Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Preventivní kontrola

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
center25
Návštěvník
Návštěvník
Příspěvky: 61
Registrován: 06 úno 2008 20:56

Preventivní kontrola

#1 Příspěvek od center25 »

Dobrý den, dovoluji si požádat o preventivní kontrolu. Zdá se mi, že CPU někdy jede zbytečně na plný výkon a i teploty jsou vysoké (může být problém hardwaru)
Moc děkuji!

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09-01-2021
Ran by svobo (administrator) on LAPTOP-N8L69UQ1 (Acer Nitro AN515-43) (11-01-2021 18:28:31)
Running from C:\Users\svobo\OneDrive\Plocha
Loaded Profiles: svobo
Platform: Windows 10 Home Version 1909 18363.1256 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Acer Incorporated) C:\Program Files\WindowsApps\AcerIncorporated.NitroSenseV31_3.1.3012.0_x64__48frkmn4z8aw4\Win32\NitroSense.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0346090.inf_amd64_edb8c04a0d3dd82e\B346156\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0346090.inf_amd64_edb8c04a0d3dd82e\B346156\atiesrxx.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(CPUID S.A.R.L.U. -> CPUID) C:\Program Files\CPUID\HWMonitor\HWMonitor.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <11>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\NisSrv.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvaci.inf_amd64_5691fa6e0332f879\Display.NvContainer\NVDisplay.Container.exe <2>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo77ac.inf_amd64_d5839c9d7c0bda64\WavesSysSvc64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [1081648 2020-06-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\Windows\System32\DriverStore\FileRepository\wavesapo77ac.inf_amd64_d5839c9d7c0bda64\WavesSvc64.exe [1464728 2019-01-31] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [97229056 2020-04-01] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2095672 2020-10-07] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-10-09] (Adobe Inc. -> )
HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32414392 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32712080 2021-01-01] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [14858824 2020-12-23] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\Run: [Lync] => C:\Program Files\Microsoft Office\root\Office16\lync.exe [26327880 2021-01-08] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [408888 2021-01-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\RunOnce: [Application Restart #1] => C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe [2776632 2020-10-07] (Adobe Inc. -> Adobe Inc.)
HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\MountPoints2: {1dd217df-e51f-11ea-bff4-e4aaea51fb48} - "D:\AUTORUN.EXE"
HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\MountPoints2: {83b90e46-4ec8-11eb-8004-e4aaea51fb48} - "D:\RunGame.exe"
HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\MountPoints2: {83b90ef3-4ec8-11eb-8004-e4aaea51fb48} - "E:\RunGame.exe"
HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\MountPoints2: {83b90f0c-4ec8-11eb-8004-e4aaea51fb48} - "G:\Setup.exe"
HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\MountPoints2: {83b90f5e-4ec8-11eb-8004-e4aaea51fb48} - "H:\RunGame.exe"
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [109080 2018-12-06] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\shj2mPC: C:\Windows\System32\spool\prtprocs\x64\shj2mpc.dll [65256 2019-03-31] (联想图像(天津)科技有限公司 -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\LIDIL hpzlllhn: C:\Windows\system32\hpzlllhn.dll [57880 2018-12-06] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\...\Print\Monitors\shj2m Langmon: C:\Windows\system32\shj2mlm.dll [44264 2019-03-31] (联想图像(天津)科技有限公司 -> )
HKLM\Software\...\AppCompatFlags\Custom\H3Blade.exe: [{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb] -> HoMM III Compatibility Database
HKLM\Software\...\AppCompatFlags\Custom\Heroes3.exe: [{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb] -> HoMM III Compatibility Database
HKLM\Software\...\AppCompatFlags\InstalledSDB\{62a24b39-0106-4990-90ea-3a09e9dda7a6}: [DatabasePath] -> C:\Windows\AppPatch\CustomSDB\{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb [2020-06-06]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.88\Installer\chrmstp.exe [2020-12-03] (Google LLC -> Google LLC)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0069B949-D085-4C4B-BB89-EE002569F9E8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-05-06] (Google LLC -> Google LLC)
Task: {03DB47E5-E9FB-4183-8F98-B7956CFF7BA8} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe
Task: {151CF150-8A4C-46C8-A749-0B7101FB0571} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26896568 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {1790AAE6-3BEC-42C1-AB9A-712036EBB657} - System32\Tasks\CareCenter\Steam_Reg_HKCURun_S-1-5-21-521245042-1903983077-726699138-1001 => C:\Program Files (x86)\Steam\steam.exe [3411232 2020-12-21] (Valve -> Valve Corporation)
Task: {18AEC8C0-B517-4BD5-B1DA-A1488E560A3E} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-11-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1993A8A6-34E6-49CA-9C33-523E5EBAA554} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [897008 2019-11-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1D258FD5-BE2D-40BE-AD5F-F8703419F20A} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-11-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2240B5D4-95B6-4F3C-B8CA-F8FBC9D55F82} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-11-27] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {27EAA296-6448-4CFB-A6AA-5F195AEF3DE7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-11-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3C737C4D-D2B1-4544-9B6D-5D3A9F677982} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe
Task: {3D5A2FFB-2964-4314-904A-2C8D2596C8C1} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {4A6EAE30-ACED-4285-BEFB-DBFCD24B0DE5} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-11-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {583103E1-74E2-4E0F-8D75-6DDBF1ABA48B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [143752 2021-01-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {599380DF-BDAB-4AB7-BE6D-CCD06CFED87D} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-11-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5DF74D0C-38FE-4BFD-87F1-33632224A803} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3788144 2019-11-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6558A222-A15D-4BE1-8100-F3A566997C62} - System32\Tasks\NitroSense => C:\Program Files\Acer\NitroSense Service\PSLauncher.exe [601904 2019-07-20] (Acer Incorporated -> Acer Incorporated)
Task: {6DD010E3-B589-4BF2-931D-C0AC16D50220} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [143752 2021-01-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {7716B575-B442-4EF4-A29A-D15C0EEDC409} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-521245042-1903983077-726699138-500 => C:\Users\svobo\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {7B555BB2-02C0-49BB-B8FE-B2FBF7685753} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {81DD7A10-E415-42B3-9989-5439E3D741C3} - System32\Tasks\AcerNetworkOptimizerStart => C:\Program Files (x86)\Acer\Acer Network Optimizer\AcerNetworkOptimizer.exe [1987584 2019-03-13] () [File not signed]
Task: {82679A57-7527-4B0B-AA96-5718630483D1} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23061920 2020-12-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {8623A7C3-774D-4AC4-8DAD-E68067AE67E3} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [473880 2020-07-16] (Acer Incorporated -> Acer Incorporated)
Task: {8F9BE9CA-B712-4C20-8DAE-1D9257EAEBE4} - System32\Tasks\CareCenter\CCleaner Smart Cleaning_Reg_HKCURun_S-1-5-21-521245042-1903983077-726699138-1001 => C:\Program Files\CCleaner\CCleaner64.exe [32414392 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {9FC4546B-7108-4872-A81B-AD895C829246} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23061920 2020-12-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {AA7BF18A-D9C2-4E89-9537-D9ABE56A8B65} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [897008 2019-11-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CDB8CE59-D198-4AF1-93B9-28CE329C07F0} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [648504 2019-11-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D811CA15-E374-4D32-B7CF-98ED270A6669} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-11-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E8949EF2-0769-4D0B-B3BB-696805C6EBA1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-05-06] (Google LLC -> Google LLC)
Task: {E9829786-5CD2-4F4E-AE48-67D5E646A7DA} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-11-27] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {F807DDF3-F32D-42C2-8D23-9D3D46A8780A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-11-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FB0C4807-73C8-4DB0-A73C-2DA3DDFB55C3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-11-20] (Microsoft Windows Publisher -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\AcerNetworkOptimizerStart.job => C:\Program Files (x86)\Acer\Acer Network Optimizer\AcerNetworkOptimizer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{88e4f1ef-95a9-4761-9826-c61771de0e17}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{c5b18e8c-19fb-452e-b9be-94ad2c52c8af}: [DhcpNameServer] 10.0.0.138

Edge:
======
Edge DefaultProfile: Default
Edge Profile: C:\Users\svobo\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-10]

FireFox:
========
FF DefaultProfile: gc0kqav5.default
FF ProfilePath: C:\Users\svobo\AppData\Roaming\Mozilla\Firefox\Profiles\gc0kqav5.default [2020-05-06]
FF ProfilePath: C:\Users\svobo\AppData\Roaming\Mozilla\Firefox\Profiles\42hjyey2.default-release [2021-01-11]
FF Extension: (Czech (CZ) Language Pack) - C:\Users\svobo\AppData\Roaming\Mozilla\Firefox\Profiles\42hjyey2.default-release\Extensions\langpack-cs@firefox.mozilla.org.xpi [2020-05-06]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2020-10-07] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-01-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-09-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2020-10-07] (Adobe Inc. -> Adobe Systems)

