Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosim o kontrolu logu

Patříte mezi Vzorné návštěvníky? Pak je tato sekce pro vás.

Moderátor: Moderátoři

Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Zamčeno
Zpráva
Autor
Uživatelský avatar
hladac
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 192
Registrován: 16 bře 2007 15:59
Bydliště: Bratislava

Prosim o kontrolu logu

#1 Příspěvek od hladac »

Dobry den,

chcel by som vas poprosit a prekontrolovanie logu. V podstate ziaden problem s Pc som nepostrehol, skor mi prisiel zas mail od seba sameho, ze sa mi niekto nabural na mail a vyhrazna sprava pokial nezaplatim. Obsah spravy ma netrapi, skor to "hacknutie" ak sa to da tak nazvat. :)

Dakujem

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-01-2020
Ran by Jurike (16-01-2020 19:43:00)
Running from C:\Users\Jurike\Downloads
Windows 10 Home Version 1809 17763.973 (X64) (2019-01-28 00:14:34)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1590120699-374295501-1933812845-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1590120699-374295501-1933812845-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-1590120699-374295501-1933812845-1000 - Limited - Disabled) => C:\Users\defaultuser0
Guest (S-1-5-21-1590120699-374295501-1933812845-501 - Limited - Disabled)
Jurike (S-1-5-21-1590120699-374295501-1933812845-1001 - Administrator - Enabled) => C:\Users\Jurike
WDAGUtilityAccount (S-1-5-21-1590120699-374295501-1933812845-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Internet Security (Enabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}
AS: Kaspersky Internet Security (Enabled - Up to date) {B1D2E896-6D96-7460-F17A-838B9D00DD65}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {32888857-01C3-7AB6-E095-11CC1854D0A3}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

4K Textures DLC (HKLM-x32\...\1286889002_is1) (Version: 5.0.9 - GOG.com)
Adobe Acrobat Reader DC - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 19.021.20061 - Adobe Systems Incorporated)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 19.4.1 - Advanced Micro Devices, Inc.)
Android Studio (HKLM\...\Android Studio) (Version: 3.3 - Google LLC)
Asistent pri inovácii na Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22175 - Microsoft Corporation)
Branding64 (HKLM\...\{EE2AFCE4-0238-4DE0-A140-1647021627C1}) (Version: 1.00.0001 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization BR (HKLM\...\{E7AA1A02-575C-14C6-FBEF-4BE6D46A5B74}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{36EDC500-E4C0-371C-9865-08450415C1E9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{4C2FB7FD-89FD-BA5C-585A-3811F326AD34}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{D74218A3-C503-57EF-AC9F-2220082E7ADE}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{DA433FCF-90A1-19A5-65A7-FDF82DE4826D}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{949F125B-A6CC-5A5E-EEE7-4AC50305C1FA}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{20D46801-147B-30AD-7C5A-AC4560A79096}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{22C39711-2747-D264-319A-1550BEEAAEC6}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{1DBACFDB-5E43-7882-36BD-53526D34BD22}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{EB6C44F1-0F78-FE10-BC63-90BA50AB0CE9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{B26D75B8-FAB7-6F8B-767F-BAF975383D91}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{A91FC4BF-C1EC-ADCA-79D1-F4F0671F1D60}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{ED75A775-03A7-F214-868D-497748707968}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{07BFBD5C-2F63-6828-1B61-B41A44113F3B}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{E6038D3E-5D87-8DF7-6D05-BE7532C3E73E}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{DFAD9DAC-4768-C8BB-4E0E-5239605A9BEA}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{FFBFBD1F-B160-A119-7C43-8584FA2E5665}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{4D1D5407-9B69-6422-629C-8518A26004A4}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{A8379BAB-59A9-C0A3-8BCC-4852EA403692}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{24DF617A-CD23-6E6A-126B-23630D2781CE}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{83DDDFD8-AD42-72F9-E4F1-5456FDB304C9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.117 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden
Gwent (HKLM-x32\...\1971477531_is1) (Version: 5.0.9 - GOG.com)
Intel(R) Network Connections 19.0.27.0 (HKLM\...\PROSetDX) (Version: 19.0.27.0 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4835 - Intel Corporation)
Intel® Hardware Accelerated Execution Manager (HKLM\...\{73250D12-B600-4ED6-AFC0-10D9D8EDA745}) (Version: 7.3.2 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{e48a2f61-851a-4155-82f9-af1b04db8c3b}) (Version: 10.0.13 - Intel(R) Corporation) Hidden
IntelliJ IDEA Community Edition 2019.1.1 (HKLM-x32\...\IntelliJ IDEA Community Edition 2019.1.1) (Version: 191.6707.61 - JetBrains s.r.o.)
Java SE Development Kit 8 Update 144 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180144}) (Version: 8.0.1440.1 - Oracle Corporation)
Java SE Development Kit 8 Update 161 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180161}) (Version: 8.0.1610.12 - Oracle Corporation)
Kaspersky Internet Security (HKLM-x32\...\{D891550B-ACFE-4797-B368-BCFC434BBEB1}) (Version: 20.0.14.1085 - Kaspersky) Hidden
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{D891550B-ACFE-4797-B368-BCFC434BBEB1}) (Version: 20.0.14.1085 - Kaspersky)
Kaspersky Password Manager (HKLM-x32\...\{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab) Hidden
Kaspersky Password Manager (HKLM-x32\...\InstallWIX_{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab)
Kaspersky Secure Connection (HKLM-x32\...\{145AE349-477A-45E5-A57C-5F5BF2BB5775}) (Version: 20.0.14.1085 - Kaspersky) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{145AE349-477A-45E5-A57C-5F5BF2BB5775}) (Version: 20.0.14.1085 - Kaspersky)
K-Lite Codec Pack 15.2.6 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.2.6 - KLCP)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\{2F5D7825-7460-43B1-B467-7F9737557108}) (Version: 4.2.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games)
Microsoft OneDrive (HKU\S-1-5-21-1590120699-374295501-1933812845-1001\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
NetBeans IDE 8.2 (HKLM\...\nbi-nb-base-8.2.0.0.201609300101) (Version: 8.2 - NetBeans.org)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
OpenTTD 1.9.3 (HKLM-x32\...\OpenTTD) (Version: 1.9.3 - OpenTTD)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7004 - Realtek Semiconductor Corp.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.17.199 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.4.3 - Rockstar Games)
SlimDX Runtime .NET 4.0 x64 (January 2012) (HKLM\...\{A2199A06-89C4-4187-AA4A-3A9676FB799D}) (Version: 2.0.13.43 - SlimDX Group)
Spotify (HKU\S-1-5-21-1590120699-374295501-1933812845-1001\...\Spotify) (Version: 1.1.24.91.g4ca6d5eb - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.6 - TeamSpeak Systems GmbH)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F814D094-197F-43C8-87FA-3210BB780486}) (Version: 2.53.0.0 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Vulkan Run Time Libraries 1.0.51.0 (HKLM\...\VulkanRT1.0.51.0) (Version: 1.0.51.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.0 (HKLM\...\VulkanRT1.0.65.0) (Version: 1.0.65.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.1.70.0 (HKLM\...\VulkanRT1.1.70.0) (Version: 1.1.70.0 - LunarG, Inc.) Hidden
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)

Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-06] (Autodesk Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-28] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-28] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.34.20074.0_x64__8wekyb3d8bbwe [2020-01-14] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-12] (Microsoft Studios) [MS Ad]
MSN Počasie -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-18] (Microsoft Corporation) [MS Ad]
Word Mobile -> C:\Program Files\WindowsApps\Microsoft.Office.Word_16001.12325.20032.0_x64__8wekyb3d8bbwe [2019-12-13] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\ShellEx.dll [2019-11-14] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\ShellEx.dll [2019-11-14] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers4: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\ShellEx.dll [2019-11-14] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2019-03-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-10-20] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\ShellEx.dll [2019-11-14] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Jurike\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 3"
ShortcutWithArgument: C:\Users\Jurike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Chrome\Hudba Google Play (1).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=fahmaaghhglfmonjliepjlchgpgfmobi

==================== Loaded Modules (Whitelisted) =============

2019-01-24 14:38 - 2019-01-24 14:38 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.DLL
2019-01-24 14:38 - 2019-01-24 14:38 - 002551808 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 000018432 _____ () [File not signed] C:\Program Files\TeamSpeak 3 Client\libEGL.DLL
2017-04-03 12:19 - 2019-06-20 13:27 - 003572224 _____ () [File not signed] C:\Program Files\TeamSpeak 3 Client\libGLESv2.dll
2017-10-02 20:16 - 2019-06-20 13:28 - 000157696 _____ () [File not signed] C:\Users\Jurike\AppData\Roaming\TS3Client\plugins\gamepad_joystick_win64.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000040960 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000345600 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000502784 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 001413632 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
2019-03-26 22:50 - 2019-03-26 22:50 - 005786112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2019-01-24 14:37 - 2019-01-24 14:37 - 006303232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2019-01-24 14:37 - 2019-01-24 14:37 - 001077248 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2019-01-24 14:37 - 2019-01-24 14:37 - 000323584 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2019-01-24 14:37 - 2019-01-24 14:37 - 003556352 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2019-01-24 14:37 - 2019-01-24 14:37 - 003699712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2019-01-24 14:37 - 2019-01-24 14:37 - 000331264 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2019-01-24 14:37 - 2019-01-24 14:37 - 000355328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2019-01-24 14:37 - 2019-01-24 14:37 - 076171264 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2019-01-24 14:37 - 2019-01-24 14:37 - 000113152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 005590528 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000461312 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000189952 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 002821632 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000053760 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000017408 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000327680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000137728 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000089600 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000135680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\styles\qwindowsvistastyle.dll
2017-03-28 10:01 - 2019-06-20 13:27 - 000035328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\iconengines\qsvgicon.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\imageformats\qgif.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 000397312 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\imageformats\qjpeg.dll
2017-04-19 14:31 - 2019-06-20 13:27 - 000025600 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\imageformats\qsvg.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 001453568 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\platforms\qwindows.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 006130176 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\Qt5Core.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 006470656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\Qt5Gui.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 001314816 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\Qt5Network.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 000317440 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\Qt5Positioning.dll
2019-06-20 13:27 - 2019-06-20 13:27 - 000318464 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\Qt5PrintSupport.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 004001792 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\Qt5Qml.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 003776000 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\Qt5Quick.dll
2019-06-20 13:27 - 2019-06-20 13:27 - 000072704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\Qt5QuickWidgets.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 000205312 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\Qt5Sql.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 000332288 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\Qt5Svg.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 079989760 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\Qt5WebEngineCore.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 000228864 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\Qt5WebEngineWidgets.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 000113664 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\Qt5WebChannel.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 005580800 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\Qt5Widgets.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 001151488 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\sqldrivers\qsqlite.dll
2019-06-20 13:27 - 2019-06-20 13:27 - 000137216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\styles\qwindowsvistastyle.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Public\AppData:CSM [484]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [458]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-07-16 12:47 - 2016-07-16 12:45 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKCU\Environment\\Path -> C:\Users\Jurike\AppData\Local\Microsoft\WindowsApps
HKU\S-1-5-21-1590120699-374295501-1933812845-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Jurike\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\toyota_rav4_plug_in_hybrid_2020_4k-HD.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{AB8BA521-D5B4-480E-B1E9-0ABA80448AF7}] => (Allow) F:\SteamLibrary\steamapps\common\theHunter\launcher\launcher.exe No File
FirewallRules: [{DBBBD13B-97C3-49C1-B827-0A6709C4B6B3}] => (Allow) F:\SteamLibrary\steamapps\common\theHunter\launcher\launcher.exe No File
FirewallRules: [{A4212848-66B7-47AE-BE43-2B09E5B7E9A0}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{1A30139C-26EE-45FF-AC0A-31746E24D7F2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{F6825D83-249E-4AA7-9B14-2627D7615C77}F:\hry\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) F:\hry\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe No File
FirewallRules: [UDP Query User{7CE1A8D4-E7C7-4C4A-B52A-33B9E718F8ED}F:\hry\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) F:\hry\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe No File
FirewallRules: [TCP Query User{31A4D36C-14A0-4263-8DB9-6F13D39D91B1}F:\hry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) F:\hry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [UDP Query User{FBB4460A-448E-444A-8120-F2CCF7F37975}F:\hry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) F:\hry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [{8B8A3152-CBC8-4583-8323-975FC46E6622}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{6B040A1A-C5DB-4560-84A9-53DA8F87C9E5}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{02C71FC7-1C37-43E2-B2AC-30946DB7063D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{36E3F6EF-0502-42A8-A829-53AAC2A8F81D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{D4718737-54A1-4887-8AE4-9159E7E302CE}] => (Allow) F:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{C5D6C294-A1A0-4788-9959-6AE5D0DBA109}] => (Allow) F:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{B5DAF88B-D951-46F1-A245-0AA7834EA4FE}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe No File
FirewallRules: [{08936F4D-979A-4E96-A048-B667641592C4}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe No File
FirewallRules: [{8570316F-2CCA-4513-B8CD-A91710F596C5}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe No File
FirewallRules: [{C76F07F2-FEE5-4F23-BD8E-B66B6F26808E}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe No File
FirewallRules: [{655DDFF3-D7F5-4D14-9EEF-B7F8BCF47DEF}] => (Allow) C:\Program Files (x86)\BlueStacks\HD-Player.exe No File
FirewallRules: [{4E3890A7-A9B5-4DD2-95B6-7BCEF0415729}] => (Allow) F:\SteamLibrary\steamapps\common\Deceit\bin\win_x64\Deceit.exe No File
FirewallRules: [{509BD9E7-0C86-4BF4-8FB3-91859FBE921A}] => (Allow) F:\SteamLibrary\steamapps\common\Deceit\bin\win_x64\Deceit.exe No File
FirewallRules: [{7B517B34-D9A7-4311-BC68-91991A417484}] => (Allow) F:\SteamLibrary\steamapps\common\DarkestDungeon\_windows\Darkest.exe No File
FirewallRules: [{C5368A6E-49B5-4D6A-B0A7-E7F414602088}] => (Allow) F:\SteamLibrary\steamapps\common\DarkestDungeon\_windows\Darkest.exe No File
FirewallRules: [{6525E28C-E080-4A63-8A2B-661AE15EC9EB}] => (Allow) F:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]
FirewallRules: [{B7B1848B-1B81-4D6B-9EA1-536FED36712B}] => (Allow) F:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]
FirewallRules: [{1F807373-CD02-49E4-A582-D0D627C79429}] => (Allow) C:\Users\Jurike\AppData\Roaming\uTorrent\uTorrent.exe No File
FirewallRules: [{BCC7E606-E138-40E3-85E0-8AADA0D6513F}] => (Allow) C:\Users\Jurike\AppData\Roaming\uTorrent\uTorrent.exe No File
FirewallRules: [{007DB506-D0D5-4192-A04F-A36E2DAA43B8}] => (Allow) C:\Users\Jurike\AppData\Local\Programs\Opera\60.0.3255.70\opera.exe No File
FirewallRules: [{56DA56BD-A860-4901-8307-9D39996AEC4F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\America's Army\AAPG\Binaries\Win32\AAGame.exe No File
FirewallRules: [{C83F5101-EDDE-4537-A23D-2A0C3350D7D7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\America's Army\AAPG\Binaries\Win32\AAGame.exe No File
FirewallRules: [{B3746162-3ACA-4BD5-AAA2-1B6D66F61338}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\America's Army\AAPG\Binaries\Win32\AALauncher32.exe No File
FirewallRules: [{F0A88F28-0AA7-4790-9636-C01E46CCC382}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\America's Army\AAPG\Binaries\Win32\AALauncher32.exe No File
FirewallRules: [{73C9C4E0-BA50-4705-94CA-4999CA985743}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe No File
FirewallRules: [{33723E31-2463-41B5-A830-8D9749D51306}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe No File
FirewallRules: [{B90352C3-94A6-4BE5-96BD-CCE478658DA0}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe No File
FirewallRules: [{5510288D-D7EA-4C2B-A36E-C7BCEB9E0926}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe No File
FirewallRules: [{F33A2B2A-BCC1-45D5-8CE5-02E05732FF1A}] => (Allow) C:\Program Files (x86)\CombatArms Classic\NMService.exe (valofe Co.,Ltd. -> Nexon Corp.)
FirewallRules: [{C9AAB280-E2BF-4E67-935E-55458A93CDB1}] => (Allow) C:\Program Files (x86)\CombatArms Classic\NMService.exe (valofe Co.,Ltd. -> Nexon Corp.)
FirewallRules: [{26B13F0B-CDCF-4F45-BDB4-F85A971F3821}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Squad\binaries\win64\BlackSquadGame.exe No File
FirewallRules: [{A2CCF90F-439B-4558-A55F-2F4FB6C50476}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Squad\binaries\win64\BlackSquadGame.exe No File
FirewallRules: [{FCA46566-C67F-4507-AD43-8DB67F899E13}] => (Allow) F:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{4BFBA658-BAA0-4F2C-8E1D-DC40C4CC5036}] => (Allow) F:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{34048A3A-29EA-49CE-A623-66792E14D36F}F:\hry\riot\game\league of legends.exe] => (Allow) F:\hry\riot\game\league of legends.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{9E8A4A18-FAD3-401D-ACEE-1ADA991A4312}F:\hry\riot\game\league of legends.exe] => (Allow) F:\hry\riot\game\league of legends.exe (Riot Games, Inc. -> )
FirewallRules: [{D5E95712-E42E-4A0B-8609-6A4A163E0C38}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Deceit\bin\win_x64\Deceit.exe No File
FirewallRules: [{D5DB9327-F86B-4D5F-9370-C4505FA038CC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Deceit\bin\win_x64\Deceit.exe No File
FirewallRules: [{EA26A2A6-EC71-4867-8891-C0F4FBDE3B38}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\They Are Billions\TheyAreBillions.exe (Numantian Games) [File not signed]
FirewallRules: [{CEFB8FEE-E8CC-48A5-8824-861219F246DA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\They Are Billions\TheyAreBillions.exe (Numantian Games) [File not signed]
FirewallRules: [{6AA605E3-8D5E-4C99-AD0B-79904C1591AC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{4F05010F-55D5-4E68-8880-D51EC00159F9}] => (Allow) F:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]
FirewallRules: [{8B5FACB2-094C-4273-AD8B-B217A4C2DDB0}] => (Allow) F:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]

