Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Preventivní kontrola logu

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
korbel
Návštěvník
Návštěvník
Příspěvky: 11
Registrován: 19 dub 2020 21:57

Preventivní kontrola logu

#1 Příspěvek od korbel »

Prosím o preventivní kontrolu logu. Předem děkuji :)


Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 24-02-2021
Ran by kabby (administrator) on DESKTOP-3SVS0ND (25-02-2021 15:28:03)
Running from D:\Programy\Frst
Loaded Profiles: kabby
Platform: Windows 10 Pro Version 1909 18363.1379 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe
(ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe <3>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(Cambridge Silicon Radio Ltd. -> ) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrSyncMLServer.exe
(Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BtSwitcherService.exe
(Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrAudioguiCtrl.exe
(Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtAudioService.exe
(Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe
(Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtService.exe
(Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrHCRPServer.exe
(Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\HarmonyUserStartup.exe
(Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\TrayApplication.exe
(Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\vksts.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <27>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe
(Jliddev) [File not signed] C:\Users\kabby\AppData\Local\Programs\wowup\WowUp.exe <4>
(Locktime Software s.r.o. -> Locktime Software) C:\Program Files\Locktime Software\NetLimiter 4\NLSvc.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2101.10.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\usocoreworker.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d67c20d727d4578c\Display.NvContainer\NVDisplay.Container.exe <2>
(Popcorn Time) [File not signed] C:\Program Files (x86)\Popcorn Time\Updater.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(SatoshiLabs, s.r.o. -> ) C:\Program Files (x86)\TREZOR Bridge\trezord.exe
(TEFINCOM S.A. -> TEFINCOM S.A.) C:\Program Files\NordVPN\NordVPN.exe
(TEFINCOM S.A. -> TEFINCOM S.A.) C:\Program Files\NordVPN\nordvpn-service.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8841472 2016-06-17] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [117352 2021-01-08] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [CsrHCRPServer] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrHCRPServer.exe [1134288 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
HKLM\...\Run: [CsrAudioguiCtrl] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrAudioguiCtrl.exe [511696 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
HKLM\...\Run: [CsrSyncMLServer] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrSyncMLServer.exe [244944 2012-03-22] (Cambridge Silicon Radio Ltd. -> )
HKLM\...\Run: [vksts] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\vksts.exe [25792 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
HKLM\...\Run: [HarmonyUserStartup] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\HarmonyUserStartup.exe [39128 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
HKLM\...\Run: [CSRHarmonySkypePlugin] => C:\Program Files (x86)\CSR\CSR Harmony Wireless Software Stack\CSRHarmonySkypePlugin.exe [146656 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
HKLM\...\Run: [TrayApplication] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\TrayApplication.exe [529616 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
HKU\S-1-5-21-1790331142-4152674689-3922563330-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3412696 2021-02-13] (Valve -> Valve Corporation)
HKU\S-1-5-21-1790331142-4152674689-3922563330-1001\...\Run: [NordVPN] => C:\Program Files\NordVPN\NordVPN.exe [274176 2020-10-16] (TEFINCOM S.A. -> TEFINCOM S.A.)
HKU\S-1-5-21-1790331142-4152674689-3922563330-1001\...\Run: [TSMApplication] => C:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe [1623040 2020-11-30] () [File not signed]
HKLM\...\Print\Monitors\HCR Client Port Monitor: C:\Windows\system32\csrportmon.dll [73416 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.182\Installer\chrmstp.exe [2021-02-19] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{5355DA8C-FE32-49b4-A567-A67535C86592}] -> C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BLEtokenCredentialProvider.dll [2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TREZOR Bridge.lnk [2021-02-09]
ShortcutTarget: TREZOR Bridge.lnk -> C:\Program Files (x86)\TREZOR Bridge\trezord.exe (SatoshiLabs, s.r.o. -> )
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {111B1B63-35D5-42D1-BDB0-C492C631FDF0} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {1D36AF77-C4AF-440C-97DA-2C91FCDA17C7} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2CDAF436-27BB-47A3-B72E-0DA6A6575EE4} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {35BB6A73-2C85-4300-BAAC-477D9B7CF47A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-05-24] (Google LLC -> Google LLC)
Task: {3622488B-19AA-4CE5-95C1-1CBC5B3759CB} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5DBC7208-10EF-49E2-BFB5-878501D59C30} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7675CBDB-C1DA-4498-854A-5AF045EB137C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-05-24] (Google LLC -> Google LLC)
Task: {7CC589A1-2756-4107-8765-B3A56DE99677} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {94D2D615-3EB5-4DED-A3AA-F0A14F7E3207} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE
Task: {94D2D615-3EB5-4DED-A3AA-F0A14F7E3207} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE
Task: {94D2D615-3EB5-4DED-A3AA-F0A14F7E3207} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineCore" /ENABLE
Task: {94D2D615-3EB5-4DED-A3AA-F0A14F7E3207} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\MicrosoftEdgeUpdateTaskMachineUA" /ENABLE
Task: {94D2D615-3EB5-4DED-A3AA-F0A14F7E3207} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {94D2D615-3EB5-4DED-A3AA-F0A14F7E3207} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {94D2D615-3EB5-4DED-A3AA-F0A14F7E3207} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {94D2D615-3EB5-4DED-A3AA-F0A14F7E3207} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {94D2D615-3EB5-4DED-A3AA-F0A14F7E3207} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {94D2D615-3EB5-4DED-A3AA-F0A14F7E3207} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {94D2D615-3EB5-4DED-A3AA-F0A14F7E3207} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(11): schtasks.exe -> /Change /TN "\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {94D2D615-3EB5-4DED-A3AA-F0A14F7E3207} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(12): schtasks.exe -> /Change /TN "\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {94D2D615-3EB5-4DED-A3AA-F0A14F7E3207} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(13): schtasks.exe -> /Change /TN "\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {94D2D615-3EB5-4DED-A3AA-F0A14F7E3207} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(14): schtasks.exe -> /Change /TN "\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}" /ENABLE
Task: {94D2D615-3EB5-4DED-A3AA-F0A14F7E3207} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(15): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-1790331142-4152674689-3922563330-1001" /ENABLE
Task: {94D2D615-3EB5-4DED-A3AA-F0A14F7E3207} - System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(16): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE
Task: {A22FC763-83A8-4ABC-9398-488203C31853} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B5223222-18CF-4B7C-85ED-272216843CFA} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3301176 2020-10-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D9E98F12-0880-470E-89E0-12A80538E5C9} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1791712 2021-02-24] (Avast Software s.r.o. -> Avast Software)
Task: {DB4CD06A-C863-4271-AFFB-C79B984072F0} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4621920 2021-01-08] (Avast Software s.r.o. -> AVAST Software)
Task: {DE8FF7E0-1D8C-458A-B2DC-41B53382C3EF} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {E55573FA-F803-49AA-AF3D-F727C6FA985C} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{5d7c2cd5-9a75-1ac5-6245-118f1c411193}: [NameServer] 103.86.96.100,103.86.99.100
Tcpip\..\Interfaces\{9744b5fb-dd71-4107-aa7e-a82a77c8c1f3}: [DhcpNameServer] 192.168.0.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\kabby\AppData\Local\Microsoft\Edge\User Data\Default [2021-02-25]
Edge HomePage: Default -> hxxp://www.seznam.cz/
Edge Extension: (LastPass: Free Password Manager) - C:\Users\kabby\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bbcinlkgjjkejfdpemiealijmmooekmp [2021-02-21]
Edge Extension: (Kaloricke Tabulky) - C:\Users\kabby\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjjjbklcdnengpeomfcacfplfnmingjk [2020-06-12]
Edge Extension: (Grammarly for Microsoft Edge) - C:\Users\kabby\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cnlefmmeadmemmdciolhbnfeacpdfbkd [2021-02-21]
Edge Extension: (Stylish - Custom themes for any website) - C:\Users\kabby\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2020-06-12]
Edge Extension: (Night Mode Pro) - C:\Users\kabby\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gbilbeoogenjmnabenfjfoockmpfnjoh [2020-10-30]
Edge Extension: (Speed Dial 2 New tab) - C:\Users\kabby\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jpfpebmajhhopeonhlcgidhclcccjcik [2020-06-12]
Edge Extension: (Evernote Web Clipper) - C:\Users\kabby\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\llhcnbijpnechllogkacbcjmkcgjbjfi [2020-11-11]
Edge Extension: (AdBlock — best ad blocker) - C:\Users\kabby\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2021-02-21]
Edge Extension: (uBlock Origin) - C:\Users\kabby\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2021-02-21]

FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)

Chrome:
=======
CHR Profile: C:\Users\kabby\AppData\Local\Google\Chrome\User Data\Default [2021-02-25]
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\kabby\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-05-24]
CHR Extension: (Duolingo on the Web) - C:\Users\kabby\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiahmijlpehemcpleichkcokhegllfjl [2020-05-24]
CHR Extension: (Dokumenty) - C:\Users\kabby\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-05-24]
CHR Extension: (Disk Google) - C:\Users\kabby\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25]
CHR Extension: (Kaloricke Tabulky) - C:\Users\kabby\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjjjbklcdnengpeomfcacfplfnmingjk [2020-05-24]
CHR Extension: (YouTube) - C:\Users\kabby\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-05-24]
CHR Extension: (uBlock Origin) - C:\Users\kabby\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2021-02-08]
CHR Extension: (Tabulky) - C:\Users\kabby\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-05-24]
CHR Extension: (Stylish - Custom themes for any website) - C:\Users\kabby\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2020-05-24]
CHR Extension: (NordVPN — #1 VPN Chrome Extension: Get a VPN) - C:\Users\kabby\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2021-02-10]
CHR Extension: (Night Mode Pro) - C:\Users\kabby\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbilbeoogenjmnabenfjfoockmpfnjoh [2020-10-29]
CHR Extension: (Dokumenty Google offline) - C:\Users\kabby\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-13]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\kabby\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-02-25]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\kabby\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2021-02-25]
CHR Extension: (Grammarly for Chrome) - C:\Users\kabby\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2021-02-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\kabby\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-03]
CHR Extension: (Gmail) - C:\Users\kabby\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
CHR Extension: (Chrome Media Router) - C:\Users\kabby\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-02-03]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2015-05-08] (ASUSTeK Computer Inc. -> )
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-04-24] (ASUSTeK Computer Inc. -> ) [File not signed]
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8477080 2021-01-08] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [621728 2021-01-08] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [351848 2021-01-08] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [58048 2021-01-08] (Avast Software s.r.o. -> AVAST Software)
R2 BtSwitcherService; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BtSwitcherService.exe [64216 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
R2 CSRBtAudioService; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtAudioService.exe [465624 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
R2 CsrBtOBEXService; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe [1041616 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
R2 CsrBtService; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtService.exe [825032 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [287720 2020-10-19] (NVIDIA Corporation -> NVIDIA)
R2 nlsvc; C:\Program Files\Locktime Software\NetLimiter 4\NLSvc.exe [313720 2020-06-18] (Locktime Software s.r.o. -> Locktime Software)
R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [275200 2020-10-16] (TEFINCOM S.A. -> TEFINCOM S.A.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6264144 2021-01-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [339968 2020-08-27] (Popcorn Time) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d67c20d727d4578c\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d67c20d727d4578c\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2015-05-08] (ASUSTeK Computer Inc. -> )
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [36792 2021-01-08] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [208672 2021-01-08] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [332880 2021-01-08] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [247888 2021-01-08] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [97360 2021-01-08] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [16832 2021-01-08] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42424 2021-01-08] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [176384 2021-01-08] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [522480 2021-01-08] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [108928 2021-01-08] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84496 2021-01-08] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851256 2021-01-08] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [468888 2021-01-08] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [214808 2021-01-08] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [324904 2021-01-08] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [231936 2020-01-09] (Microsoft Corporation) [File not signed]
R3 csravrcp; C:\Windows\System32\drivers\csravrcp.sys [26304 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
R3 CsrBthAudioHF; C:\Windows\System32\drivers\CsrBthAudioHF.sys [39120 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
R3 CsrBtPort; C:\Windows\system32\DRIVERS\CsrBtPort.sys [2784968 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
R3 csrhfgcc; C:\Windows\System32\drivers\csrhfgcc.sys [38080 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
R3 csrpan; C:\Windows\System32\drivers\csrpan.sys [39616 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
R3 csrserial; C:\Windows\system32\DRIVERS\csrserial.sys [61128 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
R3 csrusb; C:\Windows\System32\Drivers\csrusb.sys [47296 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
R3 csrusbfilter; C:\Windows\System32\Drivers\csrusbfilter.sys [23752 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
R3 csr_bthav; C:\Windows\system32\drivers\csrbthav.sys [99520 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
R2 NDivert; C:\Windows\System32\drivers\NDivert.sys [105184 2021-02-01] (TEFINCOM S.A. -> )
R0 nldrv; C:\Windows\System32\drivers\nldrv.sys [183520 2020-06-18] (Locktime Software s.r.o. -> Locktime Software)
R3 nlwt; C:\Windows\system32\DRIVERS\nlwt.sys [39360 2020-10-26] (TEFINCOM S.A. -> WireGuard LLC)