Chrome:
=======
CHR Profile: C:\Users\svobo\AppData\Local\Google\Chrome\User Data\Default [2021-01-11]
CHR Notifications: Default -> hxxps://ke-utc.appspot.com
CHR Extension: (Prezentace) - C:\Users\svobo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-05-06]
CHR Extension: (Dokumenty) - C:\Users\svobo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-05-06]
CHR Extension: (Disk Google) - C:\Users\svobo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-19]
CHR Extension: (YouTube) - C:\Users\svobo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-05-06]
CHR Extension: (Avast Passwords) - C:\Users\svobo\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2020-05-06]
CHR Extension: (Tabulky) - C:\Users\svobo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-05-06]
CHR Extension: (Dokumenty Google offline) - C:\Users\svobo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-18]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\svobo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-12-16]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\svobo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-05-06]
CHR Extension: (PDF Viewer) - C:\Users\svobo\AppData\Local\Google\Chrome\User Data\Default\Extensions\oemmndcbldboiebfnladdacbdfmadadm [2020-05-06]
CHR Extension: (Gmail) - C:\Users\svobo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-24]
CHR Extension: (Chrome Media Router) - C:\Users\svobo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-20]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [852024 2020-10-07] (Adobe Inc. -> Adobe Inc.)
S3 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3739728 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3511376 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8960904 2020-12-25] (Microsoft Corporation -> Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [5026104 2021-01-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1741384 2020-12-23] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6821960 2020-05-06] (GOG Sp. z o.o. -> GOG.com)
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2011-08-18] (Hewlett-Packard Co.) [File not signed]
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
S3 PSSvc; C:\Program Files\Acer\NitroSense Service\PSSvc.exe [820016 2019-07-20] (Acer Incorporated -> Acer Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-11-20] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-11-20] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 ACCSvc; "C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe" [X]
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvaci.inf_amd64_5691fa6e0332f879\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvaci.inf_amd64_5691fa6e0332f879\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S3 QALSvc; "C:\Program Files\Acer\Quick Access Service\QALSvc.exe" [X]
S3 QASvc; "C:\Program Files\Acer\Quick Access Service\QASvc.exe" [X]
S3 UEIPSvc; "C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AcerAirplaneModeController; C:\Windows\System32\drivers\AcerAirplaneModeController.sys [30168 2020-05-12] (Acer Incorporated -> Acer Incorporated)
S3 AppleKmdfFilter; C:\Windows\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 cpuz150; C:\Windows\temp\cpuz150\cpuz150_x64.sys [44832 2021-01-11] (CPUID S.A.R.L.U. -> CPUID)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [42256 2021-01-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [59360 2021-01-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtultrascsibus; C:\Windows\System32\drivers\dtultrascsibus.sys [42256 2020-08-24] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtultrausbbus; C:\Windows\System32\drivers\dtultrausbbus.sys [59344 2020-08-24] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 rtf64; C:\Windows\system32\DRIVERS\rtf64x64.sys [70560 2018-09-04] (Realtek Semiconductor Corp. -> Realtek)
S2 SecDrv; C:\Windows\SysWOW64\drivers\SECDRV.SYS [12400 2021-01-07] (Macrovision Europe Ltd) [File not signed]
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [48536 2020-11-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [429296 2020-11-20] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [70896 2020-11-20] (Microsoft Windows -> Microsoft Corporation)
S3 rtkio; \??\C:\Users\Administrator\AppData\Local\Temp\rtkio64.sys [X] <==== ATTENTION

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-11 18:27 - 2021-01-11 18:28 - 000000000 ____D C:\FRST
2021-01-11 18:23 - 2021-01-11 18:23 - 000000000 ____D C:\Windows\LastGood
2021-01-11 18:11 - 2021-01-04 15:49 - 001855192 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2021-01-11 18:11 - 2021-01-04 15:49 - 001855192 _____ C:\Windows\system32\vulkaninfo.exe
2021-01-11 18:11 - 2021-01-04 15:49 - 001435864 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-01-11 18:11 - 2021-01-04 15:49 - 001435864 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2021-01-11 18:11 - 2021-01-04 15:49 - 000948952 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2021-01-11 18:11 - 2021-01-04 15:49 - 000948952 _____ C:\Windows\SysWOW64\vulkan-1.dll
2021-01-11 18:11 - 2021-01-04 15:48 - 001454488 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2021-01-11 18:11 - 2021-01-04 15:48 - 001193880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2021-01-11 18:11 - 2021-01-04 15:48 - 001094880 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2021-01-11 18:11 - 2021-01-04 15:48 - 001094880 _____ C:\Windows\system32\vulkan-1.dll
2021-01-11 18:11 - 2021-01-04 15:46 - 001512856 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2021-01-11 18:11 - 2021-01-04 15:46 - 001165720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2021-01-11 18:11 - 2021-01-04 15:46 - 000690072 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2021-01-11 18:11 - 2021-01-04 15:46 - 000680856 _____ C:\Windows\system32\nvofapi64.dll
2021-01-11 18:11 - 2021-01-04 15:46 - 000673688 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2021-01-11 18:11 - 2021-01-04 15:46 - 000610712 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2021-01-11 18:11 - 2021-01-04 15:46 - 000559000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2021-01-11 18:11 - 2021-01-04 15:46 - 000548248 _____ C:\Windows\SysWOW64\nvofapi.dll
2021-01-11 18:11 - 2021-01-04 15:45 - 008262552 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2021-01-11 18:11 - 2021-01-04 15:45 - 007393176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2021-01-11 18:11 - 2021-01-04 15:45 - 004612504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2021-01-11 18:11 - 2021-01-04 15:45 - 002731928 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2021-01-11 18:11 - 2021-01-04 15:45 - 002104216 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2021-01-11 18:11 - 2021-01-04 15:45 - 001589144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2021-01-11 18:11 - 2021-01-04 15:45 - 000813976 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2021-01-11 18:11 - 2021-01-04 15:45 - 000657816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2021-01-11 18:11 - 2021-01-04 15:45 - 000447384 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2021-01-11 18:11 - 2021-01-04 15:44 - 000850840 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2021-01-11 18:11 - 2021-01-04 15:43 - 006071032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2021-01-11 18:11 - 2020-12-31 15:01 - 000084159 _____ C:\Windows\system32\nvinfo.pb
2021-01-09 13:51 - 2021-01-09 17:04 - 000000000 ____D C:\Users\svobo\OneDrive\Dokumenty\FIFA 2005
2021-01-09 13:51 - 2021-01-09 13:51 - 000000000 ___HD C:\ProgramData\CyberLink
2021-01-09 11:44 - 2021-01-09 13:01 - 1340969817 _____ C:\Users\svobo\Downloads\f2k5_opcg.7z
2021-01-07 19:15 - 2021-01-07 19:15 - 002152472 _____ C:\Users\svobo\Downloads\launcher.zip
2021-01-07 19:05 - 2021-01-07 19:08 - 079417987 _____ (Igor Pavlov) C:\Users\svobo\Downloads\interface.exe
2021-01-07 18:05 - 2021-01-07 18:05 - 000000000 ____D C:\Users\svobo\OneDrive\Dokumenty\NHL 2004
2021-01-07 17:57 - 2021-01-07 17:59 - 000012400 _____ (Macrovision Europe Ltd) C:\Windows\SysWOW64\Drivers\SECDRV.SYS
2021-01-07 17:56 - 2021-01-07 17:56 - 000000477 _____ C:\Windows\eReg.dat
2021-01-06 21:17 - 2021-01-09 13:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA SPORTS
2021-01-06 21:17 - 2021-01-06 21:17 - 000000000 ____D C:\Users\svobo\OneDrive\Dokumenty\FIFA 2004
2021-01-06 21:16 - 2021-01-06 21:16 - 000000000 ____D C:\Users\svobo\AppData\Roaming\Macromedia
2021-01-06 21:15 - 2021-01-06 21:15 - 000000237 _____ C:\debugInstaller.txt
2021-01-06 21:09 - 2021-01-06 21:09 - 000000000 ____D C:\Users\svobo\AppData\Roaming\DAEMON Tools Lite
2021-01-06 20:53 - 2021-01-06 20:53 - 000059360 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtliteusbbus.sys
2021-01-06 20:53 - 2021-01-06 20:53 - 000042256 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys
2021-01-06 20:53 - 2021-01-06 20:53 - 000000000 ____D C:\Users\svobo\AppData\Roaming\Disc-Soft
2021-01-06 20:53 - 2021-01-06 20:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\DAEMON Tools Lite
2021-01-06 20:53 - 2021-01-06 20:53 - 000000000 ____D C:\Program Files\DAEMON Tools Lite
2021-01-06 20:50 - 2021-01-06 20:50 - 000000000 ____D C:\ProgramData\Disc-Soft
2021-01-06 20:46 - 2021-01-06 20:46 - 001743552 _____ (Disc Soft Ltd) C:\Users\svobo\Downloads\DTLiteInstaller.exe
2021-01-06 20:35 - 2021-01-06 20:35 - 1137800620 _____ C:\Users\svobo\Downloads\FIFA_Football_2004_Win_ISO_EN.zip
2021-01-06 20:32 - 2021-01-06 21:09 - 1086702509 _____ C:\Users\svobo\Downloads\NHL-2004_Win_EN_ISO-Version.zip
2021-01-06 20:30 - 2021-01-06 21:09 - 1185561250 ____R C:\Users\svobo\Downloads\nhl04.rar
2021-01-06 20:16 - 2021-01-06 20:16 - 000000000 ____D C:\Users\svobo\AppData\Local\BitTorrentHelper
2021-01-06 20:15 - 2021-01-06 20:17 - 000000000 ____D C:\Users\svobo\AppData\LocalLow\uTorrent
2021-01-06 20:13 - 2021-01-07 00:31 - 000000000 ____D C:\Users\svobo\AppData\Roaming\uTorrent
2021-01-06 20:13 - 2021-01-06 20:13 - 000000880 _____ C:\Users\svobo\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2021-01-06 20:12 - 2021-01-06 20:12 - 005152472 _____ (BitTorrent Inc.) C:\Users\svobo\Downloads\uTorrent.exe
2021-01-04 22:12 - 2021-01-04 22:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2021-01-04 22:12 - 2021-01-04 22:12 - 000000000 ____D C:\Program Files\CPUID
2021-01-04 22:11 - 2021-01-04 22:11 - 001319136 _____ (CPUID, Inc. ) C:\Users\svobo\Downloads\hwmonitor_1.43.exe
2021-01-04 20:05 - 2021-01-04 21:07 - 000000000 ____D C:\AdwCleaner
2021-01-04 20:05 - 2021-01-04 20:05 - 008447152 _____ (Malwarebytes) C:\Users\svobo\Downloads\adwcleaner_8.0.8.exe
2021-01-04 20:03 - 2021-01-04 20:03 - 000000000 ____D C:\ProgramData\Doctor Web
2021-01-04 20:02 - 2021-01-04 20:02 - 000000000 ____D C:\Users\svobo\Doctor Web
2021-01-04 20:00 - 2021-01-04 20:02 - 235893928 _____ C:\Users\svobo\Downloads\mfxhssop.exe
2021-01-04 19:46 - 2021-01-04 19:46 - 000000000 ____D C:\Windows\LastGood.Tmp
2020-12-28 17:15 - 2020-12-28 17:15 - 000000000 ____D C:\Program Files (x86)\Metro2033Redux
2020-12-27 23:45 - 2021-01-03 11:27 - 000000000 ____D C:\Users\svobo\OneDrive\Dokumenty\Kindle
2020-12-26 00:55 - 2020-12-26 10:09 - 000000000 ____D C:\Windows\system32\Tasks\Remediation
2020-12-24 12:38 - 2020-12-24 21:34 - 000000000 ____D C:\Users\svobo\OneDrive\Dokumenty\Assassin's Creed Odyssey
2020-12-23 23:16 - 2020-12-23 23:16 - 000000000 ____D C:\Assasin
2020-12-19 11:58 - 2020-12-19 11:58 - 000000000 ____D C:\Users\svobo\OneDrive\Dokumenty\škola
2020-12-19 00:59 - 2020-12-19 00:59 - 000317265 _____ C:\Users\svobo\Downloads\jkm005_tmk_recenze_martin_svoboda.pdf
2020-12-18 20:47 - 2020-12-18 20:47 - 000164864 _____ C:\Users\svobo\Downloads\TMK_prez2020_0 (1).ppt
2020-12-18 20:44 - 2020-12-18 20:44 - 000193237 _____ C:\Users\svobo\Downloads\ContentServer (1).pdf
2020-12-18 11:32 - 2020-12-18 11:32 - 000140618 _____ C:\Users\svobo\Downloads\147349059011.pdf
2020-12-16 19:28 - 2020-12-16 19:28 - 000193237 _____ C:\Users\svobo\Downloads\ContentServer.pdf
2020-12-16 18:52 - 2020-12-16 18:52 - 000168448 _____ C:\Users\svobo\Downloads\TMK_prez2018_0.ppt
2020-12-16 18:44 - 2020-12-16 18:44 - 000164864 _____ C:\Users\svobo\Downloads\TMK_prez2020_0.ppt
2020-12-13 17:22 - 2020-12-13 17:22 - 000000000 ____D C:\Users\svobo\AppData\Local\Epic Games

