Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Windows defender mi zablokoval pc, že mám Trojského koně a prosím o kontrolu a následné vyřešení děkuji.

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Oudyssey
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 29 pro 2020 20:35

Windows defender mi zablokoval pc, že mám Trojského koně a prosím o kontrolu a následné vyřešení děkuji.

#1 Příspěvek od Oudyssey »

FRST
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-05-2021 01
Ran by micha (administrator) on DESKTOP-LVA03BU (Micro-Star International Co., Ltd. MS-7B48) (01-06-2021 13:56:44)
Running from C:\Users\micha\OneDrive\Plocha\čištění pc
Loaded Profiles: micha
Platform: Windows 10 Home Version 20H2 19042.985 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe <3>
(AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(Discord Inc. -> Discord Inc.) C:\Users\micha\AppData\Local\Discord\app-1.0.9002\Discord.exe <6>
(Electronic Arts, Inc. -> Electronic Arts) D:\Games\Origin\OriginWebHelperService.exe
(Flexera Software LLC -> Flexera Software LLC) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
(Flexera Software LLC -> Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_1e5aa28740c131d2\RstMwService.exe
(IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASC_IObitDel.exe
(IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService_IObitDel.exe
(IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray_IObitDel.exe
(IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor_IObitDel.exe
(IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <13>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2105.19601.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.621.4222.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.621.4222.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_b5c7e9f1cc7d29c6\Display.NvContainer\NVDisplay.Container.exe <2>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_bb0c442560f99618\RtkAudUService64.exe <2>

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_bb0c442560f99618\RtkAudUService64.exe [1253232 2021-03-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [166144 2021-04-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33770112 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\Run: [Gaijin.Net Updater] => C:\Users\micha\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2374376 2020-12-03] (Gaijin Network LTD -> Gaijin)
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\Run: [MicrosoftEdgeAutoLaunch_ED02E366447D09E4F124EF89B233D989] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window /prefetch:5
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\MountPoints2: {1e49444c-489c-11eb-add2-806e6f6e6963} - "E:\autorun.exe"
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\MountPoints2: {d73365cf-4a16-11eb-addd-309c23d0ad08} - "G:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.212\Installer\chrmstp.exe [2021-05-11] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS 2020 Rychlé spuštění.lnk [2021-01-06]
ShortcutTarget: SOLIDWORKS 2020 Rychlé spuštění.lnk -> C:\Windows\Installer\{3F4681F3-B30B-4531-ADB2-3661B531F926}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe (Flexera) [File not signed]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0061C3E8-7179-493D-9492-CB98C0F66F14} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3336560 2021-04-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {03187F7C-579F-45E1-A53C-E7EFC3D7C55F} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1821968 2021-04-29] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {2835BE17-991E-4BA0-916A-BA2CB247AB47} - System32\Tasks\ProtonVPN Update => D:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [61760 2020-10-23] (ProtonVPN AG -> )
Task: {2C1E0458-C273-4F19-B776-D2607E7268EE} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905584 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2E5E70B4-2129-4931-8A2E-9992BDC17EAF} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2E7CE70F-B4D1-4A74-97A2-FE7CA27337E5} - System32\Tasks\Avast Software\Overseer => C:\Windows\OEM\CustomizationFiles\Overseer.exe [1790184 2021-04-29] (Avast Software s.r.o. -> Avast Software)
Task: {4EF9E34A-E4FD-40C3-AA3A-D55A5C41E3D7} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905584 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {583A19EA-114B-4CCF-95D7-143A91AC9316} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28158080 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {62CD99E3-70B3-4FC3-8B47-DF9A4C86DE12} - System32\Tasks\HWiNFO => D:\Program Files\HWiNFO64\HWiNFO64.EXE [5395120 2020-12-09] (Martin Malik - REALiX -> REALiX)
Task: {88CD7550-40E1-441D-AA1C-846774F4A841} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-05-20] (Piriform Software Ltd -> Piriform)
Task: {8AB433BF-42DF-42E6-8F31-E0CDFD005184} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-09-29] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {97785A08-CEF8-42BB-9AF6-7B6F66E2E1F6} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9ED3311A-7BE5-42E5-99AC-EC9648FC8EF0} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [4747008 2021-04-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
Task: {A05BAD6A-17E0-4606-B867-E47A1C0AF682} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A67CBFAB-7F4B-4994-B72F-6253E7A4F3A0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2020-12-28] (Google Inc -> Google Inc.)
Task: {A9545557-AFE7-4D61-A0E2-BF9C02ED8451} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [816960 2017-09-21] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {AABBED3F-3AE8-4026-9673-FA38C8EF1B7A} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B28DA1C5-1F69-4307-BC08-DC901DA01BDE} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D6F905BB-2615-4CC6-8398-E31AC0BFDD60} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-09-29] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {F931BCF5-CC3A-4B89-9F7B-124B6657C0CB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2020-12-28] (Google Inc -> Google Inc.)
Task: {FDAFE8E7-900C-44AC-BE57-805D53E40AC1} - System32\Tasks\Uninstaller_SkipUac_micha => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [6706200 2021-04-27] (IObit CO., LTD -> IObit)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{1e1aca64-35a3-4752-aa81-d435d4e5cfc5}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{6152e2c7-c809-4027-b34d-16ca16983613}: [DhcpNameServer] 10.8.0.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\micha\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-01]
Edge Notifications: Default -> hxxps://meet.google.com
Edge Extension: (Norton Safe Web) - C:\Users\micha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bdaafgjhhjkdplpffldcncdignokfkbo [2021-05-11]
Edge Extension: (Browsing Protection by F-Secure) - C:\Users\micha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjjnhpacphpjmnnlnccpfmhkcloaade [2021-05-17]

FireFox:
========
FF Plugin: 3ds.com/ComposerPlayerWebPlugin_x86_64 -> D:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Composer Player\Bin\npcomposerplayerwebplugin.dll [2020-05-08] (DASSAULT SYSTEMES SE -> Dassault Systemes)
FF Plugin-x32: 3ds.com/ComposerPlayerWebPlugin -> D:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Composer Player\Bin\x86\npcomposerplayerwebplugin.dll [2020-05-08] (DASSAULT SYSTEMES SE -> Dassault Systemes)
FF Plugin-x32: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-01-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-01-26] (Oracle America, Inc. -> Oracle Corporation)

Chrome:
=======
CHR Profile: C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default [2021-06-01]
CHR Extension: (Prezentace) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-12-28]
CHR Extension: (Dokumenty) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-12-28]
CHR Extension: (Disk Google) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-12-28]
CHR Extension: (YouTube) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-12-28]
CHR Extension: (Tabulky) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-12-28]
CHR Extension: (Dokumenty Google offline) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01]
CHR Extension: (Gmail) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-12-28]
CHR Extension: (Chrome Media Router) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-23]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [607488 2021-04-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [356608 2021-04-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [7941688 2021-04-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109480 2021-04-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8894752 2021-02-08] (BattlEye Innovations e.K. -> )
S3 CoordinatorServiceHost; D:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe [79360 2020-05-08] (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2021-01-07] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [926176 2021-03-16] (Epic Games Inc. -> Epic Games, Inc.)
S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [158992 2020-10-19] (IObit Information Technology -> IObit)
S3 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2333328 2020-05-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [183480 2017-11-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 Origin Client Service; D:\Games\Origin\OriginClientService.exe [2547288 2021-05-10] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; D:\Games\Origin\OriginWebHelperService.exe [3487320 2021-05-10] (Electronic Arts, Inc. -> Electronic Arts)
S3 ProtonVPN Service; D:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe [99136 2020-10-23] (ProtonVPN AG -> )
S3 ProtonVPN Update Service; D:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [61760 2020-10-23] (ProtonVPN AG -> )
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2021-01-06] (SolidWorks) [File not signed]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2103.7-0\NisSrv.exe [2624104 2021-04-27] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2103.7-0\MsMpEng.exe [128376 2021-04-27] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 AdvancedSystemCareService14; "C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe" [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_b5c7e9f1cc7d29c6\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_b5c7e9f1cc7d29c6\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 avgArDisk; C:\WINDOWS\System32\drivers\avgArDisk.sys [35816 2021-04-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [212344 2021-04-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [365112 2021-04-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [250408 2021-04-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [99384 2021-04-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [17344 2021-05-24] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [41432 2021-04-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [180576 2021-04-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [523080 2021-05-24] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [107920 2021-04-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [83008 2021-04-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [850784 2021-04-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [467840 2021-04-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [215488 2021-04-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [327104 2021-04-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
R3 cpuz145; C:\WINDOWS\temp\cpuz145\cpuz145_x64.sys [49968 2021-06-01] (CPUID -> CPUID)
R3 DroidCam; C:\WINDOWS\System32\drivers\droidcam.sys [32240 2020-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Dev47Apps)
R3 DroidCamVideo; C:\WINDOWS\System32\DriverStore\FileRepository\droidcamvideo.inf_amd64_47e18363cbf3dfe0\droidcamvideo.sys [33784 2021-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 IUFileFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys [43896 2020-07-31] (IObit Information Technology -> IObit)
R3 IUProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys [37112 2020-07-31] (IObit Information Technology -> IObit)
R3 IURegistryFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys [51128 2020-07-31] (IObit Information Technology -> IObit)
S3 ProtonVPNSplitTunnel; D:\Program Files (x86)\Proton Technologies\ProtonVPN\x64\Win10\ProtonVPN.SplitTunnelDriver.sys [31584 2020-08-19] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2014-11-05] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49008 2020-08-19] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49560 2021-04-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [421088 2021-04-27] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72928 2021-04-27] (Microsoft Windows -> Microsoft Corporation)
R2 WtfEngineDrv; C:\WINDOWS\system32\DRIVERS\WtfEngineDrv.sys [27904 2016-02-01] (Initex -> AAA Internet Publishing, Inc.)
U4 AscRegistryFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys [X]
U4 iobit_monitor_server; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win10_x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-06-01 13:54 - 2021-06-01 13:55 - 002299904 _____ (Farbar) C:\Users\micha\Downloads\FRST64 (2).exe
2021-06-01 12:36 - 2021-06-01 12:36 - 008534696 _____ (Malwarebytes) C:\Users\micha\Downloads\adwcleaner_8.2.exe
2021-05-31 21:05 - 2021-06-01 12:16 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3466437676-3512538346-3754865819-1001
2021-05-31 21:05 - 2021-05-31 21:05 - 000002372 _____ C:\Users\micha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-05-26 10:07 - 2021-05-26 10:08 - 066480404 _____ (BetterDiscord) C:\Users\micha\Downloads\BetterDiscord-Windows (2).exe
2021-05-26 10:06 - 2021-06-01 12:16 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-05-25 10:36 - 2021-05-25 10:36 - 010398237 _____ C:\Users\micha\Downloads\Iconik_XLBuckets_FS19.zip
2021-05-24 21:04 - 2021-05-24 21:04 - 000000000 ____D C:\Users\micha\AppData\Local\Apple Computer
2021-05-24 18:48 - 2021-05-24 18:48 - 000017344 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgElam.sys
2021-05-24 18:47 - 2021-05-24 18:47 - 000523080 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgNetHub.sys
2021-05-24 10:30 - 2021-05-24 10:30 - 000001111 _____ C:\ProgramData\Plocha\Plants vs Zombies GW2.lnk
2021-05-24 10:30 - 2021-05-24 10:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plants vs Zombies GW2
2021-05-22 08:51 - 2021-05-22 08:51 - 010002299 _____ C:\Users\micha\Downloads\FS19_Duchesne16Ttandem.zip
2021-05-22 08:48 - 2021-05-22 08:56 - 023539501 _____ C:\Users\micha\Downloads\FS19_CAMARA_RT16.zip
2021-05-22 08:45 - 2021-05-22 08:45 - 013219420 _____ C:\Users\micha\Downloads\FS19_LizardD882.zip
2021-05-22 08:44 - 2021-05-22 08:44 - 017105090 _____ C:\Users\micha\Downloads\FS19_ZDT_NS23_1.zip
2021-05-22 08:43 - 2021-05-22 08:44 - 105838438 _____ C:\Users\micha\Downloads\FS19_ZmajPrikolicePack.zip
2021-05-22 08:42 - 2021-05-22 08:42 - 006168009 _____ C:\Users\micha\Downloads\FS19_VeenhuisJVK16000.zip
2021-05-22 08:41 - 2021-05-22 08:42 - 019854169 _____ C:\Users\micha\Downloads\FS19_Maupu_TDM8632.zip
2021-05-22 08:40 - 2021-05-22 08:41 - 021469330 _____ C:\Users\micha\Downloads\FS19_HaweSLW20.zip
2021-05-18 20:11 - 2021-05-13 20:22 - 001855184 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-05-18 20:11 - 2021-05-13 20:22 - 001855184 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-05-18 20:11 - 2021-05-13 20:22 - 001453360 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-05-18 20:11 - 2021-05-13 20:22 - 001435880 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-05-18 20:11 - 2021-05-13 20:22 - 001435880 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-05-18 20:11 - 2021-05-13 20:22 - 001192752 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-05-18 20:11 - 2021-05-13 20:22 - 001094864 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-05-18 20:11 - 2021-05-13 20:22 - 001094864 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-05-18 20:11 - 2021-05-13 20:22 - 000948968 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-05-18 20:11 - 2021-05-13 20:22 - 000948968 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-05-18 20:11 - 2021-05-13 20:19 - 001514800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2021-05-18 20:11 - 2021-05-13 20:19 - 001166112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2021-05-18 20:11 - 2021-05-13 20:19 - 000715544 _____ C:\WINDOWS\system32\nvofapi64.dll
2021-05-18 20:11 - 2021-05-13 20:19 - 000675104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2021-05-18 20:11 - 2021-05-13 20:19 - 000626968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2021-05-18 20:11 - 2021-05-13 20:19 - 000575768 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2021-05-18 20:11 - 2021-05-13 20:19 - 000564000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2021-05-18 20:11 - 2021-05-13 20:18 - 002106144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2021-05-18 20:11 - 2021-05-13 20:18 - 001590576 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2021-05-18 20:11 - 2021-05-13 20:18 - 000811824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2021-05-18 20:11 - 2021-05-13 20:18 - 000689952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2021-05-18 20:11 - 2021-05-13 20:18 - 000656176 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2021-05-18 20:11 - 2021-05-13 20:18 - 000445744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2021-05-18 20:11 - 2021-05-13 20:17 - 008317232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2021-05-18 20:11 - 2021-05-13 20:17 - 007434032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2021-05-18 20:11 - 2021-05-13 20:17 - 005678360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2021-05-18 20:11 - 2021-05-13 20:17 - 004795184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2021-05-18 20:11 - 2021-05-13 20:17 - 002823472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2021-05-18 20:11 - 2021-05-13 20:16 - 000848688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2021-05-18 20:11 - 2021-05-13 20:15 - 007212224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2021-05-18 20:11 - 2021-05-13 20:15 - 006159152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2021-05-18 20:11 - 2021-05-13 12:38 - 000136472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2021-05-18 20:11 - 2021-05-13 12:38 - 000087164 _____ C:\WINDOWS\system32\nvinfo.pb
2021-05-18 20:11 - 2021-05-13 12:38 - 000037656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll
2021-05-17 18:59 - 2021-05-17 19:31 - 334987550 _____ C:\Users\micha\Downloads\La_Campagne_Deux_Sevriennes.zip
2021-05-16 14:29 - 2021-06-01 12:16 - 000002402 _____ C:\WINDOWS\system32\Tasks\Uninstaller_SkipUac_micha
2021-05-16 14:29 - 2021-05-16 14:29 - 000001441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk
2021-05-16 14:29 - 2021-05-16 14:29 - 000001429 _____ C:\ProgramData\Plocha\IObit Uninstaller.lnk
2021-05-16 14:28 - 2021-05-16 14:28 - 028087848 _____ (IObit ) C:\Users\micha\Downloads\iobituninstaller (1).exe
2021-05-16 09:20 - 2021-05-16 09:20 - 026575950 _____ C:\Users\micha\Downloads\FS19_realManualTransmission_master__fs-mods.blog.cz (2).zip
2021-05-15 09:30 - 2021-05-15 09:30 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-05-15 09:30 - 2021-05-15 09:30 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-05-15 09:30 - 2021-05-15 09:30 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-05-15 09:29 - 2021-05-15 09:29 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-05-15 09:29 - 2021-05-15 09:29 - 001823816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-05-15 09:29 - 2021-05-15 09:29 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-05-15 09:29 - 2021-05-15 09:29 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-05-15 09:29 - 2021-05-15 09:29 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-15 09:29 - 2021-05-15 09:29 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-05-15 09:29 - 2021-05-15 09:29 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-05-15 09:29 - 2021-05-15 09:29 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-05-15 09:29 - 2021-05-15 09:29 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-05-14 14:46 - 2021-05-14 14:46 - 007260190 _____ C:\Users\micha\Downloads\FS19_GrimmeSE260Plus.zip
2021-05-14 14:44 - 2021-05-14 14:47 - 156618772 _____ C:\Users\micha\Downloads\FS19_MB_Trac_443 (2).zip
2021-05-14 14:44 - 2021-05-14 14:44 - 072030430 _____ C:\Users\micha\Downloads\FS19_Steyr_8150.zip
2021-05-09 10:24 - 2020-11-02 14:34 - 000017975 _____ C:\Users\micha\Downloads\SeasonsEconomy.lua
2021-05-09 10:23 - 2021-05-09 10:23 - 000000000 ____D C:\Users\micha\AppData\Local\GIANTSPackageRegistry
2021-05-09 10:23 - 2021-05-09 10:23 - 000000000 ____D C:\Users\micha\AppData\Local\GIANTS Editor 64bit 8.2.2
2021-05-09 10:23 - 2021-05-09 10:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIANTS Software
2021-05-09 10:22 - 2021-05-09 10:22 - 013985968 _____ (GIANTS Software GmbH ) C:\Users\micha\Downloads\GIANTS_Editor_8.2.2_win64.exe
2021-05-09 09:02 - 2021-05-09 09:02 - 020075460 _____ C:\Users\micha\Downloads\FS19_Berthoud_Tenor_35_37.zip
2021-05-07 08:02 - 2021-05-07 08:02 - 039690547 _____ C:\Users\micha\Downloads\FS19_NZA.zip
2021-05-07 08:00 - 2021-05-07 08:01 - 039528636 _____ C:\Users\micha\Downloads\FS19_Spirit_900s (1).zip
2021-05-07 07:58 - 2021-05-07 07:58 - 045570622 _____ C:\Users\micha\Downloads\FS19_VaderstadRapid800C___40_1__41_.zip
2021-05-06 22:02 - 2021-05-06 22:02 - 003720163 _____ C:\Users\micha\Downloads\FS19_HauerTopBlockConsole_Prefab.zip
2021-05-03 20:13 - 2021-05-03 20:13 - 025443396 _____ C:\Users\micha\Downloads\GFB_Trac_LS19.zip
2021-05-03 20:11 - 2021-05-03 20:11 - 021273629 _____ C:\Users\micha\Downloads\FS19_IHC955.zip
2021-05-03 20:09 - 2021-05-03 20:10 - 150026123 _____ C:\Users\micha\Downloads\FS19_JohnDeere_8000Series.zip
2021-05-03 20:02 - 2021-05-03 20:03 - 038581141 _____ C:\Users\micha\Downloads\FS19_Ursus1224_1614_V3.zip
2021-05-03 20:01 - 2021-05-03 20:03 - 120397362 _____ C:\Users\micha\Downloads\FS19_CaseIH1455XL (1).zip
2021-05-03 19:58 - 2021-05-03 19:58 - 046456014 _____ C:\Users\micha\Downloads\FS19_Steyr_8150_8165_SK2 (1).zip
2021-05-03 19:52 - 2021-05-03 19:53 - 050434761 _____ C:\Users\micha\Downloads\FS19_CaseIH_1X55XL.zip
2021-05-03 19:51 - 2021-05-03 19:53 - 115925391 _____ C:\Users\micha\Downloads\FS19_Valmet705_EL_EDIT.zip
2021-05-03 19:50 - 2021-05-03 19:50 - 029931929 _____ C:\Users\micha\Downloads\FS19_CaseIH_1455_SkyEdition.zip
2021-05-03 19:48 - 2021-05-03 19:49 - 050004277 _____ C:\Users\micha\Downloads\FS19_Zetor_7045_Horal_system (1).zip
2021-05-03 19:47 - 2021-05-03 19:48 - 111055503 _____ C:\Users\micha\Downloads\FS19_JD_40_Series_4WD.zip
2021-05-03 16:41 - 2021-05-03 16:41 - 005533930 _____ C:\Users\micha\Downloads\5_Personální politika firmy (1).pdf
2021-05-03 16:40 - 2021-05-03 16:43 - 009677621 _____ C:\Users\micha\Downloads\Činnosti podniku (3).pdf
2021-05-03 16:39 - 2021-05-03 16:43 - 009677621 _____ C:\Users\micha\Downloads\Činnosti podniku (2).pdf
2021-05-03 16:38 - 2021-05-03 16:38 - 005533930 _____ C:\Users\micha\Downloads\5_Personální politika firmy.pdf
2021-05-02 11:50 - 2021-05-02 11:50 - 023235883 _____ C:\Users\micha\Downloads\TT19_JohnDeere_4x50_Series.zip

