525c893-b93b-4dc9-b997-a216bec897ef}\ () (Fixed) (Total:0.09 GB) (Free:0.05 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 2853A130)
Partition: GPT.
==================== End of Addition.txt =======================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-12-2019
Ran by HP-OMEN (06-01-2020 22:57:21)
Running from C:\Users\HP-OMEN\Desktop
Windows 10 Home Version 1903 18362.535 (X64) (2019-07-25 11:26:58)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2343376451-2767932507-3490548569-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2343376451-2767932507-3490548569-503 - Limited - Disabled)
Guest (S-1-5-21-2343376451-2767932507-3490548569-501 - Limited - Disabled)
HP-OMEN (S-1-5-21-2343376451-2767932507-3490548569-1001 - Administrator - Enabled) => C:\Users\HP-OMEN
WDAGUtilityAccount (S-1-5-21-2343376451-2767932507-3490548569-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
4Videosoft iOS Transfer 8.2.58 (HKLM-x32\...\{E8C3E38D-FE43-4a26-8B93-886E4F2C4710}_is1) (Version: 8.2.58 - 4Videosoft Studio)
Adobe After Effects 2019 (HKLM-x32\...\AEFT_16_1_1) (Version: 16.1.1 - Adobe Systems Incorporated)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.303 - Adobe)
Adobe Illustrator 2019 (HKLM-x32\...\ILST_23_0_3) (Version: 23.0.3 - Adobe Systems Incorporated)
Adobe Lightroom Classic CC (HKLM-x32\...\LTRM_8_2_1) (Version: 8.2.1 - Adobe Systems Incorporated)
Adobe Media Encoder 2019 (HKLM-x32\...\AME_13_1) (Version: 13.1 - Adobe Systems Incorporated)
Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0_2) (Version: 20.0.2 - Adobe Systems Incorporated)
Adobe Premiere Pro 2019 (HKLM-x32\...\PPRO_13_1) (Version: 13.1 - Adobe Systems Incorporated)
Aktualizace NVIDIA 31.0.11.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.0.11.0 - NVIDIA Corporation) Hidden
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{f8c930bd-0a68-425f-8c11-87723d1e2c97}) (Version: 20.90.0 - Intel Corporation)
Apple Mobile Device Support (HKLM\...\{45DDDFED-AABC-450C-B49C-5B4A5E547F5B}) (Version: 13.0.0.38 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.8.2393 - AVAST Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 77.2.2152.121 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.5.245.0 - AVAST Software) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.74.1085 - AB Team, d.o.o.)
Call Of Duty World At War version 1.7.1263.0 (HKLM-x32\...\Call Of Duty World At War_is1) (Version: 1.7.1263.0 - Mr DJ)
CCleaner (HKLM\...\{DCC7ED81-4222-4555-87F4-AE3E8B0C10D6}_is1) (Version: 5.55.7108 - Piriform)
FileZilla Client 3.46.3 (HKLM-x32\...\FileZilla Client) (Version: 3.46.3 - Tim Kosse)
Flvto Youtube Downloader (HKLM-x32\...\Flvto Youtube Downloader) (Version: 1.3.9 - Flvto.biz)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.88 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden
HP Audio Switch (HKLM-x32\...\{3A5141D4-47DB-4302-9B1C-272BE585BC8A}) (Version: 1.0.179.0 - HP Inc.)
HP Support Assistant (HKLM-x32\...\{F322B446-B157-4257-B44F-4F22D41F8EDB}) (Version: 8.8.24.33 - HP Inc.)
HP Support Solutions Framework (HKLM-x32\...\{682A0055-EB89-425A-812B-80C18244DC61}) (Version: 12.14.49.15 - HP Inc.)
HP System Event Utility (HKLM-x32\...\{57058272-92B0-4EFA-8FDD-ED3E5D689D37}) (Version: 1.4.32 - HP Inc.)
IncognitoVPN (HKLM-x32\...\{DEB67CBD-66D0-45C8-B487-8B61289722DB}_is1) (Version: 1.0.1.10 - IncognitoVPN)
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1069 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.2.0.1020 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.49.166.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{df682aff-4294-4ad1-aaa7-276931d5781f}) (Version: 1.49.166.0 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000020-0200-1029-84C8-B8D95FA3C8C3}) (Version: 20.20.0 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{226be6c3-8e08-4d52-bd3a-d361008448c5}) (Version: 10.1.1.37 - Intel(R) Corporation) Hidden
iTunes (HKLM\...\{65D2540A-990F-45BC-AF4C-482488F457E4}) (Version: 12.10.3.1 - Apple Inc.)