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-11 18:23 - 2020-03-06 01:26 - 000000000 ____D C:\ProgramData\NVIDIA
2021-01-11 18:23 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\AppReadiness
2021-01-11 18:23 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-11 18:23 - 2019-03-19 05:50 - 000000000 ____D C:\Windows\INF
2021-01-11 18:07 - 2020-05-06 05:40 - 000000000 ____D C:\Users\svobo\AppData\Local\Packages
2021-01-11 17:55 - 2020-03-06 01:30 - 001684436 _____ C:\Windows\system32\PerfStringBackup.INI
2021-01-11 17:55 - 2019-07-18 13:46 - 000714494 _____ C:\Windows\system32\perfh005.dat
2021-01-11 17:55 - 2019-07-18 13:46 - 000144078 _____ C:\Windows\system32\perfc005.dat
2021-01-11 17:52 - 2020-05-06 06:13 - 000000000 ____D C:\Program Files\CCleaner
2021-01-11 17:52 - 2020-05-06 05:50 - 000000000 ____D C:\Program Files (x86)\Steam
2021-01-11 17:49 - 2020-05-06 05:32 - 000000000 ____D C:\Users\svobo
2021-01-11 17:49 - 2020-03-06 01:20 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-01-11 17:49 - 2020-03-06 01:19 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-01-10 12:56 - 2020-05-09 19:22 - 000000000 ____D C:\Users\svobo\AppData\Local\CrashDumps
2021-01-09 22:30 - 2020-07-16 17:22 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-09 16:10 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-09 13:51 - 2020-05-05 16:49 - 000000000 ____D C:\totalcmd
2021-01-09 13:34 - 2020-08-24 18:33 - 000000000 ____D C:\Games
2021-01-08 18:08 - 2020-09-05 09:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2021-01-08 18:08 - 2020-03-06 01:57 - 000000000 ____D C:\Program Files\Microsoft Office
2021-01-07 20:12 - 2020-05-06 05:40 - 000000000 ____D C:\Users\svobo\AppData\Local\D3DSCache
2021-01-06 21:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2021-01-06 21:09 - 2020-08-24 18:29 - 000000000 ____D C:\Users\svobo\AppData\Local\Disc_Soft_Ltd
2021-01-04 22:17 - 2020-05-20 09:30 - 000000000 ____D C:\Users\svobo\AppData\Local\Ubisoft Game Launcher
2021-01-04 21:07 - 2020-03-06 01:54 - 000000000 ____D C:\Program Files\Acer
2021-01-04 21:07 - 2020-03-06 01:53 - 000000000 ____D C:\ProgramData\Acer
2021-01-04 21:07 - 2020-03-06 01:39 - 000000000 ____D C:\Program Files (x86)\Acer
2021-01-04 21:07 - 2019-03-19 05:37 - 000524288 _____ C:\Windows\system32\config\BBI
2021-01-04 19:46 - 2020-03-06 01:26 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-01-04 15:43 - 2019-12-16 03:45 - 007115280 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2021-01-03 16:13 - 2020-05-06 05:45 - 000000000 ____D C:\Users\svobo\AppData\Local\OEM
2021-01-03 16:13 - 2020-05-06 05:31 - 000000000 ____D C:\Windows\system32\Tasks\Oem
2021-01-02 18:12 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\LiveKernelReports
2020-12-26 10:09 - 2020-03-06 02:02 - 000000000 ____D C:\ProgramData\Norton
2020-12-26 10:09 - 2019-03-19 05:52 - 000000000 ___HD C:\Windows\ELAMBKUP
2020-12-26 10:09 - 2019-03-19 05:37 - 000032768 _____ C:\Windows\system32\config\ELAM
2020-12-26 10:08 - 2020-05-06 06:14 - 000002234 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-12-26 10:07 - 2020-03-06 01:39 - 000000362 _____ C:\Windows\Tasks\AcerNetworkOptimizerStart.job
2020-12-26 10:07 - 2019-03-19 05:52 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2020-12-26 10:06 - 2020-07-16 17:21 - 000003572 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-12-26 10:06 - 2020-07-16 17:21 - 000003348 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-12-26 10:06 - 2020-05-06 06:14 - 000003254 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-12-26 10:06 - 2020-05-06 05:44 - 000003460 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-12-26 10:06 - 2020-05-06 05:44 - 000003236 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-12-26 10:06 - 2020-03-06 01:54 - 000002234 _____ C:\Windows\system32\Tasks\NitroSense
2020-12-26 10:06 - 2020-03-06 01:53 - 000004362 _____ C:\Windows\system32\Tasks\Software Update Application
2020-12-26 10:06 - 2020-03-06 01:53 - 000002790 _____ C:\Windows\system32\Tasks\ACC
2020-12-26 10:06 - 2020-03-06 01:43 - 000003458 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-26 10:06 - 2020-03-06 01:43 - 000003256 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-26 10:06 - 2020-03-06 01:43 - 000003212 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-26 10:06 - 2020-03-06 01:43 - 000003008 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-26 10:06 - 2020-03-06 01:43 - 000003008 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-26 10:06 - 2020-03-06 01:43 - 000003008 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-26 10:06 - 2020-03-06 01:43 - 000003008 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-26 10:06 - 2020-03-06 01:43 - 000002974 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-26 10:06 - 2020-03-06 01:39 - 000002372 _____ C:\Windows\system32\Tasks\AcerNetworkOptimizerStart
2020-12-26 10:06 - 2020-03-06 01:26 - 000003044 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-26 10:06 - 2020-03-06 01:26 - 000002804 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-26 10:06 - 2020-03-06 01:24 - 000002908 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-521245042-1903983077-726699138-500
2020-12-25 11:00 - 2020-07-21 17:31 - 000000000 ____D C:\Users\svobo\AppData\Roaming\Skype
2020-12-24 12:25 - 2020-05-20 09:30 - 000000000 ____D C:\Users\svobo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2020-12-23 22:35 - 2020-06-06 06:58 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy
2020-12-22 20:12 - 2020-07-02 18:37 - 000000000 ____D C:\Users\svobo\AppData\Roaming\vlc
2020-12-12 14:45 - 2019-12-16 03:45 - 007114256 _____ (NVIDIA Corporation) C:\Windows\system32\SETF7B2.tmp

