Dobrý den,
Prosím o preventivní kontrolu PC. Děkuji. Martin.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-12-2021
Ran by Admin (administrator) on DEKSTOP-MARTIN (Micro-Star International Co., Ltd. MS-7B48) (14-12-2021 18:44:48)
Running from C:\Users\Admin\Desktop
Loaded Profiles: Admin
Platform: Microsoft Windows 10 Pro Version 21H2 19044.1387 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Blitz, Inc.) [File not signed] C:\Users\Admin\AppData\Local\Programs\Blitz\Blitz.exe <24>
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Express\express.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <18>
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2110.13603.0_x64__8wekyb3d8bbwe\Win32Bridge.Server.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1371_none_7e1bd7147c8285b0\TiWorker.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_422d4a8d182d8330\Display.NvContainer\NVDisplay.Container.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_01042bb7f11c17c4\RtkAudUService64.exe <2>
(Software602 a.s. -> Software602 a.s.) C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(The CefSharp Authors) [File not signed] C:\Program Files (x86)\Garmin\Express\CefSharp.BrowserSubprocess.exe <2>
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_01042bb7f11c17c4\RtkAudUService64.exe [1256824 2021-04-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [167496 2021-12-09] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [Navigraph FMS Data Manager] => C:\Program Files (x86)\Navigraph\FMS Data Manager\NGFMSAgent.exe [991320 2021-04-21] (Navigraph Kommanditbolag -> Navigraph)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4267432 2021-11-22] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\Run: [Discord] => C:\Users\Admin\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [34508416 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [136443968 2021-12-09] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Admin\AppData\Local\Microsoft\Teams\Update.exe [2453720 2021-03-14] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\Run: [com.blitz.app] => C:\Users\Admin\AppData\Local\Programs\Blitz\Blitz.exe [121837568 2021-12-03] (Blitz, Inc.) [File not signed]
HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31184216 2021-11-15] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\MountPoints2: {6f5b1c08-990c-11ea-b717-309c23aeb77d} - "D:\HiSuiteDownLoader.exe"
HKLM\...\Windows x64\Print Processors\Canon MG5600 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCA.DLL [30208 2014-03-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5600 series: C:\Windows\system32\CNMLMCA.DLL [406016 2014-03-18] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Software602 XPS port monitor: C:\Windows\system32\602localmon.dll [54864 2018-05-31] (Software602 a.s. -> Windows (R) Win 7 DDK provider)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\96.0.4664.93\Installer\chrmstp.exe [2021-12-08] (Google LLC -> Google LLC)
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {01F0F9AB-6B29-44C0-BEF8-5CC605E023E3} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [111032 2021-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {02AFC3FC-ACA0-443E-8D57-FD500C5637C0} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-11-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {08764C69-B42B-419B-9CEE-D3619A5C8B7E} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-11-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {24C6C680-62D2-48CB-8F51-400B8FA7976D} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [111032 2021-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {262D5E87-8C8D-46DE-86C9-90C3E06769A5} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339464 2021-11-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {385CD39B-3662-4D2E-AD8D-24693B71A68D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647376 2021-11-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {490A9139-8BB7-4DC9-A1CD-69DD31042F99} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28880512 2021-06-17] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {4C8D7A80-65D0-451C-AD2B-D83EC02F4C5F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22799320 2021-12-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {4FC2ED4A-62A8-47AF-96E8-3A6D05276577} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {588B441D-635C-45BA-B44D-5BF5F2B8C452} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-11-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {65C253DA-33E9-4710-B419-0351CA190C66} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-11-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {6C07888B-4428-4023-A2B1-8C834FD2E462} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-11-16] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {7164FADD-C02A-4627-A3CD-B23A32518463} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {7CC8F553-BFEE-488E-A6DA-3FE519DC1BC7} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1170832 2021-12-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {90216E3B-7A79-4CCB-8492-87ECB1FD8657} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-02-25] (Google LLC -> Google LLC)
Task: {A7848522-152A-49B4-8143-AE000059C107} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-11-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {C1EA797D-7EF1-48E1-AADC-BE8A530D67C3} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-06-17] (Piriform Software Ltd -> Piriform)
Task: {DB38819F-0E3A-47D4-AB19-AFC0F33B32E3} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-11-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {E35F3B8C-ACB1-4D19-ADD5-479BFC79AB4E} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [26968 2021-11-15] (Garmin International, Inc. -> )
Task: {F133CFCC-BE30-45E6-BF78-929490BAEAF6} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22799320 2021-12-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {F90AB258-E98E-4F49-836F-69C5614EFDD8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-02-25] (Google LLC -> Google LLC)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{9ca00cac-0d3c-466c-a1f4-029cbf6d0bf0}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default [2021-12-14]
Edge HomePage: Default -> hxxp://www.google.com
Edge Session Restore: Default -> is enabled.
Edge Extension: (Překladač Google) - C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-08-14]
Edge Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2021-11-24]
Edge Extension: (Rychlý přesun Google) - C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\okanipcmceoeemlbjnmnbdibhgpbllgc [2020-05-12]
Edge Profile: C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Guest Profile [2021-12-14]
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.311.2 -> C:\Program Files\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-10-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.311.2 -> C:\Program Files\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-10-24] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @software602.cz/602XML Filler -> C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll [2018-01-08] (Software602 a.s. -> Software602 a.s.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2021-12-14]
CHR Notifications: Default -> hxxps://play.gll.gg; hxxps://teams.microsoft.com; hxxps://virtualsoaring.eu
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxp://www.facebook.com/"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Překladač Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-08-15]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-12-12]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Extension: (Rychlý přesun Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\okanipcmceoeemlbjnmnbdibhgpbllgc [2020-04-06]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s. -> Software602 a.s.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8926168 2021-11-08] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12129160 2021-12-02] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [777856 2021-02-10] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3141480 2021-12-09] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3141480 2021-12-09] (ESET, spol. s r.o. -> ESET)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11104832 2021-12-09] (Logitech Inc -> Logitech, Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6136520 2021-11-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13206544 2020-02-14] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe [7152880 2021-12-08] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2020-02-21] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2020-02-21] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [8491720 2021-12-01] (PUBG CORPORATION -> PUBG Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_422d4a8d182d8330\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_422d4a8d182d8330\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2020-09-10] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-02-25] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-02-25] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [183408 2021-10-27] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [124496 2021-10-27] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15824 2021-03-10] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [201984 2021-10-27] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [43920 2021-10-27] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [69736 2021-10-27] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [107456 2021-10-27] (ESET, spol. s r.o. -> ESET)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2018-10-05] (Logitech Inc -> Logitech Inc.)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [37200 2021-03-18] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [25928 2021-03-18] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66896 2021-03-18] (Logitech Inc -> Logitech)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [44080 2016-09-27] (Shaul Eizikovich -> Nefarius Software Solutions)