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-06-01 13:56 - 2020-12-29 21:59 - 000000000 ____D C:\FRST
2021-06-01 13:54 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-01 13:40 - 2020-12-28 03:37 - 000000000 ____D C:\Users\micha\AppData\Roaming\discord
2021-06-01 13:40 - 2020-12-28 03:37 - 000000000 ____D C:\Users\micha\AppData\Local\Discord
2021-06-01 13:26 - 2020-12-28 08:42 - 000000000 ____D C:\Users\micha\AppData\LocalLow\IObit
2021-06-01 13:26 - 2020-12-28 08:42 - 000000000 ____D C:\Program Files (x86)\IObit
2021-06-01 13:26 - 2020-12-28 08:41 - 000000000 ____D C:\ProgramData\IObit
2021-06-01 13:24 - 2020-12-28 08:41 - 000000000 ____D C:\Users\micha\AppData\Roaming\IObit
2021-06-01 13:18 - 2020-12-28 01:35 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-06-01 12:46 - 2020-12-28 01:42 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-06-01 12:46 - 2019-12-07 16:41 - 000716764 _____ C:\WINDOWS\system32\perfh005.dat
2021-06-01 12:46 - 2019-12-07 16:41 - 000144942 _____ C:\WINDOWS\system32\perfc005.dat
2021-06-01 12:46 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-06-01 12:41 - 2021-02-04 00:10 - 000000000 ____D C:\Program Files\CCleaner
2021-06-01 12:41 - 2020-12-28 01:35 - 000000000 ____D C:\ProgramData\NVIDIA
2021-06-01 12:39 - 2021-04-29 19:32 - 000000000 ____D C:\ProgramData\AVG
2021-06-01 12:39 - 2021-04-14 19:50 - 000008192 ___SH C:\DumpStack.log.tmp
2021-06-01 12:39 - 2020-12-28 01:35 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-06-01 12:39 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-06-01 12:16 - 2021-04-29 19:37 - 000003250 _____ C:\WINDOWS\system32\Tasks\Antivirus Emergency Update
2021-06-01 12:16 - 2021-04-14 20:55 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-01 12:16 - 2021-04-14 20:55 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-01 12:16 - 2021-04-14 20:55 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-01 12:16 - 2021-04-14 20:55 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-01 12:16 - 2021-04-14 20:55 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-01 12:16 - 2021-04-14 20:55 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-01 12:16 - 2021-04-14 20:55 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-01 12:16 - 2021-04-14 20:55 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-01 12:16 - 2021-04-14 20:55 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-01 12:16 - 2021-04-14 20:55 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-01 12:16 - 2021-02-05 17:59 - 000003400 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-06-01 12:16 - 2021-02-05 17:59 - 000003176 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-06-01 12:16 - 2021-02-03 23:47 - 000002358 _____ C:\WINDOWS\system32\Tasks\HWiNFO
2021-06-01 12:16 - 2020-12-29 12:21 - 000002834 _____ C:\WINDOWS\system32\Tasks\ProtonVPN Update
2021-06-01 12:16 - 2020-12-28 15:09 - 000003354 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{3C66E53F-07F0-4903-A3F0-9C52DD208737}
2021-06-01 12:16 - 2020-12-28 09:35 - 000000000 ____D C:\Users\micha\AppData\Local\CrashDumps
2021-06-01 12:16 - 2020-12-28 01:51 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2021-06-01 12:16 - 2020-12-28 01:38 - 000003118 _____ C:\WINDOWS\system32\Tasks\Intel PTT EK Recertification
2021-06-01 12:16 - 2020-12-28 01:37 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-06-01 12:16 - 2020-12-28 01:37 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-06-01 11:29 - 2021-02-04 00:10 - 000002238 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-05-31 22:01 - 2020-12-28 13:27 - 000000000 ____D C:\Users\micha\AppData\Roaming\Spotify
2021-05-31 21:05 - 2020-12-28 01:52 - 000000000 ___RD C:\Users\micha\OneDrive
2021-05-30 21:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-05-29 12:44 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-05-29 12:38 - 2020-12-28 13:28 - 000000000 ____D C:\Users\micha\AppData\Local\Spotify
2021-05-29 12:37 - 2020-12-28 01:37 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-05-29 12:37 - 2020-12-28 01:37 - 000002281 _____ C:\ProgramData\Plocha\Microsoft Edge.lnk
2021-05-26 20:48 - 2020-12-28 01:41 - 000000000 ____D C:\Users\micha
2021-05-26 12:09 - 2020-12-28 08:42 - 000000000 ____D C:\ProgramData\ProductData
2021-05-26 11:09 - 2020-12-28 03:37 - 000000000 ____D C:\Users\micha\AppData\Local\D3DSCache
2021-05-25 10:21 - 2021-04-27 14:02 - 000000000 ____D C:\Users\micha\OneDrive\Dokumenty\Call of Duty Modern Warfare
2021-05-25 10:21 - 2020-12-28 03:47 - 000000000 ____D C:\Users\micha\OneDrive\Dokumenty\My Games
2021-05-24 21:31 - 2021-02-09 17:02 - 000000000 ____D C:\Users\micha\AppData\Local\Battle.net
2021-05-24 21:30 - 2021-02-09 17:08 - 000000000 ____D C:\Program Files (x86)\Call of Duty Modern Warfare
2021-05-24 18:48 - 2020-12-28 09:10 - 000000000 ____D C:\Users\micha\AppData\Roaming\Origin
2021-05-24 10:30 - 2020-12-28 02:00 - 000000000 ____D C:\ProgramData\Package Cache
2021-05-24 09:25 - 2020-12-28 09:10 - 000000000 ____D C:\Users\micha\AppData\Local\Origin
2021-05-24 09:25 - 2020-12-28 09:10 - 000000000 ____D C:\ProgramData\Origin
2021-05-21 19:21 - 2020-12-28 20:14 - 000000000 ____D C:\Program Files (x86)\Origin Games
2021-05-21 18:33 - 2021-03-09 20:15 - 000000872 _____ C:\ProgramData\Plocha\Apex Legends.lnk
2021-05-21 15:06 - 2020-12-28 08:39 - 000000000 ____D C:\Users\micha\AppData\Roaming\TS3Client
2021-05-20 17:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-05-19 15:01 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-05-18 20:14 - 2020-12-28 02:17 - 000000000 ____D C:\Users\micha\AppData\Local\NVIDIA
2021-05-18 20:14 - 2020-12-28 01:51 - 000000000 ____D C:\Users\micha\AppData\Local\Packages
2021-05-18 20:14 - 2020-12-28 01:51 - 000000000 ____D C:\ProgramData\Packages
2021-05-18 20:14 - 2020-12-28 01:35 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2021-05-18 20:12 - 2020-12-28 01:35 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-05-16 14:30 - 2020-12-28 03:37 - 000000000 ____D C:\Users\micha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net
2021-05-16 14:29 - 2020-12-28 08:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2021-05-15 10:28 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-05-15 10:27 - 2020-12-28 01:35 - 001230064 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-05-15 10:26 - 2019-12-07 16:42 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-05-15 09:21 - 2020-12-28 02:40 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-05-15 09:19 - 2020-12-28 02:40 - 132732536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-05-11 21:45 - 2020-12-28 02:05 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-05-11 21:45 - 2020-12-28 02:05 - 000002267 _____ C:\ProgramData\Plocha\Google Chrome.lnk
2021-05-07 21:27 - 2021-01-06 22:03 - 000000000 ____D C:\Users\micha\AppData\Local\SolidWorks
2021-05-07 21:27 - 2021-01-06 12:09 - 000000000 ____D C:\Users\micha\AppData\Roaming\SOLIDWORKS
2021-05-04 14:04 - 2021-03-26 16:39 - 000000000 ____D C:\Users\micha\AppData\Local\Ubisoft Game Launcher

==================== Files in the root of some directories ========

2021-01-24 14:04 - 2021-01-24 14:04 - 000007602 _____ () C:\Users\micha\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
ADDItiON