==================== Files in the root of some directories ========

2020-05-05 19:04 - 2020-05-23 13:59 - 000000081 _____ () C:\Users\svobo\AppData\Local\.bidstack.fault
2020-10-06 11:31 - 2020-10-06 11:31 - 000000000 _____ () C:\Users\svobo\AppData\Local\oobelibMkey.log

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-01-2021
Ran by svobo (11-01-2021 18:29:41)
Running from C:\Users\svobo\OneDrive\Plocha
Windows 10 Home Version 1909 18363.1256 (X64) (2020-05-06 04:22:25)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-521245042-1903983077-726699138-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-521245042-1903983077-726699138-503 - Limited - Disabled)
Guest (S-1-5-21-521245042-1903983077-726699138-501 - Limited - Disabled)
svobo (S-1-5-21-521245042-1903983077-726699138-1001 - Administrator - Enabled) => C:\Users\svobo
WDAGUtilityAccount (S-1-5-21-521245042-1903983077-726699138-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Norton Security Ultra (Disabled - Out of date) {1122B19A-E671-38EC-8EAC-87048FD4528D}
AV: Norton Security Ultra (Enabled - Up to date) {A2708B76-6835-6565-CB96-694212954A75}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton Security Ultra (Enabled) {9A4B0A53-225A-643D-E0C9-C077EC460D0E}
FW: Norton Security Ultra (Disabled) {291930BF-AC1E-39B4-A5F3-2E31710715F6}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\uTorrent) (Version: 3.5.5.45852 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Acer Jumpstart (HKLM-x32\...\{E3930B59-5669-4BAB-A329-D56C1427C613}) (Version: 3.3.19180.100 - Acer)
Acer Network Optimizer (HKLM-x32\...\{3C8FA4F4-8471-4C60-9002-9B9F78B7B483}) (Version: 4 - Acer)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.3.1.470 - Adobe Inc.)
Adobe Lightroom (HKLM-x32\...\LRCC_3_4) (Version: 3.4 - Adobe Inc.)
Adobe Lightroom Classic (HKLM-x32\...\LTRM_9_4) (Version: 9.4 - Adobe Inc.)
AIO_CDB_Software (HKLM-x32\...\{2DFDE21D-AFFE-4CDD-BBD4-3B7832BEC036}) (Version: 140.0.428.000 - Hewlett-Packard) Hidden
AIO_Scan (HKLM-x32\...\{104066F4-5897-4067-85D3-4C88B67CCF75}) (Version: 130.0.421.000 - Hewlett-Packard) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 19.10.28.01 - Advanced Micro Devices, Inc.)
Branding64 (HKLM\...\{FFF5E5C1-7884-49BE-BB04-36B99C1522E6}) (Version: 1.00.0001 - Advanced Micro Devices, Inc.) Hidden
BufferChm (HKLM-x32\...\{FA0FF682-CC70-4C57-93CD-E276F3E7537E}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.75 - Piriform)
CPUID HWMonitor 1.43 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.43 - CPUID, Inc.)
Czech Soccer Manager (HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\Czech Soccer Manager) (Version: - )
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.14.0.1663 - Disc Soft Ltd)
Epic Games Launcher (HKLM-x32\...\{1D4EB18B-0FEE-444E-B4D1-6F2CFBC363E6}) (Version: 1.1.267.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
FIFA 2004 (HKLM-x32\...\{782DDB70-3DF4-4366-00BF-E3767BCD173B}) (Version: - )
FIFA 2005 (HKLM-x32\...\{E4E3E62E-16D7-425E-009C-DCB5E64F5955}) (Version: - )
FM Genie Scout 20 version 1.0 20.4.1 beta 25 (HKLM\...\FM Genie Scout 20_is1) (Version: 1.0 20.4.1 beta 25 - )
fmXML version 0.3 (HKLM-x32\...\fmXML_is1) (Version: - )
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.88 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Heroes of Might and Magic 3 Complete (HKLM-x32\...\1207658787_is1) (Version: 4.0 - GOG.com)
HoMM III Compatibility Database (HKLM\...\{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb) (Version: - )
HP Photosmart Officejet and Deskjet All-In-One Driver Software (HKLM\...\{6F5B70F0-EA6C-4A5B-BB16-8390BD66B251}) (Version: 14.0 - HP)
HPPhotoGadget (HKLM-x32\...\{CAE4213F-F797-439D-BD9E-79B71D115BE3}) (Version: 140.0.524.000 - Hewlett-Packard) Hidden
Kinect for Windows Speech Recognition Language Pack (en-AU) (HKLM-x32\...\{48CEC0A3-AE10-4EE3-AC62-76D3D58792E5}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-CA) (HKLM-x32\...\{9C5505DA-F9C1-46CB-9F8F-AC38F8EA518A}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-GB) (HKLM-x32\...\{A0186231-0A8B-455A-8A25-B64AABCC11A6}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-IE) (HKLM-x32\...\{998D5259-3BED-4710-98FF-D63387B5429E}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-NZ) (HKLM-x32\...\{07FC9CAD-FCEC-4186-BB83-EF7CCC9372BA}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-US) (HKLM-x32\...\{8AAA44BB-487E-4D01-AF76-484ACB90DBFE}) (Version: 11.0.7400.336 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft 365 Apps pro firmy - cs-cz (HKLM\...\O365BusinessRetail - cs-cz) (Version: 16.0.13530.20316 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.75 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.59 - )
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 18.151.0729.0013 - Microsoft Corporation)
Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (en-IN) (HKLM-x32\...\{3B06AC90-DE68-44A9-95EB-0A3C1AF1514F}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\Teams) (Version: 1.3.00.9267 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{0BCA8FBE-0C1C-4C65-98A3-5D34AAF41737}) (Version: 2.70.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29112 (HKLM-x32\...\{0f770e99-3916-4b0c-8f9b-83822826bcbf}) (Version: 14.27.29112.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.27.29112 (HKLM-x32\...\{be826f5f-eda5-45a2-a3fe-c2cb5c1b9842}) (Version: 14.27.29112.0 - Microsoft Corporation)
Network64 (HKLM\...\{6BFAB6C1-6D46-46DB-A538-A269907C9F2F}) (Version: 140.0.306.000 - Hewlett-Packard) Hidden
nGlide 2.10 (HKLM-x32\...\nGlide) (Version: 2.10 - Zeus Software)
NHL 2004 (HKLM-x32\...\{4816702A-0879-4499-0085-ACFC0F65E811}) (Version: - )
NitroSense Service (HKLM\...\{6FC78E80-6385-43D6-8A43-FA80094F1A2E}) (Version: 3.01.3012 - Acer Incorporated)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.15 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.19.0.107 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.19.0.107 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 461.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 461.09 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{60499BF0-C3D1-40CC-8600-8A7246534466}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.13530.20218 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.13530.20218 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.13530.20218 - Microsoft Corporation) Hidden
Paradox Launcher v2 (HKLM\...\{986898D9-7C26-4E7F-814C-9B5472FA3209}) (Version: 2.0.0.0 - Paradox Interactive)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.32.1206.2018 - Realtek)
Sacred Gold (HKLM-x32\...\1207658688_is1) (Version: 2.28 - GOG.com)
Scan (HKLM-x32\...\{06A1D88C-E102-4527-AF70-29FFD7AF215A}) (Version: 140.0.253.000 - Hewlett-Packard) Hidden
Shockwave (HKLM-x32\...\Shockwave) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Sweet Home 3D version 6.4.2 (HKLM\...\Sweet Home 3D_is1) (Version: 6.4.2 - eTeks)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.3.0.9267 - Microsoft Corporation)
Toolbox (HKLM-x32\...\{292F0F52-B62D-4E71-921B-89A682402201}) (Version: 140.0.596.000 - Hewlett-Packard) Hidden
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 109.0 - Ubisoft)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
WebReg (HKLM-x32\...\{8EE94FD8-5F52-4463-A340-185D16328158}) (Version: 140.0.297.017 - Hewlett-Packard) Hidden