S3 VirtualHID; C:\WINDOWS\System32\drivers\VirtualHID.sys [26768 2020-02-05] (Voyetra Turtle Beach, Inc. -> TurtleBeach)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2020-02-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2020-02-21] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2020-02-21] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [2522256 2021-12-14] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-12-14 18:44 - 2021-12-14 18:45 - 000021905 _____ C:\Users\Admin\Desktop\FRST.txt
2021-12-14 18:44 - 2021-12-14 18:45 - 000000000 ____D C:\FRST
2021-12-14 18:43 - 2021-12-14 18:43 - 002311168 _____ (Farbar) C:\Users\Admin\Desktop\FRST64.exe
2021-12-11 14:57 - 2021-12-11 14:57 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3465363423-735592264-602919839-1001
2021-12-10 07:52 - 2021-12-10 07:52 - 000045131 _____ C:\Users\Admin\Desktop\RAMI_wallboxy.xlsm
2021-12-09 16:55 - 2021-12-09 16:55 - 000000650 _____ C:\Users\Public\Desktop\Logitech G HUB.lnk
2021-12-09 16:55 - 2021-12-09 16:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2021-12-09 16:55 - 2021-12-09 16:55 - 000000000 ____D C:\Program Files\LGHUB
2021-12-05 21:05 - 2021-11-27 18:08 - 001874648 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-12-05 21:05 - 2021-11-27 18:08 - 001874648 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-12-05 21:05 - 2021-11-27 18:08 - 001466808 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-12-05 21:05 - 2021-11-27 18:08 - 001450200 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-12-05 21:05 - 2021-11-27 18:08 - 001450200 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-12-05 21:05 - 2021-11-27 18:08 - 001206400 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-12-05 21:05 - 2021-11-27 18:08 - 001111272 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-12-05 21:05 - 2021-11-27 18:08 - 001111272 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-12-05 21:05 - 2021-11-27 18:08 - 000966416 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-12-05 21:05 - 2021-11-27 18:08 - 000966416 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-12-05 21:05 - 2021-11-27 18:05 - 000802232 _____ C:\WINDOWS\system32\nvofapi64.dll
2021-12-05 21:05 - 2021-11-27 18:05 - 000658360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2021-12-05 21:05 - 2021-11-27 18:05 - 000636856 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2021-12-05 21:05 - 2021-11-27 18:04 - 002116536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2021-12-05 21:05 - 2021-11-27 18:04 - 001599416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2021-12-05 21:05 - 2021-11-27 18:04 - 001523328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2021-12-05 21:05 - 2021-11-27 18:04 - 001172608 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2021-12-05 21:05 - 2021-11-27 18:04 - 000981120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2021-12-05 21:05 - 2021-11-27 18:04 - 000707712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2021-12-05 21:05 - 2021-11-27 18:04 - 000678328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2021-12-05 21:05 - 2021-11-27 18:04 - 000564352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2021-12-05 21:05 - 2021-11-27 18:03 - 008725928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2021-12-05 21:05 - 2021-11-27 18:03 - 007845816 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2021-12-05 21:05 - 2021-11-27 18:03 - 005728384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2021-12-05 21:05 - 2021-11-27 18:03 - 004938880 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2021-12-05 21:05 - 2021-11-27 18:03 - 002850432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2021-12-05 21:05 - 2021-11-27 18:03 - 000452208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2021-12-05 21:05 - 2021-11-27 18:02 - 000849016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2021-12-05 21:05 - 2021-11-27 18:01 - 006434528 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2021-12-05 21:05 - 2021-11-26 20:16 - 000085718 _____ C:\WINDOWS\system32\nvinfo.pb
2021-11-30 08:18 - 2021-11-30 08:18 - 000000000 ____D C:\Users\Admin\AppData\Local\SolidDocuments
2021-11-29 17:04 - 2021-11-29 17:04 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2021-11-29 17:03 - 2021-11-09 23:27 - 000038016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll
2021-11-29 14:15 - 2021-11-29 14:15 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2021-11-29 14:15 - 2021-11-29 14:15 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk
2021-11-29 14:15 - 2021-11-29 14:15 - 000000000 ____D C:\Program Files\Adobe
2021-11-29 14:14 - 2021-11-29 14:15 - 000000000 ____D C:\Program Files\Common Files\Adobe
2021-11-25 20:42 - 2021-11-25 20:46 - 000000000 ____D C:\Users\Admin\Documents\kamča_foto_telefon
2021-11-24 12:00 - 2021-11-24 12:01 - 000000000 ____D C:\Users\Admin\AppData\Local\Opera Software
2021-11-24 11:59 - 2021-11-24 12:01 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Opera Software
2021-11-23 23:16 - 2021-11-23 23:16 - 000011785 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-11-23 23:15 - 2021-11-23 23:15 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-11-23 23:12 - 2021-11-23 23:12 - 000000000 ___HD C:\$WinREAgent
2021-11-21 09:10 - 2021-11-21 09:10 - 000001963 _____ C:\Users\Public\Desktop\Garmin Express.lnk
2021-11-21 09:10 - 2021-11-21 09:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2021-11-17 18:48 - 2021-11-17 18:48 - 000000143 _____ C:\Users\Admin\Desktop\AS Wx Web Companion.url
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-12-14 18:44 - 2021-11-12 10:10 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Blitz
2021-12-14 18:44 - 2020-02-25 18:57 - 000000000 ____D C:\Program Files\CCleaner
2021-12-14 18:44 - 2020-02-25 15:29 - 000000000 ____D C:\Program Files (x86)\Google
2021-12-14 18:43 - 2021-11-08 17:41 - 000000032 _____ C:\Users\Admin\AppData\Roaming\.machineId
2021-12-14 18:43 - 2021-02-10 16:12 - 000000000 ____D C:\Users\Admin\AppData\Roaming\LGHUB
2021-12-14 18:43 - 2021-02-10 16:12 - 000000000 ____D C:\Users\Admin\AppData\Local\LGHUB
2021-12-14 18:43 - 2020-02-21 14:38 - 000000000 ___RD C:\Users\Admin\OneDrive
2021-12-14 18:43 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-12-14 18:42 - 2020-06-20 16:19 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-12-14 18:42 - 2020-06-20 16:16 - 000008192 ___SH C:\DumpStack.log.tmp
2021-12-14 18:42 - 2020-05-19 17:38 - 000000000 ____D C:\Users\Admin\AppData\Roaming\WhatsApp
2021-12-14 18:42 - 2020-03-04 18:57 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-12-14 18:42 - 2020-02-25 16:36 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Discord
2021-12-14 18:42 - 2020-02-25 15:31 - 000000000 ____D C:\ProgramData\NVIDIA
2021-12-14 18:42 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-12-14 18:42 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-12-14 18:39 - 2020-02-21 14:45 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-12-14 18:38 - 2020-03-02 10:17 - 000000000 ____D C:\Users\Admin\Documents\Záloha registry
2021-12-14 18:38 - 2020-02-25 15:37 - 000000000 ____D C:\Program Files (x86)\Steam
2021-12-14 18:38 - 2020-02-21 14:44 - 137938848 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-12-14 18:38 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-12-14 18:37 - 2020-10-21 09:21 - 000000000 ____D C:\Users\Admin\Desktop\NOARK
2021-12-14 18:23 - 2020-06-20 16:16 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-12-14 18:22 - 2020-02-25 16:36 - 000000000 ____D C:\Users\Admin\AppData\Local\Discord
2021-12-14 15:54 - 2021-01-26 14:51 - 000000000 ____D C:\ProgramData\Riot Games
2021-12-14 14:22 - 2020-11-03 08:44 - 000000000 ____D C:\Program Files\Common Files\PUBG
2021-12-14 14:21 - 2020-02-25 16:36 - 000002227 _____ C:\Users\Admin\Desktop\Discord.lnk
2021-12-14 14:19 - 2020-04-24 19:09 - 002522256 _____ (Wellbia.com Co., Ltd.) C:\WINDOWS\xhunter1.sys
2021-12-14 13:42 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-12-14 13:42 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-12-13 23:08 - 2020-06-20 16:11 - 000000000 ____D C:\Users\Admin
2021-12-13 20:24 - 2020-02-21 14:37 - 000000000 ____D C:\Users\Admin\AppData\Local\Packages
2021-12-11 08:48 - 2020-05-12 15:11 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-12-11 08:48 - 2020-05-12 15:11 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-12-11 08:42 - 2020-06-20 16:19 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-12-11 08:42 - 2020-06-20 16:19 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-12-09 20:05 - 2020-02-25 19:06 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-12-09 17:01 - 2020-06-20 16:21 - 001701720 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-12-09 17:01 - 2019-12-07 15:43 - 000720026 _____ C:\WINDOWS\system32\perfh005.dat