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-05-2021 01
Ran by micha (01-06-2021 13:57:44)
Running from C:\Users\micha\OneDrive\Plocha\čištění pc
Windows 10 Home Version 20H2 19042.985 (X64) (2020-12-27 23:38:06)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3466437676-3512538346-3754865819-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3466437676-3512538346-3754865819-503 - Limited - Disabled)
Guest (S-1-5-21-3466437676-3512538346-3754865819-501 - Limited - Disabled)
micha (S-1-5-21-3466437676-3512538346-3754865819-1001 - Administrator - Enabled) => C:\Users\micha
WDAGUtilityAccount (S-1-5-21-3466437676-3512538346-3754865819-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Norton Security (Enabled - Up to date) {30744133-1E94-7B35-F4A3-82A5AEF1CBAA}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}
FW: Norton Security (Enabled) {084FC016-54FB-7A6D-DFFC-2B9050228CD1}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

«WGMods Essentials» - #4 (HKLM-x32\...\WGMods_Essentials_ENG_is1) (Version: 1.12.0.0 - WGMods.net)
3DEXPERIENCE Marketplace for SOLIDWORKS (HKLM\...\{0060450C-5B44-424B-BD42-559F2A5D820A}) (Version: 6.29.21 - Dassault Systemes SolidWorks Corp)
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.6.6 - Electronic Arts, Inc.)
AVG AntiVirus FREE (HKLM-x32\...\AVG Antivirus) (Version: 21.3.3174 - AVG Technologies)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield™ V (HKLM-x32\...\{e26b382f-e945-4f70-9318-121b683f1d61}) (Version: 1.0.64.43202 - Electronic Arts)
Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.80 - Piriform)
Discord (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
DroidCam Client (HKLM-x32\...\DroidCam) (Version: 6.4.3 - Dev47apps)
Enlisted Launcher 1.0.3.42 (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\{5fcad5a5-d0d8-4edf-a5ba-040b397eac31}}_is1) (Version: - Gaijin Network)
Epic Games Launcher (HKLM-x32\...\{FEF3A9BA-A962-4469-AD62-04839D4BB847}) (Version: 1.1.298.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{0B736177-814A-4ADE-81D1-66A0FDD55BB4}) (Version: 1.1.11.0 - Epic Games, Inc.)
Farming Simulator 19 (HKLM-x32\...\FarmingSimulator2019_is1) (Version: 1.7.1 - GIANTS Software)
GIANTS Editor 8.2.2 64-bit (HKLM-x32\...\giants_editor_8.2.2_win64_is1) (Version: 8.2.2 - GIANTS Software GmbH)
Google Drive (HKLM-x32\...\{459CE109-4E46-4340-92BC-054642BC3BC2}) (Version: 1.31.2873.2758 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 90.0.4430.212 - Google LLC)
HWiNFO64 Version 6.40 (HKLM\...\HWiNFO64_is1) (Version: 6.40 - Martin Malik - REALiX)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1043 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{2b32b7d0-4f9f-47c8-adb7-807e6cb2fb75}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{44ded3eb-1686-46a6-9770-fd79096c29f7}) (Version: 10.1.1.45 - Intel(R) Corporation) Hidden
IObit Uninstaller 10 (HKLM-x32\...\IObitUninstall) (Version: 10.5.0.5 - IObit)
iTNC530 (340494) (HKLM-x32\...\{4E31D9A6-245B-41A6-949D-C7B029A703D2}) (Version: - )
Java 8 Update 281 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180281F0}) (Version: 8.0.2810.9 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 91.0.864.37 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\OneDriveSetup.exe) (Version: 21.083.0425.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{A0E1B43D-5F4A-46AF-9925-ABA3423325DC}) (Version: 2.77.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27012 (HKLM-x32\...\{427ada59-85e7-4bc8-b8d5-ebf59db60423}) (Version: 14.16.27012.6 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.16.27012 (HKLM-x32\...\{67f67547-9693-4937-aa13-56e296bd40f6}) (Version: 14.16.27012.6 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2015 (HKLM-x32\...\{ab213ab7-4792-4c6f-a3fa-8485d06c3475}) (Version: 14.0.23829 - Microsoft Corporation)
MSI Kombustor 3.5.0 (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version: - MSI Co., LTD)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.2.0.69 - MSI)
MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.3.0.20 - MSI)
NVIDIA FrameView SDK 1.1.4923.29781331 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29781331 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.22.0.32 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.22.0.32 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.60 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 466.47 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 466.47 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.99.47918 - Electronic Arts, Inc.)
Plants vs Zombies GW2 (HKLM-x32\...\{C4F00C98-13B4-4313-8152-50EE0B04ABE2}) (Version: 1.0.12.0 - Electronic Arts)
ProtonVPN (HKLM-x32\...\{D19979C9-8B5B-4500-AA6A-EF331F658074}) (Version: 1.17.5 - Proton Technologies AG) Hidden
ProtonVPN (HKLM-x32\...\ProtonVPN 1.17.5) (Version: 1.17.5 - Proton Technologies AG)
ProtonVPNTap (HKLM-x32\...\{BCB82CD9-F514-4F93-A6D9-F898494DC927}) (Version: 1.1.0 - Proton Technologies AG)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.23.1003.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8746.1 - Realtek Semiconductor Corp.)
SOLIDWORKS 2020 Czech Resources (HKLM\...\{D65A373E-8584-40DA-BF93-76CD3C3B1292}) (Version: 28.130.0086 - Název společnosti:) Hidden
SOLIDWORKS 2020 SP03 (HKLM\...\{3F4681F3-B30B-4531-ADB2-3661B531F926}) (Version: 28.130.0086 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS 2020 SP03 (HKLM-x32\...\SolidWorks Installation Manager 20200-40300-1100-100) (Version: 28.3.0.86 - SolidWorks Corporation)
SOLIDWORKS CAM 2020 SP03 (HKLM\...\{4DFF26A7-85C6-4495-ADE0-54FDF9AB6F31}) (Version: 28.30.0086 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS Composer Player 2020 SP03 (HKLM\...\{315D6942-B5F2-4FE1-BE37-364D1156F2E8}) (Version: 28.30.0086 - Název společnosti:) Hidden
SOLIDWORKS eDrawings 2020 SP03 (HKLM\...\{B21DE16A-42B5-46A8-A905-59579C7E70C4}) (Version: 28.30.0025 - Společnost Dassault Systemes SolidWorks Corp) Hidden
Spotify (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\Spotify) (Version: 1.1.60.672.g6ad9c215 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TAP-Windows 9.21.1 (HKLM\...\TAP-Windows) (Version: 9.21.1 - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH)
TruckersMP Launcher 1.0.0.4 (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 1.0.0.4 - TruckersMP Team)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 119.0.10382 - Ubisoft)
uRage Reaper Revolution Gaming mouse (HKLM-x32\...\uRage Reaper Revolution Gaming mouse) (Version: 1.0 - Areson)
War Thunder Launcher 1.0.3.260 (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Network)
Wargaming.net Game Center (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\Wargaming.net Game Center) (Version: 21.2.3.5077 - Wargaming.net)
WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
World of Tanks EU (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)
WPTx64 (HKLM-x32\...\{0B2C58EB-67A2-225B-60B2-D1990E55DD33}) (Version: 8.100.26866 - Microsoft)
WTFast 4.0 (HKLM-x32\...\{12B4121D-5221-4AFC-9EDC-63B0CA139856}_is1) (Version: 4.0.7.692 - Initex & AAA Internet Publishing)

Packages:
=========
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-04-28] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.5170.0_x64__8wekyb3d8bbwe [2021-05-23] (Microsoft Studios) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-05-26] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.25.245.0_x64__dt26b99r8h8gj [2021-05-03] (Realtek Semiconductor Corp)
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\microsoft.mpeg2videoextension_1.0.22661.0_x64__8wekyb3d8bbwe [2020-12-28] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2021-04-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ShellIconOverlayIdentifiers-x32: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2021-04-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> No File
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2021-04-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-07-31] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext32.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> No File
ContextMenuHandlers3: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2021-04-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers4: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> No File
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-07-31] (IObit Information Technology -> IObit)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_b5c7e9f1cc7d29c6\nvshext.dll [2021-05-13] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2021-04-29] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-07-31] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext32.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2021-05-21 18:27 - 2020-12-28 09:13 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:\Games\Origin\LIBEAY32.dll
2021-05-21 18:27 - 2020-12-28 09:13 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:\Games\Origin\ssleay32.dll
2021-05-21 18:27 - 2020-12-28 09:13 - 001611264 _____ (The Qt Company Ltd) [File not signed] D:\Games\Origin\platforms\qwindows.dll
2021-05-21 18:27 - 2020-12-28 09:13 - 005487104 _____ (The Qt Company Ltd) [File not signed] D:\Games\Origin\Qt5Core.dll
2021-05-21 18:27 - 2020-12-28 09:13 - 005841920 _____ (The Qt Company Ltd) [File not signed] D:\Games\Origin\Qt5Gui.dll
2021-05-21 18:27 - 2020-12-28 09:13 - 001179136 _____ (The Qt Company Ltd) [File not signed] D:\Games\Origin\Qt5Network.dll
2021-05-21 18:27 - 2020-12-28 09:13 - 000146432 _____ (The Qt Company Ltd) [File not signed] D:\Games\Origin\Qt5WebSockets.dll
2021-05-21 18:27 - 2020-12-28 09:13 - 005089792 _____ (The Qt Company Ltd) [File not signed] D:\Games\Origin\Qt5Widgets.dll
2021-05-21 18:27 - 2020-12-28 09:13 - 000184832 _____ (The Qt Company Ltd) [File not signed] D:\Games\Origin\Qt5Xml.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [10192]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\avgSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\avgSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2020-01-31] (IObit Information Technology -> IObit)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\ssv.dll [2021-01-26] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\jp2ssv.dll [2021-01-26] (Oracle America, Inc. -> Oracle Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\micha\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\summer_marathon_2018_2560x1440_logo_com_c2f913b335f7493b9dd1f3817c934be3.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\StartupFolder: => "SOLIDWORKS 2020 Rychlé spuštění.lnk"
HKLM\...\StartupApproved\Run: => "Riot Vanguard"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_ED02E366447D09E4F124EF89B233D989"
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\StartupApproved\Run: => "Gaijin.Net Updater"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{1CCE9B94-AFB1-436D-A0F4-D46F31492127}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CA8A0DB2-8426-4F49-9B3E-0CC94BB270EE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{87002034-958A-476F-AFC3-859E19641BD4}] => (Allow) C:\Program Files (x86)\WTFast\WTFast.exe (AAA Internet Publishing, Inc. -> AAA Internet Publishing, Inc.)
FirewallRules: [{5D0AB822-F000-4A39-892C-108AA9B447E0}] => (Allow) D:\Games\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{8476216B-F2E4-43AF-A7BE-D8182AA31C9D}] => (Allow) D:\Games\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{9C91CD83-2399-449F-9B6C-71A75D9E32C3}] => (Allow) D:\Games\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{D8B69214-2DCE-4370-94F0-195CDD62F0B8}] => (Allow) D:\Games\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{B7387A7D-2817-494F-954A-D35F007CAE04}] => (Allow) C:\Games\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{4B3A50C8-4B2F-4F91-8262-243B7912403C}] => (Allow) C:\Games\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{67AC600C-C0DB-4DE8-9DE0-E8155FCB65AD}] => (Allow) C:\Games\Battlefield V\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{00A94EAF-47BA-49C6-9F4D-99B4634C1B50}] => (Allow) C:\Games\Battlefield V\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{CFF2F0BB-C5A6-42D6-BBFA-7D17C2376842}] => (Allow) D:\Games\steamapps\common\DiRT 4\dirt4.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{15DFB872-24B3-4547-AE0F-EE36C0CF35EF}] => (Allow) D:\Games\steamapps\common\DiRT 4\dirt4.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{0F711146-6BB6-4FF4-A7A3-BF7E11C6180A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{615CC27A-FA27-4D94-9C85-3CD6E12273A2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{ABD2A250-F200-4202-9F81-BAE1BD4026BE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8B7E796D-2EA4-45FE-AB04-2066F9C1239D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{B0DA417A-8157-490B-8413-00876A366F4E}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [UDP Query User{CD36B941-1342-4D9A-8ACA-32E29450DD83}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{B0428C50-514E-4333-B2D3-BE1A7C588DA0}] => (Allow) D:\Games\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{E861BB59-9C47-4411-A77C-E25950E982C5}] => (Allow) D:\Games\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{0A0BE730-DCD0-435C-8354-61B63C8B8849}C:\users\micha\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\micha\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{9671E323-4C41-4B6A-8225-C7F94D34FBF7}C:\users\micha\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\micha\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{26575DF6-F37E-4952-B5F8-B26E9519D2C3}D:\users\micha\appdata\local\warthunder\launcher.exe] => (Allow) D:\users\micha\appdata\local\warthunder\launcher.exe (Gaijin Network LTD -> Gaijin)
FirewallRules: [UDP Query User{FF2B8DCF-0E63-4B18-8962-1AF277F8C015}D:\users\micha\appdata\local\warthunder\launcher.exe] => (Allow) D:\users\micha\appdata\local\warthunder\launcher.exe (Gaijin Network LTD -> Gaijin)
FirewallRules: [TCP Query User{EC2A8607-6364-4175-9A9A-7BCA98F31265}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{CA2E9604-EA82-4DA0-A7BB-7A6828F19F70}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{8721808F-4DEC-4BC7-95C3-88083FD2F394}] => (Allow) D:\ProgramData\Wargaming.net\GameCenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{4323E41B-070A-4164-94B5-D28A90CDE1DE}] => (Allow) D:\ProgramData\Wargaming.net\GameCenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{3B751F48-8610-40CC-8B6E-A22F11654339}] => (Allow) C:\Games\World_of_Tanks_EU\WorldOfTanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{B1F903F6-ABEA-4884-9441-74688FD194FB}] => (Allow) C:\Games\World_of_Tanks_EU\WorldOfTanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{D54E6DBB-2FCB-4FEF-B62F-6026DC37ADB7}] => (Allow) D:\Games\steamapps\common\World of Tanks Blitz\wotblitz.exe (Wargaming.net) [File not signed]
FirewallRules: [{FB78C976-03F8-4475-9A58-3C9C2DDDC798}] => (Allow) D:\Games\steamapps\common\World of Tanks Blitz\wotblitz.exe (Wargaming.net) [File not signed]
FirewallRules: [{8C817EA9-E20D-406C-BDDA-7650EA1B0DC2}] => (Allow) D:\Program Files (x86)\Farming Simulator 2019\FarmingSimulator2019.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{A2027D93-206E-4FC4-8144-B8EB4712469A}] => (Allow) D:\Program Files (x86)\Farming Simulator 2019\FarmingSimulator2019.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{CD9675B5-8A2C-4C72-9BDC-E4F10C50377B}] => (Allow) D:\Program Files (x86)\Farming Simulator 2019\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{D8987362-EDDF-4E4B-9486-1F0679F2C82D}] => (Allow) D:\Program Files (x86)\Farming Simulator 2019\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{30C0357E-9A63-404C-9704-153A2B127985}] => (Allow) D:\Games\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{2A4449F7-FA47-41A4-B06C-5DABA153F529}] => (Allow) D:\Games\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{8B40108A-8EC3-4338-B296-7274C00F5297}] => (Allow) D:\Games\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{5AC51447-9C3C-4086-8416-1600FE6F3093}] => (Allow) D:\Games\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{137679BE-EABD-4D44-93A5-4E0F43D2DF57}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9AE8928A-C130-44FD-8596-C2A52193BEA7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{17FAFA12-41E2-4988-9CFB-02D239410CC5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{3D24686C-B5CA-4F9C-B82B-003E05349BC1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A45096CE-B791-45C9-B339-ECAB71192993}] => (Allow) D:\Games\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{D9D1FBEC-CE97-492F-9428-FF9BA35EE694}] => (Allow) D:\Games\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [TCP Query User{26BDDD08-23CE-42A3-BB62-7EB2905132BB}D:\users\micha\appdata\local\warthunder\win64\aces.exe] => (Allow) D:\users\micha\appdata\local\warthunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [UDP Query User{329E567C-46CD-47DB-8E52-741B5DDAEE63}D:\users\micha\appdata\local\warthunder\win64\aces.exe] => (Allow) D:\users\micha\appdata\local\warthunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [TCP Query User{C1ABB5AB-BC52-46DA-8A84-87BA66A7C8E0}D:\users\micha\appdata\local\enlisted\launcher.exe] => (Allow) D:\users\micha\appdata\local\enlisted\launcher.exe (Gaijin Network LTD -> Gaijin)
FirewallRules: [UDP Query User{2349FC8F-7E32-4C1C-B9A1-8F4A743F719F}D:\users\micha\appdata\local\enlisted\launcher.exe] => (Allow) D:\users\micha\appdata\local\enlisted\launcher.exe (Gaijin Network LTD -> Gaijin)
FirewallRules: [TCP Query User{CCC2CC60-52E6-4E43-8DF0-272D58191427}D:\users\micha\appdata\local\enlisted\win64\enlisted.exe] => (Allow) D:\users\micha\appdata\local\enlisted\win64\enlisted.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [UDP Query User{5604301A-ABFF-4BBC-ADC5-B93CF54581D7}D:\users\micha\appdata\local\enlisted\win64\enlisted.exe] => (Allow) D:\users\micha\appdata\local\enlisted\win64\enlisted.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [TCP Query User{A073F4B4-803F-456A-9F0F-089DB413CA14}C:\program files (x86)\urage reaper revolution gaming mouse\gaming mouse.exe] => (Allow) C:\program files (x86)\urage reaper revolution gaming mouse\gaming mouse.exe (Areson Technology -> )
FirewallRules: [UDP Query User{D5510E16-7124-4783-A7BA-377E1BAF7F48}C:\program files (x86)\urage reaper revolution gaming mouse\gaming mouse.exe] => (Allow) C:\program files (x86)\urage reaper revolution gaming mouse\gaming mouse.exe (Areson Technology -> )
FirewallRules: [{8025232C-7BE3-4E11-8F87-F08EDE4F2DA6}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{C374FE59-B12E-495E-AF24-DA61D359288B}] => (Allow) D:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{6A18AA0B-61F0-4EFD-BE0C-034603676EE2}] => (Allow) D:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{7E5CD749-AE0A-4A75-9214-45E77B7ECC74}] => (Allow) D:\Program Files (x86)\Origin Games\Plants vs Zombies Garden Warfare 2\GW2.Main_Win64_Retail.exe (Electronic Arts, Inc. -> EA PopCap)
FirewallRules: [{935FC54A-E369-449B-97AD-7FD3F5A4F494}] => (Allow) D:\Program Files (x86)\Origin Games\Plants vs Zombies Garden Warfare 2\GW2.Main_Win64_Retail.exe (Electronic Arts, Inc. -> EA PopCap)