R1 nordlwf; C:\Windows\system32\DRIVERS\nordlwf.sys [38608 2020-07-10] (TEFINCOM S.A. -> TEFINCOM S.A.)
R3 tapnordvpn; C:\Windows\System32\drivers\tapnordvpn.sys [44896 2020-06-09] (TEFINCOM S.A. -> The OpenVPN Project)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-02-25 15:08 - 2021-02-25 15:28 - 000000000 ____D C:\FRST
2021-02-24 12:18 - 2021-02-24 12:50 - 000011978 _____ C:\Users\kabby\Desktop\dum.xlsx
2021-02-19 13:25 - 2021-02-19 13:25 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_csrserial_01009.Wdf
2021-02-19 13:25 - 2021-02-19 13:25 - 000000000 ____D C:\BluetoothExchangeFolder
2021-02-19 13:24 - 2021-02-19 13:24 - 000000000 ____D C:\Windows\system32\gl-ES
2021-02-19 13:24 - 2021-02-19 13:24 - 000000000 ____D C:\Windows\system32\eu-ES
2021-02-19 13:24 - 2021-02-19 13:24 - 000000000 ____D C:\Windows\system32\es-cl
2021-02-19 13:24 - 2021-02-19 13:24 - 000000000 ____D C:\Windows\system32\ca-ES
2021-02-19 13:24 - 2021-02-19 13:24 - 000000000 ____D C:\Program Files (x86)\CSR
2021-02-19 13:23 - 2021-02-19 13:23 - 000000000 ____D C:\Program Files\CSR
2021-02-12 23:45 - 2021-02-12 23:45 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2021-02-12 23:45 - 2021-02-12 23:45 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2021-02-12 23:45 - 2021-02-12 23:45 - 000000315 _____ C:\Windows\system32\DrtmAuth9.bin
2021-02-12 23:45 - 2021-02-12 23:45 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2021-02-12 23:45 - 2021-02-12 23:45 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2021-02-12 23:45 - 2021-02-12 23:45 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2021-02-12 23:45 - 2021-02-12 23:45 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2021-02-12 23:45 - 2021-02-12 23:45 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2021-02-12 23:45 - 2021-02-12 23:45 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2021-02-12 23:45 - 2021-02-12 23:45 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2021-02-12 23:45 - 2021-02-12 23:45 - 000000315 _____ C:\Windows\system32\DrtmAuth18.bin
2021-02-12 23:45 - 2021-02-12 23:45 - 000000315 _____ C:\Windows\system32\DrtmAuth17.bin
2021-02-12 23:45 - 2021-02-12 23:45 - 000000315 _____ C:\Windows\system32\DrtmAuth16.bin
2021-02-12 23:45 - 2021-02-12 23:45 - 000000315 _____ C:\Windows\system32\DrtmAuth15.bin
2021-02-12 23:45 - 2021-02-12 23:45 - 000000315 _____ C:\Windows\system32\DrtmAuth12.bin
2021-02-12 23:45 - 2021-02-12 23:45 - 000000315 _____ C:\Windows\system32\DrtmAuth11.bin
2021-02-12 23:45 - 2021-02-12 23:45 - 000000315 _____ C:\Windows\system32\DrtmAuth10.bin
2021-02-12 23:45 - 2021-02-12 23:45 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
2021-02-12 23:44 - 2021-02-12 23:44 - 000232752 _____ C:\Windows\system32\containerdevicemanagement.dll
2021-02-09 10:43 - 2021-02-09 12:20 - 000000000 ____D C:\Users\kabby\AppData\Roaming\TREZOR Bridge
2021-02-09 10:42 - 2021-02-09 10:43 - 000000000 ____D C:\Program Files (x86)\TREZOR Bridge
2021-02-09 10:42 - 2021-02-09 10:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TREZOR Bridge
2021-02-05 18:01 - 2021-02-05 18:01 - 048238872 _____ C:\Users\kabby\Desktop\How to suck less at supporting.pdf
2021-02-02 21:19 - 2021-02-02 21:19 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation
2021-02-02 21:19 - 2019-10-04 16:13 - 000237424 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2021-02-02 21:19 - 2019-10-04 16:13 - 000055664 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhdap64.dll
2021-02-02 20:37 - 2021-01-23 09:15 - 001435864 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-02-02 20:37 - 2021-01-23 09:15 - 001435864 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2021-02-02 20:37 - 2021-01-23 09:14 - 001855192 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2021-02-02 20:37 - 2021-01-23 09:14 - 001855192 _____ C:\Windows\system32\vulkaninfo.exe
2021-02-02 20:37 - 2021-01-23 09:14 - 001453728 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2021-02-02 20:37 - 2021-01-23 09:14 - 001193120 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2021-02-02 20:37 - 2021-01-23 09:14 - 001094880 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2021-02-02 20:37 - 2021-01-23 09:14 - 001094880 _____ C:\Windows\system32\vulkan-1.dll
2021-02-02 20:37 - 2021-01-23 09:14 - 000948952 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2021-02-02 20:37 - 2021-01-23 09:14 - 000948952 _____ C:\Windows\SysWOW64\vulkan-1.dll
2021-02-02 20:37 - 2021-01-23 09:12 - 000613536 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2021-02-02 20:37 - 2021-01-23 09:11 - 005637792 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2021-02-02 20:36 - 2021-01-23 09:12 - 001512096 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2021-02-02 20:36 - 2021-01-23 09:12 - 001164960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2021-02-02 20:36 - 2021-01-23 09:12 - 000689312 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2021-02-02 20:36 - 2021-01-23 09:12 - 000680096 _____ C:\Windows\system32\nvofapi64.dll
2021-02-02 20:36 - 2021-01-23 09:12 - 000672928 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2021-02-02 20:36 - 2021-01-23 09:12 - 000558240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2021-02-02 20:36 - 2021-01-23 09:12 - 000547488 _____ C:\Windows\SysWOW64\nvofapi.dll
2021-02-02 20:36 - 2021-01-23 09:11 - 008262304 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2021-02-02 20:36 - 2021-01-23 09:11 - 007392928 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2021-02-02 20:36 - 2021-01-23 09:11 - 004611744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2021-02-02 20:36 - 2021-01-23 09:11 - 002731168 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2021-02-02 20:36 - 2021-01-23 09:11 - 002103456 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2021-02-02 20:36 - 2021-01-23 09:11 - 001589408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2021-02-02 20:36 - 2021-01-23 09:11 - 000813216 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2021-02-02 20:36 - 2021-01-23 09:11 - 000657056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2021-02-02 20:36 - 2021-01-23 09:11 - 000446624 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2021-02-02 20:36 - 2021-01-23 09:10 - 007116680 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2021-02-02 20:36 - 2021-01-23 09:10 - 006070848 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2021-02-02 20:36 - 2021-01-23 09:10 - 000850080 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2021-02-02 20:36 - 2021-01-22 23:59 - 000084264 _____ C:\Windows\system32\nvinfo.pb

