Zdravím, stala se mi taková nepříjemnost ale zatím to vše vypadá v pořádku. Na mail mi od YouTube přišlo tohle: Obdrželi jsme žádost o zastavení šíření z důvodu porušení autorských práv. Z toho důvodu bylo vaše video z YouTube odstraněno.
Po otevření mého YouTube účtu jsem zjistil, že mi někdo na můj účet nahrál asi 15 videí co porušují autorská práva a tím pádem byla na můj účet uvalena sankce (první varování). Na YouTube účtu mám dvojí zabezpečení a i tak se mi na účet někdo dostal, nepřišlo mi žádné varování že se někdo pokouší přihlásit. Takže na YouTube účet jsem se normálně přihlásil a hned změnil heslo a teď jen čekám co bude dál. Nikde na mě v PC nic nevyskakuje a všechno se zdá být v pořádku, tak bych chtěl jen udělat preventivní kontrolu. Moc Vám všem děkuju!
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 24-02-2022
Ran by Tunguska (administrator) on DESKTOP-HE8OVF9 (25-02-2022 15:52:28)
Running from E:\stazeno
Loaded Profiles: Tunguska
Platform: Microsoft Windows 10 Pro Version 21H1 19043.1526 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\SBZ.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(explorer.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(explorer.exe ->) (Nero AG -> Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
(INTERNET PROJECT LLC -> ) C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
(Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\Legion Accessory Central\legion_haw.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <10>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd) C:\Windows\SysWOW64\CtHdaSvc.exe
(services.exe ->) (Nero AG -> Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_48a94de4b861e2fb\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Prolific Technology Inc.) [File not signed] C:\Windows\SysWOW64\IoctlSvc.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Nero AG -> Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18727048 2018-10-05] (Logitech Inc -> Logitech Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [157464 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.) [File not signed]
HKLM-x32\...\Run: [Sound Blaster Z-Series Control Panel] => C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\SBZ.exe [877056 2014-11-24] (Creative Technology Ltd) [File not signed]
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [203760 2018-05-04] (INTERNET PROJECT LLC -> )
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Leonvo Legion Startup] => C:\Program Files (x86)\Lenovo\Legion Accessory Central\legion_haw.exe [1254584 2022-01-27] (Lenovo -> Lenovo)
HKU\S-1-5-21-915892368-1021380908-836815241-1001\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [152872 2008-01-22] (Nero AG -> Nero AG)
HKU\S-1-5-21-915892368-1021380908-836815241-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [735336 2019-03-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-915892368-1021380908-836815241-1001\...\MountPoints2: {bfd559cd-41e4-11ea-8b3c-f46d042c1449} - "F:\LaunchU3.exe" -a
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe /StartMinimized (No File)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0095ED1E-3C5A-43FB-8161-EBF5505CC905} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1009872 2021-11-02] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {055E7C9D-CA4A-4B21-B5B2-2C5BC7DCA0A1} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {0EE3AE58-8774-454E-88F1-6444A454E1F5} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {1A25ABC6-463E-4F1D-975F-DC9B52FDC17E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {29F6BDE0-344B-4443-85AA-0B84A260DF91} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647376 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {335453C8-D6B4-419C-B9A7-8A3545D903F9} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {3FF04241-F1FE-4A76-84EF-F64929EE503F} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {64BB4A8E-A9DD-43EA-BD3A-290F6AEBB355} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {6B860DAA-BEE0-4EB2-A892-AF72BA81F77F} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [743616 2015-12-02] (@ByELDI -> @ByELDI) [File not signed]
Task: {7431ABD5-30E7-4D7B-97AD-99441BFCAFC5} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {77F9413C-C052-443E-AD28-E3D0B2047CF7} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [782320 2019-10-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {7A5C3960-82C1-446F-B952-431300D01347} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {82024F5F-DC43-49B1-A7A8-5E1E949F3608} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339472 2022-02-03] (Nvidia Corporation -> NVIDIA Corporation)
Task: {9083CFC3-9BCC-40C5-A628-31CBC33C209A} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1790184 2021-04-30] (Avast Software s.r.o. -> Avast Software)
Task: {A5D4B722-577C-49A2-A2E7-5C010CDC8DBF} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4992792 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
Task: {BF82FB91-9765-4DD7-B745-E81847C44825} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {D7C408F2-E7CE-4417-BB12-FCA87F35DFF6} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2334408d-2bb7-486b-9c23-43a628340e28}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge Profile: C:\Users\Tunguska\AppData\Local\Microsoft\Edge\User Data\Default [2022-02-13]
FireFox:
========
FF DefaultProfile: svkzk7eb.default-1589828617758
FF ProfilePath: C:\Users\Tunguska\AppData\Roaming\Mozilla\Firefox\Profiles\svkzk7eb.default-1589828617758 [2022-02-25]
FF DownloadDir: E:\stazeno
FF Homepage: Mozilla\Firefox\Profiles\svkzk7eb.default-1589828617758 -> google.cz
FF Notifications: Mozilla\Firefox\Profiles\svkzk7eb.default-1589828617758 -> hxxps://www.automobilovedily24.cz
FF Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\Tunguska\AppData\Roaming\Mozilla\Firefox\Profiles\svkzk7eb.default-1589828617758\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2022-01-27]
FF Plugin-x32: @java.com/DTPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-11-11] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-11-11] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8482384 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [563992 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [563992 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-03] (Avast Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8930120 2022-02-16] (BattlEye Innovations e.K. -> )
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [423424 2012-10-08] (Creative Technology Ltd) [File not signed]
R2 CtHdaSvc; C:\WINDOWS\sysWow64\CtHdaSvc.exe [133080 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4131944 2019-03-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2020-12-03] (EasyAntiCheat Oy -> Epic Games, Inc)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206472 2018-10-05] (Logitech Inc -> Logitech Inc.)
R3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [275752 2008-01-22] (Nero AG -> Nero AG)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2559704 2021-12-02] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3477728 2021-12-02] (Electronic Arts, Inc. -> Electronic Arts)
R2 PLFlash DeviceIoControl Service; C:\Windows\SysWOW64\IoctlSvc.exe [81920 2006-12-19] (Prolific Technology Inc.) [File not signed]
S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite Titanium.SP3\RpcAgentSrv.exe [136192 2019-01-24] (SiSoftware SPC -> SiSoftware) [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6136536 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_48a94de4b861e2fb\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_48a94de4b861e2fb\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S3 ucldr_battlegrounds_gl; "C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe" [X]
S3 zksvc; "C:\Program Files\Common Files\PUBG\zksvc.exe" [X]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35720 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [226328 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [368664 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [251928 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [99352 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [21936 2021-10-01] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41352 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [267904 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [545784 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [108888 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [82912 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [854272 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [550904 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215920 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [317696 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
S3 AthDfu; C:\WINDOWS\System32\Drivers\AthDfu.sys [55336 2012-08-22] (Atheros Communications Inc. -> Windows (R) Win 7 DDK provider)
R3 cthda; C:\WINDOWS\system32\drivers\cthda.sys [1090416 2021-01-11] (Creative Technology Ltd -> Creative Technology Ltd)
R3 cthdb; C:\WINDOWS\system32\DRIVERS\cthdb.sys [53616 2021-01-11] (Creative Technology Ltd -> Creative Technology Ltd)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-03-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-03-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 HWiNFO; C:\Windows\system32\drivers\HWiNFO64A.SYS [65616 2019-03-25] (Martin Malik - REALiX -> REALiX(tm))
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2018-10-05] (Logitech Inc -> Logitech Inc.)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [54632 2021-03-30] (Razer USA Ltd. -> Razer Inc)
S3 RzDev_006e; C:\WINDOWS\System32\drivers\RzDev_006e.sys [56152 2021-03-22] (Razer USA Ltd. -> Razer Inc)
S3 SANDRA; C:\Program Files\SiSoftware\SiSoftware Sandra Lite Titanium.SP3\WNt600x64\Sandra.sys [23112 2009-08-07] (SiSoftware Ltd -> SiSoftware)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [2522256 2022-02-23] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S4 NVHDA; \SystemRoot\system32\drivers\nvhda64v.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-02-25 15:50 - 2022-02-25 15:52 - 000000000 ____D C:\FRST
2022-02-21 10:36 - 2022-02-21 10:38 - 000000000 ____D C:\Users\Tunguska\Desktop\fotky
2022-02-19 12:25 - 2022-02-19 12:26 - 000000000 ___HD C:\Users\Tunguska\AppData\Local\e6dd41b52f86b26e01d31222b285bf57
2022-02-19 08:21 - 2022-02-19 08:21 - 000340760 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2022-02-19 08:21 - 2022-02-19 08:21 - 000215920 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2022-02-16 15:32 - 2022-02-10 19:39 - 000717760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2022-02-16 15:32 - 2022-02-10 19:37 - 005727376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2022-02-16 15:31 - 2022-02-10 19:42 - 001905936 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-02-16 15:31 - 2022-02-10 19:42 - 001905936 _____ C:\WINDOWS\system32\vulkaninfo.exe
2022-02-16 15:31 - 2022-02-10 19:42 - 001478416 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-02-16 15:31 - 2022-02-10 19:42 - 001478416 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2022-02-16 15:31 - 2022-02-10 19:42 - 001467840 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2022-02-16 15:31 - 2022-02-10 19:42 - 001432336 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-02-16 15:31 - 2022-02-10 19:42 - 001432336 _____ C:\WINDOWS\system32\vulkan-1.dll
2022-02-16 15:31 - 2022-02-10 19:42 - 001209280 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2022-02-16 15:31 - 2022-02-10 19:42 - 001145616 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2022-02-16 15:31 - 2022-02-10 19:42 - 001145616 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2022-02-16 15:31 - 2022-02-10 19:39 - 001531872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2022-02-16 15:31 - 2022-02-10 19:39 - 001176704 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2022-02-16 15:31 - 2022-02-10 19:39 - 000797112 _____ C:\WINDOWS\system32\nvofapi64.dll
2022-02-16 15:31 - 2022-02-10 19:39 - 000636032 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2022-02-16 15:31 - 2022-02-10 19:38 - 002120320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2022-02-16 15:31 - 2022-02-10 19:38 - 001602728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2022-02-16 15:31 - 2022-02-10 19:38 - 000983992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2022-02-16 15:31 - 2022-02-10 19:38 - 000795584 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2022-02-16 15:31 - 2022-02-10 19:38 - 000711608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2022-02-16 15:31 - 2022-02-10 19:37 - 008612496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2022-02-16 15:31 - 2022-02-10 19:37 - 007714960 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2022-02-16 15:31 - 2022-02-10 19:37 - 005099152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2022-02-16 15:31 - 2022-02-10 19:37 - 002935744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2022-02-16 15:31 - 2022-02-10 19:37 - 000456848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2022-02-16 15:31 - 2022-02-10 19:35 - 000849024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2022-02-16 15:31 - 2022-02-10 19:34 - 006461040 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2022-02-16 15:31 - 2022-02-10 07:18 - 000089251 _____ C:\WINDOWS\system32\nvinfo.pb
2022-02-13 12:17 - 2022-02-13 12:17 - 000000135 _____ C:\Users\Tunguska\Desktop\koberce ford focus.txt
2022-02-10 19:18 - 2022-02-10 19:18 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-02-10 19:18 - 2022-02-10 19:18 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2022-02-10 19:18 - 2022-02-10 19:18 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2022-02-10 19:18 - 2022-02-10 19:18 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-02-10 19:18 - 2022-02-10 19:18 - 000011813 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-02-10 19:11 - 2022-02-10 19:11 - 000000000 ___HD C:\$WinREAgent
2022-02-08 15:18 - 2022-02-25 15:52 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-02-03 16:02 - 2022-02-03 16:02 - 000000000 ____D C:\ProgramData\Lenovo
2022-02-03 16:01 - 2022-02-03 16:01 - 000001317 _____ C:\Users\Public\Desktop\Legion Accessory Central.lnk
2022-02-03 16:01 - 2022-02-03 16:01 - 000000000 ____D C:\WINDOWS\TempInst
2022-02-03 16:01 - 2022-02-03 16:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2022-02-03 16:01 - 2022-02-03 16:01 - 000000000 ____D C:\Program Files (x86)\Lenovo
2022-02-03 11:06 - 2022-02-21 10:36 - 000000000 ____D C:\Users\Tunguska\Desktop\ČEZ - dokumenty
2022-01-30 17:28 - 2022-02-01 21:01 - 000000000 ____D C:\Users\Tunguska\Desktop\Ford Fiesta
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-02-25 15:51 - 2019-03-21 20:09 - 000000000 ____D C:\Users\Tunguska\AppData\LocalLow\Mozilla
2022-02-25 15:50 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-02-25 15:45 - 2020-08-18 19:29 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-02-25 15:45 - 2019-12-07 15:43 - 000716770 _____ C:\WINDOWS\system32\perfh005.dat
2022-02-25 15:45 - 2019-12-07 15:43 - 000144948 _____ C:\WINDOWS\system32\perfc005.dat
2022-02-25 15:38 - 2020-10-18 08:29 - 000008192 ___SH C:\DumpStack.log.tmp
2022-02-25 15:38 - 2020-08-18 19:25 - 000003148 _____ C:\WINDOWS\system32\Tasks\MSIAfterburner
2022-02-25 15:38 - 2020-08-18 19:25 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-02-25 15:38 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-02-25 15:38 - 2019-03-25 17:16 - 000000000 ____D C:\ProgramData\NVIDIA
2022-02-25 15:38 - 2019-03-21 20:20 - 000000000 ____D C:\ProgramData\AVAST Software
2022-02-25 15:37 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-02-25 15:27 - 2019-03-21 19:49 - 000000000 ____D C:\Users\Tunguska\AppData\Local\VirtualStore
2022-02-25 15:07 - 2019-03-25 18:03 - 000000000 ____D C:\Users\Tunguska\AppData\Local\AVAST Software
2022-02-25 05:27 - 2020-08-18 19:18 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-02-25 04:33 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-02-25 04:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-02-24 21:45 - 2021-12-13 15:12 - 000003058 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-915892368-1021380908-836815241-1001
2022-02-24 21:45 - 2021-03-19 04:25 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-02-24 21:45 - 2021-03-19 04:25 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-02-24 21:45 - 2020-08-18 19:25 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-02-24 21:45 - 2020-08-18 19:25 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-24 21:45 - 2020-08-18 19:25 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-24 21:45 - 2020-08-18 19:25 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-24 21:45 - 2020-08-18 19:25 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-24 21:45 - 2020-08-18 19:25 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-24 21:45 - 2020-08-18 19:25 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-24 21:45 - 2020-08-18 19:25 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-24 21:45 - 2020-08-18 19:25 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-24 21:45 - 2020-08-18 19:25 - 000002854 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-915892368-1021380908-836815241-1001
2022-02-24 21:45 - 2020-08-18 19:25 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-24 21:45 - 2020-08-18 19:25 - 000002586 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2022-02-24 21:45 - 2020-08-18 19:25 - 000002554 _____ C:\WINDOWS\system32\Tasks\AutoPico Daily Restart
2022-02-24 21:01 - 2020-08-18 19:25 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2022-02-24 19:50 - 2019-03-25 18:06 - 000000000 ____D C:\Users\Tunguska\AppData\Local\CrashDumps
2022-02-24 19:42 - 2019-07-17 16:11 - 000000000 ____D C:\Users\Tunguska\Desktop\mp3 auto zaloha
2022-02-23 23:03 - 2020-08-18 19:19 - 000000000 ____D C:\Users\Tunguska
2022-02-23 18:27 - 2019-03-21 20:55 - 000000000 ____D C:\Users\Tunguska\AppData\Roaming\discord
2022-02-23 17:52 - 2019-03-25 18:54 - 000000000 ____D C:\Users\Tunguska\AppData\Local\Discord
2022-02-23 17:03 - 2021-05-14 17:55 - 002522256 _____ (Wellbia.com Co., Ltd.) C:\WINDOWS\xhunter1.sys
2022-02-20 19:53 - 2019-03-25 18:12 - 000000000 ____D C:\Users\Tunguska\AppData\Local\D3DSCache
2022-02-20 14:45 - 2019-03-25 18:54 - 000002242 _____ C:\Users\Tunguska\Desktop\Discord.lnk
2022-02-19 18:57 - 2021-03-19 04:26 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-02-19 17:43 - 2019-03-21 20:03 - 000000000 ____D C:\Users\Tunguska\Desktop\Focus ST - objednavky + info
2022-02-19 08:21 - 2020-10-23 19:22 - 000267904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2022-02-19 08:21 - 2020-08-18 19:25 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2022-02-19 08:21 - 2020-04-21 03:27 - 000545784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2022-02-19 08:21 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-02-19 08:21 - 2019-03-21 20:21 - 000550904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2022-02-19 08:21 - 2019-03-21 20:21 - 000368664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2022-02-19 08:21 - 2019-03-21 20:21 - 000317696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2022-02-19 08:21 - 2019-03-21 20:21 - 000251928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2022-02-19 08:21 - 2019-03-21 20:21 - 000108888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2022-02-19 08:21 - 2019-03-21 20:21 - 000099352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2022-02-19 08:21 - 2019-03-21 20:21 - 000082912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2022-02-19 08:21 - 2019-03-21 20:21 - 000041352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2022-02-19 08:20 - 2019-03-21 20:21 - 000854272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2022-02-19 08:20 - 2019-03-21 20:21 - 000226328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2022-02-19 08:20 - 2019-03-21 20:21 - 000035720 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2022-02-18 09:23 - 2021-01-22 04:35 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-02-18 04:21 - 2019-03-25 18:44 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-02-18 04:21 - 2019-03-25 18:44 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-02-17 20:57 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-02-17 20:45 - 2021-10-09 06:56 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-02-17 04:29 - 2020-08-18 19:19 - 000002386 _____ C:\Users\Tunguska\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-02-16 15:35 - 2019-03-25 17:16 - 000000000 ____D C:\Users\Tunguska\AppData\Local\NVIDIA
2022-02-16 15:25 - 2019-03-27 15:05 - 000001443 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2022-02-16 15:25 - 2019-03-25 16:34 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2022-02-16 15:25 - 2019-03-25 16:32 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2022-02-16 15:25 - 2019-03-25 16:31 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2022-02-14 15:41 - 2021-04-01 17:38 - 000000000 ____D C:\Users\Tunguska\Desktop\Fiat Tipo
2022-02-11 04:20 - 2020-08-18 19:18 - 000351616 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-02-10 22:10 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-02-10 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-02-10 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-02-10 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-02-10 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-02-10 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-02-10 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-02-10 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-02-10 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-02-10 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-02-10 22:10 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2022-02-10 19:34 - 2020-01-23 15:17 - 007613344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2022-02-10 19:18 - 2020-08-18 19:24 - 002877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-02-10 19:18 - 2015-10-30 09:13 - 000414870 __RSH C:\bootmgr
2022-02-10 15:11 - 2019-03-25 16:43 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-02-10 15:10 - 2019-03-25 16:43 - 149611728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-02-08 15:18 - 2019-03-25 18:44 - 000000000 ____D C:\ProgramData\Mozilla
2022-02-06 21:18 - 2019-03-21 20:46 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2022-02-06 19:01 - 2019-12-30 21:23 - 000000000 ____D C:\Users\Tunguska\AppData\Local\DayZ Launcher
2022-02-06 16:47 - 2019-03-25 22:47 - 000000000 ____D C:\Users\Tunguska\AppData\Local\DayZ
2022-01-31 08:51 - 2021-11-01 08:50 - 000000000 ____D C:\Users\Tunguska\Desktop\Cesťák
2022-01-28 12:50 - 2019-03-25 17:16 - 002859520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2022-01-28 12:50 - 2019-03-25 17:16 - 002201800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2022-01-28 12:50 - 2019-03-25 17:16 - 001295872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
==================== Files in the root of some directories ========
2019-03-25 18:13 - 2019-01-23 01:01 - 017383424 _____ () C:\Users\Tunguska\AppData\Roaming\Sandra.mdb
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24-02-2022
Ran by Tunguska (25-02-2022 15:53:36)
Running from E:\stazeno
Microsoft Windows 10 Pro Version 21H1 19043.1526 (X64) (2020-08-18 18:25:44)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-915892368-1021380908-836815241-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-915892368-1021380908-836815241-503 - Limited - Disabled)
Guest (S-1-5-21-915892368-1021380908-836815241-501 - Limited - Disabled)
Tunguska (S-1-5-21-915892368-1021380908-836815241-1001 - Administrator - Enabled) => C:\Users\Tunguska
WDAGUtilityAccount (S-1-5-21-915892368-1021380908-836815241-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Reader XI (11.0.23) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
Aliens vs. Predator 2 (HKLM-x32\...\{3EF79591-BF16-4CF8-8FF0-D8AD968228B1}) (Version: - )
Audacity 2.3.3 (HKLM-x32\...\Audacity_is1) (Version: 2.3.3 - Audacity Team)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 22.1.2504 - Avast Software)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlestate Games Launcher 12.9.0.1521 (HKLM-x32\...\{B0FDA062-7581-4D67-B085-C4E7C358037F}_is1) (Version: 12.9.0.1521 - Battlestate Games)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.73.1083 - AB Team, d.o.o.)
