Dobrý deň prajem.
Prosím o preventívnu kontrolu logu, ďakujem.
EDIT: nový scan po zapnuti a kontrole win defenderom a po reštarte PC
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-12-2021
Ran by Petrík (administrator) on LAPTOP-6PVPM7QG (LENOVO 82B1) (02-01-2022 14:25:08)
Running from C:\Users\Petrík\OneDrive\Desktop
Loaded Profiles: Petrík
Platform: Microsoft Windows 10 Home Version 21H2 19044.1415 (X64) Language: Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0359763.inf_amd64_cbe903b159d3b969\B359805\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0359763.inf_amd64_cbe903b159d3b969\B359805\atiesrxx.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dassault Systemes SolidWorks Corp. -> Dassault Systèmes) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize Boost\SWVisualize.BoostService.exe
(Dassault Systemes SolidWorks Corp. -> Dassault Systèmes) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize\SWVisualize.Queue.Server.exe
(Dolby Laboratories, Inc. -> ) C:\ProgramData\Dolby\DAX3\RADARHOST\DSRHost.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\DAX3_S~1.INF\DAX3API.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_fe9531bca29258f3\DAX3API.exe
(Flexera Software LLC -> Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Guillemot Corporation -> Guillemot Corporation) C:\Program Files (x86)\Thrustmaster\TARGET\TmService.exe
(HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\Lenovo.Vantage.AddinHost.exe <5>
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\Lenovo.Vantage.AddinHost.x86.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\LenovoVantageService.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe <2>
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe <2>
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_b9fd1528982e300f\LenovoUtilityService.exe
(LENOVO INC) C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.2.15.0_x64__5grkq8ppsgwt4\LaunchUtility\utility.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.60.12001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.60.12001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdlogsr.exe
(Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®) C:\Program Files\Thrustmaster\FFB Racing wheel\drivers\amd64\tmInstall.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_4831581a4e5dfca0\Display.NvContainer\NVDisplay.Container.exe <2>
(Protected Antivirus Limited -> TotalAV) C:\Program Files (x86)\TotalAV\SecurityService.exe <2>
(Protected Antivirus Limited -> TotalAV) C:\Program Files (x86)\TotalAV\TotalAV.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(Trace Software International -> ) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\server\EwServer.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1138976 2020-08-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKU\S-1-5-21-4249308867-3700432313-2213772059-1001\...\Run: [{E42A4987-1F86-4E8F-A708-60CAAC1E3DA7}] => "C:\Users\Petrík\Downloads\InputMapper1.7.7452.13622.exe" /cmdloc "HKCU\Software\DSDCS AiTemp\{E42A4987-1F86-4E8F-A708-60CAAC1E3DA7}" (No File) <==== ATTENTION
HKU\S-1-5-21-4249308867-3700432313-2213772059-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33337824 2021-09-22] (Epic Games Inc. -> Epic Games, Inc.)
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [239704 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\LIDIL hpzllw71: C:\Windows\system32\hpzllw71.dll [62552 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\pdfcmon: C:\Windows\system32\pdfcmon.dll [116224 2021-01-08] (pdfforge GmbH) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\96.0.4664.110\Installer\chrmstp.exe [2021-12-15] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS 2018 Fast Start.lnk [2021-03-04]
ShortcutTarget: SOLIDWORKS 2018 Fast Start.lnk -> C:\Windows\Installer\{837A0B0D-F508-4088-8B05-606477DEB905}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe (Flexera Software LLC) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS Background Downloader.lnk [2021-01-08]
ShortcutTarget: SOLIDWORKS Background Downloader.lnk -> C:\Program Files (x86)\Common Files\SOLIDWORKS Installation Manager\BackgroundDownloading\sldBgDwld.exe (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corp.)
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
HKU\S-1-5-21-4249308867-3700432313-2213772059-1001\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0732D358-C106-430E-A664-FD110078594E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-11-16] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {09D9BD81-F5D9-4712-8752-0145BBDBBC60} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\ScheduleEventAction.exe [26408 2021-12-14] (Lenovo -> Lenovo Group Ltd.)
Task: {194C9664-BBF9-4C00-8B6B-E9BBEE564F17} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\63bfc5a7-9437-4300-9c91-65463ca98f75 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.)
Task: {1E39BEED-A794-42BB-9FF0-7C5DA5773CA8} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\ScheduleEventAction.exe [26408 2021-12-14] (Lenovo -> Lenovo Group Ltd.)
Task: {200FF5C7-465B-4CA7-99E5-66CE8C79DF21} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [63728 2021-11-07] (Lenovo -> Lenovo Group Ltd.)
Task: {24C37258-ADF1-4AB9-A872-E388E42B6E73} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\b756b230-30e4-407f-a941-c8d3b59d1417 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.)
Task: {2F1D1DFE-1EB6-40AF-B62F-E98F7E64526F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-05] (Google LLC -> Google LLC)
Task: {38D4FDA7-9FCD-4C68-96CF-83B9CE511717} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22797704 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {44B3AD4B-C992-4320-BA56-55CEAADC5B9A} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\33b031e1-1d5e-469a-a5fe-bfc8dc62e562 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.)
Task: {46FEF08F-E58C-44D9-BF41-74BC5469265F} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\0ebbbfe8-40c2-41d0-9e68-58c23e2c2d1a => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.)
Task: {48148A4E-D80D-48FE-BFEE-D2AD1F6B1A96} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-11-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {4D19305F-3370-455D-8BA0-198ABA4E8AEF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-01-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4F2C0FD8-26DA-4AF5-941C-EB649807C4BF} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138584 2022-01-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {7709B39B-9E76-48CB-8A26-50A111E61F9B} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-11-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {77E371B8-BF40-4CCE-B91C-2EECF0E83C26} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-11-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {817B9EFC-2153-4167-A10E-FF696D3D5F9D} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-11-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {8CEF6E7F-349B-463F-A2F9-015421209E77} - System32\Tasks\LenovoUtility Startup => C:\Windows\explorer.exe lenovo-utility://
Task: {926A6F2B-AD77-44F6-BC6C-0DC17019C315} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-01-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {96397FEA-935C-4547-893C-D8695FDD25A1} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {9BE1A733-CDE1-4EFE-A927-1063CBBED141} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1650384 2021-11-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {9EEC13F8-F9AF-4DBF-8FE4-3DB7E65931B8} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe VantageTelemetryAddinTask (No File)
Task: {A1E11B14-7386-42BC-8BAD-68247DB4D235} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647376 2021-11-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {A38BEF9E-59B0-4642-9092-45DF560F67E7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8388528 2022-01-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {C83B4C8F-C355-4ACF-9F9C-F2DEB9EB8798} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [145480 2021-09-09] (Lenovo -> Lenovo Group Ltd.)
Task: {CD8179CB-277D-412E-BC83-397EA40B6579} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [904904 2021-11-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {D4680249-5AEE-4F51-8253-5E7AE8E6265E} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138584 2022-01-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {D76E5890-4B7C-4260-BF78-7BED9D99EFA1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-05] (Google LLC -> Google LLC)
Task: {D9331994-84EA-4CFA-A70D-21949E63D09D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-01-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DBDAEC51-587B-4373-8980-54E6CE437A53} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22797704 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {E7CC9B1B-FCD9-473B-9253-6092E83A39E0} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\ScheduleEventAction.exe [26408 2021-12-14] (Lenovo -> Lenovo Group Ltd.)