==================== Restore Points =========================

30-12-2019 16:21:14 Installed DirectX
06-01-2020 02:17:09 Installed DirectX
13-01-2020 13:42:47 Scheduled Checkpoint
16-01-2020 13:49:54 Windows Update

==================== Faulty Device Manager Devices ============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: ========================

Application errors:
==================
Error: (01/12/2020 09:11:21 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SkypeApp.exe version 8.55.0.131 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 1710

Start Time: 01d5c91fc3fb0fc7

Termination Time: 4294967295

Application Path: C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.55.131.0_x64__kzf8qxf38zg5c\SkypeApp.exe

Report Id: 8ac537e8-6660-4a55-b0e9-7b92595fdf99

Faulting package full name: Microsoft.SkypeApp_14.55.131.0_x64__kzf8qxf38zg5c

Faulting package-relative application ID: App

Hang type: Quiesce

Error: (12/12/2019 05:14:44 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Steam.exe version 5.54.18.66 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 2a24

Start Time: 01d5b026254c3c2d

Termination Time: 40

Application Path: C:\Program Files (x86)\Steam\Steam.exe

Report Id: de4df96f-c700-4a40-af4d-720557ab191b

Faulting package full name:

Faulting package-relative application ID:

Hang type: Unknown

Error: (12/06/2019 02:37:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: RockstarService.exe, verzia: 1.0.16.196, časová značka: 0x5de02eaf
Názov chybujúceho modulu: RockstarService.exe, verzia: 1.0.16.196, časová značka: 0x5de02eaf
Kód výnimky: 0xc0000005
Odstup chyby: 0x0000000000003ddc
Identifikácia chybujúceho procesu: 0xa50
Čas spustenia chybujúcej aplikácie: 0x01d5abff81abffc2
Cesta chybujúcej aplikácie: C:\Program Files\Rockstar Games\Launcher\RockstarService.exe
Cesta chybujúceho modulu: C:\Program Files\Rockstar Games\Launcher\RockstarService.exe
Identifikácia hlásenia: 9c4021d3-3059-46cc-b3e8-c8232a0606c8
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (12/05/2019 04:05:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: RockstarService.exe, verzia: 1.0.16.196, časová značka: 0x5de02eaf
Názov chybujúceho modulu: ntdll.dll, verzia: 10.0.17763.831, časová značka: 0x1f1a0210
Kód výnimky: 0xc0000374
Odstup chyby: 0x00000000000fb049
Identifikácia chybujúceho procesu: 0x3518
Čas spustenia chybujúcej aplikácie: 0x01d5ab368005e198
Cesta chybujúcej aplikácie: C:\Program Files\Rockstar Games\Launcher\RockstarService.exe
Cesta chybujúceho modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
Identifikácia hlásenia: 7cc4dada-10fc-46a4-bd00-8f83f5170d6d
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (11/10/2019 03:00:09 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: atieclxx.exe, verzia: 25.20.15031.1000, časová značka: 0x5c9aee3d
Názov chybujúceho modulu: atieclxx.exe, verzia: 25.20.15031.1000, časová značka: 0x5c9aee3d
Kód výnimky: 0xc0000005
Odstup chyby: 0x0000000000023030
Identifikácia chybujúceho procesu: 0x26c8
Čas spustenia chybujúcej aplikácie: 0x01d596b17e635b7f
Cesta chybujúcej aplikácie: C:\WINDOWS\System32\DriverStore\FileRepository\c0340919.inf_amd64_34b11cb20ab427c6\B340755\atieclxx.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\DriverStore\FileRepository\c0340919.inf_amd64_34b11cb20ab427c6\B340755\atieclxx.exe
Identifikácia hlásenia: 685244eb-ffee-4e2f-a141-d220fe7cb386
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (10/27/2019 02:37:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: atieclxx.exe, verzia: 25.20.15031.1000, časová značka: 0x5c9aee3d
Názov chybujúceho modulu: atieclxx.exe, verzia: 25.20.15031.1000, časová značka: 0x5c9aee3d
Kód výnimky: 0xc0000005
Odstup chyby: 0x0000000000022f30
Identifikácia chybujúceho procesu: 0xa8c
Čas spustenia chybujúcej aplikácie: 0x01d58bf1a5d2e829
Cesta chybujúcej aplikácie: C:\WINDOWS\System32\DriverStore\FileRepository\c0340919.inf_amd64_34b11cb20ab427c6\B340755\atieclxx.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\DriverStore\FileRepository\c0340919.inf_amd64_34b11cb20ab427c6\B340755\atieclxx.exe
Identifikácia hlásenia: e5e0abb5-4cae-47ce-9744-25d85be63dbe
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (10/04/2019 09:00:46 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: User hive is loaded by another process (Registry Lock) Process name: C:\Windows\System32\svchost.exe, PID: 4836, ProfSvc PID: 2108.

Error: (09/16/2019 06:40:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: bad_module_info, verzia: 0.0.0.0, časová značka: 0x00000000
Názov chybujúceho modulu: unknown, verzia: 0.0.0.0, časová značka: 0x00000000
Kód výnimky: 0xc0000409
Odstup chyby: 0x00007ffb6448d408
Identifikácia chybujúceho procesu: 0x1008
Čas spustenia chybujúcej aplikácie: 0x01d56cb125b29834
Cesta chybujúcej aplikácie: bad_module_info
Cesta chybujúceho modulu: unknown
Identifikácia hlásenia: db414c6c-566e-4eed-bac9-daf64290d5e7
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:


System errors:
=============
Error: (01/16/2020 06:46:54 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.SecurityAppBroker
and APPID
Unavailable
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/16/2020 06:46:54 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.WscBrokerManager
and APPID
Unavailable
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/16/2020 06:45:33 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-F5KS1DK)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user DESKTOP-F5KS1DK\Jurike SID (S-1-5-21-1590120699-374295501-1933812845-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/16/2020 06:45:30 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-F5KS1DK)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user DESKTOP-F5KS1DK\Jurike SID (S-1-5-21-1590120699-374295501-1933812845-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/16/2020 06:45:25 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-F5KS1DK)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user DESKTOP-F5KS1DK\Jurike SID (S-1-5-21-1590120699-374295501-1933812845-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/16/2020 06:44:50 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 18:28:01 on ‎16. ‎1. ‎2020 was unexpected.

Error: (01/16/2020 02:27:35 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
and APPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/16/2020 02:27:35 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.


Windows Defender:
===================================
Date: 2019-09-29 00:41:33.742
Description:
Windows Defender Antivirus has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures.
Signatures Attempted: Current
Error Code: 0x80070003
Error description: The system cannot find the path specified.
Signature version: 0.0.0.0;0.0.0.0
Engine version: 0.0.0.0

CodeIntegrity:
===================================

Date: 2019-06-04 18:28:23.897
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\CombatArms Classic\GameGuard\npggNT64.des that did not meet the Microsoft signing level requirements.

Date: 2019-06-04 18:28:22.461
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\CombatArms Classic\GameGuard\npggNT64.des that did not meet the Microsoft signing level requirements.

Date: 2019-06-04 18:28:19.099
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SearchIndexer.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\CombatArms Classic\GameGuard\npggNT64.des that did not meet the Microsoft signing level requirements.

Date: 2019-06-04 18:28:17.576
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\CombatArms Classic\GameGuard\npggNT64.des that did not meet the Microsoft signing level requirements.

Date: 2019-06-04 18:25:25.626
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\CombatArms Classic\GameGuard\npggNT64.des that did not meet the Microsoft signing level requirements.

Date: 2019-06-04 18:25:24.163
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\CombatArms Classic\GameGuard\npggNT64.des that did not meet the Microsoft signing level requirements.

Date: 2019-06-04 18:25:20.558
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SearchIndexer.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\CombatArms Classic\GameGuard\npggNT64.des that did not meet the Microsoft signing level requirements.

