Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu logu

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
vidlpa00
Návštěvník
Návštěvník
Příspěvky: 7
Registrován: 23 pro 2020 22:53

Prosím o kontrolu logu

#1 Příspěvek od vidlpa00 »

Zdravím,
moc Vás prosím o kontrolu logu. Poslední dobou začíná PC trochu zlobit.
Děkuji.


==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323056 2015-11-04] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [117352 2020-12-30] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [LenovoUtility] => C:\ProgramData\Lenovo\ImController\Plugins\IdeaOSDPackage\x64\utility.exe [911272 2017-07-27] (LENOVO -> Lenovo(beijing) Limited)
HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [694528 2015-08-25] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16686600 2016-08-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1460744 2016-08-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1460744 2016-08-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1460744 2016-08-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [DAX2_APP] => C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [829632 2016-06-24] (Dolby Laboratories, Inc. -> )
HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files\Opera\assistant\browser_assistant.exe [3154456 2020-11-25] (Opera Software AS -> Opera Software)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\Run: [AceStream] => C:\Users\Patrik\AppData\Roaming\ACEStream\engine\ace_engine.exe [27000 2016-05-19] (Innovative Digital Technologies -> )
HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\Run: [Steam] => D:\Steam\steam.exe [3412696 2021-02-13] (Valve -> Valve Corporation)
HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\Run: [Spotify Web Helper] => C:\Users\Patrik\AppData\Roaming\Spotify\SpotifyWebHelper.exe [782736 2018-06-14] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\Run: [PhotoMasterImportAgent] => C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe [675608 2016-09-22] (CyberLink Corp. -> CyberLink Corp.)
HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\Run: [EpicGamesLauncher] => D:\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32898104 2021-02-18] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\MountPoints2: {1fc658e7-e57b-11ea-b082-507b9d51ae25} - "F:\HiSuiteDownLoader.exe"
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {062C801A-E615-4C13-93DD-0F5BA194CD98} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\ed509146-4804-4272-a713-d36c94346024 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81840 2021-01-11] (Lenovo -> Lenovo Group Ltd.)
Task: {06447145-3E4A-4A9B-BC07-8A5277781A0F} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [16832 2015-07-08] (LENOVO -> Lenovo)
Task: {09CE4234-44ED-41A9-B2C4-59C08F495C1A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1225B912-D0CA-4584-94B1-B6F3AD392A0D} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\45d0e60a-5d76-4365-8511-1a74be966a88 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81840 2021-01-11] (Lenovo -> Lenovo Group Ltd.)
Task: {1D4E07A8-2335-4E77-85A0-D60E79EC0BB7} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe [85432 2015-09-11] (CyberLink Corp. -> CyberLink Corp.)
Task: {22ABC173-149B-4307-AC79-B011B97903D7} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {294D98F0-64EA-4DD6-B00C-C3D75CFE059F} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\e1d5ab5d-0b8f-489e-815e-91c0a8b31cdd => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81840 2021-01-11] (Lenovo -> Lenovo Group Ltd.)
Task: {367C2020-2358-4D32-A886-76DADA6E74F8} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {3BBCDAC5-C4FC-448E-8B36-C8190DBE0015} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.UpdateStatusService.exe [264016 2016-08-24] (LENOVO -> )
Task: {3FB5C36D-DFE9-4097-BA76-0429202E3007} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {40C8CC66-7E26-49C2-B363-D754514366DD} - System32\Tasks\{CB08D80D-52E2-429E-8C78-3E4DBA4F0DA4} => C:\WINDOWS\system32\pcalua.exe -a "D:\Riot Games\League of Legends\lol.launcher.exe" -d "D:\Riot Games\League of Legends\"
Task: {49EF1D49-9594-4DF7-9BB7-E8B6442F9607} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\fed55e5b-ece7-4550-bdaf-779e3c3e1dfc => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81840 2021-01-11] (Lenovo -> Lenovo Group Ltd.)
Task: {4EDB76B9-6A61-4E5E-A301-6E69CB19F970} - System32\Tasks\App Explorer => C:\Users\Patrik\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7949992 2020-09-04] (SweetLabs Inc. -> SweetLabs, Inc) <==== ATTENTION
Task: {5B0CE3DC-59C6-4DD0-8B1A-B3DD8179F1F6} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2020-09-17] (Avast Software s.r.o. -> Avast Software)
Task: {5C30ACAC-F806-4D8E-8DC1-D25983F8D87D} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [143888 2021-02-04] (Lenovo -> Lenovo Group Ltd.)
Task: {604C9FC0-4D75-4054-A7A9-12A93A68CD66} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {61775F7E-E808-46B5-8064-04938BD526F5} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10157392 2016-08-24] (LENOVO -> Lenovo)
Task: {62774579-D65C-487D-A253-1209D004EEFA} - System32\Tasks\Lenovo\REACHit Agent Update => C:\Program Files (x86)\Lenovo\REACHit\REACHitAgent.exe [676176 2016-05-18] (LENOVO -> Lenovo)
Task: {6A3716AA-F1E5-416F-9FCE-9DEFAA2E0BD1} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-3304136618-564951720-171062688-1001 => "C:\WINDOWS\system32\rundll32.exe" dfshim.dll,ShOpenVerbShortcut C:\Users\Patrik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo\Lenovo Service Bridge.appref-ms
Task: {71B3628D-5307-4665-8FFF-EA74C56277C1} - System32\Tasks\{6FD39674-D9FF-4E3E-A4A9-73A095CCF203} => C:\Windows\system32\pcalua.exe -a "D:\Riot Games\League of Legends\lol.launcher.exe" -d "D:\Riot Games\League of Legends\"
Task: {7418A275-2C22-4CE3-8487-7151103AA286} - System32\Tasks\TradeStation Backup - Monthly => C:\Program Files (x86)\TradeStation 10.0\Program\TSBackupRestore.exe [79744 2021-01-26] (TradeStation Technologies, Inc. -> TradeStation Technologies, Inc.) -> /Backup C:\Users\Patrik\Documents\TradeStation 10.0\Templates\Backup\Monthly.tsb
Task: {770F0836-BC0E-4D4F-B02D-BEADBB721B23} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7E512FA8-EA62-4D7E-A008-67E3EC3AFEC9} - System32\Tasks\Opera scheduled Autoupdate 1470744930 => C:\Program Files (x86)\Opera\launcher.exe [1528344 2019-12-19] (Opera Software AS -> Opera Software)
Task: {8062545C-28AD-4469-B6EF-70C5705AEC91} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {82273279-0A1A-40AF-BDDE-3EC86C2F8F76} - System32\Tasks\TradeStation Backup - Weekly => C:\Program Files (x86)\TradeStation 10.0\Program\TSBackupRestore.exe [79744 2021-01-26] (TradeStation Technologies, Inc. -> TradeStation Technologies, Inc.) -> /Backup C:\Users\Patrik\Documents\TradeStation 10.0\Templates\Backup\Weekly.tsb
Task: {82B7BFE9-7E06-4D25-B873-641F0D86F353} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {84C278E8-8AC3-44B5-8496-1125ED25DC2F} - System32\Tasks\Opera scheduled assistant Autoupdate 1582733237 => C:\Program Files\Opera\launcher.exe [1793688 2021-02-09] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files\Opera\assistant" $(Arg0)
Task: {8A5F1B61-30FC-403B-A69B-0F29DEA7CDD3} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8B607CBB-1215-49EA-A94A-61676F913D12} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\Windows\system32\rundll32.exe C:\Windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {8E1F0EBF-F207-44CB-BB17-7929BD64D1E4} - System32\Tasks\CyberLink\Photo Master Gadget startup => C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterWorker.exe [745240 2016-09-22] (CyberLink Corp. -> CyberLink Corp.)
Task: {9B1C8629-2A35-4E5E-930D-5949F8ED057C} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.5.27.0\ScheduleEventAction.exe [15768 2020-12-28] (Lenovo -> Lenovo Group Ltd.)
Task: {A3FD9448-EADA-43CD-9C30-AD2ED609A55B} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [677344 2021-02-05] (Mozilla Corporation -> Mozilla Foundation)
Task: {A5A3BFD9-31F6-45E9-8F00-3AD2B6615917} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {A9C27C82-2B2D-4CBD-A64F-FD85D43AFC75} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B7FF4A5C-562C-4976-B64F-1B1E3C40C4C7} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {B94341CE-3808-47D9-B5BF-6D97F3A21247} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1321296 2016-08-24] (LENOVO -> Lenovo)
Task: {BD95EFA3-7E70-4946-97AD-DF70A646A8E7} - System32\Tasks\Lenovo\REACHit Agent Startup => C:\Program Files (x86)\Lenovo\REACHit\REACHitAgent.exe [676176 2016-05-18] (LENOVO -> Lenovo)
Task: {C1055D51-5575-4C65-AC0F-30A81EC4EE42} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [61872 2021-01-11] (Lenovo -> Lenovo Group Ltd.)
Task: {C1959A77-7EB2-4EBA-8651-44E74F74D74D} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CD9DBB33-54C8-41C1-BC09-C343DE548ED2} - System32\Tasks\Opera scheduled Autoupdate 1576826483 => C:\Program Files\Opera\launcher.exe [1793688 2021-02-09] (Opera Software AS -> Opera Software)
Task: {CE327FEB-8599-40BB-AC20-C8BCE2C81A9E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {D2601779-5A19-435A-B35C-D57E18667598} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [10157392 2016-08-24] (LENOVO -> Lenovo)
Task: {D27B3597-4AAA-4009-A0CE-8749EFF407E5} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4621920 2020-12-30] (Avast Software s.r.o. -> AVAST Software)
Task: {D51A2986-DF04-4EB0-90CD-FECF18347539} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D89A19EF-C624-447A-8224-8A31E95829BB} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3301176 2020-10-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EC51E28A-BB39-43E6-8311-533F0AEF4F5D} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {F785AA40-3ADB-4EDF-A51C-30AA39C8F803} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {F79765C3-DAF0-468C-8A3D-CDCA65A663B7} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_pepper.exe [1499704 2020-12-09] (Adobe Inc. -> Adobe)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\TradeStation Backup - Monthly.job => C:\Program Files (x86)\TradeStation 10.0\Program\TSBackupRestore.exeQ/Backup C:\Users\Patrik\Documents\TradeStation 10.0\Templates\Backup\Monthly.tsb
Task: C:\WINDOWS\Tasks\TradeStation Backup - Weekly.job => C:\Program Files (x86)\TradeStation 10.0\Program\TSBackupRestore.exeP/Backup C:\Users\Patrik\Documents\TradeStation 10.0\Templates\Backup\Weekly.tsb