==================== Restore Points =========================

24-05-2021 08:44:27 Naplánovaný kontrolní bod
24-05-2021 10:29:41 Nainstalováno rozhraní DirectX
24-05-2021 10:30:07 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (05/30/2021 12:02:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: cefprocess.exe, verze: 0.0.0.0, časové razítko: 0x5f5a9700
Název chybujícího modulu: cefprocess.exe, verze: 0.0.0.0, časové razítko: 0x5f5a9700
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000003d824
ID chybujícího procesu: 0x1610
Čas spuštění chybující aplikace: 0x01d7553ae9bc43d6
Cesta k chybující aplikaci: D:\Users\micha\AppData\Local\WarThunder\win64\cefprocess.exe
Cesta k chybujícímu modulu: D:\Users\micha\AppData\Local\WarThunder\win64\cefprocess.exe
ID zprávy: 19751226-3aa2-4cfc-8dc7-a4693b72a37c
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (05/30/2021 11:59:34 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: cefprocess.exe, verze: 0.0.0.0, časové razítko: 0x5f5a9700
Název chybujícího modulu: cefprocess.exe, verze: 0.0.0.0, časové razítko: 0x5f5a9700
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000003d824
ID chybujícího procesu: 0x2ea0
Čas spuštění chybující aplikace: 0x01d7553a7ded6ffd
Cesta k chybující aplikaci: D:\Users\micha\AppData\Local\WarThunder\win64\cefprocess.exe
Cesta k chybujícímu modulu: D:\Users\micha\AppData\Local\WarThunder\win64\cefprocess.exe
ID zprávy: a0b3e07e-caf3-4f95-9f95-9707ed737140
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (05/30/2021 11:59:16 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: cefprocess.exe, verze: 0.0.0.0, časové razítko: 0x5f5a9700
Název chybujícího modulu: cefprocess.exe, verze: 0.0.0.0, časové razítko: 0x5f5a9700
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000003d824
ID chybujícího procesu: 0x1c90
Čas spuštění chybující aplikace: 0x01d7553a7335dd76
Cesta k chybující aplikaci: D:\Users\micha\AppData\Local\WarThunder\win64\cefprocess.exe
Cesta k chybujícímu modulu: D:\Users\micha\AppData\Local\WarThunder\win64\cefprocess.exe
ID zprávy: deae2cca-7ceb-4316-89b3-3815c2b317e8
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (05/30/2021 11:58:50 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: cefprocess.exe, verze: 0.0.0.0, časové razítko: 0x5f5a9700
Název chybujícího modulu: cefprocess.exe, verze: 0.0.0.0, časové razítko: 0x5f5a9700
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000003d824
ID chybujícího procesu: 0x27e0
Čas spuštění chybující aplikace: 0x01d7553a6373fa0a
Cesta k chybující aplikaci: D:\Users\micha\AppData\Local\WarThunder\win64\cefprocess.exe
Cesta k chybujícímu modulu: D:\Users\micha\AppData\Local\WarThunder\win64\cefprocess.exe
ID zprávy: f55e0752-214c-48b9-ad31-5245d8bd7ee8
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (05/25/2021 11:05:12 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Explorer.EXE, verze: 10.0.19041.964, časové razítko: 0x8aeeaedf
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000060a0fd8
ID chybujícího procesu: 0x1e04
Čas spuštění chybující aplikace: 0x01d75139bb2002da
Cesta k chybující aplikaci: C:\WINDOWS\Explorer.EXE
Cesta k chybujícímu modulu: unknown
ID zprávy: 700533a3-9012-4f37-9bd7-6397f8b1fc30
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (05/23/2021 10:16:45 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program GameBar.exe verze 5.621.4222.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 1f88

Čas spuštění: 01d74faa916ca53f

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.621.4222.0_x64__8wekyb3d8bbwe\GameBar.exe

ID hlášení: 44076ac6-24a1-4ef0-85b7-9ef18b982e6c

Úplný název balíčku s chybou: Microsoft.XboxGamingOverlay_5.621.4222.0_x64__8wekyb3d8bbwe

ID aplikace relativní podle balíčku s chybou: App

Typ zablokování: Navigation

Error: (05/22/2021 06:47:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: FarmingSimulator2019Game.exe, verze: 8.0.0.0, časové razítko: 0x5f996699
Název chybujícího modulu: FarmingSimulator2019Game.exe, verze: 8.0.0.0, časové razítko: 0x5f996699
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000027d694
ID chybujícího procesu: 0x3964
Čas spuštění chybující aplikace: 0x01d74f2136969e07
Cesta k chybující aplikaci: D:\Program Files (x86)\Farming Simulator 2019\x64\FarmingSimulator2019Game.exe
Cesta k chybujícímu modulu: D:\Program Files (x86)\Farming Simulator 2019\x64\FarmingSimulator2019Game.exe
ID zprávy: 0bce9c58-a4e5-4281-b9c4-3f065ea4fba5
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (05/21/2021 08:40:32 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program FarmingSimulator2019Game.exe verze 8.0.0.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 24c8

Čas spuštění: 01d74e7073491690

Čas ukončení: 4294967295

Cesta k aplikaci: D:\Program Files (x86)\Farming Simulator 2019\x64\FarmingSimulator2019Game.exe

ID hlášení: cd73435a-46e7-4242-ad52-866ee4623fbb

Úplný název balíčku s chybou:

ID aplikace relativní podle balíčku s chybou:

Typ zablokování: Top level window is idle


System errors:
=============
Error: (06/01/2021 12:40:44 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-LVA03BU)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě:
2147942767
při provádění příkazu:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (06/01/2021 12:38:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA LocalSystem Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.

Error: (06/01/2021 12:38:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA Display Container LS byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.

Error: (06/01/2021 12:38:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Realtek Audio Universal Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.

Error: (06/01/2021 12:37:32 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Origin Web Helper Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (06/01/2021 12:37:32 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA LocalSystem Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.

Error: (06/01/2021 12:37:32 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba FlexNet Licensing Service 64 byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (06/01/2021 12:37:32 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Storage Middleware Service byla neočekávaně ukončena. Tento stav nastal již 1krát.


Windows Defender:
================
Date: 2021-04-29 19:37:12
Description:
Řízený přístup ke složkám zablokoval pro C:\Program Files\AVG\Antivirus\x86\RegSvr.exe provádění změn v paměti.
Čas detekce: 2021-04-29T17:37:12.105Z
Uživatel: DESKTOP-LVA03BU\micha
Cesta: \Device\Harddisk0\DR0
Název procesu: C:\Program Files\AVG\Antivirus\x86\RegSvr.exe
Verze bezpečnostních informací: 1.337.198.0
Verze modulu: 1.1.18100.5
Verze produktu: 4.18.2103.7

Date: 2021-04-29 19:37:12
Description:
Řízený přístup ke složkám zablokoval pro C:\Program Files\AVG\Antivirus\AvBugReport.exe provádění změn v paměti.
Čas detekce: 2021-04-29T17:37:12.104Z
Uživatel: DESKTOP-LVA03BU\micha
Cesta: \Device\Harddisk0\DR0
Název procesu: C:\Program Files\AVG\Antivirus\AvBugReport.exe
Verze bezpečnostních informací: 1.337.198.0
Verze modulu: 1.1.18100.5
Verze produktu: 4.18.2103.7

Date: 2021-04-29 19:37:12
Description:
Řízený přístup ke složkám zablokoval pro C:\Program Files\AVG\Antivirus\RegSvr.exe provádění změn v paměti.
Čas detekce: 2021-04-29T17:37:12.098Z
Uživatel: DESKTOP-LVA03BU\micha
Cesta: \Device\Harddisk0\DR0
Název procesu: C:\Program Files\AVG\Antivirus\RegSvr.exe
Verze bezpečnostních informací: 1.337.198.0
Verze modulu: 1.1.18100.5
Verze produktu: 4.18.2103.7

Date: 2021-04-29 19:37:12
Description:
Řízený přístup ke složkám zablokoval pro C:\Program Files\AVG\Antivirus\AvBugReport.exe provádění změn v paměti.
Čas detekce: 2021-04-29T17:37:12.096Z
Uživatel: DESKTOP-LVA03BU\micha
Cesta: \Device\Harddisk0\DR0
Název procesu: C:\Program Files\AVG\Antivirus\AvBugReport.exe
Verze bezpečnostních informací: 1.337.198.0
Verze modulu: 1.1.18100.5
Verze produktu: 4.18.2103.7

Date: 2021-04-29 19:37:12
Description:
Řízený přístup ke složkám zablokoval pro C:\Program Files\AVG\Antivirus\wsc_proxy.exe provádění změn v paměti.
Čas detekce: 2021-04-29T17:37:12.094Z
Uživatel: DESKTOP-LVA03BU\micha
Cesta: \Device\Harddisk0\DR0
Název procesu: C:\Program Files\AVG\Antivirus\wsc_proxy.exe
Verze bezpečnostních informací: 1.337.198.0
Verze modulu: 1.1.18100.5
Verze produktu: 4.18.2103.7

CodeIntegrity:
===============
Date: 2021-06-01 13:56:08
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends Inc. 2.40 03/08/2018
Motherboard: Micro-Star International Co., Ltd. Z370-A PRO (MS-7B48)
Processor: Intel(R) Core(TM) i5-8500 CPU @ 3.00GHz
Percentage of memory in use: 32%
Total physical RAM: 16344.71 MB
Available physical RAM: 10996.33 MB
Total Virtual: 21720.71 MB
Available Virtual: 13784.27 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:445.83 GB) (Free:89 GB) NTFS
Drive d: () (Fixed) (Total:1863 GB) (Free:1614.09 GB) NTFS
Drive e: (FarmingSimulator19) (CDROM) (Total:5.72 GB) (Free:0 GB) UDF

\\?\Volume{21153163-0000-0000-0000-100000000000}\ (Boot) (Fixed) (Total:0.49 GB) (Free:0.46 GB) NTFS
\\?\Volume{21153163-0000-0000-0000-a0946f000000}\ () (Fixed) (Total:0.81 GB) (Free:0.38 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 447.1 GB) (Disk ID: 21153163)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=445.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=826 MB) - (Type=27)

==========================================================
Disk: 1 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15197
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Windows defender mi zablokoval pc, že mám Trojského koně a prosím o kontrolu a následné vyřešení děkuji.

#2 Příspěvek od JaRon »

ahoj,
odinstaluj Advanced SystemCare a ostatne nezmysly od IOBit - je to zmatok desatrocia
odinstaluj AVG - tiez neoplyva bystrostou
vycisti registre CCleanerom
vycisti PC s AVPTool
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

Oudyssey
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 29 pro 2020 20:35

Re: Windows defender mi zablokoval pc, že mám Trojského koně a prosím o kontrolu a následné vyřešení děkuji.

#3 Příspěvek od Oudyssey »

Nevím jak vyčistit CP v avp tool mně to nenašlo nic když jsem to hledal.