Packages:
=========
Acer Collection S -> C:\Program Files\WindowsApps\AcerIncorporated.AcerCollectionS_1.0.3004.0_x64__48frkmn4z8aw4 [2020-03-06] (Acer Incorporated)
Acer Product Registration -> C:\Program Files\WindowsApps\AcerIncorporated.AcerRegistration_2.0.3024.0_x64__48frkmn4z8aw4 [2020-12-23] (Acer Incorporated)
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc [2020-10-06] (Adobe Systems Incorporated)
AMD Radeon™ Settings Lite -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.59462344778C5_10.19.10006.0_x64__0a9344xs7nr4m [2020-05-06] (Advanced Micro Devices Inc.)
Care Center S -> C:\Program Files\WindowsApps\AcerIncorporated.AcerCareCenterS_4.0.3019.0_x64__48frkmn4z8aw4 [2020-09-02] (Acer Incorporated)
Dropbox promotion -> C:\Program Files\WindowsApps\C27EB4BA.DropboxOEM_20.4.3.0_x64__xbfy0k16fey96 [2020-05-06] (Dropbox Inc.)
GoTrust ID -> C:\Program Files\WindowsApps\GOTrustTechnologyInc.GO-TrustAuthenticator_3.1.21.0_x64__0r04f53sqacg6 [2020-12-03] (GoTrustID Inc.)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa [2020-11-22] (Apple Inc.) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-05-06] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-05-06] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.8.12113.0_x64__8wekyb3d8bbwe [2021-01-08] (Microsoft Studios) [MS Ad]
NitroSense_V31 -> C:\Program Files\WindowsApps\AcerIncorporated.NitroSenseV31_3.1.3012.0_x64__48frkmn4z8aw4 [2020-03-06] (Acer Incorporated)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.959.0_x64__56jybvy8sckqj [2020-11-29] (NVIDIA Corp.)
PhotoDirector for acer -> C:\Program Files\WindowsApps\CyberLinkCorp.ac.PhotoDirectorforacerDesktop_8.0.5229.0_x64__ypz87dpxkv292 [2020-03-06] (CYBERLINK COM CORP)
PowerDirector for acer -> C:\Program Files\WindowsApps\CyberLinkCorp.ac.PowerDirectorforacerDesktop_14.0.4304.0_x64__ypz87dpxkv292 [2020-03-06] (CYBERLINK COM CORP)
QuickAccess -> C:\Program Files\WindowsApps\AcerIncorporated.QuickAccess_3.0.3017.0_x64__48frkmn4z8aw4 [2020-10-06] (Acer Incorporated)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.14.221.0_x64__dt26b99r8h8gj [2020-08-23] (Realtek Semiconductor Corp)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0 [2020-12-17] (Spotify AB) [Startup Task]
User Experience Improvement Program -> C:\Program Files\WindowsApps\AcerIncorporated.UserExperienceImprovementProgram_4.0.3106.0_x64__48frkmn4z8aw4 [2020-03-06] (Acer Incorporated)
Waves MaxxAudio For Acer -> C:\Program Files\WindowsApps\WavesAudio.20761030F5EAC_1.0.67.0_x64__fh4rh281wavaa [2020-05-06] (Waves Audio)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-521245042-1903983077-726699138-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\svobo\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20077.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-521245042-1903983077-726699138-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\svobo\AppData\Local\Microsoft\OneDrive\19.232.1124.0012\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-521245042-1903983077-726699138-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\svobo\AppData\Local\Microsoft\OneDrive\19.232.1124.0012\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-521245042-1903983077-726699138-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\svobo\AppData\Local\Microsoft\OneDrive\19.232.1124.0012\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-521245042-1903983077-726699138-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\svobo\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20077.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-521245042-1903983077-726699138-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-09-21] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-09-21] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-09-21] (Adobe Inc. -> )
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-09-21] (Adobe Inc. -> )
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2021-01-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2021-01-06] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvaci.inf_amd64_5691fa6e0332f879\nvshext.dll [2021-01-04] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-09-21] (Adobe Inc. -> )
ContextMenuHandlers1_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
ContextMenuHandlers4_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
ContextMenuHandlers5_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2011-08-18 00:29 - 2011-08-18 00:29 - 001039360 _____ (Hewlett-Packard Co.) [File not signed] c:\program files (x86)\hp\digital imaging\bin\hpslpsvc64.dll
2020-10-06 13:42 - 2019-02-21 17:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-521245042-1903983077-726699138-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=ACTE
HKU\S-1-5-21-521245042-1903983077-726699138-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.msn.com/?pc=ACTE
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2021-01-08] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-01-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-01-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-01-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-01-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-08] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-01-08] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\sharepoint.com -> hxxps://bf2017-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

2020-10-15 14:11 - 2020-10-15 14:25 - 000000509 _____ C:\Windows\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-521245042-1903983077-726699138-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\svobo\Downloads\Arsenal-Desktop-Wallpaper-10-1920x1080.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

