Prosím o preventivní kontrolu

[PBa]

Zdravím, před nějakou dobou (řekněme týden) se mi po zapnutí PC začala objevovat chybová hláška odkazující na soubor C:\Users\petrb\AppData\Local\QA\Helper.vbs (vždycky 2x).
Žádné jiné potíže nepozoruju, takže si nejsem moc jistý, co se mohlo stát. Tohle PC mám víceméně na hraní, všechno je legální a z oficiálních zdrojů (Steam,...), žádný warez nestahuju. Prosím o radu, co případně dál Děkuji

Přikládám log z FRST:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-05.2019
Ran by petrb (administrator) on DESKTOP-H153BDT (03-05-2019 19:21:23)
Running from C:\Users\petrb\Desktop
Loaded Profiles: petrb (Available Profiles: petrb)
Platform: Windows 10 Home Version 1803 17134.706 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.44.40.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19031.11411.0_x64__8wekyb3d8bbwe\Video.UI.exe
(AgileBits Inc. -> AgileBits Inc.) C:\Users\petrb\AppData\Local\1password\app\7\1Password.exe
(AgileBits Inc. -> AgileBits Inc.) C:\Users\petrb\AppData\Local\1password\app\7\1Password.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(CYBERGHOST S.A. -> CyberGhost S.A.) C:\Program Files\CyberGhost 7\CyberGhost.Service.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Even Balance, Inc. -> ) C:\Windows\System32\PnkBstrA.exe
(Golden Frog, GmbH.) [File not signed] C:\Program Files (x86)\VyprVPN\VyprVPNService.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.7\GoogleCrashHandler64.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) [File not signed] C:\Windows\System32\IPROSetMonitor.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Optane Memory\OptaneMemoryUIIcon.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Optane Memory\OptaneWatcherService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1904.1-0\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1904.1-0\NisSrv.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\petrb\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.44.40.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Spotify AB -> Spotify Ltd) C:\Users\petrb\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\petrb\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\petrb\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\petrb\AppData\Roaming\Spotify\Spotify.exe
(SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [OptaneMemoryUI] => C:\Program Files\Intel\Intel(R) Optane Memory\OptaneMemoryUIIcon.exe [399944 2018-02-13] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9246656 2018-04-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [SmartGenius] => C:\Users\petrb\AppData\Local\SmartGenius\SGStartup.exe [524288 2019-03-26] () [File not signed]
HKLM\...\Run: [RunSmartHIDFile] => C:\Users\petrb\AppData\Local\SmartGenius\resources\KeyboardDriver\SmartHIDStart.exe [523776 2019-03-26] () [File not signed]
HKU\S-1-5-21-4280946255-3995137616-3202641619-1004\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3152160 2019-04-30] (Valve -> Valve Corporation)
HKU\S-1-5-21-4280946255-3995137616-3202641619-1004\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [53646696 2019-04-25] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-4280946255-3995137616-3202641619-1004\...\Run: [1Password] => C:\Users\petrb\AppData\Local\1password\app\7\1Password.exe [5337488 2019-04-23] (AgileBits Inc. -> AgileBits Inc.)
HKU\S-1-5-21-4280946255-3995137616-3202641619-1004\...\Run: [Spotify] => C:\Users\petrb\AppData\Roaming\Spotify\Spotify.exe [25805544 2019-05-01] (Spotify AB -> Spotify Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.103\Installer\chrmstp.exe [2019-04-11] (Google LLC -> Google Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2018-09-30]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS -> SteelSeries ApS)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {20BA8589-7BA0-494F-A33D-6A506945583C} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [648688 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {262B1B01-B3C7-4CF8-A931-0ECDFBF01E90} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\MpCmdRun.exe [480352 2019-04-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {44FA77F0-7965-4AD2-9AB1-E1CEFC69454F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-06-06] (Google Inc -> Google Inc.)
Task: {4C0C8769-0C09-4DDC-8365-7B19867EC90B} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877552 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {523A2366-05F6-47C2-B8D2-FB4F29B917D2} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877552 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5E8D7C80-45EC-4A45-BEEB-C613A88CA231} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-12-21] (Intel(R) Update Manager -> Intel Corporation)
Task: {6AA6351F-01B7-44BD-A8C8-974E934354FA} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-12-21] (Intel(R) Update Manager -> Intel Corporation)
Task: {6C026288-6036-468E-8D73-1E91209C2374} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\MpCmdRun.exe [480352 2019-04-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {6EA9E49E-A6A8-41B8-AA5C-6FB0A61C9B33} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {75B427FF-DA7B-4522-B3D5-A2979E5623E3} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877552 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7E73479C-1601-4092-A6AA-1B557011729D} - System32\Tasks\SS3svc64Run => C:\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Foundation\x64\SS3svc64.exe
Task: {87B0D7C4-8E94-4432-A872-D57B75B4E4BB} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [849904 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {95DA7AC4-AC3A-4619-BAA1-EF3725440E6B} - System32\Tasks\SS3svc32Run => C:\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Foundation\SS3svc32.exe
Task: {95F42B5D-673B-4DF2-A38D-CEC39F7FD285} - System32\Tasks\S-1-5-21-4280946255-3995137616-3202641619-1004\DataSenseLiveTileTask => C:\Windows\System32\DataUsageLiveTileTask.exe [132608 2018-12-08] (Microsoft Windows -> Microsoft Corporation)
Task: {A28D0AF8-825A-45F1-8ED5-805D3F93A664} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BA8B56F0-684A-493E-B921-0D48F89737D5} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877552 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BE64FF1F-F029-42CB-805F-1F7B7A626FE2} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [849904 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CA6E2817-D8C9-4644-B26F-06D047CC4874} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [591344 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CDCBB5AC-A6B7-4B1E-A111-4C456B20AEE5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-06-06] (Google Inc -> Google Inc.)
Task: {E21BAFC4-4299-4C19-928B-3B9084EB5FE3} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3729392 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EC8C1744-6702-45D0-95AD-F4B24D5A1A7A} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [817472 2017-11-16] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {F1CFDFDB-5DE0-4FF2-A12F-E94E3A6E8A48} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\MpCmdRun.exe [480352 2019-04-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {FDC381AB-BDE0-4ED4-94BF-025C9EFC6392} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\MpCmdRun.exe [480352 2019-04-24] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{6911d9ed-9ae6-4965-8c87-4c001ed2dbcd}: [DhcpNameServer] 10.2.2.1
Tcpip\..\Interfaces\{f43bec58-8122-4657-a29f-5c4aba9f134d}: [DhcpNameServer] 192.168.100.1

Internet Explorer:
==================
HKU\S-1-5-21-4280946255-3995137616-3202641619-1004\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
SearchScopes: HKU\S-1-5-21-4280946255-3995137616-3202641619-1004 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

FireFox:
========
FF DefaultProfile: x0mbljvp.default
FF ProfilePath: C:\Users\petrb\AppData\Roaming\Mozilla\Firefox\Profiles\x0mbljvp.default [2019-01-08]
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [File not signed]
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2019-03-17] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2019-03-17] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-28] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-28] (Google Inc -> Google LLC)