Java 8 Update 221 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180221F0}) (Version: 8.0.2210.11 - Oracle Corporation)
Java 8 Update 221 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180221F0}) (Version: 8.0.2210.11 - Oracle Corporation)
LRTimelapse 4.5 (HKLM-x32\...\{3B86296C-F4C8-4FE7-8561-CC5F444098D4}}_is1) (Version: 4.5 - Gunther Wegner)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.57 - McAfee, LLC.)
MediaHuman Video Converter verze 1.2.1 (HKLM-x32\...\MHVideoConverter_is1) (Version: 1.2.1 - MediaHuman)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2343376451-2767932507-3490548569-1001\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.15.26706 (HKLM-x32\...\{95ac1cfa-f4fb-4d1b-8912-7f9d5fbb140d}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština (HKLM\...\{90150000-001F-0405-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2013 - slovenčina (HKLM\...\{90150000-001F-041B-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
NVIDIA GeForce Experience 3.12.0.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.12.0.84 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Ovládací panel NVIDIA 431.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 431.36 - NVIDIA Corporation) Hidden
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{C3A282C9-4C8B-4A63-B449-3A064FB378D7}) (Version: 8.2 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{CC046FB9-E84E-4092-B924-DBE33DA2BE75}) (Version: 8.2 - Apple Inc.)
Popcorn Time (HKLM-x32\...\Popcorn Time_is1) (Version: 6.2.0.13 - Popcorn Time) <==== ATTENTION
PowerISO (HKLM-x32\...\PowerISO) (Version: 7.5 - Power Software Ltd)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.21292 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8581 - Realtek Semiconductor Corp.)
Red Dead Redemption 2 version final (HKLM-x32\...\Red Dead Redemption 2_is1) (Version: final - The)
Reimage Repair (HKLM\...\Reimage Repair) (Version: 1.8.9.8 - Reimage) <==== ATTENTION
Safe Watch (HKU\S-1-5-21-2343376451-2767932507-3490548569-1001\...\11b9ea7a-35e8-5cfb-8216-8caab4be266f) (Version: 1.1.18 - )
Synaptics ClickPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.5.10.75 - Synaptics Incorporated)
TAP-Windows 9.21.1 (HKLM\...\TAP-Windows) (Version: 9.21.1 - )
Update for Skype for Business 2015 (KB4475564) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{CD0EE05F-11E6-46FA-BB7B-D2A28C47A4F3}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4475564) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{CD0EE05F-11E6-46FA-BB7B-D2A28C47A4F3}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4475564) 64-Bit Edition (HKLM\...\{90150000-012B-0405-1000-0000000FF1CE}_Office15.PROPLUS_{CD0EE05F-11E6-46FA-BB7B-D2A28C47A4F3}) (Version: - Microsoft)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Packages:
=========
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-12] (Microsoft Corporation)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.2.0.0_x64__8j3eq9eme6ctt [2019-07-25] (INTEL CORP)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-07-26] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-07-26] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-16] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-18] (Microsoft Corporation) [MS Ad]
Ovládací centrum grafiky Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.1725.0_x64__8j3eq9eme6ctt [2019-11-23] (INTEL CORP) [Startup Task]
Raw Image Extension -> C:\Program Files\WindowsApps\Microsoft.RawImageExtension_1.0.21991.0_x64__8wekyb3d8bbwe [2019-10-11] (Microsoft Corporation)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0 [2019-12-21] (Spotify AB) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2019-09-15] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2019-09-15] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-07-03] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-10-02] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2019-09-15] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2019-12-12 19:56 - 2019-12-12 19:56 - 000138240 _____ ( ) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.IWs06dcaa36#\73d34090e18bd2a5d6ca6e9445d05751\Interop.IWshRuntimeLibrary.ni.dll
2019-11-23 04:48 - 2019-11-23 04:48 - 001322496 _____ () [File not signed] C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.1725.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\e_sqlite3.DLL