2021-12-09 17:01 - 2019-12-07 15:43 - 000146232 _____ C:\WINDOWS\system32\perfc005.dat
2021-12-08 14:18 - 2020-02-25 15:29 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-12-08 14:18 - 2020-02-25 15:29 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-12-06 20:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-12-06 20:25 - 2020-06-20 16:19 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-12-06 19:53 - 2021-10-21 21:16 - 000000000 ____D C:\Users\Admin\AppData\Local\WhatsApp
2021-12-06 13:25 - 2020-02-25 16:04 - 000000000 ____D C:\Users\Admin\AppData\Local\NVIDIA
2021-12-05 17:17 - 2020-03-29 10:54 - 000000000 ____D C:\ZIBO updater
2021-12-05 17:17 - 2020-03-26 13:53 - 000000000 ____D C:\Users\Admin\AppData\Local\ZIBO Updater Resources
2021-12-05 14:47 - 2020-06-20 16:19 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3465363423-735592264-602919839-1001
2021-12-05 14:47 - 2020-06-20 16:11 - 000002377 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-11-30 08:18 - 2020-02-21 14:37 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Adobe
2021-11-29 16:57 - 2020-06-20 16:19 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-11-29 16:57 - 2020-06-20 16:19 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-11-29 16:57 - 2020-06-20 16:19 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-11-29 16:57 - 2020-06-20 16:19 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-11-29 16:57 - 2020-06-20 16:19 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-11-29 16:57 - 2020-06-20 16:19 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-11-29 16:57 - 2020-06-20 16:19 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-11-29 16:57 - 2020-06-20 16:19 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-11-29 16:57 - 2020-06-20 16:19 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-11-29 16:57 - 2020-02-25 16:04 - 000001443 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2021-11-29 16:57 - 2020-02-25 16:04 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2021-11-29 16:57 - 2020-02-21 14:40 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-11-29 16:57 - 2020-02-21 14:40 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-11-29 14:15 - 2020-06-20 16:19 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-11-29 14:14 - 2020-02-25 17:50 - 000000000 ____D C:\ProgramData\Adobe
2021-11-27 18:04 - 2021-10-27 15:39 - 000795104 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2021-11-27 18:02 - 2020-05-28 14:37 - 007582680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2021-11-26 08:42 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-11-24 22:15 - 2020-02-21 14:39 - 000000000 ____D C:\Users\Admin\AppData\Local\D3DSCache
2021-11-24 08:29 - 2021-11-12 10:10 - 000002213 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blitz.lnk
2021-11-24 08:29 - 2021-11-12 10:10 - 000002205 _____ C:\Users\Admin\Desktop\Blitz.lnk
2021-11-24 08:29 - 2021-11-12 10:10 - 000000000 ____D C:\Users\Admin\AppData\Local\blitz-updater
2021-11-23 23:36 - 2020-06-20 16:16 - 000437912 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-11-23 23:35 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-11-23 23:35 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-11-23 23:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-11-23 23:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-11-23 23:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-11-23 23:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-11-23 23:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-11-23 23:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-11-23 23:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-11-23 23:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-11-23 23:35 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-11-23 08:27 - 2020-02-25 16:04 - 002849992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2021-11-23 08:27 - 2020-02-25 16:04 - 002195656 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2021-11-23 08:27 - 2020-02-25 16:04 - 001294032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2021-11-21 13:51 - 2021-02-10 16:11 - 000000000 ____D C:\ProgramData\LGHUB
2021-11-21 09:10 - 2020-10-27 19:47 - 000000000 ____D C:\ProgramData\Garmin
2021-11-21 09:10 - 2020-10-27 19:46 - 000003624 _____ C:\WINDOWS\system32\Tasks\GarminUpdaterTask
2021-11-21 09:10 - 2020-10-27 19:46 - 000000000 ____D C:\Program Files (x86)\Garmin
2021-11-21 09:10 - 2020-02-25 16:00 - 000000000 ____D C:\ProgramData\Package Cache
2021-11-20 18:11 - 2021-02-14 14:42 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-11-18 18:15 - 2021-05-13 20:31 - 000000000 ____D C:\WINDOWS\Minidump
2021-11-18 18:15 - 2020-03-04 18:57 - 000000000 ____D C:\Users\Admin\AppData\Roaming\TeamViewer
2021-11-18 18:15 - 2020-02-25 17:50 - 000000000 ____D C:\Users\Admin\AppData\Local\CrashDumps
2021-11-17 18:48 - 2020-04-04 13:05 - 000001135 _____ C:\Users\Admin\Desktop\Active Sky XP.lnk
2021-11-17 18:25 - 2020-03-08 14:04 - 000000000 ____D C:\X-Plane 11
2021-11-17 18:21 - 2020-03-08 14:03 - 000000112 _____ C:\Users\Admin\AppData\Local\X-Plane_drm_11.prf
2021-11-17 18:21 - 2020-03-08 14:03 - 000000096 _____ C:\Users\Admin\AppData\Local\X-Plane_xdd_11.prf
2021-11-17 09:43 - 2020-11-10 13:54 - 000000000 ____D C:\Users\Admin\Documents\Cirrus_BW
2021-11-17 09:20 - 2021-04-12 16:10 - 000000000 ____D C:\Users\Admin\AppData\Roaming\mobalytics-desktop
2021-11-17 09:20 - 2020-02-21 14:48 - 000000000 ____D C:\Users\Admin\AppData\Local\ElevatedDiagnostics
2021-11-16 19:36 - 2020-02-25 16:04 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
==================== Files in the root of some directories ========
2021-11-08 17:41 - 2021-12-14 18:43 - 000000032 _____ () C:\Users\Admin\AppData\Roaming\.machineId
2020-04-26 16:06 - 2002-06-18 05:00 - 000418204 _____ () C:\Users\Admin\AppData\Roaming\keahs.dll
2020-06-24 21:49 - 2000-01-15 05:00 - 000134386 _____ () C:\Users\Admin\AppData\Roaming\mxbes.dll
2020-03-08 20:38 - 2020-03-08 20:38 - 000000261 _____ () C:\Users\Admin\AppData\Roaming\OpenSceneryX Installer.plist
2020-03-08 14:02 - 2020-03-08 14:02 - 000000056 _____ () C:\Users\Admin\AppData\Local\X-Plane 11 Preferences.prf
2020-03-08 14:03 - 2021-08-24 16:47 - 000000037 _____ () C:\Users\Admin\AppData\Local\X-Plane Installer.prf
2020-02-25 17:29 - 2020-03-07 19:10 - 000000073 _____ () C:\Users\Admin\AppData\Local\X-Plane_drm.prf
2020-03-08 14:03 - 2021-11-17 18:21 - 000000112 _____ () C:\Users\Admin\AppData\Local\X-Plane_drm_11.prf
2020-02-25 17:29 - 2020-02-25 17:29 - 000000016 _____ () C:\Users\Admin\AppData\Local\x-plane_install_10.txt
2020-03-08 14:04 - 2020-03-08 14:04 - 000000016 _____ () C:\Users\Admin\AppData\Local\x-plane_install_11.txt
2020-03-08 14:03 - 2021-11-17 18:21 - 000000096 _____ () C:\Users\Admin\AppData\Local\X-Plane_xdd_11.prf
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o preventivní kontrolu. Děkuji
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o preventivní kontrolu. Děkuji
Omlouvám se, nevlezlo se to do jednoho příspěvku:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-12-2021
Ran by Admin (14-12-2021 18:45:41)
Running from C:\Users\Admin\Desktop
Microsoft Windows 10 Pro Version 21H2 19044.1387 (X64) (2020-06-20 15:19:19)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Admin (S-1-5-21-3465363423-735592264-602919839-1001 - Administrator - Enabled) => C:\Users\Admin
Administrator (S-1-5-21-3465363423-735592264-602919839-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3465363423-735592264-602919839-503 - Limited - Disabled)
Guest (S-1-5-21-3465363423-735592264-602919839-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3465363423-735592264-602919839-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
FW: ESET Firewall (Enabled) {B066057A-E576-007C-D591-56C163D3B33B}
FW: ESET Firewall (Enabled) {B18EDDE1-72EE-79EA-3ABD-EEAF1EE45FED}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Active Sky XP (HKLM-x32\...\{693405BE-9994-42B5-BAE6-0F20CF8C7DBE}_is1) (Version: 1.0.7933.31437 - HiFi Technologies, Inc.)
Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 21.007.20099 - Adobe)
ANT Drivers Installer x64 (HKLM\...\{139FF066-A458-4B33-8589-383948FD0CFB}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
ASXPConnect Plugin (HKLM-x32\...\{EC0FE36D-00CE-4D89-8859-7A630FB9EF3B}_is1) (Version: 1.0.7933.31437 - HiFi Technologies, Inc.)
Audio For VATSIM (HKLM-x32\...\{B0D70FE1-B891-41D0-ACE2-895F625BA382}) (Version: 1.7.21 - VATSIM)
Balíček ovladače systému Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Balíček ovladače systému Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Blitz (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\153f8ce0-b97a-575b-ba12-4ff8b1481894) (Version: 1.16.8 - Blitz, Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.82 - Piriform)
Discord (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
Elevated Installer (HKLM-x32\...\{C5D02F28-704C-40E4-A818-C1B5C0E3F4F3}) (Version: 7.10.0.0 - Garmin Ltd or its subsidiaries) Hidden
ESET Security (HKLM\...\{D8E84711-EDFC-4D4E-B579-95AEB40DAA4D}) (Version: 15.0.21.0 - ESET, spol. s r.o.)