Chrome:
=======
CHR Profile: C:\Users\petrb\AppData\Local\Google\Chrome\User Data\Default [2019-05-03]
CHR Extension: (Prezentace) - C:\Users\petrb\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-06-06]
CHR Extension: (Dokumenty) - C:\Users\petrb\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-06-06]
CHR Extension: (1Password extension (desktop app required)) - C:\Users\petrb\AppData\Local\Google\Chrome\User Data\Default\Extensions\aomjjhallfgjeglblehebfpbcfeobpgk [2018-09-14]
CHR Extension: (Disk Google) - C:\Users\petrb\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-06-06]
CHR Extension: (YouTube) - C:\Users\petrb\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-06-06]
CHR Extension: (uBlock Origin) - C:\Users\petrb\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2019-04-03]
CHR Extension: (Tabulky) - C:\Users\petrb\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-06-06]
CHR Extension: (Dokumenty Google offline) - C:\Users\petrb\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\petrb\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-06-06]
CHR Extension: (Gmail) - C:\Users\petrb\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-29]
CHR Extension: (Chrome Media Router) - C:\Users\petrb\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-03-22]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8403672 2019-01-31] (BattlEye Innovations e.K. -> )
R2 CG7Service; C:\Program Files\CyberGhost 7\CyberGhost.Service.exe [93904 2019-04-04] (CYBERGHOST S.A. -> CyberGhost S.A.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [781440 2018-12-09] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [707144 2019-02-15] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7172680 2019-02-15] (GOG Sp. z o.o. -> GOG.com)
S3 iaStorAfsService; C:\Windows\IAStorAfsService\iaStorAfsService.exe [2593848 2018-02-13] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [743728 2017-11-16] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [505856 2018-01-31] (Intel Corporation) [File not signed]
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [720184 2017-11-16] (Intel(R) Trust Services -> Intel(R) Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-12-21] (Intel(R) Update Manager -> Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [214672 2018-01-31] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
R2 OptaneWatcherService; C:\Program Files\Intel\Intel(R) Optane Memory\OptaneWatcherService.exe [24648 2018-02-13] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2298688 2019-01-23] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3171144 2019-01-23] (Electronic Arts, Inc. -> Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2018-07-01] (Even Balance, Inc. -> )
S3 SmrtService; C:\ProgramData\SmartGuard\lineage2\smrt3d\release\Data\155f037ea35b2a993d885dd538c8638bd141cf3f\smrtsvc64.exe [6618464 2019-02-10] (Eikonect Software SL -> )
R2 VyprVPN; C:\Program Files (x86)\VyprVPN\VyprVPNService.exe [309248 2019-01-17] (Golden Frog, GmbH.) [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\NisSrv.exe [3851264 2019-04-24] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\MsMpEng.exe [118144 2019-04-24] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 gKbdfltr; C:\Windows\System32\drivers\gKbdfltr.sys [28024 2019-03-26] (KYE SYSTEMS CORP. -> KYE Systems Corp.)
R0 iaStorAC; C:\Windows\System32\drivers\iaStorAC.sys [942128 2018-02-13] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S3 iaStorAfs; C:\Windows\System32\drivers\iaStorAfs.sys [72248 2018-02-13] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R3 ioFakDrv; C:\Windows\System32\drivers\ioFakDrv.sys [35928 2017-07-20] (KYE Systems Corp -> KYE System Corp.)
R3 ioFakMap; C:\Windows\System32\drivers\ioFakMap.sys [24664 2017-07-20] (KYE Systems Corp -> KYE System Corp.)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_c5dc31c3a136544a\nvlddmkm.sys [20746632 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-02-26] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NVSWCFilter; C:\Windows\System32\drivers\nvswcfilter.sys [27584 2018-04-22] (NVIDIA Corporation -> Windows (R) Win 7 DDK provider)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [70024 2018-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [66792 2018-10-03] (NVIDIA Corporation -> NVIDIA Corporation)
S3 phantomtap; C:\Windows\System32\drivers\phantomtap.sys [45056 2018-05-17] (Avira Operations GmbH & Co. KG -> The OpenVPN Project)
R3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [48320 2018-08-20] (SteelSeries ApS -> )
S3 tap0901; C:\Windows\System32\drivers\tap0901.sys [36496 2018-06-08] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 tapvyprvpn; C:\Windows\System32\drivers\tapvyprvpn.sys [44896 2018-06-08] (Golden Frog, GmbH -> The OpenVPN Project)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [46472 2019-04-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [344544 2019-04-24] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [60896 2019-04-24] (Microsoft Windows -> Microsoft Corporation)
S3 WIMMount; C:\Program Files (x86)\Windows Kits\10\Assessment and Deployment Kit\Deployment Tools\amd64\DISM\wimmount.sys [35744 2018-04-10] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-05-03 19:21 - 2019-05-03 19:21 - 000026264 _____ C:\Users\petrb\Desktop\FRST.txt
2019-05-03 19:20 - 2019-05-03 19:21 - 000000000 ____D C:\FRST
2019-05-03 19:19 - 2019-05-03 19:20 - 002430464 _____ (Farbar) C:\Users\petrb\Desktop\FRST64.exe
2019-05-03 13:45 - 2019-05-03 13:45 - 000000000 ___HD C:\OneDriveTemp
2019-05-03 10:48 - 2019-05-03 10:48 - 000667643 _____ C:\Users\petrb\Downloads\lineup-mapa-brno2019 (1).pdf
2019-05-03 10:45 - 2019-05-03 10:45 - 000667643 _____ C:\Users\petrb\Downloads\lineup-mapa-brno2019.pdf
2019-04-29 21:37 - 2019-05-01 23:15 - 000000000 ____D C:\Users\petrb\Documents\The Witcher 3
2019-04-16 11:57 - 2019-04-16 11:57 - 000418230 _____ C:\Users\petrb\Downloads\fs_2015.pdf
2019-04-13 22:58 - 2019-04-13 22:58 - 000238692 _____ C:\Users\petrb\Downloads\extra online media_rozvaha_2017.pdf
2019-04-13 22:58 - 2019-04-13 22:58 - 000147076 _____ C:\Users\petrb\Downloads\extra online media_priloha k uz za rok 2017.pdf
2019-04-13 22:16 - 2019-04-13 22:16 - 000084138 _____ C:\Users\petrb\Downloads\vykaz zisku a ztrat.pdf
2019-04-13 22:16 - 2019-04-13 22:16 - 000080531 _____ C:\Users\petrb\Downloads\priloha k ucetni zaverce.pdf
2019-04-13 22:15 - 2019-04-13 22:15 - 000155589 _____ C:\Users\petrb\Downloads\rozvaha.pdf
2019-04-13 22:07 - 2019-04-13 22:07 - 001075332 _____ C:\Users\petrb\Downloads\stanovy - uplne zneni.pdf
2019-04-09 22:18 - 2019-04-09 22:18 - 000000222 _____ C:\Users\petrb\Desktop\The Witcher 3 Wild Hunt.url
2019-04-09 22:10 - 2019-04-29 21:15 - 000000000 ____D C:\Users\petrb\Documents\Witcher 2
2019-04-09 22:10 - 2019-04-09 22:10 - 000000000 ____D C:\Users\petrb\AppData\Local\The Witcher 2
2019-04-09 21:43 - 2019-04-02 10:21 - 007520136 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2019-04-09 21:43 - 2019-04-02 10:01 - 025857536 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2019-04-09 21:43 - 2019-04-02 07:04 - 006572120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-04-09 21:42 - 2019-04-02 14:38 - 000094008 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2019-04-09 21:42 - 2019-04-02 14:33 - 001634912 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2019-04-09 21:42 - 2019-04-02 14:33 - 000719984 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-04-09 21:42 - 2019-04-02 14:19 - 012730880 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-04-09 21:42 - 2019-04-02 14:19 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\iemigplugin.dll
2019-04-09 21:42 - 2019-04-02 14:18 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2019-04-09 21:42 - 2019-04-02 14:16 - 001030144 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2019-04-09 21:42 - 2019-04-02 14:15 - 000140800 _____ (Microsoft Corporation) C:\Windows\system32\oleprn.dll
2019-04-09 21:42 - 2019-04-02 14:13 - 001605632 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2019-04-09 21:42 - 2019-04-02 14:12 - 003643904 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2019-04-09 21:42 - 2019-04-02 14:12 - 001364992 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvruserservice.dll
2019-04-09 21:42 - 2019-04-02 14:11 - 004053504 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2019-04-09 21:42 - 2019-04-02 14:11 - 001857536 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2019-04-09 21:42 - 2019-04-02 14:11 - 001662976 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2019-04-09 21:42 - 2019-04-02 14:10 - 000130048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys
2019-04-09 21:42 - 2019-04-02 14:10 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\sxssrv.dll
2019-04-09 21:42 - 2019-04-02 11:25 - 001454648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2019-04-09 21:42 - 2019-04-02 11:25 - 000607960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-04-09 21:42 - 2019-04-02 11:11 - 011919360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-04-09 21:42 - 2019-04-02 11:11 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2019-04-09 21:42 - 2019-04-02 11:10 - 000117760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleprn.dll
2019-04-09 21:42 - 2019-04-02 11:08 - 002889216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2019-04-09 21:42 - 2019-04-02 11:07 - 004054528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2019-04-09 21:42 - 2019-04-02 11:07 - 001586688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2019-04-09 21:42 - 2019-04-02 11:06 - 001470976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2019-04-09 21:42 - 2019-04-02 10:36 - 001035256 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2019-04-09 21:42 - 2019-04-02 10:24 - 000135184 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.dll
2019-04-09 21:42 - 2019-04-02 10:23 - 001023800 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2019-04-09 21:42 - 2019-04-02 10:22 - 001219896 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2019-04-09 21:42 - 2019-04-02 10:22 - 000567592 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2019-04-09 21:42 - 2019-04-02 10:22 - 000076088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvservice.sys
2019-04-09 21:42 - 2019-04-02 10:21 - 002822160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2019-04-09 21:42 - 2019-04-02 10:21 - 002467536 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2019-04-09 21:42 - 2019-04-02 10:21 - 000735680 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2019-04-09 21:42 - 2019-04-02 10:20 - 002719032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2019-04-09 21:42 - 2019-04-02 10:20 - 000412984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2019-04-09 21:42 - 2019-04-02 10:19 - 009083704 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-04-09 21:42 - 2019-04-02 10:19 - 000793400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2019-04-09 21:42 - 2019-04-02 10:19 - 000786080 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-04-09 21:42 - 2019-04-02 10:19 - 000713272 _____ (Microsoft Corporation) C:\Windows\system32\MSVideoDSP.dll