First

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-05-2021 01
Ran by micha (administrator) on DESKTOP-LVA03BU (Micro-Star International Co., Ltd. MS-7B48) (01-06-2021 15:29:58)
Running from C:\Users\micha\OneDrive\Plocha\čištění pc
Loaded Profiles: micha
Platform: Windows 10 Home Version 20H2 19042.985 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Discord Inc. -> Discord Inc.) C:\Users\micha\AppData\Local\Discord\app-1.0.9002\Discord.exe <6>
(Electronic Arts, Inc. -> Electronic Arts) D:\Games\Origin\OriginWebHelperService.exe
(Flexera Software LLC -> Flexera Software LLC) C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe
(Flexera Software LLC -> Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_1e5aa28740c131d2\RstMwService.exe
(IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\micha\AppData\Local\Microsoft\OneDrive\21.083.0425.0003\FileCoAuth.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\micha\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2105.19601.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.621.4222.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.621.4222.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\NisSrv.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_b5c7e9f1cc7d29c6\Display.NvContainer\NVDisplay.Container.exe <2>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_bb0c442560f99618\RtkAudUService64.exe <2>

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_bb0c442560f99618\RtkAudUService64.exe [1253232 2021-03-11] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33770112 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\Run: [Gaijin.Net Updater] => C:\Users\micha\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2374376 2020-12-03] (Gaijin Network LTD -> Gaijin)
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\Run: [MicrosoftEdgeAutoLaunch_ED02E366447D09E4F124EF89B233D989] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window /prefetch:5
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\MountPoints2: {1e49444c-489c-11eb-add2-806e6f6e6963} - "E:\autorun.exe"
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\MountPoints2: {d73365cf-4a16-11eb-addd-309c23d0ad08} - "G:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.212\Installer\chrmstp.exe [2021-05-11] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS 2020 Rychlé spuštění.lnk [2021-01-06]
ShortcutTarget: SOLIDWORKS 2020 Rychlé spuštění.lnk -> C:\Windows\Installer\{3F4681F3-B30B-4531-ADB2-3661B531F926}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe (Flexera) [File not signed]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0061C3E8-7179-493D-9492-CB98C0F66F14} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3336560 2021-04-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2835BE17-991E-4BA0-916A-BA2CB247AB47} - System32\Tasks\ProtonVPN Update => D:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [61760 2020-10-23] (ProtonVPN AG -> )
Task: {2C1E0458-C273-4F19-B776-D2607E7268EE} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905584 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2E5E70B4-2129-4931-8A2E-9992BDC17EAF} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2E7CE70F-B4D1-4A74-97A2-FE7CA27337E5} - System32\Tasks\Avast Software\Overseer => C:\Windows\OEM\CustomizationFiles\Overseer.exe [1790184 2021-04-29] (Avast Software s.r.o. -> Avast Software)
Task: {46254A4D-E60C-4FCF-B27C-C33F32360198} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [595288 2021-06-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4EF9E34A-E4FD-40C3-AA3A-D55A5C41E3D7} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905584 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {517F22B7-4885-4976-AEEA-121BECF3F7B9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [595288 2021-06-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {583A19EA-114B-4CCF-95D7-143A91AC9316} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28158080 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {62CD99E3-70B3-4FC3-8B47-DF9A4C86DE12} - System32\Tasks\HWiNFO => D:\Program Files\HWiNFO64\HWiNFO64.EXE [5395120 2020-12-09] (Martin Malik - REALiX -> REALiX)
Task: {6C99AC9F-29F5-4615-B021-F7F830A22205} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [595288 2021-06-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {88CD7550-40E1-441D-AA1C-846774F4A841} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-05-20] (Piriform Software Ltd -> Piriform)
Task: {8AB433BF-42DF-42E6-8F31-E0CDFD005184} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-09-29] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {97785A08-CEF8-42BB-9AF6-7B6F66E2E1F6} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A05BAD6A-17E0-4606-B867-E47A1C0AF682} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A67CBFAB-7F4B-4994-B72F-6253E7A4F3A0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2020-12-28] (Google Inc -> Google Inc.)
Task: {A9545557-AFE7-4D61-A0E2-BF9C02ED8451} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [816960 2017-09-21] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {AABBED3F-3AE8-4026-9673-FA38C8EF1B7A} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AFEADA50-7CCA-48CB-B630-32B067A36642} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MpCmdRun.exe [595288 2021-06-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B28DA1C5-1F69-4307-BC08-DC901DA01BDE} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D6F905BB-2615-4CC6-8398-E31AC0BFDD60} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-09-29] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {F931BCF5-CC3A-4B89-9F7B-124B6657C0CB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2020-12-28] (Google Inc -> Google Inc.)
Task: {FDAFE8E7-900C-44AC-BE57-805D53E40AC1} - System32\Tasks\Uninstaller_SkipUac_micha => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [6706200 2021-04-27] (IObit CO., LTD -> IObit)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{1e1aca64-35a3-4752-aa81-d435d4e5cfc5}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{6152e2c7-c809-4027-b34d-16ca16983613}: [DhcpNameServer] 10.8.0.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\micha\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-01]
Edge Extension: (Norton Safe Web) - C:\Users\micha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bdaafgjhhjkdplpffldcncdignokfkbo [2021-05-11]
Edge Extension: (Browsing Protection by F-Secure) - C:\Users\micha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjjnhpacphpjmnnlnccpfmhkcloaade [2021-05-17]

FireFox:
========
FF Plugin: 3ds.com/ComposerPlayerWebPlugin_x86_64 -> D:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Composer Player\Bin\npcomposerplayerwebplugin.dll [2020-05-08] (DASSAULT SYSTEMES SE -> Dassault Systemes)
FF Plugin-x32: 3ds.com/ComposerPlayerWebPlugin -> D:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Composer Player\Bin\x86\npcomposerplayerwebplugin.dll [2020-05-08] (DASSAULT SYSTEMES SE -> Dassault Systemes)
FF Plugin-x32: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-01-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-01-26] (Oracle America, Inc. -> Oracle Corporation)

Chrome:
=======
CHR Profile: C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default [2021-06-01]
CHR Extension: (Prezentace) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-12-28]
CHR Extension: (Dokumenty) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-12-28]
CHR Extension: (Disk Google) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-12-28]
CHR Extension: (YouTube) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-12-28]
CHR Extension: (Tabulky) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-12-28]
CHR Extension: (Dokumenty Google offline) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-05-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-01]
CHR Extension: (Gmail) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-12-28]
CHR Extension: (Chrome Media Router) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-23]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8894752 2021-02-08] (BattlEye Innovations e.K. -> )
S3 CoordinatorServiceHost; D:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe [79360 2020-05-08] (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2021-01-07] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [926176 2021-03-16] (Epic Games Inc. -> Epic Games, Inc.)
S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [158992 2020-10-19] (IObit Information Technology -> IObit)
S3 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2333328 2020-05-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [183480 2017-11-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 Origin Client Service; D:\Games\Origin\OriginClientService.exe [2547288 2021-05-10] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; D:\Games\Origin\OriginWebHelperService.exe [3487320 2021-05-10] (Electronic Arts, Inc. -> Electronic Arts)
S3 ProtonVPN Service; D:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe [99136 2020-10-23] (ProtonVPN AG -> )
S3 ProtonVPN Update Service; D:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [61760 2020-10-23] (ProtonVPN AG -> )
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2021-01-06] (SolidWorks) [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\NisSrv.exe [2599328 2021-06-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.14-0\MsMpEng.exe [128376 2021-06-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_b5c7e9f1cc7d29c6\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_b5c7e9f1cc7d29c6\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
R3 cpuz145; C:\WINDOWS\temp\cpuz145\cpuz145_x64.sys [49968 2021-06-01] (CPUID -> CPUID)
R3 DroidCam; C:\WINDOWS\System32\drivers\droidcam.sys [32240 2020-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Dev47Apps)
R3 DroidCamVideo; C:\WINDOWS\System32\DriverStore\FileRepository\droidcamvideo.inf_amd64_47e18363cbf3dfe0\droidcamvideo.sys [33784 2021-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 IUFileFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys [43896 2020-07-31] (IObit Information Technology -> IObit)
R3 IUProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys [37112 2020-07-31] (IObit Information Technology -> IObit)
R3 IURegistryFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys [51128 2020-07-31] (IObit Information Technology -> IObit)
R3 MpKsla6d66c2d; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A79D80E8-71E0-4826-9971-08220BA68623}\MpKslDrv.sys [107744 2021-06-01] (Microsoft Windows -> Microsoft Corporation)
S3 ProtonVPNSplitTunnel; D:\Program Files (x86)\Proton Technologies\ProtonVPN\x64\Win10\ProtonVPN.SplitTunnelDriver.sys [31584 2020-08-19] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2014-11-05] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49008 2020-08-19] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-06-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [421112 2021-06-01] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [73960 2021-06-01] (Microsoft Windows -> Microsoft Corporation)
R2 WtfEngineDrv; C:\WINDOWS\system32\DRIVERS\WtfEngineDrv.sys [27904 2016-02-01] (Initex -> AAA Internet Publishing, Inc.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-06-01 13:54 - 2021-06-01 13:55 - 002299904 _____ (Farbar) C:\Users\micha\Downloads\FRST64 (2).exe
2021-06-01 12:36 - 2021-06-01 12:36 - 008534696 _____ (Malwarebytes) C:\Users\micha\Downloads\adwcleaner_8.2.exe
2021-05-31 21:05 - 2021-06-01 12:16 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3466437676-3512538346-3754865819-1001
2021-05-31 21:05 - 2021-05-31 21:05 - 000002372 _____ C:\Users\micha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-05-26 10:07 - 2021-05-26 10:08 - 066480404 _____ (BetterDiscord) C:\Users\micha\Downloads\BetterDiscord-Windows (2).exe
2021-05-26 10:06 - 2021-06-01 12:16 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-05-25 10:36 - 2021-05-25 10:36 - 010398237 _____ C:\Users\micha\Downloads\Iconik_XLBuckets_FS19.zip
2021-05-24 21:04 - 2021-05-24 21:04 - 000000000 ____D C:\Users\micha\AppData\Local\Apple Computer
2021-05-24 18:48 - 2021-05-24 18:48 - 000017344 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\asw2ece5ea0259f3b12.tmp
2021-05-24 18:47 - 2021-05-24 18:47 - 000523080 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\asw49f1c8edd332d69c.tmp
2021-05-24 10:30 - 2021-05-24 10:30 - 000001111 _____ C:\ProgramData\Plocha\Plants vs Zombies GW2.lnk
2021-05-24 10:30 - 2021-05-24 10:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plants vs Zombies GW2
2021-05-22 08:51 - 2021-05-22 08:51 - 010002299 _____ C:\Users\micha\Downloads\FS19_Duchesne16Ttandem.zip
2021-05-22 08:48 - 2021-05-22 08:56 - 023539501 _____ C:\Users\micha\Downloads\FS19_CAMARA_RT16.zip
2021-05-22 08:45 - 2021-05-22 08:45 - 013219420 _____ C:\Users\micha\Downloads\FS19_LizardD882.zip
2021-05-22 08:44 - 2021-05-22 08:44 - 017105090 _____ C:\Users\micha\Downloads\FS19_ZDT_NS23_1.zip
2021-05-22 08:43 - 2021-05-22 08:44 - 105838438 _____ C:\Users\micha\Downloads\FS19_ZmajPrikolicePack.zip
2021-05-22 08:42 - 2021-05-22 08:42 - 006168009 _____ C:\Users\micha\Downloads\FS19_VeenhuisJVK16000.zip
2021-05-22 08:41 - 2021-05-22 08:42 - 019854169 _____ C:\Users\micha\Downloads\FS19_Maupu_TDM8632.zip
2021-05-22 08:40 - 2021-05-22 08:41 - 021469330 _____ C:\Users\micha\Downloads\FS19_HaweSLW20.zip
2021-05-18 20:11 - 2021-05-13 20:22 - 001855184 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-05-18 20:11 - 2021-05-13 20:22 - 001855184 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-05-18 20:11 - 2021-05-13 20:22 - 001453360 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-05-18 20:11 - 2021-05-13 20:22 - 001435880 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-05-18 20:11 - 2021-05-13 20:22 - 001435880 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-05-18 20:11 - 2021-05-13 20:22 - 001192752 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-05-18 20:11 - 2021-05-13 20:22 - 001094864 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-05-18 20:11 - 2021-05-13 20:22 - 001094864 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-05-18 20:11 - 2021-05-13 20:22 - 000948968 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-05-18 20:11 - 2021-05-13 20:22 - 000948968 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-05-18 20:11 - 2021-05-13 20:19 - 001514800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2021-05-18 20:11 - 2021-05-13 20:19 - 001166112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2021-05-18 20:11 - 2021-05-13 20:19 - 000715544 _____ C:\WINDOWS\system32\nvofapi64.dll
2021-05-18 20:11 - 2021-05-13 20:19 - 000675104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2021-05-18 20:11 - 2021-05-13 20:19 - 000626968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2021-05-18 20:11 - 2021-05-13 20:19 - 000575768 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2021-05-18 20:11 - 2021-05-13 20:19 - 000564000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2021-05-18 20:11 - 2021-05-13 20:18 - 002106144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2021-05-18 20:11 - 2021-05-13 20:18 - 001590576 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2021-05-18 20:11 - 2021-05-13 20:18 - 000811824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2021-05-18 20:11 - 2021-05-13 20:18 - 000689952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2021-05-18 20:11 - 2021-05-13 20:18 - 000656176 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2021-05-18 20:11 - 2021-05-13 20:18 - 000445744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2021-05-18 20:11 - 2021-05-13 20:17 - 008317232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2021-05-18 20:11 - 2021-05-13 20:17 - 007434032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2021-05-18 20:11 - 2021-05-13 20:17 - 005678360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2021-05-18 20:11 - 2021-05-13 20:17 - 004795184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2021-05-18 20:11 - 2021-05-13 20:17 - 002823472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2021-05-18 20:11 - 2021-05-13 20:16 - 000848688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2021-05-18 20:11 - 2021-05-13 20:15 - 007212224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2021-05-18 20:11 - 2021-05-13 20:15 - 006159152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2021-05-18 20:11 - 2021-05-13 12:38 - 000136472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2021-05-18 20:11 - 2021-05-13 12:38 - 000087164 _____ C:\WINDOWS\system32\nvinfo.pb
2021-05-18 20:11 - 2021-05-13 12:38 - 000037656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll
2021-05-17 18:59 - 2021-05-17 19:31 - 334987550 _____ C:\Users\micha\Downloads\La_Campagne_Deux_Sevriennes.zip
2021-05-16 14:29 - 2021-06-01 12:16 - 000002402 _____ C:\WINDOWS\system32\Tasks\Uninstaller_SkipUac_micha
2021-05-16 14:29 - 2021-05-16 14:29 - 000001441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk
2021-05-16 14:29 - 2021-05-16 14:29 - 000001429 _____ C:\ProgramData\Plocha\IObit Uninstaller.lnk
2021-05-16 14:28 - 2021-05-16 14:28 - 028087848 _____ (IObit ) C:\Users\micha\Downloads\iobituninstaller (1).exe
2021-05-16 09:20 - 2021-05-16 09:20 - 026575950 _____ C:\Users\micha\Downloads\FS19_realManualTransmission_master__fs-mods.blog.cz (2).zip
2021-05-15 09:30 - 2021-05-15 09:30 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-05-15 09:30 - 2021-05-15 09:30 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-05-15 09:30 - 2021-05-15 09:30 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-05-15 09:29 - 2021-05-15 09:29 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-05-15 09:29 - 2021-05-15 09:29 - 001823816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-05-15 09:29 - 2021-05-15 09:29 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-05-15 09:29 - 2021-05-15 09:29 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-05-15 09:29 - 2021-05-15 09:29 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-15 09:29 - 2021-05-15 09:29 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-05-15 09:29 - 2021-05-15 09:29 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-05-15 09:29 - 2021-05-15 09:29 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-05-15 09:29 - 2021-05-15 09:29 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-05-14 14:46 - 2021-05-14 14:46 - 007260190 _____ C:\Users\micha\Downloads\FS19_GrimmeSE260Plus.zip
2021-05-14 14:44 - 2021-05-14 14:47 - 156618772 _____ C:\Users\micha\Downloads\FS19_MB_Trac_443 (2).zip
2021-05-14 14:44 - 2021-05-14 14:44 - 072030430 _____ C:\Users\micha\Downloads\FS19_Steyr_8150.zip
2021-05-09 10:24 - 2020-11-02 14:34 - 000017975 _____ C:\Users\micha\Downloads\SeasonsEconomy.lua
2021-05-09 10:23 - 2021-05-09 10:23 - 000000000 ____D C:\Users\micha\AppData\Local\GIANTSPackageRegistry
2021-05-09 10:23 - 2021-05-09 10:23 - 000000000 ____D C:\Users\micha\AppData\Local\GIANTS Editor 64bit 8.2.2
2021-05-09 10:22 - 2021-05-09 10:22 - 013985968 _____ (GIANTS Software GmbH ) C:\Users\micha\Downloads\GIANTS_Editor_8.2.2_win64.exe
2021-05-09 09:02 - 2021-05-09 09:02 - 020075460 _____ C:\Users\micha\Downloads\FS19_Berthoud_Tenor_35_37.zip
2021-05-07 08:02 - 2021-05-07 08:02 - 039690547 _____ C:\Users\micha\Downloads\FS19_NZA.zip
2021-05-07 08:00 - 2021-05-07 08:01 - 039528636 _____ C:\Users\micha\Downloads\FS19_Spirit_900s (1).zip
2021-05-07 07:58 - 2021-05-07 07:58 - 045570622 _____ C:\Users\micha\Downloads\FS19_VaderstadRapid800C___40_1__41_.zip
2021-05-06 22:02 - 2021-05-06 22:02 - 003720163 _____ C:\Users\micha\Downloads\FS19_HauerTopBlockConsole_Prefab.zip
2021-05-03 20:13 - 2021-05-03 20:13 - 025443396 _____ C:\Users\micha\Downloads\GFB_Trac_LS19.zip
2021-05-03 20:11 - 2021-05-03 20:11 - 021273629 _____ C:\Users\micha\Downloads\FS19_IHC955.zip
2021-05-03 20:09 - 2021-05-03 20:10 - 150026123 _____ C:\Users\micha\Downloads\FS19_JohnDeere_8000Series.zip
2021-05-03 20:02 - 2021-05-03 20:03 - 038581141 _____ C:\Users\micha\Downloads\FS19_Ursus1224_1614_V3.zip
2021-05-03 20:01 - 2021-05-03 20:03 - 120397362 _____ C:\Users\micha\Downloads\FS19_CaseIH1455XL (1).zip
2021-05-03 19:58 - 2021-05-03 19:58 - 046456014 _____ C:\Users\micha\Downloads\FS19_Steyr_8150_8165_SK2 (1).zip
2021-05-03 19:52 - 2021-05-03 19:53 - 050434761 _____ C:\Users\micha\Downloads\FS19_CaseIH_1X55XL.zip
2021-05-03 19:51 - 2021-05-03 19:53 - 115925391 _____ C:\Users\micha\Downloads\FS19_Valmet705_EL_EDIT.zip
2021-05-03 19:50 - 2021-05-03 19:50 - 029931929 _____ C:\Users\micha\Downloads\FS19_CaseIH_1455_SkyEdition.zip
2021-05-03 19:48 - 2021-05-03 19:49 - 050004277 _____ C:\Users\micha\Downloads\FS19_Zetor_7045_Horal_system (1).zip
2021-05-03 19:47 - 2021-05-03 19:48 - 111055503 _____ C:\Users\micha\Downloads\FS19_JD_40_Series_4WD.zip
2021-05-03 16:41 - 2021-05-03 16:41 - 005533930 _____ C:\Users\micha\Downloads\5_Personální politika firmy (1).pdf
2021-05-03 16:40 - 2021-05-03 16:43 - 009677621 _____ C:\Users\micha\Downloads\Činnosti podniku (3).pdf
2021-05-03 16:39 - 2021-05-03 16:43 - 009677621 _____ C:\Users\micha\Downloads\Činnosti podniku (2).pdf
2021-05-03 16:38 - 2021-05-03 16:38 - 005533930 _____ C:\Users\micha\Downloads\5_Personální politika firmy.pdf
2021-05-02 11:50 - 2021-05-02 11:50 - 023235883 _____ C:\Users\micha\Downloads\TT19_JohnDeere_4x50_Series.zip