EuroScope for VACC-CZ (HKLM-x32\...\{B380FB0A-B123-4327-812C-B6F215813B79}) (Version: 2.0.0 - VACC-CZ.org)
Excel (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\1fc5b090eab9aa41f8a2f5987367e6da) (Version: 1.0 - Excel)
Garmin Express (HKLM-x32\...\{198a85d6-0675-4d37-a0f4-17971dbec64b}) (Version: 7.10.0.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{6A8099B2-D410-4BB4-B746-9813020737B9}) (Version: 7.10.0.0 - Garmin Ltd or its subsidiaries) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 96.0.4664.93 - Google LLC)
IXEG 737 Classic (HKLM\...\IXEG 737 Classic 1.33) (Version: 1.33 - X-Aviation)
Java 8 Update 311 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180311F0}) (Version: 8.0.3110.11 - Oracle Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{88EC8D4A-54AB-4A7F-BDE9-4AD906D9D11F}) (Version: 3.2.2110.14001 - Microsoft Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D18FE9D2-2F54-4C68-A2DE-A59D4A80A9BC}) (Version: 3.1.2109.29003 - Microsoft Corporation)
League of Legends (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2021.13.2906 - Logitech)
LX Styler 8.1.0 (HKLM\...\LX Styler_is1) (Version: 8.1.0 - LXNAV)
LXSim 8.0.3 (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\LXSim_is1) (Version: 8.0.3 - LXNAV d.o.o.)
Microsoft 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.14701.20226 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 96.0.1054.53 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 96.0.1054.53 - Microsoft Corporation)
Microsoft Flight Simulator SimConnect Client v10.0.61259.0 (HKLM-x32\...\{D61CA184-3F6D-4A50-B2CC-7A18447D6A8D}) (Version: 10.0.61259.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\OneDriveSetup.exe) (Version: 21.230.1107.0004 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\Teams) (Version: 1.4.00.4167 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{E876418F-BE59-4D8C-B9A5-74B056B676FA}) (Version: 2.93.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29913 (HKLM-x32\...\{03d1453c-7d5c-479c-afea-8482f406e036}) (Version: 14.28.29913.0 - Microsoft Corporation)
Navigraph FMS Data Manager 1.8.9.0421 (HKLM-x32\...\{7E4D5716-374A-4DB6-90CF-D2AEB67362CE}_is1) (Version: 1.8.9.0421 - Navigraph)
NVIDIA FrameView SDK 1.2.4999.30397803 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.4999.30397803 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.24.0.123 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.24.0.123 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.94 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 497.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 497.09 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14701.20226 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14701.20210 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14701.20226 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
Orbx Central 4.1.40 (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\7cf15176-b7c3-5704-8319-ddca84b92c9a) (Version: 4.1.40 - Orbx Simulation Systems Pty Ltd)
Outlook (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\6b0f23e57a39ebfbf2814acb1a24293d) (Version: 1.0 - Outlook)
PowerPoint (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\319814cb56b667dff88f54e08be8f51f) (Version: 1.0 - PowerPoint)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8858.1 - Realtek Semiconductor Corp.)
SkySight (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\1d13657959b7edbaa97dd5cb4f5af4a3) (Version: 1.0 - SkySight)
smartCARS - DLH Virtual (en-US) (HKLM\...\{1F2D0F9E-3FF0-8A90-A0D5-574E65F10AD5_en-US}) (Version: 2.1.34.0 - TFDi Design)
Software602 Form Filler (HKLM-x32\...\{9210AEE3-6ECB-4271-A125-1039E94A6A51}) (Version: 4.75 - Software602 a.s.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Streamlabs OBS 1.0.7 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 1.0.7 - General Workings, Inc.)
TeamSpeak 3 Client (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\TeamSpeak 3 Client) (Version: 3.5.2 - TeamSpeak Systems GmbH)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.3.2682 - TeamViewer)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
vroute.info (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\5ff0fb0cf6679301) (Version: 2.1.1.16 - vroute)
WhatsApp (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\WhatsApp) (Version: 2.2146.9 - WhatsApp)
WinRAR 5.80 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.80.0 - win.rar GmbH)
Word (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\1b837d0bf93d01407352736c91b7bf50) (Version: 1.0 - Word)
Packages:
=========
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-02-21] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-02-21] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.11.12030.0_x64__8wekyb3d8bbwe [2021-12-10] (Microsoft Studios) [MS Ad]
Microsoft To Do -> C:\Program Files\WindowsApps\Microsoft.Todos_2.59.43372.0_x64__8wekyb3d8bbwe [2021-12-14] (Microsoft Corporation) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-12-05] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.26.249.0_x64__dt26b99r8h8gj [2021-06-15] (Realtek Semiconductor Corp)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0 [2021-12-10] (Spotify AB) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3465363423-735592264-602919839-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Admin\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20289.5\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2021-12-09] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2021-12-09] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_422d4a8d182d8330\nvshext.dll [2021-11-27] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2021-12-09] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [msacm.lhacm] => C:\Windows\SysWOW64\lhacm.acm [34064 2020-04-03] (Microsoft Corporation) [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\Admin\Desktop\CoTaCo2-aat.lnk -> C:\Users\Admin\Documents\CoTaCo2 pro condor\CoTaCo2\CoTaCo2-aat.bat ()
Shortcut: C:\Users\Admin\Desktop\CoTaCo2.lnk -> C:\Users\Admin\Documents\CoTaCo2 pro condor\CoTaCo2\CoTaCo2.bat ()
ShortcutWithArgument: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Excel.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=leffmjdabcgaflkikcefahmlgpodjkdm --app-url=hxxps://excel.office.com/
ShortcutWithArgument: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=bjhmmnoficofgoiacjaajpkfndojknpb --app-url=hxxps://outlook.com/
ShortcutWithArgument: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=opfacbhaojodjaojgocnibmklknchehf --app-url=hxxps://powerpoint.office.com/
ShortcutWithArgument: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkySight.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=pamakffedijpmmlnfbnockomoafhiiec
ShortcutWithArgument: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Word.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=hikhggiobiflkdfdgdajcfklmcibbopi --app-url=hxxps://word.office.com/
==================== Loaded Modules (Whitelisted) =============
2020-11-27 03:38 - 2020-11-27 03:38 - 000961536 _____ () [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\CefSharp.BrowserSubprocess.Core.dll
2020-11-27 03:38 - 2020-11-27 03:38 - 001446400 _____ () [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\CefSharp.Core.dll
2021-11-15 15:50 - 2021-11-15 15:50 - 000073216 _____ () [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\FixBootSector.dll
2017-05-08 09:35 - 2017-05-08 09:35 - 000325632 _____ () [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\GpsImgWrapper.dll
2021-12-09 16:55 - 2021-12-09 16:54 - 000634880 _____ () [File not signed] \\?\C:\Program Files\LGHUB\resources\app.asar.unpacked\node_modules\keytar\build\Release\keytar.node
2021-11-24 08:29 - 2021-12-03 07:29 - 000415232 _____ () [File not signed] \\?\C:\Users\Admin\AppData\Local\Programs\Blitz\resources\app.asar.unpacked\node_modules\leveldown\prebuilds\win32-ia32\node.napi.node
2020-11-18 09:14 - 2020-11-18 09:14 - 117340672 _____ () [File not signed] C:\Program Files (x86)\Garmin\Express\libcef.dll
2020-11-18 07:40 - 2020-11-18 07:40 - 000323072 _____ () [File not signed] C:\Program Files (x86)\Garmin\Express\libegl.dll
2020-11-18 07:40 - 2020-11-18 07:40 - 005441536 _____ () [File not signed] C:\Program Files (x86)\Garmin\Express\libglesv2.dll
2021-11-24 08:29 - 2021-12-03 07:29 - 002566656 _____ () [File not signed] C:\Users\Admin\AppData\Local\Programs\Blitz\ffmpeg.dll
2021-11-24 08:29 - 2021-12-03 07:29 - 000357888 _____ () [File not signed] C:\Users\Admin\AppData\Local\Programs\Blitz\libegl.dll
