Zdravím, před nějakou dobou (řekněme týden) se mi po zapnutí PC začala objevovat chybová hláška odkazující na soubor C:\Users\petrb\AppData\Local\QA\Helper.vbs (vždycky 2x).
Žádné jiné potíže nepozoruju, takže si nejsem moc jistý, co se mohlo stát. Tohle PC mám víceméně na hraní, všechno je legální a z oficiálních zdrojů (Steam,...), žádný warez nestahuju. Prosím o radu, co případně dál Děkuji
Přikládám log z FRST:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-05.2019
Ran by petrb (administrator) on DESKTOP-H153BDT (03-05-2019 19:21:23)
Running from C:\Users\petrb\Desktop
Loaded Profiles: petrb (Available Profiles: petrb)
Platform: Windows 10 Home Version 1803 17134.706 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.44.40.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19031.11411.0_x64__8wekyb3d8bbwe\Video.UI.exe
(AgileBits Inc. -> AgileBits Inc.) C:\Users\petrb\AppData\Local\1password\app\7\1Password.exe
(AgileBits Inc. -> AgileBits Inc.) C:\Users\petrb\AppData\Local\1password\app\7\1Password.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(CYBERGHOST S.A. -> CyberGhost S.A.) C:\Program Files\CyberGhost 7\CyberGhost.Service.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Even Balance, Inc. -> ) C:\Windows\System32\PnkBstrA.exe
(Golden Frog, GmbH.) [File not signed] C:\Program Files (x86)\VyprVPN\VyprVPNService.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler64.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) [File not signed] C:\Windows\System32\IPROSetMonitor.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Optane Memory\OptaneMemoryUIIcon.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Optane Memory\OptaneWatcherService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1904.1-0\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1904.1-0\NisSrv.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\petrb\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.44.40.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Spotify AB -> Spotify Ltd) C:\Users\petrb\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\petrb\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\petrb\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\petrb\AppData\Roaming\Spotify\Spotify.exe
(SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [OptaneMemoryUI] => C:\Program Files\Intel\Intel(R) Optane Memory\OptaneMemoryUIIcon.exe [399944 2018-02-13] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9246656 2018-04-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [SmartGenius] => C:\Users\petrb\AppData\Local\SmartGenius\SGStartup.exe [524288 2019-03-26] () [File not signed]
HKLM\...\Run: [RunSmartHIDFile] => C:\Users\petrb\AppData\Local\SmartGenius\resources\KeyboardDriver\SmartHIDStart.exe [523776 2019-03-26] () [File not signed]
HKU\S-1-5-21-4280946255-3995137616-3202641619-1004\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3152160 2019-04-30] (Valve -> Valve Corporation)
HKU\S-1-5-21-4280946255-3995137616-3202641619-1004\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [53646696 2019-04-25] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-4280946255-3995137616-3202641619-1004\...\Run: [1Password] => C:\Users\petrb\AppData\Local\1password\app\7\1Password.exe [5337488 2019-04-23] (AgileBits Inc. -> AgileBits Inc.)
HKU\S-1-5-21-4280946255-3995137616-3202641619-1004\...\Run: [Spotify] => C:\Users\petrb\AppData\Roaming\Spotify\Spotify.exe [25805544 2019-05-01] (Spotify AB -> Spotify Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.103\Installer\chrmstp.exe [2019-04-11] (Google LLC -> Google Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2018-09-30]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS -> SteelSeries ApS)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {20BA8589-7BA0-494F-A33D-6A506945583C} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [648688 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {262B1B01-B3C7-4CF8-A931-0ECDFBF01E90} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\MpCmdRun.exe [480352 2019-04-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {44FA77F0-7965-4AD2-9AB1-E1CEFC69454F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-06-06] (Google Inc -> Google Inc.)
Task: {4C0C8769-0C09-4DDC-8365-7B19867EC90B} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877552 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {523A2366-05F6-47C2-B8D2-FB4F29B917D2} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877552 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5E8D7C80-45EC-4A45-BEEB-C613A88CA231} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-12-21] (Intel(R) Update Manager -> Intel Corporation)
Task: {6AA6351F-01B7-44BD-A8C8-974E934354FA} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-12-21] (Intel(R) Update Manager -> Intel Corporation)
Task: {6C026288-6036-468E-8D73-1E91209C2374} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\MpCmdRun.exe [480352 2019-04-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {6EA9E49E-A6A8-41B8-AA5C-6FB0A61C9B33} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {75B427FF-DA7B-4522-B3D5-A2979E5623E3} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877552 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7E73479C-1601-4092-A6AA-1B557011729D} - System32\Tasks\SS3svc64Run => C:\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Foundation\x64\SS3svc64.exe
Task: {87B0D7C4-8E94-4432-A872-D57B75B4E4BB} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [849904 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {95DA7AC4-AC3A-4619-BAA1-EF3725440E6B} - System32\Tasks\SS3svc32Run => C:\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Foundation\SS3svc32.exe
Task: {95F42B5D-673B-4DF2-A38D-CEC39F7FD285} - System32\Tasks\S-1-5-21-4280946255-3995137616-3202641619-1004\DataSenseLiveTileTask => C:\Windows\System32\DataUsageLiveTileTask.exe [132608 2018-12-08] (Microsoft Windows -> Microsoft Corporation)
Task: {A28D0AF8-825A-45F1-8ED5-805D3F93A664} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BA8B56F0-684A-493E-B921-0D48F89737D5} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877552 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BE64FF1F-F029-42CB-805F-1F7B7A626FE2} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [849904 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CA6E2817-D8C9-4644-B26F-06D047CC4874} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [591344 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CDCBB5AC-A6B7-4B1E-A111-4C456B20AEE5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-06-06] (Google Inc -> Google Inc.)
Task: {E21BAFC4-4299-4C19-928B-3B9084EB5FE3} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3729392 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EC8C1744-6702-45D0-95AD-F4B24D5A1A7A} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [817472 2017-11-16] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {F1CFDFDB-5DE0-4FF2-A12F-E94E3A6E8A48} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\MpCmdRun.exe [480352 2019-04-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {FDC381AB-BDE0-4ED4-94BF-025C9EFC6392} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\MpCmdRun.exe [480352 2019-04-24] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{6911d9ed-9ae6-4965-8c87-4c001ed2dbcd}: [DhcpNameServer] 10.2.2.1
Tcpip\..\Interfaces\{f43bec58-8122-4657-a29f-5c4aba9f134d}: [DhcpNameServer] 192.168.100.1
Internet Explorer:
==================
HKU\S-1-5-21-4280946255-3995137616-3202641619-1004\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
SearchScopes: HKU\S-1-5-21-4280946255-3995137616-3202641619-1004 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FireFox:
========
FF DefaultProfile: x0mbljvp.default
FF ProfilePath: C:\Users\petrb\AppData\Roaming\Mozilla\Firefox\Profiles\x0mbljvp.default [2019-01-08]
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [File not signed]
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2019-03-17] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2019-03-17] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-28] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-28] (Google Inc -> Google LLC)
Chrome:
=======
CHR Profile: C:\Users\petrb\AppData\Local\Google\Chrome\User Data\Default [2019-05-03]
CHR Extension: (Prezentace) - C:\Users\petrb\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-06-06]
CHR Extension: (Dokumenty) - C:\Users\petrb\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-06-06]
CHR Extension: (1Password extension (desktop app required)) - C:\Users\petrb\AppData\Local\Google\Chrome\User Data\Default\Extensions\aomjjhallfgjeglblehebfpbcfeobpgk [2018-09-14]
CHR Extension: (Disk Google) - C:\Users\petrb\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-06-06]
CHR Extension: (YouTube) - C:\Users\petrb\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-06-06]
CHR Extension: (uBlock Origin) - C:\Users\petrb\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2019-04-03]
CHR Extension: (Tabulky) - C:\Users\petrb\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-06-06]
CHR Extension: (Dokumenty Google offline) - C:\Users\petrb\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\petrb\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-06-06]
CHR Extension: (Gmail) - C:\Users\petrb\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-29]
CHR Extension: (Chrome Media Router) - C:\Users\petrb\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-03-22]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8403672 2019-01-31] (BattlEye Innovations e.K. -> )
R2 CG7Service; C:\Program Files\CyberGhost 7\CyberGhost.Service.exe [93904 2019-04-04] (CYBERGHOST S.A. -> CyberGhost S.A.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [781440 2018-12-09] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [707144 2019-02-15] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7172680 2019-02-15] (GOG Sp. z o.o. -> GOG.com)
S3 iaStorAfsService; C:\Windows\IAStorAfsService\iaStorAfsService.exe [2593848 2018-02-13] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [743728 2017-11-16] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [505856 2018-01-31] (Intel Corporation) [File not signed]
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [720184 2017-11-16] (Intel(R) Trust Services -> Intel(R) Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-12-21] (Intel(R) Update Manager -> Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [214672 2018-01-31] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
R2 OptaneWatcherService; C:\Program Files\Intel\Intel(R) Optane Memory\OptaneWatcherService.exe [24648 2018-02-13] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2298688 2019-01-23] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3171144 2019-01-23] (Electronic Arts, Inc. -> Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2018-07-01] (Even Balance, Inc. -> )
S3 SmrtService; C:\ProgramData\SmartGuard\lineage2\smrt3d\release\Data\155f037ea35b2a993d885dd538c8638bd141cf3f\smrtsvc64.exe [6618464 2019-02-10] (Eikonect Software SL -> )
R2 VyprVPN; C:\Program Files (x86)\VyprVPN\VyprVPNService.exe [309248 2019-01-17] (Golden Frog, GmbH.) [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\NisSrv.exe [3851264 2019-04-24] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\MsMpEng.exe [118144 2019-04-24] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 gKbdfltr; C:\Windows\System32\drivers\gKbdfltr.sys [28024 2019-03-26] (KYE SYSTEMS CORP. -> KYE Systems Corp.)