Date: 2019-06-04 18:25:18.992
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\CombatArms Classic\GameGuard\npggNT64.des that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. P1.10 11/29/2013
Motherboard: ASRock B85 Killer
Processor: Intel(R) Core(TM) i5-4460 CPU @ 3.20GHz
Percentage of memory in use: 66%
Total physical RAM: 7077.29 MB
Available physical RAM: 2377.98 MB
Total Virtual: 16805.29 MB
Available Virtual: 8442.44 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:231.57 GB) (Free:110.33 GB) NTFS
Drive f: (N1Bro) (Fixed) (Total:232.88 GB) (Free:118.32 GB) NTFS

\\?\Volume{2a88c86d-0000-0000-0000-100000000000}\ (Vyhradené systémom) (Fixed) (Total:0.49 GB) (Free:0.46 GB) NTFS
\\?\Volume{2a88c86d-0000-0000-0000-b0033a000000}\ () (Fixed) (Total:0.83 GB) (Free:0.44 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 2A88C86D)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=231.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=846 MB) - (Type=27)

==========================================================
Disk: 1 (Size: 232.9 GB) (Disk ID: 2A88C828)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-01-2020
Ran by Jurike (administrator) on DESKTOP-F5KS1DK (16-01-2020 19:41:10)
Running from C:\Users\Jurike\Downloads
Loaded Profiles: Jurike (Available Profiles: defaultuser0 & Jurike)
Platform: Windows 10 Home Version 1809 17763.973 (X64) Language: Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0340919.inf_amd64_34b11cb20ab427c6\B340755\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0340919.inf_amd64_34b11cb20ab427c6\B340755\atiesrxx.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GOG Galaxy Notifications Renderer.exe
(GOG Sp. z o.o. -> GOG.com) C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\avp.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\avpui.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_tray.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksdeui.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19081.22010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19101.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\schtasks.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Spotify AB -> Spotify Ltd) C:\Users\Jurike\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\Jurike\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\Jurike\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\Jurike\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\Jurike\AppData\Roaming\Spotify\Spotify.exe
(TeamSpeak Systems GmbH -> TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13636824 2013-07-26] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [kpm_tray.exe] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_tray.exe [629864 2019-11-14] (Kaspersky Lab -> AO Kaspersky Lab)
HKU\S-1-5-21-1590120699-374295501-1933812845-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3288016 2019-12-16] (Valve -> Valve Corporation)
HKU\S-1-5-21-1590120699-374295501-1933812845-1001\...\Run: [Spotify] => C:\Users\Jurike\AppData\Roaming\Spotify\Spotify.exe [22202272 2020-01-16] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1590120699-374295501-1933812845-1001\...\Run: [GoogleChromeAutoLaunch_81C258D9268D498059D485A48CC33BD0] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
HKU\S-1-5-21-1590120699-374295501-1933812845-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-1590120699-374295501-1933812845-1001\...\Run: [launchOnStartup] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [7937608 2019-12-04] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-1590120699-374295501-1933812845-1001\...\MountPoints2: {f07158e8-be91-11e9-b27c-bc5ff4fa27e7} - "D:\setup.exe"
HKU\S-1-5-21-1590120699-374295501-1933812845-1001\...\MountPoints2: {f0715910-be91-11e9-b27c-bc5ff4fa27e7} - "E:\setup.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.117\Installer\chrmstp.exe [2020-01-10] (Google LLC -> Google LLC)
Startup: C:\Users\Jurike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\IQTray.lnk [2019-02-06]
ShortcutTarget: IQTray.lnk -> C:\Program Files (x86)\IQ Option\IQTray.exe (No File)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {26BBE125-87E9-4A7D-B673-49CF347149A2} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [468992 2019-03-27] (Advanced Micro Devices, Inc.) [File not signed]
Task: {2D976E29-1BD9-4128-9F44-29C75FA98852} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1724928 2019-11-16] () [File not signed]
Task: {32367555-5970-4245-9F2B-0656EED397CF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-10-02] (Google Inc -> Google Inc.)
Task: {5517B07C-D657-4C79-8DAB-4631C72FD2E5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-10-02] (Google Inc -> Google Inc.)
Task: {63CBFE42-D6DF-4CA7-873C-7D35CA84FA3B} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {99664007-E0A6-4CB1-AADD-3EDBAD8A5722} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [58760 2019-03-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {B44D6022-E3E8-49F8-9588-EF3A738D559C} - System32\Tasks\Opera scheduled assistant Autoupdate 1556969859 => C:\Users\Jurike\AppData\Local\Programs\Opera\launcher.exe
Task: {B90849A8-E6B0-400D-8A0C-3899838EEC76} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\BIN64\InstallManagerApp.exe [468992 2019-03-27] (Advanced Micro Devices, Inc.) [File not signed]
Task: {C33F12EF-4C7D-4D8E-B884-00A3546DB945} - System32\Tasks\Opera scheduled Autoupdate 1556969856 => C:\Users\Jurike\AppData\Local\Programs\Opera\launcher.exe
Task: {CDF87707-74B3-4CB7-B154-202118434737} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {E2BA26CB-2265-4D84-BAFA-C90888FE831E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1873288 2019-09-19] (AVAST Software s.r.o. -> AVAST Software)
Task: {E3A9CF0B-58FF-47D7-AD63-B9C4512418AF} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe
Task: {F01043F1-AF2C-4321-BF42-AD529EA55F38} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe [791232 2019-11-14] (Kaspersky Lab -> AO Kaspersky Lab)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{1e6e37b1-85a3-4e3a-879b-8b1a737c806b}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{1e6e37b1-85a3-4e3a-879b-8b1a737c806b}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2ebbf74c-3a4b-4b97-9a90-1ddf5771e978}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{2ebbf74c-3a4b-4b97-9a90-1ddf5771e978}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{64da120e-d9c6-445a-95f7-dc853b86b725}: [NameServer] 8.8.8.8,8.8.4.4

Internet Explorer:
==================
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_211\bin\ssv.dll => No File
BHO: Kaspersky Protection -> {9F904093-6E18-4536-BF5F-B03689CF00F0} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\IEExt\ie_plugin.dll [2019-12-09] (Kaspersky Lab -> AO Kaspersky Lab)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_211\bin\jp2ssv.dll => No File
BHO-x32: Kaspersky Protection -> {9F904093-6E18-4536-BF5F-B03689CF00F0} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\IEExt\ie_plugin.dll [2019-12-09] (Kaspersky Lab -> AO Kaspersky Lab)
Toolbar: HKLM - Kaspersky Protection Toolbar - {EF293C5A-9F37-49FD-91C4-2B867063FC54} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\IEExt\ie_plugin.dll [2019-12-09] (Kaspersky Lab -> AO Kaspersky Lab)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {EF293C5A-9F37-49FD-91C4-2B867063FC54} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\IEExt\ie_plugin.dll [2019-12-09] (Kaspersky Lab -> AO Kaspersky Lab)

FireFox:
========
FF HKLM\...\Firefox\Extensions: [light_plugin_A07576A3CEBC4A72A8CF2C925907DB05@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\FFExt\light_plugin_firefox\addon.xpi => not found
FF HKLM\...\Firefox\Extensions: [light_plugin_B29D4AD94F82454BBC9215BCBD7E80AE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\FFExt\light_plugin_firefox\addon.xpi [2019-12-09]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_A07576A3CEBC4A72A8CF2C925907DB05@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\FFExt\light_plugin_firefox\addon.xpi => not found
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_B29D4AD94F82454BBC9215BCBD7E80AE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\FFExt\light_plugin_firefox\addon.xpi
FF Plugin: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [No File]
FF Plugin: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=3.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-12-02] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Profile 3
CHR Profile: C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\Profile 3 [2020-01-16]
CHR Extension: (Prezentácie) - C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-12-17]
CHR Extension: (Dokumenty) - C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2019-12-17]
CHR Extension: (Disk Google) - C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-12-17]
CHR Extension: (YouTube) - C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-12-17]
CHR Extension: (Adobe Acrobat) - C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-12-17]
CHR Extension: (Kaspersky Protection) - C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\elhpdacimkjpccooodognopfhbdgnpbk [2019-12-17]
CHR Extension: (Tabuľky) - C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-12-17]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-12-17]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-12-18]
CHR Extension: (Twitch Now) - C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk [2020-01-05]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-12-17]
CHR Extension: (Gmail) - C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-12-17]
CHR Extension: (Chrome Media Router) - C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-17]
CHR Profile: C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\System Profile [2019-12-17]
CHR HKLM\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\c0340919.inf_amd64_34b11cb20ab427c6\B340755\atiesrxx.exe [508832 2019-04-01] (Advanced Micro Devices, Inc. -> AMD)
R2 AVP20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\avp.exe [357416 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8473200 2019-03-27] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2019-09-16] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1208392 2019-12-04] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6617160 2019-12-04] (GOG Sp. z o.o. -> GOG.com)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [365040 2017-10-20] (Intel(R) pGFX -> Intel Corporation)
S3 klvssbridge64_20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\vssbridge64.exe [438928 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [354008 2019-02-08] (Kaspersky Lab -> AO Kaspersky Lab)
R2 KSDE4.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe [619752 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [8493592 2019-05-19] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [474256 2019-12-17] (Rockstar Games, Inc. -> Rockstar Games)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\NisSrv.exe [3004048 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MsMpEng.exe [103384 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0340919.inf_amd64_34b11cb20ab427c6\B340755\atikmdag.sys [52888992 2019-04-01] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0340919.inf_amd64_34b11cb20ab427c6\B340755\atikmpag.sys [590752 2019-04-01] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [107400 2018-10-03] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [246912 2019-02-16] (Kaspersky Lab -> AO Kaspersky Lab)
R3 KillerEth; C:\WINDOWS\System32\drivers\e2xw10x64.sys [145920 2018-09-15] (Microsoft Windows -> Qualcomm Atheros, Inc.)
R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [79696 2019-12-09] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [145304 2019-12-09] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [93312 2019-03-12] (Kaspersky Lab -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [37816 2019-01-24] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [251512 2019-10-28] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [516216 2019-09-17] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [1123664 2019-10-17] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\klids.sys [201280 2019-12-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [998016 2019-10-28] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [58192 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [79184 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [59512 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [51328 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab)
S3 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [45904 2019-03-10] (Kaspersky Lab -> AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [48592 2018-03-16] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [251256 2019-10-07] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [99152 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [306248 2019-10-24] (Kaspersky Lab -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [119744 2019-10-16] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [204520 2019-10-09] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [105600 2019-03-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [211048 2019-12-09] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [232272 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
R2 NPF; C:\WINDOWS\system32\drivers\npf.sys [35344 2019-02-10] (CACE Technologies, Inc. -> CACE Technologies, Inc.)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [45936 2017-08-15] (SteelSeries ApS -> SteelSeries ApS)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46688 2019-10-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [350136 2019-10-02] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54200 2019-10-02] (Microsoft Windows -> Microsoft Corporation)
U3 aswbdisk; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-01-16 19:41 - 2020-01-16 19:41 - 000025951 _____ C:\Users\Jurike\Downloads\FRST.txt
2020-01-16 19:40 - 2020-01-16 19:40 - 002573312 _____ (Farbar) C:\Users\Jurike\Downloads\FRST64 (1).exe
2020-01-16 19:37 - 2020-01-16 19:41 - 000000000 ____D C:\FRST
2020-01-16 19:36 - 2020-01-16 19:36 - 002573312 _____ (Farbar) C:\Users\Jurike\Downloads\FRST64.exe
2020-01-15 13:35 - 2019-03-28 10:11 - 000029232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2020-01-15 13:35 - 2019-03-28 10:11 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100_clr0400.dll
2020-01-15 13:35 - 2019-03-28 10:09 - 000032816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2020-01-15 13:35 - 2019-03-28 10:09 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100_clr0400.dll
2020-01-15 13:35 - 2019-03-28 07:35 - 000772176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_clr0400.dll
2020-01-15 13:35 - 2019-03-28 07:35 - 000702400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase_clr0400.dll
2020-01-15 13:35 - 2019-03-28 07:35 - 000622832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140_clr0400.dll
2020-01-15 13:35 - 2019-03-28 07:35 - 000433448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140_clr0400.dll
2020-01-15 13:35 - 2019-03-28 07:35 - 000087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140_clr0400.dll
2020-01-15 13:35 - 2019-03-28 07:35 - 000083768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcruntime140_clr0400.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 009668408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-01-15 13:33 - 2020-01-15 13:33 - 008905728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 007922688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 006543736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 005436696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-01-15 13:33 - 2020-01-15 13:33 - 003637248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-01-15 13:33 - 2020-01-15 13:33 - 002707968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-01-15 13:33 - 2020-01-15 13:33 - 002469440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 002419712 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-01-15 13:33 - 2020-01-15 13:33 - 002323896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 002149160 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 001936520 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 001721144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 001677088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 001670800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 001665712 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 001484800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 001258296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-01-15 13:33 - 2020-01-15 13:33 - 001200920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 001084416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 001050624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-01-15 13:33 - 2020-01-15 13:33 - 001049400 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-01-15 13:33 - 2020-01-15 13:33 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000930816 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000878080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-01-15 13:33 - 2020-01-15 13:33 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000839680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000677144 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000651776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2020-01-15 13:33 - 2020-01-15 13:33 - 000572416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000541264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000410616 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000405304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-01-15 13:33 - 2020-01-15 13:33 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000350416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV1.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti_ci.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000154976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2020-01-15 13:33 - 2020-01-15 13:33 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadss.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000122568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiadss.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-01-15 13:33 - 2020-01-15 13:33 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-01-15 13:33 - 2020-01-15 13:33 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-01-15 13:33 - 2020-01-15 13:33 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-01-15 13:33 - 2020-01-15 13:33 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-01-15 13:33 - 2020-01-15 13:33 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-01-15 13:33 - 2020-01-15 13:33 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-01-15 13:33 - 2020-01-15 13:33 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-01-15 13:33 - 2020-01-15 13:33 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-01-06 12:31 - 2020-01-06 12:31 - 000000000 ____D C:\Users\Jurike\AppData\LocalLow\CDProjektRED
2020-01-06 04:06 - 2020-01-09 14:48 - 000001422 _____ C:\Users\Public\Desktop\Gwent.lnk
2020-01-06 04:06 - 2020-01-09 14:48 - 000001422 _____ C:\ProgramData\Desktop\Gwent.lnk
2020-01-06 04:06 - 2020-01-09 14:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gwent [GOG.com]
2020-01-06 02:09 - 2020-01-06 02:09 - 000001110 _____ C:\Users\Public\Desktop\GOG Galaxy.lnk
2020-01-06 02:09 - 2020-01-06 02:09 - 000001110 _____ C:\ProgramData\Desktop\GOG Galaxy.lnk
2020-01-06 02:09 - 2020-01-06 02:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2020-01-06 02:08 - 2020-01-06 04:06 - 000000000 ____D C:\ProgramData\GOG.com
2020-01-06 02:07 - 2020-01-06 02:08 - 001156704 _____ (GOG Sp. z o.o.) C:\Users\Jurike\Downloads\GOG_Galaxy_Gwent.exe
2019-12-17 21:12 - 2019-12-17 21:15 - 000002444 _____ C:\Users\Jurike\Desktop\Google Chrome.lnk
2019-12-17 21:02 - 2019-12-17 21:09 - 000000289 _____ C:\Users\Jurike\Desktop\Nový textový dokument.txt