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.1.2 10.0.1.6 192.168.1.1
Tcpip\..\Interfaces\{23670072-1be9-4104-9e5d-af9b395e331d}: [DhcpNameServer] 10.0.1.2 10.0.1.6 192.168.1.1
Tcpip\..\Interfaces\{8932faff-0fd9-428a-87ef-c20b04024c34}: [DhcpNameServer] 8.8.8.8

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Patrik\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-10]

FireFox:
========
FF DefaultProfile: 5uh8ecrd.default
FF ProfilePath: C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\5uh8ecrd.default [2020-03-17]
FF ProfilePath: C:\Users\Patrik\AppData\Roaming\Mozilla\Firefox\Profiles\qrzvs1yg.default-release [2021-02-18]
FF HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\Patrik\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi
FF Extension: (Ace Script) - C:\Users\Patrik\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi [2018-11-26]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-08-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-08-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> D:\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> D:\Microsoft Office\Office14\NPSPWRAP.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3304136618-564951720-171062688-1001: @acestream.net/acestreamplugin,version=3.1.1 -> C:\Users\Patrik\AppData\Roaming\ACEStream\player\npace_plugin.dll [2015-08-06] (Innovative Digital Technologies -> Innovative Digital Technologies)

Chrome:
=======
CHR HKU\S-1-5-21-3304136618-564951720-171062688-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo]

Opera:
=======
OPR Profile: C:\Users\Patrik\AppData\Roaming\Opera Software\Opera Stable [2021-02-18]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Patrik\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-02-10]
OPR Extension: (Adblock Plus - free ad blocker) - C:\Users\Patrik\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2021-02-01]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
R2 ApHidMonitorService; C:\Program Files\Apoint2K\HidMonitorSvc.exe [80176 2015-08-25] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8477080 2020-12-30] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [621728 2020-12-30] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [351848 2020-12-30] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [58048 2020-12-30] (Avast Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8577760 2019-03-25] (BattlEye Innovations e.K. -> )
S2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [688992 2017-02-27] (LENOVO -> Lenovo)
R2 DAX2API; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [154816 2016-07-18] (Dolby Laboratories, Inc. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2020-09-17] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [287720 2020-10-19] (NVIDIA Corporation -> NVIDIA)
R2 GDCAgent; C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe [1155512 2015-07-30] (LENOVO -> Lenovo)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81840 2021-01-11] (Lenovo -> Lenovo Group Ltd.)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.5.27.0\LenovoVantageService.exe [20880 2020-12-28] (Lenovo -> Lenovo Group Ltd.)
S3 LSC.Services.SystemService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273232 2016-08-24] (LENOVO -> Lenovo)
S3 Microsoft SharePoint Workspace Audit Service; D:\Microsoft Office\Office14\GROOVE.EXE [30963576 2010-01-21] (Microsoft Corporation -> Microsoft Corporation)
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2533952 2021-02-02] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [3479624 2021-02-02] (Electronic Arts, Inc. -> Electronic Arts)
S3 Rockstar Service; D:\rockstar\Launcher\RockstarService.exe [1711232 2020-07-08] (Rockstar Games, Inc. -> Rockstar Games)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_faee606ef506c344\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_faee606ef506c344\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [36792 2020-12-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [208672 2020-12-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [332880 2020-12-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [247888 2020-12-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [97360 2020-12-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16832 2020-12-30] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42424 2020-12-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [176384 2020-12-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [522480 2020-12-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [108928 2020-12-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84496 2020-12-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851256 2020-12-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [468888 2021-01-09] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [214808 2021-01-07] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [324904 2021-01-07] (Avast Software s.r.o. -> AVAST Software)
R3 BHTPCRDR; C:\WINDOWS\System32\drivers\bhtpcrdr.sys [173432 2016-08-11] (BayHub Technology Inc. -> BayHubTech/O2Micro)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 f5ipfw; C:\WINDOWS\system32\drivers\urfltv64.sys [44440 2020-08-26] (F5 Networks Inc -> F5 Networks, Inc.)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 urvpndrv; C:\WINDOWS\System32\drivers\covpnv64.sys [57736 2019-09-23] (F5 Networks Inc -> F5 Networks, Inc.)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [211704 2018-01-15] (Oracle Corporation -> Oracle Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] (CyberLink -> "CyberLink)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