R0 iaStorAC; C:\Windows\System32\drivers\iaStorAC.sys [942128 2018-02-13] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S3 iaStorAfs; C:\Windows\System32\drivers\iaStorAfs.sys [72248 2018-02-13] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R3 ioFakDrv; C:\Windows\System32\drivers\ioFakDrv.sys [35928 2017-07-20] (KYE Systems Corp -> KYE System Corp.)
R3 ioFakMap; C:\Windows\System32\drivers\ioFakMap.sys [24664 2017-07-20] (KYE Systems Corp -> KYE System Corp.)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_c5dc31c3a136544a\nvlddmkm.sys [20746632 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-02-26] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NVSWCFilter; C:\Windows\System32\drivers\nvswcfilter.sys [27584 2018-04-22] (NVIDIA Corporation -> Windows (R) Win 7 DDK provider)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [70024 2018-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [66792 2018-10-03] (NVIDIA Corporation -> NVIDIA Corporation)
S3 phantomtap; C:\Windows\System32\drivers\phantomtap.sys [45056 2018-05-17] (Avira Operations GmbH & Co. KG -> The OpenVPN Project)
R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [48320 2018-08-20] (SteelSeries ApS -> )
S3 tap0901; C:\Windows\System32\drivers\tap0901.sys [36496 2018-06-08] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 tapvyprvpn; C:\Windows\System32\drivers\tapvyprvpn.sys [44896 2018-06-08] (Golden Frog, GmbH -> The OpenVPN Project)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [46472 2019-04-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [344544 2019-04-24] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [60896 2019-04-24] (Microsoft Windows -> Microsoft Corporation)
S3 WIMMount; C:\Program Files (x86)\Windows Kits\10\Assessment and Deployment Kit\Deployment Tools\amd64\DISM\wimmount.sys [35744 2018-04-10] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-05-03 19:21 - 2019-05-03 19:21 - 000026264 _____ C:\Users\petrb\Desktop\FRST.txt
2019-05-03 19:20 - 2019-05-03 19:21 - 000000000 ____D C:\FRST
2019-05-03 19:19 - 2019-05-03 19:20 - 002430464 _____ (Farbar) C:\Users\petrb\Desktop\FRST64.exe
2019-05-03 13:45 - 2019-05-03 13:45 - 000000000 ___HD C:\OneDriveTemp
2019-05-03 10:48 - 2019-05-03 10:48 - 000667643 _____ C:\Users\petrb\Downloads\lineup-mapa-brno2019 (1).pdf
2019-05-03 10:45 - 2019-05-03 10:45 - 000667643 _____ C:\Users\petrb\Downloads\lineup-mapa-brno2019.pdf
2019-04-29 21:37 - 2019-05-01 23:15 - 000000000 ____D C:\Users\petrb\Documents\The Witcher 3
2019-04-16 11:57 - 2019-04-16 11:57 - 000418230 _____ C:\Users\petrb\Downloads\fs_2015.pdf
2019-04-13 22:58 - 2019-04-13 22:58 - 000238692 _____ C:\Users\petrb\Downloads\extra online media_rozvaha_2017.pdf
2019-04-13 22:58 - 2019-04-13 22:58 - 000147076 _____ C:\Users\petrb\Downloads\extra online media_priloha k uz za rok 2017.pdf
2019-04-13 22:16 - 2019-04-13 22:16 - 000084138 _____ C:\Users\petrb\Downloads\vykaz zisku a ztrat.pdf
2019-04-13 22:16 - 2019-04-13 22:16 - 000080531 _____ C:\Users\petrb\Downloads\priloha k ucetni zaverce.pdf
2019-04-13 22:15 - 2019-04-13 22:15 - 000155589 _____ C:\Users\petrb\Downloads\rozvaha.pdf
2019-04-13 22:07 - 2019-04-13 22:07 - 001075332 _____ C:\Users\petrb\Downloads\stanovy - uplne zneni.pdf
2019-04-09 22:18 - 2019-04-09 22:18 - 000000222 _____ C:\Users\petrb\Desktop\The Witcher 3 Wild Hunt.url
2019-04-09 22:10 - 2019-04-29 21:15 - 000000000 ____D C:\Users\petrb\Documents\Witcher 2
2019-04-09 22:10 - 2019-04-09 22:10 - 000000000 ____D C:\Users\petrb\AppData\Local\The Witcher 2
2019-04-09 21:43 - 2019-04-02 10:21 - 007520136 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2019-04-09 21:43 - 2019-04-02 10:01 - 025857536 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2019-04-09 21:43 - 2019-04-02 07:04 - 006572120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-04-09 21:42 - 2019-04-02 14:38 - 000094008 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2019-04-09 21:42 - 2019-04-02 14:33 - 001634912 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2019-04-09 21:42 - 2019-04-02 14:33 - 000719984 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-04-09 21:42 - 2019-04-02 14:19 - 012730880 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-04-09 21:42 - 2019-04-02 14:19 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\iemigplugin.dll
2019-04-09 21:42 - 2019-04-02 14:18 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2019-04-09 21:42 - 2019-04-02 14:16 - 001030144 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2019-04-09 21:42 - 2019-04-02 14:15 - 000140800 _____ (Microsoft Corporation) C:\Windows\system32\oleprn.dll
2019-04-09 21:42 - 2019-04-02 14:13 - 001605632 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2019-04-09 21:42 - 2019-04-02 14:12 - 003643904 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2019-04-09 21:42 - 2019-04-02 14:12 - 001364992 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvruserservice.dll
2019-04-09 21:42 - 2019-04-02 14:11 - 004053504 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2019-04-09 21:42 - 2019-04-02 14:11 - 001857536 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2019-04-09 21:42 - 2019-04-02 14:11 - 001662976 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2019-04-09 21:42 - 2019-04-02 14:10 - 000130048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys
2019-04-09 21:42 - 2019-04-02 14:10 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\sxssrv.dll
2019-04-09 21:42 - 2019-04-02 11:25 - 001454648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2019-04-09 21:42 - 2019-04-02 11:25 - 000607960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-04-09 21:42 - 2019-04-02 11:11 - 011919360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-04-09 21:42 - 2019-04-02 11:11 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2019-04-09 21:42 - 2019-04-02 11:10 - 000117760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleprn.dll
2019-04-09 21:42 - 2019-04-02 11:08 - 002889216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2019-04-09 21:42 - 2019-04-02 11:07 - 004054528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2019-04-09 21:42 - 2019-04-02 11:07 - 001586688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2019-04-09 21:42 - 2019-04-02 11:06 - 001470976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2019-04-09 21:42 - 2019-04-02 10:36 - 001035256 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2019-04-09 21:42 - 2019-04-02 10:24 - 000135184 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.dll
2019-04-09 21:42 - 2019-04-02 10:23 - 001023800 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2019-04-09 21:42 - 2019-04-02 10:22 - 001219896 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2019-04-09 21:42 - 2019-04-02 10:22 - 000567592 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2019-04-09 21:42 - 2019-04-02 10:22 - 000076088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvservice.sys
2019-04-09 21:42 - 2019-04-02 10:21 - 002822160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2019-04-09 21:42 - 2019-04-02 10:21 - 002467536 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2019-04-09 21:42 - 2019-04-02 10:21 - 000735680 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2019-04-09 21:42 - 2019-04-02 10:20 - 002719032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2019-04-09 21:42 - 2019-04-02 10:20 - 000412984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2019-04-09 21:42 - 2019-04-02 10:19 - 009083704 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-04-09 21:42 - 2019-04-02 10:19 - 000793400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2019-04-09 21:42 - 2019-04-02 10:19 - 000786080 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-04-09 21:42 - 2019-04-02 10:19 - 000713272 _____ (Microsoft Corporation) C:\Windows\system32\MSVideoDSP.dll
2019-04-09 21:42 - 2019-04-02 09:53 - 022717440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-04-09 21:42 - 2019-04-02 09:53 - 004384256 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2019-04-09 21:42 - 2019-04-02 09:51 - 003399680 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2019-04-09 21:42 - 2019-04-02 09:50 - 007591936 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2019-04-09 21:42 - 2019-04-02 09:50 - 000808448 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2019-04-09 21:42 - 2019-04-02 09:49 - 001307648 _____ (Microsoft Corporation) C:\Windows\system32\MSVPXENC.dll
2019-04-09 21:42 - 2019-04-02 09:49 - 000209408 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll
2019-04-09 21:42 - 2019-04-02 09:48 - 001559552 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2019-04-09 21:42 - 2019-04-02 09:48 - 000310272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2019-04-09 21:42 - 2019-04-02 09:48 - 000154112 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2019-04-09 21:42 - 2019-04-02 09:47 - 001214464 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2019-04-09 21:42 - 2019-04-02 09:47 - 000894464 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2019-04-09 21:42 - 2019-04-02 09:46 - 002174976 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2019-04-09 21:42 - 2019-04-02 09:45 - 000323584 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2019-04-09 21:42 - 2019-04-02 09:44 - 002208768 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2019-04-09 21:42 - 2019-04-02 09:44 - 001724416 _____ (Microsoft Corporation) C:\Windows\system32\rdpserverbase.dll
2019-04-09 21:42 - 2019-04-02 09:44 - 001421312 _____ (Microsoft Corporation) C:\Windows\system32\rdpbase.dll
2019-04-09 21:42 - 2019-04-02 09:43 - 000542720 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-04-09 21:42 - 2019-04-02 08:22 - 000001312 _____ C:\Windows\system32\tcbres.wim
2019-04-09 21:42 - 2019-04-02 07:05 - 001989544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2019-04-09 21:42 - 2019-04-02 07:04 - 000604008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-04-09 21:42 - 2019-04-02 07:04 - 000581832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVideoDSP.dll