CPUID CPU-Z 1.87 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.87 - CPUID, Inc.)
CrystalDiskInfo 8.8.9 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.8.9 - Crystal Dew World)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.10.0.0797 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-915892368-1021380908-836815241-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
Dolby Digital Live Pack (HKLM-x32\...\Dolby Digital Live Pack) (Version: 3.03 - Creative Technology Limited)
DTS Connect Pack (HKLM-x32\...\DTS Connect Pack) (Version: 1.00 - Creative Technology Limited)
DZSALauncher version 0.0.5.2 (HKLM-x32\...\DZSALauncher_is1) (Version: 0.0.5.2 - Maca134)
Epic Games Launcher (HKLM-x32\...\{A398FCC0-8E8B-409E-90E9-ACF4671633F2}) (Version: 1.1.183.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Escape from Tarkov (HKLM-x32\...\EscapeFromTarkov) (Version: 0.12.11.1.13487 - Battlestate Games)
Fraps (HKLM-x32\...\Fraps) (Version: - )
Freemake Video Converter verze 4.1.10.0 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.10.0 - Ellora Assets Corporation)
Geeks3D FurMark 1.24.1.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: 1.24.1.0 - Geeks3D)
IrfanView 4.53 (64-bit) (HKLM\...\IrfanView64) (Version: 4.53 - Irfan Skiljan)
Java 8 Update 311 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180311F0}) (Version: 8.0.3110.11 - Oracle Corporation)
KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version: - )
Kontrola stavu osobního počítače s Windows (HKLM\...\{88EC8D4A-54AB-4A7F-BDE9-4AD906D9D11F}) (Version: 3.2.2110.14001 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Legion Accessory Central (HKLM-x32\...\{36136AB2-8565-4A03-90DD-197DD5AEA090}_is1) (Version: 2.0.6.01271 - Lenovo)
Logitech Gaming Software 9.02 (HKLM\...\Logitech Gaming Software) (Version: 9.02.65 - Logitech Inc.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 98.0.1108.56 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-915892368-1021380908-836815241-1001\...\OneDriveSetup.exe) (Version: 22.012.0117.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{16E50919-B07A-4B4E-994A-476D4773F5BF}) (Version: 3.65.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27024 (HKLM-x32\...\{5fb2083a-f3cc-4b78-93ff-bd9788b5de01}) (Version: 14.16.27024.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.16.27024 (HKLM-x32\...\{2ff11a2a-f7ac-4a6c-8cd4-c7bb974f3642}) (Version: 14.16.27024.1 - Microsoft Corporation)
MKVToolNix 32.0.0 (32-bit) (HKLM-x32\...\MKVToolNix) (Version: 32.0.0 - Moritz Bunkus)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 97.0.1 (x64 cs)) (Version: 97.0.1 - Mozilla)
Mozilla Firefox 66.0.1 (x64 cs) (HKU\S-1-5-21-915892368-1021380908-836815241-1001\...\Mozilla Firefox 66.0.1 (x64 cs)) (Version: 66.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 66.0.1 - Mozilla)
MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD)
Nero 7 Premium (HKLM-x32\...\{C6115A28-F277-4E82-B067-84D28BF21029}) (Version: 7.03.1357 - Nero AG)
NVIDIA FrameView SDK 1.2.7321.30900954 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.7321.30900954 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.25.0.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.25.0.84 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 511.79 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 511.79 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
NVIDIA USBC Driver 1.46.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.46.831.832 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.108.49699 - Electronic Arts, Inc.)
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22589 - Microsoft Corporation)
RivaTuner Statistics Server 7.2.3 (HKLM-x32\...\RTSS) (Version: 7.2.3 - Unwinder)
SiSoftware Sandra Lite Titanium.SP3 (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2596}_is1) (Version: 28.40.2018.12 - SiSoftware)
Sound Blaster Z-Series (HKLM-x32\...\{DAB64FB1-0BBB-486E-9C57-A3E34F463AEB}) (Version: 1.01.10 - Creative Technology Limited)
Sound Blaster Z-Series Extras (HKLM-x32\...\{9D9DB4BA-E352-4AC8-AD2B-B10104F5AB80}) (Version: 1.0 - Creative Technology Limited)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{FBA3961B-D1DF-493C-BC1F-E67D3B832895}) (Version: 2.56.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 85.0 - Ubisoft)
Winamp (remove only) (HKLM-x32\...\Winamp) (Version: - )
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
Zoner Photo Studio 18 (HKLM\...\ZonerPhotoStudio18_CZ_is1) (Version: 18.0.1.2 - ZONER software)
Packages:
=========
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.212.300.0_x64__kgqvnymyfvs32 [2022-02-25] (king.com)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-11-13] (Microsoft Corporation)
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.19.0_neutral__8xx8rvfyw5nnt [2021-11-04] (Instagram)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-03-25] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-03-25] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.12.2180.0_x64__8wekyb3d8bbwe [2022-02-25] (Microsoft Studios) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-02-16] (NVIDIA Corp.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-02-19] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-02-19] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-02-19] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1-x32: [Cover Designer] -> {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} => C:\Program Files (x86)\Nero\Nero 7\Nero CoverDesigner\CoverEdExtension.dll [2007-07-24] (Nero AG -> Nero AG)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-03-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-02-19] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-03-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_48a94de4b861e2fb\nvshext.dll [2022-02-10] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-02-19] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [VIDC.FPS1] => C:\WINDOWS\system32\frapsv64.dll [71680 2013-02-26] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2013-02-26] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2022-02-03 16:01 - 2020-03-12 16:01 - 000095232 _____ () [File not signed] C:\Program Files (x86)\Lenovo\Legion Accessory Central\hidapi.dll
2022-02-03 16:01 - 2019-03-28 10:40 - 000304128 _____ () [File not signed] C:\Program Files (x86)\Lenovo\Legion Accessory Central\uv.dll
2019-03-21 20:46 - 2009-03-18 16:00 - 000151552 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\ShareDLL\CADI\CTCadiEP.dll
2014-07-03 17:22 - 2014-07-03 17:22 - 000555008 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\CTAudEp.dll
2011-09-16 17:04 - 2011-09-16 17:04 - 000238080 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\CTLoadRs.dll
2013-02-27 11:29 - 2013-02-27 11:29 - 000251904 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\HKDetect.dll
2003-03-19 06:14 - 2003-03-19 06:14 - 000499712 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Ahead\Lib\MSVCP71.dll
2003-02-21 14:42 - 2003-02-21 14:42 - 000348160 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Ahead\Lib\MSVCR71.dll
2019-03-21 22:28 - 2020-03-16 14:05 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2019-03-21 22:28 - 2020-03-16 14:06 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2018-04-06 19:29 - 2018-04-06 19:29 - 002286747 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\LIBEAY32.dll
2018-04-06 19:29 - 2018-04-06 19:29 - 000416627 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\ssleay32.dll
2019-03-21 22:28 - 2019-07-12 08:23 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2021-12-31 19:37 - 2019-07-12 08:23 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2021-12-31 19:37 - 2019-07-12 08:23 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2021-12-31 19:37 - 2019-07-12 08:23 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2021-12-31 19:37 - 2019-07-12 08:23 - 000146432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2021-12-31 19:37 - 2019-07-12 08:23 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2021-12-31 19:37 - 2019-07-12 08:23 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Tunguska\Data aplikací:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Tunguska\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\ssv.dll [2021-11-11] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\jp2ssv.dll [2021-11-11] (Oracle America, Inc. -> Oracle Corporation)
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://files.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareupdate/ocx/150323/CTPID.cab
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2015-10-30 08:24 - 2015-10-30 08:21 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-915892368-1021380908-836815241-1001\Control Panel\Desktop\\Wallpaper -> E:\Tapety\full-hd-forest-wallpapers-2.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{77FF9900-B0D7-471E-A84B-74D26E672C81}C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe => No File
FirewallRules: [TCP Query User{E2C13B3C-0E6E-4B7F-B29D-FC36C28A3F69}C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe => No File
FirewallRules: [UDP Query User{8A0A6FF7-08F5-4FE8-B63D-041146F01347}E:\hry 2016\the vanishing of ethan carter redux\ethancarter\binaries\win64\ethancarter-win64-shipping.exe] => (Allow) E:\hry 2016\the vanishing of ethan carter redux\ethancarter\binaries\win64\ethancarter-win64-shipping.exe => No File
FirewallRules: [TCP Query User{7E11ED3E-C83B-413C-9FEF-D118EB40D4D6}E:\hry 2016\the vanishing of ethan carter redux\ethancarter\binaries\win64\ethancarter-win64-shipping.exe] => (Allow) E:\hry 2016\the vanishing of ethan carter redux\ethancarter\binaries\win64\ethancarter-win64-shipping.exe => No File
FirewallRules: [UDP Query User{8C1BB5EC-4F62-42D2-9849-693497537BCF}E:\hry 2016\the vanishing of ethan carter redux\ethancarter\binaries\win64\ethancarter-win64-console.exe] => (Allow) E:\hry 2016\the vanishing of ethan carter redux\ethancarter\binaries\win64\ethancarter-win64-console.exe => No File
FirewallRules: [TCP Query User{83B984AC-290C-42E0-9F96-7DAAC10B8631}E:\hry 2016\the vanishing of ethan carter redux\ethancarter\binaries\win64\ethancarter-win64-console.exe] => (Allow) E:\hry 2016\the vanishing of ethan carter redux\ethancarter\binaries\win64\ethancarter-win64-console.exe => No File
FirewallRules: [{7507E460-6A20-4EEB-93B0-52BD76428DF5}] => (Allow) E:\Programy\Steam\steamapps\common\DayZ\DayZ_x64.exe => No File
FirewallRules: [{7AA3719C-AE2D-4BC4-AB0F-C493D07FA1DA}] => (Allow) E:\Programy\Steam\steamapps\common\DayZ\DayZ_x64.exe => No File
FirewallRules: [{4CF54EA8-376F-4608-B1B6-2B97FF4D37EA}] => (Allow) E:\Programy\Steam\steamapps\common\DayZ\DayZ_BE.exe => No File
FirewallRules: [{6DE32666-8417-469B-9936-7EC9BDE39A68}] => (Allow) E:\Programy\Steam\steamapps\common\DayZ\DayZ_BE.exe => No File
FirewallRules: [{FC60A8F7-925D-43DF-8851-FF9FB7920A6A}] => (Allow) E:\Programy\Steam\steamapps\common\DayZ\DayZLauncher.exe => No File
FirewallRules: [{994F2144-F55A-4EEC-A808-F0D836401A36}] => (Allow) E:\Programy\Steam\steamapps\common\DayZ\DayZLauncher.exe => No File
FirewallRules: [UDP Query User{B07B714A-CC7C-4F1B-AD44-DFBB1B958EE6}E:\hry 2016\world of warcraft\_classic_\utils\wowvoiceproxy.exe] => (Allow) E:\hry 2016\world of warcraft\_classic_\utils\wowvoiceproxy.exe => No File
FirewallRules: [TCP Query User{A8DBDB9C-03C9-4167-A9D3-44BFF43DC8AA}E:\hry 2016\world of warcraft\_classic_\utils\wowvoiceproxy.exe] => (Allow) E:\hry 2016\world of warcraft\_classic_\utils\wowvoiceproxy.exe => No File
FirewallRules: [{E00438F6-F39F-47E1-8B94-3481D90FC202}] => (Allow) C:\Program Files\Zoner\Photo Studio 18\Program32\MediaServer.exe (ZONER software) [File not signed]
FirewallRules: [UDP Query User{5AF47D02-7926-47E9-B92D-6A61E09C028B}E:\programy\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) E:\programy\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [TCP Query User{55594864-E7EB-4BEF-B6C4-FED799543934}E:\programy\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) E:\programy\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [{23A7D48E-4783-4DD3-92DF-DE7B267C44EF}] => (Allow) C:\WINDOWS\AutoKMS\AutoKMS.exe => No File
FirewallRules: [{DE87FD7C-B532-4094-B9EB-275123DFA4AE}] => (Allow) C:\WINDOWS\AutoKMS\AutoKMS.exe => No File
FirewallRules: [{D76E8226-A274-4E4F-8781-D814BB3AB981}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [UDP Query User{8B2BF43C-827B-41CF-B4D4-9FFA8B1CE21D}C:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) C:\program files (x86)\origin games\apex\r5apex.exe => No File
FirewallRules: [TCP Query User{D6A09A61-A2ED-4BD1-8630-E37FAC063E21}C:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) C:\program files (x86)\origin games\apex\r5apex.exe => No File
FirewallRules: [UDP Query User{B8AAC665-1C89-43E3-B567-FD9B90E4FFA5}C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe => No File
FirewallRules: [TCP Query User{C8370D8A-13FA-4665-958A-E3BBE23B216B}C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe => No File
FirewallRules: [{CEF6E0CA-AC00-42C9-8BB9-ED8403B68770}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite Titanium.SP3\RpcAgentSrv.exe (SiSoftware SPC -> SiSoftware) [File not signed]
FirewallRules: [{42804546-1E38-4662-92DA-1B6F2A66EB27}] => (Allow) E:\Programy\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{21E83E68-7EE1-4E04-AF3C-A4D29BBA4712}] => (Allow) E:\Programy\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{D644C239-01EE-4251-838E-1B41A6D0E822}] => (Allow) E:\Programy\Steam\Steam.exe => No File
FirewallRules: [{35A6F5A9-BD89-4B79-AC09-7243E7AC3FAC}] => (Allow) E:\Programy\Steam\Steam.exe => No File
FirewallRules: [UDP Query User{275A7957-A01B-4468-863A-23C754ADB165}C:\users\tunguska\appdata\local\mozilla firefox\firefox.exe] => (Allow) C:\users\tunguska\appdata\local\mozilla firefox\firefox.exe => No File
FirewallRules: [TCP Query User{D8786D51-824A-4684-B98D-3E7A302EAD49}C:\users\tunguska\appdata\local\mozilla firefox\firefox.exe] => (Allow) C:\users\tunguska\appdata\local\mozilla firefox\firefox.exe => No File
FirewallRules: [{0E62FFDC-6C17-4B92-BEF7-67B035212010}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{28CC23CD-5E8D-4B36-AB01-C328FE220216}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{C67183F2-23F1-4684-8EC5-77F0E9637BCF}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{ACC11A00-7A72-4529-89E7-A43B0E56DEC4}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{AB434918-70D8-4265-90E8-3D7A1F34D146}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [UDP Query User{23AF2AC9-A018-4889-B7EA-B72921076C49}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [TCP Query User{A80C5C26-0063-4D7B-88B8-DA4FEB31E242}E:\programy\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) E:\programy\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [UDP Query User{A2A753F9-AC93-49A9-8BE6-915932588E9C}E:\programy\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) E:\programy\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [TCP Query User{8FF987D0-7D9C-4EB2-9C01-C54A328DF29F}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{B1B29813-850E-416C-88A2-45FEFC0D6282}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{B4A8D9AC-63D5-4BD7-9F65-6A888DBBFCB5}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{5685D2AE-AE70-49B3-A257-7872C3E01D94}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{C1F7E756-6845-428C-915D-0BD674F8DDF4}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe => No File
FirewallRules: [UDP Query User{07E632F3-2847-45FF-9869-14E72975B547}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe => No File
FirewallRules: [TCP Query User{49C59EBA-B332-4E1C-84BD-C1C87C488FEB}E:\hry 2016\rage 2\rage2.exe] => (Allow) E:\hry 2016\rage 2\rage2.exe => No File
FirewallRules: [UDP Query User{CCFA616B-D270-4D2F-9B3C-F5DC9C22A649}E:\hry 2016\rage 2\rage2.exe] => (Allow) E:\hry 2016\rage 2\rage2.exe => No File
FirewallRules: [TCP Query User{554ABE43-0D40-4ECF-982F-B0CC3044E64C}C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe => No File
FirewallRules: [UDP Query User{5B4E0FF3-CB63-4067-AA0F-F373766E1FF7}C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe => No File
FirewallRules: [TCP Query User{326576AD-229F-409C-A8A9-CE7939F3A00A}E:\hry 2016\medal of honor - allied assault war chest\mohaa.exe] => (Allow) E:\hry 2016\medal of honor - allied assault war chest\mohaa.exe => No File
FirewallRules: [UDP Query User{18278EB1-2A9F-4A42-80A4-EB4F86905B71}E:\hry 2016\medal of honor - allied assault war chest\mohaa.exe] => (Allow) E:\hry 2016\medal of honor - allied assault war chest\mohaa.exe => No File
FirewallRules: [{0149E8EB-5973-411E-B5E9-BF149C836374}] => (Allow) E:\Programy\Steam\steamapps\common\Alien Isolation\AI.exe => No File
FirewallRules: [{A8F28768-9EA3-428F-84EA-DDCA18F55662}] => (Allow) E:\Programy\Steam\steamapps\common\Alien Isolation\AI.exe => No File
FirewallRules: [TCP Query User{655C1B94-E772-461B-8321-20BE8814D04E}E:\hry 2016\wrc 9 fia world rally championship\wrc9.exe] => (Allow) E:\hry 2016\wrc 9 fia world rally championship\wrc9.exe => No File
FirewallRules: [UDP Query User{F4EEA7F3-25B6-45F2-B7F6-5278F2DF7052}E:\hry 2016\wrc 9 fia world rally championship\wrc9.exe] => (Allow) E:\hry 2016\wrc 9 fia world rally championship\wrc9.exe => No File
FirewallRules: [TCP Query User{9E186AC0-E553-4A01-AAF7-1E9D018F22FF}C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe => No File