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-01-16 19:41 - 2017-10-02 20:48 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2020-01-16 19:39 - 2019-01-28 01:16 - 001652338 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-01-16 19:39 - 2018-09-15 08:31 - 000000000 ____D C:\WINDOWS\INF
2020-01-16 19:39 - 2017-10-04 15:05 - 000624106 _____ C:\WINDOWS\system32\perfh01B.dat
2020-01-16 19:39 - 2017-10-04 15:05 - 000190236 _____ C:\WINDOWS\system32\perfc01B.dat
2020-01-16 19:29 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-01-16 18:51 - 2017-10-02 20:16 - 000000000 ____D C:\Users\Jurike\AppData\Roaming\TS3Client
2020-01-16 18:45 - 2019-11-21 15:58 - 000000000 ____D C:\Users\Jurike\AppData\Local\Spotify
2020-01-16 18:45 - 2019-11-21 15:57 - 000000000 ____D C:\Users\Jurike\AppData\Roaming\Spotify
2020-01-16 18:45 - 2019-02-03 19:09 - 000003114 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2020-01-16 18:45 - 2019-01-28 01:10 - 000000000 ____D C:\Users\Jurike
2020-01-16 18:45 - 2018-07-30 19:58 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2020-01-16 18:45 - 2018-02-21 22:22 - 000000000 __SHD C:\Users\Jurike\IntelGraphicsProfiles
2020-01-16 18:45 - 2017-10-02 20:01 - 000000000 ____D C:\Program Files (x86)\Steam
2020-01-16 18:44 - 2019-10-22 14:11 - 000032768 _____ C:\WINDOWS\SysWOW64\antimalware.unwanted_products.product_registry.kvdb-shm
2020-01-16 18:44 - 2019-10-22 14:11 - 000032768 _____ C:\WINDOWS\SysWOW64\antimalware.unwanted_products.browser_extension_registry.kvdb-shm
2020-01-16 18:44 - 2019-10-22 14:11 - 000032768 _____ C:\WINDOWS\SysWOW64\antimalware.patch_management.product_registry.kvdb-shm
2020-01-16 18:44 - 2019-01-28 01:14 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-01-16 18:44 - 2019-01-28 01:08 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-01-16 13:50 - 2018-09-15 08:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-01-16 13:50 - 2017-10-04 14:40 - 000000000 ____D C:\Program Files\UNP
2020-01-16 13:48 - 2019-01-28 01:08 - 000267736 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-01-15 21:40 - 2018-09-15 08:33 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-01-15 21:40 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-01-15 21:40 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-01-15 21:40 - 2018-09-15 07:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-01-15 21:40 - 2017-10-06 16:14 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2020-01-15 21:12 - 2018-05-14 10:35 - 000000000 ____D C:\Users\Jurike\AppData\Local\D3DSCache
2020-01-15 19:44 - 2019-10-22 14:11 - 000074192 _____ C:\WINDOWS\SysWOW64\antimalware.unwanted_products.product_registry.kvdb-wal
2020-01-15 13:40 - 2017-10-04 14:43 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-01-15 13:37 - 2017-10-04 14:43 - 120202352 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-01-14 19:00 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2020-01-14 19:00 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-01-14 15:26 - 2018-09-15 07:09 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2020-01-10 14:37 - 2017-10-02 19:27 - 000002313 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-01-06 04:06 - 2017-10-02 19:25 - 000000000 ____D C:\ProgramData\Package Cache
2020-01-06 02:09 - 2018-12-01 20:48 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy
2019-12-19 15:04 - 2017-10-09 22:19 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-12-18 15:58 - 2017-10-02 19:43 - 000000000 ____D C:\Users\Jurike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Chrome
2019-12-17 21:31 - 2017-12-01 08:51 - 000000000 ____D C:\Users\Jurike\AppData\Local\Packages

==================== Files in the root of some directories ========

2018-07-30 19:26 - 2018-07-30 19:26 - 000212524 _____ () C:\Users\Jurike\AppData\Roaming\DMGR_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt
2018-08-29 21:02 - 2018-08-30 17:07 - 000000098 _____ () C:\Users\Jurike\AppData\Roaming\LauncherSettings_live.cfg
2018-08-29 20:56 - 2018-08-29 21:07 - 000012242 _____ () C:\Users\Jurike\AppData\Roaming\TheHunterSettings_live.bin
2018-08-29 21:05 - 2018-08-29 21:07 - 000000048 _____ () C:\Users\Jurike\AppData\Roaming\TheHunterSettings_steam_live.cfg
2017-10-02 19:45 - 2017-10-02 19:45 - 000000017 _____ () C:\Users\Jurike\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosim o kontrolu logu

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Uživatelský avatar
hladac
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 192
Registrován: 16 bře 2007 15:59
Bydliště: Bratislava

Re: Prosim o kontrolu logu

#3 Příspěvek od hladac »

# -------------------------------
# Malwarebytes AdwCleaner 8.0.1.0
# -------------------------------
# Build: 12-17-2019
# Database: 2020-01-13.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 01-16-2020
# Duration: 00:00:00
# OS: Windows 10 Home
# Cleaned: 1
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\csastats

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1475 octets] - [01/02/2019 00:20:05]
AdwCleaner[C00].txt - [1545 octets] - [01/02/2019 00:20:30]
AdwCleaner[S01].txt - [1466 octets] - [16/01/2020 20:13:01]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosim o kontrolu logu

#4 Příspěvek od Rudy »

Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Uživatelský avatar
hladac
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 192
Registrován: 16 bře 2007 15:59
Bydliště: Bratislava

Re: Prosim o kontrolu logu

#5 Příspěvek od hladac »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-01-2020
Ran by Jurike (administrator) on DESKTOP-F5KS1DK (17-01-2020 20:06:10)
Running from C:\Users\Jurike\Downloads
Loaded Profiles: Jurike (Available Profiles: defaultuser0 & Jurike)
Platform: Windows 10 Home Version 1809 17763.973 (X64) Language: Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\GOG Galaxy\Games\Gwent\Gwent.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0340919.inf_amd64_34b11cb20ab427c6\B340755\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0340919.inf_amd64_34b11cb20ab427c6\B340755\atiesrxx.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GOG Galaxy Notifications Renderer.exe
(GOG Sp. z o.o. -> GOG.com) C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
(GOG Sp. z o.o. -> GOG.com) C:\ProgramData\GOG.com\Galaxy\redists\overlay\GalaxyOverlay.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\avp.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\avp.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\avpui.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_tray.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksdeui.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19081.22010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19101.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\GameBarPresenceWriter.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\schtasks.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Spotify AB -> Spotify Ltd) C:\Users\Jurike\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\Jurike\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\Jurike\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\Jurike\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\Jurike\AppData\Roaming\Spotify\Spotify.exe
(TeamSpeak Systems GmbH -> TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
(Unity Technologies Aps -> ) C:\Program Files (x86)\GOG Galaxy\Games\Gwent\UnityCrashHandler64.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13636824 2013-07-26] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [kpm_tray.exe] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_tray.exe [629864 2019-11-14] (Kaspersky Lab -> AO Kaspersky Lab)
HKU\S-1-5-21-1590120699-374295501-1933812845-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3288016 2019-12-16] (Valve -> Valve Corporation)
HKU\S-1-5-21-1590120699-374295501-1933812845-1001\...\Run: [Spotify] => C:\Users\Jurike\AppData\Roaming\Spotify\Spotify.exe [22202272 2020-01-16] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1590120699-374295501-1933812845-1001\...\Run: [GoogleChromeAutoLaunch_81C258D9268D498059D485A48CC33BD0] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
HKU\S-1-5-21-1590120699-374295501-1933812845-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-1590120699-374295501-1933812845-1001\...\Run: [launchOnStartup] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [7937608 2019-12-04] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-1590120699-374295501-1933812845-1001\...\MountPoints2: {f07158e8-be91-11e9-b27c-bc5ff4fa27e7} - "D:\setup.exe"
HKU\S-1-5-21-1590120699-374295501-1933812845-1001\...\MountPoints2: {f0715910-be91-11e9-b27c-bc5ff4fa27e7} - "E:\setup.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.117\Installer\chrmstp.exe [2020-01-10] (Google LLC -> Google LLC)
Startup: C:\Users\Jurike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\IQTray.lnk [2019-02-06]
ShortcutTarget: IQTray.lnk -> C:\Program Files (x86)\IQ Option\IQTray.exe (No File)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {26BBE125-87E9-4A7D-B673-49CF347149A2} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [468992 2019-03-27] (Advanced Micro Devices, Inc.) [File not signed]
Task: {2D976E29-1BD9-4128-9F44-29C75FA98852} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1724928 2019-11-16] () [File not signed]
Task: {32367555-5970-4245-9F2B-0656EED397CF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-10-02] (Google Inc -> Google Inc.)
Task: {5517B07C-D657-4C79-8DAB-4631C72FD2E5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-10-02] (Google Inc -> Google Inc.)
Task: {63CBFE42-D6DF-4CA7-873C-7D35CA84FA3B} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {99664007-E0A6-4CB1-AADD-3EDBAD8A5722} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [58760 2019-03-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {B44D6022-E3E8-49F8-9588-EF3A738D559C} - System32\Tasks\Opera scheduled assistant Autoupdate 1556969859 => C:\Users\Jurike\AppData\Local\Programs\Opera\launcher.exe
Task: {C33F12EF-4C7D-4D8E-B884-00A3546DB945} - System32\Tasks\Opera scheduled Autoupdate 1556969856 => C:\Users\Jurike\AppData\Local\Programs\Opera\launcher.exe
Task: {CDF87707-74B3-4CB7-B154-202118434737} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {E2BA26CB-2265-4D84-BAFA-C90888FE831E} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1873288 2019-09-19] (AVAST Software s.r.o. -> AVAST Software)
Task: {E3A9CF0B-58FF-47D7-AD63-B9C4512418AF} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe
Task: {F01043F1-AF2C-4321-BF42-AD529EA55F38} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe [791232 2019-11-14] (Kaspersky Lab -> AO Kaspersky Lab)
Task: {F47C5862-C065-43B1-A3A8-A31C367F5D7C} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\BIN64\InstallManagerApp.exe [468992 2019-03-27] (Advanced Micro Devices, Inc.) [File not signed]

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{1e6e37b1-85a3-4e3a-879b-8b1a737c806b}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{1e6e37b1-85a3-4e3a-879b-8b1a737c806b}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2ebbf74c-3a4b-4b97-9a90-1ddf5771e978}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{2ebbf74c-3a4b-4b97-9a90-1ddf5771e978}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{64da120e-d9c6-445a-95f7-dc853b86b725}: [NameServer] 8.8.8.8,8.8.4.4

Internet Explorer:
==================
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_211\bin\ssv.dll => No File
BHO: Kaspersky Protection -> {9F904093-6E18-4536-BF5F-B03689CF00F0} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\IEExt\ie_plugin.dll [2019-12-09] (Kaspersky Lab -> AO Kaspersky Lab)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_211\bin\jp2ssv.dll => No File
BHO-x32: Kaspersky Protection -> {9F904093-6E18-4536-BF5F-B03689CF00F0} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\IEExt\ie_plugin.dll [2019-12-09] (Kaspersky Lab -> AO Kaspersky Lab)
Toolbar: HKLM - Kaspersky Protection Toolbar - {EF293C5A-9F37-49FD-91C4-2B867063FC54} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\IEExt\ie_plugin.dll [2019-12-09] (Kaspersky Lab -> AO Kaspersky Lab)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {EF293C5A-9F37-49FD-91C4-2B867063FC54} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\IEExt\ie_plugin.dll [2019-12-09] (Kaspersky Lab -> AO Kaspersky Lab)