2019-11-23 04:48 - 2019-11-23 04:48 - 001322496 _____ () [File not signed] C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.1725.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\x64\e_sqlite3.dll
2019-12-12 19:56 - 2019-12-12 19:56 - 000134656 _____ (hardcodet.net) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_32\Hardcodet.W6cab32f3#\90ef9eec75f5c70a3eb88b1b76cbf21c\Hardcodet.Wpf.TaskbarNotification.ni.dll
2019-11-23 04:48 - 2019-11-23 04:48 - 040914432 _____ (Intel) [File not signed] C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.1725.0_x64__8j3eq9eme6ctt\IGCC.dll
2019-12-12 19:56 - 2019-12-12 19:56 - 001701888 _____ (Mark Heath & Contributors) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_32\NAudio\3e339fdd0ff8a301cca4ed76ecf8fb94\NAudio.ni.dll
2019-12-12 19:56 - 2019-12-12 19:56 - 003060736 _____ (Newtonsoft) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\c9e29742d37172af77ab1897076e91ef\Newtonsoft.Json.ni.dll
2019-12-12 19:56 - 2019-12-12 19:56 - 000793088 _____ (The Apache Software Foundation) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_32\log4net\4aa22377093c96a03b2bb88f1818b1f5\log4net.ni.dll
2019-12-14 22:08 - 2016-09-25 07:09 - 001012224 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\IncognitoVPN\platforms\qwindows.dll
2019-12-14 22:08 - 2019-01-14 21:25 - 004679168 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\IncognitoVPN\Qt5Core.dll
2019-12-14 22:08 - 2016-09-25 07:02 - 005026816 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\IncognitoVPN\Qt5Gui.dll
2019-12-14 22:08 - 2016-09-25 07:00 - 000855040 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\IncognitoVPN\Qt5Network.dll
2019-12-14 22:08 - 2016-09-25 07:06 - 004480512 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\IncognitoVPN\Qt5Widgets.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-2343376451-2767932507-3490548569-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-2343376451-2767932507-3490548569-1001\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-19 05:49 - 2013-03-10 11:32 - 000006913 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 192.150.14.69
127.0.0.1 192.150.18.101
127.0.0.1 192.150.18.108
127.0.0.1 192.150.22.40
127.0.0.1 192.150.8.100
127.0.0.1 192.150.8.118
127.0.0.1 209-34-83-73.ood.opsource.net
127.0.0.1 3dns-1.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 3dns-2.adobe.de
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-3.adobe.de
127.0.0.1 3dns-4.adobe.com
127.0.0.1 3dns-5.adobe.com
127.0.0.1 3dns.adobe.com
127.0.0.1 a125-252-224-90.deploy.akamaitechnologies.com
127.0.0.1 a125-252-224-91.deploy.akamaitechnologies.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 activate-sea.adobe.de
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 activate-sjc0.adobe.de
127.0.0.1 activate.adobe.com
127.0.0.1 activate.adobe.de
127.0.0.1 activate.nero.com
127.0.0.1 activate.nero.de
127.0.0.1 activate.wip.adobe.com
127.0.0.1 activate.wip1.adobe.com
127.0.0.1 activate.wip2.adobe.com
There are 163 more lines.
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%INTEL_DEV_REDIST%redist\intel64\compiler;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT
HKU\S-1-5-21-2343376451-2767932507-3490548569-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\HP-OMEN\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run32: => "PWRISOVM.EXE"
HKU\S-1-5-21-2343376451-2767932507-3490548569-1001\...\StartupApproved\Run: => "Zoner Photo Studio Autoupdate"
HKU\S-1-5-21-2343376451-2767932507-3490548569-1001\...\StartupApproved\Run: => "OneDrive"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{748BDE03-4B92-499A-83F7-664121A7733B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E89B142F-66D9-4497-9B43-F944A89B92CE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{1B6F71E4-BB30-4B5C-B826-9C951C6C0D2C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{6BC8F6DD-4231-4F04-AF73-37079FF5C06E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{23F3CE10-4816-4B51-A4BD-E96F29E3AA4E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{8CF6A9D1-1C2C-41B6-8054-D3387D636790}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{0AC72AB2-9293-4877-B1A2-7E06E338744C}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{5A115AAD-B21F-4358-A70C-6C685F4AC9CA}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7ECB3527-E1A3-42D8-AF0F-F35FC1453C0A}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2C572517-F76E-475B-AB3B-E789C68B5730}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7220B7F9-15CC-464D-9EBA-93E8B64BD088}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{BAC457E7-A299-4DC8-B60B-C4EC6B624193}C:\users\hp-omen\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\hp-omen\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{962FF666-29EF-4CF5-B503-F39E05FB9324}C:\users\hp-omen\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\hp-omen\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{E8B48E33-7C68-440A-B9A2-6A7AFE206AC3}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{A839F0E5-5318-4BB1-B5DF-CA817C5BCB87}C:\program