2019-04-09 21:42 - 2019-04-02 09:53 - 022717440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-04-09 21:42 - 2019-04-02 09:53 - 004384256 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2019-04-09 21:42 - 2019-04-02 09:51 - 003399680 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2019-04-09 21:42 - 2019-04-02 09:50 - 007591936 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2019-04-09 21:42 - 2019-04-02 09:50 - 000808448 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2019-04-09 21:42 - 2019-04-02 09:49 - 001307648 _____ (Microsoft Corporation) C:\Windows\system32\MSVPXENC.dll
2019-04-09 21:42 - 2019-04-02 09:49 - 000209408 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll
2019-04-09 21:42 - 2019-04-02 09:48 - 001559552 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2019-04-09 21:42 - 2019-04-02 09:48 - 000310272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2019-04-09 21:42 - 2019-04-02 09:48 - 000154112 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2019-04-09 21:42 - 2019-04-02 09:47 - 001214464 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2019-04-09 21:42 - 2019-04-02 09:47 - 000894464 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2019-04-09 21:42 - 2019-04-02 09:46 - 002174976 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2019-04-09 21:42 - 2019-04-02 09:45 - 000323584 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2019-04-09 21:42 - 2019-04-02 09:44 - 002208768 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2019-04-09 21:42 - 2019-04-02 09:44 - 001724416 _____ (Microsoft Corporation) C:\Windows\system32\rdpserverbase.dll
2019-04-09 21:42 - 2019-04-02 09:44 - 001421312 _____ (Microsoft Corporation) C:\Windows\system32\rdpbase.dll
2019-04-09 21:42 - 2019-04-02 09:43 - 000542720 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-04-09 21:42 - 2019-04-02 08:22 - 000001312 _____ C:\Windows\system32\tcbres.wim
2019-04-09 21:42 - 2019-04-02 07:05 - 001989544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2019-04-09 21:42 - 2019-04-02 07:04 - 000604008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-04-09 21:42 - 2019-04-02 07:04 - 000581832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVideoDSP.dll
2019-04-09 21:42 - 2019-04-02 07:04 - 000560600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2019-04-09 21:42 - 2019-04-02 06:56 - 022018048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2019-04-09 21:42 - 2019-04-02 06:50 - 019404800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-04-09 21:42 - 2019-04-02 06:43 - 005788160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2019-04-09 21:42 - 2019-04-02 06:43 - 000608768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2019-04-09 21:42 - 2019-04-02 06:43 - 000578560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2019-04-09 21:42 - 2019-04-02 06:42 - 001295360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVPXENC.dll
2019-04-09 21:42 - 2019-04-02 06:41 - 001540096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpserverbase.dll
2019-04-09 21:42 - 2019-04-02 06:41 - 001235968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpbase.dll
2019-04-09 21:42 - 2019-04-02 06:41 - 000230912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2019-04-09 21:42 - 2019-04-02 06:40 - 001073664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2019-04-09 21:42 - 2019-04-02 06:40 - 000534016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-04-09 21:42 - 2019-03-16 14:54 - 001008640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MixedRealityCapture.dll
2019-04-09 21:42 - 2019-03-16 11:03 - 000868864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-04-09 21:42 - 2019-03-14 16:52 - 003933296 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2019-04-09 21:42 - 2019-03-14 16:51 - 000157192 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2019-04-09 21:42 - 2019-03-14 16:35 - 000011776 _____ (Microsoft Corporation) C:\Windows\system32\appinfoext.dll
2019-04-09 21:42 - 2019-03-14 16:34 - 000127488 _____ (Microsoft Corporation) C:\Windows\system32\AppxSysprep.dll
2019-04-09 21:42 - 2019-03-14 16:33 - 000182784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpdr.sys
2019-04-09 21:42 - 2019-03-14 16:33 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storqosflt.sys
2019-04-09 21:42 - 2019-03-14 16:33 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\RpcPing.exe
2019-04-09 21:42 - 2019-03-14 16:31 - 000198656 _____ (Microsoft Corporation) C:\Windows\system32\wincredui.dll
2019-04-09 21:42 - 2019-03-14 16:30 - 000675328 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2019-04-09 21:42 - 2019-03-14 16:30 - 000440832 _____ (Microsoft Corporation) C:\Windows\system32\LockAppBroker.dll
2019-04-09 21:42 - 2019-03-14 16:29 - 000882688 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2019-04-09 21:42 - 2019-03-14 16:28 - 000560640 _____ (Microsoft Corporation) C:\Windows\system32\dsound.dll
2019-04-09 21:42 - 2019-03-14 16:08 - 003611264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2019-04-09 21:42 - 2019-03-14 15:56 - 000160768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredui.dll
2019-04-09 21:42 - 2019-03-14 15:55 - 000026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RpcPing.exe
2019-04-09 21:42 - 2019-03-14 15:53 - 000625664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2019-04-09 21:42 - 2019-03-14 15:53 - 000559104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2019-04-09 21:42 - 2019-03-14 15:53 - 000375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppBroker.dll
2019-04-09 21:42 - 2019-03-14 15:52 - 000502784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsound.dll
2019-04-09 21:42 - 2019-03-14 10:57 - 000611640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2019-04-09 21:42 - 2019-03-14 10:56 - 000375096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2019-04-09 21:42 - 2019-03-14 10:38 - 000380728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2019-04-09 21:42 - 2019-03-14 10:38 - 000090360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpr.dll
2019-04-09 21:42 - 2019-03-14 10:37 - 006043496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2019-04-09 21:42 - 2019-03-14 10:37 - 002256248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-04-09 21:42 - 2019-03-14 10:37 - 001171568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2019-04-09 21:42 - 2019-03-14 10:28 - 000152072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wcifs.sys
2019-04-09 21:42 - 2019-03-14 10:27 - 000436024 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-04-09 21:42 - 2019-03-14 10:27 - 000097600 _____ (Microsoft Corporation) C:\Windows\system32\mpr.dll
2019-04-09 21:42 - 2019-03-14 10:26 - 007436016 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2019-04-09 21:42 - 2019-03-14 10:26 - 002768448 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-04-09 21:42 - 2019-03-14 10:26 - 002421048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2019-04-09 21:42 - 2019-03-14 10:26 - 001457576 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-04-09 21:42 - 2019-03-14 10:26 - 001258688 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2019-04-09 21:42 - 2019-03-14 10:26 - 001140984 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-04-09 21:42 - 2019-03-14 10:26 - 001014344 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2019-04-09 21:42 - 2019-03-14 10:26 - 000983424 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2019-04-09 21:42 - 2019-03-14 10:26 - 000481048 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase_enclave.dll
2019-04-09 21:42 - 2019-03-14 10:26 - 000175416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spacedump.sys
2019-04-09 21:42 - 2019-03-14 10:22 - 002700288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2019-04-09 21:42 - 2019-03-14 10:20 - 006661632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2019-04-09 21:42 - 2019-03-14 10:19 - 003711488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-04-09 21:42 - 2019-03-14 10:19 - 002969600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll
2019-04-09 21:42 - 2019-03-14 10:18 - 005307392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2019-04-09 21:42 - 2019-03-14 10:18 - 000095744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTimeUtil.dll
2019-04-09 21:42 - 2019-03-14 10:18 - 000035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2019-04-09 21:42 - 2019-03-14 10:18 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2019-04-09 21:42 - 2019-03-14 10:17 - 002258944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2019-04-09 21:42 - 2019-03-14 10:17 - 000561152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2019-04-09 21:42 - 2019-03-14 10:17 - 000288768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-04-09 21:42 - 2019-03-14 10:17 - 000261632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2019-04-09 21:42 - 2019-03-14 10:17 - 000105472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wcmapi.dll
2019-04-09 21:42 - 2019-03-14 10:17 - 000057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntlanman.dll
2019-04-09 21:42 - 2019-03-14 10:16 - 000392192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2019-04-09 21:42 - 2019-03-14 10:16 - 000333824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2019-04-09 21:42 - 2019-03-14 10:15 - 000415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2019-04-09 21:42 - 2019-03-14 10:15 - 000318464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2019-04-09 21:42 - 2019-03-14 10:15 - 000195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ShellCommonCommonProxyStub.dll
2019-04-09 21:42 - 2019-03-14 10:15 - 000102400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\negoexts.dll
2019-04-09 21:42 - 2019-03-14 10:14 - 001070080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadtb.dll
2019-04-09 21:42 - 2019-03-14 10:14 - 000856576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2019-04-09 21:42 - 2019-03-14 10:14 - 000735744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2019-04-09 21:42 - 2019-03-14 10:14 - 000345088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2019-04-09 21:42 - 2019-03-14 10:14 - 000330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-04-09 21:42 - 2019-03-14 10:14 - 000251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msIso.dll
2019-04-09 21:42 - 2019-03-14 10:14 - 000138240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\smartscreenps.dll
2019-04-09 21:42 - 2019-03-14 10:13 - 001468416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2019-04-09 21:42 - 2019-03-14 10:13 - 000669696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-04-09 21:42 - 2019-03-14 10:13 - 000145408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2019-04-09 21:42 - 2019-03-14 10:01 - 008188928 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2019-04-09 21:42 - 2019-03-14 09:58 - 004708864 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll
2019-04-09 21:42 - 2019-03-14 09:58 - 002509824 _____ (Microsoft Corporation) C:\Windows\system32\smartscreen.exe
2019-04-09 21:42 - 2019-03-14 09:58 - 000150016 _____ (Microsoft Corporation) C:\Windows\system32\fcon.dll
2019-04-09 21:42 - 2019-03-14 09:57 - 004866560 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-04-09 21:42 - 2019-03-14 09:57 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\NotificationControllerPS.dll
2019-04-09 21:42 - 2019-03-14 09:56 - 003392000 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2019-04-09 21:42 - 2019-03-14 09:56 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2019-04-09 21:42 - 2019-03-14 09:56 - 000120320 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll
2019-04-09 21:42 - 2019-03-14 09:56 - 000055296 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2019-04-09 21:42 - 2019-03-14 09:56 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2019-04-09 21:42 - 2019-03-14 09:55 - 003601920 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Bluetooth.Service.dll
2019-04-09 21:42 - 2019-03-14 09:55 - 002739200 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2019-04-09 21:42 - 2019-03-14 09:55 - 000528896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2019-04-09 21:42 - 2019-03-14 09:55 - 000458752 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll
2019-04-09 21:42 - 2019-03-14 09:55 - 000414720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cldflt.sys
2019-04-09 21:42 - 2019-03-14 09:55 - 000141312 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentActivation.dll
2019-04-09 21:42 - 2019-03-14 09:55 - 000134656 _____ (Microsoft Corporation) C:\Windows\system32\wcmapi.dll
2019-04-09 21:42 - 2019-03-14 09:55 - 000099328 _____ (Microsoft Corporation) C:\Windows\system32\ActiveSyncCsp.dll
2019-04-09 21:42 - 2019-03-14 09:55 - 000069120 _____ (Microsoft Corporation) C:\Windows\system32\ntlanman.dll
2019-04-09 21:42 - 2019-03-14 09:55 - 000062976 _____ (Microsoft Corporation) C:\Windows\system32\EASPolicyManagerBrokerHost.exe
2019-04-09 21:42 - 2019-03-14 09:55 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2019-04-09 21:42 - 2019-03-14 09:54 - 002368000 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
2019-04-09 21:42 - 2019-03-14 09:54 - 000566784 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2019-04-09 21:42 - 2019-03-14 09:54 - 000395776 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2019-04-09 21:42 - 2019-03-14 09:54 - 000354304 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2019-04-09 21:42 - 2019-03-14 09:54 - 000279552 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2019-04-09 21:42 - 2019-03-14 09:54 - 000273408 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2019-04-09 21:42 - 2019-03-14 09:54 - 000231936 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2019-04-09 21:42 - 2019-03-14 09:54 - 000227328 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2019-04-09 21:42 - 2019-03-14 09:54 - 000118784 _____ (Microsoft Corporation) C:\Windows\system32\negoexts.dll
2019-04-09 21:42 - 2019-03-14 09:54 - 000110592 _____ (Microsoft Corporation) C:\Windows\system32\ngcpopkeysrv.dll
2019-04-09 21:42 - 2019-03-14 09:53 - 000787968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdiWiFi.sys
2019-04-09 21:42 - 2019-03-14 09:53 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-04-09 21:42 - 2019-03-14 09:53 - 000473600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-04-09 21:42 - 2019-03-14 09:53 - 000456192 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.Workflow.dll
2019-04-09 21:42 - 2019-03-14 09:52 - 002909696 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2019-04-09 21:42 - 2019-03-14 09:52 - 000532992 _____ (Microsoft Corporation) C:\Windows\system32\QuietHours.dll
2019-04-09 21:42 - 2019-03-14 09:52 - 000404480 _____ (Microsoft Corporation) C:\Windows\system32\ShellCommonCommonProxyStub.dll
2019-04-09 21:42 - 2019-03-14 09:52 - 000201728 _____ (Microsoft Corporation) C:\Windows\system32\smartscreenps.dll
2019-04-09 21:42 - 2019-03-14 09:51 - 001216000 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
2019-04-09 21:42 - 2019-03-14 09:51 - 001058304 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2019-04-09 21:42 - 2019-03-14 09:51 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\TetheringMgr.dll
2019-04-09 21:42 - 2019-03-14 09:50 - 001587712 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-04-09 21:42 - 2019-03-14 09:50 - 001410560 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
2019-04-09 21:42 - 2019-03-14 09:50 - 000947200 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2019-04-09 21:42 - 2019-03-14 09:50 - 000847360 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2019-04-09 21:42 - 2019-03-14 09:50 - 000796672 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2019-04-09 21:42 - 2019-03-14 09:50 - 000776192 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-04-09 21:42 - 2019-03-14 09:50 - 000507392 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2019-04-09 21:42 - 2019-03-14 09:50 - 000406528 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2019-04-09 21:42 - 2019-03-14 09:50 - 000176640 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2019-04-09 21:42 - 2019-03-14 03:57 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2019-04-09 21:42 - 2019-03-14 03:57 - 000475648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxbde40.dll
2019-04-09 21:42 - 2019-03-14 03:57 - 000375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspbde40.dll
2019-04-09 21:42 - 2019-03-14 03:57 - 000352768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2019-04-09 21:42 - 2019-03-14 03:57 - 000340992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2019-04-09 20:37 - 2019-04-09 22:05 - 000000000 ____D C:\Users\petrb\AppData\Local\The Witcher
2019-04-09 20:37 - 2019-04-09 21:09 - 000000000 ____D C:\Users\petrb\Documents\The Witcher
2019-04-09 20:36 - 2019-04-09 20:36 - 000000000 ____D C:\Users\Public\Documents\The Witcher
2019-04-09 20:00 - 2019-04-09 20:00 - 000000221 _____ C:\Users\petrb\Desktop\The Witcher 2 Assassins of Kings Enhanced Edition.url
2019-04-09 19:02 - 2019-04-09 19:02 - 000000221 _____ C:\Users\petrb\Desktop\The Witcher Enhanced Edition.url
2019-04-07 12:48 - 2019-04-07 12:48 - 000191699 _____ C:\Users\petrb\Downloads\12-09-2017_09-54-45.pdf
2019-04-07 12:47 - 2019-04-07 12:47 - 000479133 _____ C:\Users\petrb\Downloads\rp 2017 iki.pdf
2019-04-05 16:47 - 2019-04-05 16:48 - 000002770 _____ C:\Users\petrb\Desktop\xa.txt
2019-04-05 15:37 - 2019-04-19 12:26 - 000000000 ____D C:\Users\petrb\AppData\Roaming\SmartGenius
2019-04-05 10:18 - 2019-03-17 08:42 - 000133616 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2019-04-05 10:16 - 2019-03-18 21:48 - 010320928 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2019-04-05 10:16 - 2019-03-18 21:48 - 008786128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2019-04-05 10:16 - 2019-03-18 21:48 - 001168936 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2019-04-05 10:16 - 2019-03-18 21:48 - 000914912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2019-04-05 10:16 - 2019-03-18 21:48 - 000822576 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcumd.dll
2019-04-05 10:16 - 2019-03-18 21:48 - 000794632 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2019-04-05 10:16 - 2019-03-18 21:48 - 000638176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2019-04-05 10:16 - 2019-03-18 21:47 - 020107592 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2019-04-05 10:16 - 2019-03-18 21:47 - 017433176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2019-04-05 10:16 - 2019-03-18 21:47 - 004303072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2019-04-05 10:16 - 2019-03-18 21:47 - 001471608 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFThevc.dll
2019-04-05 10:16 - 2019-03-18 21:47 - 001462024 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFTH264.dll
2019-04-05 10:16 - 2019-03-18 21:47 - 001151984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFThevc.dll
2019-04-05 10:16 - 2019-03-18 21:47 - 001145720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFTH264.dll
2019-04-05 10:16 - 2019-03-18 20:32 - 000047592 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2019-04-05 10:16 - 2019-03-18 18:51 - 001007008 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2019-04-05 10:16 - 2019-03-18 18:51 - 001007008 _____ C:\Windows\system32\vulkan-1.dll
2019-04-05 10:16 - 2019-03-18 18:51 - 000870304 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2019-04-05 10:16 - 2019-03-18 18:51 - 000870304 _____ C:\Windows\SysWOW64\vulkan-1.dll
2019-04-05 10:16 - 2019-03-18 18:51 - 000551896 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2019-04-05 10:16 - 2019-03-18 18:51 - 000456872 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2019-04-05 10:16 - 2019-03-18 18:51 - 000286624 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2019-04-05 10:16 - 2019-03-18 18:51 - 000286624 _____ C:\Windows\system32\vulkaninfo.exe
2019-04-05 10:16 - 2019-03-18 18:51 - 000260512 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2019-04-05 10:16 - 2019-03-18 18:51 - 000260512 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2019-04-05 10:16 - 2019-03-18 18:50 - 005274560 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2019-04-05 10:16 - 2019-03-18 18:50 - 001734536 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6441967.dll
2019-04-05 10:16 - 2019-03-18 18:50 - 001535744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2019-04-05 10:16 - 2019-03-18 18:50 - 001467648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6441967.dll
2019-04-05 10:16 - 2019-03-18 18:50 - 001464712 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2019-04-05 10:16 - 2019-03-18 18:50 - 001130376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2019-04-05 10:16 - 2019-03-18 18:50 - 000752336 _____ (NVIDIA Corporation) C:\Windows\system32\nvDecMFTMjpeg.dll
2019-04-05 10:16 - 2019-03-18 18:50 - 000668456 _____ C:\Windows\system32\nvofapi64.dll
2019-04-05 10:16 - 2019-03-18 18:50 - 000631040 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2019-04-05 10:16 - 2019-03-18 18:50 - 000611720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvDecMFTMjpeg.dll
2019-04-05 10:16 - 2019-03-18 18:50 - 000534728 _____ C:\Windows\SysWOW64\nvofapi.dll
2019-04-05 10:16 - 2019-03-18 18:50 - 000522120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2019-04-05 10:16 - 2019-03-18 18:49 - 040421280 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2019-04-05 10:16 - 2019-03-18 18:49 - 035268720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2019-04-05 10:16 - 2019-03-18 18:49 - 004625616 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2019-04-05 10:03 - 2019-04-05 10:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmartGenius

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-05-03 19:20 - 2018-05-04 16:34 - 001692472 _____ C:\Windows\system32\PerfStringBackup.INI
2019-05-03 19:20 - 2018-04-12 17:50 - 000716072 _____ C:\Windows\system32\perfh005.dat
2019-05-03 19:20 - 2018-04-12 17:50 - 000144864 _____ C:\Windows\system32\perfc005.dat
2019-05-03 19:20 - 2018-04-12 01:36 - 000000000 ____D C:\Windows\INF
2019-05-03 19:17 - 2018-05-04 16:38 - 000000000 ____D C:\ProgramData\NVIDIA
2019-05-03 19:15 - 2018-06-06 11:49 - 000000000 ____D C:\Users\petrb\AppData\Local\Spotify
2019-05-03 19:15 - 2018-06-06 11:47 - 000000000 ____D C:\Users\petrb\AppData\Roaming\Spotify
2019-05-03 19:15 - 2018-06-06 11:32 - 000000000 ____D C:\Program Files (x86)\Steam
2019-05-03 19:15 - 2018-06-06 11:31 - 000000000 ___RD C:\Users\petrb\OneDrive
2019-05-03 19:15 - 2018-06-06 11:27 - 000000000 ____D C:\Users\petrb
2019-05-03 19:14 - 2018-05-04 16:27 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-05-03 19:14 - 2018-05-04 16:27 - 000000000 ____D C:\Windows\system32\SleepStudy
2019-05-03 19:14 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-05-03 13:45 - 2018-04-12 01:38 - 000000000 ____D C:\Windows\AppReadiness
2019-05-03 11:49 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-05-01 10:55 - 2018-06-06 11:29 - 000000000 ____D C:\Users\petrb\AppData\Local\Packages
2019-05-01 08:50 - 2018-08-05 15:59 - 000001383 _____ C:\Users\Public\Desktop\Skype.lnk
2019-05-01 08:50 - 2018-08-05 15:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2019-04-24 19:03 - 2018-05-04 16:27 - 000000000 ____D C:\Windows\system32\Drivers\wd
2019-04-23 18:10 - 2019-01-09 20:18 - 000001251 _____ C:\Users\petrb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\1Password.lnk
2019-04-19 12:26 - 2018-06-17 11:00 - 000000000 ____D C:\Users\petrb\AppData\Local\SmartGenius
2019-04-19 10:22 - 2018-09-27 17:50 - 000000000 ____D C:\Windows\System32\Tasks\MaiSoft
2019-04-19 10:22 - 2018-09-27 17:50 - 000000000 ____D C:\Users\petrb\AppData\Local\QA
2019-04-18 18:18 - 2018-06-06 11:32 - 000003380 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4280946255-3995137616-3202641619-1004
2019-04-18 18:18 - 2018-06-06 11:31 - 000002365 _____ C:\Users\petrb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-04-15 11:43 - 2018-11-21 21:35 - 000000000 ____D C:\Program Files\CyberGhost 7
2019-04-11 08:59 - 2018-06-06 11:31 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-04-11 08:59 - 2018-06-06 11:31 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-04-10 17:41 - 2018-05-04 16:27 - 000252128 _____ C:\Windows\system32\FNTCACHE.DAT
2019-04-10 00:20 - 2018-04-12 01:38 - 000000000 ___RD C:\Program Files\Windows Defender
2019-04-10 00:20 - 2018-04-12 01:38 - 000000000 ____D C:\Windows\TextInput
2019-04-10 00:20 - 2018-04-12 01:38 - 000000000 ____D C:\Windows\bcastdvr
2019-04-10 00:20 - 2018-04-11 23:04 - 000786432 _____ C:\Windows\system32\config\BBI
2019-04-09 21:44 - 2018-04-12 01:30 - 000000000 ____D C:\Windows\CbsTemp
2019-04-09 21:42 - 2018-06-06 14:34 - 000000000 ____D C:\Windows\system32\MRT
2019-04-09 21:41 - 2018-06-06 14:34 - 131129288 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-04-05 15:37 - 2018-05-05 18:07 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-04-05 10:18 - 2018-05-05 18:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2019-04-05 10:18 - 2018-05-04 16:37 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2019-04-05 10:03 - 2018-06-06 11:34 - 000004308 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-05 10:03 - 2018-06-06 11:34 - 000004106 _____ C:\Windows\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-05 10:03 - 2018-06-06 11:34 - 000003976 _____ C:\Windows\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-05 10:03 - 2018-06-06 11:34 - 000003940 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-05 10:03 - 2018-06-06 11:34 - 000003926 _____ C:\Windows\System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-05 10:03 - 2018-06-06 11:34 - 000003926 _____ C:\Windows\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-05 10:03 - 2018-06-06 11:34 - 000003926 _____ C:\Windows\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-05 10:03 - 2018-06-06 11:34 - 000003894 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-05 10:03 - 2018-06-06 11:34 - 000003866 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-05 10:03 - 2018-06-06 11:34 - 000003858 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-05 10:03 - 2018-06-06 11:34 - 000003654 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-04-05 10:03 - 2018-05-05 18:05 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-04-05 09:33 - 2018-11-16 02:16 - 000000000 ____D C:\Program Files\rempl