FirewallRules: [UDP Query User{C3EBF154-2DF7-45C0-B0AD-4D4F98E5EA78}C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe => No File
FirewallRules: [{4CC51B90-2D12-49F0-8EB7-747D6CA8F395}] => (Allow) F:\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{056B5390-DA57-4BE4-A0F1-9F3B8F7E3ABA}] => (Allow) F:\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{C0ADB008-C15A-44AE-8AFD-B508C32CFD74}] => (Allow) F:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{6B3D03A8-A743-4412-BE2B-673FDD4DA398}] => (Allow) F:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{08910666-5520-455C-A08D-397BCB75259A}] => (Allow) F:\Steam\steamapps\common\Warframe\Tools\Launcher.exe => No File
FirewallRules: [{42A348FF-F54C-414C-BB4D-2AF0A46A09DC}] => (Allow) F:\Steam\steamapps\common\Warframe\Warframe.x64.exe => No File
FirewallRules: [{C7035B75-9824-45F4-AB53-DCE2E89EB78C}] => (Allow) F:\Steam\steamapps\common\Warframe\Warframe.x64.exe => No File
FirewallRules: [{07825D7E-70E6-477C-A3D8-698491BC3292}] => (Allow) F:\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe => No File
FirewallRules: [{C74EC128-F9AC-4590-8BCD-A51500D43B40}] => (Allow) F:\Steam\steamapps\common\Warframe\Tools\Launcher.exe => No File
FirewallRules: [{2AC3EF39-A507-4DA5-81A9-CCA0A0419B47}] => (Allow) F:\Steam\steamapps\common\Warframe\Warframe.x64.exe => No File
FirewallRules: [{048F27BA-B163-40E8-921F-A6650FA323AB}] => (Allow) F:\Steam\steamapps\common\Warframe\Warframe.x64.exe => No File
FirewallRules: [{217F52C6-449B-4565-A64D-DAEAB56CD792}] => (Allow) F:\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe => No File
FirewallRules: [{C39ADB6E-A67B-4E5D-85AE-E01E49939DB4}] => (Allow) F:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe () [File not signed]
FirewallRules: [{7811C025-1802-49B8-8EC9-FAF134468CE8}] => (Allow) F:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe () [File not signed]
FirewallRules: [TCP Query User{905D190C-FCB2-437A-84C9-19DFE62140CD}F:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) F:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [UDP Query User{BEDB8725-A467-4207-B34A-F580EF71828D}F:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) F:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [TCP Query User{00C55F16-3914-45DE-9B8F-7802EDDC665E}F:\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) F:\steam\steamapps\common\7 days to die\7daystodie.exe => No File
FirewallRules: [UDP Query User{6C661CD4-390A-4CA9-B31D-E7F025FEC170}F:\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) F:\steam\steamapps\common\7 days to die\7daystodie.exe => No File
FirewallRules: [{73FA229F-6355-4C61-A07F-BF71B9770C0E}] => (Allow) F:\Steam\steamapps\common\Return to Castle Wolfenstein\WolfSP.exe () [File not signed]
FirewallRules: [{E486312E-F007-4AAD-916C-2C43D42EF433}] => (Allow) F:\Steam\steamapps\common\Return to Castle Wolfenstein\WolfSP.exe () [File not signed]
FirewallRules: [{35893331-EEB7-4918-8E20-83469A8CC180}] => (Allow) F:\Steam\steamapps\common\Return to Castle Wolfenstein\WolfMP.exe () [File not signed]
FirewallRules: [{1AF64264-2CBB-46D2-90B6-4CB95C50E87C}] => (Allow) F:\Steam\steamapps\common\Return to Castle Wolfenstein\WolfMP.exe () [File not signed]
FirewallRules: [{4088E926-187C-427F-8632-830B69096971}] => (Allow) F:\Steam\steamapps\common\Mafia\Mafia\Game.exe (Illusion Softworks) [File not signed]
FirewallRules: [{C36BD4CF-A975-45DD-9ED9-171D1112327A}] => (Allow) F:\Steam\steamapps\common\Mafia\Mafia\Game.exe (Illusion Softworks) [File not signed]
FirewallRules: [{8653866C-A62E-4E72-B559-BCBD613E8521}] => (Allow) F:\Steam\steamapps\common\Mafia\Mafia\Setup.exe () [File not signed]
FirewallRules: [{63906209-CE0B-4F04-848F-8ED3188225A5}] => (Allow) F:\Steam\steamapps\common\Mafia\Mafia\Setup.exe () [File not signed]
FirewallRules: [{AFA46120-BFBB-4359-8C62-A9D410153240}] => (Allow) F:\Steam\steamapps\common\Unreal Tournament 2004\System\UT2004.exe () [File not signed]
FirewallRules: [{06B472EE-0EBA-49D6-AF11-947E3CA7922E}] => (Allow) F:\Steam\steamapps\common\Unreal Tournament 2004\System\UT2004.exe () [File not signed]
FirewallRules: [TCP Query User{290E50AF-20A1-4FC9-AFD7-2277389D68CB}C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe => No File
FirewallRules: [UDP Query User{DCF40D4D-A65D-44C0-A340-E83A742A3F30}C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe => No File
FirewallRules: [{29BA6A08-B80D-43BE-BC11-34ACFA51C350}] => (Allow) F:\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{69EAE8CB-D4D4-428F-AFBB-5E0EEED32E5B}] => (Allow) F:\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [TCP Query User{7C64B3BF-937C-447A-9E59-C30F852FC28C}F:\steam\steamapps\common\need for speed(tm) most wanted\nfs13.exe] => (Allow) F:\steam\steamapps\common\need for speed(tm) most wanted\nfs13.exe => No File
FirewallRules: [UDP Query User{787216C9-AA6F-44CD-8694-E7037979C0D4}F:\steam\steamapps\common\need for speed(tm) most wanted\nfs13.exe] => (Allow) F:\steam\steamapps\common\need for speed(tm) most wanted\nfs13.exe => No File
FirewallRules: [TCP Query User{5FF55AF9-13BC-4F5D-8C0D-A79CB4BF7B63}F:\steam\steamapps\common\battlefield 1\bf1.exe] => (Allow) F:\steam\steamapps\common\battlefield 1\bf1.exe => No File
FirewallRules: [UDP Query User{00E88015-F3C5-459B-8718-3A7BD9CE5AA3}F:\steam\steamapps\common\battlefield 1\bf1.exe] => (Allow) F:\steam\steamapps\common\battlefield 1\bf1.exe => No File
FirewallRules: [TCP Query User{BD38B2FA-4BD3-4401-A9DC-4C35C18AAEFB}C:\program files (x86)\java\jre1.8.0_301\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_301\bin\javaw.exe => No File
FirewallRules: [UDP Query User{FC3284FA-BAF2-4CFC-AEB5-8009B1B7C8B5}C:\program files (x86)\java\jre1.8.0_301\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_301\bin\javaw.exe => No File
FirewallRules: [{8E5F3516-9780-4E4E-A207-D1083290184A}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{4942D2F3-33EB-4C2F-BA50-902F08B955A5}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [TCP Query User{F649C77D-9580-45F4-8161-DBD91D8A2F01}F:\users\tunguska\appdata\local\enlisted\launcher.exe] => (Allow) F:\users\tunguska\appdata\local\enlisted\launcher.exe => No File
FirewallRules: [UDP Query User{9DE2FE0B-0EAA-41E4-95C0-2F879A9E83B6}F:\users\tunguska\appdata\local\enlisted\launcher.exe] => (Allow) F:\users\tunguska\appdata\local\enlisted\launcher.exe => No File
FirewallRules: [{D8B843ED-9458-4DF9-8BC6-BE2C4C72EEB8}] => (Allow) F:\Steam\steamapps\common\Black Mesa\bms.exe () [File not signed]
FirewallRules: [{4C485576-93FF-4B08-BEF9-3A5D9B2E0BA8}] => (Allow) F:\Steam\steamapps\common\Black Mesa\bms.exe () [File not signed]
FirewallRules: [{47F1ABFF-74DD-4199-A999-764CB16A2502}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{65D4440C-0C05-47C2-87F4-CCB6E6BD0BFC}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B40291A1-44CF-41BE-83C5-344C97839CF0}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{34892229-8A48-4E81-8D5B-BA5593ED1BDC}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5EBC8AAF-182C-4E20-BD6C-4EC84E500802}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5F7BA805-0874-4403-8FF1-747BE1A25A6B}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{66510823-75B5-4A35-8C63-E1320F3F1BB3}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{FB06F8D6-5BC9-41D2-A16A-D68830DF8E37}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{41E11769-BBD0-4A99-921C-A2C78122D4A2}] => (Allow) F:\Steam\steamapps\common\DayZ\DayZLauncher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{8882CD7A-B57F-485E-8F07-33C606D8A80F}] => (Allow) F:\Steam\steamapps\common\DayZ\DayZLauncher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{AD75D3CA-0849-4034-9036-C40F99D78303}] => (Allow) F:\Steam\steamapps\common\DayZ\DayZ_BE.exe (BOHEMIA INTERACTIVE a.s. -> BattlEye Innovations)
FirewallRules: [{6A6C93EE-B157-49D2-BCAC-20CEE2D2B2AA}] => (Allow) F:\Steam\steamapps\common\DayZ\DayZ_BE.exe (BOHEMIA INTERACTIVE a.s. -> BattlEye Innovations)
FirewallRules: [{D2BAE14C-2D9B-46FD-9FC0-D3403812AECB}] => (Allow) F:\Steam\steamapps\common\DayZ\DayZ_x64.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{A768B73F-6168-4A68-9C69-1A8E9C97126C}] => (Allow) F:\Steam\steamapps\common\DayZ\DayZ_x64.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{05BFA909-0C95-4530-97CC-2518F9FE12B4}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite Titanium.SP3\WNt600x64\RpcSandraSrv.exe (SiSoftware SPC -> SiSoftware) [File not signed]
FirewallRules: [{0564C4E5-D59F-4772-9A53-F79F053677DC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.80.194.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CCB86F00-85FB-4ECA-93E0-A3A40CF7B7DC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.80.194.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{87370F9E-DDD1-4341-9A62-EABD492C8C7A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.80.194.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{1A7B39EC-1489-4B22-BB2C-9C11CE88C7BB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.80.194.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9A93B5F1-996D-4B9F-8A6A-1E38B933549B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{03FC15F9-1DFD-48CE-A368-722F1E01AE2E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{80AB0EB5-E2C7-4FC2-B0D4-678EECB39C64}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{37BE6B63-6454-44F2-BE0F-554E33C8500B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{B35218CC-D2A0-4BE7-9385-7E973679EA9D}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{4BDC1F54-EA59-44D1-ABDD-245FA1985C8F}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:118.34 GB) (Free:41.72 GB) (35%)
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (02/24/2022 07:50:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: winamp.exe, verze: 5.3.2.1003, časové razítko: 0x456339e4
Název chybujícího modulu: iertutil.dll, verze: 11.0.19041.1503, časové razítko: 0x8cf7d6e8
Kód výjimky: 0xc0000005
Posun chyby: 0x001d0af0
ID chybujícího procesu: 0x29e8
Čas spuštění chybující aplikace: 0x01d829af6cd89c89
Cesta k chybující aplikaci: C:\Program Files (x86)\Winamp\winamp.exe
Cesta k chybujícímu modulu: C:\Windows\System32\iertutil.dll
ID zprávy: 28fcd654-0601-4ca7-b79e-1a65696558f9
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/24/2022 07:47:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: winamp.exe, verze: 5.3.2.1003, časové razítko: 0x456339e4
Název chybujícího modulu: iertutil.dll, verze: 11.0.19041.1503, časové razítko: 0x8cf7d6e8
Kód výjimky: 0xc0000005
Posun chyby: 0x001d0af0
ID chybujícího procesu: 0x2c30
Čas spuštění chybující aplikace: 0x01d829ac19c15330
Cesta k chybující aplikaci: C:\Program Files (x86)\Winamp\winamp.exe
Cesta k chybujícímu modulu: C:\Windows\System32\iertutil.dll
ID zprávy: b7ca0ef3-7b62-46b3-bc3f-3c278340f617
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/23/2022 05:05:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ucldr_battlegrounds_gl.exe, verze: 2021.6.29.973, časové razítko: 0x60dac8ea
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.1466, časové razítko: 0xe2f8ca76
Kód výjimky: 0xc0000374
Posun chyby: 0x00000000000ff199
ID chybujícího procesu: 0x784
Čas spuštění chybující aplikace: 0x01d828ceead8faee
Cesta k chybující aplikaci: C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: aca4a3ac-5ec6-4257-a03b-d9b4d867632b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/22/2022 06:40:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: winamp.exe, verze: 5.3.2.1003, časové razítko: 0x456339e4
Název chybujícího modulu: iertutil.dll, verze: 11.0.19041.1503, časové razítko: 0x8cf7d6e8
Kód výjimky: 0xc0000005
Posun chyby: 0x001d0af0
ID chybujícího procesu: 0x177c
Čas spuštění chybující aplikace: 0x01d828134fc68468
Cesta k chybující aplikaci: C:\Program Files (x86)\Winamp\winamp.exe
Cesta k chybujícímu modulu: C:\Windows\System32\iertutil.dll
ID zprávy: f5680044-e8a7-4efe-af18-d336c25e0da6
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/22/2022 06:40:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: winamp.exe, verze: 5.3.2.1003, časové razítko: 0x456339e4
Název chybujícího modulu: iertutil.dll, verze: 11.0.19041.1503, časové razítko: 0x8cf7d6e8
Kód výjimky: 0xc0000005
Posun chyby: 0x001d0af0
ID chybujícího procesu: 0x13a0
Čas spuštění chybující aplikace: 0x01d8280d31c023d6
Cesta k chybující aplikaci: C:\Program Files (x86)\Winamp\winamp.exe
Cesta k chybujícímu modulu: C:\Windows\System32\iertutil.dll
ID zprávy: 9c381d24-0f75-468d-a745-9701e4e7ed68
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/22/2022 05:56:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: winamp.exe, verze: 5.3.2.1003, časové razítko: 0x456339e4
Název chybujícího modulu: iertutil.dll, verze: 11.0.19041.1503, časové razítko: 0x8cf7d6e8
Kód výjimky: 0xc0000005
Posun chyby: 0x001d0af0
ID chybujícího procesu: 0x315c
Čas spuštění chybující aplikace: 0x01d827fcf432e139
Cesta k chybující aplikaci: C:\Program Files (x86)\Winamp\winamp.exe
Cesta k chybujícímu modulu: C:\Windows\System32\iertutil.dll
ID zprávy: 6d449c5f-8ac5-42f8-a50b-e826d604c1bd
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/21/2022 05:48:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: winamp.exe, verze: 5.3.2.1003, časové razítko: 0x456339e4
Název chybujícího modulu: iertutil.dll, verze: 11.0.19041.1503, časové razítko: 0x8cf7d6e8
Kód výjimky: 0xc0000005
Posun chyby: 0x001d0af0
ID chybujícího procesu: 0x33b0
Čas spuštění chybující aplikace: 0x01d827428a93832e
Cesta k chybující aplikaci: C:\Program Files (x86)\Winamp\winamp.exe
Cesta k chybujícímu modulu: C:\Windows\System32\iertutil.dll
ID zprávy: 3aa4f6ee-d6d5-4954-a1af-602c62f672ba
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/21/2022 05:37:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: winamp.exe, verze: 5.3.2.1003, časové razítko: 0x456339e4
Název chybujícího modulu: iertutil.dll, verze: 11.0.19041.1503, časové razítko: 0x8cf7d6e8
Kód výjimky: 0xc0000005
Posun chyby: 0x001d0af0
ID chybujícího procesu: 0xaa0
Čas spuštění chybující aplikace: 0x01d8273ff6231137
Cesta k chybující aplikaci: C:\Program Files (x86)\Winamp\winamp.exe
Cesta k chybujícímu modulu: C:\Windows\System32\iertutil.dll
ID zprávy: 9a14fe12-2502-480d-9aaf-e788e24aef84
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (02/23/2022 12:08:43 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (02/22/2022 08:25:32 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (02/20/2022 11:15:15 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HE8OVF9)
Description: Server {5F7F3F7B-1177-4D4B-B1DB-BC6F671B8F25} se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/19/2022 12:44:29 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HE8OVF9)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/19/2022 12:44:29 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HE8OVF9)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/19/2022 12:44:29 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HE8OVF9)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/19/2022 12:44:29 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HE8OVF9)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/19/2022 12:44:29 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HE8OVF9)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
================Event[0]:
Date: 2021-11-26 04:25:42
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.303.25.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16400.2
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.
Date: 2021-11-26 04:25:42
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.303.25.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16400.2
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.
Date: 2021-11-25 04:25:14
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.303.25.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16400.2
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.
Date: 2021-11-25 04:25:14
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.303.25.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16400.2
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.
CodeIntegrity:
===============
Date: 2022-02-25 15:40:33
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2022-02-25 15:39:25
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 3602 11/01/2012
Motherboard: ASUSTeK Computer INC. P8P67 REV 3.1
Processor: Intel(R) Core(TM) i5-3570K CPU @ 3.40GHz
Percentage of memory in use: 24%
Total physical RAM: 16351.13 MB
Available physical RAM: 12302.21 MB
Total Virtual: 32735.13 MB
Available Virtual: 27038.68 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:118.34 GB) (Free:41.72 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive e: (Nový svazek) (Fixed) (Total:1863.01 GB) (Free:53.79 GB) NTFS
Drive f: (Nový svazek) (Fixed) (Total:476.94 GB) (Free:109.43 GB) NTFS
\\?\Volume{2023efa1-0000-0000-0000-e09b1d000000}\ () (Fixed) (Total:0.8 GB) (Free:0.38 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 476.9 GB) (Disk ID: 95F9AFE7)
Partition 1: (Not Active) - (Size=476.9 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: 2023EFA1)
Partition 1: (Active) - (Size=118.3 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=824 MB) - (Type=27)
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 97524877)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu FRST. Díky moc!
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o kontrolu FRST. Díky moc!