2021-11-24 08:29 - 2021-12-03 07:29 - 006827520 _____ () [File not signed] C:\Users\Admin\AppData\Local\Programs\Blitz\libglesv2.dll
2021-11-15 15:50 - 2021-11-15 15:50 - 001976832 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\Garmin\Express\XercesLib.dll
2021-11-15 15:57 - 2021-11-15 15:57 - 000234496 _____ (Dynastream Innovations Inc.) [File not signed] C:\Program Files (x86)\Garmin\Express\ANT_WrappedLib.dll
2021-11-15 15:50 - 2021-11-15 15:50 - 002711552 _____ (Garmin International) [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\legacyio.dll
2017-05-08 09:35 - 2017-05-08 09:35 - 000343552 _____ (Garmin International, Inc.) [File not signed] C:\Program Files (x86)\Garmin\Express\IMG_GPSMAP.dll
2021-11-15 15:50 - 2021-11-15 15:50 - 000425472 _____ (Garmin) [File not signed] C:\Program Files (x86)\Garmin\Express\XMLdll.dll
2021-11-15 15:53 - 2021-11-15 15:53 - 000090112 _____ (Silicon Laboratories, Inc.) [File not signed] C:\Program Files (x86)\Garmin\Express\DSI_SiUSBXp_3_1.DLL
2020-11-18 07:39 - 2020-11-18 07:39 - 000843264 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Garmin\Express\chrome_elf.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\steam_api64.dll:{3629C49D-42C6-4CD8-B2A9-606E13C1E6EA} [28016642]
AlternateDataStreams: C:\steam_api64.dll:{BCA835E9-27DD-49D4-9E47-4CD16F9DC264} [28]
AlternateDataStreams: C:\Users\Admin\Data aplikací:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Admin\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_311\bin\ssv.dll [2021-10-24] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_311\bin\jp2ssv.dll [2021-10-24] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-19 05:49 - 2020-04-07 22:15 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3465363423-735592264-602919839-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Admin\Desktop\bajk.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run32: => "Navigraph FMS Data Manager"
HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{32CE7D58-650E-4024-9C67-E713F7FF29F4}] => (Allow) LPort=19285
FirewallRules: [{931F4056-33A0-4E7A-B647-03368B8965EB}] => (Allow) LPort=19284
FirewallRules: [{F480C42E-7BB8-4FCA-B5D1-7B1366351813}] => (Allow) LPort=445
FirewallRules: [{E9CBE1A8-D4B7-4E7B-A3F8-55D2CA7F437B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{4E3E726A-7D1D-4F74-970A-D9B2387021CF}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{1EE10599-560F-488C-BD74-320CCC6E3BED}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{4BB883DD-025C-440E-9262-6CFE8366DAED}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{9F450028-78F5-4B92-8690-87C1CE805564}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{A8D88D3A-CFC0-4097-80C4-F4F03BD89850}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{AA699F53-CE1B-4EB4-BB9D-F34FD6734BE0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CFADA6A4-91E6-44CA-ACF1-6D9BBA62EB97}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4A4447AA-E3E9-4860-813C-CB814CDF830F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{21EE3FA4-372C-4E4A-A23A-1F36EA99B822}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{930809D5-8603-484B-B325-14FAFA98A223}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe (Software602 a.s. -> ) [File not signed]
FirewallRules: [{ADE77096-91C6-42C9-BB73-32D86910CB28}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe (Software602 a.s. -> ) [File not signed]
FirewallRules: [{EA951F95-5F17-46ED-B070-DA9A1F316250}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG CORPORATION -> PUBG Corporation)
FirewallRules: [{D319A696-4330-4A69-8187-500C350D3669}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG CORPORATION -> PUBG Corporation)
FirewallRules: [{ED46BE4C-703D-44CB-B3AC-860D92F6C68A}] => (Allow) C:\Program Files (x86)\Navigraph\FMS Data Manager\NGFMSAgent.exe (Navigraph Kommanditbolag -> Navigraph)
FirewallRules: [{888F0D03-30DC-4540-BCA2-A92CADD9ABB2}] => (Allow) C:\Program Files (x86)\Navigraph\FMS Data Manager\NGFMSManager.exe (Navigraph Kommanditbolag -> Navigraph)
FirewallRules: [{4D44A989-7A15-4FF2-BC0F-A1699E7CD17B}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2E3AF57B-BE1C-42C8-A6BF-4494D862788B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{123289BB-91AE-44F4-B180-B12A0BF21BCB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{1CFFA7F1-3C32-4B79-B061-BCC80ABC3201}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{3D2E236E-1DC4-403D-8759-E4EB5A02461F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{883AD308-7B13-45F2-85C2-0C516863C287}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{3DA7B1CC-BB27-4987-91FD-B7493745AC3F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A462123B-4A96-46E9-8E57-D17A2F054C39}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{028131A8-5C43-4AC5-B383-F5D39C9F271B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C1478BC4-A453-4133-988F-1AC3D23C431C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{498865AD-7766-4F87-8BA2-F36E8F863F69}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{12BFA3F2-1870-40C4-9EFE-06F0DCA05D0D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BBFF311D-5B5E-44B5-9345-628E1952DF63}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3DACE494-6D1A-491C-86E3-134F4A29FF73}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4A41BC3C-B622-43BA-89C7-2FB51B53F1EB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B8058DF4-B590-40AF-BA4D-27BFBBC53B24}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{00F747EC-CF82-4BDE-8BD3-2CBD055AA686}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5028E092-1106-4A95-AC85-54C2A9DB8BF5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BD9F6904-2D19-4053-8372-556FAC2B1E74}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\96.0.1054.53\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
05-12-2021 19:22:39 Naplánovaný kontrolní bod
13-12-2021 17:13:41 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
Name: GuangZhou FiiO Electronics Co.,Ltd
Description: GuangZhou FiiO Electronics Co.,Ltd
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: ========================
Application errors:
==================
Error: (12/14/2021 01:42:33 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0
Error: (12/13/2021 04:27:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ucldr_battlegrounds_gl.exe, verze: 2021.6.29.973, časové razítko: 0x60dac8ea
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.1288, časové razítko: 0xa280d1d6
Kód výjimky: 0xc0000374
Posun chyby: 0x00000000000ff199
ID chybujícího procesu: 0x2634
Čas spuštění chybující aplikace: 0x01d7f035ad1d3e2f
Cesta k chybující aplikaci: C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 1cf1b8ab-f77d-4ce6-a132-6ca34a0bc8d8
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/11/2021 09:59:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ucldr_battlegrounds_gl.exe, verze: 2021.6.29.973, časové razítko: 0x60dac8ea
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.1288, časové razítko: 0xa280d1d6
Kód výjimky: 0xc0000374
Posun chyby: 0x00000000000ff199
ID chybujícího procesu: 0x4d14
Čas spuštění chybující aplikace: 0x01d7eed1aa369742
Cesta k chybující aplikaci: C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: c12c7414-f0a6-4cf1-b5fe-a0517f9d2511
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/11/2021 03:14:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ucldr_battlegrounds_gl.exe, verze: 2021.6.29.973, časové razítko: 0x60dac8ea
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.1288, časové razítko: 0xa280d1d6
Kód výjimky: 0xc0000374
Posun chyby: 0x00000000000ff199
ID chybujícího procesu: 0x466c
Čas spuštění chybující aplikace: 0x01d7ee9913bdce8f
Cesta k chybující aplikaci: C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: ec0e01bb-a90c-4826-b957-3ad239fd054d
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/10/2021 07:27:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ucldr_battlegrounds_gl.exe, verze: 2021.6.29.973, časové razítko: 0x60dac8ea
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.1288, časové razítko: 0xa280d1d6
Kód výjimky: 0xc0000374
Posun chyby: 0x00000000000ff199
ID chybujícího procesu: 0x21d8
Čas spuštění chybující aplikace: 0x01d7edf34828f6c3
Cesta k chybující aplikaci: C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 6e2c992f-f72a-4b2f-87ff-dd6a2e3e8a17
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/05/2021 05:17:48 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: DEKSTOP-MARTIN)
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů C:\WINDOWS\system32\sysmain.dll (kód chyby Win32 126).