Task: {EB4B2C10-78AB-4159-89A1-1028B650C0EB} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339464 2021-11-24] (Nvidia Corporation -> NVIDIA Corporation)
Task: {EB5686B3-C49F-42A6-9CE5-6B23BD026053} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8388528 2022-01-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {EBBE0DD6-AC1F-4098-BC8F-35C5E1A31F47} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {F0847E55-1E9C-4AB8-8169-0BEF0FB5E60B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2022-01-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F935BE03-C7CF-4D57-A827-DEB439FB4CAE} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {FD65A7FC-FBB6-43DA-B926-E44AB3F8CF0D} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\aedf9538-c3d9-4456-8642-5c04b3b19953 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.240.1 31.3.32.1
Tcpip\..\Interfaces\{23474985-ca2a-4306-9abd-3410977f9b6e}: [DhcpNameServer] 192.168.240.1 31.3.32.1
Tcpip\..\Interfaces\{be4e62a3-9935-4e0b-a745-835849fe15f0}: [DhcpNameServer] 192.168.240.1 31.3.32.1
Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge Profile: C:\Users\Petrík\AppData\Local\Microsoft\Edge\User Data\Default [2022-01-02]
Edge HomePage: Default -> hxxp://www.google.com/
Edge StartupUrls: Default -> "hxxps://www.google.com/"
FireFox:
========
FF Plugin: 3ds.com/ComposerPlayerWebPlugin_x86_64 -> C:\PROGRA~1\SOLIDW~1\SOLIDW~4\Bin\NPCOMP~1.DLL [2018-07-31] (Dassault Systemes SE -> Dassault Systemes)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: 3ds.com/ComposerPlayerWebPlugin -> C:\PROGRA~1\SOLIDW~1\SOLIDW~4\Bin\x86\NPCOMP~1.DLL [2018-07-31] (Dassault Systemes SE -> Dassault Systemes)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\Petrík\AppData\Local\Google\Chrome\User Data\Default [2022-01-02]
CHR Notifications: Default -> hxxps://noizz.aktuality.sk
CHR HomePage: Default -> hxxp://www.google.sk/
CHR StartupUrls: Default -> "hxxps://www.google.sk/"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentácie) - C:\Users\Petrík\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-01-05]
CHR Extension: (Dokumenty) - C:\Users\Petrík\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-01-05]
CHR Extension: (Disk Google) - C:\Users\Petrík\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-05]
CHR Extension: (YouTube) - C:\Users\Petrík\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-01-05]
CHR Extension: (Dropbox for Gmail) - C:\Users\Petrík\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpdmhfocilnekecfjgimjdeckachfbec [2021-08-31]
CHR Extension: (Tabuľky) - C:\Users\Petrík\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-01-05]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Petrík\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-02]
CHR Extension: (Canva) - C:\Users\Petrík\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbcfmcoibkecmionmehabndbljdleekf [2021-12-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Petrík\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\Petrík\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-05]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8906088 2021-09-02] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12129128 2021-12-10] (Microsoft Corporation -> Microsoft Corporation)
R2 DolbyDAXAPI; C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_fe9531bca29258f3\DAX3API.exe [1928648 2020-05-19] (Dolby Laboratories, Inc. -> Dolby Laboratories)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2020-12-03] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [926176 2021-03-16] (Epic Games Inc. -> Epic Games, Inc.)
R2 ewserver; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Electrical\server\EwServer.exe [191664 2018-07-31] (Trace Software International -> )
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [390400 2020-05-21] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [288360 2021-06-25] (HP Inc. -> HP Inc.)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [83200 2021-11-07] (Lenovo -> Lenovo Group Ltd.)
S3 impi_hydra; C:\Program Files\Common Files\SolidWorks Shared\Simulation Worker Agent\hydra_service.exe [880296 2018-07-31] (Intel(R) Software Development Products -> Intel Corporation)
R2 LenovoFnAndFunctionKeys; C:\WINDOWS\System32\DriverStore\FileRepository\lenovofnandfunctionkeys.inf_amd64_b9fd1528982e300f\LenovoUtilityService.exe [539128 2021-08-26] (Lenovo -> Lenovo(beijing) Limited)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.10.26.0\LenovoVantageService.exe [31016 2021-12-14] (Lenovo -> Lenovo Group Ltd.)
R2 MSSQL$TEW_SQLEXPRESS; C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe [372416 2015-04-20] (Microsoft Corporation -> Microsoft Corporation)
R2 SecurityService; C:\Program Files (x86)\TotalAV\SecurityService.exe [264032 2021-11-09] (Protected Antivirus Limited -> TotalAV) <==== ATTENTION
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2021-01-08] (SolidWorks) [File not signed]
S4 SQLAgent$TEW_SQLEXPRESS; C:\ProgramData\SOLIDWORKS Electrical\MSSQL12.TEW_SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [613056 2015-04-20] (Microsoft Corporation -> Microsoft Corporation)
R2 SWVisualize2018.BoostService; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize Boost\SWVisualize.BoostService.exe [59280 2018-07-31] (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes)
R2 SWVisualize2018.Queue.Server; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize\SWVisualize.Queue.Server.exe [24976 2018-07-31] (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes)
R2 tmInstall; C:\Program Files\Thrustmaster\FFB Racing wheel\drivers\amd64\tmInstall.EXE [140816 2021-08-27] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster®)
R2 TmWinService; C:\Program Files (x86)\Thrustmaster\TARGET\TmService.exe [316968 2018-07-18] (Guillemot Corporation -> Guillemot Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2022-01-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2022-01-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WirelessKB850NotificationService; C:\WINDOWS\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_4831581a4e5dfca0\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_4831581a4e5dfca0\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [208176 2020-12-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [197176 2020-12-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [46704 2020-12-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 FBNetFilter; C:\WINDOWS\System32\drivers\FBNetFlt.sys [43896 2020-02-11] (Microsoft Windows Hardware Compatibility Publisher -> Lenovo Group Ltd.)
S3 HidGuardian; C:\WINDOWS\System32\drivers\HidGuardian.sys [26736 2017-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer)
R2 inpoutx64; C:\WINDOWS\System32\Drivers\inpoutx64.sys [15008 2021-12-07] (Red Fox UK Limited -> Highresolution Enterprises [www.highrez.co.uk])
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S0 ProtectedELAM; C:\WINDOWS\System32\drivers\protected_elam.sys [17864 2021-11-09] (Microsoft Windows Early Launch Anti-malware Publisher -> TODO: <Company name>)
S4 RsFx0310; C:\WINDOWS\System32\DRIVERS\RsFx0310.sys [249024 2015-04-20] (Microsoft Corporation -> Microsoft Corporation)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
R3 TmBusEn; C:\WINDOWS\System32\drivers\TmBusEn.sys [30208 2011-01-26] (Guillemot Corporation -> Guillemot Corporation)
R3 TmBusEn; C:\Windows\SysWOW64\drivers\TmBusEn.sys [30208 2011-01-26] (Guillemot Corporation -> Guillemot Corporation)
S3 TmFilter; C:\WINDOWS\System32\drivers\TmFilter.sys [24576 2011-01-26] (Guillemot Corporation -> Guillemot Corporation)
S3 TmFilter; C:\Windows\SysWOW64\drivers\TmFilter.sys [24576 2011-01-26] (Guillemot Corporation -> Guillemot Corporation)
S3 tmhidusb; C:\WINDOWS\system32\DRIVERS\tmhidusb.sys [424464 2021-08-27] (Microsoft Windows Hardware Compatibility Publisher -> Thrustmaster)
S3 tmwbulk; C:\WINDOWS\System32\Drivers\tmwbulk.sys [381984 2021-03-24] (Microsoft Windows Hardware Compatibility Publisher -> © Guillemot R&D, 2021. All rights reserved.)