ahoj,
citat:
Tvorba fixlistu pro FRST
•Spustte poznamkovy blok (Start-spustit-notepad)
•Zkopirujte skript >>
•Ulozte vytvoreny TXT jako fixlist.txt
•Presunte vytvoreny fixlist vedle FRST
Spustte znovu FRST.exe
•Kliknete na Fix
•Probehne oprava a vytvori log Fixlog.txt
Restart PC a dejte mi sem fixlog.txt
citat:
Tvorba fixlistu pro FRST
•Spustte poznamkovy blok (Start-spustit-notepad)
•Zkopirujte skript >>
Kód: Vybrat vše
Start
HKU\S-1-5-21-915892368-1021380908-836815241-1001\...\MountPoints2: {bfd559cd-41e4-11ea-8b3c-f46d042c1449} - "F:\LaunchU3.exe" -a
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe /StartMinimized (No File)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
S3 ucldr_battlegrounds_gl; "C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe" [X]
S3 zksvc; "C:\Program Files\Common Files\PUBG\zksvc.exe" [X]
S4 NVHDA; \SystemRoot\system32\drivers\nvhda64v.sys [X]
AlternateDataStreams: C:\Users\Tunguska\Data aplikací:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Tunguska\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
FirewallRules: [UDP Query User{77FF9900-B0D7-471E-A84B-74D26E672C81}C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe => No File
FirewallRules: [TCP Query User{E2C13B3C-0E6E-4B7F-B29D-FC36C28A3F69}C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_241\bin\javaw.exe => No File
FirewallRules: [UDP Query User{8A0A6FF7-08F5-4FE8-B63D-041146F01347}E:\hry 2016\the vanishing of ethan carter redux\ethancarter\binaries\win64\ethancarter-win64-shipping.exe] => (Allow) E:\hry 2016\the vanishing of ethan carter redux\ethancarter\binaries\win64\ethancarter-win64-shipping.exe => No File
FirewallRules: [TCP Query User{7E11ED3E-C83B-413C-9FEF-D118EB40D4D6}E:\hry 2016\the vanishing of ethan carter redux\ethancarter\binaries\win64\ethancarter-win64-shipping.exe] => (Allow) E:\hry 2016\the vanishing of ethan carter redux\ethancarter\binaries\win64\ethancarter-win64-shipping.exe => No File
FirewallRules: [UDP Query User{8C1BB5EC-4F62-42D2-9849-693497537BCF}E:\hry 2016\the vanishing of ethan carter redux\ethancarter\binaries\win64\ethancarter-win64-console.exe] => (Allow) E:\hry 2016\the vanishing of ethan carter redux\ethancarter\binaries\win64\ethancarter-win64-console.exe => No File
FirewallRules: [TCP Query User{83B984AC-290C-42E0-9F96-7DAAC10B8631}E:\hry 2016\the vanishing of ethan carter redux\ethancarter\binaries\win64\ethancarter-win64-console.exe] => (Allow) E:\hry 2016\the vanishing of ethan carter redux\ethancarter\binaries\win64\ethancarter-win64-console.exe => No File
FirewallRules: [{7507E460-6A20-4EEB-93B0-52BD76428DF5}] => (Allow) E:\Programy\Steam\steamapps\common\DayZ\DayZ_x64.exe => No File
FirewallRules: [{7AA3719C-AE2D-4BC4-AB0F-C493D07FA1DA}] => (Allow) E:\Programy\Steam\steamapps\common\DayZ\DayZ_x64.exe => No File
FirewallRules: [{4CF54EA8-376F-4608-B1B6-2B97FF4D37EA}] => (Allow) E:\Programy\Steam\steamapps\common\DayZ\DayZ_BE.exe => No File
FirewallRules: [{6DE32666-8417-469B-9936-7EC9BDE39A68}] => (Allow) E:\Programy\Steam\steamapps\common\DayZ\DayZ_BE.exe => No File
FirewallRules: [{FC60A8F7-925D-43DF-8851-FF9FB7920A6A}] => (Allow) E:\Programy\Steam\steamapps\common\DayZ\DayZLauncher.exe => No File
FirewallRules: [{994F2144-F55A-4EEC-A808-F0D836401A36}] => (Allow) E:\Programy\Steam\steamapps\common\DayZ\DayZLauncher.exe => No File
FirewallRules: [UDP Query User{B07B714A-CC7C-4F1B-AD44-DFBB1B958EE6}E:\hry 2016\world of warcraft\_classic_\utils\wowvoiceproxy.exe] => (Allow) E:\hry 2016\world of warcraft\_classic_\utils\wowvoiceproxy.exe => No File
FirewallRules: [TCP Query User{A8DBDB9C-03C9-4167-A9D3-44BFF43DC8AA}E:\hry 2016\world of warcraft\_classic_\utils\wowvoiceproxy.exe] => (Allow) E:\hry 2016\world of warcraft\_classic_\utils\wowvoiceproxy.exe => No File
E:\programy\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [TCP Query User{55594864-E7EB-4BEF-B6C4-FED799543934}E:\programy\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) E:\programy\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [{23A7D48E-4783-4DD3-92DF-DE7B267C44EF}] => (Allow) C:\WINDOWS\AutoKMS\AutoKMS.exe => No File
FirewallRules: [{DE87FD7C-B532-4094-B9EB-275123DFA4AE}] => (Allow) C:\WINDOWS\AutoKMS\AutoKMS.exe => No File
FirewallRules: [{42804546-1E38-4662-92DA-1B6F2A66EB27}] => (Allow) E:\Programy\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{21E83E68-7EE1-4E04-AF3C-A4D29BBA4712}] => (Allow) E:\Programy\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{D644C239-01EE-4251-838E-1B41A6D0E822}] => (Allow) E:\Programy\Steam\Steam.exe => No File
FirewallRules: [{35A6F5A9-BD89-4B79-AC09-7243E7AC3FAC}] => (Allow) E:\Programy\Steam\Steam.exe => No File
FirewallRules: [{08910666-5520-455C-A08D-397BCB75259A}] => (Allow) F:\Steam\steamapps\common\Warframe\Tools\Launcher.exe => No File
FirewallRules: [{42A348FF-F54C-414C-BB4D-2AF0A46A09DC}] => (Allow) F:\Steam\steamapps\common\Warframe\Warframe.x64.exe => No File
FirewallRules: [{C7035B75-9824-45F4-AB53-DCE2E89EB78C}] => (Allow) F:\Steam\steamapps\common\Warframe\Warframe.x64.exe => No File
FirewallRules: [{07825D7E-70E6-477C-A3D8-698491BC3292}] => (Allow) F:\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe => No File
FirewallRules: [{C74EC128-F9AC-4590-8BCD-A51500D43B40}] => (Allow) F:\Steam\steamapps\common\Warframe\Tools\Launcher.exe => No File
FirewallRules: [{2AC3EF39-A507-4DA5-81A9-CCA0A0419B47}] => (Allow) F:\Steam\steamapps\common\Warframe\Warframe.x64.exe => No File
FirewallRules: [{048F27BA-B163-40E8-921F-A6650FA323AB}] => (Allow) F:\Steam\steamapps\common\Warframe\Warframe.x64.exe => No File
FirewallRules: [{217F52C6-449B-4565-A64D-DAEAB56CD792}] => (Allow) F:\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe => No File
EmptyTemp:
Reboot:
End
•Presunte vytvoreny fixlist vedle FRST
Spustte znovu FRST.exe•Kliknete na Fix
•Probehne oprava a vytvori log Fixlog.txt
Restart PC a dejte mi sem fixlog.txtFRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Prosím o kontrolu FRST. Díky moc!
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-02-2022
Ran by Tunguska (administrator) on DESKTOP-HE8OVF9 (28-02-2022 15:37:57)
Running from E:\stazeno
Loaded Profiles: Tunguska
Platform: Microsoft Windows 10 Pro Version 21H1 19043.1526 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\AVAST Software\Avast\AvLaunch.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\SBZ.exe
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvLaunch.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(explorer.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(explorer.exe ->) (Nero AG -> Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
(INTERNET PROJECT LLC -> ) C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
(Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\Legion Accessory Central\legion_haw.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <9>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd) C:\Windows\SysWOW64\CtHdaSvc.exe
(services.exe ->) (Nero AG -> Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_48a94de4b861e2fb\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Prolific Technology Inc.) [File not signed] C:\Windows\SysWOW64\IoctlSvc.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1525_none_7e00daaa7c97a563\TiWorker.exe
(svchost.exe ->) (Nero AG -> Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18727048 2018-10-05] (Logitech Inc -> Logitech Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [157464 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.) [File not signed]
HKLM-x32\...\Run: [Sound Blaster Z-Series Control Panel] => C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\SBZ.exe [877056 2014-11-24] (Creative Technology Ltd) [File not signed]
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [203760 2018-05-04] (INTERNET PROJECT LLC -> )
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Leonvo Legion Startup] => C:\Program Files (x86)\Lenovo\Legion Accessory Central\legion_haw.exe [1254584 2022-01-27] (Lenovo -> Lenovo)
HKU\S-1-5-21-915892368-1021380908-836815241-1001\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [152872 2008-01-22] (Nero AG -> Nero AG)
HKU\S-1-5-21-915892368-1021380908-836815241-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [735336 2019-03-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0095ED1E-3C5A-43FB-8161-EBF5505CC905} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1009872 2021-11-02] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {055E7C9D-CA4A-4B21-B5B2-2C5BC7DCA0A1} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {0EE3AE58-8774-454E-88F1-6444A454E1F5} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {1A25ABC6-463E-4F1D-975F-DC9B52FDC17E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {29F6BDE0-344B-4443-85AA-0B84A260DF91} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647376 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {335453C8-D6B4-419C-B9A7-8A3545D903F9} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {3FF04241-F1FE-4A76-84EF-F64929EE503F} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {64BB4A8E-A9DD-43EA-BD3A-290F6AEBB355} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {6B860DAA-BEE0-4EB2-A892-AF72BA81F77F} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [743616 2015-12-02] (@ByELDI -> @ByELDI) [File not signed]
Task: {7431ABD5-30E7-4D7B-97AD-99441BFCAFC5} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {7A5C3960-82C1-446F-B952-431300D01347} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {82024F5F-DC43-49B1-A7A8-5E1E949F3608} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339472 2022-02-03] (Nvidia Corporation -> NVIDIA Corporation)
Task: {9083CFC3-9BCC-40C5-A628-31CBC33C209A} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1790184 2021-04-30] (Avast Software s.r.o. -> Avast Software)
Task: {A5D4B722-577C-49A2-A2E7-5C010CDC8DBF} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4992792 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
Task: {BF82FB91-9765-4DD7-B745-E81847C44825} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {D7C408F2-E7CE-4417-BB12-FCA87F35DFF6} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {DBC95834-5036-4E79-BEA9-94B9456B6AF2} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [782320 2019-10-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2334408d-2bb7-486b-9c23-43a628340e28}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge Profile: C:\Users\Tunguska\AppData\Local\Microsoft\Edge\User Data\Default [2022-02-13]
FireFox:
========
FF DefaultProfile: svkzk7eb.default-1589828617758
FF ProfilePath: C:\Users\Tunguska\AppData\Roaming\Mozilla\Firefox\Profiles\svkzk7eb.default-1589828617758 [2022-02-28]
FF DownloadDir: E:\stazeno
FF Homepage: Mozilla\Firefox\Profiles\svkzk7eb.default-1589828617758 -> google.cz
FF Notifications: Mozilla\Firefox\Profiles\svkzk7eb.default-1589828617758 -> hxxps://www.automobilovedily24.cz
FF Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\Tunguska\AppData\Roaming\Mozilla\Firefox\Profiles\svkzk7eb.default-1589828617758\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2022-01-27]
FF Plugin-x32: @java.com/DTPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-11-11] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-11-11] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8482384 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [563992 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [563992 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-03] (Avast Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8930120 2022-02-16] (BattlEye Innovations e.K. -> )
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [423424 2012-10-08] (Creative Technology Ltd) [File not signed]
R2 CtHdaSvc; C:\WINDOWS\sysWow64\CtHdaSvc.exe [133080 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4131944 2019-03-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2020-12-03] (EasyAntiCheat Oy -> Epic Games, Inc)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206472 2018-10-05] (Logitech Inc -> Logitech Inc.)
R3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [275752 2008-01-22] (Nero AG -> Nero AG)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2559704 2021-12-02] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3477728 2021-12-02] (Electronic Arts, Inc. -> Electronic Arts)
R2 PLFlash DeviceIoControl Service; C:\Windows\SysWOW64\IoctlSvc.exe [81920 2006-12-19] (Prolific Technology Inc.) [File not signed]
S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite Titanium.SP3\RpcAgentSrv.exe [136192 2019-01-24] (SiSoftware SPC -> SiSoftware) [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6136536 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_48a94de4b861e2fb\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_48a94de4b861e2fb\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35720 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [226328 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [368664 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [251928 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [99352 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [21936 2021-10-01] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41352 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [267904 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [545784 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [108888 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [82912 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [854272 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [550904 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215920 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [317696 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
S3 AthDfu; C:\WINDOWS\System32\Drivers\AthDfu.sys [55336 2012-08-22] (Atheros Communications Inc. -> Windows (R) Win 7 DDK provider)
R3 cthda; C:\WINDOWS\system32\drivers\cthda.sys [1090416 2021-01-11] (Creative Technology Ltd -> Creative Technology Ltd)
R3 cthdb; C:\WINDOWS\system32\DRIVERS\cthdb.sys [53616 2021-01-11] (Creative Technology Ltd -> Creative Technology Ltd)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-03-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-03-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 HWiNFO; C:\Windows\system32\drivers\HWiNFO64A.SYS [65616 2019-03-25] (Martin Malik - REALiX -> REALiX(tm))
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2018-10-05] (Logitech Inc -> Logitech Inc.)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [54632 2021-03-30] (Razer USA Ltd. -> Razer Inc)
S3 RzDev_006e; C:\WINDOWS\System32\drivers\RzDev_006e.sys [56152 2021-03-22] (Razer USA Ltd. -> Razer Inc)
S3 SANDRA; C:\Program Files\SiSoftware\SiSoftware Sandra Lite Titanium.SP3\WNt600x64\Sandra.sys [23112 2009-08-07] (SiSoftware Ltd -> SiSoftware)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [2522256 2022-02-23] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-02-26 18:25 - 2022-02-26 18:25 - 000000203 _____ C:\Users\Tunguska\Desktop\Resident Evil Village.url
2022-02-25 15:50 - 2022-02-28 15:38 - 000000000 ____D C:\FRST
2022-02-21 10:36 - 2022-02-21 10:38 - 000000000 ____D C:\Users\Tunguska\Desktop\fotky
2022-02-19 12:25 - 2022-02-19 12:26 - 000000000 ___HD C:\Users\Tunguska\AppData\Local\e6dd41b52f86b26e01d31222b285bf57
2022-02-19 08:21 - 2022-02-19 08:21 - 000340760 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2022-02-19 08:21 - 2022-02-19 08:21 - 000215920 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2022-02-16 15:32 - 2022-02-10 19:39 - 000717760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2022-02-16 15:32 - 2022-02-10 19:37 - 005727376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2022-02-16 15:31 - 2022-02-10 19:42 - 001905936 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-02-16 15:31 - 2022-02-10 19:42 - 001905936 _____ C:\WINDOWS\system32\vulkaninfo.exe
2022-02-16 15:31 - 2022-02-10 19:42 - 001478416 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-02-16 15:31 - 2022-02-10 19:42 - 001478416 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2022-02-16 15:31 - 2022-02-10 19:42 - 001467840 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2022-02-16 15:31 - 2022-02-10 19:42 - 001432336 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-02-16 15:31 - 2022-02-10 19:42 - 001432336 _____ C:\WINDOWS\system32\vulkan-1.dll
2022-02-16 15:31 - 2022-02-10 19:42 - 001209280 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2022-02-16 15:31 - 2022-02-10 19:42 - 001145616 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2022-02-16 15:31 - 2022-02-10 19:42 - 001145616 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2022-02-16 15:31 - 2022-02-10 19:39 - 001531872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2022-02-16 15:31 - 2022-02-10 19:39 - 001176704 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2022-02-16 15:31 - 2022-02-10 19:39 - 000797112 _____ C:\WINDOWS\system32\nvofapi64.dll
2022-02-16 15:31 - 2022-02-10 19:39 - 000636032 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2022-02-16 15:31 - 2022-02-10 19:38 - 002120320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2022-02-16 15:31 - 2022-02-10 19:38 - 001602728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2022-02-16 15:31 - 2022-02-10 19:38 - 000983992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2022-02-16 15:31 - 2022-02-10 19:38 - 000795584 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2022-02-16 15:31 - 2022-02-10 19:38 - 000711608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2022-02-16 15:31 - 2022-02-10 19:37 - 008612496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2022-02-16 15:31 - 2022-02-10 19:37 - 007714960 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2022-02-16 15:31 - 2022-02-10 19:37 - 005099152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2022-02-16 15:31 - 2022-02-10 19:37 - 002935744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2022-02-16 15:31 - 2022-02-10 19:37 - 000456848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2022-02-16 15:31 - 2022-02-10 19:35 - 000849024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2022-02-16 15:31 - 2022-02-10 19:34 - 006461040 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2022-02-16 15:31 - 2022-02-10 07:18 - 000089251 _____ C:\WINDOWS\system32\nvinfo.pb
2022-02-13 12:17 - 2022-02-13 12:17 - 000000135 _____ C:\Users\Tunguska\Desktop\koberce ford focus.txt
2022-02-10 19:18 - 2022-02-10 19:18 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-02-10 19:18 - 2022-02-10 19:18 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2022-02-10 19:18 - 2022-02-10 19:18 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2022-02-10 19:18 - 2022-02-10 19:18 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-02-10 19:18 - 2022-02-10 19:18 - 000011813 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-02-10 19:11 - 2022-02-10 19:11 - 000000000 ___HD C:\$WinREAgent
2022-02-08 15:18 - 2022-02-28 15:38 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-02-03 16:02 - 2022-02-03 16:02 - 000000000 ____D C:\ProgramData\Lenovo
2022-02-03 16:01 - 2022-02-03 16:01 - 000001317 _____ C:\Users\Public\Desktop\Legion Accessory Central.lnk
2022-02-03 16:01 - 2022-02-03 16:01 - 000000000 ____D C:\WINDOWS\TempInst
2022-02-03 16:01 - 2022-02-03 16:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2022-02-03 16:01 - 2022-02-03 16:01 - 000000000 ____D C:\Program Files (x86)\Lenovo
2022-02-03 11:06 - 2022-02-21 10:36 - 000000000 ____D C:\Users\Tunguska\Desktop\ČEZ - dokumenty
2022-01-30 17:28 - 2022-02-01 21:01 - 000000000 ____D C:\Users\Tunguska\Desktop\Ford Fiesta
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-02-28 15:37 - 2020-08-18 19:25 - 000003148 _____ C:\WINDOWS\system32\Tasks\MSIAfterburner
2022-02-28 15:37 - 2020-08-18 19:25 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-02-28 15:37 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-02-28 15:37 - 2019-03-25 17:16 - 000000000 ____D C:\ProgramData\NVIDIA
2022-02-28 15:37 - 2019-03-21 20:20 - 000000000 ____D C:\ProgramData\AVAST Software
2022-02-28 15:37 - 2019-03-21 20:09 - 000000000 ____D C:\Users\Tunguska\AppData\LocalLow\Mozilla
2022-02-28 15:36 - 2020-10-18 08:29 - 000008192 ___SH C:\DumpStack.log.tmp
2022-02-28 15:36 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-02-28 15:22 - 2020-08-18 19:18 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-02-28 04:43 - 2020-08-18 19:29 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-02-28 04:43 - 2019-12-07 15:43 - 000716770 _____ C:\WINDOWS\system32\perfh005.dat
2022-02-28 04:43 - 2019-12-07 15:43 - 000144948 _____ C:\WINDOWS\system32\perfc005.dat
2022-02-28 04:43 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-02-27 21:45 - 2021-12-13 15:12 - 000003058 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-915892368-1021380908-836815241-1001
2022-02-27 21:45 - 2021-03-19 04:25 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-02-27 21:45 - 2021-03-19 04:25 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-02-27 21:45 - 2020-08-18 19:25 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-02-27 21:45 - 2020-08-18 19:25 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-27 21:45 - 2020-08-18 19:25 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-27 21:45 - 2020-08-18 19:25 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-27 21:45 - 2020-08-18 19:25 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-27 21:45 - 2020-08-18 19:25 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-27 21:45 - 2020-08-18 19:25 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-27 21:45 - 2020-08-18 19:25 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-27 21:45 - 2020-08-18 19:25 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-27 21:45 - 2020-08-18 19:25 - 000002854 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-915892368-1021380908-836815241-1001
2022-02-27 21:45 - 2020-08-18 19:25 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-27 21:45 - 2020-08-18 19:25 - 000002586 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2022-02-27 21:45 - 2020-08-18 19:25 - 000002554 _____ C:\WINDOWS\system32\Tasks\AutoPico Daily Restart
2022-02-27 21:01 - 2020-08-18 19:25 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2022-02-27 09:05 - 2020-08-18 19:19 - 000002386 _____ C:\Users\Tunguska\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-02-27 09:03 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-02-27 00:53 - 2019-03-25 18:12 - 000000000 ____D C:\Users\Tunguska\AppData\Local\D3DSCache
2022-02-26 19:57 - 2021-03-19 04:26 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-02-26 19:57 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-02-26 19:57 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-02-25 19:17 - 2019-03-25 18:06 - 000000000 ____D C:\Users\Tunguska\AppData\Local\CrashDumps
2022-02-25 19:16 - 2020-12-12 17:05 - 000000000 ____D C:\Users\Tunguska\Documents\dzsalauncher
2022-02-25 15:27 - 2019-03-21 19:49 - 000000000 ____D C:\Users\Tunguska\AppData\Local\VirtualStore
2022-02-25 15:07 - 2019-03-25 18:03 - 000000000 ____D C:\Users\Tunguska\AppData\Local\AVAST Software
2022-02-24 19:42 - 2019-07-17 16:11 - 000000000 ____D C:\Users\Tunguska\Desktop\mp3 auto zaloha
2022-02-23 23:03 - 2020-08-18 19:19 - 000000000 ____D C:\Users\Tunguska
2022-02-23 18:27 - 2019-03-21 20:55 - 000000000 ____D C:\Users\Tunguska\AppData\Roaming\discord
2022-02-23 17:52 - 2019-03-25 18:54 - 000000000 ____D C:\Users\Tunguska\AppData\Local\Discord
2022-02-23 17:03 - 2021-05-14 17:55 - 002522256 _____ (Wellbia.com Co., Ltd.) C:\WINDOWS\xhunter1.sys
2022-02-20 14:45 - 2019-03-25 18:54 - 000002242 _____ C:\Users\Tunguska\Desktop\Discord.lnk
2022-02-19 17:43 - 2019-03-21 20:03 - 000000000 ____D C:\Users\Tunguska\Desktop\Focus ST - objednavky + info
2022-02-19 08:21 - 2020-10-23 19:22 - 000267904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2022-02-19 08:21 - 2020-08-18 19:25 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2022-02-19 08:21 - 2020-04-21 03:27 - 000545784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2022-02-19 08:21 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-02-19 08:21 - 2019-03-21 20:21 - 000550904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2022-02-19 08:21 - 2019-03-21 20:21 - 000368664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2022-02-19 08:21 - 2019-03-21 20:21 - 000317696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2022-02-19 08:21 - 2019-03-21 20:21 - 000251928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2022-02-19 08:21 - 2019-03-21 20:21 - 000108888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2022-02-19 08:21 - 2019-03-21 20:21 - 000099352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2022-02-19 08:21 - 2019-03-21 20:21 - 000082912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2022-02-19 08:21 - 2019-03-21 20:21 - 000041352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2022-02-19 08:20 - 2019-03-21 20:21 - 000854272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2022-02-19 08:20 - 2019-03-21 20:21 - 000226328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2022-02-19 08:20 - 2019-03-21 20:21 - 000035720 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2022-02-18 09:23 - 2021-01-22 04:35 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-02-18 04:21 - 2019-03-25 18:44 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-02-18 04:21 - 2019-03-25 18:44 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-02-17 20:45 - 2021-10-09 06:56 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-02-16 15:35 - 2019-03-25 17:16 - 000000000 ____D C:\Users\Tunguska\AppData\Local\NVIDIA
2022-02-16 15:25 - 2019-03-27 15:05 - 000001443 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2022-02-16 15:25 - 2019-03-25 16:34 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2022-02-16 15:25 - 2019-03-25 16:32 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2022-02-16 15:25 - 2019-03-25 16:31 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2022-02-14 15:41 - 2021-04-01 17:38 - 000000000 ____D C:\Users\Tunguska\Desktop\Fiat Tipo
2022-02-11 04:20 - 2020-08-18 19:18 - 000351616 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-02-10 22:10 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-02-10 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-02-10 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-02-10 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-02-10 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-02-10 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-02-10 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-02-10 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-02-10 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-02-10 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-02-10 22:10 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2022-02-10 19:34 - 2020-01-23 15:17 - 007613344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2022-02-10 19:18 - 2020-08-18 19:24 - 002877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-02-10 19:18 - 2015-10-30 09:13 - 000414870 __RSH C:\bootmgr
2022-02-10 15:11 - 2019-03-25 16:43 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-02-10 15:10 - 2019-03-25 16:43 - 149611728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-02-08 15:18 - 2019-03-25 18:44 - 000000000 ____D C:\ProgramData\Mozilla
2022-02-06 21:18 - 2019-03-21 20:46 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2022-02-06 19:01 - 2019-12-30 21:23 - 000000000 ____D C:\Users\Tunguska\AppData\Local\DayZ Launcher
2022-02-06 16:47 - 2019-03-25 22:47 - 000000000 ____D C:\Users\Tunguska\AppData\Local\DayZ
2022-01-31 08:51 - 2021-11-01 08:50 - 000000000 ____D C:\Users\Tunguska\Desktop\Cesťák
==================== Files in the root of some directories ========
2019-03-25 18:13 - 2019-01-23 01:01 - 017383424 _____ () C:\Users\Tunguska\AppData\Roaming\Sandra.mdb
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-02-2022
Ran by Tunguska (28-02-2022 15:39:04)
Running from E:\stazeno
Microsoft Windows 10 Pro Version 21H1 19043.1526 (X64) (2020-08-18 18:25:44)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-915892368-1021380908-836815241-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-915892368-1021380908-836815241-503 - Limited - Disabled)
Guest (S-1-5-21-915892368-1021380908-836815241-501 - Limited - Disabled)
Tunguska (S-1-5-21-915892368-1021380908-836815241-1001 - Administrator - Enabled) => C:\Users\Tunguska
WDAGUtilityAccount (S-1-5-21-915892368-1021380908-836815241-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Reader XI (11.0.23) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
Aliens vs. Predator 2 (HKLM-x32\...\{3EF79591-BF16-4CF8-8FF0-D8AD968228B1}) (Version: - )
Audacity 2.3.3 (HKLM-x32\...\Audacity_is1) (Version: 2.3.3 - Audacity Team)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 22.1.2504 - Avast Software)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlestate Games Launcher 12.9.0.1521 (HKLM-x32\...\{B0FDA062-7581-4D67-B085-C4E7C358037F}_is1) (Version: 12.9.0.1521 - Battlestate Games)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.73.1083 - AB Team, d.o.o.)