FireFox:
========
FF HKLM\...\Firefox\Extensions: [light_plugin_A07576A3CEBC4A72A8CF2C925907DB05@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\FFExt\light_plugin_firefox\addon.xpi => not found
FF HKLM\...\Firefox\Extensions: [light_plugin_B29D4AD94F82454BBC9215BCBD7E80AE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\FFExt\light_plugin_firefox\addon.xpi [2019-12-09]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_A07576A3CEBC4A72A8CF2C925907DB05@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\FFExt\light_plugin_firefox\addon.xpi => not found
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_B29D4AD94F82454BBC9215BCBD7E80AE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\FFExt\light_plugin_firefox\addon.xpi
FF Plugin: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [No File]
FF Plugin: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=3.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-12-02] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Profile 3
CHR Profile: C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\Profile 3 [2020-01-17]
CHR Extension: (Prezentácie) - C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-12-17]
CHR Extension: (Dokumenty) - C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2019-12-17]
CHR Extension: (Disk Google) - C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-12-17]
CHR Extension: (YouTube) - C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-12-17]
CHR Extension: (Adobe Acrobat) - C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-12-17]
CHR Extension: (Kaspersky Protection) - C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\elhpdacimkjpccooodognopfhbdgnpbk [2019-12-17]
CHR Extension: (Tabuľky) - C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-12-17]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-12-17]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-12-18]
CHR Extension: (Twitch Now) - C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk [2020-01-05]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-12-17]
CHR Extension: (Gmail) - C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-12-17]
CHR Extension: (Chrome Media Router) - C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-17]
CHR Profile: C:\Users\Jurike\AppData\Local\Google\Chrome\User Data\System Profile [2019-12-17]
CHR HKLM\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\c0340919.inf_amd64_34b11cb20ab427c6\B340755\atiesrxx.exe [508832 2019-04-01] (Advanced Micro Devices, Inc. -> AMD)
R2 AVP20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\avp.exe [357416 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8473200 2019-03-27] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2019-09-16] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1208392 2019-12-04] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6617160 2019-12-04] (GOG Sp. z o.o. -> GOG.com)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [365040 2017-10-20] (Intel(R) pGFX -> Intel Corporation)
S3 klvssbridge64_20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\vssbridge64.exe [438928 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [354008 2019-02-08] (Kaspersky Lab -> AO Kaspersky Lab)
R2 KSDE4.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe [619752 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [8493592 2019-05-19] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [474256 2019-12-17] (Rockstar Games, Inc. -> Rockstar Games)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\NisSrv.exe [3004048 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MsMpEng.exe [103384 2019-10-02] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0340919.inf_amd64_34b11cb20ab427c6\B340755\atikmdag.sys [52888992 2019-04-01] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0340919.inf_amd64_34b11cb20ab427c6\B340755\atikmpag.sys [590752 2019-04-01] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [107400 2018-10-03] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [246912 2019-02-16] (Kaspersky Lab -> AO Kaspersky Lab)
R3 KillerEth; C:\WINDOWS\System32\drivers\e2xw10x64.sys [145920 2018-09-15] (Microsoft Windows -> Qualcomm Atheros, Inc.)
R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [79696 2019-12-09] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [145304 2019-12-09] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [93312 2019-03-12] (Kaspersky Lab -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [37816 2019-01-24] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [251512 2019-10-28] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [516216 2019-09-17] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [1123664 2019-10-17] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\klids.sys [201280 2019-12-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [998016 2019-10-28] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [58192 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [79184 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [59512 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [51328 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab)
S3 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [45904 2019-03-10] (Kaspersky Lab -> AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [48592 2018-03-16] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [251256 2019-10-07] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [99152 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [306248 2019-10-24] (Kaspersky Lab -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [119744 2019-10-16] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [204520 2019-10-09] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [105600 2019-03-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [211048 2019-12-09] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [232272 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
R2 NPF; C:\WINDOWS\system32\drivers\npf.sys [35344 2019-02-10] (CACE Technologies, Inc. -> CACE Technologies, Inc.)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [45936 2017-08-15] (SteelSeries ApS -> SteelSeries ApS)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46688 2019-10-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [350136 2019-10-02] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54200 2019-10-02] (Microsoft Windows -> Microsoft Corporation)
U3 aswbdisk; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-01-16 20:11 - 2020-01-16 20:11 - 008237744 _____ (Malwarebytes) C:\Users\Jurike\Downloads\AdwCleaner.exe
2020-01-16 19:43 - 2020-01-16 19:44 - 000050922 _____ C:\Users\Jurike\Downloads\Addition.txt
2020-01-16 19:41 - 2020-01-17 20:06 - 000026178 _____ C:\Users\Jurike\Downloads\FRST.txt
2020-01-16 19:40 - 2020-01-16 19:40 - 002573312 _____ (Farbar) C:\Users\Jurike\Downloads\FRST64 (1).exe
2020-01-16 19:37 - 2020-01-17 20:06 - 000000000 ____D C:\FRST
2020-01-16 19:36 - 2020-01-16 19:36 - 002573312 _____ (Farbar) C:\Users\Jurike\Downloads\FRST64.exe
2020-01-15 13:35 - 2019-03-28 10:11 - 000029232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2020-01-15 13:35 - 2019-03-28 10:11 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100_clr0400.dll
2020-01-15 13:35 - 2019-03-28 10:09 - 000032816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2020-01-15 13:35 - 2019-03-28 10:09 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100_clr0400.dll
2020-01-15 13:35 - 2019-03-28 07:35 - 000772176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_clr0400.dll
2020-01-15 13:35 - 2019-03-28 07:35 - 000702400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase_clr0400.dll
2020-01-15 13:35 - 2019-03-28 07:35 - 000622832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140_clr0400.dll
2020-01-15 13:35 - 2019-03-28 07:35 - 000433448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140_clr0400.dll
2020-01-15 13:35 - 2019-03-28 07:35 - 000087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140_clr0400.dll
2020-01-15 13:35 - 2019-03-28 07:35 - 000083768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcruntime140_clr0400.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 009668408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-01-15 13:33 - 2020-01-15 13:33 - 008905728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 007922688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 006543736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 005436696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-01-15 13:33 - 2020-01-15 13:33 - 003637248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-01-15 13:33 - 2020-01-15 13:33 - 002707968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-01-15 13:33 - 2020-01-15 13:33 - 002469440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 002419712 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-01-15 13:33 - 2020-01-15 13:33 - 002323896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 002149160 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 001936520 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 001721144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 001677088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 001670800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 001665712 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 001484800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 001258296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-01-15 13:33 - 2020-01-15 13:33 - 001200920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 001084416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 001050624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-01-15 13:33 - 2020-01-15 13:33 - 001049400 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-01-15 13:33 - 2020-01-15 13:33 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000930816 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000878080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-01-15 13:33 - 2020-01-15 13:33 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000839680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000677144 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000651776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2020-01-15 13:33 - 2020-01-15 13:33 - 000572416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000541264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000410616 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000405304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-01-15 13:33 - 2020-01-15 13:33 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000350416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV1.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti_ci.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000154976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2020-01-15 13:33 - 2020-01-15 13:33 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadss.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000122568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiadss.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-01-15 13:33 - 2020-01-15 13:33 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2020-01-15 13:33 - 2020-01-15 13:33 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-01-15 13:33 - 2020-01-15 13:33 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-01-15 13:33 - 2020-01-15 13:33 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-01-15 13:33 - 2020-01-15 13:33 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-01-15 13:33 - 2020-01-15 13:33 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-01-15 13:33 - 2020-01-15 13:33 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-01-15 13:33 - 2020-01-15 13:33 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-01-15 13:33 - 2020-01-15 13:33 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-01-06 12:31 - 2020-01-06 12:31 - 000000000 ____D C:\Users\Jurike\AppData\LocalLow\CDProjektRED
2020-01-06 04:06 - 2020-01-09 14:48 - 000001422 _____ C:\Users\Public\Desktop\Gwent.lnk
2020-01-06 04:06 - 2020-01-09 14:48 - 000001422 _____ C:\ProgramData\Desktop\Gwent.lnk
2020-01-06 04:06 - 2020-01-09 14:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gwent [GOG.com]
2020-01-06 02:09 - 2020-01-06 02:09 - 000001110 _____ C:\Users\Public\Desktop\GOG Galaxy.lnk
2020-01-06 02:09 - 2020-01-06 02:09 - 000001110 _____ C:\ProgramData\Desktop\GOG Galaxy.lnk
2020-01-06 02:09 - 2020-01-06 02:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2020-01-06 02:08 - 2020-01-06 04:06 - 000000000 ____D C:\ProgramData\GOG.com
2020-01-06 02:07 - 2020-01-06 02:08 - 001156704 _____ (GOG Sp. z o.o.) C:\Users\Jurike\Downloads\GOG_Galaxy_Gwent.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-01-17 20:06 - 2017-10-02 20:48 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2020-01-17 20:00 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-01-17 19:48 - 2019-01-28 01:08 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-01-17 16:51 - 2019-11-21 15:57 - 000000000 ____D C:\Users\Jurike\AppData\Roaming\Spotify
2020-01-17 15:43 - 2017-10-02 20:16 - 000000000 ____D C:\Users\Jurike\AppData\Roaming\TS3Client
2020-01-17 15:22 - 2018-05-14 10:35 - 000000000 ____D C:\Users\Jurike\AppData\Local\D3DSCache
2020-01-17 15:06 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2020-01-17 15:06 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-01-17 15:03 - 2019-11-21 15:58 - 000000000 ____D C:\Users\Jurike\AppData\Local\Spotify
2020-01-17 15:03 - 2019-02-03 19:09 - 000003114 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2020-01-17 15:03 - 2018-07-30 19:58 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2020-01-17 15:03 - 2018-02-21 22:22 - 000000000 __SHD C:\Users\Jurike\IntelGraphicsProfiles
2020-01-17 15:03 - 2017-10-02 20:01 - 000000000 ____D C:\Program Files (x86)\Steam
2020-01-16 21:15 - 2019-01-28 01:16 - 001652338 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-01-16 21:15 - 2018-09-15 08:31 - 000000000 ____D C:\WINDOWS\INF
2020-01-16 21:15 - 2017-10-04 15:05 - 000624106 _____ C:\WINDOWS\system32\perfh01B.dat
2020-01-16 21:15 - 2017-10-04 15:05 - 000190236 _____ C:\WINDOWS\system32\perfc01B.dat
2020-01-16 20:14 - 2019-10-22 14:11 - 000032768 _____ C:\WINDOWS\SysWOW64\antimalware.unwanted_products.product_registry.kvdb-shm
2020-01-16 20:14 - 2019-10-22 14:11 - 000032768 _____ C:\WINDOWS\SysWOW64\antimalware.unwanted_products.browser_extension_registry.kvdb-shm
2020-01-16 20:14 - 2019-10-22 14:11 - 000032768 _____ C:\WINDOWS\SysWOW64\antimalware.patch_management.product_registry.kvdb-shm
2020-01-16 20:13 - 2019-01-28 01:14 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-01-16 20:13 - 2019-01-28 01:10 - 000000000 ____D C:\Users\Jurike
2020-01-16 20:13 - 2018-09-15 07:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-01-16 20:13 - 2017-10-06 16:14 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2020-01-16 20:09 - 2019-11-19 21:08 - 000002459 _____ C:\Users\Public\Desktop\Kaspersky Internet Security.lnk
2020-01-16 20:09 - 2019-11-19 21:08 - 000002459 _____ C:\ProgramData\Desktop\Kaspersky Internet Security.lnk
2020-01-16 13:50 - 2018-09-15 08:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-01-16 13:50 - 2017-10-04 14:40 - 000000000 ____D C:\Program Files\UNP
2020-01-16 13:48 - 2019-01-28 01:08 - 000267736 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-01-15 21:40 - 2018-09-15 08:33 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-01-15 21:40 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-01-15 21:40 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-01-15 19:44 - 2019-10-22 14:11 - 000074192 _____ C:\WINDOWS\SysWOW64\antimalware.unwanted_products.product_registry.kvdb-wal
2020-01-15 13:40 - 2017-10-04 14:43 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-01-15 13:37 - 2017-10-04 14:43 - 120202352 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-01-14 15:26 - 2018-09-15 07:09 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2020-01-10 14:37 - 2017-10-02 19:27 - 000002313 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-01-06 04:06 - 2017-10-02 19:25 - 000000000 ____D C:\ProgramData\Package Cache
2020-01-06 02:09 - 2018-12-01 20:48 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy
2019-12-19 15:04 - 2017-10-09 22:19 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-12-18 15:58 - 2017-10-02 19:43 - 000000000 ____D C:\Users\Jurike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Chrome

==================== Files in the root of some directories ========

2018-07-30 19:26 - 2018-07-30 19:26 - 000212524 _____ () C:\Users\Jurike\AppData\Roaming\DMGR_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt
2018-08-29 21:02 - 2018-08-30 17:07 - 000000098 _____ () C:\Users\Jurike\AppData\Roaming\LauncherSettings_live.cfg
2018-08-29 20:56 - 2018-08-29 21:07 - 000012242 _____ () C:\Users\Jurike\AppData\Roaming\TheHunterSettings_live.bin
2018-08-29 21:05 - 2018-08-29 21:07 - 000000048 _____ () C:\Users\Jurike\AppData\Roaming\TheHunterSettings_steam_live.cfg
2017-10-02 19:45 - 2017-10-02 19:45 - 000000017 _____ () C:\Users\Jurike\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================





Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-01-2020
Ran by Jurike (17-01-2020 20:07:25)
Running from C:\Users\Jurike\Downloads
Windows 10 Home Version 1809 17763.973 (X64) (2019-01-28 00:14:34)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1590120699-374295501-1933812845-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1590120699-374295501-1933812845-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-1590120699-374295501-1933812845-1000 - Limited - Disabled) => C:\Users\defaultuser0
Guest (S-1-5-21-1590120699-374295501-1933812845-501 - Limited - Disabled)
Jurike (S-1-5-21-1590120699-374295501-1933812845-1001 - Administrator - Enabled) => C:\Users\Jurike
WDAGUtilityAccount (S-1-5-21-1590120699-374295501-1933812845-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Internet Security (Enabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}
AS: Kaspersky Internet Security (Enabled - Up to date) {B1D2E896-6D96-7460-F17A-838B9D00DD65}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {32888857-01C3-7AB6-E095-11CC1854D0A3}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