Error: (11/30/2021 01:58:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ucldr_battlegrounds_gl.exe, verze: 2021.6.29.973, časové razítko: 0x60dac8ea
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.1288, časové razítko: 0xa280d1d6
Kód výjimky: 0xc0000374
Posun chyby: 0x00000000000ff199
ID chybujícího procesu: 0x49d4
Čas spuštění chybující aplikace: 0x01d7e5e9b43bd106
Cesta k chybující aplikaci: C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 4da1e881-4e10-430b-893b-b4f9fe834ec4
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (11/29/2021 02:15:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MsiExec.exe, verze: 5.0.19041.1, časové razítko: 0x25d5450e
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.1288, časové razítko: 0x027db076
Kód výjimky: 0xc0000005
Posun chyby: 0x000447f0
ID chybujícího procesu: 0x2a80
Čas spuštění chybující aplikace: 0x01d7e52323d55521
Cesta k chybující aplikaci: C:\Windows\syswow64\MsiExec.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: fc56abd5-574f-4790-a886-86a4d332618c
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (12/13/2021 11:08:40 PM) (Source: DCOM) (EventID: 10010) (User: DEKSTOP-MARTIN)
Description: Server {38E441FB-3D16-422F-8750-B2DACEC5CEFC} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/12/2021 11:19:32 PM) (Source: DCOM) (EventID: 10010) (User: DEKSTOP-MARTIN)
Description: Server {38E441FB-3D16-422F-8750-B2DACEC5CEFC} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/12/2021 03:13:50 PM) (Source: DCOM) (EventID: 10010) (User: DEKSTOP-MARTIN)
Description: Server {38E441FB-3D16-422F-8750-B2DACEC5CEFC} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/10/2021 11:39:32 PM) (Source: DCOM) (EventID: 10010) (User: DEKSTOP-MARTIN)
Description: Server {38E441FB-3D16-422F-8750-B2DACEC5CEFC} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/10/2021 03:00:30 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9WZDNCRFJ364-MICROSOFT.SKYPEAPP.
Error: (12/09/2021 04:53:59 PM) (Source: DCOM) (EventID: 10010) (User: DEKSTOP-MARTIN)
Description: Server {38E441FB-3D16-422F-8750-B2DACEC5CEFC} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/08/2021 11:18:16 PM) (Source: DCOM) (EventID: 10010) (User: DEKSTOP-MARTIN)
Description: Server {38E441FB-3D16-422F-8750-B2DACEC5CEFC} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/08/2021 07:23:36 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
CodeIntegrity:
===============
Date: 2021-12-14 18:44:48
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 2.A0 08/24/2019
Motherboard: Micro-Star International Co., Ltd. Z370-A PRO (MS-7B48)
Processor: Intel(R) Core(TM) i7-9700F CPU @ 3.00GHz
Percentage of memory in use: 17%
Total physical RAM: 32710.23 MB
Available physical RAM: 27043.75 MB
Total Virtual: 37574.23 MB
Available Virtual: 30180.56 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:465.13 GB) (Free:49.43 GB) NTFS
\\?\Volume{9841689a-c0e7-4d75-bd78-1744326b21c6}\ (Obnovení) (Fixed) (Total:0.52 GB) (Free:0.1 GB) NTFS
\\?\Volume{eface461-89d4-4dea-878d-548c7daf0605}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-12-2021
Ran by Admin (14-12-2021 18:45:41)
Running from C:\Users\Admin\Desktop
Microsoft Windows 10 Pro Version 21H2 19044.1387 (X64) (2020-06-20 15:19:19)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Admin (S-1-5-21-3465363423-735592264-602919839-1001 - Administrator - Enabled) => C:\Users\Admin
Administrator (S-1-5-21-3465363423-735592264-602919839-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3465363423-735592264-602919839-503 - Limited - Disabled)
Guest (S-1-5-21-3465363423-735592264-602919839-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3465363423-735592264-602919839-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
FW: ESET Firewall (Enabled) {B066057A-E576-007C-D591-56C163D3B33B}
FW: ESET Firewall (Enabled) {B18EDDE1-72EE-79EA-3ABD-EEAF1EE45FED}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Active Sky XP (HKLM-x32\...\{693405BE-9994-42B5-BAE6-0F20CF8C7DBE}_is1) (Version: 1.0.7933.31437 - HiFi Technologies, Inc.)
Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 21.007.20099 - Adobe)
ANT Drivers Installer x64 (HKLM\...\{139FF066-A458-4B33-8589-383948FD0CFB}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
ASXPConnect Plugin (HKLM-x32\...\{EC0FE36D-00CE-4D89-8859-7A630FB9EF3B}_is1) (Version: 1.0.7933.31437 - HiFi Technologies, Inc.)
Audio For VATSIM (HKLM-x32\...\{B0D70FE1-B891-41D0-ACE2-895F625BA382}) (Version: 1.7.21 - VATSIM)
Balíček ovladače systému Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Balíček ovladače systému Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Blitz (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\153f8ce0-b97a-575b-ba12-4ff8b1481894) (Version: 1.16.8 - Blitz, Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.82 - Piriform)
Discord (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
Elevated Installer (HKLM-x32\...\{C5D02F28-704C-40E4-A818-C1B5C0E3F4F3}) (Version: 7.10.0.0 - Garmin Ltd or its subsidiaries) Hidden
ESET Security (HKLM\...\{D8E84711-EDFC-4D4E-B579-95AEB40DAA4D}) (Version: 15.0.21.0 - ESET, spol. s r.o.)
EuroScope for VACC-CZ (HKLM-x32\...\{B380FB0A-B123-4327-812C-B6F215813B79}) (Version: 2.0.0 - VACC-CZ.org)
Excel (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\1fc5b090eab9aa41f8a2f5987367e6da) (Version: 1.0 - Excel)
Garmin Express (HKLM-x32\...\{198a85d6-0675-4d37-a0f4-17971dbec64b}) (Version: 7.10.0.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{6A8099B2-D410-4BB4-B746-9813020737B9}) (Version: 7.10.0.0 - Garmin Ltd or its subsidiaries) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 96.0.4664.93 - Google LLC)
IXEG 737 Classic (HKLM\...\IXEG 737 Classic 1.33) (Version: 1.33 - X-Aviation)
Java 8 Update 311 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180311F0}) (Version: 8.0.3110.11 - Oracle Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{88EC8D4A-54AB-4A7F-BDE9-4AD906D9D11F}) (Version: 3.2.2110.14001 - Microsoft Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D18FE9D2-2F54-4C68-A2DE-A59D4A80A9BC}) (Version: 3.1.2109.29003 - Microsoft Corporation)
League of Legends (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2021.13.2906 - Logitech)
LX Styler 8.1.0 (HKLM\...\LX Styler_is1) (Version: 8.1.0 - LXNAV)
LXSim 8.0.3 (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\LXSim_is1) (Version: 8.0.3 - LXNAV d.o.o.)
Microsoft 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.14701.20226 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 96.0.1054.53 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 96.0.1054.53 - Microsoft Corporation)
Microsoft Flight Simulator SimConnect Client v10.0.61259.0 (HKLM-x32\...\{D61CA184-3F6D-4A50-B2CC-7A18447D6A8D}) (Version: 10.0.61259.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\OneDriveSetup.exe) (Version: 21.230.1107.0004 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\Teams) (Version: 1.4.00.4167 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{E876418F-BE59-4D8C-B9A5-74B056B676FA}) (Version: 2.93.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29913 (HKLM-x32\...\{03d1453c-7d5c-479c-afea-8482f406e036}) (Version: 14.28.29913.0 - Microsoft Corporation)
Navigraph FMS Data Manager 1.8.9.0421 (HKLM-x32\...\{7E4D5716-374A-4DB6-90CF-D2AEB67362CE}_is1) (Version: 1.8.9.0421 - Navigraph)
NVIDIA FrameView SDK 1.2.4999.30397803 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.4999.30397803 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.24.0.123 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.24.0.123 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.94 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 497.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 497.09 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14701.20226 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14701.20210 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14701.20226 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
Orbx Central 4.1.40 (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\7cf15176-b7c3-5704-8319-ddca84b92c9a) (Version: 4.1.40 - Orbx Simulation Systems Pty Ltd)
Outlook (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\6b0f23e57a39ebfbf2814acb1a24293d) (Version: 1.0 - Outlook)
PowerPoint (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\319814cb56b667dff88f54e08be8f51f) (Version: 1.0 - PowerPoint)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8858.1 - Realtek Semiconductor Corp.)
SkySight (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\1d13657959b7edbaa97dd5cb4f5af4a3) (Version: 1.0 - SkySight)
smartCARS - DLH Virtual (en-US) (HKLM\...\{1F2D0F9E-3FF0-8A90-A0D5-574E65F10AD5_en-US}) (Version: 2.1.34.0 - TFDi Design)
Software602 Form Filler (HKLM-x32\...\{9210AEE3-6ECB-4271-A125-1039E94A6A51}) (Version: 4.75 - Software602 a.s.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Streamlabs OBS 1.0.7 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 1.0.7 - General Workings, Inc.)