2019-04-09 21:42 - 2019-04-02 07:04 - 000560600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2019-04-09 21:42 - 2019-04-02 06:56 - 022018048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2019-04-09 21:42 - 2019-04-02 06:50 - 019404800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-04-09 21:42 - 2019-04-02 06:43 - 005788160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2019-04-09 21:42 - 2019-04-02 06:43 - 000608768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2019-04-09 21:42 - 2019-04-02 06:43 - 000578560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2019-04-09 21:42 - 2019-04-02 06:42 - 001295360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVPXENC.dll
2019-04-09 21:42 - 2019-04-02 06:41 - 001540096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpserverbase.dll
2019-04-09 21:42 - 2019-04-02 06:41 - 001235968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpbase.dll
2019-04-09 21:42 - 2019-04-02 06:41 - 000230912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2019-04-09 21:42 - 2019-04-02 06:40 - 001073664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2019-04-09 21:42 - 2019-04-02 06:40 - 000534016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-04-09 21:42 - 2019-03-16 14:54 - 001008640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MixedRealityCapture.dll
2019-04-09 21:42 - 2019-03-16 11:03 - 000868864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-04-09 21:42 - 2019-03-14 16:52 - 003933296 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2019-04-09 21:42 - 2019-03-14 16:51 - 000157192 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2019-04-09 21:42 - 2019-03-14 16:35 - 000011776 _____ (Microsoft Corporation) C:\Windows\system32\appinfoext.dll
2019-04-09 21:42 - 2019-03-14 16:34 - 000127488 _____ (Microsoft Corporation) C:\Windows\system32\AppxSysprep.dll
2019-04-09 21:42 - 2019-03-14 16:33 - 000182784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpdr.sys
2019-04-09 21:42 - 2019-03-14 16:33 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storqosflt.sys
2019-04-09 21:42 - 2019-03-14 16:33 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\RpcPing.exe
2019-04-09 21:42 - 2019-03-14 16:31 - 000198656 _____ (Microsoft Corporation) C:\Windows\system32\wincredui.dll
2019-04-09 21:42 - 2019-03-14 16:30 - 000675328 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2019-04-09 21:42 - 2019-03-14 16:30 - 000440832 _____ (Microsoft Corporation) C:\Windows\system32\LockAppBroker.dll
2019-04-09 21:42 - 2019-03-14 16:29 - 000882688 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2019-04-09 21:42 - 2019-03-14 16:28 - 000560640 _____ (Microsoft Corporation) C:\Windows\system32\dsound.dll
2019-04-09 21:42 - 2019-03-14 16:08 - 003611264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2019-04-09 21:42 - 2019-03-14 15:56 - 000160768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredui.dll
2019-04-09 21:42 - 2019-03-14 15:55 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RpcPing.exe
2019-04-09 21:42 - 2019-03-14 15:53 - 000625664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2019-04-09 21:42 - 2019-03-14 15:53 - 000559104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2019-04-09 21:42 - 2019-03-14 15:53 - 000375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppBroker.dll
2019-04-09 21:42 - 2019-03-14 15:52 - 000502784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsound.dll
2019-04-09 21:42 - 2019-03-14 10:57 - 000611640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2019-04-09 21:42 - 2019-03-14 10:56 - 000375096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2019-04-09 21:42 - 2019-03-14 10:38 - 000380728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2019-04-09 21:42 - 2019-03-14 10:38 - 000090360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpr.dll
2019-04-09 21:42 - 2019-03-14 10:37 - 006043496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2019-04-09 21:42 - 2019-03-14 10:37 - 002256248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-04-09 21:42 - 2019-03-14 10:37 - 001171568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2019-04-09 21:42 - 2019-03-14 10:28 - 000152072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wcifs.sys
2019-04-09 21:42 - 2019-03-14 10:27 - 000436024 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-04-09 21:42 - 2019-03-14 10:27 - 000097600 _____ (Microsoft Corporation) C:\Windows\system32\mpr.dll
2019-04-09 21:42 - 2019-03-14 10:26 - 007436016 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2019-04-09 21:42 - 2019-03-14 10:26 - 002768448 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-04-09 21:42 - 2019-03-14 10:26 - 002421048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2019-04-09 21:42 - 2019-03-14 10:26 - 001457576 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-04-09 21:42 - 2019-03-14 10:26 - 001258688 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2019-04-09 21:42 - 2019-03-14 10:26 - 001140984 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-04-09 21:42 - 2019-03-14 10:26 - 001014344 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2019-04-09 21:42 - 2019-03-14 10:26 - 000983424 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2019-04-09 21:42 - 2019-03-14 10:26 - 000481048 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase_enclave.dll
2019-04-09 21:42 - 2019-03-14 10:26 - 000175416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spacedump.sys
2019-04-09 21:42 - 2019-03-14 10:22 - 002700288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2019-04-09 21:42 - 2019-03-14 10:20 - 006661632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2019-04-09 21:42 - 2019-03-14 10:19 - 003711488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-04-09 21:42 - 2019-03-14 10:19 - 002969600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll
2019-04-09 21:42 - 2019-03-14 10:18 - 005307392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2019-04-09 21:42 - 2019-03-14 10:18 - 000095744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTimeUtil.dll
2019-04-09 21:42 - 2019-03-14 10:18 - 000035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2019-04-09 21:42 - 2019-03-14 10:18 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2019-04-09 21:42 - 2019-03-14 10:17 - 002258944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2019-04-09 21:42 - 2019-03-14 10:17 - 000561152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2019-04-09 21:42 - 2019-03-14 10:17 - 000288768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-04-09 21:42 - 2019-03-14 10:17 - 000261632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2019-04-09 21:42 - 2019-03-14 10:17 - 000105472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wcmapi.dll
2019-04-09 21:42 - 2019-03-14 10:17 - 000057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntlanman.dll
2019-04-09 21:42 - 2019-03-14 10:16 - 000392192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2019-04-09 21:42 - 2019-03-14 10:16 - 000333824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2019-04-09 21:42 - 2019-03-14 10:15 - 000415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2019-04-09 21:42 - 2019-03-14 10:15 - 000318464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2019-04-09 21:42 - 2019-03-14 10:15 - 000195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShellCommonCommonProxyStub.dll
2019-04-09 21:42 - 2019-03-14 10:15 - 000102400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\negoexts.dll
2019-04-09 21:42 - 2019-03-14 10:14 - 001070080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadtb.dll
2019-04-09 21:42 - 2019-03-14 10:14 - 000856576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2019-04-09 21:42 - 2019-03-14 10:14 - 000735744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2019-04-09 21:42 - 2019-03-14 10:14 - 000345088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2019-04-09 21:42 - 2019-03-14 10:14 - 000330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-04-09 21:42 - 2019-03-14 10:14 - 000251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msIso.dll
2019-04-09 21:42 - 2019-03-14 10:14 - 000138240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\smartscreenps.dll
2019-04-09 21:42 - 2019-03-14 10:13 - 001468416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2019-04-09 21:42 - 2019-03-14 10:13 - 000669696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-04-09 21:42 - 2019-03-14 10:13 - 000145408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2019-04-09 21:42 - 2019-03-14 10:01 - 008188928 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2019-04-09 21:42 - 2019-03-14 09:58 - 004708864 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll
2019-04-09 21:42 - 2019-03-14 09:58 - 002509824 _____ (Microsoft Corporation) C:\Windows\system32\smartscreen.exe
2019-04-09 21:42 - 2019-03-14 09:58 - 000150016 _____ (Microsoft Corporation) C:\Windows\system32\fcon.dll
2019-04-09 21:42 - 2019-03-14 09:57 - 004866560 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-04-09 21:42 - 2019-03-14 09:57 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\NotificationControllerPS.dll
2019-04-09 21:42 - 2019-03-14 09:56 - 003392000 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2019-04-09 21:42 - 2019-03-14 09:56 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2019-04-09 21:42 - 2019-03-14 09:56 - 000120320 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll
2019-04-09 21:42 - 2019-03-14 09:56 - 000055296 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2019-04-09 21:42 - 2019-03-14 09:56 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2019-04-09 21:42 - 2019-03-14 09:55 - 003601920 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Bluetooth.Service.dll