Error Reading file: "C:\Users\Patrik\Downloads\Fifa16.exe"
2021-02-18 20:48 - 2021-02-18 20:49 - 000026370 ____C C:\Users\Patrik\Desktop\FRST.txt
2021-02-18 20:48 - 2021-02-18 20:49 - 000000000 ____D C:\FRST
2021-02-18 20:47 - 2021-02-18 20:47 - 002298368 _____ (Farbar) C:\Users\Patrik\Desktop\FRST64.exe
2021-02-18 14:52 - 2021-02-18 17:50 - 000001498 ____C C:\Users\Patrik\Desktop\Trader Workstation.lnk
2021-02-18 10:21 - 2021-02-18 10:22 - 000000000 ___DC C:\Users\Patrik\Desktop\bordel
2021-02-15 16:15 - 2021-02-15 16:28 - 1832847360 _____ C:\Users\Patrik\Downloads\RocknRolla (2008) CZ dabing.avi
2021-02-11 12:44 - 2021-02-11 12:59 - 2718302208 _____ C:\Users\Patrik\Downloads\PS_IMAGO_PRO_7.0.iso
2021-02-10 04:25 - 2021-02-10 04:25 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-02-10 04:25 - 2021-02-10 04:25 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-02-10 04:25 - 2021-02-10 04:25 - 001314112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-02-10 04:25 - 2021-02-10 04:25 - 000231232 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-02-10 04:25 - 2021-02-10 04:25 - 000010892 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-02-05 19:44 - 2021-02-05 19:44 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-02-05 19:05 - 2021-02-09 07:03 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-01-31 20:43 - 2021-01-11 21:13 - 000107952 _____ (Lenovo Group Ltd.) C:\WINDOWS\system32\WudfUpdate_02000.dll
2021-01-31 11:40 - 2021-01-31 11:40 - 000000000 ____D C:\Users\Patrik\AppData\Local\Agora
2021-01-31 11:39 - 2021-01-31 11:39 - 000000000 ___DC C:\Users\Patrik\AppData\LocalLow\Confer-O-Matic
2021-01-30 21:25 - 2021-01-23 09:12 - 000613536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2021-01-30 21:24 - 2021-01-23 09:15 - 001435864 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-01-30 21:24 - 2021-01-23 09:15 - 001435864 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-01-30 21:24 - 2021-01-23 09:14 - 001855192 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-01-30 21:24 - 2021-01-23 09:14 - 001855192 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-01-30 21:24 - 2021-01-23 09:14 - 001453728 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-01-30 21:24 - 2021-01-23 09:14 - 001193120 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-01-30 21:24 - 2021-01-23 09:14 - 001094880 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-01-30 21:24 - 2021-01-23 09:14 - 001094880 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-01-30 21:24 - 2021-01-23 09:14 - 000948952 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-01-30 21:24 - 2021-01-23 09:14 - 000948952 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-01-30 21:24 - 2021-01-23 09:12 - 001512096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2021-01-30 21:24 - 2021-01-23 09:12 - 001164960 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2021-01-30 21:24 - 2021-01-23 09:12 - 000689312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2021-01-30 21:24 - 2021-01-23 09:12 - 000680096 _____ C:\WINDOWS\system32\nvofapi64.dll
2021-01-30 21:24 - 2021-01-23 09:12 - 000672928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2021-01-30 21:24 - 2021-01-23 09:12 - 000558240 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2021-01-30 21:24 - 2021-01-23 09:12 - 000547488 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2021-01-30 21:24 - 2021-01-23 09:11 - 008262304 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2021-01-30 21:24 - 2021-01-23 09:11 - 007392928 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2021-01-30 21:24 - 2021-01-23 09:11 - 004611744 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2021-01-30 21:24 - 2021-01-23 09:11 - 002731168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2021-01-30 21:24 - 2021-01-23 09:11 - 002103456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2021-01-30 21:24 - 2021-01-23 09:11 - 001589408 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2021-01-30 21:24 - 2021-01-23 09:11 - 000813216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2021-01-30 21:24 - 2021-01-23 09:11 - 000657056 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2021-01-30 21:24 - 2021-01-23 09:11 - 000446624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2021-01-30 21:24 - 2021-01-23 09:10 - 006070848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2021-01-30 21:24 - 2021-01-23 09:10 - 000850080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2021-01-30 21:24 - 2021-01-22 23:59 - 000084264 _____ C:\WINDOWS\system32\nvinfo.pb
2021-01-29 15:17 - 2021-01-29 15:21 - 384291793 _____ C:\Users\Patrik\Downloads\rock-for-people-IN-THE-GAME-Win.zip
2021-01-21 22:44 - 2021-01-21 22:44 - 000157107 _____ C:\Users\Patrik\Downloads\U7767433_20210101_20210120.pdf
2021-01-21 20:03 - 2021-01-21 20:03 - 000023078 _____ C:\Users\Patrik\Downloads\Rozmlouvadla.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-02-18 20:48 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-02-18 20:48 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-02-18 20:28 - 2016-08-09 18:01 - 000000000 ____D C:\Program Files\CCleaner
2021-02-18 20:22 - 2020-11-25 21:39 - 000003318 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6b93d959f973f
2021-02-18 20:22 - 2020-11-12 22:52 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-02-18 20:22 - 2020-11-12 22:52 - 000003306 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1576826483
2021-02-18 20:22 - 2020-11-12 22:52 - 000003194 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-02-18 20:22 - 2020-11-12 22:52 - 000002216 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-02-18 20:22 - 2020-11-12 22:52 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2021-02-18 20:22 - 2020-09-12 10:30 - 000000000 ____D C:\Users\Patrik\AppData\Roaming\TS3Client
2021-02-18 18:44 - 2018-09-30 16:40 - 000000000 ___DC C:\Users\Patrik\AppData\LocalLow\Playdek
2021-02-18 18:41 - 2020-03-17 18:11 - 000000000 ___DC C:\Users\Patrik\AppData\LocalLow\Mozilla
2021-02-18 18:35 - 2020-03-17 18:11 - 000000000 ____D C:\ProgramData\Mozilla
2021-02-18 18:15 - 2020-03-25 19:25 - 000000000 ____D C:\Users\Patrik\AppData\Roaming\Telegram Desktop
2021-02-18 17:50 - 2020-03-23 13:27 - 000000000 ___DC C:\Users\Patrik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trader Workstation
2021-02-18 17:50 - 2020-03-23 13:27 - 000000000 ____D C:\Jts
2021-02-18 17:40 - 2018-04-04 20:17 - 000000000 ___DC C:\Users\Patrik\AppData\Local\AVAST Software
2021-02-18 17:24 - 2016-08-09 13:17 - 000000000 ____D C:\ProgramData\AVAST Software
2021-02-18 17:16 - 2020-11-12 22:52 - 001694952 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-02-18 17:16 - 2019-12-07 15:41 - 000717846 _____ C:\WINDOWS\system32\perfh005.dat
2021-02-18 17:16 - 2019-12-07 15:41 - 000144988 _____ C:\WINDOWS\system32\perfc005.dat
2021-02-18 17:12 - 2017-07-02 10:42 - 000000000 ____D C:\ProgramData\NVIDIA
2021-02-18 17:11 - 2016-09-30 13:00 - 000000000 ___DC C:\Users\Patrik\AppData\Roaming\Origin
2021-02-18 17:11 - 2016-08-10 16:50 - 000000000 ___DC C:\Users\Patrik\AppData\Local\CrashDumps
2021-02-18 17:10 - 2016-10-12 21:26 - 000000000 ____D C:\Program Files (x86)\Origin Games
2021-02-18 17:10 - 2016-09-30 13:01 - 000000000 ___DC C:\Users\Patrik\AppData\Local\Origin
2021-02-18 17:10 - 2016-09-30 12:48 - 000000000 ____D C:\ProgramData\Origin
2021-02-18 17:09 - 2020-11-12 22:52 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-02-18 17:09 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-02-18 17:09 - 2016-08-09 12:46 - 000000000 __SHD C:\Users\Patrik\IntelGraphicsProfiles
2021-02-18 17:08 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-02-18 14:50 - 2020-04-07 22:41 - 000002290 ___HC C:\Users\Patrik\Documents\Default.rdp
2021-02-18 14:21 - 2020-11-12 22:42 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-02-18 14:01 - 2020-04-27 07:42 - 000000822 _____ C:\WINDOWS\system32\Drivers\etc\hosts.bak
2021-02-18 10:22 - 2019-01-26 12:16 - 000000000 ___DC C:\Users\Patrik\Desktop\TR42
2021-02-18 10:22 - 2016-12-04 10:56 - 000000000 __RDC C:\Users\Patrik\Desktop\programy
2021-02-18 10:22 - 2016-10-17 10:18 - 000000000 ___DC C:\Users\Patrik\Desktop\hry
2021-02-18 10:20 - 2020-11-06 16:34 - 000000000 ___DC C:\Users\Patrik\Desktop\Homerun master
2021-02-18 07:49 - 2020-11-12 22:52 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-02-18 07:48 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-02-18 07:48 - 2016-09-02 16:55 - 000000000 ___DC C:\Users\Patrik\AppData\Local\ElevatedDiagnostics
2021-02-17 06:58 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-02-17 06:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-02-16 06:33 - 2019-12-20 08:21 - 000000000 ____D C:\Program Files\Opera
2021-02-15 15:52 - 2017-07-02 09:45 - 000001120 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2021-02-14 00:19 - 2020-08-02 23:42 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-02-12 17:44 - 2020-11-12 22:42 - 000501864 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-02-12 17:43 - 2020-11-12 22:21 - 000000000 ____D C:\WINDOWS\system32\Drivers\en-GB
2021-02-12 17:43 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-02-12 17:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2021-02-12 17:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-02-12 17:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-02-12 17:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Keywords
2021-02-12 17:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-02-12 17:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-02-12 17:43 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-02-12 17:43 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-02-12 17:43 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2021-02-12 07:41 - 2020-11-12 22:42 - 000008192 ___SH C:\DumpStack.log.tmp
2021-02-10 04:28 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-02-10 04:18 - 2020-08-24 22:33 - 000000000 ___HD C:\$WinREAgent
2021-02-10 04:16 - 2016-08-09 13:09 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-02-10 04:12 - 2016-08-09 13:09 - 130141752 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-02-09 18:59 - 2020-12-12 16:12 - 000012010 ____C C:\Users\Patrik\Desktop\tips.xlsx
2021-02-09 18:25 - 2020-11-01 09:59 - 000000000 ____D C:\Users\Patrik\AppData\Roaming\TC2000v16
2021-02-09 07:29 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2021-02-09 07:03 - 2020-03-17 18:11 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-02-08 17:15 - 2016-11-16 09:58 - 000462657 _____ C:\WINDOWS\system32\InstallUtil.InstallLog
2021-02-08 17:15 - 2016-03-31 12:23 - 000000000 ____D C:\ProgramData\Lenovo
2021-02-05 19:44 - 2020-03-17 18:11 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-02-01 07:08 - 2017-11-22 20:36 - 000000000 ___DC C:\Users\Patrik\AppData\Local\Packages
2021-01-30 22:07 - 2021-01-17 22:11 - 000000000 ____D C:\Users\Patrik\AppData\Local\Injustice2
2021-01-27 21:32 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-01-23 09:10 - 2020-09-28 07:52 - 007116680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll

==================== Files in the root of some directories ========

2020-11-05 17:04 - 2020-11-05 17:04 - 000000320 _____ () C:\Users\Patrik\AppData\Roaming\SEC7906600.trad
2016-11-17 12:25 - 2020-04-01 19:15 - 000007622 ____C () C:\Users\Patrik\AppData\Local\Resmon.ResmonCfg
2017-03-01 13:36 - 2019-05-14 18:14 - 000107520 ____C () C:\Users\Patrik\AppData\Local\WebpageIcons.db
2018-07-04 10:35 - 2018-07-04 10:35 - 000000000 ____C () C:\Users\Patrik\AppData\Local\{FAE32731-24E8-48A0-B078-653A12B81802}

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================



Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-02-2021 01
Ran by Patrik (18-02-2021 20:51:20)
Running from C:\Users\Patrik\Desktop
Windows 10 Home Version 20H2 19042.804 (X64) (2020-11-12 21:52:10)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3304136618-564951720-171062688-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3304136618-564951720-171062688-503 - Limited - Disabled)
Guest (S-1-5-21-3304136618-564951720-171062688-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3304136618-564951720-171062688-1005 - Limited - Enabled)
Patrik (S-1-5-21-3304136618-564951720-171062688-1001 - Administrator - Enabled) => C:\Users\Patrik
WDAGUtilityAccount (S-1-5-21-3304136618-564951720-171062688-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

A Plague Tale Innocence v.1.07 (HKLM-x32\...\A Plague Tale Innocence_is1) (Version: - )
Ace Stream Media 3.1.1 (HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\AceStream) (Version: 3.1.1 - Ace Stream Media) <==== ATTENTION
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.465 - Adobe)
Aktualizace NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 8.201.1611.252 - Alps Electric)
Anaconda2 2019.03 (Python 2.7.16 64-bit) (HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\Anaconda2 2019.03 (Python 2.7.16 64-bit)) (Version: 2019.03 - Anaconda, Inc.)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{bc883058-299e-461f-8e52-4f1dbb355f86}) (Version: 19.0.1 - Intel Corporation)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.10.2442 - Avast Software)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BayHubTech Flash Memory Card Windows Driver (HKLM\...\{357682C3-2295-45C5-B7DD-8109E66656EC}) (Version: 3.4.00.30 - BayHub Technology LTD.) Hidden
BayHubTech Flash Memory Card Windows Driver (HKLM-x32\...\InstallShield_{357682C3-2295-45C5-B7DD-8109E66656EC}) (Version: 3.4.00.30 - BayHub Technology LTD.)
BIG-IP Edge Client Components (All Users) (HKLM-x32\...\F5 Networks Client Components) (Version: 72.2021.0107.1217 - F5 Networks, Inc.)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.71.1081 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.76 - Piriform)
CPUID HWMonitor 1.42 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.42 - CPUID, Inc.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.5521 - CyberLink Corp.)
Dolby Audio X2 Windows API SDK (HKLM\...\{2A027A37-B09B-44FB-B1C9-2DD6BA0014E8}) (Version: 0.7.2.61 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{D765CF7F-14F9-4C80-B06C-10E68F10EBCC}) (Version: 0.7.2.62 - Dolby Laboratories, Inc.)
Epic Games Launcher (HKLM-x32\...\{1D4EB18B-0FEE-444E-B4D1-6F2CFBC363E6}) (Version: 1.1.267.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Football Manager 2016 version 16.3.0 (HKLM-x32\...\Football Manager 2016_is1) (Version: 16.3.0 - Ubisoft)
IBM SPSS Modeler 18.2.1 (HKLM\...\{99B28026-804E-4213-AD18-D0F84F0A78CB}) (Version: 18.2.1.0 - IBM Corp.)
IBM SPSS Statistics 26 (HKLM\...\{1AC22BAE-DC13-4991-9910-AE3743A4592D}) (Version: 26.0.0.0 - IBM Corp)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1177 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4474 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.8.0.1042 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{97F4CEAE-8F2B-4012-93CC-75428373214D}) (Version: 19.00.1621.3340 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{fb610cea-ba50-4d4b-a717-cf025419035c}) (Version: 10.1.1.13 - Intel(R) Corporation) Hidden
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
K-Lite Codec Pack 12.6.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.6.0 - KLCP)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Lenovo App Explorer (HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\Host App Service) (Version: 0.273.4.172 - SweetLabs for Lenovo) <==== ATTENTION
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.5708 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.5708 - CyberLink Corp.)
Lenovo Photo Master (HKLM-x32\...\{BC94C56A-3649-420C-8756-2ADEBE399D33}) (Version: 2.5.5720.01 - CyberLink Corp.)
Lenovo PowerDVD12 (HKLM-x32\...\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5709.60 - CyberLink Corp.) Hidden
Lenovo PowerDVD12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5709.60 - CyberLink Corp.)
Lenovo Product Demo (HKLM-x32\...\{AF211959-175F-4052-8404-DD0FDBB3540B}) (Version: 1.0.5 - Lenovo)
Lenovo QuickOptimizer (HKLM\...\{8D2C871B-1B9F-45AC-9C43-2BB18089CDFA}) (Version: 1.0.019.00 - Lenovo)
Lenovo Service Bridge (HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\dda9ca0b023f4c56) (Version: 1.6.4.0 - Lenovo)
Lenovo Solution Center (HKLM\...\{558E50EE-5E2D-479A-A455-8A826191583B}) (Version: 3.3.004.00 - Lenovo)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 3.5.27.0 - Lenovo Group Ltd.)
MetaTrader 4 Admiral Markets (HKLM-x32\...\MetaTrader 4 Admiral Markets) (Version: 4.00 - MetaQuotes Software Corp.)
Metric Collection SDK (HKLM-x32\...\{DDAA788F-52E6-44EA-ADB8-92837B11BF26}) (Version: 1.1.0012.00 - Lenovo Group Limited) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 88.0.705.68 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.141.59 - )
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4734.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\OneDriveSetup.exe) (Version: 20.169.0823.0008 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 x64 ENU (HKLM\...\{8424B163-D1E0-48B7-88A2-C7A61767B3D7}) (Version: 4.0.8482.1 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{97238E8A-4919-4A1E-965A-C6C36938F4CE}) (Version: 2.68.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
Mozilla Firefox 85.0.1 (x64 cs) (HKLM\...\Mozilla Firefox 85.0.1 (x64 cs)) (Version: 85.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 74.0 - Mozilla)
NARUTO SHIPPUDEN Ultimate Ninja STORM 4 (HKLM-x32\...\NARUTO SHIPPUDEN Ultimate Ninja STORM 4_is1) (Version: - )
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.27 - NVIDIA Corporation) Hidden
NVIDIA FrameView SDK 1.1.4923.29214634 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29214634 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.5.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.5.70 - NVIDIA Corporation)
NVIDIA GeForce NOW 2.0.26.108 (HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GeforceNOW) (Version: 2.0.26.108 - NVIDIA Corporation)
NVIDIA Install Application (HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer) (Version: 2.1002.344.0 - NVIDIA Corporation) Hidden
NVIDIA Ovladače grafiky 461.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 461.40 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NvModuleTracker (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Version: 6.14.24033.38719 - NVIDIA Corporation) Hidden
OpenOffice 4.1.5 (HKLM-x32\...\{2FEA9841-64DE-4FA5-A36F-1CD23E2790EB}) (Version: 4.15.9789 - Apache Software Foundation)
Opera Stable 65.0.3467.78 (HKLM-x32\...\Opera 65.0.3467.78) (Version: 65.0.3467.78 - Opera Software)
Opera Stable 74.0.3911.107 (HKLM-x32\...\Opera 74.0.3911.107) (Version: 74.0.3911.107 - Opera Software)
Oracle VM VirtualBox 5.2.6 (HKLM\...\{EA9602E3-0184-45B9-9E15-028776CD7A6E}) (Version: 5.2.6 - Oracle Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.92.46430 - Electronic Arts, Inc.)
PC Off 1.0 (HKLM-x32\...\PC Off_is1) (Version: - Marek Göllner)
PowerISO (HKLM-x32\...\PowerISO) (Version: 6.6 - Power Software Ltd)
R for Windows 3.3.2 (HKLM\...\R for Windows 3.3.2_is1) (Version: 3.3.2 - R Core Team)
REACHit (HKLM-x32\...\{4532E4C5-C84D-4040-A044-ECFCC5C6995B}) (Version: 2.5.005.12 - Lenovo)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.9.422.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7898 - Realtek Semiconductor Corp.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.25.260 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.5.6 - Rockstar Games)
RStudio (HKLM-x32\...\RStudio) (Version: 1.0.136 - RStudio)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Spotify (HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\Spotify) (Version: 1.0.80.474.gef6b503e - Spotify AB)
STAR WARS™ Battlefront™ II (HKLM-x32\...\{8a882ce0-0c0b-4eb2-850c-28ebadab4f50}) (Version: 1.1.8.16162 - Electronic Arts)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
tastyworks (HKLM\...\{A94C472C-0B21-3211-9067-F9C8D7F43DFA}) (Version: 1.4.1 - tastyworks, inc.)
TC2000 v20 (HKLM-x32\...\{A6A526E4-A376-4772-897D-508FB2473C91}) (Version: 1.0.0 - Worden Brothers, Inc.) Hidden
TC2000 v20 (HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\TC2000 v20 1.0.0) (Version: 1.0.0 - Worden Brothers, Inc.)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.3 - TeamSpeak Systems GmbH)
Telegram Desktop version 2.5.8 (HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 2.5.8 - Telegram FZ-LLC)
TeXstudio 2.10.4 (HKLM-x32\...\TeXstudio_is1) (Version: 2.10.4 - Benito van der Zander)
The Witcher 3 - Wild Hunt (HKLM-x32\...\1495134320_is1) (Version: 2.0.0.51 - GOG.com)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.12 - Ghisler Software GmbH)
Trader Workstation (HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\5889-6375-8446-2021) (Version: beta (983.0j) 20210218 10:05:55 - Interactive Brokers LLC)
TradeStation (HKLM-x32\...\{796875E0-B3AF-4EEE-8BC6-63F8EDF75B9B}) (Version: 10.00.01.922 - TradeStation Technologies)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 32.1 - Ubisoft)
User Manuals (HKLM-x32\...\{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 4.0.0.1 - Lenovo) Hidden
User Manuals (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 4.0.0.1 - Lenovo)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1-3) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
WhatsApp (HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\WhatsApp) (Version: 0.4.2088 - WhatsApp)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\ZoomUMX) (Version: 5.4.3 (58891.1115) - Zoom Video Communications, Inc.)