TeamSpeak 3 Client (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\TeamSpeak 3 Client) (Version: 3.5.2 - TeamSpeak Systems GmbH)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.3.2682 - TeamViewer)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
vroute.info (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\5ff0fb0cf6679301) (Version: 2.1.1.16 - vroute)
WhatsApp (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\WhatsApp) (Version: 2.2146.9 - WhatsApp)
WinRAR 5.80 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.80.0 - win.rar GmbH)
Word (HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\1b837d0bf93d01407352736c91b7bf50) (Version: 1.0 - Word)
Packages:
=========
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-02-21] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-02-21] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.11.12030.0_x64__8wekyb3d8bbwe [2021-12-10] (Microsoft Studios) [MS Ad]
Microsoft To Do -> C:\Program Files\WindowsApps\Microsoft.Todos_2.59.43372.0_x64__8wekyb3d8bbwe [2021-12-14] (Microsoft Corporation) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-12-05] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.26.249.0_x64__dt26b99r8h8gj [2021-06-15] (Realtek Semiconductor Corp)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0 [2021-12-10] (Spotify AB) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3465363423-735592264-602919839-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Admin\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20289.5\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2021-12-09] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2021-12-09] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_422d4a8d182d8330\nvshext.dll [2021-11-27] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2021-12-09] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [msacm.lhacm] => C:\Windows\SysWOW64\lhacm.acm [34064 2020-04-03] (Microsoft Corporation) [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\Admin\Desktop\CoTaCo2-aat.lnk -> C:\Users\Admin\Documents\CoTaCo2 pro condor\CoTaCo2\CoTaCo2-aat.bat ()
Shortcut: C:\Users\Admin\Desktop\CoTaCo2.lnk -> C:\Users\Admin\Documents\CoTaCo2 pro condor\CoTaCo2\CoTaCo2.bat ()
ShortcutWithArgument: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Excel.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=leffmjdabcgaflkikcefahmlgpodjkdm --app-url=hxxps://excel.office.com/
ShortcutWithArgument: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=bjhmmnoficofgoiacjaajpkfndojknpb --app-url=hxxps://outlook.com/
ShortcutWithArgument: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=opfacbhaojodjaojgocnibmklknchehf --app-url=hxxps://powerpoint.office.com/
ShortcutWithArgument: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkySight.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=pamakffedijpmmlnfbnockomoafhiiec
ShortcutWithArgument: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Word.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=hikhggiobiflkdfdgdajcfklmcibbopi --app-url=hxxps://word.office.com/
==================== Loaded Modules (Whitelisted) =============
2020-11-27 03:38 - 2020-11-27 03:38 - 000961536 _____ () [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\CefSharp.BrowserSubprocess.Core.dll
2020-11-27 03:38 - 2020-11-27 03:38 - 001446400 _____ () [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\CefSharp.Core.dll
2021-11-15 15:50 - 2021-11-15 15:50 - 000073216 _____ () [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\FixBootSector.dll
2017-05-08 09:35 - 2017-05-08 09:35 - 000325632 _____ () [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\GpsImgWrapper.dll
2021-12-09 16:55 - 2021-12-09 16:54 - 000634880 _____ () [File not signed] \\?\C:\Program Files\LGHUB\resources\app.asar.unpacked\node_modules\keytar\build\Release\keytar.node
2021-11-24 08:29 - 2021-12-03 07:29 - 000415232 _____ () [File not signed] \\?\C:\Users\Admin\AppData\Local\Programs\Blitz\resources\app.asar.unpacked\node_modules\leveldown\prebuilds\win32-ia32\node.napi.node
2020-11-18 09:14 - 2020-11-18 09:14 - 117340672 _____ () [File not signed] C:\Program Files (x86)\Garmin\Express\libcef.dll
2020-11-18 07:40 - 2020-11-18 07:40 - 000323072 _____ () [File not signed] C:\Program Files (x86)\Garmin\Express\libegl.dll
2020-11-18 07:40 - 2020-11-18 07:40 - 005441536 _____ () [File not signed] C:\Program Files (x86)\Garmin\Express\libglesv2.dll
2021-11-24 08:29 - 2021-12-03 07:29 - 002566656 _____ () [File not signed] C:\Users\Admin\AppData\Local\Programs\Blitz\ffmpeg.dll
2021-11-24 08:29 - 2021-12-03 07:29 - 000357888 _____ () [File not signed] C:\Users\Admin\AppData\Local\Programs\Blitz\libegl.dll
2021-11-24 08:29 - 2021-12-03 07:29 - 006827520 _____ () [File not signed] C:\Users\Admin\AppData\Local\Programs\Blitz\libglesv2.dll
2021-11-15 15:50 - 2021-11-15 15:50 - 001976832 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\Garmin\Express\XercesLib.dll
2021-11-15 15:57 - 2021-11-15 15:57 - 000234496 _____ (Dynastream Innovations Inc.) [File not signed] C:\Program Files (x86)\Garmin\Express\ANT_WrappedLib.dll
2021-11-15 15:50 - 2021-11-15 15:50 - 002711552 _____ (Garmin International) [File not signed] [File is in use] C:\Program Files (x86)\Garmin\Express\legacyio.dll
2017-05-08 09:35 - 2017-05-08 09:35 - 000343552 _____ (Garmin International, Inc.) [File not signed] C:\Program Files (x86)\Garmin\Express\IMG_GPSMAP.dll
2021-11-15 15:50 - 2021-11-15 15:50 - 000425472 _____ (Garmin) [File not signed] C:\Program Files (x86)\Garmin\Express\XMLdll.dll
2021-11-15 15:53 - 2021-11-15 15:53 - 000090112 _____ (Silicon Laboratories, Inc.) [File not signed] C:\Program Files (x86)\Garmin\Express\DSI_SiUSBXp_3_1.DLL
2020-11-18 07:39 - 2020-11-18 07:39 - 000843264 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Garmin\Express\chrome_elf.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\steam_api64.dll:{3629C49D-42C6-4CD8-B2A9-606E13C1E6EA} [28016642]
AlternateDataStreams: C:\steam_api64.dll:{BCA835E9-27DD-49D4-9E47-4CD16F9DC264} [28]
AlternateDataStreams: C:\Users\Admin\Data aplikací:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Admin\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_311\bin\ssv.dll [2021-10-24] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_311\bin\jp2ssv.dll [2021-10-24] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-30] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-19 05:49 - 2020-04-07 22:15 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3465363423-735592264-602919839-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Admin\Desktop\bajk.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run32: => "Navigraph FMS Data Manager"
HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-3465363423-735592264-602919839-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{32CE7D58-650E-4024-9C67-E713F7FF29F4}] => (Allow) LPort=19285
FirewallRules: [{931F4056-33A0-4E7A-B647-03368B8965EB}] => (Allow) LPort=19284
FirewallRules: [{F480C42E-7BB8-4FCA-B5D1-7B1366351813}] => (Allow) LPort=445
FirewallRules: [{E9CBE1A8-D4B7-4E7B-A3F8-55D2CA7F437B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{4E3E726A-7D1D-4F74-970A-D9B2387021CF}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{1EE10599-560F-488C-BD74-320CCC6E3BED}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{4BB883DD-025C-440E-9262-6CFE8366DAED}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{9F450028-78F5-4B92-8690-87C1CE805564}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{A8D88D3A-CFC0-4097-80C4-F4F03BD89850}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{AA699F53-CE1B-4EB4-BB9D-F34FD6734BE0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CFADA6A4-91E6-44CA-ACF1-6D9BBA62EB97}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4A4447AA-E3E9-4860-813C-CB814CDF830F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{21EE3FA4-372C-4E4A-A23A-1F36EA99B822}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{930809D5-8603-484B-B325-14FAFA98A223}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe (Software602 a.s. -> ) [File not signed]
FirewallRules: [{ADE77096-91C6-42C9-BB73-32D86910CB28}] => (Allow) C:\Program Files (x86)\Common Files\soft602\langserv.exe (Software602 a.s. -> ) [File not signed]
FirewallRules: [{EA951F95-5F17-46ED-B070-DA9A1F316250}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG CORPORATION -> PUBG Corporation)
FirewallRules: [{D319A696-4330-4A69-8187-500C350D3669}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG CORPORATION -> PUBG Corporation)