S3 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [69168 2019-04-04] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2022-01-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435432 2022-01-02] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86248 2022-01-02] (Microsoft Windows -> Microsoft Corporation)
R1 webshieldfilter; C:\WINDOWS\System32\drivers\webshieldfilter.sys [96264 2021-11-09] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) <==== ATTENTION
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-01-02 14:23 - 2021-11-09 17:51 - 000096264 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\webshieldfilter.sys
2022-01-02 13:36 - 2022-01-02 14:25 - 000000000 ____D C:\FRST
2022-01-02 13:07 - 2022-01-02 14:23 - 000001185 _____ C:\Users\Petrík\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TotalAV.lnk
2022-01-02 13:07 - 2020-12-09 18:37 - 000208176 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2022-01-02 13:07 - 2020-12-09 18:37 - 000197176 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2022-01-02 13:07 - 2020-12-09 18:37 - 000046704 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2022-01-02 13:03 - 2022-01-02 14:23 - 000000000 ____D C:\Program Files (x86)\TotalAV
2022-01-02 13:03 - 2022-01-02 13:03 - 000001075 _____ C:\Users\Public\Desktop\TotalAV.lnk
2022-01-02 13:03 - 2021-11-09 17:51 - 000017864 _____ (TODO: <Company name>) C:\WINDOWS\system32\Drivers\protected_elam.sys
2022-01-02 13:00 - 2022-01-02 13:00 - 037419616 _____ C:\Users\Petrík\Downloads\TotalAV.exe
2021-12-19 19:55 - 2021-12-19 19:55 - 000000000 ____D C:\WINDOWS\SystemTemp
2021-12-19 19:21 - 2021-12-19 19:21 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-12-19 19:21 - 2021-12-19 19:21 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-12-19 19:21 - 2021-12-19 19:21 - 000011979 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-12-19 19:18 - 2021-12-19 19:18 - 000000000 ___HD C:\$WinREAgent
2021-12-15 00:01 - 2021-12-15 00:01 - 000000000 ____D C:\Users\Petrík\AppData\Local\id Software
2021-12-07 13:42 - 2021-12-07 13:42 - 000015008 _____ (Highresolution Enterprises [www.highrez.co.uk]) C:\WINDOWS\system32\Drivers\inpoutx64.sys
2021-12-07 13:41 - 2022-01-02 13:02 - 000000000 ____D C:\Users\Petrík\AppData\Roaming\ryzen-controller
2021-12-07 13:41 - 2021-12-07 13:41 - 000002133 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ryzen Controller.lnk
2021-12-07 13:41 - 2021-12-07 13:41 - 000002121 _____ C:\Users\Public\Desktop\Ryzen Controller.lnk
2021-12-07 13:41 - 2021-12-07 13:41 - 000000000 ____D C:\Users\Petrík\AppData\Local\ryzen-controller-updater
2021-12-07 13:40 - 2021-12-07 13:41 - 000000000 ____D C:\Program Files\Ryzen Controller
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-01-02 14:25 - 2021-01-05 02:50 - 000000000 ____D C:\Program Files (x86)\Google
2022-01-02 14:23 - 2021-03-02 17:33 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-01-02 14:23 - 2021-03-02 17:28 - 000008192 ___SH C:\DumpStack.log.tmp
2022-01-02 14:23 - 2020-09-04 19:49 - 000000000 ____D C:\ProgramData\NVIDIA
2022-01-02 14:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-01-02 14:23 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-01-02 14:23 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-01-02 14:12 - 2021-03-02 17:28 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-01-02 14:06 - 2019-10-17 05:07 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-01-02 13:56 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-01-02 13:33 - 2021-01-04 14:18 - 000000000 ____D C:\Users\Petrík\AppData\Local\CrashDumps
2022-01-02 13:31 - 2020-09-04 19:41 - 000000000 ____D C:\Program Files\Microsoft Office
2022-01-02 13:09 - 2021-03-02 17:31 - 001188728 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-01-02 13:09 - 2021-01-04 17:49 - 000164198 _____ C:\WINDOWS\system32\perfh01B.dat
2022-01-02 13:09 - 2021-01-04 17:49 - 000057214 _____ C:\WINDOWS\system32\perfc01B.dat
2022-01-02 13:09 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-01-02 13:03 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-01-02 01:21 - 2021-01-05 19:34 - 000000000 ____D C:\Program Files (x86)\Steam
2021-12-30 20:36 - 2021-10-19 22:14 - 000030600 _____ C:\WINDOWS\storelibdebug.txt
2021-12-28 18:42 - 2021-01-04 12:31 - 000000000 ____D C:\WINDOWS\TempInst
2021-12-28 17:22 - 2021-02-19 19:36 - 000000000 ____D C:\Users\Petrík\AppData\Roaming\discord
2021-12-28 16:38 - 2021-02-19 19:36 - 000000000 ____D C:\Users\Petrík\AppData\Local\Discord
2021-12-26 18:24 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-12-26 18:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-12-23 14:16 - 2021-01-10 12:35 - 000007562 _____ C:\WINDOWS\system32\InstallUtil.InstallLog
2021-12-22 00:38 - 2021-01-04 21:42 - 000000000 ____D C:\Users\Petrík\AppData\Local\D3DSCache
2021-12-19 19:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-12-19 19:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-12-19 19:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-12-19 19:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-12-19 19:23 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-12-19 19:17 - 2021-01-04 12:31 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-12-19 19:16 - 2021-01-04 12:31 - 137938848 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-12-19 13:21 - 2021-01-09 17:51 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-12-15 17:14 - 2021-01-05 02:50 - 000002270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-12-15 17:14 - 2021-01-05 02:50 - 000002229 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-12-15 16:53 - 2021-11-20 21:22 - 000116200 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2021-12-15 16:53 - 2021-01-05 16:01 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2021-12-15 16:53 - 2021-01-05 01:39 - 002225640 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2021-12-15 16:53 - 2021-01-05 01:39 - 000333288 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2021-12-15 16:53 - 2021-01-05 01:39 - 000217536 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2021-12-15 16:53 - 2021-01-05 01:39 - 000197048 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2021-12-15 16:53 - 2021-01-05 01:39 - 000062952 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe
2021-12-13 17:33 - 2021-09-25 22:22 - 000000000 ____D C:\Temp
2021-12-13 17:33 - 2021-01-08 10:27 - 000000000 ____D C:\ProgramData\Simpoe
2021-12-13 17:31 - 2021-01-08 12:59 - 000000000 ____D C:\Users\Petrík\AppData\Local\TempSWBackupDirectory
2021-12-12 20:19 - 2021-03-02 17:33 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4249308867-3700432313-2213772059-1001
2021-12-12 20:19 - 2021-03-02 16:47 - 000002385 _____ C:\Users\Petrík\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-12-10 22:06 - 2021-09-02 21:03 - 000000000 ____D C:\Users\Petrík\AppData\Local\Ubisoft Game Launcher
2021-12-08 22:15 - 2021-03-02 17:33 - 000003576 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-12-08 22:15 - 2021-03-02 17:33 - 000003452 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-12-08 18:07 - 2021-01-04 13:10 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
==================== Files in the root of some directories ========
2021-01-26 20:15 - 2021-07-24 20:27 - 000000000 _____ () C:\Users\Petrík\AppData\Local\Temptable.xml
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-12-2021
Ran by Petrík (02-01-2022 14:25:59)
Running from C:\Users\Petrík\OneDrive\Desktop
Microsoft Windows 10 Home Version 21H2 19044.1415 (X64) (2021-03-02 16:33:29)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-4249308867-3700432313-2213772059-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4249308867-3700432313-2213772059-503 - Limited - Disabled)
Guest (S-1-5-21-4249308867-3700432313-2213772059-501 - Limited - Disabled)
Petrík (S-1-5-21-4249308867-3700432313-2213772059-1001 - Administrator - Enabled) => C:\Users\Petrík
WDAGUtilityAccount (S-1-5-21-4249308867-3700432313-2213772059-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Total AV (Enabled - Up to date) {0567E33F-93C9-11B5-891D-90A37AEB2766}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee VirusScan (Enabled - Up to date) {F682A51C-4EAD-6A3A-F460-B9C1D4A2DB09}
FW: McAfee Firewall (Enabled) {CEB92439-04C2-6B62-DF3F-10F42A719C72}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Discord (HKU\S-1-5-21-4249308867-3700432313-2213772059-1001\...\Discord) (Version: 0.0.310 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{A7BBC0A6-3DB0-41CC-BCED-DDFC5D4F3060}) (Version: 1.2.17.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{0B736177-814A-4ADE-81D1-66A0FDD55BB4}) (Version: 1.1.11.0 - Epic Games, Inc.)