Packages:
=========
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-01-29] (Microsoft Corporation)
Lenovo Settings -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoSettings_3.177.0.0_x86__4642shxvsv8s2 [2017-12-22] (LENOVO INCORPORATED.)
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2101.29.0_x64__k1h2ywk1493x8 [2021-01-22] (LENOVO INC.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1252.0_x64__8wekyb3d8bbwe [2021-02-01] (Microsoft Studios) [MS Ad]
MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.960.0_x64__56jybvy8sckqj [2021-01-30] (NVIDIA Corp.)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-08] (Twitter Inc.)
Uživatelský portál Lenovo -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoID_2.0.37.0_x86__4642shxvsv8s2 [2017-04-25] (LENOVO INCORPORATED.)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6723984 2010-01-21] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - D:\Microsoft Office\Office14\GROOVEEX.DLL [4222864 2010-01-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-12-30] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-12-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-12-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2015-07-21] (CyberLink Corp. -> Cyberlink)
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => D:\PowerISO\PWRISOSH.DLL [2016-05-25] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers1: [WinRAR] -> [CC]{B41DB860-64E4-11D2-9906-E49FADC173CA} => -> No File
ContextMenuHandlers1: [WinRAR32] -> [CC]{B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> No File
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2015-07-21] (CyberLink Corp. -> Cyberlink)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-12-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => D:\PowerISO\PWRISOSH.DLL [2016-05-25] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_1a33d2f73651d989\igfxDTCM.dll [2018-05-07] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_faee606ef506c344\nvshext.dll [2021-01-23] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-12-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => D:\PowerISO\PWRISOSH.DLL [2016-05-25] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Patrik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda2 (64-bit)\Anaconda Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> "/K" D:\Anaconda2\Scripts\activate.bat D:\Anaconda2

==================== Loaded Modules (Whitelisted) =============

2017-01-26 17:01 - 2016-09-22 07:11 - 000081920 _____ () [File not signed] C:\Program Files (x86)\Lenovo\Lenovo Photo Master\koan\_ctypes.pyd
2018-05-13 21:11 - 2020-03-04 22:03 - 000015360 _____ () [File not signed] D:\Origin\libEGL.DLL
2018-05-13 21:11 - 2020-03-04 22:03 - 003090944 _____ () [File not signed] D:\Origin\libGLESv2.dll
2017-01-26 17:01 - 2016-09-22 07:06 - 001732608 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Lenovo\Lenovo Photo Master\subsys\PyImage\ijl20.dll
2017-01-26 17:01 - 2016-09-22 07:06 - 000348160 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Lenovo\Lenovo Photo Master\MSVCR71.dll
2020-11-12 22:45 - 2020-11-12 22:45 - 001093120 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80U.DLL
2016-11-29 22:34 - 2016-09-26 11:00 - 001616384 _____ (MPC-HC Team) [File not signed] C:\Program Files (x86)\K-Lite Codec Pack\Filters\DirectVobSub\vsfilter.dll
2017-01-26 17:01 - 2016-09-22 07:11 - 002113536 _____ (Python Software Foundation) [File not signed] C:\Program Files (x86)\Lenovo\Lenovo Photo Master\koan\python25.dll
2021-02-08 17:15 - 2020-05-30 15:04 - 001638912 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files (x86)\Lenovo\VantageService\3.5.27.0\x64\SQLite.Interop.dll
2020-12-21 20:09 - 2020-05-30 14:58 - 001280000 _____ (Robert Simpson, et al.) [File not signed] C:\ProgramData\Lenovo\iMController\Plugins\GenericMessagingPlugin\x86\x86\SQLite.Interop.dll
2020-06-19 17:13 - 2020-04-09 08:17 - 000944840 _____ (SQLite Development Team) [File not signed] C:\ProgramData\Lenovo\iMController\Plugins\LenovoWiFiSecurityPlugin\x86\x86\e_sqlite3.dll
2021-02-18 16:49 - 2020-03-04 22:03 - 000002560 _____ (The ICU Project) [File not signed] D:\Origin\icudt58.dll
2021-02-18 16:49 - 2020-03-04 22:03 - 001252864 _____ (The ICU Project) [File not signed] D:\Origin\icuuc58.dll
2018-05-13 21:11 - 2020-03-16 14:05 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:\Origin\LIBEAY32.dll
2018-05-13 21:11 - 2020-03-16 14:06 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:\Origin\ssleay32.dll
2021-02-18 16:49 - 2020-03-04 22:03 - 000030208 _____ (The Qt Company Ltd) [File not signed] D:\Origin\imageformats\qgif.dll
2021-02-18 16:49 - 2020-03-04 22:03 - 000032768 _____ (The Qt Company Ltd) [File not signed] D:\Origin\imageformats\qico.dll
2021-02-18 16:49 - 2020-03-04 22:03 - 000256512 _____ (The Qt Company Ltd) [File not signed] D:\Origin\imageformats\qjpeg.dll
2021-02-18 16:49 - 2020-03-04 22:03 - 000026112 _____ (The Qt Company Ltd) [File not signed] D:\Origin\imageformats\qtga.dll
2021-02-18 16:49 - 2020-03-04 22:03 - 000305152 _____ (The Qt Company Ltd) [File not signed] D:\Origin\imageformats\qtiff.dll
2021-02-18 16:49 - 2020-03-04 22:03 - 000025600 _____ (The Qt Company Ltd) [File not signed] D:\Origin\imageformats\qwbmp.dll
2018-05-13 21:11 - 2020-03-04 22:03 - 000278016 _____ (The Qt Company Ltd) [File not signed] D:\Origin\mediaservice\dsengine.dll
2018-05-13 21:11 - 2020-03-04 22:03 - 001611264 _____ (The Qt Company Ltd) [File not signed] D:\Origin\platforms\qwindows.dll
2021-02-18 16:49 - 2020-03-04 22:03 - 005487104 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5Core.dll
2021-02-18 16:49 - 2020-03-04 22:03 - 005841920 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5Gui.dll
2021-02-18 16:49 - 2020-03-04 22:03 - 000709120 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5Multimedia.dll
2021-02-18 16:49 - 2020-03-04 22:03 - 001179136 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5Network.dll
2021-02-18 16:49 - 2020-03-04 22:03 - 000207360 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5Positioning.dll
2021-02-18 16:49 - 2020-03-04 22:03 - 000310272 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5PrintSupport.dll
2021-02-18 16:49 - 2020-03-04 22:03 - 003513344 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5Qml.dll
2021-02-18 16:49 - 2020-03-04 22:03 - 003390976 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5Quick.dll
2021-02-18 16:49 - 2020-03-04 22:03 - 000068096 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5QuickWidgets.dll
2021-02-18 16:49 - 2020-03-04 22:03 - 000045568 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5TextToSpeech.dll
2021-02-18 16:49 - 2020-03-04 22:03 - 054071296 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5WebEngineCore.dll
2021-02-18 16:49 - 2020-03-04 22:03 - 000211456 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5WebEngineWidgets.dll
2021-02-18 16:49 - 2020-03-04 22:03 - 000116224 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5WebChannel.dll
2021-02-18 16:49 - 2020-03-04 22:03 - 000146432 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5WebSockets.dll
2021-02-18 16:49 - 2020-03-04 22:03 - 005089792 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5Widgets.dll
2021-02-18 16:49 - 2020-03-04 22:03 - 000184832 _____ (The Qt Company Ltd) [File not signed] D:\Origin\Qt5Xml.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-3304136618-564951720-171062688-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo15.msn.com/?pc=LCTE
HKU\S-1-5-21-3304136618-564951720-171062688-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo15.msn.com/?pc=LCTE
HKU\S-1-5-21-3304136618-564951720-171062688-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
SearchScopes: HKU\S-1-5-21-3304136618-564951720-171062688-1001 -> DefaultScope {AD75F51E-C2CB-4A87-8F6F-23298E51BDB2} URL =
SearchScopes: HKU\S-1-5-21-3304136618-564951720-171062688-1001 -> {AD75F51E-C2CB-4A87-8F6F-23298E51BDB2} URL =
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-01-21] (Microsoft Corporation -> Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> D:\Microsoft Office\Office14\GROOVEEX.DLL [2010-01-21] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\ssv.dll [2016-08-09] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> D:\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-08-09] (Oracle America, Inc. -> Oracle Corporation)
DPF: HKLM-x32 {2BCDB465-81F9-41CB-832C-8037A4064446} C:\Users\Patrik\AppData\Local\Temp\F5_TMP_01531937_00000780\urxvpn.cab
DPF: HKLM-x32 {41EF3CD2-D8CC-4438-84B1-280BB4E77C8E} C:\Users\Patrik\AppData\Local\Temp\F5_TMP_01530812_00000780\f5tunsrv.cab
DPF: HKLM-x32 {45B69029-F3AB-4204-92DE-D5140C3E8E74} C:\Users\Patrik\AppData\Local\Temp\F5_TMP_01518875_00004852\InstallerControl.cab
DPF: HKLM-x32 {CC85ACDF-B277-486F-8C70-2C9B2ED2A4E7} C:\Users\Patrik\AppData\Local\Temp\F5_TMP_01527921_00000780\urxshost.cab
DPF: HKLM-x32 {E0FF21FA-B857-45C5-8621-F120A0C17FF2} C:\Users\Patrik\AppData\Local\Temp\F5_TMP_01529625_00000780\urxhost.cab