Network Binding:
=============
Wi-Fi: Realtek LightWeight Filter (NDIS6.40) -> nt_rtf64 (enabled)
Ethernet: Realtek LightWeight Filter (NDIS6.40) -> nt_rtf64 (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "RtkAudUService"
HKLM\...\StartupApproved\Run: => "WavesSvc"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "WindowsDefender"
HKLM\...\StartupApproved\Run: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller"
HKLM\...\StartupApproved\Run32: => "Adobe CCXProcess"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "AdobeGCInvoker-1.0"
HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\StartupApproved\Run: => "GalaxyClient"
HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\StartupApproved\Run: => "launchOnStartup"
HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\StartupApproved\Run: => "DAEMON Tools Ultra Automount"
HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\StartupApproved\Run: => "Application Restart #1"
HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\StartupApproved\Run: => "GogGalaxy"
HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\StartupApproved\Run: => "Lync"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{508D56E3-0163-4384-A07D-10C9DF0B6665}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{943F46D3-4DE5-4F35-A6A1-726783916F14}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{137D8865-4388-49B2-BDF1-5E0179866CC0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4B9F6167-EC86-413E-B51B-9DA961E05E7E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FA76F883-FEDD-4D73-88C7-C4507193E481}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E8A7AB7B-7D91-4268-AE5A-7386268C5A55}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CAF0AB3B-4023-42B5-AB45-F7258C0696E3}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe => No File
FirewallRules: [{369E93C6-5EA7-4EA1-BC42-2E9D7B20434E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{50E59787-5178-44C7-8078-9E527C4324E9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{D7344830-840E-4700-A28F-3E4EBD69D4D4}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{8A4D1B09-2CAF-4AA1-ADC7-556249192CB2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{EA5FD769-D171-47B6-A234-BB025700ED29}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Football Manager 2020\fm.exe (Sports Interactive) [File not signed]
FirewallRules: [{49E14C09-E1F4-428D-AC39-829564268E1F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Football Manager 2020\fm.exe (Sports Interactive) [File not signed]
FirewallRules: [{A2539A20-C893-477F-A766-AF79EFC67416}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [File not signed]
FirewallRules: [{6B863954-073A-4384-ABFC-F6F8EF53736B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [File not signed]
FirewallRules: [{5AD7D31E-5461-4E20-857C-1A72751AA554}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe (CD Projekt Red) [File not signed]
FirewallRules: [{4B37723E-BA6B-4DCF-ABCB-91A12D8642FD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe (CD Projekt Red) [File not signed]
FirewallRules: [{B3721FAA-0B72-42CC-8EFD-A5AC98C31207}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe (CD Projekt RED Sp. z o.o. -> CD Projekt Red)
FirewallRules: [{24CE9970-C9AF-43D5-8688-553617E77061}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe (CD Projekt RED Sp. z o.o. -> CD Projekt Red)
FirewallRules: [{B6D952B2-F3F9-4017-B788-32E055B01001}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe () [File not signed]
FirewallRules: [{17E42FCD-91F7-40A8-867A-A102915C29F1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe () [File not signed]
FirewallRules: [{84CD3010-E179-4142-AD5A-0C6F6A86D19D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the witcher 2\Launcher.exe (CD Projekt RED) [File not signed]
FirewallRules: [{C401B286-9537-4CDD-B6A2-80AB2262B3F7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\the witcher 2\Launcher.exe (CD Projekt RED) [File not signed]
FirewallRules: [{03AC155E-E815-4D89-AB23-79229C4B2116}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{5DB730A9-BE4D-4116-B999-78215D1B154E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{3FCE7C1A-48ED-4410-9707-2FF5E1D03C2E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6DCBE3C9-92DB-4B94-82F6-5A4CD6F07ED6}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7F7CE3DA-7CEE-4860-AA29-345338480913}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{38407AB2-03DD-46B2-97B7-199966EB4A13}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{53C07CCB-AAC2-4233-A96D-FE35D75C1AD8}C:\games\sports\nhl2k\nhl2k.exe] => (Block) C:\games\sports\nhl2k\nhl2k.exe () [File not signed]
FirewallRules: [UDP Query User{0352D2C9-19B7-4DA8-BC5B-60DB88E20015}C:\games\sports\nhl2k\nhl2k.exe] => (Block) C:\games\sports\nhl2k\nhl2k.exe () [File not signed]
FirewallRules: [{DA376836-FF58-4609-88D3-4FADECB8D1CA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Death Rally\Death Rally\dr.exe (Remedy Entertainment Ltd. -> )
FirewallRules: [{D7060B4B-8E60-4494-9811-B9471FDB2E34}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Death Rally\Death Rally\dr.exe (Remedy Entertainment Ltd. -> )
FirewallRules: [{947B3A07-455F-4A83-9B65-8E2B841F0B14}] => (Allow) C:\Windows\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{7057593A-BD66-44A0-A334-D583D64AD74F}] => (Allow) C:\Windows\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{CD844DF2-236D-491C-B5B5-2628DC458ED2}] => (Allow) C:\Windows\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{45560575-BDFA-4898-B4B4-F2A8E60FE612}] => (Allow) C:\Windows\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{B1339129-94BE-4229-AC08-1695E1407C1F}] => (Allow) C:\Windows\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{55C10880-BB6F-4C39-888A-F06698F0A519}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{BBE51F34-52DE-4207-AF5D-942A66783EBA}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C668B158-1266-4D96-AD7B-E56A1A7E110D}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{33C998C1-8DC6-4875-A3F4-707289E434F0}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{EE8CDF5A-D36D-48DD-A0FE-51101A966E46}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{018ED31C-6394-415C-9587-AD03ACD77E0E}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D882C951-C2B1-4D21-BD17-75C0BD8DB4ED}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{1A624559-AA6F-4D94-81F4-E57FB26303C8}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{71F37C11-0578-404D-949B-CEA1212BD731}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{B162DAA7-19DE-49B2-8916-1AA5AA75B697}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F2CB8037-7D1E-46A5-8BA1-48D890F20ACB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B5B06FA5-36E8-4E3C-B5DB-81FB934F9FCE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C6E089DF-6357-4E6D-8C13-0E647D548BFB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B71EAB33-9752-412D-BAA9-F9019C9A7C80}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{93323C50-C2C7-429D-93F7-6193833BB797}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4A4309DA-A737-4315-9957-14300DBC0BCE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B1992656-3FD7-4626-9C1C-5F901D1AA064}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{966DC82D-B487-435B-8CE7-C7FE0A3C1F82}] => (Allow) C:\Assasin\AssassinsCreedOdyssey\ACOdyssey_plus.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{E88BA960-5C28-4DA7-822F-6A378FAD5822}] => (Allow) C:\Assasin\AssassinsCreedOdyssey\ACOdyssey_plus.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{CDAD9064-6928-4465-8CBF-EEC49E37F64E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6A6D6620-8CB6-45B3-8953-1E29DBCC81AE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{146429C3-9430-46D2-AE90-FB5FC419BB43}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2438658C-3215-4D74-852D-76AEEE56B850}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{62AC120E-C423-4EA8-9D62-BCE20B7A49F6}] => (Allow) C:\Users\svobo\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{7D304ED3-EF5B-4CA0-95D2-AB74AC94EF92}] => (Allow) C:\Users\svobo\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{F3DBA71E-E34D-4BD7-B62D-8DF3DD069228}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{8E6EA405-1508-44D4-BADC-5A2AE6CDC85A}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{758A2282-10C9-4D43-9E7F-16168B8BF888}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

26-12-2020 00:59:12 Naplánovaný kontrolní bod
03-01-2021 16:13:22 Removed ExpressVPN
04-01-2021 21:06:45 AdwCleaner_BeforeCleaning_04/01/2021_21:06:45

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (01/10/2021 12:56:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: fifa2005.exe, verze: 0.0.0.0, časové razítko: 0x4141053e
Název chybujícího modulu: fifa2005.exe, verze: 0.0.0.0, časové razítko: 0x4141053e
Kód výjimky: 0xc0000005
Posun chyby: 0x00300925
ID chybujícího procesu: 0x14f4
Čas spuštění chybující aplikace: 0x01d6e74799f06b0b
Cesta k chybující aplikaci: C:\Games\FIFA 05\fifa2005.exe
Cesta k chybujícímu modulu: C:\Games\FIFA 05\fifa2005.exe
ID zprávy: 914d824d-bd2a-4ba5-b6e2-de6489358db0
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/07/2021 07:37:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: nhl2004.exe, verze: 0.0.0.0, časové razítko: 0x72454562
Název chybujícího modulu: nhl2004.exe, verze: 0.0.0.0, časové razítko: 0x72454562
Kód výjimky: 0xc0000005
Posun chyby: 0x00165de2
ID chybujícího procesu: 0x2544
Čas spuštění chybující aplikace: 0x01d6e5217d5cdc8a
Cesta k chybující aplikaci: C:\Users\svobo\OneDrive\Plocha\Games\NHL 04\nhl2004.exe
Cesta k chybujícímu modulu: C:\Users\svobo\OneDrive\Plocha\Games\NHL 04\nhl2004.exe
ID zprávy: 235e584f-df2f-4e09-bf44-2fc271904ed1
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/07/2021 07:37:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: nhl2004.exe, verze: 0.0.0.0, časové razítko: 0x72454562
Název chybujícího modulu: nhl2004.exe, verze: 0.0.0.0, časové razítko: 0x72454562
Kód výjimky: 0xc0000005
Posun chyby: 0x00165bb3
ID chybujícího procesu: 0x2544
Čas spuštění chybující aplikace: 0x01d6e5217d5cdc8a
Cesta k chybující aplikaci: C:\Users\svobo\OneDrive\Plocha\Games\NHL 04\nhl2004.exe
Cesta k chybujícímu modulu: C:\Users\svobo\OneDrive\Plocha\Games\NHL 04\nhl2004.exe
ID zprávy: 81f1e7f9-4ee2-42fd-bdda-d65d630e5359
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/07/2021 06:41:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: nhl2004.exe, verze: 0.0.0.0, časové razítko: 0x72454562
Název chybujícího modulu: jscript9.dll, verze: 11.0.18362.1198, časové razítko: 0xd7c55a77
Kód výjimky: 0xc0000005
Posun chyby: 0x0007c213
ID chybujícího procesu: 0x13ec
Čas spuštění chybující aplikace: 0x01d6e519fef8b581
Cesta k chybující aplikaci: C:\Users\svobo\OneDrive\Plocha\Games\NHL 04\nhl2004.exe
Cesta k chybujícímu modulu: C:\Windows\System32\jscript9.dll
ID zprávy: cc8969d4-5fcc-4961-b8f6-b0502227a1e8
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/07/2021 06:04:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: nhl2004.exe, verze: 0.0.0.0, časové razítko: 0x72454562
Název chybujícího modulu: nhl2004.exe, verze: 0.0.0.0, časové razítko: 0x72454562
Kód výjimky: 0xc0000005
Posun chyby: 0x00226308
ID chybujícího procesu: 0x46c
Čas spuštění chybující aplikace: 0x01d6e51730c88446
Cesta k chybující aplikaci: C:\Users\svobo\OneDrive\Plocha\Games\NHL 04\nhl2004.exe
Cesta k chybujícímu modulu: C:\Users\svobo\OneDrive\Plocha\Games\NHL 04\nhl2004.exe
ID zprávy: 19ca3477-0b8c-4e1d-b810-611c7e619122
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/07/2021 06:04:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: nhl2004.exe, verze: 0.0.0.0, časové razítko: 0x72454562
Název chybujícího modulu: nhl2004.exe, verze: 0.0.0.0, časové razítko: 0x72454562
Kód výjimky: 0xc0000005
Posun chyby: 0x00226308
ID chybujícího procesu: 0x3634
Čas spuštění chybující aplikace: 0x01d6e5171b687894
Cesta k chybující aplikaci: C:\Users\svobo\OneDrive\Plocha\Games\NHL 04\nhl2004.exe
Cesta k chybujícímu modulu: C:\Users\svobo\OneDrive\Plocha\Games\NHL 04\nhl2004.exe
ID zprávy: 469b4896-8593-403f-8989-318c30e63f99
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/04/2021 10:06:42 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SystemSettings.exe verze 10.0.18362.1171 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 954

Čas spuštění: 01d6e2dd6a68200d

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\ImmersiveControlPanel\SystemSettings.exe

ID hlášení: 133dad67-56e4-4df8-8d9d-43639ceda7ba

Úplný název balíčku s chybou: windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy

ID aplikace relativní podle balíčku s chybou: microsoft.windows.immersivecontrolpanel

Typ zablokování: Cross-process

Error: (01/04/2021 10:06:41 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program NitroSense.exe verze 3.1.3012.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 1634

Čas spuštění: 01d6e2d60aa6cc09

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\AcerIncorporated.NitroSenseV31_3.1.3012.0_x64__48frkmn4z8aw4\Win32\NitroSense.exe

ID hlášení:

Úplný název balíčku s chybou: AcerIncorporated.NitroSenseV31_3.1.3012.0_x64__48frkmn4z8aw4

ID aplikace relativní podle balíčku s chybou: App

Typ zablokování: Quiesce


System errors:
=============
Error: (01/11/2021 06:23:42 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA LocalSystem Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.