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-06-01 15:30 - 2020-12-29 21:59 - 000000000 ____D C:\FRST
2021-06-01 15:30 - 2020-12-28 03:37 - 000000000 ____D C:\Users\micha\AppData\Roaming\discord
2021-06-01 15:28 - 2021-02-04 00:10 - 000000000 ____D C:\Program Files\CCleaner
2021-06-01 15:19 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-01 15:06 - 2020-12-28 08:42 - 000000000 ____D C:\Program Files (x86)\IObit
2021-06-01 14:56 - 2020-12-28 09:35 - 000000000 ____D C:\Users\micha\AppData\Local\CrashDumps
2021-06-01 14:55 - 2020-12-28 01:52 - 000000000 ___RD C:\Users\micha\OneDrive
2021-06-01 14:52 - 2020-12-28 01:35 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-06-01 14:41 - 2021-04-29 19:32 - 000000000 ____D C:\ProgramData\AVG
2021-06-01 14:40 - 2020-12-28 03:37 - 000000000 ____D C:\Users\micha\AppData\Local\Discord
2021-06-01 13:26 - 2020-12-28 08:42 - 000000000 ____D C:\Users\micha\AppData\LocalLow\IObit
2021-06-01 13:26 - 2020-12-28 08:41 - 000000000 ____D C:\ProgramData\IObit
2021-06-01 13:24 - 2020-12-28 08:41 - 000000000 ____D C:\Users\micha\AppData\Roaming\IObit
2021-06-01 13:18 - 2020-12-28 01:35 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-06-01 12:46 - 2020-12-28 01:42 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-06-01 12:46 - 2019-12-07 16:41 - 000716764 _____ C:\WINDOWS\system32\perfh005.dat
2021-06-01 12:46 - 2019-12-07 16:41 - 000144942 _____ C:\WINDOWS\system32\perfc005.dat
2021-06-01 12:46 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-06-01 12:41 - 2020-12-28 01:35 - 000000000 ____D C:\ProgramData\NVIDIA
2021-06-01 12:39 - 2021-04-14 19:50 - 000008192 ___SH C:\DumpStack.log.tmp
2021-06-01 12:39 - 2020-12-28 01:35 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-06-01 12:39 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-06-01 12:16 - 2021-04-14 20:55 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-01 12:16 - 2021-04-14 20:55 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-01 12:16 - 2021-04-14 20:55 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-01 12:16 - 2021-04-14 20:55 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-01 12:16 - 2021-04-14 20:55 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-01 12:16 - 2021-04-14 20:55 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-01 12:16 - 2021-04-14 20:55 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-01 12:16 - 2021-04-14 20:55 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-01 12:16 - 2021-04-14 20:55 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-01 12:16 - 2021-04-14 20:55 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-06-01 12:16 - 2021-02-05 17:59 - 000003400 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-06-01 12:16 - 2021-02-05 17:59 - 000003176 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-06-01 12:16 - 2021-02-03 23:47 - 000002358 _____ C:\WINDOWS\system32\Tasks\HWiNFO
2021-06-01 12:16 - 2020-12-29 12:21 - 000002834 _____ C:\WINDOWS\system32\Tasks\ProtonVPN Update
2021-06-01 12:16 - 2020-12-28 15:09 - 000003354 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{3C66E53F-07F0-4903-A3F0-9C52DD208737}
2021-06-01 12:16 - 2020-12-28 01:51 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2021-06-01 12:16 - 2020-12-28 01:38 - 000003118 _____ C:\WINDOWS\system32\Tasks\Intel PTT EK Recertification
2021-06-01 12:16 - 2020-12-28 01:37 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-06-01 12:16 - 2020-12-28 01:37 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-06-01 11:29 - 2021-02-04 00:10 - 000002238 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-05-31 22:01 - 2020-12-28 13:27 - 000000000 ____D C:\Users\micha\AppData\Roaming\Spotify
2021-05-30 21:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-05-29 12:44 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-05-29 12:38 - 2020-12-28 13:28 - 000000000 ____D C:\Users\micha\AppData\Local\Spotify
2021-05-29 12:37 - 2020-12-28 01:37 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-05-29 12:37 - 2020-12-28 01:37 - 000002281 _____ C:\ProgramData\Plocha\Microsoft Edge.lnk
2021-05-26 20:48 - 2020-12-28 01:41 - 000000000 ____D C:\Users\micha
2021-05-26 12:09 - 2020-12-28 08:42 - 000000000 ____D C:\ProgramData\ProductData
2021-05-26 11:09 - 2020-12-28 03:37 - 000000000 ____D C:\Users\micha\AppData\Local\D3DSCache
2021-05-25 10:21 - 2021-04-27 14:02 - 000000000 ____D C:\Users\micha\OneDrive\Dokumenty\Call of Duty Modern Warfare
2021-05-25 10:21 - 2020-12-28 03:47 - 000000000 ____D C:\Users\micha\OneDrive\Dokumenty\My Games
2021-05-24 21:31 - 2021-02-09 17:02 - 000000000 ____D C:\Users\micha\AppData\Local\Battle.net
2021-05-24 21:30 - 2021-02-09 17:08 - 000000000 ____D C:\Program Files (x86)\Call of Duty Modern Warfare
2021-05-24 18:48 - 2020-12-28 09:10 - 000000000 ____D C:\Users\micha\AppData\Roaming\Origin
2021-05-24 10:30 - 2020-12-28 02:00 - 000000000 ____D C:\ProgramData\Package Cache
2021-05-24 09:25 - 2020-12-28 09:10 - 000000000 ____D C:\Users\micha\AppData\Local\Origin
2021-05-24 09:25 - 2020-12-28 09:10 - 000000000 ____D C:\ProgramData\Origin
2021-05-21 19:21 - 2020-12-28 20:14 - 000000000 ____D C:\Program Files (x86)\Origin Games
2021-05-21 18:33 - 2021-03-09 20:15 - 000000872 _____ C:\ProgramData\Plocha\Apex Legends.lnk
2021-05-21 15:06 - 2020-12-28 08:39 - 000000000 ____D C:\Users\micha\AppData\Roaming\TS3Client
2021-05-20 17:37 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-05-19 15:01 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-05-18 20:14 - 2020-12-28 02:17 - 000000000 ____D C:\Users\micha\AppData\Local\NVIDIA
2021-05-18 20:14 - 2020-12-28 01:51 - 000000000 ____D C:\Users\micha\AppData\Local\Packages
2021-05-18 20:14 - 2020-12-28 01:51 - 000000000 ____D C:\ProgramData\Packages
2021-05-18 20:14 - 2020-12-28 01:35 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2021-05-18 20:12 - 2020-12-28 01:35 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-05-16 14:30 - 2020-12-28 03:37 - 000000000 ____D C:\Users\micha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net
2021-05-16 14:29 - 2020-12-28 08:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2021-05-15 10:28 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-05-15 10:27 - 2020-12-28 01:35 - 001230064 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-05-15 10:26 - 2019-12-07 16:42 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-05-15 10:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-05-15 09:21 - 2020-12-28 02:40 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-05-15 09:19 - 2020-12-28 02:40 - 132732536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-05-11 21:45 - 2020-12-28 02:05 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-05-11 21:45 - 2020-12-28 02:05 - 000002267 _____ C:\ProgramData\Plocha\Google Chrome.lnk
2021-05-07 21:27 - 2021-01-06 22:03 - 000000000 ____D C:\Users\micha\AppData\Local\SolidWorks
2021-05-07 21:27 - 2021-01-06 12:09 - 000000000 ____D C:\Users\micha\AppData\Roaming\SOLIDWORKS
2021-05-04 14:04 - 2021-03-26 16:39 - 000000000 ____D C:\Users\micha\AppData\Local\Ubisoft Game Launcher

==================== Files in the root of some directories ========

2021-01-24 14:04 - 2021-01-24 14:04 - 000007602 _____ () C:\Users\micha\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Addtion

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-05-2021 01
Ran by micha (01-06-2021 15:31:10)
Running from C:\Users\micha\OneDrive\Plocha\čištění pc
Windows 10 Home Version 20H2 19042.985 (X64) (2020-12-27 23:38:06)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3466437676-3512538346-3754865819-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3466437676-3512538346-3754865819-503 - Limited - Disabled)
Guest (S-1-5-21-3466437676-3512538346-3754865819-501 - Limited - Disabled)
micha (S-1-5-21-3466437676-3512538346-3754865819-1001 - Administrator - Enabled) => C:\Users\micha
WDAGUtilityAccount (S-1-5-21-3466437676-3512538346-3754865819-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Norton Security (Enabled - Up to date) {30744133-1E94-7B35-F4A3-82A5AEF1CBAA}
FW: Norton Security (Enabled) {084FC016-54FB-7A6D-DFFC-2B9050228CD1}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