2019-04-09 21:42 - 2019-03-14 09:55 - 002739200 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2019-04-09 21:42 - 2019-03-14 09:55 - 000528896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2019-04-09 21:42 - 2019-03-14 09:55 - 000458752 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll
2019-04-09 21:42 - 2019-03-14 09:55 - 000414720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cldflt.sys
2019-04-09 21:42 - 2019-03-14 09:55 - 000141312 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentActivation.dll
2019-04-09 21:42 - 2019-03-14 09:55 - 000134656 _____ (Microsoft Corporation) C:\Windows\system32\wcmapi.dll
2019-04-09 21:42 - 2019-03-14 09:55 - 000099328 _____ (Microsoft Corporation) C:\Windows\system32\ActiveSyncCsp.dll
2019-04-09 21:42 - 2019-03-14 09:55 - 000069120 _____ (Microsoft Corporation) C:\Windows\system32\ntlanman.dll
2019-04-09 21:42 - 2019-03-14 09:55 - 000062976 _____ (Microsoft Corporation) C:\Windows\system32\EASPolicyManagerBrokerHost.exe
2019-04-09 21:42 - 2019-03-14 09:55 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2019-04-09 21:42 - 2019-03-14 09:54 - 002368000 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
2019-04-09 21:42 - 2019-03-14 09:54 - 000566784 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2019-04-09 21:42 - 2019-03-14 09:54 - 000395776 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2019-04-09 21:42 - 2019-03-14 09:54 - 000354304 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2019-04-09 21:42 - 2019-03-14 09:54 - 000279552 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2019-04-09 21:42 - 2019-03-14 09:54 - 000273408 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2019-04-09 21:42 - 2019-03-14 09:54 - 000231936 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2019-04-09 21:42 - 2019-03-14 09:54 - 000227328 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2019-04-09 21:42 - 2019-03-14 09:54 - 000118784 _____ (Microsoft Corporation) C:\Windows\system32\negoexts.dll
2019-04-09 21:42 - 2019-03-14 09:54 - 000110592 _____ (Microsoft Corporation) C:\Windows\system32\ngcpopkeysrv.dll
2019-04-09 21:42 - 2019-03-14 09:53 - 000787968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdiWiFi.sys
2019-04-09 21:42 - 2019-03-14 09:53 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-04-09 21:42 - 2019-03-14 09:53 - 000473600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-04-09 21:42 - 2019-03-14 09:53 - 000456192 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.Workflow.dll
2019-04-09 21:42 - 2019-03-14 09:52 - 002909696 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2019-04-09 21:42 - 2019-03-14 09:52 - 000532992 _____ (Microsoft Corporation) C:\Windows\system32\QuietHours.dll
2019-04-09 21:42 - 2019-03-14 09:52 - 000404480 _____ (Microsoft Corporation) C:\Windows\system32\ShellCommonCommonProxyStub.dll
2019-04-09 21:42 - 2019-03-14 09:52 - 000201728 _____ (Microsoft Corporation) C:\Windows\system32\smartscreenps.dll
2019-04-09 21:42 - 2019-03-14 09:51 - 001216000 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
2019-04-09 21:42 - 2019-03-14 09:51 - 001058304 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2019-04-09 21:42 - 2019-03-14 09:51 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\TetheringMgr.dll
2019-04-09 21:42 - 2019-03-14 09:50 - 001587712 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-04-09 21:42 - 2019-03-14 09:50 - 001410560 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
2019-04-09 21:42 - 2019-03-14 09:50 - 000947200 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2019-04-09 21:42 - 2019-03-14 09:50 - 000847360 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2019-04-09 21:42 - 2019-03-14 09:50 - 000796672 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2019-04-09 21:42 - 2019-03-14 09:50 - 000776192 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-04-09 21:42 - 2019-03-14 09:50 - 000507392 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2019-04-09 21:42 - 2019-03-14 09:50 - 000406528 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2019-04-09 21:42 - 2019-03-14 09:50 - 000176640 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2019-04-09 21:42 - 2019-03-14 03:57 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2019-04-09 21:42 - 2019-03-14 03:57 - 000475648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxbde40.dll
2019-04-09 21:42 - 2019-03-14 03:57 - 000375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspbde40.dll
2019-04-09 21:42 - 2019-03-14 03:57 - 000352768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2019-04-09 21:42 - 2019-03-14 03:57 - 000340992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2019-04-09 20:37 - 2019-04-09 22:05 - 000000000 ____D C:\Users\petrb\AppData\Local\The Witcher
2019-04-09 20:37 - 2019-04-09 21:09 - 000000000 ____D C:\Users\petrb\Documents\The Witcher
2019-04-09 20:36 - 2019-04-09 20:36 - 000000000 ____D C:\Users\Public\Documents\The Witcher
2019-04-09 20:00 - 2019-04-09 20:00 - 000000221 _____ C:\Users\petrb\Desktop\The Witcher 2 Assassins of Kings Enhanced Edition.url
2019-04-09 19:02 - 2019-04-09 19:02 - 000000221 _____ C:\Users\petrb\Desktop\The Witcher Enhanced Edition.url
2019-04-07 12:48 - 2019-04-07 12:48 - 000191699 _____ C:\Users\petrb\Downloads\12-09-2017_09-54-45.pdf
2019-04-07 12:47 - 2019-04-07 12:47 - 000479133 _____ C:\Users\petrb\Downloads\rp 2017 iki.pdf
2019-04-05 16:47 - 2019-04-05 16:48 - 000002770 _____ C:\Users\petrb\Desktop\xa.txt
2019-04-05 15:37 - 2019-04-19 12:26 - 000000000 ____D C:\Users\petrb\AppData\Roaming\SmartGenius
2019-04-05 10:18 - 2019-03-17 08:42 - 000133616 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2019-04-05 10:16 - 2019-03-18 21:48 - 010320928 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2019-04-05 10:16 - 2019-03-18 21:48 - 008786128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2019-04-05 10:16 - 2019-03-18 21:48 - 001168936 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2019-04-05 10:16 - 2019-03-18 21:48 - 000914912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2019-04-05 10:16 - 2019-03-18 21:48 - 000822576 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcumd.dll
2019-04-05 10:16 - 2019-03-18 21:48 - 000794632 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2019-04-05 10:16 - 2019-03-18 21:48 - 000638176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2019-04-05 10:16 - 2019-03-18 21:47 - 020107592 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2019-04-05 10:16 - 2019-03-18 21:47 - 017433176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2019-04-05 10:16 - 2019-03-18 21:47 - 004303072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2019-04-05 10:16 - 2019-03-18 21:47 - 001471608 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFThevc.dll
2019-04-05 10:16 - 2019-03-18 21:47 - 001462024 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFTH264.dll
2019-04-05 10:16 - 2019-03-18 21:47 - 001151984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFThevc.dll
2019-04-05 10:16 - 2019-03-18 21:47 - 001145720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFTH264.dll
2019-04-05 10:16 - 2019-03-18 20:32 - 000047592 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2019-04-05 10:16 - 2019-03-18 18:51 - 001007008 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2019-04-05 10:16 - 2019-03-18 18:51 - 001007008 _____ C:\Windows\system32\vulkan-1.dll
2019-04-05 10:16 - 2019-03-18 18:51 - 000870304 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2019-04-05 10:16 - 2019-03-18 18:51 - 000870304 _____ C:\Windows\SysWOW64\vulkan-1.dll
2019-04-05 10:16 - 2019-03-18 18:51 - 000551896 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2019-04-05 10:16 - 2019-03-18 18:51 - 000456872 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2019-04-05 10:16 - 2019-03-18 18:51 - 000286624 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2019-04-05 10:16 - 2019-03-18 18:51 - 000286624 _____ C:\Windows\system32\vulkaninfo.exe
2019-04-05 10:16 - 2019-03-18 18:51 - 000260512 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2019-04-05 10:16 - 2019-03-18 18:51 - 000260512 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2019-04-05 10:16 - 2019-03-18 18:50 - 005274560 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2019-04-05 10:16 - 2019-03-18 18:50 - 001734536 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6441967.dll
2019-04-05 10:16 - 2019-03-18 18:50 - 001535744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2019-04-05 10:16 - 2019-03-18 18:50 - 001467648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6441967.dll
2019-04-05 10:16 - 2019-03-18 18:50 - 001464712 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2019-04-05 10:16 - 2019-03-18 18:50 - 001130376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2019-04-05 10:16 - 2019-03-18 18:50 - 000752336 _____ (NVIDIA Corporation) C:\Windows\system32\nvDecMFTMjpeg.dll
2019-04-05 10:16 - 2019-03-18 18:50 - 000668456 _____ C:\Windows\system32\nvofapi64.dll
2019-04-05 10:16 - 2019-03-18 18:50 - 000631040 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2019-04-05 10:16 - 2019-03-18 18:50 - 000611720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvDecMFTMjpeg.dll
2019-04-05 10:16 - 2019-03-18 18:50 - 000534728 _____ C:\Windows\SysWOW64\nvofapi.dll
2019-04-05 10:16 - 2019-03-18 18:50 - 000522120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2019-04-05 10:16 - 2019-03-18 18:49 - 040421280 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2019-04-05 10:16 - 2019-03-18 18:49 - 035268720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2019-04-05 10:16 - 2019-03-18 18:49 - 004625616 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2019-04-05 10:03 - 2019-04-05 10:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmartGenius
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-05-03 19:20 - 2018-05-04 16:34 - 001692472 _____ C:\Windows\system32\PerfStringBackup.INI
2019-05-03 19:20 - 2018-04-12 17:50 - 000716072 _____ C:\Windows\system32\perfh005.dat