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-02-25 15:18 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-02-25 14:59 - 2020-10-23 07:13 - 000000000 ____D C:\Users\kabby\AppData\Roaming\WowUp
2021-02-25 14:51 - 2020-05-24 15:37 - 000000000 ____D C:\Users\kabby\AppData\Local\Packages
2021-02-25 14:51 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\AppReadiness
2021-02-25 14:49 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2021-02-25 13:59 - 2020-06-12 04:14 - 000003572 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-02-25 13:59 - 2020-06-12 04:14 - 000003348 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-02-25 13:59 - 2020-05-25 00:18 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2021-02-25 13:59 - 2020-05-24 17:10 - 000000000 ____D C:\Program Files (x86)\Steam
2021-02-25 13:59 - 2020-05-24 16:41 - 000003458 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-02-25 13:59 - 2020-05-24 16:41 - 000003256 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-02-25 13:59 - 2020-05-24 16:41 - 000003212 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-02-25 13:59 - 2020-05-24 16:41 - 000003044 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-02-25 13:59 - 2020-05-24 16:41 - 000003008 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-02-25 13:59 - 2020-05-24 16:41 - 000003008 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-02-25 13:59 - 2020-05-24 16:41 - 000003008 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-02-25 13:59 - 2020-05-24 16:41 - 000003008 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-02-25 13:59 - 2020-05-24 16:41 - 000002974 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-02-25 13:59 - 2020-05-24 16:41 - 000002804 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-02-25 13:59 - 2020-05-24 16:41 - 000000000 ____D C:\ProgramData\NVIDIA
2021-02-25 13:59 - 2020-05-24 16:03 - 000003460 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-02-25 13:59 - 2020-05-24 16:03 - 000003236 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-02-25 13:59 - 2020-05-24 15:39 - 000002922 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1790331142-4152674689-3922563330-1001
2021-02-25 13:27 - 2020-05-24 15:33 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-02-24 22:37 - 2020-09-28 09:14 - 000000000 ____D C:\Users\kabby\AppData\Local\Battle.net
2021-02-24 15:34 - 2020-05-25 09:42 - 000000000 ____D C:\Users\kabby\AppData\Roaming\vlc
2021-02-22 14:57 - 2020-10-02 09:05 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-02-19 15:24 - 2020-12-31 13:46 - 000000000 ____D C:\Users\kabby\AppData\Roaming\foobar2000
2021-02-19 15:21 - 2020-10-24 17:18 - 000000000 ____D C:\Users\kabby\Downloads\PopcornTime
2021-02-19 15:18 - 2020-05-24 16:42 - 000000000 ____D C:\Users\kabby\AppData\Local\NVIDIA
2021-02-19 13:32 - 2020-05-24 15:38 - 001606106 _____ C:\Windows\system32\PerfStringBackup.INI
2021-02-19 13:32 - 2019-03-19 12:57 - 000682526 _____ C:\Windows\system32\perfh005.dat
2021-02-19 13:32 - 2019-03-19 12:57 - 000137244 _____ C:\Windows\system32\perfc005.dat
2021-02-19 13:32 - 2019-03-19 05:50 - 000000000 ____D C:\Windows\INF
2021-02-19 13:31 - 2020-06-12 04:14 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-02-19 13:31 - 2020-05-24 16:03 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-02-19 13:26 - 2020-05-24 15:33 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-02-19 13:26 - 2019-03-19 05:37 - 000524288 _____ C:\Windows\system32\config\BBI
2021-02-16 19:36 - 2020-05-25 00:18 - 000004264 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2021-02-14 22:54 - 2020-05-24 16:42 - 000000000 ____D C:\Users\kabby\AppData\Local\NVIDIA Corporation
2021-02-13 11:03 - 2020-05-24 15:37 - 000000000 ___RD C:\Users\kabby\3D Objects
2021-02-13 11:02 - 2020-05-24 15:33 - 000352448 _____ C:\Windows\system32\FNTCACHE.DAT
2021-02-13 01:34 - 2019-03-19 05:52 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-02-13 01:34 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-02-13 01:34 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SystemResources
2021-02-13 01:34 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\oobe
2021-02-13 01:34 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\es-MX
2021-02-13 01:34 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\Dism
2021-02-13 01:34 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\ShellExperiences
2021-02-13 01:34 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-02-13 01:34 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\bcastdvr
2021-02-13 01:34 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Common Files\System
2021-02-12 23:49 - 2019-03-19 12:59 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll
2021-02-12 23:49 - 2019-03-19 12:59 - 000019469 _____ C:\Windows\system32\OEMDefaultAssociations.xml
2021-02-12 23:49 - 2019-03-19 05:37 - 000000000 ____D C:\Windows\CbsTemp
2021-02-11 09:01 - 2020-05-25 00:15 - 000000000 ____D C:\ProgramData\Avast Software
2021-02-10 23:50 - 2020-05-24 23:08 - 000000000 ____D C:\Windows\system32\MRT
2021-02-10 23:47 - 2020-05-24 23:08 - 130141752 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-02-08 09:53 - 2020-05-24 15:39 - 000000000 ___RD C:\Users\kabby\OneDrive
2021-02-08 09:53 - 2020-05-24 15:36 - 000002365 _____ C:\Users\kabby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-02-05 20:30 - 2020-10-02 09:05 - 000916288 _____ (Microsoft Corporation) C:\Windows\system32\sedplugins.dll
2021-02-05 20:30 - 2020-10-02 09:05 - 000437056 _____ (Microsoft Corporation) C:\Windows\system32\QualityUpdateAssistant.dll
2021-02-04 19:29 - 2020-09-24 11:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec
2021-02-04 19:29 - 2020-07-15 14:02 - 000001798 _____ C:\Users\kabby\Desktop\NordVPN.lnk
2021-02-04 19:29 - 2020-07-15 14:02 - 000000000 ____D C:\ProgramData\NordVPN
2021-02-04 19:29 - 2020-07-15 14:02 - 000000000 ____D C:\Program Files\NordVPN
2021-02-04 19:29 - 2020-06-28 15:18 - 000000000 ____D C:\Users\kabby\AppData\Local\NordVPN
2021-02-02 21:19 - 2020-05-24 15:38 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-02-02 19:34 - 2020-05-24 17:07 - 000000000 ____D C:\Users\kabby\AppData\Roaming\TS3Client
2021-02-01 14:25 - 2021-01-06 14:07 - 000105184 _____ C:\Windows\system32\Drivers\NDivert.sys