4K Textures DLC (HKLM-x32\...\1286889002_is1) (Version: 5.0.9 - GOG.com)
Adobe Acrobat Reader DC - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 19.021.20061 - Adobe Systems Incorporated)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 19.4.1 - Advanced Micro Devices, Inc.)
Android Studio (HKLM\...\Android Studio) (Version: 3.3 - Google LLC)
Asistent pri inovácii na Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22175 - Microsoft Corporation)
Branding64 (HKLM\...\{EE2AFCE4-0238-4DE0-A140-1647021627C1}) (Version: 1.00.0001 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization BR (HKLM\...\{E7AA1A02-575C-14C6-FBEF-4BE6D46A5B74}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{36EDC500-E4C0-371C-9865-08450415C1E9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{4C2FB7FD-89FD-BA5C-585A-3811F326AD34}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{D74218A3-C503-57EF-AC9F-2220082E7ADE}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{DA433FCF-90A1-19A5-65A7-FDF82DE4826D}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{949F125B-A6CC-5A5E-EEE7-4AC50305C1FA}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{20D46801-147B-30AD-7C5A-AC4560A79096}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{22C39711-2747-D264-319A-1550BEEAAEC6}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{1DBACFDB-5E43-7882-36BD-53526D34BD22}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{EB6C44F1-0F78-FE10-BC63-90BA50AB0CE9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{B26D75B8-FAB7-6F8B-767F-BAF975383D91}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{A91FC4BF-C1EC-ADCA-79D1-F4F0671F1D60}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{ED75A775-03A7-F214-868D-497748707968}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{07BFBD5C-2F63-6828-1B61-B41A44113F3B}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{E6038D3E-5D87-8DF7-6D05-BE7532C3E73E}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{DFAD9DAC-4768-C8BB-4E0E-5239605A9BEA}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{FFBFBD1F-B160-A119-7C43-8584FA2E5665}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{4D1D5407-9B69-6422-629C-8518A26004A4}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{A8379BAB-59A9-C0A3-8BCC-4852EA403692}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{24DF617A-CD23-6E6A-126B-23630D2781CE}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{83DDDFD8-AD42-72F9-E4F1-5456FDB304C9}) (Version: 2017.0424.2119.36535 - Advanced Micro Devices, Inc.) Hidden
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.117 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden
Gwent (HKLM-x32\...\1971477531_is1) (Version: 5.0.9 - GOG.com)
Intel(R) Network Connections 19.0.27.0 (HKLM\...\PROSetDX) (Version: 19.0.27.0 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4835 - Intel Corporation)
Intel® Hardware Accelerated Execution Manager (HKLM\...\{73250D12-B600-4ED6-AFC0-10D9D8EDA745}) (Version: 7.3.2 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{e48a2f61-851a-4155-82f9-af1b04db8c3b}) (Version: 10.0.13 - Intel(R) Corporation) Hidden
IntelliJ IDEA Community Edition 2019.1.1 (HKLM-x32\...\IntelliJ IDEA Community Edition 2019.1.1) (Version: 191.6707.61 - JetBrains s.r.o.)
Java SE Development Kit 8 Update 144 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180144}) (Version: 8.0.1440.1 - Oracle Corporation)
Java SE Development Kit 8 Update 161 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180161}) (Version: 8.0.1610.12 - Oracle Corporation)
Kaspersky Internet Security (HKLM-x32\...\{D891550B-ACFE-4797-B368-BCFC434BBEB1}) (Version: 20.0.14.1085 - Kaspersky) Hidden
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{D891550B-ACFE-4797-B368-BCFC434BBEB1}) (Version: 20.0.14.1085 - Kaspersky)
Kaspersky Password Manager (HKLM-x32\...\{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab) Hidden
Kaspersky Password Manager (HKLM-x32\...\InstallWIX_{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab)
Kaspersky Secure Connection (HKLM-x32\...\{145AE349-477A-45E5-A57C-5F5BF2BB5775}) (Version: 20.0.14.1085 - Kaspersky) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{145AE349-477A-45E5-A57C-5F5BF2BB5775}) (Version: 20.0.14.1085 - Kaspersky)
K-Lite Codec Pack 15.2.6 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.2.6 - KLCP)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\{2F5D7825-7460-43B1-B467-7F9737557108}) (Version: 4.2.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games)
Microsoft OneDrive (HKU\S-1-5-21-1590120699-374295501-1933812845-1001\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
NetBeans IDE 8.2 (HKLM\...\nbi-nb-base-8.2.0.0.201609300101) (Version: 8.2 - NetBeans.org)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
OpenTTD 1.9.3 (HKLM-x32\...\OpenTTD) (Version: 1.9.3 - OpenTTD)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7004 - Realtek Semiconductor Corp.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.17.199 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.4.3 - Rockstar Games)
SlimDX Runtime .NET 4.0 x64 (January 2012) (HKLM\...\{A2199A06-89C4-4187-AA4A-3A9676FB799D}) (Version: 2.0.13.43 - SlimDX Group)
Spotify (HKU\S-1-5-21-1590120699-374295501-1933812845-1001\...\Spotify) (Version: 1.1.24.91.g4ca6d5eb - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.6 - TeamSpeak Systems GmbH)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F814D094-197F-43C8-87FA-3210BB780486}) (Version: 2.53.0.0 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Vulkan Run Time Libraries 1.0.51.0 (HKLM\...\VulkanRT1.0.51.0) (Version: 1.0.51.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.0 (HKLM\...\VulkanRT1.0.65.0) (Version: 1.0.65.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.1.70.0 (HKLM\...\VulkanRT1.1.70.0) (Version: 1.1.70.0 - LunarG, Inc.) Hidden
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)

Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-06] (Autodesk Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-28] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-28] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.34.20074.0_x64__8wekyb3d8bbwe [2020-01-14] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-12] (Microsoft Studios) [MS Ad]
MSN Počasie -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-18] (Microsoft Corporation) [MS Ad]
Word Mobile -> C:\Program Files\WindowsApps\Microsoft.Office.Word_16001.12325.20032.0_x64__8wekyb3d8bbwe [2019-12-13] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\ShellEx.dll [2019-11-14] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\ShellEx.dll [2019-11-14] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers4: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\ShellEx.dll [2019-11-14] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2019-03-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-10-20] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\ShellEx.dll [2019-11-14] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Jurike\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 3"
ShortcutWithArgument: C:\Users\Jurike\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Chrome\Hudba Google Play (1).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=fahmaaghhglfmonjliepjlchgpgfmobi

==================== Loaded Modules (Whitelisted) =============

2018-12-01 20:51 - 2020-01-06 04:03 - 014065664 _____ () [File not signed] C:\Program Files (x86)\GOG Galaxy\Games\Gwent\Galaxy64.dll
2018-12-01 20:51 - 2020-01-09 14:48 - 044282880 _____ () [File not signed] C:\Program Files (x86)\GOG Galaxy\Games\Gwent\GameAssembly.dll
2018-12-01 20:51 - 2020-01-06 04:01 - 002144768 _____ () [File not signed] C:\Program Files (x86)\GOG Galaxy\Games\Gwent\Gwent_Data\Plugins\AkSoundEngine.dll
2018-12-01 20:51 - 2020-01-06 04:02 - 001939968 _____ () [File not signed] C:\Program Files (x86)\GOG Galaxy\Games\Gwent\Gwent_Data\Plugins\GalaxyCSharpGlue.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.DLL
2019-01-24 14:38 - 2019-01-24 14:38 - 002551808 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 000018432 _____ () [File not signed] C:\Program Files\TeamSpeak 3 Client\libEGL.DLL
2017-04-03 12:19 - 2019-06-20 13:27 - 003572224 _____ () [File not signed] C:\Program Files\TeamSpeak 3 Client\libGLESv2.dll
2017-10-02 20:16 - 2019-06-20 13:28 - 000157696 _____ () [File not signed] C:\Users\Jurike\AppData\Roaming\TS3Client\plugins\gamepad_joystick_win64.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000040960 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000345600 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000502784 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 001413632 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
2019-03-26 22:50 - 2019-03-26 22:50 - 005786112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2019-01-24 14:37 - 2019-01-24 14:37 - 006303232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2019-01-24 14:37 - 2019-01-24 14:37 - 001077248 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2019-01-24 14:37 - 2019-01-24 14:37 - 000323584 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2019-01-24 14:37 - 2019-01-24 14:37 - 003556352 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2019-01-24 14:37 - 2019-01-24 14:37 - 003699712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2019-01-24 14:37 - 2019-01-24 14:37 - 000331264 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2019-01-24 14:37 - 2019-01-24 14:37 - 000355328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2019-01-24 14:37 - 2019-01-24 14:37 - 076171264 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2019-01-24 14:37 - 2019-01-24 14:37 - 000113152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 005590528 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000461312 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000189952 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 002821632 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000053760 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000017408 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000327680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000137728 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000089600 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2019-01-24 14:38 - 2019-01-24 14:38 - 000135680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\styles\qwindowsvistastyle.dll
2017-03-28 10:01 - 2019-06-20 13:27 - 000035328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\iconengines\qsvgicon.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\imageformats\qgif.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 000397312 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\imageformats\qjpeg.dll
2017-04-19 14:31 - 2019-06-20 13:27 - 000025600 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\imageformats\qsvg.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 001453568 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\platforms\qwindows.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 006130176 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\Qt5Core.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 006470656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\Qt5Gui.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 001314816 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\Qt5Network.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 000317440 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\Qt5Positioning.dll
2019-06-20 13:27 - 2019-06-20 13:27 - 000318464 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\Qt5PrintSupport.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 004001792 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\Qt5Qml.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 003776000 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\Qt5Quick.dll
2019-06-20 13:27 - 2019-06-20 13:27 - 000072704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\Qt5QuickWidgets.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 000205312 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\Qt5Sql.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 000332288 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\Qt5Svg.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 079989760 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\Qt5WebEngineCore.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 000228864 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\Qt5WebEngineWidgets.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 000113664 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\Qt5WebChannel.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 005580800 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\Qt5Widgets.dll
2017-04-03 12:19 - 2019-06-20 13:27 - 001151488 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\sqldrivers\qsqlite.dll
2019-06-20 13:27 - 2019-06-20 13:27 - 000137216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\TeamSpeak 3 Client\styles\qwindowsvistastyle.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Public\AppData:CSM [484]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [458]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-07-16 12:47 - 2016-07-16 12:45 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKCU\Environment\\Path -> C:\Users\Jurike\AppData\Local\Microsoft\WindowsApps
HKU\S-1-5-21-1590120699-374295501-1933812845-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Jurike\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\toyota_rav4_plug_in_hybrid_2020_4k-HD.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{AB8BA521-D5B4-480E-B1E9-0ABA80448AF7}] => (Allow) F:\SteamLibrary\steamapps\common\theHunter\launcher\launcher.exe No File
FirewallRules: [{DBBBD13B-97C3-49C1-B827-0A6709C4B6B3}] => (Allow) F:\SteamLibrary\steamapps\common\theHunter\launcher\launcher.exe No File
FirewallRules: [{A4212848-66B7-47AE-BE43-2B09E5B7E9A0}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{1A30139C-26EE-45FF-AC0A-31746E24D7F2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{F6825D83-249E-4AA7-9B14-2627D7615C77}F:\hry\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) F:\hry\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe No File
FirewallRules: [UDP Query User{7CE1A8D4-E7C7-4C4A-B52A-33B9E718F8ED}F:\hry\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) F:\hry\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe No File
FirewallRules: [TCP Query User{31A4D36C-14A0-4263-8DB9-6F13D39D91B1}F:\hry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) F:\hry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [UDP Query User{FBB4460A-448E-444A-8120-F2CCF7F37975}F:\hry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) F:\hry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [{8B8A3152-CBC8-4583-8323-975FC46E6622}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{6B040A1A-C5DB-4560-84A9-53DA8F87C9E5}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{02C71FC7-1C37-43E2-B2AC-30946DB7063D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{36E3F6EF-0502-42A8-A829-53AAC2A8F81D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{D4718737-54A1-4887-8AE4-9159E7E302CE}] => (Allow) F:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{C5D6C294-A1A0-4788-9959-6AE5D0DBA109}] => (Allow) F:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{B5DAF88B-D951-46F1-A245-0AA7834EA4FE}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe No File
FirewallRules: [{08936F4D-979A-4E96-A048-B667641592C4}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe No File
FirewallRules: [{8570316F-2CCA-4513-B8CD-A91710F596C5}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe No File
FirewallRules: [{C76F07F2-FEE5-4F23-BD8E-B66B6F26808E}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe No File
FirewallRules: [{655DDFF3-D7F5-4D14-9EEF-B7F8BCF47DEF}] => (Allow) C:\Program Files (x86)\BlueStacks\HD-Player.exe No File
FirewallRules: [{4E3890A7-A9B5-4DD2-95B6-7BCEF0415729}] => (Allow) F:\SteamLibrary\steamapps\common\Deceit\bin\win_x64\Deceit.exe No File
FirewallRules: [{509BD9E7-0C86-4BF4-8FB3-91859FBE921A}] => (Allow) F:\SteamLibrary\steamapps\common\Deceit\bin\win_x64\Deceit.exe No File
FirewallRules: [{7B517B34-D9A7-4311-BC68-91991A417484}] => (Allow) F:\SteamLibrary\steamapps\common\DarkestDungeon\_windows\Darkest.exe No File
FirewallRules: [{C5368A6E-49B5-4D6A-B0A7-E7F414602088}] => (Allow) F:\SteamLibrary\steamapps\common\DarkestDungeon\_windows\Darkest.exe No File
FirewallRules: [{6525E28C-E080-4A63-8A2B-661AE15EC9EB}] => (Allow) F:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]
FirewallRules: [{B7B1848B-1B81-4D6B-9EA1-536FED36712B}] => (Allow) F:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]
FirewallRules: [{1F807373-CD02-49E4-A582-D0D627C79429}] => (Allow) C:\Users\Jurike\AppData\Roaming\uTorrent\uTorrent.exe No File
FirewallRules: [{BCC7E606-E138-40E3-85E0-8AADA0D6513F}] => (Allow) C:\Users\Jurike\AppData\Roaming\uTorrent\uTorrent.exe No File
FirewallRules: [{007DB506-D0D5-4192-A04F-A36E2DAA43B8}] => (Allow) C:\Users\Jurike\AppData\Local\Programs\Opera\60.0.3255.70\opera.exe No File
FirewallRules: [{56DA56BD-A860-4901-8307-9D39996AEC4F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\America's Army\AAPG\Binaries\Win32\AAGame.exe No File
FirewallRules: [{C83F5101-EDDE-4537-A23D-2A0C3350D7D7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\America's Army\AAPG\Binaries\Win32\AAGame.exe No File
FirewallRules: [{B3746162-3ACA-4BD5-AAA2-1B6D66F61338}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\America's Army\AAPG\Binaries\Win32\AALauncher32.exe No File
FirewallRules: [{F0A88F28-0AA7-4790-9636-C01E46CCC382}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\America's Army\AAPG\Binaries\Win32\AALauncher32.exe No File
FirewallRules: [{73C9C4E0-BA50-4705-94CA-4999CA985743}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe No File
FirewallRules: [{33723E31-2463-41B5-A830-8D9749D51306}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe No File
FirewallRules: [{B90352C3-94A6-4BE5-96BD-CCE478658DA0}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe No File
FirewallRules: [{5510288D-D7EA-4C2B-A36E-C7BCEB9E0926}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe No File
FirewallRules: [{F33A2B2A-BCC1-45D5-8CE5-02E05732FF1A}] => (Allow) C:\Program Files (x86)\CombatArms Classic\NMService.exe (valofe Co.,Ltd. -> Nexon Corp.)
FirewallRules: [{C9AAB280-E2BF-4E67-935E-55458A93CDB1}] => (Allow) C:\Program Files (x86)\CombatArms Classic\NMService.exe (valofe Co.,Ltd. -> Nexon Corp.)
FirewallRules: [{26B13F0B-CDCF-4F45-BDB4-F85A971F3821}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Squad\binaries\win64\BlackSquadGame.exe No File
FirewallRules: [{A2CCF90F-439B-4558-A55F-2F4FB6C50476}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Black Squad\binaries\win64\BlackSquadGame.exe No File
FirewallRules: [{FCA46566-C67F-4507-AD43-8DB67F899E13}] => (Allow) F:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{4BFBA658-BAA0-4F2C-8E1D-DC40C4CC5036}] => (Allow) F:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{34048A3A-29EA-49CE-A623-66792E14D36F}F:\hry\riot\game\league of legends.exe] => (Allow) F:\hry\riot\game\league of legends.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{9E8A4A18-FAD3-401D-ACEE-1ADA991A4312}F:\hry\riot\game\league of legends.exe] => (Allow) F:\hry\riot\game\league of legends.exe (Riot Games, Inc. -> )
FirewallRules: [{D5E95712-E42E-4A0B-8609-6A4A163E0C38}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Deceit\bin\win_x64\Deceit.exe No File
FirewallRules: [{D5DB9327-F86B-4D5F-9370-C4505FA038CC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Deceit\bin\win_x64\Deceit.exe No File
FirewallRules: [{EA26A2A6-EC71-4867-8891-C0F4FBDE3B38}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\They Are Billions\TheyAreBillions.exe (Numantian Games) [File not signed]
FirewallRules: [{CEFB8FEE-E8CC-48A5-8824-861219F246DA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\They Are Billions\TheyAreBillions.exe (Numantian Games) [File not signed]
FirewallRules: [{6AA605E3-8D5E-4C99-AD0B-79904C1591AC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{4F05010F-55D5-4E68-8880-D51EC00159F9}] => (Allow) F:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]
FirewallRules: [{8B5FACB2-094C-4273-AD8B-B217A4C2DDB0}] => (Allow) F:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]