2019-05-03 19:20 - 2018-04-12 17:50 - 000144864 _____ C:\Windows\system32\perfc005.dat
2019-05-03 19:20 - 2018-04-12 01:36 - 000000000 ____D C:\Windows\INF
2019-05-03 19:17 - 2018-05-04 16:38 - 000000000 ____D C:\ProgramData\NVIDIA
2019-05-03 19:15 - 2018-06-06 11:49 - 000000000 ____D C:\Users\petrb\AppData\Local\Spotify
2019-05-03 19:15 - 2018-06-06 11:47 - 000000000 ____D C:\Users\petrb\AppData\Roaming\Spotify
2019-05-03 19:15 - 2018-06-06 11:32 - 000000000 ____D C:\Program Files (x86)\Steam
2019-05-03 19:15 - 2018-06-06 11:31 - 000000000 ___RD C:\Users\petrb\OneDrive
2019-05-03 19:15 - 2018-06-06 11:27 - 000000000 ____D C:\Users\petrb
2019-05-03 19:14 - 2018-05-04 16:27 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-05-03 19:14 - 2018-05-04 16:27 - 000000000 ____D C:\Windows\system32\SleepStudy
2019-05-03 19:14 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-05-03 13:45 - 2018-04-12 01:38 - 000000000 ____D C:\Windows\AppReadiness
2019-05-03 11:49 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-05-01 10:55 - 2018-06-06 11:29 - 000000000 ____D C:\Users\petrb\AppData\Local\Packages
2019-05-01 08:50 - 2018-08-05 15:59 - 000001383 _____ C:\Users\Public\Desktop\Skype.lnk
2019-05-01 08:50 - 2018-08-05 15:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2019-04-24 19:03 - 2018-05-04 16:27 - 000000000 ____D C:\Windows\system32\Drivers\wd
2019-04-23 18:10 - 2019-01-09 20:18 - 000001251 _____ C:\Users\petrb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\1Password.lnk
2019-04-19 12:26 - 2018-06-17 11:00 - 000000000 ____D C:\Users\petrb\AppData\Local\SmartGenius
2019-04-19 10:22 - 2018-09-27 17:50 - 000000000 ____D C:\Windows\System32\Tasks\MaiSoft
2019-04-19 10:22 - 2018-09-27 17:50 - 000000000 ____D C:\Users\petrb\AppData\Local\QA
2019-04-18 18:18 - 2018-06-06 11:32 - 000003380 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4280946255-3995137616-3202641619-1004
2019-04-18 18:18 - 2018-06-06 11:31 - 000002365 _____ C:\Users\petrb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-04-15 11:43 - 2018-11-21 21:35 - 000000000 ____D C:\Program Files\CyberGhost 7
2019-04-11 08:59 - 2018-06-06 11:31 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-04-11 08:59 - 2018-06-06 11:31 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-04-10 17:41 - 2018-05-04 16:27 - 000252128 _____ C:\Windows\system32\FNTCACHE.DAT
2019-04-10 00:20 - 2018-04-12 01:38 - 000000000 ___RD C:\Program Files\Windows Defender
2019-04-10 00:20 - 2018-04-12 01:38 - 000000000 ____D C:\Windows\TextInput
2019-04-10 00:20 - 2018-04-12 01:38 - 000000000 ____D C:\Windows\bcastdvr
2019-04-10 00:20 - 2018-04-11 23:04 - 000786432 _____ C:\Windows\system32\config\BBI
2019-04-09 21:44 - 2018-04-12 01:30 - 000000000 ____D C:\Windows\CbsTemp
2019-04-09 21:42 - 2018-06-06 14:34 - 000000000 ____D C:\Windows\system32\MRT
2019-04-09 21:41 - 2018-06-06 14:34 - 131129288 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-04-05 15:37 - 2018-05-05 18:07 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-04-05 10:18 - 2018-05-05 18:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2019-04-05 10:18 - 2018-05-04 16:37 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2019-04-05 10:03 - 2018-06-06 11:34 - 000004308 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-05 10:03 - 2018-06-06 11:34 - 000004106 _____ C:\Windows\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-05 10:03 - 2018-06-06 11:34 - 000003976 _____ C:\Windows\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-05 10:03 - 2018-06-06 11:34 - 000003940 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-05 10:03 - 2018-06-06 11:34 - 000003926 _____ C:\Windows\System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-05 10:03 - 2018-06-06 11:34 - 000003926 _____ C:\Windows\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-05 10:03 - 2018-06-06 11:34 - 000003926 _____ C:\Windows\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-05 10:03 - 2018-06-06 11:34 - 000003894 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-05 10:03 - 2018-06-06 11:34 - 000003866 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-05 10:03 - 2018-06-06 11:34 - 000003858 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-05 10:03 - 2018-06-06 11:34 - 000003654 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-05 10:03 - 2018-05-05 18:05 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-04-05 09:33 - 2018-11-16 02:16 - 000000000 ____D C:\Program Files\rempl
==================== Files in the root of some directories =======
2019-01-31 01:18 - 2019-01-31 01:18 - 000012003 _____ () C:\Users\petrb\AppData\Local\recently-used.xbel
==================== SigCheck ===============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-05.2019
Ran by petrb (03-05-2019 19:22:06)
Running from C:\Users\petrb\Desktop
Windows 10 Home Version 1803 17134.706 (X64) (2018-06-06 09:24:14)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-4280946255-3995137616-3202641619-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4280946255-3995137616-3202641619-503 - Limited - Disabled)
Guest (S-1-5-21-4280946255-3995137616-3202641619-501 - Limited - Disabled)
petrb (S-1-5-21-4280946255-3995137616-3202641619-1004 - Administrator - Enabled) => C:\Users\petrb
WDAGUtilityAccount (S-1-5-21-4280946255-3995137616-3202641619-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
1Password (HKU\S-1-5-21-4280946255-3995137616-3202641619-1004\...\1Password) (Version: 7.3.684 - AgileBits Inc.)
7-Zip 18.05 (x64) (HKLM\...\7-Zip) (Version: 18.05 - Igor Pavlov)
Aktualizace NVIDIA 36.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 36.0.0.0 - NVIDIA Corporation) Hidden
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.0.2 - Electronic Arts, Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CyberGhost 7 (HKLM\...\CyberGhost 7) (Version: 7.1.2.4167 - CyberGhost S.A.)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Discord (HKU\S-1-5-21-4280946255-3995137616-3202641619-1004\...\Discord) (Version: 0.0.304 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 419.67 - NVIDIA Corporation) Hidden
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Fallout 2 (HKLM-x32\...\2_is1) (Version: 2.1.0.17 - GOG.com)
Far Cry 4 (HKLM-x32\...\Uplay Install 420) (Version: - Ubisoft)
GIMP 2.10.8 (HKLM\...\GIMP-2_is1) (Version: 2.10.8 - The GIMP Team)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 73.0.3683.103 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.7 - Google LLC) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1805.12.0.1097 - Intel Corporation)
Intel(R) Network Connections 23.1.100.0 (HKLM\...\PROSetDX) (Version: 23.1.100.0 - Intel)
Intel(R) Optane(TM) Memory (HKLM\...\{fca73a1d-2062-4ba7-9951-8bd39116b154}) (Version: 16.0.2.1086 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.48.197.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{66129f84-d3f0-4884-ac54-369ae6fc2cf6}) (Version: 1.48.197.0 - Intel Corporation) Hidden
Intel(R) Update Manager (HKLM-x32\...\{AA8BC571-E96E-4478-927F-CB44CC7D7D07}) (Version: 3.5.2247 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{55d73ea7-6354-42db-8831-02d048ae57f8}) (Version: 10.1.17541.8066 - Intel(R) Corporation) Hidden
Intel® SSD Toolbox (HKLM-x32\...\{06D085C8-1F00-11B2-96A7-8f0CE39193ED}) (Version: 3.5.2.400 - Intel Corporation)
Kits Configuration Installer (HKLM-x32\...\{C690B2D9-0AA8-8CDA-965D-FED648C3EF9C}) (Version: 10.1.17134.1 - Microsoft) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft OneDrive (HKU\S-1-5-21-4280946255-3995137616-3202641619-1004\...\OneDriveSetup.exe) (Version: 19.043.0304.0007 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox 64.0 (x64 cs) (HKLM\...\Mozilla Firefox 64.0 (x64 cs)) (Version: 64.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 64.0 - Mozilla)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.15 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.18.0.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.18.0.94 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 419.67 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 419.67 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.13 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 419.67 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 419.67 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OPRAVA PC ONLINE (HKLM-x32\...\{5E71387E-2CF7-1F26-C919-7FACFF27D2EF}) (Version: 7.11.760 - LogMeIn, Inc.)
Origin (HKLM-x32\...\Origin) (Version: 10.5.34.21025 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 419.67 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 419.67 - NVIDIA Corporation) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
qBittorrent 4.1.1 (HKLM-x32\...\qBittorrent) (Version: 4.1.1 - The qBittorrent project)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8339 - Realtek Semiconductor Corp.)
SeaTools for Windows 1.4.0.7 (HKLM-x32\...\SeaTools for Windows) (Version: 1.4.0.7 - Seagate Technology)
Skype verze 8.44 (HKLM-x32\...\Skype_is1) (Version: 8.44 - Skype Technologies S.A.)
SmartGenius (HKLM\...\{F96B1114-82A6-4348-8A84-8FD4E9D99F3B}_is1) (Version: 1.6.0.8 - KYE Systems Corp.)
Spotify (HKU\S-1-5-21-4280946255-3995137616-3202641619-1004\...\Spotify) (Version: 1.1.5.153.gf614956d - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries Engine 3.12.13 (HKLM\...\SteelSeries Engine 3) (Version: 3.12.13 - SteelSeries ApS)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.9 - TeamSpeak Systems GmbH)
Toolkit Documentation (HKLM-x32\...\{563689A6-D95B-EA6D-665F-97959643E0DB}) (Version: 10.1.17134.1 - Microsoft) Hidden
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{B2E25355-C24E-4E7D-8AD3-455D59810838}) (Version: 2.57.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 62.0 - Ubisoft)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN)
VyprVPN (HKLM\...\{526B3DDC-6891-4F43-8F64-8B83DC9E4848}) (Version: 2.16.2.8727 - Golden Frog, GmbH.)