files (x86)\popcorn time\nodejs\node.exe] => (Block) C:\program files (x86)\popcorn time\nodejs\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [UDP Query User{832C1738-DF12-4EC3-9850-661842298333}C:\program files (x86)\popcorn time\nodejs\node.exe] => (Block) C:\program files (x86)\popcorn time\nodejs\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [{96C3B826-EBD2-428E-AA7A-4C050B04A179}] => (Allow) C:\Program Files (x86)\Mr DJ\Call Of Duty World At War\CoDWaW.exe (Activision Publishing -> Activision Blizzard, Inc.) [File not signed]
FirewallRules: [{F39B9E3B-A9C4-4AAA-9AFD-60E3C53FEE78}] => (Allow) C:\Program Files (x86)\Mr DJ\Call Of Duty World At War\CoDWaW.exe (Activision Publishing -> Activision Blizzard, Inc.) [File not signed]
FirewallRules: [TCP Query User{F5A0368B-47F8-49E4-B36A-4B51F792CA94}C:\program files (x86)\mr dj\call of duty world at war\codwaw lanfixed.exe] => (Allow) C:\program files (x86)\mr dj\call of duty world at war\codwaw lanfixed.exe (Activision Blizzard, Inc.) [File not signed]
FirewallRules: [UDP Query User{02B8AACB-ADDB-4BB2-B7F3-9A4386E0EA53}C:\program files (x86)\mr dj\call of duty world at war\codwaw lanfixed.exe] => (Allow) C:\program files (x86)\mr dj\call of duty world at war\codwaw lanfixed.exe (Activision Blizzard, Inc.) [File not signed]
FirewallRules: [{295EAD61-A74D-4BDB-AD5E-3349E69CB0C9}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3BAD7DBC-D8B5-4A28-83C3-3F66E62F2CEE}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{12D724D0-6131-4D9F-994A-36CBB8A4B464}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{CCE24CB4-0DF7-46B3-B9A2-64DCC6C17F90}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{CAF15FDA-5B17-4E3B-856E-9687143A2962}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{80C4867B-02E3-4CBE-8D54-841B2D344A17}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe (Popcorn Time) [File not signed]
FirewallRules: [{D278860C-32D0-44A8-9939-A8AB6D6683CA}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe (Popcorn Time) [File not signed]
FirewallRules: [{319BC4BC-2920-4825-B77A-FCC4D0B28A72}] => (Allow) C:\Program Files (x86)\Popcorn Time\PopcornTimeDesktop.exe () [File not signed]
FirewallRules: [{DE75B206-7BB9-4EE8-B0A8-6502CA7AADDF}] => (Allow) C:\Program Files (x86)\Popcorn Time\PopcornTimeDesktop.exe () [File not signed]
FirewallRules: [{7849E398-1E7A-443C-8A57-DA29D3601E86}] => (Allow) C:\Program Files (x86)\Popcorn Time\nodejs\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [{8B5EEA69-DF13-4F89-9C43-36510E6C6B18}] => (Allow) C:\Program Files (x86)\Popcorn Time\nodejs\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [{40D57679-42B6-499F-BE48-B93FE1EC730A}] => (Allow) C:\Program Files (x86)\Popcorn Time\chromecast\node.exe (Joyent Inc -> Joyent, Inc)
FirewallRules: [{ABBD5142-BF9F-4198-BE91-AB25E9F871DB}] => (Allow) C:\Program Files (x86)\Popcorn Time\chromecast\node.exe (Joyent Inc -> Joyent, Inc)
FirewallRules: [{34B0BC6B-FC11-4833-AA6A-5B12BF12FDFD}] => (Allow) C:\Program Files (x86)\IncognitoVPN\vpn_module.exe (IncognitoVPN) [File not signed]
FirewallRules: [{7CDDCE52-A7A2-4FE3-ABDA-6007151FCFC0}] => (Allow) C:\Program Files (x86)\IncognitoVPN\vpn_module.exe (IncognitoVPN) [File not signed]
FirewallRules: [{4BC6AA1E-444E-417C-932D-1004778D56E4}] => (Allow) C:\Program Files (x86)\IncognitoVPN\openvpn.exe (ANONYMOUS VPN CONNECTIONS LTD -> The OpenVPN Project) [File not signed]
FirewallRules: [{A44EB71B-028D-41AC-9158-F37DE82B1237}] => (Allow) C:\Program Files (x86)\IncognitoVPN\openvpn.exe (ANONYMOUS VPN CONNECTIONS LTD -> The OpenVPN Project) [File not signed]
FirewallRules: [{27045A91-709B-4482-8146-2DE765EDDBCA}] => (Allow) C:\Users\HP-OMEN\AppData\Local\Programs\safe-watch\safe-watch.exe (SAFEVATCH, TOV -> GitHub, Inc.)