==================== Files in the root of some directories =======

2019-01-31 01:18 - 2019-01-31 01:18 - 000012003 _____ () C:\Users\petrb\AppData\Local\recently-used.xbel

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-05.2019
Ran by petrb (03-05-2019 19:22:06)
Running from C:\Users\petrb\Desktop
Windows 10 Home Version 1803 17134.706 (X64) (2018-06-06 09:24:14)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-4280946255-3995137616-3202641619-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4280946255-3995137616-3202641619-503 - Limited - Disabled)
Guest (S-1-5-21-4280946255-3995137616-3202641619-501 - Limited - Disabled)
petrb (S-1-5-21-4280946255-3995137616-3202641619-1004 - Administrator - Enabled) => C:\Users\petrb
WDAGUtilityAccount (S-1-5-21-4280946255-3995137616-3202641619-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

1Password (HKU\S-1-5-21-4280946255-3995137616-3202641619-1004\...\1Password) (Version: 7.3.684 - AgileBits Inc.)
7-Zip 18.05 (x64) (HKLM\...\7-Zip) (Version: 18.05 - Igor Pavlov)
Aktualizace NVIDIA 36.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 36.0.0.0 - NVIDIA Corporation) Hidden
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.0.2 - Electronic Arts, Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CyberGhost 7 (HKLM\...\CyberGhost 7) (Version: 7.1.2.4167 - CyberGhost S.A.)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Discord (HKU\S-1-5-21-4280946255-3995137616-3202641619-1004\...\Discord) (Version: 0.0.304 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 419.67 - NVIDIA Corporation) Hidden
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Fallout 2 (HKLM-x32\...\2_is1) (Version: 2.1.0.17 - GOG.com)
Far Cry 4 (HKLM-x32\...\Uplay Install 420) (Version: - Ubisoft)
GIMP 2.10.8 (HKLM\...\GIMP-2_is1) (Version: 2.10.8 - The GIMP Team)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 73.0.3683.103 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.7 - Google LLC) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1805.12.0.1097 - Intel Corporation)
Intel(R) Network Connections 23.1.100.0 (HKLM\...\PROSetDX) (Version: 23.1.100.0 - Intel)
Intel(R) Optane(TM) Memory (HKLM\...\{fca73a1d-2062-4ba7-9951-8bd39116b154}) (Version: 16.0.2.1086 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.48.197.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{66129f84-d3f0-4884-ac54-369ae6fc2cf6}) (Version: 1.48.197.0 - Intel Corporation) Hidden
Intel(R) Update Manager (HKLM-x32\...\{AA8BC571-E96E-4478-927F-CB44CC7D7D07}) (Version: 3.5.2247 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{55d73ea7-6354-42db-8831-02d048ae57f8}) (Version: 10.1.17541.8066 - Intel(R) Corporation) Hidden
Intel® SSD Toolbox (HKLM-x32\...\{06D085C8-1F00-11B2-96A7-8f0CE39193ED}) (Version: 3.5.2.400 - Intel Corporation)
Kits Configuration Installer (HKLM-x32\...\{C690B2D9-0AA8-8CDA-965D-FED648C3EF9C}) (Version: 10.1.17134.1 - Microsoft) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft OneDrive (HKU\S-1-5-21-4280946255-3995137616-3202641619-1004\...\OneDriveSetup.exe) (Version: 19.043.0304.0007 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox 64.0 (x64 cs) (HKLM\...\Mozilla Firefox 64.0 (x64 cs)) (Version: 64.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 64.0 - Mozilla)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.15 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.18.0.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.18.0.94 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 419.67 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 419.67 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.13 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 419.67 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 419.67 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OPRAVA PC ONLINE (HKLM-x32\...\{5E71387E-2CF7-1F26-C919-7FACFF27D2EF}) (Version: 7.11.760 - LogMeIn, Inc.)
Origin (HKLM-x32\...\Origin) (Version: 10.5.34.21025 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 419.67 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 419.67 - NVIDIA Corporation) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
qBittorrent 4.1.1 (HKLM-x32\...\qBittorrent) (Version: 4.1.1 - The qBittorrent project)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8339 - Realtek Semiconductor Corp.)
SeaTools for Windows 1.4.0.7 (HKLM-x32\...\SeaTools for Windows) (Version: 1.4.0.7 - Seagate Technology)
Skype verze 8.44 (HKLM-x32\...\Skype_is1) (Version: 8.44 - Skype Technologies S.A.)
SmartGenius (HKLM\...\{F96B1114-82A6-4348-8A84-8FD4E9D99F3B}_is1) (Version: 1.6.0.8 - KYE Systems Corp.)
Spotify (HKU\S-1-5-21-4280946255-3995137616-3202641619-1004\...\Spotify) (Version: 1.1.5.153.gf614956d - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries Engine 3.12.13 (HKLM\...\SteelSeries Engine 3) (Version: 3.12.13 - SteelSeries ApS)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.9 - TeamSpeak Systems GmbH)
Toolkit Documentation (HKLM-x32\...\{563689A6-D95B-EA6D-665F-97959643E0DB}) (Version: 10.1.17134.1 - Microsoft) Hidden
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{B2E25355-C24E-4E7D-8AD3-455D59810838}) (Version: 2.57.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 62.0 - Ubisoft)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN)
VyprVPN (HKLM\...\{526B3DDC-6891-4F43-8F64-8B83DC9E4848}) (Version: 2.16.2.8727 - Golden Frog, GmbH.)
Windows Assessment and Deployment Kit - Windows 10 (HKLM-x32\...\{d794748d-72e9-45d7-9ab7-83d6c4c80f7f}) (Version: 10.1.17134.1 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-03-17] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2018-01-31 14:42 - 2018-01-31 14:42 - 000505856 _____ (Intel Corporation) [File not signed] C:\Windows\system32\IProsetMonitor.exe
2019-01-17 23:07 - 2019-01-17 23:07 - 000309248 _____ (Golden Frog, GmbH.) [File not signed] C:\Program Files (x86)\VyprVPN\VyprVPNService.exe
2018-06-16 17:28 - 2018-04-30 14:00 - 000075776 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2018-09-13 23:59 - 2018-09-13 23:59 - 002284032 _____ (Holtek) [File not signed] C:\Program Files\SteelSeries\SteelSeries Engine 3\ISPDLL.dll
2018-09-13 23:59 - 2018-09-13 23:59 - 002146304 _____ (Holtek Semiconductor Inc.) [File not signed] C:\Program Files\SteelSeries\SteelSeries Engine 3\HIDDLL.dll
2019-01-17 23:06 - 2019-01-17 23:06 - 000104960 _____ () [File not signed] C:\Program Files (x86)\VyprVPN\GoldenFrogWFP.dll
2018-06-16 13:50 - 2018-06-16 13:50 - 001177600 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2018-06-16 13:50 - 2018-06-16 13:50 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2018-06-16 13:50 - 2018-06-16 13:50 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2018-06-16 13:50 - 2018-06-16 13:50 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2018-06-16 13:50 - 2018-06-16 13:50 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
2018-06-16 13:50 - 2018-06-16 13:50 - 001548288 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2018-06-16 13:50 - 2018-06-16 13:50 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2018-06-16 13:50 - 2018-06-16 13:50 - 000395776 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2018-08-05 15:59 - 2019-04-25 21:20 - 015257088 _____ (Node.js) [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\node.dll
2018-08-05 15:59 - 2019-04-25 21:20 - 002901504 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\libglesv2.dll
2018-08-05 15:59 - 2019-04-25 21:20 - 000015360 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\petrb\Data aplikací:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\petrb\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-04-12 01:38 - 2018-04-12 01:36 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-4280946255-3995137616-3202641619-1004\Control Panel\Desktop\\Wallpaper -> C:\Users\petrb\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.100.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run: => "Acronis Scheduler2 Service"
HKLM\...\StartupApproved\Run32: => "AcronisTibMounterMonitor"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{CD80768E-3C05-440E-A385-F046EE3CFFDC}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\ga_service.exe No File
FirewallRules: [{2D501CF2-6878-4EBB-A06A-60573FC8B91A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{AB94719D-FC20-4080-A53A-2504E53EABA1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B5BFBC2D-3A0F-4631-8A0E-D14905947176}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{19472E55-E36B-4A95-BA22-7D6BD6A5F66B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{41800BB4-B51B-424E-B299-EA3A52AF5450}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{32281BF1-7733-4F48-8C78-F4103DEA7F4B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{9580CA59-BC4C-4437-BA95-7F88FC7D2C0B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{CF2AB4BC-027A-417B-8158-E971D20CDE87}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{16C2E3EF-D28E-4D90-94E1-072F074C31C8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FCAB5012-A99C-4D3F-8EBE-A24CED72A974}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{B84FCDE2-63C8-446A-9155-2483153C327E}C:\users\petrb\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\petrb\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{71502CCB-8F67-4D88-802D-024D74276317}C:\users\petrb\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\petrb\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F39D0791-5228-4989-A6D9-56F7820B044D}] => (Block) C:\users\petrb\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{014DDBBE-C731-41F6-9FAC-57ADFF0C8124}] => (Block) C:\users\petrb\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{34733EB7-624C-455E-AD27-76CE88BDB2A1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{48448D84-6BCC-4EE0-8759-FAA5E2ABE374}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [TCP Query User{E5FC754E-94D4-4952-9C99-3FF86F09E42A}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [UDP Query User{A758D0DC-F85A-4CC6-A8E1-D3FE996CA7E7}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [{0A0838D7-9B9E-43CF-ACD0-B3943BBE8A04}] => (Block) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [{7FB0803C-FD42-407E-A8E1-30434BA3B4F6}] => (Block) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [{70F29AD6-6F41-44B0-A738-512AC366D196}] => (Allow) D:\Software\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{2D6DF5F4-3BF8-4EF1-BBFA-2D122959E75E}] => (Allow) D:\Software\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{3F9A2778-408C-4F42-B247-1EBED3BD88DD}] => (Allow) D:\SteamLibrary\steamapps\common\Deus Ex Mankind Divided\retail\DXMD.exe () [File not signed]
FirewallRules: [{05C43127-C6BE-4621-A388-027B622A5F00}] => (Allow) D:\SteamLibrary\steamapps\common\Deus Ex Mankind Divided\retail\DXMD.exe () [File not signed]
FirewallRules: [TCP Query User{30845AF3-2E80-42F6-93E1-7EE51D65ADCA}D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe No File
FirewallRules: [UDP Query User{1CD26AA2-4072-4A2E-B97C-E839CBD7B14E}D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) D:\games\kingdom come deliverance\bin\win64\kingdomcome.exe No File
FirewallRules: [TCP Query User{DF9B8A6E-F1C3-4BBE-ACED-4E7634E9D3C3}D:\steamlibrary\steamapps\common\realm royale\binaries\win64\realm.exe] => (Allow) D:\steamlibrary\steamapps\common\realm royale\binaries\win64\realm.exe No File
FirewallRules: [UDP Query User{DFCB3652-36CB-439A-AD82-9741F2CCE306}D:\steamlibrary\steamapps\common\realm royale\binaries\win64\realm.exe] => (Allow) D:\steamlibrary\steamapps\common\realm royale\binaries\win64\realm.exe No File
FirewallRules: [{FCDBBEA5-4026-461E-A3E9-5B0F17D20B15}] => (Allow) D:\Games\Far Cry 4\bin\FarCry4.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{C927EF64-3F23-440B-936A-1D4A4A11F35A}] => (Allow) D:\Games\Far Cry 4\bin\FarCry4.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{66EDE7E2-4144-4C5B-9507-8A617CFB20C3}] => (Allow) D:\Games\Far Cry 4\bin\IGE_WPF64.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{A2CE77F3-481E-4F8E-8050-483B5D6194F1}] => (Allow) D:\Games\Far Cry 4\bin\IGE_WPF64.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{B203ADE1-7CCD-4F75-BC05-F4B6483E7EC4}] => (Allow) D:\SteamLibrary\steamapps\common\Assassin's Creed Syndicate\ACS.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{BB024F9D-62D1-4C86-BAF9-337CB4ED1595}] => (Allow) D:\SteamLibrary\steamapps\common\Assassin's Creed Syndicate\ACS.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{6038F96D-C4AB-4B90-94E5-7B3C8939EE27}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{929BDC49-A2CD-4590-A74D-FB1A61926D1F}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{542FAACB-4A78-4516-8ACF-D2ABF54B5B69}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{4FD38662-A686-4D27-B2F0-70D7B9E7997E}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{D687E5B1-8D18-402B-A179-B52997F13C65}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{32F2CADF-5D6E-45AF-893F-18472D0CF8FB}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [TCP Query User{1900B7CC-2EE9-4808-A5B4-C03F5EFD2409}D:\origin games\battlefield 4\bf4.exe] => (Allow) D:\origin games\battlefield 4\bf4.exe No File