Windows Assessment and Deployment Kit - Windows 10 (HKLM-x32\...\{d794748d-72e9-45d7-9ab7-83d6c4c80f7f}) (Version: 10.1.17134.1 - Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-03-17] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2018-01-31 14:42 - 2018-01-31 14:42 - 000505856 _____ (Intel Corporation) [File not signed] C:\Windows\system32\IProsetMonitor.exe
2019-01-17 23:07 - 2019-01-17 23:07 - 000309248 _____ (Golden Frog, GmbH.) [File not signed] C:\Program Files (x86)\VyprVPN\VyprVPNService.exe
2018-06-16 17:28 - 2018-04-30 14:00 - 000075776 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2018-09-13 23:59 - 2018-09-13 23:59 - 002284032 _____ (Holtek) [File not signed] C:\Program Files\SteelSeries\SteelSeries Engine 3\ISPDLL.dll
2018-09-13 23:59 - 2018-09-13 23:59 - 002146304 _____ (Holtek Semiconductor Inc.) [File not signed] C:\Program Files\SteelSeries\SteelSeries Engine 3\HIDDLL.dll
2019-01-17 23:06 - 2019-01-17 23:06 - 000104960 _____ () [File not signed] C:\Program Files (x86)\VyprVPN\GoldenFrogWFP.dll
2018-06-16 13:50 - 2018-06-16 13:50 - 001177600 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2018-06-16 13:50 - 2018-06-16 13:50 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2018-06-16 13:50 - 2018-06-16 13:50 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2018-06-16 13:50 - 2018-06-16 13:50 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2018-06-16 13:50 - 2018-06-16 13:50 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
2018-06-16 13:50 - 2018-06-16 13:50 - 001548288 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2018-06-16 13:50 - 2018-06-16 13:50 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2018-06-16 13:50 - 2018-06-16 13:50 - 000395776 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2018-08-05 15:59 - 2019-04-25 21:20 - 015257088 _____ (Node.js) [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\node.dll
2018-08-05 15:59 - 2019-04-25 21:20 - 002901504 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\libglesv2.dll
2018-08-05 15:59 - 2019-04-25 21:20 - 000015360 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\petrb\Data aplikací:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\petrb\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-04-12 01:38 - 2018-04-12 01:36 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-4280946255-3995137616-3202641619-1004\Control Panel\Desktop\\Wallpaper -> C:\Users\petrb\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.100.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
HKLM\...\StartupApproved\Run: => "Acronis Scheduler2 Service"
HKLM\...\StartupApproved\Run32: => "AcronisTibMounterMonitor"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{CD80768E-3C05-440E-A385-F046EE3CFFDC}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\ga_service.exe No File
FirewallRules: [{2D501CF2-6878-4EBB-A06A-60573FC8B91A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{AB94719D-FC20-4080-A53A-2504E53EABA1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B5BFBC2D-3A0F-4631-8A0E-D14905947176}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{19472E55-E36B-4A95-BA22-7D6BD6A5F66B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{41800BB4-B51B-424E-B299-EA3A52AF5450}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{32281BF1-7733-4F48-8C78-F4103DEA7F4B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{9580CA59-BC4C-4437-BA95-7F88FC7D2C0B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{CF2AB4BC-027A-417B-8158-E971D20CDE87}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{16C2E3EF-D28E-4D90-94E1-072F074C31C8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FCAB5012-A99C-4D3F-8EBE-A24CED72A974}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{B84FCDE2-63C8-446A-9155-2483153C327E}C:\users\petrb\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\petrb\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{71502CCB-8F67-4D88-802D-024D74276317}C:\users\petrb\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\petrb\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F39D0791-5228-4989-A6D9-56F7820B044D}] => (Block) C:\users\petrb\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{014DDBBE-C731-41F6-9FAC-57ADFF0C8124}] => (Block) C:\users\petrb\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{34733EB7-624C-455E-AD27-76CE88BDB2A1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{48448D84-6BCC-4EE0-8759-FAA5E2ABE374}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [TCP Query User{E5FC754E-94D4-4952-9C99-3FF86F09E42A}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [UDP Query User{A758D0DC-F85A-4CC6-A8E1-D3FE996CA7E7}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [{0A0838D7-9B9E-43CF-ACD0-B3943BBE8A04}] => (Block) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [{7FB0803C-FD42-407E-A8E1-30434BA3B4F6}] => (Block) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [{70F29AD6-6F41-44B0-A738-512AC366D196}] => (Allow) D:\Software\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{2D6DF5F4-3BF8-4EF1-BBFA-2D122959E75E}] => (Allow) D:\Software\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{3F9A2778-408C-4F42-B247-1EBED3BD88DD}] => (Allow) D:\SteamLibrary\steamapps\common\Deus Ex Mankind Divided\retail\DXMD.exe () [File not signed]
FirewallRules: [{05C43127-C6BE-4621-A388-027B622A5F00}] => (Allow) D:\SteamLibrary\steamapps\common\Deus Ex Mankind Divided\retail\DXMD.exe () [File not signed]
FirewallRules: [TCP Query User{30845AF3-2E80-42F6-93E1-7EE51D65ADCA}D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe No File
FirewallRules: [UDP Query User{1CD26AA2-4072-4A2E-B97C-E839CBD7B14E}D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe No File
FirewallRules: [TCP Query User{DF9B8A6E-F1C3-4BBE-ACED-4E7634E9D3C3}D:\steamlibrary\steamapps\common\realm royale\binaries\win64\realm.exe] => (Allow) D:\steamlibrary\steamapps\common\realm royale\binaries\win64\realm.exe No File
FirewallRules: [UDP Query User{DFCB3652-36CB-439A-AD82-9741F2CCE306}D:\steamlibrary\steamapps\common\realm royale\binaries\win64\realm.exe] => (Allow) D:\steamlibrary\steamapps\common\realm royale\binaries\win64\realm.exe No File
FirewallRules: [{FCDBBEA5-4026-461E-A3E9-5B0F17D20B15}] => (Allow) D:\Games\Far Cry 4\bin\FarCry4.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{C927EF64-3F23-440B-936A-1D4A4A11F35A}] => (Allow) D:\Games\Far Cry 4\bin\FarCry4.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{66EDE7E2-4144-4C5B-9507-8A617CFB20C3}] => (Allow) D:\Games\Far Cry 4\bin\IGE_WPF64.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{A2CE77F3-481E-4F8E-8050-483B5D6194F1}] => (Allow) D:\Games\Far Cry 4\bin\IGE_WPF64.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{B203ADE1-7CCD-4F75-BC05-F4B6483E7EC4}] => (Allow) D:\SteamLibrary\steamapps\common\Assassin's Creed Syndicate\ACS.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{BB024F9D-62D1-4C86-BAF9-337CB4ED1595}] => (Allow) D:\SteamLibrary\steamapps\common\Assassin's Creed Syndicate\ACS.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{6038F96D-C4AB-4B90-94E5-7B3C8939EE27}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{929BDC49-A2CD-4590-A74D-FB1A61926D1F}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{542FAACB-4A78-4516-8ACF-D2ABF54B5B69}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{4FD38662-A686-4D27-B2F0-70D7B9E7997E}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{D687E5B1-8D18-402B-A179-B52997F13C65}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{32F2CADF-5D6E-45AF-893F-18472D0CF8FB}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [TCP Query User{1900B7CC-2EE9-4808-A5B4-C03F5EFD2409}D:\origin games\battlefield 4\bf4.exe] => (Allow) D:\origin games\battlefield 4\bf4.exe No File
FirewallRules: [UDP Query User{20406DEF-073F-40BA-9FA6-55872B965B8E}D:\origin games\battlefield 4\bf4.exe] => (Allow) D:\origin games\battlefield 4\bf4.exe No File
FirewallRules: [{B8ADECA9-CDF1-46E4-A038-7CA5402EBBD1}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{F186B53D-02E3-495D-86C6-7BEB1D44EEA1}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [TCP Query User{62AF523B-3BB2-4EBB-8C47-5FF5FA22BF64}D:\games\diablo iii\x64\diablo iii64.exe] => (Allow) D:\games\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{448E3695-EA24-493A-9A76-D1F49E21DC28}D:\games\diablo iii\x64\diablo iii64.exe] => (Allow) D:\games\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{FFFA689B-12B9-4E2A-A4E2-92687C62D886}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{08C58E6B-FB1B-424D-B38E-704CDC995858}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{A43A2DFA-B105-412B-BA7D-6C732BB1F403}D:\games\warthunder\launcher.exe] => (Allow) D:\games\warthunder\launcher.exe No File
FirewallRules: [UDP Query User{FF5042AD-9F8F-49B6-B9AE-98A65022D922}D:\games\warthunder\launcher.exe] => (Allow) D:\games\warthunder\launcher.exe No File
FirewallRules: [{8FB79631-0F3B-4A98-9631-03FAD95FA7E6}] => (Block) D:\games\warthunder\launcher.exe No File
FirewallRules: [{0616A124-A7ED-4607-A4F7-A6AAD2E32BBA}] => (Block) D:\games\warthunder\launcher.exe No File
FirewallRules: [TCP Query User{6BC19102-65A9-43CC-B418-F4DCD15D28F3}D:\games\warthunder\win64\aces.exe] => (Allow) D:\games\warthunder\win64\aces.exe No File
FirewallRules: [UDP Query User{01A9961C-CD90-4081-98FE-BBD352E312F3}D:\games\warthunder\win64\aces.exe] => (Allow) D:\games\warthunder\win64\aces.exe No File
FirewallRules: [{CC906229-2E2F-4DAE-8EF1-27515A7F5F7D}] => (Block) D:\games\warthunder\win64\aces.exe No File
FirewallRules: [{96B6DA5C-B6E0-4FA5-A04F-BDE157CBFBBF}] => (Block) D:\games\warthunder\win64\aces.exe No File
FirewallRules: [{0C21E54B-0A44-4CDF-9AD6-07FB06191F97}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG Corporation ) [File not signed]
FirewallRules: [{EA2DD19B-F68D-4431-8409-EC0E64FC931B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG Corporation ) [File not signed]
FirewallRules: [{7D09D352-03BE-4794-855B-816F31EB58B4}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]
FirewallRules: [{82103D61-7736-46AB-9C3C-0EB0BE716C3D}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]
FirewallRules: [TCP Query User{D3E08DB9-7C5D-484E-84F4-DC6D8EDC4F10}C:\users\petrb\appdata\local\temp\574c724d-f3dc-4c41-8af9-000250910e07\ga_service.exe] => (Block) C:\users\petrb\appdata\local\temp\574c724d-f3dc-4c41-8af9-000250910e07\ga_service.exe No File