«WGMods Essentials» - #4 (HKLM-x32\...\WGMods_Essentials_ENG_is1) (Version: 1.12.0.0 - WGMods.net)
3DEXPERIENCE Marketplace for SOLIDWORKS (HKLM\...\{0060450C-5B44-424B-BD42-559F2A5D820A}) (Version: 6.29.21 - Dassault Systemes SolidWorks Corp)
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.6.6 - Electronic Arts, Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield™ V (HKLM-x32\...\{e26b382f-e945-4f70-9318-121b683f1d61}) (Version: 1.0.64.43202 - Electronic Arts)
Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.80 - Piriform)
Discord (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
DroidCam Client (HKLM-x32\...\DroidCam) (Version: 6.4.3 - Dev47apps)
Enlisted Launcher 1.0.3.42 (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\{5fcad5a5-d0d8-4edf-a5ba-040b397eac31}}_is1) (Version: - Gaijin Network)
Epic Games Launcher (HKLM-x32\...\{FEF3A9BA-A962-4469-AD62-04839D4BB847}) (Version: 1.1.298.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{0B736177-814A-4ADE-81D1-66A0FDD55BB4}) (Version: 1.1.11.0 - Epic Games, Inc.)
Farming Simulator 19 (HKLM-x32\...\FarmingSimulator2019_is1) (Version: 1.7.1 - GIANTS Software)
Google Drive (HKLM-x32\...\{459CE109-4E46-4340-92BC-054642BC3BC2}) (Version: 1.31.2873.2758 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 90.0.4430.212 - Google LLC)
HWiNFO64 Version 6.40 (HKLM\...\HWiNFO64_is1) (Version: 6.40 - Martin Malik - REALiX)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1043 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{2b32b7d0-4f9f-47c8-adb7-807e6cb2fb75}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{44ded3eb-1686-46a6-9770-fd79096c29f7}) (Version: 10.1.1.45 - Intel(R) Corporation) Hidden
IObit Uninstaller 10 (HKLM-x32\...\IObitUninstall) (Version: 10.5.0.5 - IObit)
iTNC530 (340494) (HKLM-x32\...\{4E31D9A6-245B-41A6-949D-C7B029A703D2}) (Version: - )
Java 8 Update 281 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180281F0}) (Version: 8.0.2810.9 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 91.0.864.37 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\OneDriveSetup.exe) (Version: 21.083.0425.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{A0E1B43D-5F4A-46AF-9925-ABA3423325DC}) (Version: 2.77.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27012 (HKLM-x32\...\{427ada59-85e7-4bc8-b8d5-ebf59db60423}) (Version: 14.16.27012.6 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.16.27012 (HKLM-x32\...\{67f67547-9693-4937-aa13-56e296bd40f6}) (Version: 14.16.27012.6 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2015 (HKLM-x32\...\{ab213ab7-4792-4c6f-a3fa-8485d06c3475}) (Version: 14.0.23829 - Microsoft Corporation)
MSI Kombustor 3.5.0 (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version: - MSI Co., LTD)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.2.0.69 - MSI)
MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.3.0.20 - MSI)
NVIDIA FrameView SDK 1.1.4923.29781331 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29781331 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.22.0.32 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.22.0.32 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.60 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 466.47 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 466.47 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.99.47918 - Electronic Arts, Inc.)
Plants vs Zombies GW2 (HKLM-x32\...\{C4F00C98-13B4-4313-8152-50EE0B04ABE2}) (Version: 1.0.12.0 - Electronic Arts)
ProtonVPN (HKLM-x32\...\{D19979C9-8B5B-4500-AA6A-EF331F658074}) (Version: 1.17.5 - Proton Technologies AG) Hidden
ProtonVPN (HKLM-x32\...\ProtonVPN 1.17.5) (Version: 1.17.5 - Proton Technologies AG)
ProtonVPNTap (HKLM-x32\...\{BCB82CD9-F514-4F93-A6D9-F898494DC927}) (Version: 1.1.0 - Proton Technologies AG)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.23.1003.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8746.1 - Realtek Semiconductor Corp.)
SOLIDWORKS 2020 Czech Resources (HKLM\...\{D65A373E-8584-40DA-BF93-76CD3C3B1292}) (Version: 28.130.0086 - Název společnosti:) Hidden
SOLIDWORKS 2020 SP03 (HKLM\...\{3F4681F3-B30B-4531-ADB2-3661B531F926}) (Version: 28.130.0086 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS 2020 SP03 (HKLM-x32\...\SolidWorks Installation Manager 20200-40300-1100-100) (Version: 28.3.0.86 - SolidWorks Corporation)
SOLIDWORKS CAM 2020 SP03 (HKLM\...\{4DFF26A7-85C6-4495-ADE0-54FDF9AB6F31}) (Version: 28.30.0086 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS Composer Player 2020 SP03 (HKLM\...\{315D6942-B5F2-4FE1-BE37-364D1156F2E8}) (Version: 28.30.0086 - Název společnosti:) Hidden
SOLIDWORKS eDrawings 2020 SP03 (HKLM\...\{B21DE16A-42B5-46A8-A905-59579C7E70C4}) (Version: 28.30.0025 - Společnost Dassault Systemes SolidWorks Corp) Hidden
Spotify (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\Spotify) (Version: 1.1.60.672.g6ad9c215 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TAP-Windows 9.21.1 (HKLM\...\TAP-Windows) (Version: 9.21.1 - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH)
TruckersMP Launcher 1.0.0.4 (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 1.0.0.4 - TruckersMP Team)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 119.0.10382 - Ubisoft)
uRage Reaper Revolution Gaming mouse (HKLM-x32\...\uRage Reaper Revolution Gaming mouse) (Version: 1.0 - Areson)
War Thunder Launcher 1.0.3.260 (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Network)
Wargaming.net Game Center (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\Wargaming.net Game Center) (Version: 21.2.3.5077 - Wargaming.net)
WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
World of Tanks EU (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)
WPTx64 (HKLM-x32\...\{0B2C58EB-67A2-225B-60B2-D1990E55DD33}) (Version: 8.100.26866 - Microsoft)
WTFast 4.0 (HKLM-x32\...\{12B4121D-5221-4AFC-9EDC-63B0CA139856}_is1) (Version: 4.0.7.692 - Initex & AAA Internet Publishing)

Packages:
=========
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-04-28] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.5170.0_x64__8wekyb3d8bbwe [2021-05-23] (Microsoft Studios) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-05-26] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.25.245.0_x64__dt26b99r8h8gj [2021-05-03] (Realtek Semiconductor Corp)
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\microsoft.mpeg2videoextension_1.0.22661.0_x64__8wekyb3d8bbwe [2020-12-28] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3466437676-3512538346-3754865819-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}0
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => -> No File
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-07-31] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext32.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => -> No File
ContextMenuHandlers4: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => -> No File
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-07-31] (IObit Information Technology -> IObit)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_b5c7e9f1cc7d29c6\nvshext.dll [2021-05-13] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-07-31] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext32.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2021-05-21 18:27 - 2020-12-28 09:13 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:\Games\Origin\LIBEAY32.dll
2021-05-21 18:27 - 2020-12-28 09:13 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:\Games\Origin\ssleay32.dll
2021-05-21 18:27 - 2020-12-28 09:13 - 001611264 _____ (The Qt Company Ltd) [File not signed] D:\Games\Origin\platforms\qwindows.dll
2021-05-21 18:27 - 2020-12-28 09:13 - 005487104 _____ (The Qt Company Ltd) [File not signed] D:\Games\Origin\Qt5Core.dll
2021-05-21 18:27 - 2020-12-28 09:13 - 005841920 _____ (The Qt Company Ltd) [File not signed] D:\Games\Origin\Qt5Gui.dll
2021-05-21 18:27 - 2020-12-28 09:13 - 001179136 _____ (The Qt Company Ltd) [File not signed] D:\Games\Origin\Qt5Network.dll
2021-05-21 18:27 - 2020-12-28 09:13 - 000146432 _____ (The Qt Company Ltd) [File not signed] D:\Games\Origin\Qt5WebSockets.dll
2021-05-21 18:27 - 2020-12-28 09:13 - 005089792 _____ (The Qt Company Ltd) [File not signed] D:\Games\Origin\Qt5Widgets.dll
2021-05-21 18:27 - 2020-12-28 09:13 - 000184832 _____ (The Qt Company Ltd) [File not signed] D:\Games\Origin\Qt5Xml.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [10192]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2020-01-31] (IObit Information Technology -> IObit)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\ssv.dll [2021-01-26] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_281\bin\jp2ssv.dll [2021-01-26] (Oracle America, Inc. -> Oracle Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\micha\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\summer_marathon_2018_2560x1440_logo_com_c2f913b335f7493b9dd1f3817c934be3.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\StartupFolder: => "SOLIDWORKS 2020 Rychlé spuštění.lnk"
HKLM\...\StartupApproved\Run: => "Riot Vanguard"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_ED02E366447D09E4F124EF89B233D989"
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\StartupApproved\Run: => "Gaijin.Net Updater"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{1CCE9B94-AFB1-436D-A0F4-D46F31492127}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CA8A0DB2-8426-4F49-9B3E-0CC94BB270EE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{87002034-958A-476F-AFC3-859E19641BD4}] => (Allow) C:\Program Files (x86)\WTFast\WTFast.exe (AAA Internet Publishing, Inc. -> AAA Internet Publishing, Inc.)
FirewallRules: [{5D0AB822-F000-4A39-892C-108AA9B447E0}] => (Allow) D:\Games\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{8476216B-F2E4-43AF-A7BE-D8182AA31C9D}] => (Allow) D:\Games\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{B7387A7D-2817-494F-954A-D35F007CAE04}] => (Allow) C:\Games\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{4B3A50C8-4B2F-4F91-8262-243B7912403C}] => (Allow) C:\Games\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{67AC600C-C0DB-4DE8-9DE0-E8155FCB65AD}] => (Allow) C:\Games\Battlefield V\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{00A94EAF-47BA-49C6-9F4D-99B4634C1B50}] => (Allow) C:\Games\Battlefield V\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{CFF2F0BB-C5A6-42D6-BBFA-7D17C2376842}] => (Allow) D:\Games\steamapps\common\DiRT 4\dirt4.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{15DFB872-24B3-4547-AE0F-EE36C0CF35EF}] => (Allow) D:\Games\steamapps\common\DiRT 4\dirt4.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{0F711146-6BB6-4FF4-A7A3-BF7E11C6180A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{615CC27A-FA27-4D94-9C85-3CD6E12273A2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{ABD2A250-F200-4202-9F81-BAE1BD4026BE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8B7E796D-2EA4-45FE-AB04-2066F9C1239D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{B0DA417A-8157-490B-8413-00876A366F4E}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [UDP Query User{CD36B941-1342-4D9A-8ACA-32E29450DD83}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{B0428C50-514E-4333-B2D3-BE1A7C588DA0}] => (Allow) D:\Games\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{E861BB59-9C47-4411-A77C-E25950E982C5}] => (Allow) D:\Games\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{0A0BE730-DCD0-435C-8354-61B63C8B8849}C:\users\micha\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\micha\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{9671E323-4C41-4B6A-8225-C7F94D34FBF7}C:\users\micha\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\micha\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{26575DF6-F37E-4952-B5F8-B26E9519D2C3}D:\users\micha\appdata\local\warthunder\launcher.exe] => (Allow) D:\users\micha\appdata\local\warthunder\launcher.exe (Gaijin Network LTD -> Gaijin)
FirewallRules: [UDP Query User{FF2B8DCF-0E63-4B18-8962-1AF277F8C015}D:\users\micha\appdata\local\warthunder\launcher.exe] => (Allow) D:\users\micha\appdata\local\warthunder\launcher.exe (Gaijin Network LTD -> Gaijin)
FirewallRules: [TCP Query User{EC2A8607-6364-4175-9A9A-7BCA98F31265}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{CA2E9604-EA82-4DA0-A7BB-7A6828F19F70}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{8721808F-4DEC-4BC7-95C3-88083FD2F394}] => (Allow) D:\ProgramData\Wargaming.net\GameCenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{4323E41B-070A-4164-94B5-D28A90CDE1DE}] => (Allow) D:\ProgramData\Wargaming.net\GameCenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{3B751F48-8610-40CC-8B6E-A22F11654339}] => (Allow) C:\Games\World_of_Tanks_EU\WorldOfTanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{B1F903F6-ABEA-4884-9441-74688FD194FB}] => (Allow) C:\Games\World_of_Tanks_EU\WorldOfTanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{D54E6DBB-2FCB-4FEF-B62F-6026DC37ADB7}] => (Allow) D:\Games\steamapps\common\World of Tanks Blitz\wotblitz.exe (Wargaming.net) [File not signed]
FirewallRules: [{FB78C976-03F8-4475-9A58-3C9C2DDDC798}] => (Allow) D:\Games\steamapps\common\World of Tanks Blitz\wotblitz.exe (Wargaming.net) [File not signed]
FirewallRules: [{8C817EA9-E20D-406C-BDDA-7650EA1B0DC2}] => (Allow) D:\Program Files (x86)\Farming Simulator 2019\FarmingSimulator2019.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{A2027D93-206E-4FC4-8144-B8EB4712469A}] => (Allow) D:\Program Files (x86)\Farming Simulator 2019\FarmingSimulator2019.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{CD9675B5-8A2C-4C72-9BDC-E4F10C50377B}] => (Allow) D:\Program Files (x86)\Farming Simulator 2019\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{D8987362-EDDF-4E4B-9486-1F0679F2C82D}] => (Allow) D:\Program Files (x86)\Farming Simulator 2019\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{30C0357E-9A63-404C-9704-153A2B127985}] => (Allow) D:\Games\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{2A4449F7-FA47-41A4-B06C-5DABA153F529}] => (Allow) D:\Games\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{8B40108A-8EC3-4338-B296-7274C00F5297}] => (Allow) D:\Games\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{5AC51447-9C3C-4086-8416-1600FE6F3093}] => (Allow) D:\Games\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{137679BE-EABD-4D44-93A5-4E0F43D2DF57}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9AE8928A-C130-44FD-8596-C2A52193BEA7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{17FAFA12-41E2-4988-9CFB-02D239410CC5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{3D24686C-B5CA-4F9C-B82B-003E05349BC1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A45096CE-B791-45C9-B339-ECAB71192993}] => (Allow) D:\Games\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{D9D1FBEC-CE97-492F-9428-FF9BA35EE694}] => (Allow) D:\Games\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [TCP Query User{26BDDD08-23CE-42A3-BB62-7EB2905132BB}D:\users\micha\appdata\local\warthunder\win64\aces.exe] => (Allow) D:\users\micha\appdata\local\warthunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [UDP Query User{329E567C-46CD-47DB-8E52-741B5DDAEE63}D:\users\micha\appdata\local\warthunder\win64\aces.exe] => (Allow) D:\users\micha\appdata\local\warthunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [TCP Query User{C1ABB5AB-BC52-46DA-8A84-87BA66A7C8E0}D:\users\micha\appdata\local\enlisted\launcher.exe] => (Allow) D:\users\micha\appdata\local\enlisted\launcher.exe (Gaijin Network LTD -> Gaijin)
FirewallRules: [UDP Query User{2349FC8F-7E32-4C1C-B9A1-8F4A743F719F}D:\users\micha\appdata\local\enlisted\launcher.exe] => (Allow) D:\users\micha\appdata\local\enlisted\launcher.exe (Gaijin Network LTD -> Gaijin)
FirewallRules: [TCP Query User{CCC2CC60-52E6-4E43-8DF0-272D58191427}D:\users\micha\appdata\local\enlisted\win64\enlisted.exe] => (Allow) D:\users\micha\appdata\local\enlisted\win64\enlisted.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [UDP Query User{5604301A-ABFF-4BBC-ADC5-B93CF54581D7}D:\users\micha\appdata\local\enlisted\win64\enlisted.exe] => (Allow) D:\users\micha\appdata\local\enlisted\win64\enlisted.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [TCP Query User{A073F4B4-803F-456A-9F0F-089DB413CA14}C:\program files (x86)\urage reaper revolution gaming mouse\gaming mouse.exe] => (Allow) C:\program files (x86)\urage reaper revolution gaming mouse\gaming mouse.exe (Areson Technology -> )
FirewallRules: [UDP Query User{D5510E16-7124-4783-A7BA-377E1BAF7F48}C:\program files (x86)\urage reaper revolution gaming mouse\gaming mouse.exe] => (Allow) C:\program files (x86)\urage reaper revolution gaming mouse\gaming mouse.exe (Areson Technology -> )
FirewallRules: [{8025232C-7BE3-4E11-8F87-F08EDE4F2DA6}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{C374FE59-B12E-495E-AF24-DA61D359288B}] => (Allow) D:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{6A18AA0B-61F0-4EFD-BE0C-034603676EE2}] => (Allow) D:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{7E5CD749-AE0A-4A75-9214-45E77B7ECC74}] => (Allow) D:\Program Files (x86)\Origin Games\Plants vs Zombies Garden Warfare 2\GW2.Main_Win64_Retail.exe (Electronic Arts, Inc. -> EA PopCap)
FirewallRules: [{935FC54A-E369-449B-97AD-7FD3F5A4F494}] => (Allow) D:\Program Files (x86)\Origin Games\Plants vs Zombies Garden Warfare 2\GW2.Main_Win64_Retail.exe (Electronic Arts, Inc. -> EA PopCap)