FirewallRules: [UDP Query User{20406DEF-073F-40BA-9FA6-55872B965B8E}D:\origin games\battlefield 4\bf4.exe] => (Allow) D:\origin games\battlefield 4\bf4.exe No File
FirewallRules: [{B8ADECA9-CDF1-46E4-A038-7CA5402EBBD1}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{F186B53D-02E3-495D-86C6-7BEB1D44EEA1}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [TCP Query User{62AF523B-3BB2-4EBB-8C47-5FF5FA22BF64}D:\games\diablo iii\x64\diablo iii64.exe] => (Allow) D:\games\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{448E3695-EA24-493A-9A76-D1F49E21DC28}D:\games\diablo iii\x64\diablo iii64.exe] => (Allow) D:\games\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{FFFA689B-12B9-4E2A-A4E2-92687C62D886}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{08C58E6B-FB1B-424D-B38E-704CDC995858}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{A43A2DFA-B105-412B-BA7D-6C732BB1F403}D:\games\warthunder\launcher.exe] => (Allow) D:\games\warthunder\launcher.exe No File
FirewallRules: [UDP Query User{FF5042AD-9F8F-49B6-B9AE-98A65022D922}D:\games\warthunder\launcher.exe] => (Allow) D:\games\warthunder\launcher.exe No File
FirewallRules: [{8FB79631-0F3B-4A98-9631-03FAD95FA7E6}] => (Block) D:\games\warthunder\launcher.exe No File
FirewallRules: [{0616A124-A7ED-4607-A4F7-A6AAD2E32BBA}] => (Block) D:\games\warthunder\launcher.exe No File
FirewallRules: [TCP Query User{6BC19102-65A9-43CC-B418-F4DCD15D28F3}D:\games\warthunder\win64\aces.exe] => (Allow) D:\games\warthunder\win64\aces.exe No File
FirewallRules: [UDP Query User{01A9961C-CD90-4081-98FE-BBD352E312F3}D:\games\warthunder\win64\aces.exe] => (Allow) D:\games\warthunder\win64\aces.exe No File
FirewallRules: [{CC906229-2E2F-4DAE-8EF1-27515A7F5F7D}] => (Block) D:\games\warthunder\win64\aces.exe No File
FirewallRules: [{96B6DA5C-B6E0-4FA5-A04F-BDE157CBFBBF}] => (Block) D:\games\warthunder\win64\aces.exe No File
FirewallRules: [{0C21E54B-0A44-4CDF-9AD6-07FB06191F97}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG Corporation ) [File not signed]
FirewallRules: [{EA2DD19B-F68D-4431-8409-EC0E64FC931B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG Corporation ) [File not signed]
FirewallRules: [{7D09D352-03BE-4794-855B-816F31EB58B4}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]
FirewallRules: [{82103D61-7736-46AB-9C3C-0EB0BE716C3D}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]
FirewallRules: [TCP Query User{D3E08DB9-7C5D-484E-84F4-DC6D8EDC4F10}C:\users\petrb\appdata\local\temp\574c724d-f3dc-4c41-8af9-000250910e07\ga_service.exe] => (Block) C:\users\petrb\appdata\local\temp\574c724d-f3dc-4c41-8af9-000250910e07\ga_service.exe No File
FirewallRules: [TCP Query User{35138DA8-3929-4DE4-BB73-987E5F43427E}D:\origin games\fifa 19\fifa19.exe] => (Allow) D:\origin games\fifa 19\fifa19.exe No File
FirewallRules: [UDP Query User{86D4A806-4A86-436D-ACEF-851CAE11E7E4}D:\origin games\fifa 19\fifa19.exe] => (Allow) D:\origin games\fifa 19\fifa19.exe No File
FirewallRules: [{3B107EC4-647B-4130-AFA8-935889946292}] => (Allow) D:\SteamLibrary\steamapps\common\Ring of Elysium\SLauncher.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{689072C6-ABA9-48BB-A908-5094549B403B}] => (Allow) D:\SteamLibrary\steamapps\common\Ring of Elysium\SLauncher.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [TCP Query User{15FFBDF9-18D7-4B34-A13A-914B6423630F}D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [UDP Query User{4EF9AAAD-1605-4316-BDE3-1CC846C3D6EC}D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [{B9C4D4CE-3D8B-47BD-8AFD-95F62297461B}] => (Block) D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [{931227B4-930D-4B45-A03F-38DA3473FF04}] => (Block) D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe No File
FirewallRules: [TCP Query User{AB74A7FE-CCD7-48DE-B962-5F728D5E874A}D:\games\epic games\subnautica\subnautica.exe] => (Allow) D:\games\epic games\subnautica\subnautica.exe No File
FirewallRules: [UDP Query User{1B259ECF-8DB0-4AAB-B1B9-299637B29A03}D:\games\epic games\subnautica\subnautica.exe] => (Allow) D:\games\epic games\subnautica\subnautica.exe No File
FirewallRules: [{AA495B2B-5A7D-4172-836E-7BF24E371D89}] => (Allow) D:\SteamLibrary\steamapps\common\Rogue Legacy\RogueLegacy.exe (Cellar Door Games, Inc.) [File not signed]
FirewallRules: [{53AAB038-8EA1-47A9-BAAD-CA6B7C488B2D}] => (Allow) D:\SteamLibrary\steamapps\common\Rogue Legacy\RogueLegacy.exe (Cellar Door Games, Inc.) [File not signed]
FirewallRules: [{7C991472-AAED-45C4-B014-D130FAADCE07}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{FB377C80-B83F-45C9-887E-E911A7DABB9C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{06413E23-3099-4CC6-989E-0FB1B48D4F4B}] => (Allow) D:\SteamLibrary\steamapps\common\Life is Strange - Before the Storm\Life is Strange - Before the Storm.exe () [File not signed]
FirewallRules: [{6155E718-7101-4E56-B61B-AD404A04CB7E}] => (Allow) D:\SteamLibrary\steamapps\common\Life is Strange - Before the Storm\Life is Strange - Before the Storm.exe () [File not signed]
FirewallRules: [{0A5D8573-E824-45F9-8CC2-0324D5B05222}] => (Allow) D:\SteamLibrary\steamapps\common\Life is Strange 2\LIS2\Binaries\Win64\LIS2-Win64-Shipping.exe (Square Enix) [File not signed]
FirewallRules: [{48052A5B-29D9-4B50-B7A7-0362A1DD4170}] => (Allow) D:\SteamLibrary\steamapps\common\Life is Strange 2\LIS2\Binaries\Win64\LIS2-Win64-Shipping.exe (Square Enix) [File not signed]
FirewallRules: [{F00BF09B-1DB4-4689-9889-0050C2FC5751}] => (Allow) D:\SteamLibrary\steamapps\common\CaptainSpirit\CaptainSpirit\Binaries\Win64\CaptainSpirit-Win64-Shipping.exe (Square Enix) [File not signed]
FirewallRules: [{8F6178D3-C0D3-4884-A886-DFFFA3355B65}] => (Allow) D:\SteamLibrary\steamapps\common\CaptainSpirit\CaptainSpirit\Binaries\Win64\CaptainSpirit-Win64-Shipping.exe (Square Enix) [File not signed]
FirewallRules: [{1F608196-6D58-4DDA-8D31-54E107212F99}] => (Allow) D:\SteamLibrary\steamapps\common\To the Moon\To the Moon\To the Moon.exe () [File not signed]
FirewallRules: [{7B9B130D-F15F-448A-A36D-915919B3FE12}] => (Allow) D:\SteamLibrary\steamapps\common\To the Moon\To the Moon\To the Moon.exe () [File not signed]
FirewallRules: [{F7FA938F-7964-4BB4-8200-EA1F8686DE48}] => (Allow) D:\SteamLibrary\steamapps\common\To the Moon\Minisode_1\Sigmund Holiday Special 1\Siggy - Holiday Special.exe () [File not signed]
FirewallRules: [{235A712F-C10E-4BB0-A76C-484D5D24681D}] => (Allow) D:\SteamLibrary\steamapps\common\To the Moon\Minisode_1\Sigmund Holiday Special 1\Siggy - Holiday Special.exe () [File not signed]
FirewallRules: [{E47CB513-EA33-40A4-992F-FE0A280495C0}] => (Allow) D:\SteamLibrary\steamapps\common\To the Moon\Minisode_2\Sigmund Holiday Special 2\SigCorp Minisode 2.exe () [File not signed]
FirewallRules: [{D4B23810-E0C3-4BB4-B814-D0687BE5757A}] => (Allow) D:\SteamLibrary\steamapps\common\To the Moon\Minisode_2\Sigmund Holiday Special 2\SigCorp Minisode 2.exe () [File not signed]
FirewallRules: [{6F79D96C-DADF-4038-836C-E09692157C73}] => (Allow) D:\SteamLibrary\steamapps\common\Marie's Room\MariesRoom.exe () [File not signed]
FirewallRules: [{8BC45516-15FC-4A24-B82C-D631E6BD91CE}] => (Allow) D:\SteamLibrary\steamapps\common\Marie's Room\MariesRoom.exe () [File not signed]
FirewallRules: [TCP Query User{D4F7F228-4979-459A-A5A0-06C71E3CDD9D}D:\steamlibrary\steamapps\common\marie's room\mariesroom\binaries\win64\mariesroom-win64-shipping.exe] => (Allow) D:\steamlibrary\steamapps\common\marie's room\mariesroom\binaries\win64\mariesroom-win64-shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [UDP Query User{32ABBDBF-E6A5-44E5-AB17-FCB62B4D0445}D:\steamlibrary\steamapps\common\marie's room\mariesroom\binaries\win64\mariesroom-win64-shipping.exe] => (Allow) D:\steamlibrary\steamapps\common\marie's room\mariesroom\binaries\win64\mariesroom-win64-shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{56ABDECC-27D8-47EC-8C43-36C3EB38BBF3}] => (Allow) D:\SteamLibrary\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe (DONTNOD Entertainment) [File not signed]
FirewallRules: [{13235C81-F1E5-42EB-913C-F9819BEE4C8C}] => (Allow) D:\SteamLibrary\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe (DONTNOD Entertainment) [File not signed]
FirewallRules: [{C91105D6-97CB-47C9-B165-EC1F560BC09A}] => (Allow) D:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe (FromSoftware,Inc. -> BANDAI NAMCO Entertainment Inc.)
FirewallRules: [{23426ACE-4613-4C8F-AA3B-1F0CB27B1B6A}] => (Allow) D:\SteamLibrary\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe (FromSoftware,Inc. -> BANDAI NAMCO Entertainment Inc.)
FirewallRules: [{D2B62947-058C-4822-8FD9-F6ABA5D543C0}] => (Allow) D:\SteamLibrary\steamapps\common\Dishonored2\Dishonored2.exe (Arkane Studios) [File not signed]
FirewallRules: [{0A492C75-3CCD-47AE-82AF-84967AB2ADFA}] => (Allow) D:\SteamLibrary\steamapps\common\Dishonored2\Dishonored2.exe (Arkane Studios) [File not signed]
FirewallRules: [TCP Query User{0CA5EC22-2417-42BF-9A44-D2B430D8345C}D:\origin games\apex\r5apex.exe] => (Allow) D:\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [UDP Query User{9DA32D54-2FC4-4508-B33E-4663504F61E5}D:\origin games\apex\r5apex.exe] => (Allow) D:\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [{41BB8958-AEC4-4585-8E20-9BFA8C767017}] => (Allow) D:\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{70CD1FA5-9003-471F-A6CA-920286A27072}] => (Allow) D:\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{A7EEB8F9-2870-43FE-BE64-F333FCE3A6F2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E1A7B206-03F6-45BE-B62B-B48A83BD5C75}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{EB90989B-D879-4F9B-AC2A-28D674C1DC7E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A21B6A0D-B3ED-4A2B-8D54-11ECAC52346C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{6744994E-D184-4883-B8E3-7766BAA49721}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe (CD Projekt Red) [File not signed]
FirewallRules: [{74140035-BE26-46A7-BB7D-DBB65532785F}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe (CD Projekt Red) [File not signed]
FirewallRules: [{117A9FED-69E4-4739-95DF-C398E4E6770A}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe (CD Projekt RED Sp. z o.o. -> CD Projekt Red)
FirewallRules: [{B1350DA2-A108-41BE-9BDC-73BE778F398B}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe (CD Projekt RED Sp. z o.o. -> CD Projekt Red)
FirewallRules: [{AC9E57F2-33FD-4C77-8FD5-88FB0C05A0BE}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe () [File not signed]
FirewallRules: [{06D4ED8F-62F4-4EF8-8370-6F3BC96736C3}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe () [File not signed]
FirewallRules: [{40ECE775-B4CA-43AE-BDA8-8BB9986F3497}] => (Allow) D:\SteamLibrary\steamapps\common\the witcher 2\Launcher.exe (CD Projekt RED) [File not signed]
FirewallRules: [{7A0D0104-EC14-4DAF-81C0-2178AE9F6A4C}] => (Allow) D:\SteamLibrary\steamapps\common\the witcher 2\Launcher.exe (CD Projekt RED) [File not signed]
FirewallRules: [TCP Query User{35885365-7599-401B-8CF4-401CD27FCFE1}D:\steamlibrary\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) D:\steamlibrary\steamapps\common\the witcher 2\bin\witcher2.exe () [File not signed]
FirewallRules: [UDP Query User{7BDBF43E-463D-4C40-ABB4-72D59BE3B84D}D:\steamlibrary\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) D:\steamlibrary\steamapps\common\the witcher 2\bin\witcher2.exe () [File not signed]
FirewallRules: [{00C6F85D-50C0-4CA2-9125-45F61E883771}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [File not signed]
FirewallRules: [{96950120-0E4A-49F5-B58B-261093BDAB2E}] => (Allow) D:\SteamLibrary\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [File not signed]
FirewallRules: [{79E9B84C-01ED-44C9-848A-E77BF6953938}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
FirewallRules: [{83B4770B-884F-4B02-A864-48FD52F0252A}] => (Allow) D:\SteamLibrary\steamapps\common\Rogue Legacy\RogueMod\ZorsLegacy.exe (Cellar Door Games, Inc.) [File not signed]
FirewallRules: [{4367FDEA-FC78-4BDC-A361-67C87DE4CCE4}] => (Allow) D:\SteamLibrary\steamapps\common\Rogue Legacy\RogueMod\ZorsLegacy.exe (Cellar Door Games, Inc.) [File not signed]
FirewallRules: [{FD7FFC15-529D-4C55-9C52-66AB593B038D}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B0135D82-28CA-47F1-9992-1BD6C0AB8979}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{568368ED-16C0-4A32-B16B-276634D4F96A}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]
FirewallRules: [{7E6030E3-2C94-4BC6-8B90-5B8C79673D51}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]