FFB Racing Wheel drivers (HKLM-x32\...\{28B758EA-5C83-48B1-B352-C70F12C73F5A}) (Version: 3.TTRS.2021 - Thrustmaster)
GameInput Redistributable (HKLM-x32\...\{7E52156F-18FE-B953-BEA9-6BE6A77AFDFF}) (Version: 10.1.19041.3906 - Microsoft Corporation)
Ghost Recon Breakpoint (HKLM-x32\...\Uplay Install 11903) (Version: - Ubisoft)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 96.0.4664.110 - Google LLC)
KeyShot 7 64 bit (HKLM\...\KeyShot 7_64) (Version: 7.3 64 bit - Luxion ApS)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 3.10.26.0 - Lenovo Group Ltd.)
LIX Gaming Mouse (HKLM-x32\...\{4602F77F-B385-4755-8F4F-11188B9A7CB1}_is1) (Version: 1.1 - SPC GEAR)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Microsoft 365 - sk-sk (HKLM\...\O365HomePremRetail - sk-sk) (Version: 16.0.14701.20262 - Microsoft Corporation)
Microsoft 365 Apps for enterprise - en-us (HKLM\...\O365ProPlusRetail - en-us) (Version: 16.0.14701.20262 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 96.0.1054.62 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 96.0.1054.62 - Microsoft Corporation)
Microsoft ODBC Driver 11 for SQL Server (HKLM\...\{BF5ABBDB-D3AA-4BCB-8D10-FCD4A4BB7F93}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4249308867-3700432313-2213772059-1001\...\OneDriveSetup.exe) (Version: 21.230.1107.0004 - Microsoft Corporation)
Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (en-IN) (HKLM-x32\...\{3B06AC90-DE68-44A9-95EB-0A3C1AF1514F}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{6292D514-17A4-403F-98F9-E150F10C043D}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{13146756-9716-4843-84CA-053916D2FCF9}) (Version: 11.3.6538.0 - Microsoft Corporation)
Microsoft SQL Server 2014 (64-bit) (HKLM\...\Microsoft SQL Server SQLServer2014) (Version: - Microsoft Corporation)
Microsoft SQL Server 2014 Setup (English) (HKLM\...\{C7E2483C-10A4-41E3-A2F6-240186FE3E41}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{FF7DDA05-6EA7-4C01-B44A-3E57F8B9B97B}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{E876418F-BE59-4D8C-B9A5-74B056B676FA}) (Version: 2.93.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft VSS Writer for SQL Server 2014 (HKLM\...\{366CD715-2FF4-40B4-A8B4-A05E5D21A945}) (Version: 12.1.4100.1 - Microsoft Corporation)
NVIDIA FrameView SDK 1.2.4999.30397803 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.4999.30397803 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.24.0.123 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.24.0.123 - NVIDIA Corporation)
NVIDIA Grafický ovládač 496.76 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 496.76 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.38.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.94 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
NVIDIA USBC Driver 1.46.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.46.831.832 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14701.20262 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14701.20262 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
opentrack version opentrack-2.3.12 (HKLM-x32\...\{63F53541-A29E-4B53-825A-9B6F876A2BD6}_is1) (Version: opentrack-2.3.12 - opentrack)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 3.0.2 - pdfforge GmbH)
Ryzen Controller 2.5.4 (HKLM\...\8907e46f-2265-5ed5-98af-d6a560955949) (Version: 2.5.4 - Ryzen Controller Team)
Service Pack 1 for SQL Server 2014 (KB3058865) (64-bit) (HKLM\...\KB3058865) (Version: 12.1.4100.1 - Microsoft Corporation)
SOLIDWORKS 2018 SP04 (HKLM\...\{837A0B0D-F508-4088-8B05-606477DEB905}) (Version: 26.140.0075 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS 2018 SP04 (HKLM-x32\...\SolidWorks Installation Manager 20180-40400-1100-100) (Version: 26.4.0.75 - SolidWorks Corporation)
SOLIDWORKS CAM 2018 SP04 (HKLM\...\{C9043FEF-A6CE-4725-8A93-1488DF0335DF}) (Version: 26.40.0075 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS Composer 2018 SP04 (HKLM\...\{BA93FA95-96A6-42A5-A503-F78E769ABA1E}) (Version: 26.40.0075 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS eDrawings 2018 SP04 (HKLM\...\{81FBCA77-09F9-4AF3-909A-CB0BD9A81169}) (Version: 18.40.0036 - Dassault Systčmes SolidWorks Corp) Hidden
SOLIDWORKS Electrical 2018 SP04 (HKLM\...\{F5280967-D8E8-4386-B4E0-62937CFE1970}) (Version: 26.40.0075 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS Explorer 2018 SP04 (HKLM\...\{6792CDBC-DB8C-4CA4-AC71-19F3BAA5C3B7}) (Version: 26.40.0075 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS Inspection 2018 SP04 (HKLM\...\{23526481-9826-46D3-A38C-CA9B3F59FD0C}) (Version: 26.40.0075 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS PCB 2018 SP04 (HKLM\...\{754EACE8-AA6E-42D8-81D4-23869D7F80F3}) (Version: 26.40.0075 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS Plastics 2018 SP04 (HKLM\...\{9F301E50-ED1C-408F-85AC-D182E400F61B}) (Version: 26.40.0075 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS Visualize 2018 SP04 (HKLM\...\{FA9DFD3D-B786-491F-8195-8320FA7D2425}) (Version: 26.40.0075 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS Visualize Boost 2018 SP04 (HKLM\...\{6C127049-F1BE-47DA-97C9-8B1CE0BFC087}) (Version: 26.40.0075 - Dassault Systemes SolidWorks Corp) Hidden
SQL Server 2014 Common Files (HKLM\...\{BD1CD96B-FE4B-4EAE-83D4-6EF55AB5779C}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Common Files (HKLM\...\{F7012F84-80F5-4C25-852E-B1BA03276FE6}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM\...\{17531BCD-C627-46A2-9F1E-7CC920E0E94A}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (HKLM\...\{5082A9F3-AEE5-4639-9BA7-C19661BA7331}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM\...\{ACC530B8-B6B4-40D6-B59B-152468CF47D0}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (HKLM\...\{D1B847A9-B06B-4264-9EF0-78E6E1571E65}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server Browser for SQL Server 2014 (HKLM-x32\...\{3204DE95-97D2-4261-A286-98A262E171D4}) (Version: 12.1.4100.1 - Microsoft Corporation)
Sql Server Customer Experience Improvement Program (HKLM\...\{6476DB81-F263-4C04-8574-AAD31136C304}) (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.4.0.2781 - Microsoft Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH)
TeighaX 3.09 (HKLM-x32\...\{3D63579F-2398-418B-9227-A852FB201D2D}) (Version: 3.9.0 - Open Design Alliance)
Thrustmaster TARGET (HKLM-x32\...\{8036A569-CA02-4D33-A7E9-E9BC8A482E91}) (Version: 3.0.20.826 - Thrustmaster)
TotalAV (HKLM-x32\...\TotalAV) (Version: 5.16.203 - TotalAV) <==== ATTENTION
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 125.0.10582 - Ubisoft)
Windows Kontrola stavu počítača (HKLM\...\{BDBC15A5-E9F1-485F-A0D3-7526052FB2B2}) (Version: 3.2.2110.14001 - Microsoft Corporation)
WPTx64 (HKLM-x32\...\{0B2C58EB-67A2-225B-60B2-D1990E55DD33}) (Version: 8.100.26866 - Microsoft)
Packages:
=========
Age of Empires II: Definitive Edition -> C:\Program Files\WindowsApps\Microsoft.MSPhoenix_101.101.56005.0_x64__8wekyb3d8bbwe [2021-11-18] (Microsoft Studios)
AMD Radeon Software -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.20.10028.0_x64__0a9344xs7nr4m [2021-06-16] (Advanced Micro Devices Inc.) [Startup Task]
AMD Radeon™ Settings Lite -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.59462344778C5_10.19.40016.0_x64__0a9344xs7nr4m [2021-06-22] (Advanced Micro Devices Inc.)