FirewallRules: [{ED46BE4C-703D-44CB-B3AC-860D92F6C68A}] => (Allow) C:\Program Files (x86)\Navigraph\FMS Data Manager\NGFMSAgent.exe (Navigraph Kommanditbolag -> Navigraph)
FirewallRules: [{888F0D03-30DC-4540-BCA2-A92CADD9ABB2}] => (Allow) C:\Program Files (x86)\Navigraph\FMS Data Manager\NGFMSManager.exe (Navigraph Kommanditbolag -> Navigraph)
FirewallRules: [{4D44A989-7A15-4FF2-BC0F-A1699E7CD17B}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2E3AF57B-BE1C-42C8-A6BF-4494D862788B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{123289BB-91AE-44F4-B180-B12A0BF21BCB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{1CFFA7F1-3C32-4B79-B061-BCC80ABC3201}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{3D2E236E-1DC4-403D-8759-E4EB5A02461F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{883AD308-7B13-45F2-85C2-0C516863C287}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{3DA7B1CC-BB27-4987-91FD-B7493745AC3F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A462123B-4A96-46E9-8E57-D17A2F054C39}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{028131A8-5C43-4AC5-B383-F5D39C9F271B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C1478BC4-A453-4133-988F-1AC3D23C431C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{498865AD-7766-4F87-8BA2-F36E8F863F69}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{12BFA3F2-1870-40C4-9EFE-06F0DCA05D0D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BBFF311D-5B5E-44B5-9345-628E1952DF63}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3DACE494-6D1A-491C-86E3-134F4A29FF73}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4A41BC3C-B622-43BA-89C7-2FB51B53F1EB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B8058DF4-B590-40AF-BA4D-27BFBBC53B24}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{00F747EC-CF82-4BDE-8BD3-2CBD055AA686}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5028E092-1106-4A95-AC85-54C2A9DB8BF5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BD9F6904-2D19-4053-8372-556FAC2B1E74}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\96.0.1054.53\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
05-12-2021 19:22:39 Naplánovaný kontrolní bod
13-12-2021 17:13:41 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
Name: GuangZhou FiiO Electronics Co.,Ltd
Description: GuangZhou FiiO Electronics Co.,Ltd
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: ========================
Application errors:
==================
Error: (12/14/2021 01:42:33 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0
Error: (12/13/2021 04:27:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ucldr_battlegrounds_gl.exe, verze: 2021.6.29.973, časové razítko: 0x60dac8ea
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.1288, časové razítko: 0xa280d1d6
Kód výjimky: 0xc0000374
Posun chyby: 0x00000000000ff199
ID chybujícího procesu: 0x2634
Čas spuštění chybující aplikace: 0x01d7f035ad1d3e2f
Cesta k chybující aplikaci: C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 1cf1b8ab-f77d-4ce6-a132-6ca34a0bc8d8
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/11/2021 09:59:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ucldr_battlegrounds_gl.exe, verze: 2021.6.29.973, časové razítko: 0x60dac8ea
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.1288, časové razítko: 0xa280d1d6
Kód výjimky: 0xc0000374
Posun chyby: 0x00000000000ff199
ID chybujícího procesu: 0x4d14
Čas spuštění chybující aplikace: 0x01d7eed1aa369742
Cesta k chybující aplikaci: C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: c12c7414-f0a6-4cf1-b5fe-a0517f9d2511
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/11/2021 03:14:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ucldr_battlegrounds_gl.exe, verze: 2021.6.29.973, časové razítko: 0x60dac8ea
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.1288, časové razítko: 0xa280d1d6
Kód výjimky: 0xc0000374
Posun chyby: 0x00000000000ff199
ID chybujícího procesu: 0x466c
Čas spuštění chybující aplikace: 0x01d7ee9913bdce8f
Cesta k chybující aplikaci: C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: ec0e01bb-a90c-4826-b957-3ad239fd054d
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/10/2021 07:27:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ucldr_battlegrounds_gl.exe, verze: 2021.6.29.973, časové razítko: 0x60dac8ea
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.1288, časové razítko: 0xa280d1d6
Kód výjimky: 0xc0000374
Posun chyby: 0x00000000000ff199
ID chybujícího procesu: 0x21d8
Čas spuštění chybující aplikace: 0x01d7edf34828f6c3
Cesta k chybující aplikaci: C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 6e2c992f-f72a-4b2f-87ff-dd6a2e3e8a17
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/05/2021 05:17:48 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: DEKSTOP-MARTIN)
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů C:\WINDOWS\system32\sysmain.dll (kód chyby Win32 126).
Error: (11/30/2021 01:58:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ucldr_battlegrounds_gl.exe, verze: 2021.6.29.973, časové razítko: 0x60dac8ea
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.1288, časové razítko: 0xa280d1d6
Kód výjimky: 0xc0000374
Posun chyby: 0x00000000000ff199
ID chybujícího procesu: 0x49d4
Čas spuštění chybující aplikace: 0x01d7e5e9b43bd106
Cesta k chybující aplikaci: C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 4da1e881-4e10-430b-893b-b4f9fe834ec4
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (11/29/2021 02:15:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MsiExec.exe, verze: 5.0.19041.1, časové razítko: 0x25d5450e
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.1288, časové razítko: 0x027db076
Kód výjimky: 0xc0000005
Posun chyby: 0x000447f0
ID chybujícího procesu: 0x2a80
Čas spuštění chybující aplikace: 0x01d7e52323d55521
Cesta k chybující aplikaci: C:\Windows\syswow64\MsiExec.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: fc56abd5-574f-4790-a886-86a4d332618c
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (12/13/2021 11:08:40 PM) (Source: DCOM) (EventID: 10010) (User: DEKSTOP-MARTIN)
Description: Server {38E441FB-3D16-422F-8750-B2DACEC5CEFC} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/12/2021 11:19:32 PM) (Source: DCOM) (EventID: 10010) (User: DEKSTOP-MARTIN)
Description: Server {38E441FB-3D16-422F-8750-B2DACEC5CEFC} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/12/2021 03:13:50 PM) (Source: DCOM) (EventID: 10010) (User: DEKSTOP-MARTIN)
Description: Server {38E441FB-3D16-422F-8750-B2DACEC5CEFC} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/10/2021 11:39:32 PM) (Source: DCOM) (EventID: 10010) (User: DEKSTOP-MARTIN)
Description: Server {38E441FB-3D16-422F-8750-B2DACEC5CEFC} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/10/2021 03:00:30 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9WZDNCRFJ364-MICROSOFT.SKYPEAPP.
Error: (12/09/2021 04:53:59 PM) (Source: DCOM) (EventID: 10010) (User: DEKSTOP-MARTIN)
Description: Server {38E441FB-3D16-422F-8750-B2DACEC5CEFC} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/08/2021 11:18:16 PM) (Source: DCOM) (EventID: 10010) (User: DEKSTOP-MARTIN)
Description: Server {38E441FB-3D16-422F-8750-B2DACEC5CEFC} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/08/2021 07:23:36 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
CodeIntegrity:
===============
Date: 2021-12-14 18:44:48
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 2.A0 08/24/2019
Motherboard: Micro-Star International Co., Ltd. Z370-A PRO (MS-7B48)
Processor: Intel(R) Core(TM) i7-9700F CPU @ 3.00GHz
Percentage of memory in use: 17%
Total physical RAM: 32710.23 MB
Available physical RAM: 27043.75 MB
Total Virtual: 37574.23 MB
Available Virtual: 30180.56 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:465.13 GB) (Free:49.43 GB) NTFS
\\?\Volume{9841689a-c0e7-4d75-bd78-1744326b21c6}\ (Obnovení) (Fixed) (Total:0.52 GB) (Free:0.1 GB) NTFS
\\?\Volume{eface461-89d4-4dea-878d-548c7daf0605}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
Re: Prosím o preventivní kontrolu. Děkuji
ahoj,
len nejake drobnosti, mozes vycistit ADWCleanerom
len nejake drobnosti, mozes vycistit ADWCleanerom
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Prosím o preventivní kontrolu. Děkuji
Ahoj,
děkuji. Přeji pěkné Vánoce.
Martin.
děkuji. Přeji pěkné Vánoce.
Martin.
Re: Prosím o preventivní kontrolu. Děkuji
za malo 
aj Tebe prajem pekne sviatky
aj Tebe prajem pekne sviatky
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Přispějete na provoz fóra?