FirewallRules: [{701BD50B-B646-401C-BB61-2B96A4BEDE71}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{21377E1E-57AC-4A18-9EA3-D6830B601FE4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{98128AB3-E394-46D2-8788-D87FCE606D51}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{CCB8C22C-AAC5-4955-A8AD-F1E9C0586C95}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{24F5E471-C888-499F-80D8-73C19A621684}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4B998B71-9E7A-4D9F-A113-41BAC8D562FC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E162F28C-3548-45F6-A3D4-D5507193A163}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7953D283-80BD-4E72-9504-BCD8AA2CBA00}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{CC7E7828-33CB-45A6-A204-D61BEC880367}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A1D04F06-CBE9-447C-9BB3-27977A9896A2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.122.633.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{2873037A-1959-4D3E-8A88-C744C2E6543D}C:\users\hp-omen\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\hp-omen\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{2AE61507-2988-4668-8FB5-4CB775BEB828}C:\users\hp-omen\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\hp-omen\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{8584D3B8-3AC1-4849-B020-A56FAEB2E19E}] => (Allow) C:\Windows\Temp\KMSpico\AutoPico.exe No File
FirewallRules: [{E5E01A50-7351-4B1C-93F8-25815442E4B0}] => (Allow) C:\Windows\Temp\KMSpico\AutoPico.exe No File
==================== Restore Points =========================
18-12-2019 16:23:51 Naplánovaný kontrolní bod
27-12-2019 23:22:34 Naplánovaný kontrolní bod
04-01-2020 17:07:30 Installed VirtualDJ 2020
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (01/06/2020 10:54:02 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program RSITx64.exe verze 0.0.0.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 30cc
Čas spuštění: 01d5c4db599e3b0d
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Users\HP-OMEN\Desktop\RSITx64.exe
ID hlášení: e3833e0f-26be-447e-96e1-c5ae63c94f7d
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Cross-process
Error: (01/06/2020 10:20:52 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů C:\Windows\system32\sysmain.dll (kód chyby Win32 126).
Error: (01/06/2020 06:10:43 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.
Error: (01/06/2020 06:10:43 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
Error: (01/06/2020 06:10:43 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.
Error: (01/06/2020 06:10:43 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
Error: (01/06/2020 04:34:03 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 19110
Error: (01/06/2020 04:34:03 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 19110
System errors:
=============
Error: (01/06/2020 05:34:59 PM) (Source: disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk2\DR2.
Error: (01/06/2020 03:20:06 PM) (Source: disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk2\DR2.
Error: (01/06/2020 12:10:02 PM) (Source: disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk2\DR3.
Error: (01/06/2020 09:55:42 AM) (Source: BTHUSB) (EventID: 16) (User: )
Description: Vzájemné ověření mezi místním adaptérem Bluetooth a zařízením s adresou adaptéru Bluetooth (b0:ca:68:71:32:74) se nezdařilo.
Error: (01/05/2020 10:52:07 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {DDCFD26B-FEED-44CD-B71D-79487D2E5E5A} se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/05/2020 09:43:08 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {DDCFD26B-FEED-44CD-B71D-79487D2E5E5A} se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/05/2020 09:35:04 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {DDCFD26B-FEED-44CD-B71D-79487D2E5E5A} se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/05/2020 09:15:52 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {DDCFD26B-FEED-44CD-B71D-79487D2E5E5A} se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
===================================
Date: 2020-01-06 22:18:56.866
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {77C9638A-539C-45FC-BCD0-AF847EE1D701}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: DESKTOP-2J4O5S5\HP-OMEN
Date: 2019-07-26 10:15:32.559
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/AutoKMS
ID: 2147685180
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\HP-OMEN\AppData\Local\Temp\KMSpico\AutoPico.exe; file:_C:\Users\HP-OMEN\AppData\Local\Temp\KMSpico\cert\installAll.cmd
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-2J4O5S5\HP-OMEN
Název procesu: C:\Windows\KMS\KMSpico.exe
Verze bezpečnostních informací: AV: 1.299.552.0, AS: 1.299.552.0, NIS: 1.299.552.0
Verze modulu: AM: 1.1.16200.1, NIS: 1.1.16200.1
Date: 2019-07-26 10:15:29.008
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/AutoKMS
ID: 2147685180
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\HP-OMEN\AppData\Local\Temp\KMSpico\cert\installAll.cmd
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-2J4O5S5\HP-OMEN
Název procesu: C:\Windows\KMS\KMSpico.exe
Verze bezpečnostních informací: AV: 1.299.552.0, AS: 1.299.552.0, NIS: 1.299.552.0
Verze modulu: AM: 1.1.16200.1, NIS: 1.1.16200.1
Date: 2019-07-25 13:34:07.123
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/Keygen
ID: 2147593794
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_F:\SW\Acrobat XI Pro 11 CZ+návod na instalaci by senior\Acrobat XI Pro 11 CZ+návod na instalaci by senior\Patch-MPT-DeGun TPB 2012\adobe.acrobat.xi.pro.patch-MPT.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-2J4O5S5\HP-OMEN
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.285.74.0, AS: 1.285.74.0, NIS: 1.285.74.0
Verze modulu: AM: 1.1.15600.4, NIS: 1.1.15600.4
Date: 2019-07-26 09:47:23.105
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.299.484.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16200.1
Kód chyby: 0x80240016
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
CodeIntegrity:
===================================
Date: 2020-01-06 22:57:55.862
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-01-06 22:57:55.858
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.