Dolby Atmos for Gaming -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAtmosforGaming_3.20602.609.0_x64__rz1tebttyb220 [2020-09-04] (Dolby Laboratories)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_133.1.340.0_x64__v10z8vjag6ke6 [2021-12-14] (HP Inc.)
Lenovo Hotkeys -> C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.2.15.0_x64__5grkq8ppsgwt4 [2021-11-20] (LENOVO INC) [Startup Task]
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2112.10.0_x64__k1h2ywk1493x8 [2021-12-26] (LENOVO INC.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-11-26] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.15.227.0_x64__dt26b99r8h8gj [2021-01-05] (Realtek Semiconductor Corp)
Rozšírenie pre video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.42152.0_x64__8wekyb3d8bbwe [2021-08-25] (Microsoft Corporation)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0 [2021-12-10] (Spotify AB) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_4831581a4e5dfca0\nvshext.dll [2021-11-11] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2021-12-22 17:18 - 2021-12-13 02:26 - 000675328 _____ () [File not signed] [File is in use] C:\ProgramData\Lenovo\iMController\Plugins\LenovoVisionProtectionPlugin\x64\PlatformInterface.dll
2021-01-08 10:30 - 2021-01-08 10:30 - 000107520 _____ () [File not signed] C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize Boost\NETAPI32.dll
2017-03-02 15:19 - 2017-03-02 15:19 - 000310272 ____N (easyhook.codeplex.com) [File not signed] C:\ProgramData\Dolby\DAX3\RADARHOST\EasyHook64.dll
2021-02-05 18:52 - 2020-04-01 14:46 - 000037376 _____ (Guillemot Corporation) [File not signed] C:\Program Files (x86)\Thrustmaster\TARGET\cint.dll
2021-02-05 18:52 - 2016-04-14 12:46 - 001036800 _____ (Guillemot Corporation) [File not signed] C:\Program Files (x86)\Thrustmaster\TARGET\TmCommon.dll
2021-02-05 18:52 - 2018-02-15 15:23 - 000190976 _____ (Guillemot Corporation) [File not signed] C:\Program Files (x86)\Thrustmaster\TARGET\TmHidControl.dll
2021-12-14 17:01 - 2021-12-14 17:03 - 116802560 _____ (HP Development Company, L.P.) [File not signed] C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_133.1.340.0_x64__v10z8vjag6ke6\HP.Smart.dll
2021-11-09 16:27 - 2021-11-09 16:28 - 007170048 _____ (HP Development Company, L.P.) [File not signed] C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_133.1.340.0_x64__v10z8vjag6ke6\HPPageLift.UWP.dll
2021-01-07 13:37 - 2019-02-21 17:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2018-03-27 17:56 - 2018-03-27 17:56 - 008603136 _____ (NVIDIA Corp.) [File not signed] C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize Boost\optix_prime.1.dll
2018-03-27 17:56 - 2018-03-27 17:56 - 000373760 _____ (NVIDIA Corporation) [File not signed] C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize Boost\cudart64_90.dll
2018-03-27 17:56 - 2018-03-27 17:56 - 281306112 _____ (NVIDIA Corporation) [File not signed] C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize Boost\cudnn64_7.dll
2018-03-27 17:56 - 2018-03-27 17:56 - 000827392 _____ (NVIDIA Corporation) [File not signed] C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize Boost\iray_bridge_server.dll
2018-03-27 17:56 - 2018-03-27 17:56 - 160232960 _____ (NVIDIA Corporation) [File not signed] C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize Boost\libiray.dll
2018-03-27 17:56 - 2018-03-27 17:56 - 059388416 _____ (NVIDIA Corporation) [File not signed] C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize Boost\libneuray.dll
2018-03-27 17:56 - 2018-03-27 17:56 - 007058432 _____ (NVIDIA Corporation) [File not signed] C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize Boost\nv_freeimage.dll
2018-03-27 17:56 - 2018-03-27 17:56 - 000302592 _____ (NVIDIA Corporation) [File not signed] C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize Boost\nvcuvid_video_decoder.dll
2018-05-08 17:57 - 2018-05-08 17:57 - 000604672 _____ (NVIDIA Corporation) [File not signed] C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize Boost\nvenc_video.dll
2018-05-08 17:57 - 2018-05-08 17:57 - 000603136 _____ (NVIDIA Corporation) [File not signed] C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize Boost\x264_video.dll
2021-01-08 10:19 - 2021-01-08 10:19 - 000116224 _____ (pdfforge GmbH) [File not signed] C:\WINDOWS\System32\pdfcmon.dll
2018-03-27 17:56 - 2018-03-27 17:56 - 001649010 _____ (x264 project) [File not signed] C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize Boost\libx264-142.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-4249308867-3700432313-2213772059-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-01-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-01-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-01-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-01-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-19 05:49 - 2022-01-02 13:01 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-4249308867-3700432313-2213772059-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Petrík\Nový priečinok\DCS dokumenty\M-2000C_Red_Flag_06.jpg
DNS Servers: 192.168.240.1 - 31.3.32.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\StartupFolder: => "SOLIDWORKS 2018 Fast Start.lnk"
HKLM\...\StartupApproved\StartupFolder: => "SOLIDWORKS Background Downloader.lnk"
HKLM\...\StartupApproved\Run: => "Start WingMan Profiler"
HKLM\...\StartupApproved\Run32: => "Discord"
HKU\S-1-5-21-4249308867-3700432313-2213772059-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-4249308867-3700432313-2213772059-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-4249308867-3700432313-2213772059-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-4249308867-3700432313-2213772059-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-4249308867-3700432313-2213772059-1001\...\StartupApproved\Run: => "{E42A4987-1F86-4E8F-A708-60CAAC1E3DA7}"
HKU\S-1-5-21-4249308867-3700432313-2213772059-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{BF792388-90B1-46C1-B4DD-08DB79E9D674}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{5BD5090F-F672-46E4-A714-34D1842BB930}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [UDP Query User{47A1C737-2E68-4FBA-934B-A8B0A8BAA06E}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe => No File
FirewallRules: [TCP Query User{16D9B9C2-5131-46E9-A255-72B58459FA87}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe => No File
FirewallRules: [{2C1A9AE6-A60D-4512-BE30-AA753C391392}] => (Allow) C:\Program Files\KeyShot7\bin\keyshot_daemon.exe (Luxion, Inc. -> )
FirewallRules: [{46DDEA4D-4BF4-4838-9100-EE7047038C77}] => (Allow) C:\Program Files\KeyShot7\bin\keyshot.exe (Luxion, Inc. -> Luxion)
FirewallRules: [{42CF823C-DFA1-4DBE-950E-44327A99C460}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{61FBB9F2-E28A-4F2C-A272-3C412080D6A9}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F58540A5-E92E-443E-B033-89EC3749821D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{8A200AAD-5309-47BC-995C-ACAD154DE078}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9FA65E79-B025-4384-948B-4E60BA3B9479}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{C36BFD40-AD8F-497F-85C0-C2BE60D999E7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{24248AF4-0939-4DCF-8345-6562E13E0C3D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{ED9A9BC0-F206-4713-A019-2016066DD850}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [UDP Query User{D6BF3F04-8E04-499F-9C1F-620BEADBC4EF}C:\program files (x86)\opentrack\opentrack.exe] => (Allow) C:\program files (x86)\opentrack\opentrack.exe () [File not signed]