CPUID CPU-Z 1.87 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.87 - CPUID, Inc.)
CrystalDiskInfo 8.8.9 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.8.9 - Crystal Dew World)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.10.0.0797 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-915892368-1021380908-836815241-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
Dolby Digital Live Pack (HKLM-x32\...\Dolby Digital Live Pack) (Version: 3.03 - Creative Technology Limited)
DTS Connect Pack (HKLM-x32\...\DTS Connect Pack) (Version: 1.00 - Creative Technology Limited)
DZSALauncher version 0.0.5.2 (HKLM-x32\...\DZSALauncher_is1) (Version: 0.0.5.2 - Maca134)
Epic Games Launcher (HKLM-x32\...\{A398FCC0-8E8B-409E-90E9-ACF4671633F2}) (Version: 1.1.183.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Escape from Tarkov (HKLM-x32\...\EscapeFromTarkov) (Version: 0.12.11.1.13487 - Battlestate Games)
Fraps (HKLM-x32\...\Fraps) (Version: - )
Freemake Video Converter verze 4.1.10.0 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.10.0 - Ellora Assets Corporation)
Geeks3D FurMark 1.24.1.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: 1.24.1.0 - Geeks3D)
IrfanView 4.53 (64-bit) (HKLM\...\IrfanView64) (Version: 4.53 - Irfan Skiljan)
Java 8 Update 311 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180311F0}) (Version: 8.0.3110.11 - Oracle Corporation)
KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version: - )
Kontrola stavu osobního počítače s Windows (HKLM\...\{88EC8D4A-54AB-4A7F-BDE9-4AD906D9D11F}) (Version: 3.2.2110.14001 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Legion Accessory Central (HKLM-x32\...\{36136AB2-8565-4A03-90DD-197DD5AEA090}_is1) (Version: 2.0.6.01271 - Lenovo)
Logitech Gaming Software 9.02 (HKLM\...\Logitech Gaming Software) (Version: 9.02.65 - Logitech Inc.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 98.0.1108.62 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-915892368-1021380908-836815241-1001\...\OneDriveSetup.exe) (Version: 22.022.0130.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{16E50919-B07A-4B4E-994A-476D4773F5BF}) (Version: 3.65.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27024 (HKLM-x32\...\{5fb2083a-f3cc-4b78-93ff-bd9788b5de01}) (Version: 14.16.27024.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.16.27024 (HKLM-x32\...\{2ff11a2a-f7ac-4a6c-8cd4-c7bb974f3642}) (Version: 14.16.27024.1 - Microsoft Corporation)
MKVToolNix 32.0.0 (32-bit) (HKLM-x32\...\MKVToolNix) (Version: 32.0.0 - Moritz Bunkus)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 97.0.1 (x64 cs)) (Version: 97.0.1 - Mozilla)
Mozilla Firefox 66.0.1 (x64 cs) (HKU\S-1-5-21-915892368-1021380908-836815241-1001\...\Mozilla Firefox 66.0.1 (x64 cs)) (Version: 66.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 66.0.1 - Mozilla)
MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD)
Nero 7 Premium (HKLM-x32\...\{C6115A28-F277-4E82-B067-84D28BF21029}) (Version: 7.03.1357 - Nero AG)
NVIDIA FrameView SDK 1.2.7321.30900954 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.7321.30900954 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.25.0.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.25.0.84 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 511.79 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 511.79 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
NVIDIA USBC Driver 1.46.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.46.831.832 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.108.49699 - Electronic Arts, Inc.)
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22589 - Microsoft Corporation)
RivaTuner Statistics Server 7.2.3 (HKLM-x32\...\RTSS) (Version: 7.2.3 - Unwinder)
SiSoftware Sandra Lite Titanium.SP3 (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2596}_is1) (Version: 28.40.2018.12 - SiSoftware)
Sound Blaster Z-Series (HKLM-x32\...\{DAB64FB1-0BBB-486E-9C57-A3E34F463AEB}) (Version: 1.01.10 - Creative Technology Limited)
Sound Blaster Z-Series Extras (HKLM-x32\...\{9D9DB4BA-E352-4AC8-AD2B-B10104F5AB80}) (Version: 1.0 - Creative Technology Limited)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{FBA3961B-D1DF-493C-BC1F-E67D3B832895}) (Version: 2.56.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 85.0 - Ubisoft)
Winamp (remove only) (HKLM-x32\...\Winamp) (Version: - )
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
Zoner Photo Studio 18 (HKLM\...\ZonerPhotoStudio18_CZ_is1) (Version: 18.0.1.2 - ZONER software)
Packages:
=========
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.212.300.0_x64__kgqvnymyfvs32 [2022-02-25] (king.com)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-11-13] (Microsoft Corporation)
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.19.0_neutral__8xx8rvfyw5nnt [2021-11-04] (Instagram)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-03-25] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-03-25] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.12.2180.0_x64__8wekyb3d8bbwe [2022-02-25] (Microsoft Studios) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-02-16] (NVIDIA Corp.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-02-19] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-02-19] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-02-19] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1-x32: [Cover Designer] -> {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} => C:\Program Files (x86)\Nero\Nero 7\Nero CoverDesigner\CoverEdExtension.dll [2007-07-24] (Nero AG -> Nero AG)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-03-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-02-19] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-03-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_48a94de4b861e2fb\nvshext.dll [2022-02-10] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-02-19] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [VIDC.FPS1] => C:\WINDOWS\system32\frapsv64.dll [71680 2013-02-26] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2013-02-26] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2022-02-03 16:01 - 2020-03-12 16:01 - 000095232 _____ () [File not signed] C:\Program Files (x86)\Lenovo\Legion Accessory Central\hidapi.dll
2022-02-03 16:01 - 2019-03-28 10:40 - 000304128 _____ () [File not signed] C:\Program Files (x86)\Lenovo\Legion Accessory Central\uv.dll
2019-03-21 20:46 - 2009-03-18 16:00 - 000151552 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\ShareDLL\CADI\CTCadiEP.dll
2014-07-03 17:22 - 2014-07-03 17:22 - 000555008 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\CTAudEp.dll
2011-09-16 17:04 - 2011-09-16 17:04 - 000238080 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\CTLoadRs.dll
2013-02-27 11:29 - 2013-02-27 11:29 - 000251904 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\HKDetect.dll
2003-03-19 06:14 - 2003-03-19 06:14 - 000499712 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Ahead\Lib\MSVCP71.dll
2003-02-21 14:42 - 2003-02-21 14:42 - 000348160 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Ahead\Lib\MSVCR71.dll
2019-03-21 22:28 - 2020-03-16 14:05 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2019-03-21 22:28 - 2020-03-16 14:06 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2018-04-06 19:29 - 2018-04-06 19:29 - 002286747 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\LIBEAY32.dll
2018-04-06 19:29 - 2018-04-06 19:29 - 000416627 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\ssleay32.dll
2019-03-21 22:28 - 2019-07-12 08:23 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2021-12-31 19:37 - 2019-07-12 08:23 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2021-12-31 19:37 - 2019-07-12 08:23 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2021-12-31 19:37 - 2019-07-12 08:23 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2021-12-31 19:37 - 2019-07-12 08:23 - 000146432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2021-12-31 19:37 - 2019-07-12 08:23 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2021-12-31 19:37 - 2019-07-12 08:23 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\ssv.dll [2021-11-11] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\jp2ssv.dll [2021-11-11] (Oracle America, Inc. -> Oracle Corporation)
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://files.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareupdate/ocx/150323/CTPID.cab
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2015-10-30 08:24 - 2015-10-30 08:21 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-915892368-1021380908-836815241-1001\Control Panel\Desktop\\Wallpaper -> E:\Tapety\full-hd-forest-wallpapers-2.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{E00438F6-F39F-47E1-8B94-3481D90FC202}] => (Allow) C:\Program Files\Zoner\Photo Studio 18\Program32\MediaServer.exe (ZONER software) [File not signed]
FirewallRules: [UDP Query User{5AF47D02-7926-47E9-B92D-6A61E09C028B}E:\programy\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) E:\programy\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [{D76E8226-A274-4E4F-8781-D814BB3AB981}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [UDP Query User{8B2BF43C-827B-41CF-B4D4-9FFA8B1CE21D}C:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) C:\program files (x86)\origin games\apex\r5apex.exe => No File
FirewallRules: [TCP Query User{D6A09A61-A2ED-4BD1-8630-E37FAC063E21}C:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) C:\program files (x86)\origin games\apex\r5apex.exe => No File
FirewallRules: [UDP Query User{B8AAC665-1C89-43E3-B567-FD9B90E4FFA5}C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe => No File
FirewallRules: [TCP Query User{C8370D8A-13FA-4665-958A-E3BBE23B216B}C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe => No File
FirewallRules: [{CEF6E0CA-AC00-42C9-8BB9-ED8403B68770}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite Titanium.SP3\RpcAgentSrv.exe (SiSoftware SPC -> SiSoftware) [File not signed]
FirewallRules: [UDP Query User{275A7957-A01B-4468-863A-23C754ADB165}C:\users\tunguska\appdata\local\mozilla firefox\firefox.exe] => (Allow) C:\users\tunguska\appdata\local\mozilla firefox\firefox.exe => No File
FirewallRules: [TCP Query User{D8786D51-824A-4684-B98D-3E7A302EAD49}C:\users\tunguska\appdata\local\mozilla firefox\firefox.exe] => (Allow) C:\users\tunguska\appdata\local\mozilla firefox\firefox.exe => No File
FirewallRules: [{0E62FFDC-6C17-4B92-BEF7-67B035212010}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{28CC23CD-5E8D-4B36-AB01-C328FE220216}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{C67183F2-23F1-4684-8EC5-77F0E9637BCF}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{ACC11A00-7A72-4529-89E7-A43B0E56DEC4}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{AB434918-70D8-4265-90E8-3D7A1F34D146}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [UDP Query User{23AF2AC9-A018-4889-B7EA-B72921076C49}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [TCP Query User{A80C5C26-0063-4D7B-88B8-DA4FEB31E242}E:\programy\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) E:\programy\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [UDP Query User{A2A753F9-AC93-49A9-8BE6-915932588E9C}E:\programy\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) E:\programy\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [TCP Query User{8FF987D0-7D9C-4EB2-9C01-C54A328DF29F}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{B1B29813-850E-416C-88A2-45FEFC0D6282}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{B4A8D9AC-63D5-4BD7-9F65-6A888DBBFCB5}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{5685D2AE-AE70-49B3-A257-7872C3E01D94}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{C1F7E756-6845-428C-915D-0BD674F8DDF4}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe => No File
FirewallRules: [UDP Query User{07E632F3-2847-45FF-9869-14E72975B547}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe => No File
FirewallRules: [TCP Query User{49C59EBA-B332-4E1C-84BD-C1C87C488FEB}E:\hry 2016\rage 2\rage2.exe] => (Allow) E:\hry 2016\rage 2\rage2.exe => No File
FirewallRules: [UDP Query User{CCFA616B-D270-4D2F-9B3C-F5DC9C22A649}E:\hry 2016\rage 2\rage2.exe] => (Allow) E:\hry 2016\rage 2\rage2.exe => No File
FirewallRules: [TCP Query User{554ABE43-0D40-4ECF-982F-B0CC3044E64C}C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe => No File
FirewallRules: [UDP Query User{5B4E0FF3-CB63-4067-AA0F-F373766E1FF7}C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe => No File
FirewallRules: [TCP Query User{326576AD-229F-409C-A8A9-CE7939F3A00A}E:\hry 2016\medal of honor - allied assault war chest\mohaa.exe] => (Allow) E:\hry 2016\medal of honor - allied assault war chest\mohaa.exe => No File
FirewallRules: [UDP Query User{18278EB1-2A9F-4A42-80A4-EB4F86905B71}E:\hry 2016\medal of honor - allied assault war chest\mohaa.exe] => (Allow) E:\hry 2016\medal of honor - allied assault war chest\mohaa.exe => No File
FirewallRules: [{0149E8EB-5973-411E-B5E9-BF149C836374}] => (Allow) E:\Programy\Steam\steamapps\common\Alien Isolation\AI.exe => No File
FirewallRules: [{A8F28768-9EA3-428F-84EA-DDCA18F55662}] => (Allow) E:\Programy\Steam\steamapps\common\Alien Isolation\AI.exe => No File
FirewallRules: [TCP Query User{655C1B94-E772-461B-8321-20BE8814D04E}E:\hry 2016\wrc 9 fia world rally championship\wrc9.exe] => (Allow) E:\hry 2016\wrc 9 fia world rally championship\wrc9.exe => No File
FirewallRules: [UDP Query User{F4EEA7F3-25B6-45F2-B7F6-5278F2DF7052}E:\hry 2016\wrc 9 fia world rally championship\wrc9.exe] => (Allow) E:\hry 2016\wrc 9 fia world rally championship\wrc9.exe => No File
FirewallRules: [TCP Query User{9E186AC0-E553-4A01-AAF7-1E9D018F22FF}C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe => No File
FirewallRules: [UDP Query User{C3EBF154-2DF7-45C0-B0AD-4D4F98E5EA78}C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe => No File
FirewallRules: [{4CC51B90-2D12-49F0-8EB7-747D6CA8F395}] => (Allow) F:\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{056B5390-DA57-4BE4-A0F1-9F3B8F7E3ABA}] => (Allow) F:\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{C0ADB008-C15A-44AE-8AFD-B508C32CFD74}] => (Allow) F:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{6B3D03A8-A743-4412-BE2B-673FDD4DA398}] => (Allow) F:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{905D190C-FCB2-437A-84C9-19DFE62140CD}F:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) F:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [UDP Query User{BEDB8725-A467-4207-B34A-F580EF71828D}F:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) F:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [TCP Query User{00C55F16-3914-45DE-9B8F-7802EDDC665E}F:\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) F:\steam\steamapps\common\7 days to die\7daystodie.exe => No File
FirewallRules: [UDP Query User{6C661CD4-390A-4CA9-B31D-E7F025FEC170}F:\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) F:\steam\steamapps\common\7 days to die\7daystodie.exe => No File
FirewallRules: [{73FA229F-6355-4C61-A07F-BF71B9770C0E}] => (Allow) F:\Steam\steamapps\common\Return to Castle Wolfenstein\WolfSP.exe () [File not signed]
FirewallRules: [{E486312E-F007-4AAD-916C-2C43D42EF433}] => (Allow) F:\Steam\steamapps\common\Return to Castle Wolfenstein\WolfSP.exe () [File not signed]
FirewallRules: [{35893331-EEB7-4918-8E20-83469A8CC180}] => (Allow) F:\Steam\steamapps\common\Return to Castle Wolfenstein\WolfMP.exe () [File not signed]
FirewallRules: [{1AF64264-2CBB-46D2-90B6-4CB95C50E87C}] => (Allow) F:\Steam\steamapps\common\Return to Castle Wolfenstein\WolfMP.exe () [File not signed]
FirewallRules: [{4088E926-187C-427F-8632-830B69096971}] => (Allow) F:\Steam\steamapps\common\Mafia\Mafia\Game.exe (Illusion Softworks) [File not signed]
FirewallRules: [{C36BD4CF-A975-45DD-9ED9-171D1112327A}] => (Allow) F:\Steam\steamapps\common\Mafia\Mafia\Game.exe (Illusion Softworks) [File not signed]
FirewallRules: [{8653866C-A62E-4E72-B559-BCBD613E8521}] => (Allow) F:\Steam\steamapps\common\Mafia\Mafia\Setup.exe () [File not signed]
FirewallRules: [{63906209-CE0B-4F04-848F-8ED3188225A5}] => (Allow) F:\Steam\steamapps\common\Mafia\Mafia\Setup.exe () [File not signed]
FirewallRules: [{AFA46120-BFBB-4359-8C62-A9D410153240}] => (Allow) F:\Steam\steamapps\common\Unreal Tournament 2004\System\UT2004.exe () [File not signed]
FirewallRules: [{06B472EE-0EBA-49D6-AF11-947E3CA7922E}] => (Allow) F:\Steam\steamapps\common\Unreal Tournament 2004\System\UT2004.exe () [File not signed]
FirewallRules: [TCP Query User{290E50AF-20A1-4FC9-AFD7-2277389D68CB}C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe => No File
FirewallRules: [UDP Query User{DCF40D4D-A65D-44C0-A340-E83A742A3F30}C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe => No File
FirewallRules: [{29BA6A08-B80D-43BE-BC11-34ACFA51C350}] => (Allow) F:\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{69EAE8CB-D4D4-428F-AFBB-5E0EEED32E5B}] => (Allow) F:\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [TCP Query User{7C64B3BF-937C-447A-9E59-C30F852FC28C}F:\steam\steamapps\common\need for speed(tm) most wanted\nfs13.exe] => (Allow) F:\steam\steamapps\common\need for speed(tm) most wanted\nfs13.exe => No File
FirewallRules: [UDP Query User{787216C9-AA6F-44CD-8694-E7037979C0D4}F:\steam\steamapps\common\need for speed(tm) most wanted\nfs13.exe] => (Allow) F:\steam\steamapps\common\need for speed(tm) most wanted\nfs13.exe => No File
FirewallRules: [TCP Query User{5FF55AF9-13BC-4F5D-8C0D-A79CB4BF7B63}F:\steam\steamapps\common\battlefield 1\bf1.exe] => (Allow) F:\steam\steamapps\common\battlefield 1\bf1.exe => No File
FirewallRules: [UDP Query User{00E88015-F3C5-459B-8718-3A7BD9CE5AA3}F:\steam\steamapps\common\battlefield 1\bf1.exe] => (Allow) F:\steam\steamapps\common\battlefield 1\bf1.exe => No File
FirewallRules: [TCP Query User{BD38B2FA-4BD3-4401-A9DC-4C35C18AAEFB}C:\program files (x86)\java\jre1.8.0_301\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_301\bin\javaw.exe => No File