Date: 2020-01-06 22:57:52.453
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-01-06 22:57:52.450
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.
Date: 2020-01-06 22:57:48.021
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-01-06 22:57:48.016
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.
Date: 2020-01-06 22:57:48.006
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-01-06 22:57:48.003
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\AVAST Software\Avast\snxhk.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: Insyde F.52 05/02/2019
Motherboard: HP 8259
Processor: Intel(R) Core(TM) i7-7700HQ CPU @ 2.80GHz
Percentage of memory in use: 49%
Total physical RAM: 16269.14 MB
Available physical RAM: 8196.57 MB
Total Virtual: 25997.14 MB
Available Virtual: 16667.6 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:465.13 GB) (Free:281.43 GB) NTFS
Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:718.28 GB) NTFS
\\?\Volume{e82e3e18-7886-4a41-8f94-5549fd38db29}\ (Obnovení) (Fixed) (Total:0.52 GB) (Free:0.14 GB) NTFS
\\?\Volume{f525c893-b93b-4dc9-b997-a216bec897ef}\ () (Fixed) (Total:0.09 GB) (Free:0.05 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 2853A130)
Partition: GPT.
==================== End of Addition.txt =======================
-
Rudy
- Site Admin
- Příspěvky: 118271
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Po spuštění černá obrazovka+CMD
Zdravím!
Do přík. řádku napište:
Na 1. kartě se přesvědčte, že je zapnuto normální spouštění. Pokud ne, zapněte ho, nastavení uložte a restartujte PC.
Do přík. řádku napište:
a odentrujte.msconfig
Na 1. kartě se přesvědčte, že je zapnuto normální spouštění. Pokud ne, zapněte ho, nastavení uložte a restartujte PC.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
JohnyHubage
- Návštěvník
- Příspěvky: 59
- Registrován: 05 bře 2007 22:01
- Bydliště: Liberec
- Kontaktovat uživatele:
Re: Po spuštění černá obrazovka+CMD
Příkaz proveden, nicméně problém to nadále neřeší. Dělal jsem i Windows Defender Offline check a úplnou kontrolu skrz Windows a našlo to trojan, který to údajně odstranilo, ale problém stále přetrvává 
-
Rudy
- Site Admin
- Příspěvky: 118271
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Po spuštění černá obrazovka+CMD
Zkoušel jste odinstalovat tu hru?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
JohnyHubage
- Návštěvník
- Příspěvky: 59
- Registrován: 05 bře 2007 22:01
- Bydliště: Liberec
- Kontaktovat uživatele:
Re: Po spuštění černá obrazovka+CMD
Ano, teď už je hra i veškeré komponenty odinstalovány, projeto vším možným, ale po restartu a přihlášení do windows opět černá obrazovka s přík. řádkem. Jaký mám podle vás zvolit postup? Bojím se, jestli v notebooku něco je, připojovat pracovní disk, na kterém mám citlivé data. Děkuji za odpověď.
-
Rudy
- Site Admin
- Příspěvky: 118271
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Po spuštění černá obrazovka+CMD
OK. Zkuste tedy obnovu systému k datu, kdy korektně fungoval. Na dálku nemohu říci, co všechno se v systému změnilo a obnova vrátí systém do stavu před vznikem toho problému.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?