FirewallRules: [TCP Query User{F39AACF5-0026-4A50-9D74-30F0D9E1E829}C:\program files (x86)\opentrack\opentrack.exe] => (Allow) C:\program files (x86)\opentrack\opentrack.exe () [File not signed]
FirewallRules: [{C1ACBD76-0174-499E-9B89-3A8C31ABD822}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F898238F-EE75-4F2F-9EE8-90FB8C12CC8D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A7B11F97-ED96-43A0-AFA8-07386C5A90DD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\F1 2020\F1_2020_dx12.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{012E8AE6-6051-4EF4-A981-E81651C4B5CF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\F1 2020\F1_2020_dx12.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{682A4193-7342-4BA6-8C66-EC64B2CB0A86}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\F1 2020\F1_2020.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{EAFB586C-B3CE-4242-A6CA-922D1A7DD4F8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\F1 2020\F1_2020.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [TCP Query User{963C6BD4-E756-4123-94E3-A5E04124A1CE}C:\program files (x86)\steam\steamapps\common\grit playtest\showdown\binaries\win64\showdownclient-win64-test.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grit playtest\showdown\binaries\win64\showdownclient-win64-test.exe => No File
FirewallRules: [UDP Query User{64B58698-E43C-49E9-9F64-975E640DFB75}C:\program files (x86)\steam\steamapps\common\grit playtest\showdown\binaries\win64\showdownclient-win64-test.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grit playtest\showdown\binaries\win64\showdownclient-win64-test.exe => No File
FirewallRules: [{11777A36-EA07-4F0B-9FDD-17DB4FA058A8}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2F294D90-3CCB-4E4B-80D9-D96F5888DA7B}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3EBA7175-F516-436E-A4E4-D20A66FF3624}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Halo The Master Chief Collection\mcclauncher.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{4B8C3904-C7BD-416D-9422-FB180DA0DEDD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Halo The Master Chief Collection\mcclauncher.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{8F57BED2-1E52-43E5-BB22-A23281F6F544}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Halo The Master Chief Collection\mcc\binaries\win64\MCC-Win64-Shipping.exe (343 Industries (Microsoft Corporation) -> Microsoft Corporation)
FirewallRules: [{155909B3-D29F-451A-8F8E-6707BA9A397E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Halo The Master Chief Collection\mcc\binaries\win64\MCC-Win64-Shipping.exe (343 Industries (Microsoft Corporation) -> Microsoft Corporation)
FirewallRules: [TCP Query User{13D268AB-4576-46A4-BE70-3453B51B82DF}C:\users\petrík\appdata\local\enlisted\launcher.exe] => (Allow) C:\users\petrík\appdata\local\enlisted\launcher.exe => No File
FirewallRules: [UDP Query User{9596091F-5019-407A-AA5C-FF371691FEC9}C:\users\petrík\appdata\local\enlisted\launcher.exe] => (Allow) C:\users\petrík\appdata\local\enlisted\launcher.exe => No File
FirewallRules: [TCP Query User{32CC19D0-5E03-4FE1-8B64-4B0F01CD1884}C:\users\petrík\appdata\local\enlisted\win64\enlisted.exe] => (Allow) C:\users\petrík\appdata\local\enlisted\win64\enlisted.exe => No File
FirewallRules: [UDP Query User{7B1BAF00-D614-4824-8708-615CA76471F1}C:\users\petrík\appdata\local\enlisted\win64\enlisted.exe] => (Allow) C:\users\petrík\appdata\local\enlisted\win64\enlisted.exe => No File
FirewallRules: [TCP Query User{8A53142D-4E1B-41BE-B3C8-FE5221BCC1CC}C:\users\petrík\appdata\local\enlisted\launcher.exe] => (Allow) C:\users\petrík\appdata\local\enlisted\launcher.exe => No File
FirewallRules: [UDP Query User{E957273E-AAC7-40DC-B93E-764724878D63}C:\users\petrík\appdata\local\enlisted\launcher.exe] => (Allow) C:\users\petrík\appdata\local\enlisted\launcher.exe => No File
FirewallRules: [{E97F8112-2767-44F3-8876-DD5159779C5B}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Ghost Recon Breakpoint\GRB_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{5CD75685-D06B-412C-86EE-2F15E9125B50}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Ghost Recon Breakpoint\GRB_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{29D0AEDA-0673-4483-AFFC-064B1F1FF0D5}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8A3BC85C-0AFC-4035-92E1-F1A1FCF86C9C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Assetto Corsa Competizione\acc.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{EF5FFC58-36D9-4647-8A5D-99367934C146}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Assetto Corsa Competizione\acc.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [TCP Query User{B3F2DCF3-0DE4-4A20-873B-7B75217649B2}C:\program files (x86)\steam\steamapps\common\assetto corsa competizione\ac2\binaries\win64\ac2-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\assetto corsa competizione\ac2\binaries\win64\ac2-win64-shipping.exe (Kunos Simulazioni) [File not signed]
FirewallRules: [UDP Query User{33911D7D-1BBB-4D79-BEC9-00832FBF99B4}C:\program files (x86)\steam\steamapps\common\assetto corsa competizione\ac2\binaries\win64\ac2-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\assetto corsa competizione\ac2\binaries\win64\ac2-win64-shipping.exe (Kunos Simulazioni) [File not signed]
FirewallRules: [{70FD23D3-22B6-4E14-9EC7-D0F230F815F0}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8D38BDAF-2267-4A12-BAE6-985D14483563}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{D75227F1-5CDA-47C2-A497-779628772B00}C:\program files (x86)\steam\steamapps\common\assetto corsa competizione\ac2\binaries\win64\ac2-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\assetto corsa competizione\ac2\binaries\win64\ac2-win64-shipping.exe (Kunos Simulazioni) [File not signed]
FirewallRules: [UDP Query User{5DA6A05C-7C66-4BC7-A9B2-B9312FF0B022}C:\program files (x86)\steam\steamapps\common\assetto corsa competizione\ac2\binaries\win64\ac2-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\assetto corsa competizione\ac2\binaries\win64\ac2-win64-shipping.exe (Kunos Simulazioni) [File not signed]
FirewallRules: [{3B3519F5-B102-437C-A7B0-DE81520F2B2A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{7F6429C5-33D0-42FF-84B2-7CD9E523FA6C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{57BEBFA6-C8E7-4AEC-ADF2-B4D0F099AE2B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{461587CC-0576-4625-930C-CACC56B1873D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{D79760EB-CD7C-4329-BD2A-51A0B1E420E2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5FDE46D0-130F-4256-8710-CF5BEC87B31D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{979B4411-65CB-4C95-BF76-FE6366A76CB9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E6F8C37F-0492-400F-A478-3802AEC98AF0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B99119B6-920A-4763-99B7-C049039B1B45}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{56233D2C-AFBE-4BCB-BA2E-E7353BA5ED45}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A594060E-73E3-459A-9226-3B6D479CB3F7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F12BC9B2-F075-43F2-AE5B-97C05F455ACE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E7C94A73-E89E-45F1-971D-D6899EFBB594}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{45B4E704-5691-44FD-AE0C-1EE4DE4CE154}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C62D4D22-0B31-4800-BC6E-A3233588D8C2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FB66CF83-7083-430B-B90E-0C424852FD8D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.174.631.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{810286A1-B85F-4E1E-B6A6-55DCF6D5C356}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DOOM\DOOMx64.exe (id Software) [File not signed]