FirewallRules: [UDP Query User{FC3284FA-BAF2-4CFC-AEB5-8009B1B7C8B5}C:\program files (x86)\java\jre1.8.0_301\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_301\bin\javaw.exe => No File
FirewallRules: [{8E5F3516-9780-4E4E-A207-D1083290184A}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{4942D2F3-33EB-4C2F-BA50-902F08B955A5}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [TCP Query User{F649C77D-9580-45F4-8161-DBD91D8A2F01}F:\users\tunguska\appdata\local\enlisted\launcher.exe] => (Allow) F:\users\tunguska\appdata\local\enlisted\launcher.exe => No File
FirewallRules: [UDP Query User{9DE2FE0B-0EAA-41E4-95C0-2F879A9E83B6}F:\users\tunguska\appdata\local\enlisted\launcher.exe] => (Allow) F:\users\tunguska\appdata\local\enlisted\launcher.exe => No File
FirewallRules: [{D8B843ED-9458-4DF9-8BC6-BE2C4C72EEB8}] => (Allow) F:\Steam\steamapps\common\Black Mesa\bms.exe () [File not signed]
FirewallRules: [{4C485576-93FF-4B08-BEF9-3A5D9B2E0BA8}] => (Allow) F:\Steam\steamapps\common\Black Mesa\bms.exe () [File not signed]
FirewallRules: [{47F1ABFF-74DD-4199-A999-764CB16A2502}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{65D4440C-0C05-47C2-87F4-CCB6E6BD0BFC}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B40291A1-44CF-41BE-83C5-344C97839CF0}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{34892229-8A48-4E81-8D5B-BA5593ED1BDC}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5EBC8AAF-182C-4E20-BD6C-4EC84E500802}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5F7BA805-0874-4403-8FF1-747BE1A25A6B}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{66510823-75B5-4A35-8C63-E1320F3F1BB3}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{FB06F8D6-5BC9-41D2-A16A-D68830DF8E37}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{41E11769-BBD0-4A99-921C-A2C78122D4A2}] => (Allow) F:\Steam\steamapps\common\DayZ\DayZLauncher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{8882CD7A-B57F-485E-8F07-33C606D8A80F}] => (Allow) F:\Steam\steamapps\common\DayZ\DayZLauncher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{AD75D3CA-0849-4034-9036-C40F99D78303}] => (Allow) F:\Steam\steamapps\common\DayZ\DayZ_BE.exe (BOHEMIA INTERACTIVE a.s. -> BattlEye Innovations)
FirewallRules: [{6A6C93EE-B157-49D2-BCAC-20CEE2D2B2AA}] => (Allow) F:\Steam\steamapps\common\DayZ\DayZ_BE.exe (BOHEMIA INTERACTIVE a.s. -> BattlEye Innovations)
FirewallRules: [{D2BAE14C-2D9B-46FD-9FC0-D3403812AECB}] => (Allow) F:\Steam\steamapps\common\DayZ\DayZ_x64.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{A768B73F-6168-4A68-9C69-1A8E9C97126C}] => (Allow) F:\Steam\steamapps\common\DayZ\DayZ_x64.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{05BFA909-0C95-4530-97CC-2518F9FE12B4}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite Titanium.SP3\WNt600x64\RpcSandraSrv.exe (SiSoftware SPC -> SiSoftware) [File not signed]
FirewallRules: [{0564C4E5-D59F-4772-9A53-F79F053677DC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.80.194.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CCB86F00-85FB-4ECA-93E0-A3A40CF7B7DC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.80.194.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{87370F9E-DDD1-4341-9A62-EABD492C8C7A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.80.194.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{1A7B39EC-1489-4B22-BB2C-9C11CE88C7BB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.80.194.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9A93B5F1-996D-4B9F-8A6A-1E38B933549B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{03FC15F9-1DFD-48CE-A368-722F1E01AE2E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{80AB0EB5-E2C7-4FC2-B0D4-678EECB39C64}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{37BE6B63-6454-44F2-BE0F-554E33C8500B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{B35218CC-D2A0-4BE7-9385-7E973679EA9D}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{4BDC1F54-EA59-44D1-ABDD-245FA1985C8F}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{9807DC0F-04E2-4ABB-BB1F-BF7D9FADE5E8}] => (Allow) F:\Steam\steamapps\common\Resident Evil Village BIOHAZARD VILLAGE\re8.exe (CAPCOM CO., LTD. -> CAPCOM CO., LTD.)
FirewallRules: [{2BD893FB-0261-4EAE-BAD0-86B6A873CB59}] => (Allow) F:\Steam\steamapps\common\Resident Evil Village BIOHAZARD VILLAGE\re8.exe (CAPCOM CO., LTD. -> CAPCOM CO., LTD.)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:118.34 GB) (Free:46.13 GB) (39%)
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (02/25/2022 07:17:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: winamp.exe, verze: 5.3.2.1003, časové razítko: 0x456339e4
Název chybujícího modulu: iertutil.dll, verze: 11.0.19041.1503, časové razítko: 0x8cf7d6e8
Kód výjimky: 0xc0000005
Posun chyby: 0x001d0af0
ID chybujícího procesu: 0x2ce8
Čas spuštění chybující aplikace: 0x01d82a73d3d94e46
Cesta k chybující aplikaci: C:\Program Files (x86)\Winamp\winamp.exe
Cesta k chybujícímu modulu: C:\Windows\System32\iertutil.dll
ID zprávy: 648ea454-907b-46ee-803f-36b45f38b1fc
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/24/2022 07:50:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: winamp.exe, verze: 5.3.2.1003, časové razítko: 0x456339e4
Název chybujícího modulu: iertutil.dll, verze: 11.0.19041.1503, časové razítko: 0x8cf7d6e8
Kód výjimky: 0xc0000005
Posun chyby: 0x001d0af0
ID chybujícího procesu: 0x29e8
Čas spuštění chybující aplikace: 0x01d829af6cd89c89
Cesta k chybující aplikaci: C:\Program Files (x86)\Winamp\winamp.exe
Cesta k chybujícímu modulu: C:\Windows\System32\iertutil.dll
ID zprávy: 28fcd654-0601-4ca7-b79e-1a65696558f9
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/24/2022 07:47:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: winamp.exe, verze: 5.3.2.1003, časové razítko: 0x456339e4
Název chybujícího modulu: iertutil.dll, verze: 11.0.19041.1503, časové razítko: 0x8cf7d6e8
Kód výjimky: 0xc0000005
Posun chyby: 0x001d0af0
ID chybujícího procesu: 0x2c30
Čas spuštění chybující aplikace: 0x01d829ac19c15330
Cesta k chybující aplikaci: C:\Program Files (x86)\Winamp\winamp.exe
Cesta k chybujícímu modulu: C:\Windows\System32\iertutil.dll
ID zprávy: b7ca0ef3-7b62-46b3-bc3f-3c278340f617
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/23/2022 05:05:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ucldr_battlegrounds_gl.exe, verze: 2021.6.29.973, časové razítko: 0x60dac8ea
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.1466, časové razítko: 0xe2f8ca76
Kód výjimky: 0xc0000374
Posun chyby: 0x00000000000ff199
ID chybujícího procesu: 0x784
Čas spuštění chybující aplikace: 0x01d828ceead8faee
Cesta k chybující aplikaci: C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: aca4a3ac-5ec6-4257-a03b-d9b4d867632b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/22/2022 06:40:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: winamp.exe, verze: 5.3.2.1003, časové razítko: 0x456339e4
Název chybujícího modulu: iertutil.dll, verze: 11.0.19041.1503, časové razítko: 0x8cf7d6e8
Kód výjimky: 0xc0000005
Posun chyby: 0x001d0af0
ID chybujícího procesu: 0x177c
Čas spuštění chybující aplikace: 0x01d828134fc68468
Cesta k chybující aplikaci: C:\Program Files (x86)\Winamp\winamp.exe
Cesta k chybujícímu modulu: C:\Windows\System32\iertutil.dll
ID zprávy: f5680044-e8a7-4efe-af18-d336c25e0da6
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/22/2022 06:40:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: winamp.exe, verze: 5.3.2.1003, časové razítko: 0x456339e4
Název chybujícího modulu: iertutil.dll, verze: 11.0.19041.1503, časové razítko: 0x8cf7d6e8
Kód výjimky: 0xc0000005
Posun chyby: 0x001d0af0
ID chybujícího procesu: 0x13a0
Čas spuštění chybující aplikace: 0x01d8280d31c023d6
Cesta k chybující aplikaci: C:\Program Files (x86)\Winamp\winamp.exe
Cesta k chybujícímu modulu: C:\Windows\System32\iertutil.dll
ID zprávy: 9c381d24-0f75-468d-a745-9701e4e7ed68
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/22/2022 05:56:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: winamp.exe, verze: 5.3.2.1003, časové razítko: 0x456339e4
Název chybujícího modulu: iertutil.dll, verze: 11.0.19041.1503, časové razítko: 0x8cf7d6e8
Kód výjimky: 0xc0000005
Posun chyby: 0x001d0af0
ID chybujícího procesu: 0x315c
Čas spuštění chybující aplikace: 0x01d827fcf432e139
Cesta k chybující aplikaci: C:\Program Files (x86)\Winamp\winamp.exe
Cesta k chybujícímu modulu: C:\Windows\System32\iertutil.dll
ID zprávy: 6d449c5f-8ac5-42f8-a50b-e826d604c1bd
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/21/2022 05:48:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: winamp.exe, verze: 5.3.2.1003, časové razítko: 0x456339e4
Název chybujícího modulu: iertutil.dll, verze: 11.0.19041.1503, časové razítko: 0x8cf7d6e8
Kód výjimky: 0xc0000005
Posun chyby: 0x001d0af0
ID chybujícího procesu: 0x33b0
Čas spuštění chybující aplikace: 0x01d827428a93832e
Cesta k chybující aplikaci: C:\Program Files (x86)\Winamp\winamp.exe
Cesta k chybujícímu modulu: C:\Windows\System32\iertutil.dll
ID zprávy: 3aa4f6ee-d6d5-4954-a1af-602c62f672ba
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (02/28/2022 03:35:50 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HE8OVF9)
Description: Server {5F7F3F7B-1177-4D4B-B1DB-BC6F671B8F25} se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/28/2022 03:35:45 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HE8OVF9)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/27/2022 11:23:00 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (02/27/2022 01:28:46 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (02/26/2022 08:40:56 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (02/26/2022 03:13:25 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (02/26/2022 02:23:49 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (02/25/2022 10:35:55 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Windows Defender:
================Event[0]:
Date: 2021-11-26 04:25:42
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.303.25.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16400.2
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.
Date: 2021-11-26 04:25:42
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.303.25.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16400.2
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.
Date: 2021-11-25 04:25:14
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.303.25.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16400.2
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.
Date: 2021-11-25 04:25:14
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.303.25.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16400.2
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.
CodeIntegrity:
===============
Date: 2022-02-28 15:39:14
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2022-02-28 15:38:06
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 3602 11/01/2012
Motherboard: ASUSTeK Computer INC. P8P67 REV 3.1
Processor: Intel(R) Core(TM) i5-3570K CPU @ 3.40GHz
Percentage of memory in use: 22%
Total physical RAM: 16351.13 MB
Available physical RAM: 12614.82 MB
Total Virtual: 32735.13 MB
Available Virtual: 27369.25 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:118.34 GB) (Free:46.13 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive e: (Nový svazek) (Fixed) (Total:1863.01 GB) (Free:51.4 GB) NTFS
Drive f: (Nový svazek) (Fixed) (Total:476.94 GB) (Free:94.48 GB) NTFS
\\?\Volume{2023efa1-0000-0000-0000-e09b1d000000}\ () (Fixed) (Total:0.8 GB) (Free:0.38 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 476.9 GB) (Disk ID: 95F9AFE7)
Partition 1: (Not Active) - (Size=476.9 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: 2023EFA1)
Partition 1: (Active) - (Size=118.3 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=824 MB) - (Type=27)
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 97524877)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Ran by Tunguska (administrator) on DESKTOP-HE8OVF9 (28-02-2022 15:37:57)
Running from E:\stazeno
Loaded Profiles: Tunguska
Platform: Microsoft Windows 10 Pro Version 21H1 19043.1526 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\AVAST Software\Avast\AvLaunch.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\SBZ.exe
(explorer.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvLaunch.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(explorer.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(explorer.exe ->) (Nero AG -> Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
(INTERNET PROJECT LLC -> ) C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
(Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\Legion Accessory Central\legion_haw.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <9>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd) C:\Windows\SysWOW64\CtHdaSvc.exe
(services.exe ->) (Nero AG -> Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_48a94de4b861e2fb\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Prolific Technology Inc.) [File not signed] C:\Windows\SysWOW64\IoctlSvc.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1525_none_7e00daaa7c97a563\TiWorker.exe
(svchost.exe ->) (Nero AG -> Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18727048 2018-10-05] (Logitech Inc -> Logitech Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [157464 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.) [File not signed]
HKLM-x32\...\Run: [Sound Blaster Z-Series Control Panel] => C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\SBZ.exe [877056 2014-11-24] (Creative Technology Ltd) [File not signed]
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [203760 2018-05-04] (INTERNET PROJECT LLC -> )
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Leonvo Legion Startup] => C:\Program Files (x86)\Lenovo\Legion Accessory Central\legion_haw.exe [1254584 2022-01-27] (Lenovo -> Lenovo)
HKU\S-1-5-21-915892368-1021380908-836815241-1001\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [152872 2008-01-22] (Nero AG -> Nero AG)
HKU\S-1-5-21-915892368-1021380908-836815241-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [735336 2019-03-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0095ED1E-3C5A-43FB-8161-EBF5505CC905} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1009872 2021-11-02] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {055E7C9D-CA4A-4B21-B5B2-2C5BC7DCA0A1} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {0EE3AE58-8774-454E-88F1-6444A454E1F5} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {1A25ABC6-463E-4F1D-975F-DC9B52FDC17E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {29F6BDE0-344B-4443-85AA-0B84A260DF91} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647376 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {335453C8-D6B4-419C-B9A7-8A3545D903F9} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {3FF04241-F1FE-4A76-84EF-F64929EE503F} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {64BB4A8E-A9DD-43EA-BD3A-290F6AEBB355} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {6B860DAA-BEE0-4EB2-A892-AF72BA81F77F} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe [743616 2015-12-02] (@ByELDI -> @ByELDI) [File not signed]
Task: {7431ABD5-30E7-4D7B-97AD-99441BFCAFC5} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {7A5C3960-82C1-446F-B952-431300D01347} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {82024F5F-DC43-49B1-A7A8-5E1E949F3608} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339472 2022-02-03] (Nvidia Corporation -> NVIDIA Corporation)
Task: {9083CFC3-9BCC-40C5-A628-31CBC33C209A} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1790184 2021-04-30] (Avast Software s.r.o. -> Avast Software)
Task: {A5D4B722-577C-49A2-A2E7-5C010CDC8DBF} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4992792 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
Task: {BF82FB91-9765-4DD7-B745-E81847C44825} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {D7C408F2-E7CE-4417-BB12-FCA87F35DFF6} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {DBC95834-5036-4E79-BEA9-94B9456B6AF2} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [782320 2019-10-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2334408d-2bb7-486b-9c23-43a628340e28}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge Profile: C:\Users\Tunguska\AppData\Local\Microsoft\Edge\User Data\Default [2022-02-13]
FireFox:
========
FF DefaultProfile: svkzk7eb.default-1589828617758
FF ProfilePath: C:\Users\Tunguska\AppData\Roaming\Mozilla\Firefox\Profiles\svkzk7eb.default-1589828617758 [2022-02-28]
FF DownloadDir: E:\stazeno
FF Homepage: Mozilla\Firefox\Profiles\svkzk7eb.default-1589828617758 -> google.cz
FF Notifications: Mozilla\Firefox\Profiles\svkzk7eb.default-1589828617758 -> hxxps://www.automobilovedily24.cz
FF Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\Tunguska\AppData\Roaming\Mozilla\Firefox\Profiles\svkzk7eb.default-1589828617758\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2022-01-27]
FF Plugin-x32: @java.com/DTPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-11-11] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-11-11] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8482384 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [563992 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [563992 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-06-03] (Avast Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8930120 2022-02-16] (BattlEye Innovations e.K. -> )
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [423424 2012-10-08] (Creative Technology Ltd) [File not signed]
R2 CtHdaSvc; C:\WINDOWS\sysWow64\CtHdaSvc.exe [133080 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4131944 2019-03-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2020-12-03] (EasyAntiCheat Oy -> Epic Games, Inc)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206472 2018-10-05] (Logitech Inc -> Logitech Inc.)