FirewallRules: [TCP Query User{35138DA8-3929-4DE4-BB73-987E5F43427E}D:\origin games\fifa 19\fifa19.exe] => (Allow) D:\origin games\fifa 19\fifa19.exe No File
FirewallRules: [UDP Query User{86D4A806-4A86-436D-ACEF-851CAE11E7E4}D:\origin games\fifa 19\fifa19.exe] => (Allow) D:\origin games\fifa 19\fifa19.exe No File
FirewallRules: [{3B107EC4-647B-4130-AFA8-935889946292}] => (Allow) D:\SteamLibrary\steamapps\common\Ring of Elysium\SLauncher.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{689072C6-ABA9-48BB-A908-5094549B403B}] => (Allow) D:\SteamLibrary\steamapps\common\Ring of Elysium\SLauncher.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [TCP Query User{15FFBDF9-18D7-4B34-A13A-914B6423630F}D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [UDP Query User{4EF9AAAD-1605-4316-BDE3-1CC846C3D6EC}D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [{B9C4D4CE-3D8B-47BD-8AFD-95F62297461B}] => (Block) D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [{931227B4-930D-4B45-A03F-38DA3473FF04}] => (Block) D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [TCP Query User{AB74A7FE-CCD7-48DE-B962-5F728D5E874A}D:\games\epic games\subnautica\subnautica.exe] => (Allow) D:\games\epic games\subnautica\subnautica.exe No File
FirewallRules: [UDP Query User{1B259ECF-8DB0-4AAB-B1B9-299637B29A03}D:\games\epic games\subnautica\subnautica.exe] => (Allow) D:\games\epic games\subnautica\subnautica.exe No File
FirewallRules: [{AA495B2B-5A7D-4172-836E-7BF24E371D89}] => (Allow) D:\SteamLibrary\steamapps\common\Rogue Legacy\RogueLegacy.exe (Cellar Door Games, Inc.) [File not signed]
FirewallRules: [{53AAB038-8EA1-47A9-BAAD-CA6B7C488B2D}] => (Allow) D:\SteamLibrary\steamapps\common\Rogue Legacy\RogueLegacy.exe (Cellar Door Games, Inc.) [File not signed]
FirewallRules: [{7C991472-AAED-45C4-B014-D130FAADCE07}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{FB377C80-B83F-45C9-887E-E911A7DABB9C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{06413E23-3099-4CC6-989E-0FB1B48D4F4B}] => (Allow) D:\SteamLibrary\steamapps\common\Life is Strange - Before the Storm\Life is Strange - Before the Storm.exe () [File not signed]
FirewallRules: [{6155E718-7101-4E56-B61B-AD404A04CB7E}] => (Allow) D:\SteamLibrary\steamapps\common\Life is Strange - Before the Storm\Life is Strange - Before the Storm.exe () [File not signed]
FirewallRules: [{0A5D8573-E824-45F9-8CC2-0324D5B05222}] => (Allow) D:\SteamLibrary\steamapps\common\Life is Strange 2\LIS2\Binaries\Win64\LIS2-Win64-Shipping.exe (Square Enix) [File not signed]
FirewallRules: [{48052A5B-29D9-4B50-B7A7-0362A1DD4170}] => (Allow) D:\SteamLibrary\steamapps\common\Life is Strange 2\LIS2\Binaries\Win64\LIS2-Win64-Shipping.exe (Square Enix) [File not signed]
FirewallRules: [{F00BF09B-1DB4-4689-9889-0050C2FC5751}] => (Allow) D:\SteamLibrary\steamapps\common\CaptainSpirit\CaptainSpirit\Binaries\Win64\CaptainSpirit-Win64-Shipping.exe (Square Enix) [File not signed]
FirewallRules: [{8F6178D3-C0D3-4884-A886-DFFFA3355B65}] => (Allow) D:\SteamLibrary\steamapps\common\CaptainSpirit\CaptainSpirit\Binaries\Win64\CaptainSpirit-Win64-Shipping.exe (Square Enix) [File not signed]
FirewallRules: [{1F608196-6D58-4DDA-8D31-54E107212F99}] => (Allow) D:\SteamLibrary\steamapps\common\To the Moon\To the Moon\To the Moon.exe () [File not signed]
FirewallRules: [{7B9B130D-F15F-448A-A36D-915919B3FE12}] => (Allow) D:\SteamLibrary\steamapps\common\To the Moon\To the Moon\To the Moon.exe () [File not signed]
FirewallRules: [{F7FA938F-7964-4BB4-8200-EA1F8686DE48}] => (Allow) D:\SteamLibrary\steamapps\common\To the Moon\Minisode_1\Sigmund Holiday Special 1\Siggy - Holiday Special.exe () [File not signed]
FirewallRules: [{235A712F-C10E-4BB0-A76C-484D5D24681D}] => (Allow) D:\SteamLibrary\steamapps\common\To the Moon\Minisode_1\Sigmund Holiday Special 1\Siggy - Holiday Special.exe () [File not signed]
FirewallRules: [{E47CB513-EA33-40A4-992F-FE0A280495C0}] => (Allow) D:\SteamLibrary\steamapps\common\To the Moon\Minisode_2\Sigmund Holiday Special 2\SigCorp Minisode 2.exe () [File not signed]
FirewallRules: [{D4B23810-E0C3-4BB4-B814-D0687BE5757A}] => (Allow) D:\SteamLibrary\steamapps\common\To the Moon\Minisode_2\Sigmund Holiday Special 2\SigCorp Minisode 2.exe () [File not signed]
FirewallRules: [{6F79D96C-DADF-4038-836C-E09692157C73}] => (Allow) D:\SteamLibrary\steamapps\common\Marie's Room\MariesRoom.exe () [File not signed]
FirewallRules: [{8BC45516-15FC-4A24-B82C-D631E6BD91CE}] => (Allow) D:\SteamLibrary\steamapps\common\Marie's Room\MariesRoom.exe () [File not signed]
FirewallRules: [TCP Query User{D4F7F228-4979-459A-A5A0-06C71E3CDD9D}D:\steamlibrary\steamapps\common\marie's room\mariesroom\binaries\win64\mariesroom-win64-shipping.exe] => (Allow) D:\steamlibrary\steamapps\common\marie's room\mariesroom\binaries\win64\mariesroom-win64-shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [UDP Query User{32ABBDBF-E6A5-44E5-AB17-FCB62B4D0445}D:\steamlibrary\steamapps\common\marie's room\mariesroom\binaries\win64\mariesroom-win64-shipping.exe] => (Allow) D:\steamlibrary\steamapps\common\marie's room\mariesroom\binaries\win64\mariesroom-win64-shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{56ABDECC-27D8-47EC-8C43-36C3EB38BBF3}] => (Allow) D:\SteamLibrary\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe (DONTNOD Entertainment) [File not signed]
FirewallRules: [{13235C81-F1E5-42EB-913C-F9819BEE4C8C}] => (Allow) D:\SteamLibrary\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe (DONTNOD Entertainment) [File not signed]
FirewallRules: [{C91105D6-97CB-47C9-B165-EC1F560BC09A}] => (Allow) D:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe (FromSoftware,Inc. -> BANDAI NAMCO Entertainment Inc.)
FirewallRules: [{23426ACE-4613-4C8F-AA3B-1F0CB27B1B6A}] => (Allow) D:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe (FromSoftware,Inc. -> BANDAI NAMCO Entertainment Inc.)
FirewallRules: [{D2B62947-058C-4822-8FD9-F6ABA5D543C0}] => (Allow) D:\SteamLibrary\steamapps\common\Dishonored2\Dishonored2.exe (Arkane Studios) [File not signed]
FirewallRules: [{0A492C75-3CCD-47AE-82AF-84967AB2ADFA}] => (Allow) D:\SteamLibrary\steamapps\common\Dishonored2\Dishonored2.exe (Arkane Studios) [File not signed]
FirewallRules: [TCP Query User{0CA5EC22-2417-42BF-9A44-D2B430D8345C}D:\origin games\apex\r5apex.exe] => (Allow) D:\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [UDP Query User{9DA32D54-2FC4-4508-B33E-4663504F61E5}D:\origin games\apex\r5apex.exe] => (Allow) D:\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [{41BB8958-AEC4-4585-8E20-9BFA8C767017}] => (Allow) D:\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{70CD1FA5-9003-471F-A6CA-920286A27072}] => (Allow) D:\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{A7EEB8F9-2870-43FE-BE64-F333FCE3A6F2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E1A7B206-03F6-45BE-B62B-B48A83BD5C75}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{EB90989B-D879-4F9B-AC2A-28D674C1DC7E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A21B6A0D-B3ED-4A2B-8D54-11ECAC52346C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{6744994E-D184-4883-B8E3-7766BAA49721}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe (CD Projekt Red) [File not signed]
FirewallRules: [{74140035-BE26-46A7-BB7D-DBB65532785F}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe (CD Projekt Red) [File not signed]
FirewallRules: [{117A9FED-69E4-4739-95DF-C398E4E6770A}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe (CD Projekt RED Sp. z o.o. -> CD Projekt Red)
FirewallRules: [{B1350DA2-A108-41BE-9BDC-73BE778F398B}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe (CD Projekt RED Sp. z o.o. -> CD Projekt Red)
FirewallRules: [{AC9E57F2-33FD-4C77-8FD5-88FB0C05A0BE}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe () [File not signed]
FirewallRules: [{06D4ED8F-62F4-4EF8-8370-6F3BC96736C3}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe () [File not signed]
FirewallRules: [{40ECE775-B4CA-43AE-BDA8-8BB9986F3497}] => (Allow) D:\SteamLibrary\steamapps\common\the witcher 2\Launcher.exe (CD Projekt RED) [File not signed]
FirewallRules: [{7A0D0104-EC14-4DAF-81C0-2178AE9F6A4C}] => (Allow) D:\SteamLibrary\steamapps\common\the witcher 2\Launcher.exe (CD Projekt RED) [File not signed]
FirewallRules: [TCP Query User{35885365-7599-401B-8CF4-401CD27FCFE1}D:\steamlibrary\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) D:\steamlibrary\steamapps\common\the witcher 2\bin\witcher2.exe () [File not signed]
FirewallRules: [UDP Query User{7BDBF43E-463D-4C40-ABB4-72D59BE3B84D}D:\steamlibrary\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) D:\steamlibrary\steamapps\common\the witcher 2\bin\witcher2.exe () [File not signed]
FirewallRules: [{00C6F85D-50C0-4CA2-9125-45F61E883771}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [File not signed]
FirewallRules: [{96950120-0E4A-49F5-B58B-261093BDAB2E}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [File not signed]
FirewallRules: [{79E9B84C-01ED-44C9-848A-E77BF6953938}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
FirewallRules: [{83B4770B-884F-4B02-A864-48FD52F0252A}] => (Allow) D:\SteamLibrary\steamapps\common\Rogue Legacy\RogueMod\ZorsLegacy.exe (Cellar Door Games, Inc.) [File not signed]
FirewallRules: [{4367FDEA-FC78-4BDC-A361-67C87DE4CCE4}] => (Allow) D:\SteamLibrary\steamapps\common\Rogue Legacy\RogueMod\ZorsLegacy.exe (Cellar Door Games, Inc.) [File not signed]
FirewallRules: [{FD7FFC15-529D-4C55-9C52-66AB593B038D}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B0135D82-28CA-47F1-9992-1BD6C0AB8979}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{568368ED-16C0-4A32-B16B-276634D4F96A}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]
FirewallRules: [{7E6030E3-2C94-4BC6-8B90-5B8C79673D51}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]
==================== Restore Points =========================
09-04-2019 20:36:11 Nainstalováno rozhraní DirectX
19-04-2019 12:06:41 Naplánovaný kontrolní bod
26-04-2019 19:23:24 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices =============
Name: TAP-VyprVPN Adapter V9
Description: TAP-VyprVPN Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-VyprVPN Provider V9
Service: tapvyprvpn
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: TAP-Windows Adapter V9
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (04/10/2019 08:50:33 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program witcher2.exe verze 0.0.0.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Zabezpečení a údržba.