==================== Restore Points =========================

09-04-2019 20:36:11 Nainstalováno rozhraní DirectX
19-04-2019 12:06:41 Naplánovaný kontrolní bod
26-04-2019 19:23:24 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices =============

Name: TAP-VyprVPN Adapter V9
Description: TAP-VyprVPN Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-VyprVPN Provider V9
Service: tapvyprvpn
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: TAP-Windows Adapter V9
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (04/10/2019 08:50:33 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program witcher2.exe verze 0.0.0.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Zabezpečení a údržba.

ID procesu: 325c

Čas spuštění: 01d4efc80400f67d

Čas ukončení: 4294967295

Cesta k aplikaci: D:\SteamLibrary\steamapps\common\the witcher 2\bin\witcher2.exe

ID hlášení: 2aa09b8b-dd18-4c58-aeff-96ff8f4a84e5

Úplný název balíčku s chybou:

ID aplikace související s balíčkem s chybou:

Error: (04/05/2019 10:03:03 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: nvcontainer.exe, verze: 1.12.2459.9394, časové razítko: 0x5b5bf5d1
Název chybujícího modulu: ntdll.dll, verze: 10.0.17134.556, časové razítko: 0x74bed8b0
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000009f780
ID chybujícího procesu: 0xc60
Čas spuštění chybující aplikace: 0x01d4dc60f15eb208
Cesta k chybující aplikaci: C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\ntdll.dll
ID zprávy: a1f2c859-bacc-4d10-86fe-e17153c14b13
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (04/05/2019 09:33:05 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: sedsvc.exe, verze: 10.0.17134.10024, časové razítko: 0x2d29399d
Název chybujícího modulu: sedsvc.exe, verze: 10.0.17134.10024, časové razítko: 0x2d29399d
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000010451
ID chybujícího procesu: 0x4bc
Čas spuštění chybující aplikace: 0x01d4df43397cf6f8
Cesta k chybující aplikaci: C:\Program Files\rempl\sedsvc.exe
Cesta k chybujícímu modulu: C:\Program Files\rempl\sedsvc.exe
ID zprávy: 47087115-ef69-4311-b616-844441a6d878
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (04/01/2019 08:38:57 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path se nezdařilo. Chyba: ID typu=26, ID autora=0, ID dodavatele=0, typ dodavatele=0

Error: (04/01/2019 08:38:57 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path se nezdařilo. Chyba: ID typu=25, ID autora=0, ID dodavatele=0, typ dodavatele=0

Error: (04/01/2019 08:38:57 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path se nezdařilo. Chyba: ID typu=13, ID autora=0, ID dodavatele=0, typ dodavatele=0

Error: (04/01/2019 08:38:57 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path se nezdařilo. Chyba: ID typu=50, ID autora=311, ID dodavatele=0, typ dodavatele=0

Error: (04/01/2019 08:38:57 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: NT AUTHORITY)
Description: Přeskočení: Ověření Eap method DLL path se nezdařilo. Chyba: ID typu=254, ID autora=311, ID dodavatele=14122, typ dodavatele=1


System errors:
=============
Error: (05/03/2019 07:16:45 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscBrokerManager
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (05/03/2019 07:16:45 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscDataProtection
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (05/03/2019 07:15:26 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-H153BDT)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscCloudBackupProvider
a APPID
Není k dispozici
uživateli DESKTOP-H153BDT\petrb (SID: S-1-5-21-4280946255-3995137616-3202641619-1004) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (05/03/2019 07:15:24 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-H153BDT)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-H153BDT\petrb (SID: S-1-5-21-4280946255-3995137616-3202641619-1004) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (05/03/2019 07:15:22 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-H153BDT)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-H153BDT\petrb (SID: S-1-5-21-4280946255-3995137616-3202641619-1004) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (05/03/2019 07:15:09 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-H153BDT)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli DESKTOP-H153BDT\petrb (SID: S-1-5-21-4280946255-3995137616-3202641619-1004) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (05/03/2019 07:15:04 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (05/03/2019 07:15:04 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.


Windows Defender:
===================================
Date: 2019-04-19 10:22:55.945
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Script/Foretype.A!ml
ID: 2147724345
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\petrb\AppData\Local\QA\Helper.vbs; file:_C:\Windows\System32\Tasks\MaiSoft\QA-de_20BECA1D-58BD-4AB6-9C66-033B90269E39; file:_C:\Windows\System32\Tasks\MaiSoft\QA-de_309C6D33-7FFA-46EB-81CC-C066D1DC97E1; file:_C:\Windows\System32\Tasks\MaiSoft\QA-de_CC5C191C-A152-491B-9A0C-66B952A9514A; file:_C:\Windows\System32\Tasks\MaiSoft\QA_20BECA1D-58BD-4AB6-9C66-033B90269E39; file:_C:\Windows\System32\Tasks\MaiSoft\QA_309C6D33-7FFA-46EB-81CC-C066D1DC97E1; file:_C:\Windows\System32\Tasks\MaiSoft\QA_CC5C191C-A152-491B-9A0C-66B952A9514A; regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{267A3685-D6E2-46A9-BC68-0923667C0A27}; regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6E83959A-C53F-412A-B5E2-CBC325BA7D8E}; regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A1E5A1FA-3ADE-4D87-9CB6-1D0DFDB75837}; regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C631C317-F06C-4D9F-9F81-F
Původ zjišťování: Místní počítač
Typ zjišťování: FastPath
Zdroj zjišťování: Systém
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: Unknown
Verze podpisu: AV: 1.291.2210.0, AS: 1.291.2210.0, NIS: 1.291.2210.0
Verze modulu: AM: 1.1.15800.1, NIS: 1.1.15800.1

Date: 2019-04-19 10:22:33.113
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Script/Foretype.A!ml
ID: 2147724345
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\petrb\AppData\Local\QA\Helper.vbs
Původ zjišťování: Místní počítač
Typ zjišťování: FastPath
Zdroj zjišťování: Systém
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: Unknown
Verze podpisu: AV: 1.291.2210.0, AS: 1.291.2210.0, NIS: 1.291.2210.0
Verze modulu: AM: 1.1.15800.1, NIS: 1.1.15800.1

Date: 2019-03-17 02:43:16.938
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {818B2614-BB48-4367-A658-85B7C1267755}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-03-05 21:17:27.414
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {6D92BC7B-E5A5-4995-9405-881E851C1641}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-02-15 12:42:06.503
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {3345063C-FA09-41D9-B15F-9DA2160178FD}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

CodeIntegrity:
===================================

Date: 2019-05-03 19:17:41.727
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2019-05-03 19:17:41.726
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2019-05-03 19:17:38.166
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2019-05-03 19:17:38.165
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2019-05-03 19:17:36.963
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2019-05-03 19:17:36.962
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2019-05-03 19:15:37.143
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2019-05-03 19:15:37.142
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. 0602 03/23/2018
Motherboard: ASUSTeK COMPUTER INC. ROG STRIX B360-G GAMING
Processor: Intel(R) Core(TM) i5-8400 CPU @ 2.80GHz
Percentage of memory in use: 26%
Total physical RAM: 16302.89 MB
Available physical RAM: 12047.47 MB
Total Virtual: 17326.89 MB
Available Virtual: 11030.91 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.33 GB) (Free:136.04 GB) NTFS
Drive d: (Nový svazek) (Fixed) (Total:931.49 GB) (Free:493.54 GB) NTFS

\\?\Volume{fcb08ebd-eef3-4162-a85c-6709401e6e5b}\ (Obnovení) (Fixed) (Total:0.44 GB) (Free:0.07 GB) NTFS
\\?\Volume{10f68881-3815-419a-90ad-9f1c88a4de38}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Protective MBR) (Size: 232.9 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt ============================

[JaRon]

Ahoj,
podla logu 19.4. Defender zmazal trojskeho kona.
Ostali nejake zvysky, pre zaciatok vycisti PC CCleanerom, vcetne registrov

[PBa]

Díky,
promazal jsem PC CCleanerem, našlo a opravilo to spoustu věcí, nicméně hláška po startu PC stále vyskakuje.

[JaRon]

Napis na prikazovom riadku msconfig
Ak sa spusta tam, odskrtni polozku
Ak tam nie je, spust regedit
daj vyhladat helper.vbs a najdene kluce daj zmazat
V oboch pripadoch restart PC a odskusaj

[PBa]

Smazání v regedit pomohlo. Díky moc!
Posílám něco málo na provoz fóra.

[JaRon]

To ma tesi
Pekny den