R3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [275752 2008-01-22] (Nero AG -> Nero AG)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2559704 2021-12-02] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3477728 2021-12-02] (Electronic Arts, Inc. -> Electronic Arts)
R2 PLFlash DeviceIoControl Service; C:\Windows\SysWOW64\IoctlSvc.exe [81920 2006-12-19] (Prolific Technology Inc.) [File not signed]
S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite Titanium.SP3\RpcAgentSrv.exe [136192 2019-01-24] (SiSoftware SPC -> SiSoftware) [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6136536 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_48a94de4b861e2fb\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_48a94de4b861e2fb\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35720 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [226328 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [368664 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [251928 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [99352 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [21936 2021-10-01] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41352 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [267904 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [545784 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [108888 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [82912 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [854272 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [550904 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215920 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [317696 2022-02-19] (Avast Software s.r.o. -> AVAST Software)
S3 AthDfu; C:\WINDOWS\System32\Drivers\AthDfu.sys [55336 2012-08-22] (Atheros Communications Inc. -> Windows (R) Win 7 DDK provider)
R3 cthda; C:\WINDOWS\system32\drivers\cthda.sys [1090416 2021-01-11] (Creative Technology Ltd -> Creative Technology Ltd)
R3 cthdb; C:\WINDOWS\system32\DRIVERS\cthdb.sys [53616 2021-01-11] (Creative Technology Ltd -> Creative Technology Ltd)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-03-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-03-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 HWiNFO; C:\Windows\system32\drivers\HWiNFO64A.SYS [65616 2019-03-25] (Martin Malik - REALiX -> REALiX(tm))
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2018-10-05] (Logitech Inc -> Logitech Inc.)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [54632 2021-03-30] (Razer USA Ltd. -> Razer Inc)
S3 RzDev_006e; C:\WINDOWS\System32\drivers\RzDev_006e.sys [56152 2021-03-22] (Razer USA Ltd. -> Razer Inc)
S3 SANDRA; C:\Program Files\SiSoftware\SiSoftware Sandra Lite Titanium.SP3\WNt600x64\Sandra.sys [23112 2009-08-07] (SiSoftware Ltd -> SiSoftware)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [2522256 2022-02-23] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-02-26 18:25 - 2022-02-26 18:25 - 000000203 _____ C:\Users\Tunguska\Desktop\Resident Evil Village.url
2022-02-25 15:50 - 2022-02-28 15:38 - 000000000 ____D C:\FRST
2022-02-21 10:36 - 2022-02-21 10:38 - 000000000 ____D C:\Users\Tunguska\Desktop\fotky
2022-02-19 12:25 - 2022-02-19 12:26 - 000000000 ___HD C:\Users\Tunguska\AppData\Local\e6dd41b52f86b26e01d31222b285bf57
2022-02-19 08:21 - 2022-02-19 08:21 - 000340760 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2022-02-19 08:21 - 2022-02-19 08:21 - 000215920 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2022-02-16 15:32 - 2022-02-10 19:39 - 000717760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2022-02-16 15:32 - 2022-02-10 19:37 - 005727376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2022-02-16 15:31 - 2022-02-10 19:42 - 001905936 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-02-16 15:31 - 2022-02-10 19:42 - 001905936 _____ C:\WINDOWS\system32\vulkaninfo.exe
2022-02-16 15:31 - 2022-02-10 19:42 - 001478416 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-02-16 15:31 - 2022-02-10 19:42 - 001478416 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2022-02-16 15:31 - 2022-02-10 19:42 - 001467840 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2022-02-16 15:31 - 2022-02-10 19:42 - 001432336 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-02-16 15:31 - 2022-02-10 19:42 - 001432336 _____ C:\WINDOWS\system32\vulkan-1.dll
2022-02-16 15:31 - 2022-02-10 19:42 - 001209280 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2022-02-16 15:31 - 2022-02-10 19:42 - 001145616 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2022-02-16 15:31 - 2022-02-10 19:42 - 001145616 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2022-02-16 15:31 - 2022-02-10 19:39 - 001531872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2022-02-16 15:31 - 2022-02-10 19:39 - 001176704 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2022-02-16 15:31 - 2022-02-10 19:39 - 000797112 _____ C:\WINDOWS\system32\nvofapi64.dll
2022-02-16 15:31 - 2022-02-10 19:39 - 000636032 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2022-02-16 15:31 - 2022-02-10 19:38 - 002120320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2022-02-16 15:31 - 2022-02-10 19:38 - 001602728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2022-02-16 15:31 - 2022-02-10 19:38 - 000983992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2022-02-16 15:31 - 2022-02-10 19:38 - 000795584 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2022-02-16 15:31 - 2022-02-10 19:38 - 000711608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2022-02-16 15:31 - 2022-02-10 19:37 - 008612496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2022-02-16 15:31 - 2022-02-10 19:37 - 007714960 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2022-02-16 15:31 - 2022-02-10 19:37 - 005099152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2022-02-16 15:31 - 2022-02-10 19:37 - 002935744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2022-02-16 15:31 - 2022-02-10 19:37 - 000456848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2022-02-16 15:31 - 2022-02-10 19:35 - 000849024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2022-02-16 15:31 - 2022-02-10 19:34 - 006461040 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2022-02-16 15:31 - 2022-02-10 07:18 - 000089251 _____ C:\WINDOWS\system32\nvinfo.pb
2022-02-13 12:17 - 2022-02-13 12:17 - 000000135 _____ C:\Users\Tunguska\Desktop\koberce ford focus.txt
2022-02-10 19:18 - 2022-02-10 19:18 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-02-10 19:18 - 2022-02-10 19:18 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2022-02-10 19:18 - 2022-02-10 19:18 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2022-02-10 19:18 - 2022-02-10 19:18 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-02-10 19:18 - 2022-02-10 19:18 - 000011813 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-02-10 19:11 - 2022-02-10 19:11 - 000000000 ___HD C:\$WinREAgent
2022-02-08 15:18 - 2022-02-28 15:38 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-02-03 16:02 - 2022-02-03 16:02 - 000000000 ____D C:\ProgramData\Lenovo
2022-02-03 16:01 - 2022-02-03 16:01 - 000001317 _____ C:\Users\Public\Desktop\Legion Accessory Central.lnk
2022-02-03 16:01 - 2022-02-03 16:01 - 000000000 ____D C:\WINDOWS\TempInst
2022-02-03 16:01 - 2022-02-03 16:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2022-02-03 16:01 - 2022-02-03 16:01 - 000000000 ____D C:\Program Files (x86)\Lenovo
2022-02-03 11:06 - 2022-02-21 10:36 - 000000000 ____D C:\Users\Tunguska\Desktop\ČEZ - dokumenty
2022-01-30 17:28 - 2022-02-01 21:01 - 000000000 ____D C:\Users\Tunguska\Desktop\Ford Fiesta
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-02-28 15:37 - 2020-08-18 19:25 - 000003148 _____ C:\WINDOWS\system32\Tasks\MSIAfterburner
2022-02-28 15:37 - 2020-08-18 19:25 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-02-28 15:37 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-02-28 15:37 - 2019-03-25 17:16 - 000000000 ____D C:\ProgramData\NVIDIA
2022-02-28 15:37 - 2019-03-21 20:20 - 000000000 ____D C:\ProgramData\AVAST Software
2022-02-28 15:37 - 2019-03-21 20:09 - 000000000 ____D C:\Users\Tunguska\AppData\LocalLow\Mozilla
2022-02-28 15:36 - 2020-10-18 08:29 - 000008192 ___SH C:\DumpStack.log.tmp
2022-02-28 15:36 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-02-28 15:22 - 2020-08-18 19:18 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-02-28 04:43 - 2020-08-18 19:29 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-02-28 04:43 - 2019-12-07 15:43 - 000716770 _____ C:\WINDOWS\system32\perfh005.dat
2022-02-28 04:43 - 2019-12-07 15:43 - 000144948 _____ C:\WINDOWS\system32\perfc005.dat
2022-02-28 04:43 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-02-27 21:45 - 2021-12-13 15:12 - 000003058 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-915892368-1021380908-836815241-1001
2022-02-27 21:45 - 2021-03-19 04:25 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-02-27 21:45 - 2021-03-19 04:25 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-02-27 21:45 - 2020-08-18 19:25 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-02-27 21:45 - 2020-08-18 19:25 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-27 21:45 - 2020-08-18 19:25 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-27 21:45 - 2020-08-18 19:25 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-27 21:45 - 2020-08-18 19:25 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-27 21:45 - 2020-08-18 19:25 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-27 21:45 - 2020-08-18 19:25 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-27 21:45 - 2020-08-18 19:25 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-27 21:45 - 2020-08-18 19:25 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-27 21:45 - 2020-08-18 19:25 - 000002854 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-915892368-1021380908-836815241-1001
2022-02-27 21:45 - 2020-08-18 19:25 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-27 21:45 - 2020-08-18 19:25 - 000002586 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2022-02-27 21:45 - 2020-08-18 19:25 - 000002554 _____ C:\WINDOWS\system32\Tasks\AutoPico Daily Restart
2022-02-27 21:01 - 2020-08-18 19:25 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2022-02-27 09:05 - 2020-08-18 19:19 - 000002386 _____ C:\Users\Tunguska\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-02-27 09:03 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-02-27 00:53 - 2019-03-25 18:12 - 000000000 ____D C:\Users\Tunguska\AppData\Local\D3DSCache
2022-02-26 19:57 - 2021-03-19 04:26 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-02-26 19:57 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-02-26 19:57 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-02-25 19:17 - 2019-03-25 18:06 - 000000000 ____D C:\Users\Tunguska\AppData\Local\CrashDumps
2022-02-25 19:16 - 2020-12-12 17:05 - 000000000 ____D C:\Users\Tunguska\Documents\dzsalauncher
2022-02-25 15:27 - 2019-03-21 19:49 - 000000000 ____D C:\Users\Tunguska\AppData\Local\VirtualStore
2022-02-25 15:07 - 2019-03-25 18:03 - 000000000 ____D C:\Users\Tunguska\AppData\Local\AVAST Software
2022-02-24 19:42 - 2019-07-17 16:11 - 000000000 ____D C:\Users\Tunguska\Desktop\mp3 auto zaloha
2022-02-23 23:03 - 2020-08-18 19:19 - 000000000 ____D C:\Users\Tunguska
2022-02-23 18:27 - 2019-03-21 20:55 - 000000000 ____D C:\Users\Tunguska\AppData\Roaming\discord
2022-02-23 17:52 - 2019-03-25 18:54 - 000000000 ____D C:\Users\Tunguska\AppData\Local\Discord
2022-02-23 17:03 - 2021-05-14 17:55 - 002522256 _____ (Wellbia.com Co., Ltd.) C:\WINDOWS\xhunter1.sys
2022-02-20 14:45 - 2019-03-25 18:54 - 000002242 _____ C:\Users\Tunguska\Desktop\Discord.lnk
2022-02-19 17:43 - 2019-03-21 20:03 - 000000000 ____D C:\Users\Tunguska\Desktop\Focus ST - objednavky + info
2022-02-19 08:21 - 2020-10-23 19:22 - 000267904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2022-02-19 08:21 - 2020-08-18 19:25 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2022-02-19 08:21 - 2020-04-21 03:27 - 000545784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2022-02-19 08:21 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-02-19 08:21 - 2019-03-21 20:21 - 000550904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2022-02-19 08:21 - 2019-03-21 20:21 - 000368664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2022-02-19 08:21 - 2019-03-21 20:21 - 000317696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2022-02-19 08:21 - 2019-03-21 20:21 - 000251928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2022-02-19 08:21 - 2019-03-21 20:21 - 000108888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2022-02-19 08:21 - 2019-03-21 20:21 - 000099352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2022-02-19 08:21 - 2019-03-21 20:21 - 000082912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2022-02-19 08:21 - 2019-03-21 20:21 - 000041352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2022-02-19 08:20 - 2019-03-21 20:21 - 000854272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2022-02-19 08:20 - 2019-03-21 20:21 - 000226328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2022-02-19 08:20 - 2019-03-21 20:21 - 000035720 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2022-02-18 09:23 - 2021-01-22 04:35 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-02-18 04:21 - 2019-03-25 18:44 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-02-18 04:21 - 2019-03-25 18:44 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-02-17 20:45 - 2021-10-09 06:56 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-02-16 15:35 - 2019-03-25 17:16 - 000000000 ____D C:\Users\Tunguska\AppData\Local\NVIDIA
2022-02-16 15:25 - 2019-03-27 15:05 - 000001443 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2022-02-16 15:25 - 2019-03-25 16:34 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2022-02-16 15:25 - 2019-03-25 16:32 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2022-02-16 15:25 - 2019-03-25 16:31 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2022-02-14 15:41 - 2021-04-01 17:38 - 000000000 ____D C:\Users\Tunguska\Desktop\Fiat Tipo
2022-02-11 04:20 - 2020-08-18 19:18 - 000351616 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-02-10 22:10 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-02-10 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-02-10 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-02-10 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-02-10 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-02-10 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-02-10 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-02-10 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-02-10 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-02-10 22:10 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-02-10 22:10 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2022-02-10 19:34 - 2020-01-23 15:17 - 007613344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2022-02-10 19:18 - 2020-08-18 19:24 - 002877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-02-10 19:18 - 2015-10-30 09:13 - 000414870 __RSH C:\bootmgr
2022-02-10 15:11 - 2019-03-25 16:43 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-02-10 15:10 - 2019-03-25 16:43 - 149611728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-02-08 15:18 - 2019-03-25 18:44 - 000000000 ____D C:\ProgramData\Mozilla
2022-02-06 21:18 - 2019-03-21 20:46 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2022-02-06 19:01 - 2019-12-30 21:23 - 000000000 ____D C:\Users\Tunguska\AppData\Local\DayZ Launcher
2022-02-06 16:47 - 2019-03-25 22:47 - 000000000 ____D C:\Users\Tunguska\AppData\Local\DayZ
2022-01-31 08:51 - 2021-11-01 08:50 - 000000000 ____D C:\Users\Tunguska\Desktop\Cesťák
==================== Files in the root of some directories ========
2019-03-25 18:13 - 2019-01-23 01:01 - 017383424 _____ () C:\Users\Tunguska\AppData\Roaming\Sandra.mdb
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-02-2022
Ran by Tunguska (28-02-2022 15:39:04)
Running from E:\stazeno
Microsoft Windows 10 Pro Version 21H1 19043.1526 (X64) (2020-08-18 18:25:44)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-915892368-1021380908-836815241-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-915892368-1021380908-836815241-503 - Limited - Disabled)
Guest (S-1-5-21-915892368-1021380908-836815241-501 - Limited - Disabled)
Tunguska (S-1-5-21-915892368-1021380908-836815241-1001 - Administrator - Enabled) => C:\Users\Tunguska
WDAGUtilityAccount (S-1-5-21-915892368-1021380908-836815241-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Reader XI (11.0.23) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
Aliens vs. Predator 2 (HKLM-x32\...\{3EF79591-BF16-4CF8-8FF0-D8AD968228B1}) (Version: - )
Audacity 2.3.3 (HKLM-x32\...\Audacity_is1) (Version: 2.3.3 - Audacity Team)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 22.1.2504 - Avast Software)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlestate Games Launcher 12.9.0.1521 (HKLM-x32\...\{B0FDA062-7581-4D67-B085-C4E7C358037F}_is1) (Version: 12.9.0.1521 - Battlestate Games)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.73.1083 - AB Team, d.o.o.)
CPUID CPU-Z 1.87 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.87 - CPUID, Inc.)
CrystalDiskInfo 8.8.9 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.8.9 - Crystal Dew World)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.10.0.0797 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-915892368-1021380908-836815241-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
Dolby Digital Live Pack (HKLM-x32\...\Dolby Digital Live Pack) (Version: 3.03 - Creative Technology Limited)
DTS Connect Pack (HKLM-x32\...\DTS Connect Pack) (Version: 1.00 - Creative Technology Limited)
DZSALauncher version 0.0.5.2 (HKLM-x32\...\DZSALauncher_is1) (Version: 0.0.5.2 - Maca134)
Epic Games Launcher (HKLM-x32\...\{A398FCC0-8E8B-409E-90E9-ACF4671633F2}) (Version: 1.1.183.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Escape from Tarkov (HKLM-x32\...\EscapeFromTarkov) (Version: 0.12.11.1.13487 - Battlestate Games)
Fraps (HKLM-x32\...\Fraps) (Version: - )
Freemake Video Converter verze 4.1.10.0 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.10.0 - Ellora Assets Corporation)
Geeks3D FurMark 1.24.1.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: 1.24.1.0 - Geeks3D)
IrfanView 4.53 (64-bit) (HKLM\...\IrfanView64) (Version: 4.53 - Irfan Skiljan)
Java 8 Update 311 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180311F0}) (Version: 8.0.3110.11 - Oracle Corporation)
KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version: - )
Kontrola stavu osobního počítače s Windows (HKLM\...\{88EC8D4A-54AB-4A7F-BDE9-4AD906D9D11F}) (Version: 3.2.2110.14001 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Legion Accessory Central (HKLM-x32\...\{36136AB2-8565-4A03-90DD-197DD5AEA090}_is1) (Version: 2.0.6.01271 - Lenovo)
Logitech Gaming Software 9.02 (HKLM\...\Logitech Gaming Software) (Version: 9.02.65 - Logitech Inc.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 98.0.1108.62 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-915892368-1021380908-836815241-1001\...\OneDriveSetup.exe) (Version: 22.022.0130.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{16E50919-B07A-4B4E-994A-476D4773F5BF}) (Version: 3.65.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27024 (HKLM-x32\...\{5fb2083a-f3cc-4b78-93ff-bd9788b5de01}) (Version: 14.16.27024.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.16.27024 (HKLM-x32\...\{2ff11a2a-f7ac-4a6c-8cd4-c7bb974f3642}) (Version: 14.16.27024.1 - Microsoft Corporation)
MKVToolNix 32.0.0 (32-bit) (HKLM-x32\...\MKVToolNix) (Version: 32.0.0 - Moritz Bunkus)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 97.0.1 (x64 cs)) (Version: 97.0.1 - Mozilla)
Mozilla Firefox 66.0.1 (x64 cs) (HKU\S-1-5-21-915892368-1021380908-836815241-1001\...\Mozilla Firefox 66.0.1 (x64 cs)) (Version: 66.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 66.0.1 - Mozilla)
MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD)
Nero 7 Premium (HKLM-x32\...\{C6115A28-F277-4E82-B067-84D28BF21029}) (Version: 7.03.1357 - Nero AG)
NVIDIA FrameView SDK 1.2.7321.30900954 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.7321.30900954 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.25.0.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.25.0.84 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 511.79 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 511.79 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
NVIDIA USBC Driver 1.46.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.46.831.832 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.108.49699 - Electronic Arts, Inc.)