ID procesu: 325c
Čas spuštění: 01d4efc80400f67d
Čas ukončení: 4294967295
Cesta k aplikaci: D:\SteamLibrary\steamapps\common\the witcher 2\bin\witcher2.exe
ID hlášení: 2aa09b8b-dd18-4c58-aeff-96ff8f4a84e5
Úplný název balíčku s chybou:
ID aplikace související s balíčkem s chybou:
Error: (04/05/2019 10:03:03 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: nvcontainer.exe, verze: 1.12.2459.9394, časové razítko: 0x5b5bf5d1
Název chybujícího modulu: ntdll.dll, verze: 10.0.17134.556, časové razítko: 0x74bed8b0
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000009f780
ID chybujícího procesu: 0xc60
Čas spuštění chybující aplikace: 0x01d4dc60f15eb208
Cesta k chybující aplikaci: C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\ntdll.dll
ID zprávy: a1f2c859-bacc-4d10-86fe-e17153c14b13
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (04/05/2019 09:33:05 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: sedsvc.exe, verze: 10.0.17134.10024, časové razítko: 0x2d29399d
Název chybujícího modulu: sedsvc.exe, verze: 10.0.17134.10024, časové razítko: 0x2d29399d
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000010451
ID chybujícího procesu: 0x4bc
Čas spuštění chybující aplikace: 0x01d4df43397cf6f8
Cesta k chybující aplikaci: C:\Program Files\rempl\sedsvc.exe
Cesta k chybujícímu modulu: C:\Program Files\rempl\sedsvc.exe
ID zprávy: 47087115-ef69-4311-b616-844441a6d878
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (04/01/2019 08:38:57 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path se nezdařilo. Chyba: ID typu=26, ID autora=0, ID dodavatele=0, typ dodavatele=0
Error: (04/01/2019 08:38:57 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path se nezdařilo. Chyba: ID typu=25, ID autora=0, ID dodavatele=0, typ dodavatele=0
Error: (04/01/2019 08:38:57 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path se nezdařilo. Chyba: ID typu=13, ID autora=0, ID dodavatele=0, typ dodavatele=0
Error: (04/01/2019 08:38:57 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path se nezdařilo. Chyba: ID typu=50, ID autora=311, ID dodavatele=0, typ dodavatele=0
Error: (04/01/2019 08:38:57 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path se nezdařilo. Chyba: ID typu=254, ID autora=311, ID dodavatele=14122, typ dodavatele=1
System errors:
=============
Error: (05/03/2019 07:16:45 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscBrokerManager
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (05/03/2019 07:16:45 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscDataProtection
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (05/03/2019 07:15:26 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-H153BDT)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscCloudBackupProvider
a APPID
Není k dispozici
uživateli DESKTOP-H153BDT\petrb (SID: S-1-5-21-4280946255-3995137616-3202641619-1004) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (05/03/2019 07:15:24 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-H153BDT)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-H153BDT\petrb (SID: S-1-5-21-4280946255-3995137616-3202641619-1004) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (05/03/2019 07:15:22 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-H153BDT)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-H153BDT\petrb (SID: S-1-5-21-4280946255-3995137616-3202641619-1004) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (05/03/2019 07:15:09 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-H153BDT)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-H153BDT\petrb (SID: S-1-5-21-4280946255-3995137616-3202641619-1004) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (05/03/2019 07:15:04 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (05/03/2019 07:15:04 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Windows Defender:
===================================
Date: 2019-04-19 10:22:55.945
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Script/Foretype.A!ml
ID: 2147724345
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\petrb\AppData\Local\QA\Helper.vbs; file:_C:\Windows\System32\Tasks\MaiSoft\QA-de_20BECA1D-58BD-4AB6-9C66-033B90269E39; file:_C:\Windows\System32\Tasks\MaiSoft\QA-de_309C6D33-7FFA-46EB-81CC-C066D1DC97E1; file:_C:\Windows\System32\Tasks\MaiSoft\QA-de_CC5C191C-A152-491B-9A0C-66B952A9514A; file:_C:\Windows\System32\Tasks\MaiSoft\QA_20BECA1D-58BD-4AB6-9C66-033B90269E39; file:_C:\Windows\System32\Tasks\MaiSoft\QA_309C6D33-7FFA-46EB-81CC-C066D1DC97E1; file:_C:\Windows\System32\Tasks\MaiSoft\QA_CC5C191C-A152-491B-9A0C-66B952A9514A; regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{267A3685-D6E2-46A9-BC68-0923667C0A27}; regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6E83959A-C53F-412A-B5E2-CBC325BA7D8E}; regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A1E5A1FA-3ADE-4D87-9CB6-1D0DFDB75837}; regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C631C317-F06C-4D9F-9F81-F
Původ zjišťování: Místní počítač
Typ zjišťování: FastPath
Zdroj zjišťování: Systém
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: Unknown
Verze podpisu: AV: 1.291.2210.0, AS: 1.291.2210.0, NIS: 1.291.2210.0
Verze modulu: AM: 1.1.15800.1, NIS: 1.1.15800.1
Date: 2019-04-19 10:22:33.113
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Script/Foretype.A!ml
ID: 2147724345
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\petrb\AppData\Local\QA\Helper.vbs
Původ zjišťování: Místní počítač
Typ zjišťování: FastPath
Zdroj zjišťování: Systém
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: Unknown
Verze podpisu: AV: 1.291.2210.0, AS: 1.291.2210.0, NIS: 1.291.2210.0
Verze modulu: AM: 1.1.15800.1, NIS: 1.1.15800.1
Date: 2019-03-17 02:43:16.938
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {818B2614-BB48-4367-A658-85B7C1267755}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-03-05 21:17:27.414
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {6D92BC7B-E5A5-4995-9405-881E851C1641}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-02-15 12:42:06.503
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {3345063C-FA09-41D9-B15F-9DA2160178FD}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
CodeIntegrity:
===================================
Date: 2019-05-03 19:17:41.727
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-05-03 19:17:41.726
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-05-03 19:17:38.166
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-05-03 19:17:38.165
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-05-03 19:17:36.963
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-05-03 19:17:36.962
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-05-03 19:15:37.143
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2019-05-03 19:15:37.142
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 0602 03/23/2018
Motherboard: ASUSTeK COMPUTER INC. ROG STRIX B360-G GAMING
Processor: Intel(R) Core(TM) i5-8400 CPU @ 2.80GHz
Percentage of memory in use: 26%
Total physical RAM: 16302.89 MB
Available physical RAM: 12047.47 MB
Total Virtual: 17326.89 MB
Available Virtual: 11030.91 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:232.33 GB) (Free:136.04 GB) NTFS
Drive d: (Nový svazek) (Fixed) (Total:931.49 GB) (Free:493.54 GB) NTFS
\\?\Volume{fcb08ebd-eef3-4162-a85c-6709401e6e5b}\ (Obnovení) (Fixed) (Total:0.44 GB) (Free:0.07 GB) NTFS
\\?\Volume{10f68881-3815-419a-90ad-9f1c88a4de38}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Protective MBR) (Size: 232.9 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt ============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o preventivní kontrolu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o preventivní kontrolu
Ahoj,
podla logu 19.4. Defender zmazal trojskeho kona.
Ostali nejake zvysky, pre zaciatok vycisti PC CCleanerom, vcetne registrov
podla logu 19.4. Defender zmazal trojskeho kona.
Ostali nejake zvysky, pre zaciatok vycisti PC CCleanerom, vcetne registrov
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Prosím o preventivní kontrolu
Díky,
promazal jsem PC CCleanerem, našlo a opravilo to spoustu věcí, nicméně hláška po startu PC stále vyskakuje.
promazal jsem PC CCleanerem, našlo a opravilo to spoustu věcí, nicméně hláška po startu PC stále vyskakuje.
Re: Prosím o preventivní kontrolu
Napis na prikazovom riadku msconfig
Ak sa spusta tam, odskrtni polozku
Ak tam nie je, spust regedit
daj vyhladat helper.vbs a najdene kluce daj zmazat
V oboch pripadoch restart PC a odskusaj
Ak sa spusta tam, odskrtni polozku
Ak tam nie je, spust regedit
daj vyhladat helper.vbs a najdene kluce daj zmazat
V oboch pripadoch restart PC a odskusaj
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Prosím o preventivní kontrolu
Smazání v regedit pomohlo. Díky moc!
Posílám něco málo na provoz fóra.
Posílám něco málo na provoz fóra.
Re: Prosím o preventivní kontrolu
To ma tesi
Pekny den
Pekny den
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/