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24-02-2021
Ran by kabby (25-02-2021 15:29:26)
Running from D:\Programy\Frst
Windows 10 Pro Version 1909 18363.1379 (X64) (2020-05-24 14:35:01)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1790331142-4152674689-3922563330-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1790331142-4152674689-3922563330-503 - Limited - Disabled)
Guest (S-1-5-21-1790331142-4152674689-3922563330-501 - Limited - Disabled)
kabby (S-1-5-21-1790331142-4152674689-3922563330-1001 - Administrator - Enabled) => C:\Users\kabby
WDAGUtilityAccount (S-1-5-21-1790331142-4152674689-3922563330-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Aktualizace NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.10.2442 - Avast Software)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.75.1089 - AB Team, d.o.o.)
Cisco Packet Tracer 7.3.0 64Bit (HKLM\...\Cisco Packet Tracer 7.3.0 64Bit_is1) (Version: - Cisco Systems, Inc.)
CSR Harmony Wireless Software Stack (HKLM\...\{17DEA095-8EE1-49A2-AC5A-9663DB098FA9}) (Version: 2.1.63.0 - Název společnosti:)
foobar2000 v1.6.2 (HKLM-x32\...\foobar2000) (Version: 1.6.2 - Peter Pawlowski)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 88.0.4324.182 - Google LLC)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 88.0.705.74 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.141.59 - )
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1790331142-4152674689-3922563330-1001\...\OneDriveSetup.exe) (Version: 21.002.0104.0005 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BAB9FCC5-1506-4B4F-BFCA-EDE0BDB86C21}) (Version: 2.75.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
NetLimiter 4 (HKLM\...\{A15841B0-BED2-4DCE-85A3-C4E529797FB3}) (Version: 4.0.67.0 - Locktime Software) Hidden
NetLimiter 4 (HKLM-x32\...\NetLimiter 4 4.0.67.0) (Version: 4.0.67.0 - Locktime Software)
NordVPN (HKLM\...\{19465C24-3D5D-4327-B99F-3CC0A1D38151}_is1) (Version: 6.34.4.0 - TEFINCOM S.A.)
NordVPN network TAP (HKLM-x32\...\{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN)
NordVPN network TUN (HKLM\...\{BD0E4F38-D3F6-452D-A32E-B14D721839AC}) (Version: 1.0.1 - NordVPN)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.27 - NVIDIA Corporation) Hidden
NVIDIA FrameView SDK 1.1.4923.29214634 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29214634 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.5.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.5.70 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 461.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 461.40 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NvModuleTracker (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Version: 6.14.24033.38719 - NVIDIA Corporation) Hidden
Popcorn Time (HKLM-x32\...\Popcorn Time_is1) (Version: 6.2.1.17 - Popcorn Time) <==== ATTENTION
qBittorrent 4.2.5 (HKLM-x32\...\qBittorrent) (Version: 4.2.5 - The qBittorrent project)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7848 - Realtek Semiconductor Corp.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.3 - TeamSpeak Systems GmbH)
TradeSkillMaster Application version 1.0 (HKLM-x32\...\{c44da794-b956-4d50-8733-346d56ae63c7}_is1) (Version: 1.0 - TradeSkillMaster)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
WowUp 2.0.0-alpha.15 (HKU\S-1-5-21-1790331142-4152674689-3922563330-1001\...\b31ca559-50e4-54d8-a458-330e72a28314) (Version: 2.0.0-alpha.15 - Jliddev)