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\rsts.cz -> hxxps://vpn1.rsts.cz

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2020-04-27 07:37 - 2021-02-18 14:50 - 000000822 _____ C:\WINDOWS\system32\drivers\etc\hosts

2017-12-09 21:02 - 2018-06-07 20:02 - 000000445 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;D:\MiKTeX 2.9\miktex\bin\x64\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\Skype\Phone\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3304136618-564951720-171062688-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Patrik\appdata\local\packages\microsoft.windows.photos_8wekyb3d8bbwe\localstate\photosappbackground\{6d58a01a-0a4d-4e15-9416-1a043d5aae44}.jpg
DNS Servers: 10.0.1.2 - 10.0.1.6
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Prompt)
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
Wi-Fi: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\StartupFolder: => "Acuity Update Tool.lnk"
HKLM\...\StartupApproved\Run: => "Apoint"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run32: => "CLMLServer_For_P2G8"
HKLM\...\StartupApproved\Run32: => "CLVirtualDrive"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "BCSSync"
HKLM\...\StartupApproved\Run32: => "Opera Browser Assistant"
HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\StartupApproved\Run: => "AceStream"
HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\StartupApproved\Run: => "FlashPlayerUpdate"
HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\StartupApproved\Run: => "PhotoMasterImportAgent"
HKU\S-1-5-21-3304136618-564951720-171062688-1001\...\StartupApproved\Run: => "EpicGamesLauncher"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{B1B43E68-D075-4BDD-9573-F2F1F44BA3ED}] => (Allow) D:\Steam\steamapps\common\Mafia Definitive Edition\launcher.exe (2K Games) [File not signed]
FirewallRules: [{1F262B36-84AF-4018-B3F5-BA1AAA8A7DF6}] => (Allow) D:\Steam\steamapps\common\Mafia Definitive Edition\launcher.exe (2K Games) [File not signed]
FirewallRules: [{25F557D0-55BE-490B-8D65-1D0CC477C7A7}] => (Allow) D:\Steam\steamapps\common\Fall Guys\FallGuys_client_game.exe () [File not signed]
FirewallRules: [{A7887185-B6D2-449C-A985-7530A8B52B5A}] => (Allow) D:\Steam\steamapps\common\Fall Guys\FallGuys_client_game.exe () [File not signed]
FirewallRules: [{205AF811-DB00-4BEF-922E-C68CB93CEFF2}] => (Allow) D:\Steam\steamapps\common\Fall Guys\FallGuys_client.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{69874E8E-F4DE-48C1-AF4D-2AFCCCAFB06B}] => (Allow) D:\Steam\steamapps\common\Fall Guys\FallGuys_client.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [UDP Query User{3904922C-8490-4689-903D-FFBDA5C79289}D:\gtav\gta5.exe] => (Allow) D:\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{7F1E82DA-56BF-4CF8-8C83-F1D727BFA57B}D:\gtav\gta5.exe] => (Allow) D:\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{AE744201-5DF1-465B-B4C4-A5EE624E8BF3}] => (Allow) C:\Users\Patrik\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{E531E450-94F8-4F2E-A005-56768266C66C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{1147972E-18E1-471D-8864-32D8BC738FFE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9D141650-3AAE-49F6-AA02-0629665028E5}] => (Allow) D:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe () [File not signed]
FirewallRules: [{48B6C84C-FB6C-4969-B774-2BC6CCD42626}] => (Allow) D:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe () [File not signed]
FirewallRules: [{09D5FB95-D825-410F-A556-9B4550821C3E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{FE2E4CE1-EADA-48A4-8769-EE772194BAED}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{C76F7905-4B65-4494-B212-70613E1FC165}D:\ibm\spss\modeler\18.2.1\jre\bin\java.exe] => (Block) D:\ibm\spss\modeler\18.2.1\jre\bin\java.exe
FirewallRules: [TCP Query User{0F479493-62D3-42A4-AB53-40BF6C606DBD}D:\ibm\spss\modeler\18.2.1\jre\bin\java.exe] => (Block) D:\ibm\spss\modeler\18.2.1\jre\bin\java.exe
FirewallRules: [UDP Query User{37177E82-EDF0-4309-BB0A-12203EC84A15}D:\ibm\spss\modeler\18.2.1\bin\modelerserver.exe] => (Block) D:\ibm\spss\modeler\18.2.1\bin\modelerserver.exe (IBM Corp.) [File not signed]
FirewallRules: [TCP Query User{F5075AC6-6229-413F-8C8B-AA4DBC792217}D:\ibm\spss\modeler\18.2.1\bin\modelerserver.exe] => (Block) D:\ibm\spss\modeler\18.2.1\bin\modelerserver.exe (IBM Corp.) [File not signed]
FirewallRules: [UDP Query User{5BABEC5E-BB4C-41A0-A73D-25E6B4B6AFE0}D:\ibm\spss\modeler\18.2.1\bin\modelerclient.exe] => (Block) D:\ibm\spss\modeler\18.2.1\bin\modelerclient.exe (International Business Machines Corporation -> IBM Corp.)
FirewallRules: [TCP Query User{B9AC6909-8A22-4D81-BBE5-58132A9F167A}D:\ibm\spss\modeler\18.2.1\bin\modelerclient.exe] => (Block) D:\ibm\spss\modeler\18.2.1\bin\modelerclient.exe (International Business Machines Corporation -> IBM Corp.)
FirewallRules: [{74723E63-727D-4BA2-AC72-ACF8234F364F}] => (Allow) D:\IBM\SPSS\Statistics\26\stats.com (International Business Machines Corporation -> IBM Corp.)
FirewallRules: [{8C8C34F6-E3DC-41F0-8E9A-F2350BFC34A1}] => (Allow) D:\IBM\SPSS\Statistics\26\stats.exe (International Business Machines Corporation -> IBM Corp.)
FirewallRules: [{F7745B36-169D-4064-A3A7-97FA3ECD0F9F}] => (Allow) D:\IBM\SPSS\Statistics\26\WinWrapIDE.exe (International Business Machines Corporation -> IBM Corp.)
FirewallRules: [{5D9AFAA1-DCF7-4A0E-94A9-9417F76A0AF4}] => (Allow) D:\IBM\SPSS\Statistics\26\stats.com (International Business Machines Corporation -> IBM Corp.)
FirewallRules: [{9A884B7D-5423-4062-9028-24F06C1F28CE}] => (Allow) D:\IBM\SPSS\Statistics\26\stats.exe (International Business Machines Corporation -> IBM Corp.)
FirewallRules: [{40042A31-B7CF-466C-BC80-CD1911A1DEDF}] => (Allow) D:\IBM\SPSS\Statistics\26\WinWrapIDE.exe (International Business Machines Corporation -> IBM Corp.)
FirewallRules: [{A485FBBD-2A65-4280-8342-C20822A743B6}] => (Allow) C:\Program Files (x86)\Opera\65.0.3467.72\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{460FD110-DE7D-415E-8E9E-CED5A4D60F88}] => (Allow) D:\Steam\steamapps\common\Life is Strange - Before the Storm\Life is Strange - Before the Storm.exe () [File not signed]
FirewallRules: [{C825BB93-17C7-48D8-B34D-376CC1CD68CE}] => (Allow) D:\Steam\steamapps\common\Life is Strange - Before the Storm\Life is Strange - Before the Storm.exe () [File not signed]
FirewallRules: [{BF85D15B-3620-46C7-90AB-AB0BBA88B579}] => (Allow) D:\Steam\steamapps\common\Caesar 3\SierraLauncher.exe (Vivendi Universal Games) [File not signed]
FirewallRules: [{362CEB0F-4494-47BD-A099-52E4FC9F98D2}] => (Allow) D:\Steam\steamapps\common\Caesar 3\SierraLauncher.exe (Vivendi Universal Games) [File not signed]
FirewallRules: [UDP Query User{455730AA-33C1-4607-9EFB-1361695EF9D7}C:\users\patrik\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\patrik\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{02603382-8E8A-47E2-9B07-8A702ACA95C3}C:\users\patrik\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\patrik\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0FAD53F7-A776-4072-86D3-24E0963C62F3}] => (Allow) D:\Program Files (x86)\Origin Games\FIFA 17\FIFASetup\fifaconfig.exe => No File
FirewallRules: [{B09EC7B7-F218-42C2-BFBA-5FAC8C701506}] => (Allow) D:\Program Files (x86)\Origin Games\FIFA 17\FIFASetup\fifaconfig.exe => No File
FirewallRules: [{EBF2F019-B4C7-47E8-ADEB-B743858D1E48}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B16841A6-8697-458B-A740-86D49D1A5CD3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2C975615-07E3-4E5B-A641-4DCF102DDD08}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{300292CD-1789-44A8-B6E7-6E5767BCA49A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{05698447-0200-4CEE-9C94-F78D8B6827B7}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation-Wireless Connectivity Solutions -> )