==================== Restore Points =========================

24-05-2021 08:44:27 Naplánovaný kontrolní bod
24-05-2021 10:29:41 Nainstalováno rozhraní DirectX
24-05-2021 10:30:07 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (06/01/2021 02:55:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: OneDrive.exe, verze: 21.83.425.3, časové razítko: 0xd0a2f776
Název chybujícího modulu: Qt5Core.dll, verze: 5.14.1.0, časové razítko: 0x606395da
Kód výjimky: 0xc0000005
Posun chyby: 0x001813f0
ID chybujícího procesu: 0x3084
Čas spuštění chybující aplikace: 0x01d756e425103aa9
Cesta k chybující aplikaci: C:\Users\micha\AppData\Local\Microsoft\OneDrive\OneDrive.exe
Cesta k chybujícímu modulu: C:\Users\micha\AppData\Local\Microsoft\OneDrive\21.083.0425.0003\Qt5Core.dll
ID zprávy: 41e20d0d-c3de-4cf5-ba17-04b51838f1cb
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (05/30/2021 12:02:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: cefprocess.exe, verze: 0.0.0.0, časové razítko: 0x5f5a9700
Název chybujícího modulu: cefprocess.exe, verze: 0.0.0.0, časové razítko: 0x5f5a9700
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000003d824
ID chybujícího procesu: 0x1610
Čas spuštění chybující aplikace: 0x01d7553ae9bc43d6
Cesta k chybující aplikaci: D:\Users\micha\AppData\Local\WarThunder\win64\cefprocess.exe
Cesta k chybujícímu modulu: D:\Users\micha\AppData\Local\WarThunder\win64\cefprocess.exe
ID zprávy: 19751226-3aa2-4cfc-8dc7-a4693b72a37c
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (05/30/2021 11:59:34 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: cefprocess.exe, verze: 0.0.0.0, časové razítko: 0x5f5a9700
Název chybujícího modulu: cefprocess.exe, verze: 0.0.0.0, časové razítko: 0x5f5a9700
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000003d824
ID chybujícího procesu: 0x2ea0
Čas spuštění chybující aplikace: 0x01d7553a7ded6ffd
Cesta k chybující aplikaci: D:\Users\micha\AppData\Local\WarThunder\win64\cefprocess.exe
Cesta k chybujícímu modulu: D:\Users\micha\AppData\Local\WarThunder\win64\cefprocess.exe
ID zprávy: a0b3e07e-caf3-4f95-9f95-9707ed737140
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (05/30/2021 11:59:16 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: cefprocess.exe, verze: 0.0.0.0, časové razítko: 0x5f5a9700
Název chybujícího modulu: cefprocess.exe, verze: 0.0.0.0, časové razítko: 0x5f5a9700
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000003d824
ID chybujícího procesu: 0x1c90
Čas spuštění chybující aplikace: 0x01d7553a7335dd76
Cesta k chybující aplikaci: D:\Users\micha\AppData\Local\WarThunder\win64\cefprocess.exe
Cesta k chybujícímu modulu: D:\Users\micha\AppData\Local\WarThunder\win64\cefprocess.exe
ID zprávy: deae2cca-7ceb-4316-89b3-3815c2b317e8
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (05/30/2021 11:58:50 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: cefprocess.exe, verze: 0.0.0.0, časové razítko: 0x5f5a9700
Název chybujícího modulu: cefprocess.exe, verze: 0.0.0.0, časové razítko: 0x5f5a9700
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000003d824
ID chybujícího procesu: 0x27e0
Čas spuštění chybující aplikace: 0x01d7553a6373fa0a
Cesta k chybující aplikaci: D:\Users\micha\AppData\Local\WarThunder\win64\cefprocess.exe
Cesta k chybujícímu modulu: D:\Users\micha\AppData\Local\WarThunder\win64\cefprocess.exe
ID zprávy: f55e0752-214c-48b9-ad31-5245d8bd7ee8
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (05/25/2021 11:05:12 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Explorer.EXE, verze: 10.0.19041.964, časové razítko: 0x8aeeaedf
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000060a0fd8
ID chybujícího procesu: 0x1e04
Čas spuštění chybující aplikace: 0x01d75139bb2002da
Cesta k chybující aplikaci: C:\WINDOWS\Explorer.EXE
Cesta k chybujícímu modulu: unknown
ID zprávy: 700533a3-9012-4f37-9bd7-6397f8b1fc30
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (05/23/2021 10:16:45 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program GameBar.exe verze 5.621.4222.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 1f88

Čas spuštění: 01d74faa916ca53f

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.621.4222.0_x64__8wekyb3d8bbwe\GameBar.exe

ID hlášení: 44076ac6-24a1-4ef0-85b7-9ef18b982e6c

Úplný název balíčku s chybou: Microsoft.XboxGamingOverlay_5.621.4222.0_x64__8wekyb3d8bbwe

ID aplikace relativní podle balíčku s chybou: App

Typ zablokování: Navigation

Error: (05/22/2021 06:47:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: FarmingSimulator2019Game.exe, verze: 8.0.0.0, časové razítko: 0x5f996699
Název chybujícího modulu: FarmingSimulator2019Game.exe, verze: 8.0.0.0, časové razítko: 0x5f996699
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000027d694
ID chybujícího procesu: 0x3964
Čas spuštění chybující aplikace: 0x01d74f2136969e07
Cesta k chybující aplikaci: D:\Program Files (x86)\Farming Simulator 2019\x64\FarmingSimulator2019Game.exe
Cesta k chybujícímu modulu: D:\Program Files (x86)\Farming Simulator 2019\x64\FarmingSimulator2019Game.exe
ID zprávy: 0bce9c58-a4e5-4281-b9c4-3f065ea4fba5
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (06/01/2021 03:29:13 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-LVA03BU)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě:
2147942767
při provádění příkazu:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (06/01/2021 03:10:30 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-LVA03BU)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě:
2147942767
při provádění příkazu:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (06/01/2021 03:08:01 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-LVA03BU)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě:
2147942767
při provádění příkazu:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (06/01/2021 02:56:32 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-LVA03BU)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě:
2147942767
při provádění příkazu:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (06/01/2021 02:50:17 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-LVA03BU)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě:
2147942767
při provádění příkazu:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (06/01/2021 02:42:20 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x8024200b): Aktualizace bezpečnostních informací pro produkt Microsoft Defender Antivirus - KB2267602 (verze 1.339.1809.0).

Error: (06/01/2021 12:40:44 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-LVA03BU)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě:
2147942767
při provádění příkazu:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (06/01/2021 12:38:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA LocalSystem Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.


Windows Defender:
================
Date: 2021-06-01 15:22:28
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {CDF6D4CE-6548-4F90-A3A5-EA71F38C8128}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-04-29 19:37:12
Description:
Řízený přístup ke složkám zablokoval pro C:\Program Files\AVG\Antivirus\x86\RegSvr.exe provádění změn v paměti.
Čas detekce: 2021-04-29T17:37:12.105Z
Uživatel: DESKTOP-LVA03BU\micha
Cesta: \Device\Harddisk0\DR0
Název procesu: C:\Program Files\AVG\Antivirus\x86\RegSvr.exe
Verze bezpečnostních informací: 1.337.198.0
Verze modulu: 1.1.18100.5
Verze produktu: 4.18.2103.7

Date: 2021-04-29 19:37:12
Description:
Řízený přístup ke složkám zablokoval pro C:\Program Files\AVG\Antivirus\AvBugReport.exe provádění změn v paměti.
Čas detekce: 2021-04-29T17:37:12.104Z
Uživatel: DESKTOP-LVA03BU\micha
Cesta: \Device\Harddisk0\DR0
Název procesu: C:\Program Files\AVG\Antivirus\AvBugReport.exe
Verze bezpečnostních informací: 1.337.198.0
Verze modulu: 1.1.18100.5
Verze produktu: 4.18.2103.7

Date: 2021-04-29 19:37:12
Description:
Řízený přístup ke složkám zablokoval pro C:\Program Files\AVG\Antivirus\RegSvr.exe provádění změn v paměti.
Čas detekce: 2021-04-29T17:37:12.098Z
Uživatel: DESKTOP-LVA03BU\micha
Cesta: \Device\Harddisk0\DR0
Název procesu: C:\Program Files\AVG\Antivirus\RegSvr.exe
Verze bezpečnostních informací: 1.337.198.0
Verze modulu: 1.1.18100.5
Verze produktu: 4.18.2103.7

Date: 2021-04-29 19:37:12
Description:
Řízený přístup ke složkám zablokoval pro C:\Program Files\AVG\Antivirus\AvBugReport.exe provádění změn v paměti.
Čas detekce: 2021-04-29T17:37:12.096Z
Uživatel: DESKTOP-LVA03BU\micha
Cesta: \Device\Harddisk0\DR0
Název procesu: C:\Program Files\AVG\Antivirus\AvBugReport.exe
Verze bezpečnostních informací: 1.337.198.0
Verze modulu: 1.1.18100.5
Verze produktu: 4.18.2103.7

Date: 2021-06-01 14:42:21
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.337.198.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18100.5
Kód chyby: 0x80070643
Popis chyby: Při instalaci došlo k závažné chybě.

Date: 2021-06-01 14:42:19
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.339.1809.0
Předchozí verze bezpečnostních informací: 1.337.198.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Delta
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.18100.6
Předchozí verze modulu: 1.1.18100.5
Kód chyby: 0x80070666
Popis chyby: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

Date: 2021-06-01 14:42:19
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.339.1809.0
Předchozí verze bezpečnostních informací: 1.337.198.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Delta
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.18100.6
Předchozí verze modulu: 1.1.18100.5
Kód chyby: 0x80070666
Popis chyby: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

Date: 2021-06-01 14:42:19
Description:
Program Antivirová ochrana v programu Microsoft Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu: 1.1.18100.6
Předchozí verze modulu: 1.1.18100.5
Uživatel: NT AUTHORITY\SYSTEM
Kód chyby: 0x80070666
Popis chyby: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

CodeIntegrity:
===============
Date: 2021-06-01 14:39:43
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends Inc. 2.40 03/08/2018
Motherboard: Micro-Star International Co., Ltd. Z370-A PRO (MS-7B48)
Processor: Intel(R) Core(TM) i5-8500 CPU @ 3.00GHz
Percentage of memory in use: 32%
Total physical RAM: 16344.71 MB
Available physical RAM: 11014.44 MB
Total Virtual: 21720.71 MB
Available Virtual: 14315.68 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:445.83 GB) (Free:89.05 GB) NTFS
Drive d: () (Fixed) (Total:1863 GB) (Free:1614.13 GB) NTFS
Drive e: (FarmingSimulator19) (CDROM) (Total:5.72 GB) (Free:0 GB) UDF

\\?\Volume{21153163-0000-0000-0000-100000000000}\ (Boot) (Fixed) (Total:0.49 GB) (Free:0.46 GB) NTFS
\\?\Volume{21153163-0000-0000-0000-a0946f000000}\ () (Fixed) (Total:0.81 GB) (Free:0.38 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 447.1 GB) (Disk ID: 21153163)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=445.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=826 MB) - (Type=27)

==========================================================
Disk: 1 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15197
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Windows defender mi zablokoval pc, že mám Trojského koně a prosím o kontrolu a následné vyřešení děkuji.

#4 Příspěvek od JaRon »

Avptool nic nenasiel, alebo sa ho nepodarilo spustit ?
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

Oudyssey
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 29 pro 2020 20:35

Re: Windows defender mi zablokoval pc, že mám Trojského koně a prosím o kontrolu a následné vyřešení děkuji.

#5 Příspěvek od Oudyssey »

Nenašel jsem odkaz na stáhnutí souboru. Když jsem něco našel nebyl to instalační program.
Naposledy upravil(a) Oudyssey dne 01 čer 2021 20:27, celkem upraveno 1 x.


Oudyssey
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 29 pro 2020 20:35

Re: Windows defender mi zablokoval pc, že mám Trojského koně a prosím o kontrolu a následné vyřešení děkuji.

#7 Příspěvek od Oudyssey »

Jak vám z toho programu mám něco poslat, nevím jak. Udělal jsem si test a nic mi to nevyplivlo. Děkuji

Oudyssey
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 29 pro 2020 20:35

Re: Windows defender mi zablokoval pc, že mám Trojského koně a prosím o kontrolu a následné vyřešení děkuji.

#8 Příspěvek od Oudyssey »

Posílám snímek obrazovky.
Přílohy
1.png
1.png (63.33 KiB) Zobrazeno 1389 x

Oudyssey
Návštěvník
Návštěvník
Příspěvky: 17
Registrován: 29 pro 2020 20:35

Re: Windows defender mi zablokoval pc, že mám Trojského koně a prosím o kontrolu a následné vyřešení děkuji.

#9 Příspěvek od Oudyssey »

Mohl bych poprosit o návod a aplikace abych mohl zkontrolovat jestli mám toho trojského koně nebo ne? Děkuji

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15197
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Windows defender mi zablokoval pc, že mám Trojského koně a prosím o kontrolu a následné vyřešení děkuji.

#10 Příspěvek od JaRon »

pocitac vypada cisty
ak by nieco vyskocilo, urob screenshot
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

Odpovědět