Packages:
=========
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-05-24] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-05-24] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1252.0_x64__8wekyb3d8bbwe [2021-02-05] (Microsoft Studios) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.960.0_x64__56jybvy8sckqj [2021-01-22] (NVIDIA Corp.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.153.608.0_x86__zpdnekdrzrea0 [2021-02-21] (Spotify AB) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-01-08] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-01-08] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-01-08] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d67c20d727d4578c\nvshext.dll [2021-01-23] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-01-08] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2021-02-25 14:58 - 2021-02-25 14:58 - 000101376 _____ () [File not signed] \\?\C:\Users\kabby\AppData\Local\Temp\7f52d491-05a1-4532-b733-eda743082ea9.tmp.node
2020-05-24 16:24 - 2015-05-08 13:26 - 000104448 _____ () [File not signed] C:\Program Files (x86)\ASUS\AXSP\1.02.00\ATKEX.dll
2020-05-24 16:24 - 2021-02-19 13:26 - 000028672 _____ () [File not signed] C:\Program Files (x86)\ASUS\AXSP\1.02.00\PEbiosinterface32.dll
2020-11-30 16:46 - 2020-11-30 16:46 - 000053760 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\_bz2.pyd
2020-11-30 16:46 - 2020-11-30 16:46 - 000084992 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\_ctypes.pyd
2020-11-30 16:46 - 2020-11-30 16:46 - 000783360 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\_hashlib.pyd
2020-11-30 16:46 - 2020-11-30 16:46 - 000137216 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\_lzma.pyd
2020-11-30 16:46 - 2020-11-30 16:46 - 000047104 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\_socket.pyd
2020-11-30 16:46 - 2020-11-30 16:46 - 000039424 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\psutil._psutil_windows.pyd
2020-11-30 16:46 - 2020-11-30 16:46 - 001861120 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\PyQt5.QtCore.pyd
2020-11-30 16:46 - 2020-11-30 16:46 - 002002944 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\PyQt5.QtGui.pyd
2020-11-30 16:46 - 2020-11-30 16:46 - 004101120 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\PyQt5.QtWidgets.pyd
2020-11-30 16:46 - 2020-11-30 16:46 - 000009728 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\select.pyd
2020-11-30 16:46 - 2020-11-30 16:46 - 000075264 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\sip.pyd
2020-11-30 16:46 - 2020-11-30 16:46 - 000758784 _____ () [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\unicodedata.pyd
2020-10-27 01:23 - 2020-10-25 16:31 - 002812416 _____ () [File not signed] C:\Users\kabby\AppData\Local\Programs\wowup\ffmpeg.dll
2020-10-27 01:23 - 2020-10-25 16:31 - 000438784 _____ () [File not signed] C:\Users\kabby\AppData\Local\Programs\wowup\libegl.dll
2020-10-27 01:23 - 2020-10-25 16:31 - 009659392 _____ () [File not signed] C:\Users\kabby\AppData\Local\Programs\wowup\libglesv2.dll
2020-11-30 16:46 - 2020-11-30 16:46 - 002741248 _____ (Python Software Foundation) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\python34.dll
2020-11-30 16:46 - 2020-11-30 16:46 - 000848896 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\icudt53.dll
2020-11-30 16:46 - 2020-11-30 16:46 - 001580032 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\icuin53.dll
2020-11-30 16:46 - 2020-11-30 16:46 - 001079296 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\icuuc53.dll
2020-11-30 16:46 - 2020-11-30 16:46 - 000036352 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qdds.dll
2020-11-30 16:46 - 2020-11-30 16:46 - 000022016 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qgif.dll
2020-11-30 16:46 - 2020-11-30 16:46 - 000029184 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qicns.dll
2020-11-30 16:46 - 2020-11-30 16:46 - 000022016 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qico.dll
2020-11-30 16:46 - 2020-11-30 16:46 - 000381952 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qjp2.dll
2020-11-30 16:46 - 2020-11-30 16:46 - 000206848 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qjpeg.dll
2020-11-30 16:46 - 2020-11-30 16:46 - 000218624 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qmng.dll
2020-11-30 16:46 - 2020-11-30 16:46 - 000016384 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qtga.dll
2020-11-30 16:46 - 2020-11-30 16:46 - 000308736 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qtiff.dll
2020-11-30 16:46 - 2020-11-30 16:46 - 000015360 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qwbmp.dll
2020-11-30 16:46 - 2020-11-30 16:46 - 000287232 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\imageformats\qwebp.dll
2020-11-30 16:46 - 2020-11-30 16:46 - 000991744 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\platforms\qwindows.dll
2020-11-30 16:46 - 2020-11-30 16:46 - 004182528 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\Qt5Core.dll
2020-11-30 16:46 - 2020-11-30 16:46 - 004877312 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\Qt5Gui.dll
2020-11-30 16:46 - 2020-11-30 16:46 - 004490752 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\TradeSkillMaster Application\app\Qt5Widgets.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2011-01-19] (Skype Technologies SA -> Skype Technologies)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1790331142-4152674689-3922563330-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\kabby\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\black wallpaper.jpg
DNS Servers: 103.86.96.100 - 103.86.99.100
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