FirewallRules: [UDP Query User{2547A1FC-AEF0-49CB-9A00-21039E139E4F}D:\program files (x86)\origin games\fifa 17\fifa17.exe] => (Allow) D:\program files (x86)\origin games\fifa 17\fifa17.exe => No File
FirewallRules: [TCP Query User{38216C6A-2070-464B-A1C3-C873A2D20B78}D:\program files (x86)\origin games\fifa 17\fifa17.exe] => (Allow) D:\program files (x86)\origin games\fifa 17\fifa17.exe => No File
FirewallRules: [UDP Query User{B5BD86C0-FD88-4635-94BA-0FE4270647A2}D:\program files (x86)\origin games\fifa 17\fifa17.exe] => (Allow) D:\program files (x86)\origin games\fifa 17\fifa17.exe => No File
FirewallRules: [TCP Query User{766C6738-5652-4776-81FE-7781281D2C90}D:\program files (x86)\origin games\fifa 17\fifa17.exe] => (Allow) D:\program files (x86)\origin games\fifa 17\fifa17.exe => No File
FirewallRules: [{E9A40611-6338-4826-A7AC-E8426932E0C2}] => (Allow) D:\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{69A3823B-F27E-437D-9098-78982D39560F}] => (Allow) D:\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{69BBBFED-85E9-43A5-BDF1-4D510CE44FE3}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{E436B845-A6EE-4E3B-BCEC-DEF1F688E0FC}D:\utorrent\utorrent.exe] => (Allow) D:\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{C9EBA0C1-C41D-4883-A2A9-28A811668746}D:\utorrent\utorrent.exe] => (Allow) D:\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{B9265712-5080-43D1-9EC0-5037527EF5D2}C:\users\patrik\appdata\roaming\acestream\engine\ace_engine.exe] => (Allow) C:\users\patrik\appdata\roaming\acestream\engine\ace_engine.exe (Innovative Digital Technologies -> )
FirewallRules: [UDP Query User{63E5FABA-6686-4C1E-83C5-CB25710031A1}C:\users\patrik\appdata\roaming\acestream\engine\ace_engine.exe] => (Allow) C:\users\patrik\appdata\roaming\acestream\engine\ace_engine.exe (Innovative Digital Technologies -> )
FirewallRules: [TCP Query User{3ECE4E8E-BB68-494E-9E17-B55C481DC1EE}C:\users\patrik\appdata\roaming\acestream\engine\ace_engine.exe] => (Allow) C:\users\patrik\appdata\roaming\acestream\engine\ace_engine.exe (Innovative Digital Technologies -> )
FirewallRules: [UDP Query User{F621B63D-A0ED-4B4D-B84E-047A4A4BF403}C:\users\patrik\appdata\roaming\acestream\engine\ace_engine.exe] => (Allow) C:\users\patrik\appdata\roaming\acestream\engine\ace_engine.exe (Innovative Digital Technologies -> )
FirewallRules: [{FFC6F780-6910-4E4D-8CF5-DF7169420C93}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{DBC7526F-6E05-457D-8020-BF993567B9CF}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{87E3701B-EDA3-41FF-AFFA-BD440B58A1BC}D:\utorrent\utorrent.exe] => (Allow) D:\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{C7B39DA2-12CC-4F33-9B37-B63803A0B0B2}D:\utorrent\utorrent.exe] => (Allow) D:\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{56186E97-6B36-4A74-AD45-3C0C895D98A0}] => (Allow) D:\Microsoft Office\Office14\GROOVE.EXE (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4969F20D-03FA-4CBB-8260-AB8C186F9AE8}] => (Allow) D:\Microsoft Office\Office14\GROOVE.EXE (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{ED8F4707-34AA-4ECF-BDF3-114EED036DD1}] => (Allow) D:\Microsoft Office\Office14\ONENOTE.EXE (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E865F947-35F5-4669-BBFA-1462B49A473E}] => (Allow) D:\Microsoft Office\Office14\ONENOTE.EXE (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{67622646-E8CF-4098-9EDA-7EC68D34C195}] => (Allow) D:\Microsoft Office\Office14\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{65105506-96D2-4914-A583-B8275926CCA2}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{44E4CD1C-4BB9-44C3-AF48-5A2BB17E3203}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{C0238578-1AD8-4B38-8482-B193517A605E}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{C96C7812-4DFE-4D34-A811-B3AFABCEF9C4}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{B16D38A8-3B6C-45A4-B512-FB9F7FBD287A}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{FBD1126C-9DAA-4A24-953C-E056EF7A23BC}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{537125D4-F951-4512-A9D7-E71256B51B96}] => (Allow) D:\Steam\steamapps\common\Twilight Struggle\TwilightStruggle.exe () [File not signed]
FirewallRules: [{79382AC1-6CCB-4187-8BB6-AC4586133080}] => (Allow) D:\Steam\steamapps\common\Twilight Struggle\TwilightStruggle.exe () [File not signed]
FirewallRules: [{C32C09D4-53B9-41A3-9522-7C0E94255C68}] => (Allow) D:\Steam\steamapps\common\Assassin's Creed 2\AssassinsCreedIIGame.exe () [File not signed]
FirewallRules: [{8FC2C88D-BE01-471D-977F-89CFCC6D8ABF}] => (Allow) D:\Steam\steamapps\common\Assassin's Creed 2\AssassinsCreedIIGame.exe () [File not signed]
FirewallRules: [{29159267-2A59-4E5E-8AAF-448635DB666A}] => (Allow) C:\Users\Patrik\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{6D3011EA-2369-4003-BBF2-1A2581557ECF}] => (Allow) C:\Users\Patrik\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{CB13F4ED-533D-4A54-AE76-EFB35E7A8CDA}] => (Allow) C:\Users\Patrik\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{AED8525D-0D86-42FC-BBAF-EE9CD9B1F896}] => (Allow) D:\Steam\steamapps\common\Deus Ex Human Revolution Director's Cut\DXHRDC.exe (Square Enix Ltd. -> Square Enix Limited)
FirewallRules: [{D173B7B0-9864-4095-AA0E-F42B2BC1F89C}] => (Allow) D:\Steam\steamapps\common\Deus Ex Human Revolution Director's Cut\DXHRDC.exe (Square Enix Ltd. -> Square Enix Limited)
FirewallRules: [{3BD4448C-71B0-4A9B-BFF8-1CC71B1AB0B9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{3821AA69-9C14-41D1-BDA4-A8AA3C22A314}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{EE6AD165-1AF1-4BF5-9E0D-945DA8274BD2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D81DBCE9-79AC-4BD7-82CB-3D6253BE59A4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{AF54FB4B-5898-409E-8751-03B3F961EE50}] => (Allow) D:\Steam\steamapps\common\BEYOND Two Souls\BeyondTwoSouls_Steam.exe () [File not signed]
FirewallRules: [{1425C415-57CE-4F3A-ACFF-7CDB0B516351}] => (Allow) D:\Steam\steamapps\common\BEYOND Two Souls\BeyondTwoSouls_Steam.exe () [File not signed]
FirewallRules: [{7D119739-667A-4719-BF2E-9FDBAB997E29}] => (Allow) D:\Steam\steamapps\common\Injustice2\Binaries\Retail\Injustice2.exe (WB Games, Inc.) [File not signed]
FirewallRules: [{2C0FF233-94B6-404C-B5F1-0C537866FD7C}] => (Allow) D:\Steam\steamapps\common\Injustice2\Binaries\Retail\Injustice2.exe (WB Games, Inc.) [File not signed]
FirewallRules: [{74FEC96C-2C58-4138-A608-6AEEE707166E}] => (Allow) D:\star wars battlefornt II\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{66FEDC14-D928-4AE0-A7E2-46C395FED7A8}] => (Allow) D:\star wars battlefornt II\STAR WARS Battlefront II\starwarsbattlefrontii_trial.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{8F8EFA9A-84FC-486B-A84E-1D4A10507B9C}] => (Allow) D:\star wars battlefornt II\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{D5FE932A-AB69-4996-A65D-9861A7B54549}] => (Allow) D:\star wars battlefornt II\STAR WARS Battlefront II\starwarsbattlefrontii.exe (Electronic Arts, Inc. -> Electronic Arts Inc.)
FirewallRules: [{DB2C8525-D36C-4AC4-BED0-9E8B978CC49C}] => (Allow) C:\Program Files\Opera\73.0.3856.344\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{D46EDE3D-EDF2-49EF-A8C5-EC791FED9C5A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DBE378F9-BBD5-4031-A2A4-9C796F8FB662}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BF541014-5DAE-4D97-A4E3-BFD074E179B9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E3F06153-E916-43BD-AC86-51DB12F2AE5B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{29C3C9DE-11A0-451F-99B1-C762045EAA67}] => (Allow) C:\Program Files\Opera\74.0.3911.107\opera.exe (Opera Software AS -> Opera Software)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:97.15 GB) (Free:9.82 GB) (10%)