Error: (01/11/2021 06:23:42 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba NVIDIA LocalSystem Container byla ukončena s následující chybou:
Obecný spustitelný příkaz vrátil výsledek označující selhání.

Error: (01/11/2021 05:49:02 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba SecDrv neuspěla při spuštění v důsledku následující chyby:
Načtení tohoto ovladače je blokováno.

Error: (01/11/2021 05:49:02 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Windows\SysWow64\drivers\SECDRV.SYS

Error: (01/11/2021 05:49:02 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba ACCSvc neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (01/11/2021 05:49:00 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (19:31:48, ‎10.‎01.‎2021) bylo neočekávané.

Error: (01/07/2021 10:46:23 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-N8L69UQ1)
Description: Server {38E441FB-3D16-422F-8750-B2DACEC5CEFC} se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/07/2021 05:59:32 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba SecDrv neuspěla při spuštění v důsledku následující chyby:
Načtení tohoto ovladače je blokováno.


Windows Defender:
===================================
Date: 2021-01-07 19:07:24.985
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: VirTool:Win32/DefenderTamperingRestore
ID: 2147741622
Závažnost: Vážné
Kategorie: Nástroj
Cesta: regkeyvalue:_hklm\software\policies\microsoft\windows defender\\DisableAntiVirus
Původ detekce: Neznámý
Typ detekce: Konkrétní
Zdroj detekce: Systém
Uživatel: LAPTOP-N8L69UQ1\svobo
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.329.1817.0, AS: 1.329.1817.0, NIS: 1.329.1817.0
Verze modulu: AM: 1.1.17700.4, NIS: 1.1.17700.4

Date: 2021-01-07 19:06:57.866
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Ymacco.AAF1
ID: 2147757830
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: containerfile:_C:\Users\svobo\Downloads\launcher.zip; file:_C:\Users\svobo\Downloads\launcher.zip->Launcher Updater.ex_; webfile:_C:\Users\svobo\Downloads\launcher.zip|https://raw.githubusercontent.com/vod04 ... 4153248436
Původ detekce: Internet
Typ detekce: FastPath
Zdroj detekce: Soubory ke stažení a přílohy
Uživatel: LAPTOP-N8L69UQ1\svobo
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.329.1817.0, AS: 1.329.1817.0, NIS: 1.329.1817.0
Verze modulu: AM: 1.1.17700.4, NIS: 1.1.17700.4

Date: 2021-01-07 19:02:52.502
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Vigorf.A
ID: 2147714384
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\svobo\Downloads\interface.exe; webfile:_C:\Users\svobo\Downloads\interface.exe|http://download1507.mediafire.com/fceqe ... 1695700954
Původ detekce: Internet
Typ detekce: FastPath
Zdroj detekce: Soubory ke stažení a přílohy
Uživatel: LAPTOP-N8L69UQ1\svobo
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.329.1817.0, AS: 1.329.1817.0, NIS: 1.329.1817.0
Verze modulu: AM: 1.1.17700.4, NIS: 1.1.17700.4

Date: 2021-01-07 18:59:20.114
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Vigorf.A
ID: 2147714384
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\svobo\Downloads\interface.exe; webfile:_C:\Users\svobo\Downloads\interface.exe|http://download1507.mediafire.com/fceqe ... 9527426445
Původ detekce: Internet
Typ detekce: FastPath
Zdroj detekce: Soubory ke stažení a přílohy
Uživatel: LAPTOP-N8L69UQ1\svobo
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.329.1817.0, AS: 1.329.1817.0, NIS: 1.329.1817.0
Verze modulu: AM: 1.1.17700.4, NIS: 1.1.17700.4

Date: 2020-12-26 00:56:27.858
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {3658B335-9A17-44C7-A678-C70DD6352DBF}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

CodeIntegrity:
===================================

Date: 2020-12-26 10:08:35.742
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.5.39\symamsi.dll that did not meet the Microsoft signing level requirements.

Date: 2020-12-26 10:08:35.733
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.5.39\symamsi.dll that did not meet the Microsoft signing level requirements.

Date: 2020-12-26 10:08:35.379
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.5.39\symamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-12-26 09:56:03.121
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.5.39\symamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-12-25 10:59:33.169
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.5.39\symamsi.dll that did not meet the Windows signing level requirements.

Date: 2020-12-25 10:48:46.949
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.5.39\symamsi.dll that did not meet the Microsoft signing level requirements.

Date: 2020-12-25 10:48:46.941
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.5.39\symamsi.dll that did not meet the Microsoft signing level requirements.

Date: 2020-12-25 10:48:46.929
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.20.5.39\symamsi.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: Insyde Corp. V1.08 12/24/2019
Motherboard: PK Octavia_PKS
Processor: AMD Ryzen 5 3550H with Radeon Vega Mobile Gfx
Percentage of memory in use: 60%
Total physical RAM: 6082.64 MB
Available physical RAM: 2409.43 MB
Total Virtual: 15810.64 MB
Available Virtual: 9847.1 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:475.83 GB) (Free:130.4 GB) NTFS

\\?\Volume{8962f8ee-4e8f-42f3-91b7-eaf43391bb9a}\ (Recovery) (Fixed) (Total:1 GB) (Free:0.59 GB) NTFS
\\?\Volume{286bcfad-1972-4469-a6e5-49ba99da3098}\ (ESP) (Fixed) (Total:0.09 GB) (Free:0.04 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: 13AA9707)

Partition: GPT.

==================== End of Addition.txt =======================

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15191
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Preventivní kontrola

#2 Příspěvek od JaRon »

Ahoj
vycisti PC s AVPTool
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

center25
Návštěvník
Návštěvník
Příspěvky: 61
Registrován: 06 úno 2008 20:56

Re: Preventivní kontrola

#3 Příspěvek od center25 »

Ahoj, projel jsem KVRT a program nic nenašel.

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15191
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Preventivní kontrola

#4 Příspěvek od JaRon »

Ak si to neurobil, vycisti registre CCleanerom
Potom vycisti PC s MBAM
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

center25
Návštěvník
Návštěvník
Příspěvky: 61
Registrován: 06 úno 2008 20:56

Re: Preventivní kontrola

#5 Příspěvek od center25 »

Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 12.01.21
Čas skenování: 19:22
Logovací soubor: 2bf9cf84-5503-11eb-8283-0897988ff5b3.json

-Informace o softwaru-
Verze: 4.3.0.98
Verze komponentů: 1.0.1130
Aktualizovat verzi balíku komponent: 1.0.35635
Licence: Vypršelo

-Systémová informace-
OS: Windows 10 (Build 18362.1256)
CPU: x64
Systém souborů: NTFS
Uživatel: LAPTOP-N8L69UQ1\svobo

-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 285233
Zjištěné hrozby: 1
Hrozby umístěné do karantény: 0
Uplynulý čas: 0 min, 59 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)

Soubor: 1
PUP.Optional.BundleInstaller, C:\USERS\SVOBO\DOWNLOADS\UTORRENT.EXE, Žádná uživatelská akce, 150, 875791, 1.0.35635, , ame, , 67EA1E6AF4EAE6007C595F50216E4357, C1EC45E575687AD3F37BD7C8679EEFBE94A90A6873CD4050D581FA97AF8ED9BC

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)

WMI: 0
(Nebyly zjištěny žádné škodlivé položky)


(end)

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15191
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Preventivní kontrola

#6 Příspěvek od JaRon »

Najdene mozes zmazat
Ak CPU zasa vybehne pozri cez taskmgr ktore procesy ho vytazuju :???:
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

center25
Návštěvník
Návštěvník
Příspěvky: 61
Registrován: 06 úno 2008 20:56

Re: Preventivní kontrola

#7 Příspěvek od center25 »

Při běžném používání mi hodně CPU zatěžuje Google Chrome. Mám tam u něho aktuálně 37 procesů, nevím, jestli to je normální. Pak jsem si všimnul, že často jednorázově zatíží CPU Antimalware Service Executable. Přijde mi, že i při nenáročných činnostech běží větráky na vysoké otáčky a je i poměrně vysoká teplota CPU průměrně kolem 60 °C, ale často vyskakuje až na 80°C, aniž by běželo něco náročnějšího.