Network Binding:
=============
Ethernet 2: NordVPN LightWeight Firewall -> NordLwf (enabled)
Ethernet: NordVPN LightWeight Firewall -> NordLwf (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{5DFB6B53-11C7-4B32-8C83-5DFC8E75C72C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{154DE4DE-D923-4AC6-839E-BFB450D8CEE6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C0FC08D7-3503-4318-AE88-ABAC260BBB2C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{A36F9410-6AB9-418C-B375-08C69C68E39A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{ECCEACB9-B1FC-4B09-83AC-6EAD6D5BC3D2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{6DF96047-E25D-4114-9C30-9D37769C2834}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{A0A1D080-9B1C-4E13-B32E-8E07A21BE235}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )
FirewallRules: [{A0489AA8-3866-4E26-950F-0171E4040AF3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )
FirewallRules: [{74AA7637-D4A1-4593-8EFF-A2031394B031}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{16E9C55A-EE86-4559-AC6A-A3921A0B912D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{2EC22922-1CEE-4B24-9E27-D09F797EA434}C:\program files\cisco packet tracer 7.3.0\bin\packettracer7.exe] => (Allow) C:\program files\cisco packet tracer 7.3.0\bin\packettracer7.exe (CISCO SYSTEMS, INC. -> Cisco Systems, Inc)
FirewallRules: [UDP Query User{AF328C59-5616-4457-BDD2-947BF5E3CE90}C:\program files\cisco packet tracer 7.3.0\bin\packettracer7.exe] => (Allow) C:\program files\cisco packet tracer 7.3.0\bin\packettracer7.exe (CISCO SYSTEMS, INC. -> Cisco Systems, Inc)
FirewallRules: [{635C148C-0864-4AC5-95CC-73E311E305A0}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{998B1C20-02A1-45F1-9F4A-1FEB9A781F2B}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{3F353EDA-127F-46A0-AD53-5778E18B64D4}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe (Popcorn Time) [File not signed]
FirewallRules: [{6FED912B-2B8F-4ACE-8C01-097BFD782DCA}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe (Popcorn Time) [File not signed]
FirewallRules: [{DD3B9557-40D1-443E-8DC2-B3B563B405CE}] => (Allow) C:\Program Files (x86)\Popcorn Time\PopcornTimeDesktop.exe () [File not signed]
FirewallRules: [{EDF48BFB-225B-44B0-A3AD-799AD96C9B68}] => (Allow) C:\Program Files (x86)\Popcorn Time\PopcornTimeDesktop.exe () [File not signed]
FirewallRules: [{7F55591A-69D2-490D-A868-C16B81C63C38}] => (Allow) C:\Program Files (x86)\Popcorn Time\nodejs\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [{7C4F00B3-D9C6-42E7-AFCD-BF32F5737283}] => (Allow) C:\Program Files (x86)\Popcorn Time\nodejs\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [{5D891D98-27AA-47C9-B86F-051745A7ADB1}] => (Allow) C:\Program Files (x86)\Popcorn Time\chromecast\node.exe (Joyent Inc -> Joyent, Inc)
FirewallRules: [{83E447D4-7C6B-4D7A-BD61-27E9E651C552}] => (Allow) C:\Program Files (x86)\Popcorn Time\chromecast\node.exe (Joyent Inc -> Joyent, Inc)
FirewallRules: [{C8A91DF0-EEE1-4C64-A713-48285597CC2B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CFA7B261-127B-4BF1-92CF-6B50A8BD0C10}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F275B772-211E-4A0D-A02D-687B66D60909}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{88D497D1-7759-4CEC-99BA-FFA3508E7440}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F672F8A5-B225-4406-B277-88D6F6F22A09}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{16C57033-A229-4672-84BB-C5F81C91EEB7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{18B1A557-9D51-42E4-8B8F-27D2189A2E50}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{23771E44-0110-47E0-801D-813518E0DF30}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4E0C8691-209C-4010-A458-467E80E0AB51}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{7EA7374B-7AA3-4646-B00C-9DBA4FE54469}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.153.608.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4ED48B67-858E-41A8-A462-86E9F5C788D3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.153.608.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7B5E434D-497C-4901-A5FD-A2C943572FC3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.153.608.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7D47B0E4-151B-4333-8952-986470364145}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.153.608.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F0D44C75-1684-416F-B7C8-F27CD1438B06}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.153.608.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BAD5D6CB-B86B-4BAD-923B-38950AAC5D04}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.153.608.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5D8F002A-9A12-4849-A495-CD87A518E18E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.153.608.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{CFE85FD5-8BCC-444A-BCA7-C0199FD06B87}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.153.608.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)

==================== Restore Points =========================

19-02-2021 09:04:00 Naplánovaný kontrolní bod
22-02-2021 14:57:34 Windows Update

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (02/22/2021 03:17:04 PM) (Source: Microsoft-Windows-Spell-Checking) (EventID: 31) (User: DESKTOP-3SVS0ND)
Description: Aktualizace vlastního uživatelského seznamu slov 1 se nezdařila: -2147024894. Kontrola pravopisu zůstane dostupná, ale tento uživatelský seznam slov nebude aktualizován.

Error: (02/19/2021 03:22:58 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program PopcornTimeDesktop.exe verze 6.2.1.17 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 2c48

Čas spuštění: 01d706ca1e7f3c40

Čas ukončení: 7

Cesta k aplikaci: C:\Program Files (x86)\Popcorn Time\PopcornTimeDesktop.exe

ID hlášení: 2be1a33a-14eb-4594-978e-1665b56267cb

Úplný název balíčku s chybou:

ID aplikace relativní podle balíčku s chybou:

Typ zablokování: Unknown

Error: (02/19/2021 01:25:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: CsrBtService.exe, verze: 2.1.63.0, časové razítko: 0x4f6b2b7e
Název chybujícího modulu: CsrBtService.exe, verze: 2.1.63.0, časové razítko: 0x4f6b2b7e
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000001d7c2
ID chybujícího procesu: 0x14b8
Čas spuštění chybující aplikace: 0x01d706ba3c9f476b
Cesta k chybující aplikaci: C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtService.exe
Cesta k chybujícímu modulu: C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtService.exe
ID zprávy: a5dabf4c-4b7e-4377-9343-3ca1b48602ad
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (02/13/2021 01:34:15 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_WpnUserService, verze: 10.0.18362.1, časové razítko: 0x32d6c210
Název chybujícího modulu: ntdll.dll, verze: 10.0.18362.1316, časové razítko: 0x45a49e53
Kód výjimky: 0xc000000d
Posun chyby: 0x000000000010f010
ID chybujícího procesu: 0x1a1c
Čas spuštění chybující aplikace: 0x01d70186ba079802
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\ntdll.dll
ID zprávy: 50ffdd5c-60bf-4660-8103-730b9927e1f9
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (02/13/2021 01:34:07 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_WpnUserService, verze: 10.0.18362.1, časové razítko: 0x32d6c210
Název chybujícího modulu: ntdll.dll, verze: 10.0.18362.1316, časové razítko: 0x45a49e53
Kód výjimky: 0xc000000d
Posun chyby: 0x000000000010f010
ID chybujícího procesu: 0x1a1c
Čas spuštění chybující aplikace: 0x01d70186ba079802
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\ntdll.dll
ID zprávy: f2b5a52e-4344-48dd-a8de-2801d1136840
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (02/10/2021 11:50:00 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1020) (User: NT AUTHORITY)
Description: Velikost požadované vyrovnávací paměti je větší než velikost vyrovnávací paměti předané do funkce Collect knihovny DLL rozšiřitelných čítačů C:\Windows\System32\perfts.dll pro službu LSM. Velikost dané vyrovnávací paměti: 27216; požadovaná velikost: 32120.

Error: (01/13/2021 01:17:24 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (01/13/2021 10:22:41 AM) (Source: Microsoft-Windows-Perflib) (EventID: 1020) (User: NT AUTHORITY)
Description: Velikost požadované vyrovnávací paměti je větší než velikost vyrovnávací paměti předané do funkce Collect knihovny DLL rozšiřitelných čítačů C:\Windows\System32\perfts.dll pro službu LSM. Velikost dané vyrovnávací paměti: 27120; požadovaná velikost: 30280.


System errors:
=============
Error: (02/25/2021 11:26:22 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (02/25/2021 10:49:27 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-3SVS0ND)
Description: Server Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (02/25/2021 08:49:43 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-3SVS0ND)
Description: Server Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (02/25/2021 08:44:51 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-3SVS0ND)
Description: Server Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (02/24/2021 03:44:41 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-3SVS0ND)
Description: Server Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (02/24/2021 11:28:07 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {E60687F7-01A1-40AA-86AC-DB1CBF673334} se v daném časovém limitu neregistroval u služby DCOM.

Error: (02/24/2021 11:26:07 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {E60687F7-01A1-40AA-86AC-DB1CBF673334} se v daném časovém limitu neregistroval u služby DCOM.

Error: (02/24/2021 10:49:09 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-3SVS0ND)
Description: Server Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca se v daném časovém limitu neregistroval u služby DCOM.


Windows Defender:
================
Date: 2021-02-25 15:19:28.138
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-02-25 15:19:27.884
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-02-25 15:15:56.393
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-02-25 15:14:28.233
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-02-25 15:14:27.964
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-02-25 15:09:28.071
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-02-25 15:09:27.884
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-02-25 15:08:09.270
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-02-25 15:08:00.553
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2021-02-25 15:07:59.882
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Event[10]:

Date: 2021-02-25 15:07:58.723
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Event[11]:

Date: 2021-02-25 15:07:35.049
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. 1708 11/09/2012
Motherboard: ASUSTeK COMPUTER INC. P8Z77-M PRO
Processor: Intel(R) Core(TM) i5-3570K CPU @ 3.40GHz
Percentage of memory in use: 70%
Total physical RAM: 8136.61 MB
Available physical RAM: 2424.75 MB
Total Virtual: 18985.82 MB
Available Virtual: 8934.55 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.88 GB) (Free:741.68 GB) NTFS
Drive d: (Data) (Fixed) (Total:1862.89 GB) (Free:301.87 GB) NTFS

\\?\Volume{e990dd14-7b1d-4a7d-933c-11cc92c70870}\ (Obnovení) (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS
\\?\Volume{0a852f26-a6b1-431a-9e05-faa1a8d6e74d}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 8D1D2D8A)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15197
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Preventivní kontrola logu

#2 Příspěvek od JaRon »

ahoj,
mozes prescanovat s ADWCleanerom ale nevidim v logoch nejaky problem :)
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

korbel
Návštěvník
Návštěvník
Příspěvky: 11
Registrován: 19 dub 2020 21:57

Re: Preventivní kontrola logu

#3 Příspěvek od korbel »

Tady je log z ADWcleaneru...12 věcí sem šoupl do karantény :/

# -------------------------------
# Malwarebytes AdwCleaner 8.1.0.0
# -------------------------------
# Build: 02-15-2021
# Database: 2021-01-26.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 02-26-2021
# Duration: 00:00:02
# OS: Windows 10 Pro
# Cleaned: 12
# Failed: 0


***** [ Services ] *****

Deleted Update service

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Conduit
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{3F353EDA-127F-46A0-AD53-5778E18B64D4}
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{5D891D98-27AA-47C9-B86F-051745A7ADB1}
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{6FED912B-2B8F-4ACE-8C01-097BFD782DCA}
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{7C4F00B3-D9C6-42E7-AFCD-BF32F5737283}
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{7F55591A-69D2-490D-A868-C16B81C63C38}
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{83E447D4-7C6B-4D7A-BD61-27E9E651C552}
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{DD3B9557-40D1-443E-8DC2-B3B563B405CE}
Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{EDF48BFB-225B-44B0-A3AD-799AD96C9B68}
Deleted HKLM\Software\Wow6432Node\Conduit

***** [ Chromium (and derivatives) ] *****

Deleted mfhnkgpdlogbknkhlgdjlejeljbhflim

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [2847 octets] - [26/02/2021 19:37:42]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15197
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Preventivní kontrola logu

#4 Příspěvek od JaRon »

Dobre si urobil :)
Conduit je spomalovac, malo by to byt OK
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

korbel
Návštěvník
Návštěvník
Příspěvky: 11
Registrován: 19 dub 2020 21:57

Re: Preventivní kontrola logu

#5 Příspěvek od korbel »

Děkuji za kontrolu :)

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15197
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Preventivní kontrola logu

#6 Příspěvek od JaRon »

Rado sa stalo
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

Zamčeno