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (02/18/2021 05:11:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: LSB.exe, verze: 1.6.4.0, časové razítko: 0x57edd844
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.804, časové razítko: 0x0e9c5eae
Kód výjimky: 0xe0434352
Posun chyby: 0x000000000002d759
ID chybujícího procesu: 0x37f4
Čas spuštění chybující aplikace: 0x01d70610ad193dfc
Cesta k chybující aplikaci: C:\Users\Patrik\AppData\Local\Apps\2.0\2VOJ7T9L.TA2\DCAJT969.GG1\lsb...tion_2d7b41b05b24775e_0001.0006_589ac911618caaca\LSB.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 880ac6ba-b1e6-4977-a935-1196006c5cd5
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (02/18/2021 05:11:13 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: LSB.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: kód výjimky e0434352, adresa výjimky 00007FFC81FDD759
Zásobník:

Error: (02/18/2021 05:08:13 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (02/18/2021 05:08:13 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (02/18/2021 05:08:13 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (02/18/2021 05:08:13 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (02/18/2021 04:47:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: tws.exe, verze: 9.83.0.9, časové razítko: 0x5d2efe10
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.789, časové razítko: 0x2bd748bf
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000007286e
ID chybujícího procesu: 0xf6c
Čas spuštění chybující aplikace: 0x01d705fd4e8cce8a
Cesta k chybující aplikaci: C:\Jts\tws.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: b06b2462-6c33-4456-be6d-457a53308a62
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (02/18/2021 07:51:54 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: LSB.exe, verze: 1.6.4.0, časové razítko: 0x57edd844
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.804, časové razítko: 0x0e9c5eae
Kód výjimky: 0xe0434352
Posun chyby: 0x000000000002d759
ID chybujícího procesu: 0x36f4
Čas spuštění chybující aplikace: 0x01d705c287178a7b
Cesta k chybující aplikaci: C:\Users\Patrik\AppData\Local\Apps\2.0\2VOJ7T9L.TA2\DCAJT969.GG1\lsb...tion_2d7b41b05b24775e_0001.0006_589ac911618caaca\LSB.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: f8653d0b-e250-4483-b904-d1e26a5250e1
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (02/18/2021 05:08:53 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI5

Error: (02/18/2021 05:08:08 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1115 při pokusu o spuštění služby wuauserv s argumenty Není k dispozici za účelem spuštění serveru:
{E60687F7-01A1-40AA-86AC-DB1CBF673334}

Error: (02/18/2021 07:49:29 AM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI5

Error: (02/18/2021 07:49:11 AM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1115 při pokusu o spuštění služby wuauserv s argumenty Není k dispozici za účelem spuštění serveru:
{E60687F7-01A1-40AA-86AC-DB1CBF673334}

Error: (02/18/2021 07:49:11 AM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1115 při pokusu o spuštění služby wuauserv s argumenty Není k dispozici za účelem spuštění serveru:
{E60687F7-01A1-40AA-86AC-DB1CBF673334}

Error: (02/18/2021 07:49:03 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-6L8K5OL9)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (02/18/2021 07:49:03 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-6L8K5OL9)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (02/18/2021 07:49:02 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-6L8K5OL9)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.


CodeIntegrity:
===============
Date: 2021-02-18 20:54:39
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\AVAST Software\Avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\setup\uat_3132.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2021-02-18 20:54:38
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2021-02-18 18:10:12
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\AVAST Software\Avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2021-02-18 17:10:22
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

BIOS: LENOVO CDCN53WW 09/19/2016
Motherboard: LENOVO Allsparks 5A
Processor: Intel(R) Core(TM) i5-6300HQ CPU @ 2.30GHz
Percentage of memory in use: 88%
Total physical RAM: 8019.91 MB
Available physical RAM: 959.11 MB
Total Virtual: 15024.44 MB
Available Virtual: 1945.97 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:97.15 GB) (Free:9.82 GB) NTFS
Drive d: (LENOVO) (Fixed) (Total:931.51 GB) (Free:67.29 GB) NTFS

\\?\Volume{961eac67-c93c-4224-b541-af965f8408db}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.49 GB) NTFS
\\?\Volume{7606be89-1cc8-4339-91a0-aa0813efa4ef}\ (LENOVO_PART) (Fixed) (Total:19.87 GB) (Free:3.26 GB) NTFS
\\?\Volume{95b8c146-01c2-416e-a2e9-cf2d8058906e}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: 34EB3C07)

Partition: GPT.

==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 6D5626F2)

Partition: GPT.

==================== End of Addition.txt =======================

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15198
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosím o kontrolu logu

#2 Příspěvek od JaRon »

Ahoj,
je tam drobny bordel, vycisti s Adwcleanerom
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

Odpovědět