FirewallRules: [{2C569A93-101F-4871-8FF2-F1D911D5E748}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DOOM\DOOMx64.exe (id Software) [File not signed]
FirewallRules: [TCP Query User{0AF3EE87-82DC-4045-81F1-5400DDE0E497}C:\program files (x86)\steam\steamapps\common\doom\doomx64vk.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\doom\doomx64vk.exe (id Software) [File not signed]
FirewallRules: [UDP Query User{A7398DC9-DA4F-4464-80FB-9DAE658F27CB}C:\program files (x86)\steam\steamapps\common\doom\doomx64vk.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\doom\doomx64vk.exe (id Software) [File not signed]
FirewallRules: [{4AB318BC-6732-45F6-BAE6-0F035D475F2F}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{7FFFC2A8-0DD5-49A1-B140-A51C8E58FA06}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\96.0.1054.62\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
02-01-2022 13:03:23 TotalAV Install
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (01/02/2022 02:23:48 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for WORKGROUP\LAPTOP-6PVPM7QG$ via https://AMD-KeyId-52fb59e29aa83a962fb9e ... s/Aik/scep failed:
GetCACaps
Method: GET(16ms)
Stage: GetCACaps
The server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
Error: (01/02/2022 01:21:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: Lenovo.Modern.ImController.PluginHost.CompanionApp.exe, verzia: 1.1.20.3, časová značka: 0x6183b303
Názov chybujúceho modulu: KERNELBASE.dll, verzia: 10.0.19041.1387, časová značka: 0x0b9a844a
Kód výnimky: 0xe0434352
Odstup chyby: 0x0000000000034f69
Identifikácia chybujúceho procesu: 0x2e30
Čas spustenia chybujúcej aplikácie: 0x01d7ffd09c9f8192
Cesta chybujúcej aplikácie: C:\WINDOWS\Lenovo\iMController\PluginHost\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\KERNELBASE.dll
Identifikácia hlásenia: b607a048-64a0-4048-a4b4-d8fe7186e70e
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:
Error: (01/02/2022 01:21:34 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.ObjectDisposedException
at System.Runtime.InteropServices.SafeHandle.DangerousAddRef(Boolean ByRef)
at System.StubHelpers.StubHelpers.SafeHandleAddRef(System.Runtime.InteropServices.SafeHandle, Boolean ByRef)
at Microsoft.Win32.Win32Native.SetEvent(Microsoft.Win32.SafeHandles.SafeWaitHandle)
at System.Threading.EventWaitHandle.Set()
at LenovoVisionProtectionPlugin.NightLight.CheckCT(System.Object)
at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Threading.ThreadHelper.ThreadStart(System.Object)
Error: (01/02/2022 01:02:20 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for WORKGROUP\LAPTOP-6PVPM7QG$ via https://AMD-KeyId-52fb59e29aa83a962fb9e ... s/Aik/scep failed:
GetCACaps
Method: GET(0ms)
Stage: GetCACaps
The server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
Error: (01/02/2022 01:01:50 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.
Error: (01/02/2022 01:01:50 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]
Error: (01/02/2022 01:01:50 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.
Error: (01/02/2022 01:01:50 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]
System errors:
=============
Error: (01/02/2022 02:23:09 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Služba SOLIDWORKS Electrical Collaborative Server oznámila neplatný aktuálny stav 0.
Error: (01/02/2022 01:01:50 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Služba SOLIDWORKS Electrical Collaborative Server oznámila neplatný aktuálny stav 0.
Error: (01/02/2022 12:55:13 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Služba SOLIDWORKS Electrical Collaborative Server oznámila neplatný aktuálny stav 0.
Error: (01/02/2022 01:21:08 AM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Služba SOLIDWORKS Electrical Collaborative Server oznámila neplatný aktuálny stav 0.
Error: (01/01/2022 05:39:21 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Služba SOLIDWORKS Electrical Collaborative Server oznámila neplatný aktuálny stav 0.
Error: (01/01/2022 05:39:18 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-6PVPM7QG)
Description: The server Microsoft.Windows.ContentDeliveryManager_10.0.19041.1023_neutral_neutral_cw5n1h2txyewy!App.AppXx4zfy1ffv3wctgdz2vypnybzjkh27jhw.mca did not register with DCOM within the required timeout.
Error: (01/01/2022 05:39:17 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: The server {995C996E-D918-4A8C-A302-45719A6F4EA7} did not register with DCOM within the required timeout.
Error: (12/31/2021 06:20:28 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Služba SOLIDWORKS Electrical Collaborative Server oznámila neplatný aktuálny stav 0.
Windows Defender:
================
Date: 2022-01-02 14:06:37
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2022-01-02 14:06:37
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2021-06-11 20:53:12
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2021-03-12 20:23:08
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[0]:
Date: 2021-11-04 22:00:35
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.349.1342.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.18500.10
Error code: 0x80072ee7
Error description: The server name or address could not be resolved
Date: 2021-11-04 22:00:35
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.349.1342.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiSpyware
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.18500.10
Error code: 0x80072ee7
Error description: The server name or address could not be resolved
Date: 2021-11-04 22:00:35
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.349.1342.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.18500.10
Error code: 0x80072ee7
Error description: The server name or address could not be resolved
Date: 2021-11-04 22:00:35
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.349.1342.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.18500.10
Error code: 0x80072ee7
Error description: The server name or address could not be resolved
Date: 2021-11-04 22:00:35
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.349.1342.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiSpyware
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.18500.10
Error code: 0x80072ee7
Error description: The server name or address could not be resolved
CodeIntegrity:
===============
Date: 2022-01-02 14:23:53
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\TotalAV\wscf.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
BIOS: LENOVO FSCN20WW 09/23/2021
Motherboard: LENOVO LNVNB161216
Processor: AMD Ryzen 5 4600H with Radeon Graphics
Percentage of memory in use: 27%
Total physical RAM: 15741.32 MB
Available physical RAM: 11402.53 MB
Total Virtual: 21885.32 MB
Available Virtual: 15197.19 MB
==================== Drives ================================
Drive c: (Windows-SSD) (Fixed) (Total:475.69 GB) (Free:80.28 GB) NTFS
\\?\Volume{3eab325d-57f8-443e-b5bd-3c31bd0c151b}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.48 GB) NTFS
\\?\Volume{5bd23d22-840b-1043-3d5d-8cef87c36c9c}\ () (Fixed) (Total:21.86 GB) (Free:0 GB) NTFS
\\?\Volume{56692210-c7a4-4d5a-b3a6-0797f8aea057}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.2 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: EF1E1775)
Partition: GPT.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 1.