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15191
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Preventivní kontrola

#8 Příspěvek od JaRon »

Tvorba fixlistu pro FRST
•Spustte poznamkovy blok (Start-spustit-notepad)
•Zkopirujte skript >>

Kód: Vybrat vše

Start
HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\MountPoints2: {1dd217df-e51f-11ea-bff4-e4aaea51fb48} - "D:\AUTORUN.EXE" 
 HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\MountPoints2: {83b90e46-4ec8-11eb-8004-e4aaea51fb48} - "D:\RunGame.exe" 
 HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\MountPoints2: {83b90ef3-4ec8-11eb-8004-e4aaea51fb48} - "E:\RunGame.exe" 
 HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\MountPoints2: {83b90f0c-4ec8-11eb-8004-e4aaea51fb48} - "G:\Setup.exe" 
 HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\MountPoints2: {83b90f5e-4ec8-11eb-8004-e4aaea51fb48} - "H:\RunGame.exe" 
S2 ACCSvc; "C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe" [X]
S3 QALSvc; "C:\Program Files\Acer\Quick Access Service\QALSvc.exe" [X]
 S3 QASvc; "C:\Program Files\Acer\Quick Access Service\QASvc.exe" [X]
 S3 UEIPSvc; "C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe" [X]
S3 rtkio; \??\C:\Users\Administrator\AppData\Local\Temp\rtkio64.sys [X] <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-521245042-1903983077-726699138-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\svobo\AppData\Local\Microsoft\OneDrive\19.232.1124.0012\amd64\FileSyncShell64.dll => No File
 CustomCLSID: HKU\S-1-5-21-521245042-1903983077-726699138-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\svobo\AppData\Local\Microsoft\OneDrive\19.232.1124.0012\amd64\FileSyncShell64.dll => No File
 CustomCLSID: HKU\S-1-5-21-521245042-1903983077-726699138-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\svobo\AppData\Local\Microsoft\OneDrive\19.232.1124.0012\amd64\FileSyncShell64.dll => No File
ContextMenuHandlers1_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
 ContextMenuHandlers4_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
 ContextMenuHandlers5_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
FirewallRules: [{D7344830-840E-4700-A28F-3E4EBD69D4D4}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
 FirewallRules: [{8A4D1B09-2CAF-4AA1-ADC7-556249192CB2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File



EmptyTemp:
Reboot:
End
•Ulozte vytvoreny TXT jako fixlist.txt
•Presunte vytvoreny fixlist vedle FRST

:arrow: Spustte znovu FRST.exe
•Kliknete na Fix
•Probehne oprava a vytvori log Fixlog.txt

:arrow: Restart PC a dejte mi sem fixlog.txt
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

center25
Návštěvník
Návštěvník
Příspěvky: 61
Registrován: 06 úno 2008 20:56

Re: Preventivní kontrola

#9 Příspěvek od center25 »

Omlouvám se za prodlevu v komunikaci.

Fix result of Farbar Recovery Scan Tool (x64) Version: 24-02-2021
Ran by svobo (28-02-2021 11:58:04) Run:1
Running from C:\Users\svobo\OneDrive\Plocha
Loaded Profiles: svobo
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\MountPoints2: {1dd217df-e51f-11ea-bff4-e4aaea51fb48} - "D:\AUTORUN.EXE"
HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\MountPoints2: {83b90e46-4ec8-11eb-8004-e4aaea51fb48} - "D:\RunGame.exe"
HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\MountPoints2: {83b90ef3-4ec8-11eb-8004-e4aaea51fb48} - "E:\RunGame.exe"
HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\MountPoints2: {83b90f0c-4ec8-11eb-8004-e4aaea51fb48} - "G:\Setup.exe"
HKU\S-1-5-21-521245042-1903983077-726699138-1001\...\MountPoints2: {83b90f5e-4ec8-11eb-8004-e4aaea51fb48} - "H:\RunGame.exe"
S2 ACCSvc; "C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe" [X]
S3 QALSvc; "C:\Program Files\Acer\Quick Access Service\QALSvc.exe" [X]
S3 QASvc; "C:\Program Files\Acer\Quick Access Service\QASvc.exe" [X]
S3 UEIPSvc; "C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe" [X]
S3 rtkio; \??\C:\Users\Administrator\AppData\Local\Temp\rtkio64.sys [X] <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-521245042-1903983077-726699138-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\svobo\AppData\Local\Microsoft\OneDrive\19.232.1124.0012\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-521245042-1903983077-726699138-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\svobo\AppData\Local\Microsoft\OneDrive\19.232.1124.0012\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-521245042-1903983077-726699138-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\svobo\AppData\Local\Microsoft\OneDrive\19.232.1124.0012\amd64\FileSyncShell64.dll => No File
ContextMenuHandlers1_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
ContextMenuHandlers4_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
ContextMenuHandlers5_.DEFAULT: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
FirewallRules: [{D7344830-840E-4700-A28F-3E4EBD69D4D4}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{8A4D1B09-2CAF-4AA1-ADC7-556249192CB2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File



EmptyTemp:
Reboot:
End
*****************

HKU\S-1-5-21-521245042-1903983077-726699138-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1dd217df-e51f-11ea-bff4-e4aaea51fb48} => removed successfully
HKU\S-1-5-21-521245042-1903983077-726699138-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{83b90e46-4ec8-11eb-8004-e4aaea51fb48} => removed successfully
HKU\S-1-5-21-521245042-1903983077-726699138-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{83b90ef3-4ec8-11eb-8004-e4aaea51fb48} => removed successfully
HKU\S-1-5-21-521245042-1903983077-726699138-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{83b90f0c-4ec8-11eb-8004-e4aaea51fb48} => removed successfully
HKU\S-1-5-21-521245042-1903983077-726699138-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{83b90f5e-4ec8-11eb-8004-e4aaea51fb48} => removed successfully
ACCSvc => service not found.
QALSvc => service not found.
QASvc => service not found.
UEIPSvc => service not found.
HKLM\System\CurrentControlSet\Services\rtkio => removed successfully
rtkio => service removed successfully
HKU\S-1-5-21-521245042-1903983077-726699138-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E} => not found
HKU\S-1-5-21-521245042-1903983077-726699138-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C} => not found
HKU\S-1-5-21-521245042-1903983077-726699138-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E} => not found
HKU\.DEFAULT\Software\Classes\*\ShellEx\ContextMenuHandlers\ FileSyncEx => removed successfully
HKU\.DEFAULT\SOFTWARE\Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => removed successfully
HKU\.DEFAULT\Software\Classes\Directory\ShellEx\ContextMenuHandlers\ FileSyncEx => removed successfully
HKU\.DEFAULT\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\ FileSyncEx => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D7344830-840E-4700-A28F-3E4EBD69D4D4}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8A4D1B09-2CAF-4AA1-ADC7-556249192CB2}" => not found

=========== EmptyTemp: ==========

BITS transfer queue => 9199616 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 47433402 B
Java, Flash, Steam htmlcache => 419810224 B
Windows/system/drivers => 6178787 B
Edge => 14336 B
Chrome => 1093388181 B
Firefox => 7320127 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 5132 B
NetworkService => 162552 B
svobo => 38389476 B

RecycleBin => 0 B
EmptyTemp: => 1.5 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 11:59:34 ====

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15191
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Preventivní kontrola

#10 Příspěvek od JaRon »

Ked je to po dlhej dobe, hlavne napis ci su nejake problemy?
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

center25
Návštěvník
Návštěvník
Příspěvky: 61
Registrován: 06 úno 2008 20:56

Re: Preventivní kontrola

#11 Příspěvek od center25 »

Při běžné práci aktuálně asi žádné problémy nepozoruji. Problém nastává, když spustím náročnější program např. Witcher 3 a teplota CPU vyskočí přes 90ºC. Větrák hučí jako o závod a PC jednoduše nezvládá :) Vím, že notebook není primárně na hry a vyšší teploty jsou celkem běžné, ale dřív jsem ten problém nepozoroval. Je možné, že se jedná spíše o hardwarový problém, ale chtěl jsem nejdříve vyloučit nějaký vadný software.

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15191
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Preventivní kontrola

#12 Příspěvek od JaRon »

Skus odinstalovat SW, ktory nepouzivas
Ak problem pretrva, vloz aktualne logyFRST
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

Odpovědět