==================== Restore Points =========================

30-12-2019 16:21:14 Installed DirectX
06-01-2020 02:17:09 Installed DirectX
13-01-2020 13:42:47 Scheduled Checkpoint
16-01-2020 13:49:54 Windows Update

==================== Faulty Device Manager Devices ============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: ========================

Application errors:
==================
Error: (01/12/2020 09:11:21 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program SkypeApp.exe version 8.55.0.131 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 1710

Start Time: 01d5c91fc3fb0fc7

Termination Time: 4294967295

Application Path: C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.55.131.0_x64__kzf8qxf38zg5c\SkypeApp.exe

Report Id: 8ac537e8-6660-4a55-b0e9-7b92595fdf99

Faulting package full name: Microsoft.SkypeApp_14.55.131.0_x64__kzf8qxf38zg5c

Faulting package-relative application ID: App

Hang type: Quiesce

Error: (12/12/2019 05:14:44 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Steam.exe version 5.54.18.66 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 2a24

Start Time: 01d5b026254c3c2d

Termination Time: 40

Application Path: C:\Program Files (x86)\Steam\Steam.exe

Report Id: de4df96f-c700-4a40-af4d-720557ab191b

Faulting package full name:

Faulting package-relative application ID:

Hang type: Unknown

Error: (12/06/2019 02:37:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: RockstarService.exe, verzia: 1.0.16.196, časová značka: 0x5de02eaf
Názov chybujúceho modulu: RockstarService.exe, verzia: 1.0.16.196, časová značka: 0x5de02eaf
Kód výnimky: 0xc0000005
Odstup chyby: 0x0000000000003ddc
Identifikácia chybujúceho procesu: 0xa50
Čas spustenia chybujúcej aplikácie: 0x01d5abff81abffc2
Cesta chybujúcej aplikácie: C:\Program Files\Rockstar Games\Launcher\RockstarService.exe
Cesta chybujúceho modulu: C:\Program Files\Rockstar Games\Launcher\RockstarService.exe
Identifikácia hlásenia: 9c4021d3-3059-46cc-b3e8-c8232a0606c8
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (12/05/2019 04:05:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: RockstarService.exe, verzia: 1.0.16.196, časová značka: 0x5de02eaf
Názov chybujúceho modulu: ntdll.dll, verzia: 10.0.17763.831, časová značka: 0x1f1a0210
Kód výnimky: 0xc0000374
Odstup chyby: 0x00000000000fb049
Identifikácia chybujúceho procesu: 0x3518
Čas spustenia chybujúcej aplikácie: 0x01d5ab368005e198
Cesta chybujúcej aplikácie: C:\Program Files\Rockstar Games\Launcher\RockstarService.exe
Cesta chybujúceho modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
Identifikácia hlásenia: 7cc4dada-10fc-46a4-bd00-8f83f5170d6d
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (11/10/2019 03:00:09 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: atieclxx.exe, verzia: 25.20.15031.1000, časová značka: 0x5c9aee3d
Názov chybujúceho modulu: atieclxx.exe, verzia: 25.20.15031.1000, časová značka: 0x5c9aee3d
Kód výnimky: 0xc0000005
Odstup chyby: 0x0000000000023030
Identifikácia chybujúceho procesu: 0x26c8
Čas spustenia chybujúcej aplikácie: 0x01d596b17e635b7f
Cesta chybujúcej aplikácie: C:\WINDOWS\System32\DriverStore\FileRepository\c0340919.inf_amd64_34b11cb20ab427c6\B340755\atieclxx.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\DriverStore\FileRepository\c0340919.inf_amd64_34b11cb20ab427c6\B340755\atieclxx.exe
Identifikácia hlásenia: 685244eb-ffee-4e2f-a141-d220fe7cb386
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (10/27/2019 02:37:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: atieclxx.exe, verzia: 25.20.15031.1000, časová značka: 0x5c9aee3d
Názov chybujúceho modulu: atieclxx.exe, verzia: 25.20.15031.1000, časová značka: 0x5c9aee3d
Kód výnimky: 0xc0000005
Odstup chyby: 0x0000000000022f30
Identifikácia chybujúceho procesu: 0xa8c
Čas spustenia chybujúcej aplikácie: 0x01d58bf1a5d2e829
Cesta chybujúcej aplikácie: C:\WINDOWS\System32\DriverStore\FileRepository\c0340919.inf_amd64_34b11cb20ab427c6\B340755\atieclxx.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\DriverStore\FileRepository\c0340919.inf_amd64_34b11cb20ab427c6\B340755\atieclxx.exe
Identifikácia hlásenia: e5e0abb5-4cae-47ce-9744-25d85be63dbe
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (10/04/2019 09:00:46 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: User hive is loaded by another process (Registry Lock) Process name: C:\Windows\System32\svchost.exe, PID: 4836, ProfSvc PID: 2108.

Error: (09/16/2019 06:40:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: bad_module_info, verzia: 0.0.0.0, časová značka: 0x00000000
Názov chybujúceho modulu: unknown, verzia: 0.0.0.0, časová značka: 0x00000000
Kód výnimky: 0xc0000409
Odstup chyby: 0x00007ffb6448d408
Identifikácia chybujúceho procesu: 0x1008
Čas spustenia chybujúcej aplikácie: 0x01d56cb125b29834
Cesta chybujúcej aplikácie: bad_module_info
Cesta chybujúceho modulu: unknown
Identifikácia hlásenia: db414c6c-566e-4eed-bac9-daf64290d5e7
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:


System errors:
=============
Error: (01/17/2020 03:22:14 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
and APPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/17/2020 03:22:14 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/17/2020 03:22:14 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
and APPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/17/2020 03:22:14 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
and APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/17/2020 03:03:21 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-F5KS1DK)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user DESKTOP-F5KS1DK\Jurike SID (S-1-5-21-1590120699-374295501-1933812845-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/17/2020 03:03:19 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-F5KS1DK)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user DESKTOP-F5KS1DK\Jurike SID (S-1-5-21-1590120699-374295501-1933812845-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/17/2020 03:03:18 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-F5KS1DK)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
and APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
to the user DESKTOP-F5KS1DK\Jurike SID (S-1-5-21-1590120699-374295501-1933812845-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (01/16/2020 08:15:57 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.SecurityAppBroker
and APPID
Unavailable
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.


Windows Defender:
===================================
Date: 2019-09-29 00:41:33.742
Description:
Windows Defender Antivirus has encountered an error trying to load signatures and will attempt reverting back to a known-good set of signatures.
Signatures Attempted: Current
Error Code: 0x80070003
Error description: The system cannot find the path specified.
Signature version: 0.0.0.0;0.0.0.0
Engine version: 0.0.0.0

CodeIntegrity:
===================================

Date: 2019-06-04 18:28:23.897
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\CombatArms Classic\GameGuard\npggNT64.des that did not meet the Microsoft signing level requirements.

Date: 2019-06-04 18:28:22.461
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\CombatArms Classic\GameGuard\npggNT64.des that did not meet the Microsoft signing level requirements.

Date: 2019-06-04 18:28:19.099
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SearchIndexer.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\CombatArms Classic\GameGuard\npggNT64.des that did not meet the Microsoft signing level requirements.

Date: 2019-06-04 18:28:17.576
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\CombatArms Classic\GameGuard\npggNT64.des that did not meet the Microsoft signing level requirements.

Date: 2019-06-04 18:25:25.626
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\CombatArms Classic\GameGuard\npggNT64.des that did not meet the Microsoft signing level requirements.

Date: 2019-06-04 18:25:24.163
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\CombatArms Classic\GameGuard\npggNT64.des that did not meet the Microsoft signing level requirements.

Date: 2019-06-04 18:25:20.558
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SearchIndexer.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\CombatArms Classic\GameGuard\npggNT64.des that did not meet the Microsoft signing level requirements.

Date: 2019-06-04 18:25:18.992
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\CombatArms Classic\GameGuard\npggNT64.des that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. P1.10 11/29/2013
Motherboard: ASRock B85 Killer
Processor: Intel(R) Core(TM) i5-4460 CPU @ 3.20GHz
Percentage of memory in use: 63%
Total physical RAM: 7077.29 MB
Available physical RAM: 2598.97 MB
Total Virtual: 16805.29 MB
Available Virtual: 7851.04 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:231.57 GB) (Free:109.25 GB) NTFS
Drive f: (N1Bro) (Fixed) (Total:232.88 GB) (Free:118.32 GB) NTFS

\\?\Volume{2a88c86d-0000-0000-0000-100000000000}\ (Vyhradené systémom) (Fixed) (Total:0.49 GB) (Free:0.46 GB) NTFS
\\?\Volume{2a88c86d-0000-0000-0000-b0033a000000}\ () (Fixed) (Total:0.83 GB) (Free:0.44 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 2A88C86D)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=231.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=846 MB) - (Type=27)

==========================================================
Disk: 1 (Size: 232.9 GB) (Disk ID: 2A88C828)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosim o kontrolu logu