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Preventivna kontrola
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Preventivna kontrola
ahoj,
citat:
Tvorba fixlistu pro FRST
•Spustte poznamkovy blok (Start-spustit-notepad)
•Zkopirujte skript >>
•Ulozte vytvoreny TXT jako fixlist.txt
•Presunte vytvoreny fixlist vedle FRST
Spustte znovu FRST.exe
•Kliknete na Fix
•Probehne oprava a vytvori log Fixlog.txt
Restart PC a dejte mi sem fixlog.txt
citat:
Tvorba fixlistu pro FRST
•Spustte poznamkovy blok (Start-spustit-notepad)
•Zkopirujte skript >>
Kód: Vybrat vše
Start
(Protected Antivirus Limited -> TotalAV) C:\Program Files (x86)\TotalAV\SecurityService.exe <2>
(Protected Antivirus Limited -> TotalAV) C:\Program Files (x86)\TotalAV\TotalAV.exe
HKU\S-1-5-21-4249308867-3700432313-2213772059-1001\...\Run: [{E42A4987-1F86-4E8F-A708-60CAAC1E3DA7}] => "C:\Users\Petrík\Downloads\InputMapper1.7.7452.13622.exe" /cmdloc "HKCU\Software\DSDCS AiTemp\{E42A4987-1F86-4E8F-A708-60CAAC1E3DA7}" (No File) <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
HKU\S-1-5-21-4249308867-3700432313-2213772059-1001\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
R2 SecurityService; C:\Program Files (x86)\TotalAV\SecurityService.exe [264032 2021-11-09] (Protected Antivirus Limited -> TotalAV) <==== ATTENTION
R1 webshieldfilter; C:\WINDOWS\System32\drivers\webshieldfilter.sys [96264 2021-11-09] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) <==== ATTENTION
TotalAV (HKLM-x32\...\TotalAV) (Version: 5.16.203 - TotalAV) <==== ATTENTION
FirewallRules: [UDP Query User{47A1C737-2E68-4FBA-934B-A8B0A8BAA06E}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe => No File
FirewallRules: [TCP Query User{16D9B9C2-5131-46E9-A255-72B58459FA87}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe => No File
EmptyTemp:
Reboot:
End
•Presunte vytvoreny fixlist vedle FRST
Spustte znovu FRST.exe•Kliknete na Fix
•Probehne oprava a vytvori log Fixlog.txt
Restart PC a dejte mi sem fixlog.txtFRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Preventivna kontrola
Fix result of Farbar Recovery Scan Tool (x64) Version: 27-12-2021
Ran by Petrík (04-01-2022 21:11:49) Run:1
Running from C:\Users\Petrík\OneDrive\Desktop
Loaded Profiles: Petrík
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
(Protected Antivirus Limited -> TotalAV) C:\Program Files (x86)\TotalAV\SecurityService.exe <2>
(Protected Antivirus Limited -> TotalAV) C:\Program Files (x86)\TotalAV\TotalAV.exe
HKU\S-1-5-21-4249308867-3700432313-2213772059-1001\...\Run: [{E42A4987-1F86-4E8F-A708-60CAAC1E3DA7}] => "C:\Users\Petrík\Downloads\InputMapper1.7.7452.13622.exe" /cmdloc "HKCU\Software\DSDCS AiTemp\{E42A4987-1F86-4E8F-A708-60CAAC1E3DA7}" (No File) <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
HKU\S-1-5-21-4249308867-3700432313-2213772059-1001\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
R2 SecurityService; C:\Program Files (x86)\TotalAV\SecurityService.exe [264032 2021-11-09] (Protected Antivirus Limited -> TotalAV) <==== ATTENTION
R1 webshieldfilter; C:\WINDOWS\System32\drivers\webshieldfilter.sys [96264 2021-11-09] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) <==== ATTENTION
TotalAV (HKLM-x32\...\TotalAV) (Version: 5.16.203 - TotalAV) <==== ATTENTION
FirewallRules: [UDP Query User{47A1C737-2E68-4FBA-934B-A8B0A8BAA06E}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe => No File
FirewallRules: [TCP Query User{16D9B9C2-5131-46E9-A255-72B58459FA87}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe => No File
EmptyTemp:
Reboot:
End
*****************
"C:\Program Files (x86)\TotalAV\SecurityService.exe" => Could not close process
[14944] C:\Program Files (x86)\TotalAV\TotalAV.exe => process closed successfully.
"HKU\S-1-5-21-4249308867-3700432313-2213772059-1001\Software\Microsoft\Windows\CurrentVersion\Run\\{E42A4987-1F86-4E8F-A708-60CAAC1E3DA7}" => removed successfully
HKLM\SOFTWARE\Policies\Microsoft\Edge => removed successfully
HKU\S-1-5-21-4249308867-3700432313-2213772059-1001\SOFTWARE\Policies\Microsoft\Edge => removed successfully
SecurityService => Unable to stop service.
HKLM\System\CurrentControlSet\Services\SecurityService => removed successfully
SecurityService => service removed successfully
webshieldfilter => Unable to stop service.
HKLM\System\CurrentControlSet\Services\webshieldfilter => removed successfully
webshieldfilter => service removed successfully
TotalAV (HKLM-x32\...\TotalAV) (Version: 5.16.203 - TotalAV) <==== ATTENTION => Error: No automatic fix found for this entry.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{47A1C737-2E68-4FBA-934B-A8B0A8BAA06E}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{16D9B9C2-5131-46E9-A255-72B58459FA87}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe" => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 1048576 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 11603580 B
Java, Flash, Steam htmlcache => 433076567 B
Windows/system/drivers => 14604985 B
Edge => 1023502 B
Chrome => 518279845 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 4640412 B
NetworkService => 5520772 B
Petrík => 10565385 B
RecycleBin => 0 B
EmptyTemp: => 954 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 21:12:32 ====
Ran by Petrík (04-01-2022 21:11:49) Run:1
Running from C:\Users\Petrík\OneDrive\Desktop
Loaded Profiles: Petrík
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
(Protected Antivirus Limited -> TotalAV) C:\Program Files (x86)\TotalAV\SecurityService.exe <2>
(Protected Antivirus Limited -> TotalAV) C:\Program Files (x86)\TotalAV\TotalAV.exe
HKU\S-1-5-21-4249308867-3700432313-2213772059-1001\...\Run: [{E42A4987-1F86-4E8F-A708-60CAAC1E3DA7}] => "C:\Users\Petrík\Downloads\InputMapper1.7.7452.13622.exe" /cmdloc "HKCU\Software\DSDCS AiTemp\{E42A4987-1F86-4E8F-A708-60CAAC1E3DA7}" (No File) <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
HKU\S-1-5-21-4249308867-3700432313-2213772059-1001\SOFTWARE\Policies\Microsoft\Edge: Restriction <==== ATTENTION
R2 SecurityService; C:\Program Files (x86)\TotalAV\SecurityService.exe [264032 2021-11-09] (Protected Antivirus Limited -> TotalAV) <==== ATTENTION
R1 webshieldfilter; C:\WINDOWS\System32\drivers\webshieldfilter.sys [96264 2021-11-09] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) <==== ATTENTION
TotalAV (HKLM-x32\...\TotalAV) (Version: 5.16.203 - TotalAV) <==== ATTENTION
FirewallRules: [UDP Query User{47A1C737-2E68-4FBA-934B-A8B0A8BAA06E}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe => No File
FirewallRules: [TCP Query User{16D9B9C2-5131-46E9-A255-72B58459FA87}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) C:\program files (x86)\call of duty modern warfare\modernwarfare.exe => No File
EmptyTemp:
Reboot:
End
*****************
"C:\Program Files (x86)\TotalAV\SecurityService.exe" => Could not close process
[14944] C:\Program Files (x86)\TotalAV\TotalAV.exe => process closed successfully.
"HKU\S-1-5-21-4249308867-3700432313-2213772059-1001\Software\Microsoft\Windows\CurrentVersion\Run\\{E42A4987-1F86-4E8F-A708-60CAAC1E3DA7}" => removed successfully
HKLM\SOFTWARE\Policies\Microsoft\Edge => removed successfully
HKU\S-1-5-21-4249308867-3700432313-2213772059-1001\SOFTWARE\Policies\Microsoft\Edge => removed successfully
SecurityService => Unable to stop service.
HKLM\System\CurrentControlSet\Services\SecurityService => removed successfully
SecurityService => service removed successfully
webshieldfilter => Unable to stop service.
HKLM\System\CurrentControlSet\Services\webshieldfilter => removed successfully
webshieldfilter => service removed successfully
TotalAV (HKLM-x32\...\TotalAV) (Version: 5.16.203 - TotalAV) <==== ATTENTION => Error: No automatic fix found for this entry.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{47A1C737-2E68-4FBA-934B-A8B0A8BAA06E}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{16D9B9C2-5131-46E9-A255-72B58459FA87}C:\program files (x86)\call of duty modern warfare\modernwarfare.exe" => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 1048576 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 11603580 B
Java, Flash, Steam htmlcache => 433076567 B
Windows/system/drivers => 14604985 B
Edge => 1023502 B
Chrome => 518279845 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 4640412 B
NetworkService => 5520772 B
Petrík => 10565385 B
RecycleBin => 0 B
EmptyTemp: => 954 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 21:12:32 ====
Re: Preventivna kontrola
Ak nie su problemy tak hotovo 
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Preventivna kontrola
Za malo
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Přispějete na provoz fóra?