#6 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKU\S-1-5-21-1590120699-374295501-1933812845-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-1590120699-374295501-1933812845-1001\...\MountPoints2: {f07158e8-be91-11e9-b27c-bc5ff4fa27e7} - "D:\setup.exe"
HKU\S-1-5-21-1590120699-374295501-1933812845-1001\...\MountPoints2: {f0715910-be91-11e9-b27c-bc5ff4fa27e7} - "E:\setup.exe"
Task: {32367555-5970-4245-9F2B-0656EED397CF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-10-02] (Google Inc -> Google Inc.)
Task: {5517B07C-D657-4C79-8DAB-4631C72FD2E5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-10-02] (Google Inc -> Google Inc.)
Task: {63CBFE42-D6DF-4CA7-873C-7D35CA84FA3B} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_211\bin\ssv.dll => No File
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_211\bin\jp2ssv.dll => No File
FF Plugin: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [No File]
FF Plugin: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [No File]
U3 aswbdisk; no ImagePath
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> No File
AlternateDataStreams: C:\Users\Public\AppData:CSM [484]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [458]
FirewallRules: [{AB8BA521-D5B4-480E-B1E9-0ABA80448AF7}] => (Allow) F:\SteamLibrary\steamapps\common\theHunter\launcher\launcher.exe No File
FirewallRules: [{DBBBD13B-97C3-49C1-B827-0A6709C4B6B3}] => (Allow) F:\SteamLibrary\steamapps\common\theHunter\launcher\launcher.exe No File
FirewallRules: [TCP Query User{F6825D83-249E-4AA7-9B14-2627D7615C77}F:\hry\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) F:\hry\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe No File
FirewallRules: [UDP Query User{7CE1A8D4-E7C7-4C4A-B52A-33B9E718F8ED}F:\hry\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) F:\hry\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe No File
FirewallRules: [TCP Query User{31A4D36C-14A0-4263-8DB9-6F13D39D91B1}F:\hry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) F:\hry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [UDP Query User{FBB4460A-448E-444A-8120-F2CCF7F37975}F:\hry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) F:\hry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [{B5DAF88B-D951-46F1-A245-0AA7834EA4FE}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe No File
FirewallRules: [{08936F4D-979A-4E96-A048-B667641592C4}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe No File
FirewallRules: [{8570316F-2CCA-4513-B8CD-A91710F596C5}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe No File
FirewallRules: [{C76F07F2-FEE5-4F23-BD8E-B66B6F26808E}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe No File
FirewallRules: [{655DDFF3-D7F5-4D14-9EEF-B7F8BCF47DEF}] => (Allow) C:\Program Files (x86)\BlueStacks\HD-Player.exe No File
FirewallRules: [{4E3890A7-A9B5-4DD2-95B6-7BCEF0415729}] => (Allow) F:\SteamLibrary\steamapps\common\Deceit\bin\win_x64\Deceit.exe No File
FirewallRules: [{509BD9E7-0C86-4BF4-8FB3-91859FBE921A}] => (Allow) F:\SteamLibrary\steamapps\common\Deceit\bin\win_x64\Deceit.exe No File
FirewallRules: [{7B517B34-D9A7-4311-BC68-91991A417484}] => (Allow) F:\SteamLibrary\steamapps\common\DarkestDungeon\_windows\Darkest.exe No File
FirewallRules: [{C5368A6E-49B5-4D6A-B0A7-E7F414602088}] => (Allow) F:\SteamLibrary\steamapps\common\DarkestDungeon\_windows\Darkest.exe No File
FirewallRules: [{1F807373-CD02-49E4-A582-D0D627C79429}] => (Allow) C:\Users\Jurike\AppData\Roaming\uTorrent\uTorrent.exe No File
FirewallRules: [{BCC7E606-E138-40E3-85E0-8AADA0D6513F}] => (Allow) C:\Users\Jurike\AppData\Roaming\uTorrent\uTorrent.exe No File
FirewallRules: [{007DB506-D0D5-4192-A04F-A36E2DAA43B8}] => (Allow) C:\Users\Jurike\AppData\Local\Programs\Opera\60.0.3255.70\opera.exe No File
FirewallRules: [{56DA56BD-A860-4901-8307-9D39996AEC4F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\America's Army\AAPG\Binaries\Win32\AAGame.exe No File
FirewallRules: [{C83F5101-EDDE-4537-A23D-2A0C3350D7D7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\America's Army\AAPG\Binaries\Win32\AAGame.exe No File
FirewallRules: [{B3746162-3ACA-4BD5-AAA2-1B6D66F61338}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\America's Army\AAPG\Binaries\Win32\AALauncher32.exe No File
FirewallRules: [{F0A88F28-0AA7-4790-9636-C01E46CCC382}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\America's Army\AAPG\Binaries\Win32\AALauncher32.exe No File
FirewallRules: [{73C9C4E0-BA50-4705-94CA-4999CA985743}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe No File
FirewallRules: [{33723E31-2463-41B5-A830-8D9749D51306}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe No File
FirewallRules: [{B90352C3-94A6-4BE5-96BD-CCE478658DA0}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe No File
FirewallRules: [{5510288D-D7EA-4C2B-A36E-C7BCEB9E0926}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe No File
FirewallRules: [{D5E95712-E42E-4A0B-8609-6A4A163E0C38}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Deceit\bin\win_x64\Deceit.exe No File
FirewallRules: [{D5DB9327-F86B-4D5F-9370-C4505FA038CC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Deceit\bin\win_x64\Deceit.exe No File

EmptyTemp:
End
Uložte do C:\Users\Jurike\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Uživatelský avatar
hladac
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 192
Registrován: 16 bře 2007 15:59
Bydliště: Bratislava

Re: Prosim o kontrolu logu

#7 Příspěvek od hladac »

Fix result of Farbar Recovery Scan Tool (x64) Version: 15-01-2020
Ran by Jurike (17-01-2020 21:42:34) Run:1
Running from C:\Users\Jurike\Downloads
Loaded Profiles: Jurike (Available Profiles: defaultuser0 & Jurike)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKU\S-1-5-21-1590120699-374295501-1933812845-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-1590120699-374295501-1933812845-1001\...\MountPoints2: {f07158e8-be91-11e9-b27c-bc5ff4fa27e7} - "D:\setup.exe"
HKU\S-1-5-21-1590120699-374295501-1933812845-1001\...\MountPoints2: {f0715910-be91-11e9-b27c-bc5ff4fa27e7} - "E:\setup.exe"
Task: {32367555-5970-4245-9F2B-0656EED397CF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-10-02] (Google Inc -> Google Inc.)
Task: {5517B07C-D657-4C79-8DAB-4631C72FD2E5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-10-02] (Google Inc -> Google Inc.)
Task: {63CBFE42-D6DF-4CA7-873C-7D35CA84FA3B} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_211\bin\ssv.dll => No File
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_211\bin\jp2ssv.dll => No File
FF Plugin: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [No File]
FF Plugin: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [No File]
U3 aswbdisk; no ImagePath
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> No File
AlternateDataStreams: C:\Users\Public\AppData:CSM [484]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [458]
FirewallRules: [{AB8BA521-D5B4-480E-B1E9-0ABA80448AF7}] => (Allow) F:\SteamLibrary\steamapps\common\theHunter\launcher\launcher.exe No File
FirewallRules: [{DBBBD13B-97C3-49C1-B827-0A6709C4B6B3}] => (Allow) F:\SteamLibrary\steamapps\common\theHunter\launcher\launcher.exe No File
FirewallRules: [TCP Query User{F6825D83-249E-4AA7-9B14-2627D7615C77}F:\hry\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) F:\hry\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe No File
FirewallRules: [UDP Query User{7CE1A8D4-E7C7-4C4A-B52A-33B9E718F8ED}F:\hry\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) F:\hry\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe No File
FirewallRules: [TCP Query User{31A4D36C-14A0-4263-8DB9-6F13D39D91B1}F:\hry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) F:\hry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [UDP Query User{FBB4460A-448E-444A-8120-F2CCF7F37975}F:\hry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) F:\hry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [{B5DAF88B-D951-46F1-A245-0AA7834EA4FE}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe No File
FirewallRules: [{08936F4D-979A-4E96-A048-B667641592C4}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe No File
FirewallRules: [{8570316F-2CCA-4513-B8CD-A91710F596C5}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe No File
FirewallRules: [{C76F07F2-FEE5-4F23-BD8E-B66B6F26808E}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe No File
FirewallRules: [{655DDFF3-D7F5-4D14-9EEF-B7F8BCF47DEF}] => (Allow) C:\Program Files (x86)\BlueStacks\HD-Player.exe No File
FirewallRules: [{4E3890A7-A9B5-4DD2-95B6-7BCEF0415729}] => (Allow) F:\SteamLibrary\steamapps\common\Deceit\bin\win_x64\Deceit.exe No File
FirewallRules: [{509BD9E7-0C86-4BF4-8FB3-91859FBE921A}] => (Allow) F:\SteamLibrary\steamapps\common\Deceit\bin\win_x64\Deceit.exe No File
FirewallRules: [{7B517B34-D9A7-4311-BC68-91991A417484}] => (Allow) F:\SteamLibrary\steamapps\common\DarkestDungeon\_windows\Darkest.exe No File
FirewallRules: [{C5368A6E-49B5-4D6A-B0A7-E7F414602088}] => (Allow) F:\SteamLibrary\steamapps\common\DarkestDungeon\_windows\Darkest.exe No File
FirewallRules: [{1F807373-CD02-49E4-A582-D0D627C79429}] => (Allow) C:\Users\Jurike\AppData\Roaming\uTorrent\uTorrent.exe No File
FirewallRules: [{BCC7E606-E138-40E3-85E0-8AADA0D6513F}] => (Allow) C:\Users\Jurike\AppData\Roaming\uTorrent\uTorrent.exe No File
FirewallRules: [{007DB506-D0D5-4192-A04F-A36E2DAA43B8}] => (Allow) C:\Users\Jurike\AppData\Local\Programs\Opera\60.0.3255.70\opera.exe No File
FirewallRules: [{56DA56BD-A860-4901-8307-9D39996AEC4F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\America's Army\AAPG\Binaries\Win32\AAGame.exe No File
FirewallRules: [{C83F5101-EDDE-4537-A23D-2A0C3350D7D7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\America's Army\AAPG\Binaries\Win32\AAGame.exe No File
FirewallRules: [{B3746162-3ACA-4BD5-AAA2-1B6D66F61338}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\America's Army\AAPG\Binaries\Win32\AALauncher32.exe No File
FirewallRules: [{F0A88F28-0AA7-4790-9636-C01E46CCC382}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\America's Army\AAPG\Binaries\Win32\AALauncher32.exe No File
FirewallRules: [{73C9C4E0-BA50-4705-94CA-4999CA985743}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe No File
FirewallRules: [{33723E31-2463-41B5-A830-8D9749D51306}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe No File
FirewallRules: [{B90352C3-94A6-4BE5-96BD-CCE478658DA0}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe No File
FirewallRules: [{5510288D-D7EA-4C2B-A36E-C7BCEB9E0926}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe No File
FirewallRules: [{D5E95712-E42E-4A0B-8609-6A4A163E0C38}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Deceit\bin\win_x64\Deceit.exe No File
FirewallRules: [{D5DB9327-F86B-4D5F-9370-C4505FA038CC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Deceit\bin\win_x64\Deceit.exe No File

EmptyTemp:
End
*****************

Processes closed successfully.
"HKU\S-1-5-21-1590120699-374295501-1933812845-1001\Software\Microsoft\Windows\CurrentVersion\Run\\GalaxyClient" => removed successfully
HKU\S-1-5-21-1590120699-374295501-1933812845-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f07158e8-be91-11e9-b27c-bc5ff4fa27e7} => removed successfully
HKU\S-1-5-21-1590120699-374295501-1933812845-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f0715910-be91-11e9-b27c-bc5ff4fa27e7} => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{32367555-5970-4245-9F2B-0656EED397CF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{32367555-5970-4245-9F2B-0656EED397CF}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5517B07C-D657-4C79-8DAB-4631C72FD2E5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5517B07C-D657-4C79-8DAB-4631C72FD2E5}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{63CBFE42-D6DF-4CA7-873C-7D35CA84FA3B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{63CBFE42-D6DF-4CA7-873C-7D35CA84FA3B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => not found
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => removed successfully
HKLM\Software\Classes\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} => removed successfully
HKLM\Software\Classes\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} => removed successfully
HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.211.2 => removed successfully
HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.211.2 => removed successfully
HKLM\System\CurrentControlSet\Services\aswbdisk => removed successfully
aswbdisk => service removed successfully
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\PowerISO => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\PowerISO => removed successfully
C:\Users\Public\AppData => ":CSM" ADS removed successfully
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{AB8BA521-D5B4-480E-B1E9-0ABA80448AF7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DBBBD13B-97C3-49C1-B827-0A6709C4B6B3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{F6825D83-249E-4AA7-9B14-2627D7615C77}F:\hry\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{7CE1A8D4-E7C7-4C4A-B52A-33B9E718F8ED}F:\hry\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{31A4D36C-14A0-4263-8DB9-6F13D39D91B1}F:\hry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{FBB4460A-448E-444A-8120-F2CCF7F37975}F:\hry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B5DAF88B-D951-46F1-A245-0AA7834EA4FE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{08936F4D-979A-4E96-A048-B667641592C4}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8570316F-2CCA-4513-B8CD-A91710F596C5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C76F07F2-FEE5-4F23-BD8E-B66B6F26808E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{655DDFF3-D7F5-4D14-9EEF-B7F8BCF47DEF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4E3890A7-A9B5-4DD2-95B6-7BCEF0415729}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{509BD9E7-0C86-4BF4-8FB3-91859FBE921A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7B517B34-D9A7-4311-BC68-91991A417484}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C5368A6E-49B5-4D6A-B0A7-E7F414602088}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1F807373-CD02-49E4-A582-D0D627C79429}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BCC7E606-E138-40E3-85E0-8AADA0D6513F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{007DB506-D0D5-4192-A04F-A36E2DAA43B8}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{56DA56BD-A860-4901-8307-9D39996AEC4F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C83F5101-EDDE-4537-A23D-2A0C3350D7D7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B3746162-3ACA-4BD5-AAA2-1B6D66F61338}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F0A88F28-0AA7-4790-9636-C01E46CCC382}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{73C9C4E0-BA50-4705-94CA-4999CA985743}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{33723E31-2463-41B5-A830-8D9749D51306}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B90352C3-94A6-4BE5-96BD-CCE478658DA0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5510288D-D7EA-4C2B-A36E-C7BCEB9E0926}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D5E95712-E42E-4A0B-8609-6A4A163E0C38}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D5DB9327-F86B-4D5F-9370-C4505FA038CC}" => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 125011503 B
Java, Flash, Steam htmlcache => 124911688 B
Windows/system/drivers => 2262009 B
Edge => 3207095 B
Chrome => 455482328 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 72188 B
NetworkService => 87974 B
defaultuser0 => 87974 B
Jurike => 17111697 B

RecycleBin => 11969679296 B
EmptyTemp: => 11.8 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 21:42:55 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosim o kontrolu logu

#8 Příspěvek od Rudy »

Smazáno, log by již měl být OK. Ten výhrůžný e-mail poslal zřejmě někdo, kdo si myslí, že mu na to skočíte. Odesilatel se dá zfalšovat. Pro jistotu si ale změňte heslo na mail.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Uživatelský avatar
hladac
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 192
Registrován: 16 bře 2007 15:59
Bydliště: Bratislava

Re: Prosim o kontrolu logu

#9 Příspěvek od hladac »

Dobre, dakujem za pomoc. :)

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosim o kontrolu logu

#10 Příspěvek od Rudy »

Nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Zamčeno