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22589 - Microsoft Corporation)
RivaTuner Statistics Server 7.2.3 (HKLM-x32\...\RTSS) (Version: 7.2.3 - Unwinder)
SiSoftware Sandra Lite Titanium.SP3 (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2596}_is1) (Version: 28.40.2018.12 - SiSoftware)
Sound Blaster Z-Series (HKLM-x32\...\{DAB64FB1-0BBB-486E-9C57-A3E34F463AEB}) (Version: 1.01.10 - Creative Technology Limited)
Sound Blaster Z-Series Extras (HKLM-x32\...\{9D9DB4BA-E352-4AC8-AD2B-B10104F5AB80}) (Version: 1.0 - Creative Technology Limited)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{FBA3961B-D1DF-493C-BC1F-E67D3B832895}) (Version: 2.56.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 85.0 - Ubisoft)
Winamp (remove only) (HKLM-x32\...\Winamp) (Version: - )
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
Zoner Photo Studio 18 (HKLM\...\ZonerPhotoStudio18_CZ_is1) (Version: 18.0.1.2 - ZONER software)
Packages:
=========
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.212.300.0_x64__kgqvnymyfvs32 [2022-02-25] (king.com)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-11-13] (Microsoft Corporation)
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.19.0_neutral__8xx8rvfyw5nnt [2021-11-04] (Instagram)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-03-25] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-03-25] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.12.2180.0_x64__8wekyb3d8bbwe [2022-02-25] (Microsoft Studios) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-02-16] (NVIDIA Corp.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-02-19] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-02-19] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-02-19] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1-x32: [Cover Designer] -> {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} => C:\Program Files (x86)\Nero\Nero 7\Nero CoverDesigner\CoverEdExtension.dll [2007-07-24] (Nero AG -> Nero AG)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-03-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-02-19] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-03-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_48a94de4b861e2fb\nvshext.dll [2022-02-10] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-02-19] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [VIDC.FPS1] => C:\WINDOWS\system32\frapsv64.dll [71680 2013-02-26] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2013-02-26] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2022-02-03 16:01 - 2020-03-12 16:01 - 000095232 _____ () [File not signed] C:\Program Files (x86)\Lenovo\Legion Accessory Central\hidapi.dll
2022-02-03 16:01 - 2019-03-28 10:40 - 000304128 _____ () [File not signed] C:\Program Files (x86)\Lenovo\Legion Accessory Central\uv.dll
2019-03-21 20:46 - 2009-03-18 16:00 - 000151552 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\ShareDLL\CADI\CTCadiEP.dll
2014-07-03 17:22 - 2014-07-03 17:22 - 000555008 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\CTAudEp.dll
2011-09-16 17:04 - 2011-09-16 17:04 - 000238080 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\CTLoadRs.dll
2013-02-27 11:29 - 2013-02-27 11:29 - 000251904 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\HKDetect.dll
2003-03-19 06:14 - 2003-03-19 06:14 - 000499712 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Ahead\Lib\MSVCP71.dll
2003-02-21 14:42 - 2003-02-21 14:42 - 000348160 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Ahead\Lib\MSVCR71.dll
2019-03-21 22:28 - 2020-03-16 14:05 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2019-03-21 22:28 - 2020-03-16 14:06 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2018-04-06 19:29 - 2018-04-06 19:29 - 002286747 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\LIBEAY32.dll
2018-04-06 19:29 - 2018-04-06 19:29 - 000416627 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\ssleay32.dll
2019-03-21 22:28 - 2019-07-12 08:23 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2021-12-31 19:37 - 2019-07-12 08:23 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2021-12-31 19:37 - 2019-07-12 08:23 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2021-12-31 19:37 - 2019-07-12 08:23 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2021-12-31 19:37 - 2019-07-12 08:23 - 000146432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2021-12-31 19:37 - 2019-07-12 08:23 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2021-12-31 19:37 - 2019-07-12 08:23 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\ssv.dll [2021-11-11] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\jp2ssv.dll [2021-11-11] (Oracle America, Inc. -> Oracle Corporation)
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://files.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareupdate/ocx/150323/CTPID.cab
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2015-10-30 08:24 - 2015-10-30 08:21 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-915892368-1021380908-836815241-1001\Control Panel\Desktop\\Wallpaper -> E:\Tapety\full-hd-forest-wallpapers-2.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{E00438F6-F39F-47E1-8B94-3481D90FC202}] => (Allow) C:\Program Files\Zoner\Photo Studio 18\Program32\MediaServer.exe (ZONER software) [File not signed]
FirewallRules: [UDP Query User{5AF47D02-7926-47E9-B92D-6A61E09C028B}E:\programy\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) E:\programy\steam\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [{D76E8226-A274-4E4F-8781-D814BB3AB981}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [UDP Query User{8B2BF43C-827B-41CF-B4D4-9FFA8B1CE21D}C:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) C:\program files (x86)\origin games\apex\r5apex.exe => No File
FirewallRules: [TCP Query User{D6A09A61-A2ED-4BD1-8630-E37FAC063E21}C:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) C:\program files (x86)\origin games\apex\r5apex.exe => No File
FirewallRules: [UDP Query User{B8AAC665-1C89-43E3-B567-FD9B90E4FFA5}C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe => No File
FirewallRules: [TCP Query User{C8370D8A-13FA-4665-958A-E3BBE23B216B}C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_201\bin\javaw.exe => No File
FirewallRules: [{CEF6E0CA-AC00-42C9-8BB9-ED8403B68770}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite Titanium.SP3\RpcAgentSrv.exe (SiSoftware SPC -> SiSoftware) [File not signed]
FirewallRules: [UDP Query User{275A7957-A01B-4468-863A-23C754ADB165}C:\users\tunguska\appdata\local\mozilla firefox\firefox.exe] => (Allow) C:\users\tunguska\appdata\local\mozilla firefox\firefox.exe => No File
FirewallRules: [TCP Query User{D8786D51-824A-4684-B98D-3E7A302EAD49}C:\users\tunguska\appdata\local\mozilla firefox\firefox.exe] => (Allow) C:\users\tunguska\appdata\local\mozilla firefox\firefox.exe => No File
FirewallRules: [{0E62FFDC-6C17-4B92-BEF7-67B035212010}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{28CC23CD-5E8D-4B36-AB01-C328FE220216}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{C67183F2-23F1-4684-8EC5-77F0E9637BCF}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{ACC11A00-7A72-4529-89E7-A43B0E56DEC4}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{AB434918-70D8-4265-90E8-3D7A1F34D146}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [UDP Query User{23AF2AC9-A018-4889-B7EA-B72921076C49}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [TCP Query User{A80C5C26-0063-4D7B-88B8-DA4FEB31E242}E:\programy\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) E:\programy\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [UDP Query User{A2A753F9-AC93-49A9-8BE6-915932588E9C}E:\programy\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) E:\programy\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [TCP Query User{8FF987D0-7D9C-4EB2-9C01-C54A328DF29F}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{B1B29813-850E-416C-88A2-45FEFC0D6282}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{B4A8D9AC-63D5-4BD7-9F65-6A888DBBFCB5}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{5685D2AE-AE70-49B3-A257-7872C3E01D94}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{C1F7E756-6845-428C-915D-0BD674F8DDF4}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe => No File
FirewallRules: [UDP Query User{07E632F3-2847-45FF-9869-14E72975B547}C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_211\bin\javaw.exe => No File
FirewallRules: [TCP Query User{49C59EBA-B332-4E1C-84BD-C1C87C488FEB}E:\hry 2016\rage 2\rage2.exe] => (Allow) E:\hry 2016\rage 2\rage2.exe => No File
FirewallRules: [UDP Query User{CCFA616B-D270-4D2F-9B3C-F5DC9C22A649}E:\hry 2016\rage 2\rage2.exe] => (Allow) E:\hry 2016\rage 2\rage2.exe => No File
FirewallRules: [TCP Query User{554ABE43-0D40-4ECF-982F-B0CC3044E64C}C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe => No File
FirewallRules: [UDP Query User{5B4E0FF3-CB63-4067-AA0F-F373766E1FF7}C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_221\bin\javaw.exe => No File
FirewallRules: [TCP Query User{326576AD-229F-409C-A8A9-CE7939F3A00A}E:\hry 2016\medal of honor - allied assault war chest\mohaa.exe] => (Allow) E:\hry 2016\medal of honor - allied assault war chest\mohaa.exe => No File
FirewallRules: [UDP Query User{18278EB1-2A9F-4A42-80A4-EB4F86905B71}E:\hry 2016\medal of honor - allied assault war chest\mohaa.exe] => (Allow) E:\hry 2016\medal of honor - allied assault war chest\mohaa.exe => No File
FirewallRules: [{0149E8EB-5973-411E-B5E9-BF149C836374}] => (Allow) E:\Programy\Steam\steamapps\common\Alien Isolation\AI.exe => No File
FirewallRules: [{A8F28768-9EA3-428F-84EA-DDCA18F55662}] => (Allow) E:\Programy\Steam\steamapps\common\Alien Isolation\AI.exe => No File
FirewallRules: [TCP Query User{655C1B94-E772-461B-8321-20BE8814D04E}E:\hry 2016\wrc 9 fia world rally championship\wrc9.exe] => (Allow) E:\hry 2016\wrc 9 fia world rally championship\wrc9.exe => No File
FirewallRules: [UDP Query User{F4EEA7F3-25B6-45F2-B7F6-5278F2DF7052}E:\hry 2016\wrc 9 fia world rally championship\wrc9.exe] => (Allow) E:\hry 2016\wrc 9 fia world rally championship\wrc9.exe => No File
FirewallRules: [TCP Query User{9E186AC0-E553-4A01-AAF7-1E9D018F22FF}C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe => No File
FirewallRules: [UDP Query User{C3EBF154-2DF7-45C0-B0AD-4D4F98E5EA78}C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_271\bin\javaw.exe => No File
FirewallRules: [{4CC51B90-2D12-49F0-8EB7-747D6CA8F395}] => (Allow) F:\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{056B5390-DA57-4BE4-A0F1-9F3B8F7E3ABA}] => (Allow) F:\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{C0ADB008-C15A-44AE-8AFD-B508C32CFD74}] => (Allow) F:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{6B3D03A8-A743-4412-BE2B-673FDD4DA398}] => (Allow) F:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{905D190C-FCB2-437A-84C9-19DFE62140CD}F:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) F:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [UDP Query User{BEDB8725-A467-4207-B34A-F580EF71828D}F:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) F:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [TCP Query User{00C55F16-3914-45DE-9B8F-7802EDDC665E}F:\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) F:\steam\steamapps\common\7 days to die\7daystodie.exe => No File
FirewallRules: [UDP Query User{6C661CD4-390A-4CA9-B31D-E7F025FEC170}F:\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) F:\steam\steamapps\common\7 days to die\7daystodie.exe => No File
FirewallRules: [{73FA229F-6355-4C61-A07F-BF71B9770C0E}] => (Allow) F:\Steam\steamapps\common\Return to Castle Wolfenstein\WolfSP.exe () [File not signed]
FirewallRules: [{E486312E-F007-4AAD-916C-2C43D42EF433}] => (Allow) F:\Steam\steamapps\common\Return to Castle Wolfenstein\WolfSP.exe () [File not signed]
FirewallRules: [{35893331-EEB7-4918-8E20-83469A8CC180}] => (Allow) F:\Steam\steamapps\common\Return to Castle Wolfenstein\WolfMP.exe () [File not signed]
FirewallRules: [{1AF64264-2CBB-46D2-90B6-4CB95C50E87C}] => (Allow) F:\Steam\steamapps\common\Return to Castle Wolfenstein\WolfMP.exe () [File not signed]
FirewallRules: [{4088E926-187C-427F-8632-830B69096971}] => (Allow) F:\Steam\steamapps\common\Mafia\Mafia\Game.exe (Illusion Softworks) [File not signed]
FirewallRules: [{C36BD4CF-A975-45DD-9ED9-171D1112327A}] => (Allow) F:\Steam\steamapps\common\Mafia\Mafia\Game.exe (Illusion Softworks) [File not signed]
FirewallRules: [{8653866C-A62E-4E72-B559-BCBD613E8521}] => (Allow) F:\Steam\steamapps\common\Mafia\Mafia\Setup.exe () [File not signed]
FirewallRules: [{63906209-CE0B-4F04-848F-8ED3188225A5}] => (Allow) F:\Steam\steamapps\common\Mafia\Mafia\Setup.exe () [File not signed]
FirewallRules: [{AFA46120-BFBB-4359-8C62-A9D410153240}] => (Allow) F:\Steam\steamapps\common\Unreal Tournament 2004\System\UT2004.exe () [File not signed]
FirewallRules: [{06B472EE-0EBA-49D6-AF11-947E3CA7922E}] => (Allow) F:\Steam\steamapps\common\Unreal Tournament 2004\System\UT2004.exe () [File not signed]
FirewallRules: [TCP Query User{290E50AF-20A1-4FC9-AFD7-2277389D68CB}C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe => No File
FirewallRules: [UDP Query User{DCF40D4D-A65D-44C0-A340-E83A742A3F30}C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_291\bin\javaw.exe => No File
FirewallRules: [{29BA6A08-B80D-43BE-BC11-34ACFA51C350}] => (Allow) F:\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [{69EAE8CB-D4D4-428F-AFBB-5E0EEED32E5B}] => (Allow) F:\Battlestate Games\BsgLauncher\BsgLauncher.exe (BATTLESTATE GAMES LIMITED -> Battlestate Games)
FirewallRules: [TCP Query User{7C64B3BF-937C-447A-9E59-C30F852FC28C}F:\steam\steamapps\common\need for speed(tm) most wanted\nfs13.exe] => (Allow) F:\steam\steamapps\common\need for speed(tm) most wanted\nfs13.exe => No File
FirewallRules: [UDP Query User{787216C9-AA6F-44CD-8694-E7037979C0D4}F:\steam\steamapps\common\need for speed(tm) most wanted\nfs13.exe] => (Allow) F:\steam\steamapps\common\need for speed(tm) most wanted\nfs13.exe => No File
FirewallRules: [TCP Query User{5FF55AF9-13BC-4F5D-8C0D-A79CB4BF7B63}F:\steam\steamapps\common\battlefield 1\bf1.exe] => (Allow) F:\steam\steamapps\common\battlefield 1\bf1.exe => No File
FirewallRules: [UDP Query User{00E88015-F3C5-459B-8718-3A7BD9CE5AA3}F:\steam\steamapps\common\battlefield 1\bf1.exe] => (Allow) F:\steam\steamapps\common\battlefield 1\bf1.exe => No File
FirewallRules: [TCP Query User{BD38B2FA-4BD3-4401-A9DC-4C35C18AAEFB}C:\program files (x86)\java\jre1.8.0_301\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_301\bin\javaw.exe => No File
FirewallRules: [UDP Query User{FC3284FA-BAF2-4CFC-AEB5-8009B1B7C8B5}C:\program files (x86)\java\jre1.8.0_301\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_301\bin\javaw.exe => No File
FirewallRules: [{8E5F3516-9780-4E4E-A207-D1083290184A}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{4942D2F3-33EB-4C2F-BA50-902F08B955A5}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [TCP Query User{F649C77D-9580-45F4-8161-DBD91D8A2F01}F:\users\tunguska\appdata\local\enlisted\launcher.exe] => (Allow) F:\users\tunguska\appdata\local\enlisted\launcher.exe => No File
FirewallRules: [UDP Query User{9DE2FE0B-0EAA-41E4-95C0-2F879A9E83B6}F:\users\tunguska\appdata\local\enlisted\launcher.exe] => (Allow) F:\users\tunguska\appdata\local\enlisted\launcher.exe => No File
FirewallRules: [{D8B843ED-9458-4DF9-8BC6-BE2C4C72EEB8}] => (Allow) F:\Steam\steamapps\common\Black Mesa\bms.exe () [File not signed]
FirewallRules: [{4C485576-93FF-4B08-BEF9-3A5D9B2E0BA8}] => (Allow) F:\Steam\steamapps\common\Black Mesa\bms.exe () [File not signed]
FirewallRules: [{47F1ABFF-74DD-4199-A999-764CB16A2502}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{65D4440C-0C05-47C2-87F4-CCB6E6BD0BFC}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B40291A1-44CF-41BE-83C5-344C97839CF0}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{34892229-8A48-4E81-8D5B-BA5593ED1BDC}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5EBC8AAF-182C-4E20-BD6C-4EC84E500802}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5F7BA805-0874-4403-8FF1-747BE1A25A6B}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{66510823-75B5-4A35-8C63-E1320F3F1BB3}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{FB06F8D6-5BC9-41D2-A16A-D68830DF8E37}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{41E11769-BBD0-4A99-921C-A2C78122D4A2}] => (Allow) F:\Steam\steamapps\common\DayZ\DayZLauncher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{8882CD7A-B57F-485E-8F07-33C606D8A80F}] => (Allow) F:\Steam\steamapps\common\DayZ\DayZLauncher.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{AD75D3CA-0849-4034-9036-C40F99D78303}] => (Allow) F:\Steam\steamapps\common\DayZ\DayZ_BE.exe (BOHEMIA INTERACTIVE a.s. -> BattlEye Innovations)
FirewallRules: [{6A6C93EE-B157-49D2-BCAC-20CEE2D2B2AA}] => (Allow) F:\Steam\steamapps\common\DayZ\DayZ_BE.exe (BOHEMIA INTERACTIVE a.s. -> BattlEye Innovations)
FirewallRules: [{D2BAE14C-2D9B-46FD-9FC0-D3403812AECB}] => (Allow) F:\Steam\steamapps\common\DayZ\DayZ_x64.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{A768B73F-6168-4A68-9C69-1A8E9C97126C}] => (Allow) F:\Steam\steamapps\common\DayZ\DayZ_x64.exe (BOHEMIA INTERACTIVE a.s. -> Bohemia Interactive)
FirewallRules: [{05BFA909-0C95-4530-97CC-2518F9FE12B4}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite Titanium.SP3\WNt600x64\RpcSandraSrv.exe (SiSoftware SPC -> SiSoftware) [File not signed]
FirewallRules: [{0564C4E5-D59F-4772-9A53-F79F053677DC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.80.194.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CCB86F00-85FB-4ECA-93E0-A3A40CF7B7DC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.80.194.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{87370F9E-DDD1-4341-9A62-EABD492C8C7A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.80.194.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{1A7B39EC-1489-4B22-BB2C-9C11CE88C7BB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.80.194.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9A93B5F1-996D-4B9F-8A6A-1E38B933549B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{03FC15F9-1DFD-48CE-A368-722F1E01AE2E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{80AB0EB5-E2C7-4FC2-B0D4-678EECB39C64}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{37BE6B63-6454-44F2-BE0F-554E33C8500B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{B35218CC-D2A0-4BE7-9385-7E973679EA9D}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{4BDC1F54-EA59-44D1-ABDD-245FA1985C8F}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{9807DC0F-04E2-4ABB-BB1F-BF7D9FADE5E8}] => (Allow) F:\Steam\steamapps\common\Resident Evil Village BIOHAZARD VILLAGE\re8.exe (CAPCOM CO., LTD. -> CAPCOM CO., LTD.)
FirewallRules: [{2BD893FB-0261-4EAE-BAD0-86B6A873CB59}] => (Allow) F:\Steam\steamapps\common\Resident Evil Village BIOHAZARD VILLAGE\re8.exe (CAPCOM CO., LTD. -> CAPCOM CO., LTD.)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:118.34 GB) (Free:46.13 GB) (39%)
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (02/25/2022 07:17:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: winamp.exe, verze: 5.3.2.1003, časové razítko: 0x456339e4
Název chybujícího modulu: iertutil.dll, verze: 11.0.19041.1503, časové razítko: 0x8cf7d6e8
Kód výjimky: 0xc0000005
Posun chyby: 0x001d0af0
ID chybujícího procesu: 0x2ce8
Čas spuštění chybující aplikace: 0x01d82a73d3d94e46
Cesta k chybující aplikaci: C:\Program Files (x86)\Winamp\winamp.exe
Cesta k chybujícímu modulu: C:\Windows\System32\iertutil.dll
ID zprávy: 648ea454-907b-46ee-803f-36b45f38b1fc
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/24/2022 07:50:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: winamp.exe, verze: 5.3.2.1003, časové razítko: 0x456339e4
Název chybujícího modulu: iertutil.dll, verze: 11.0.19041.1503, časové razítko: 0x8cf7d6e8
Kód výjimky: 0xc0000005
Posun chyby: 0x001d0af0
ID chybujícího procesu: 0x29e8
Čas spuštění chybující aplikace: 0x01d829af6cd89c89
Cesta k chybující aplikaci: C:\Program Files (x86)\Winamp\winamp.exe
Cesta k chybujícímu modulu: C:\Windows\System32\iertutil.dll
ID zprávy: 28fcd654-0601-4ca7-b79e-1a65696558f9
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/24/2022 07:47:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: winamp.exe, verze: 5.3.2.1003, časové razítko: 0x456339e4
Název chybujícího modulu: iertutil.dll, verze: 11.0.19041.1503, časové razítko: 0x8cf7d6e8
Kód výjimky: 0xc0000005
Posun chyby: 0x001d0af0
ID chybujícího procesu: 0x2c30
Čas spuštění chybující aplikace: 0x01d829ac19c15330
Cesta k chybující aplikaci: C:\Program Files (x86)\Winamp\winamp.exe
Cesta k chybujícímu modulu: C:\Windows\System32\iertutil.dll
ID zprávy: b7ca0ef3-7b62-46b3-bc3f-3c278340f617
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/23/2022 05:05:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ucldr_battlegrounds_gl.exe, verze: 2021.6.29.973, časové razítko: 0x60dac8ea
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.1466, časové razítko: 0xe2f8ca76
Kód výjimky: 0xc0000374
Posun chyby: 0x00000000000ff199
ID chybujícího procesu: 0x784
Čas spuštění chybující aplikace: 0x01d828ceead8faee
Cesta k chybující aplikaci: C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: aca4a3ac-5ec6-4257-a03b-d9b4d867632b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/22/2022 06:40:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: winamp.exe, verze: 5.3.2.1003, časové razítko: 0x456339e4
Název chybujícího modulu: iertutil.dll, verze: 11.0.19041.1503, časové razítko: 0x8cf7d6e8
Kód výjimky: 0xc0000005
Posun chyby: 0x001d0af0
ID chybujícího procesu: 0x177c
Čas spuštění chybující aplikace: 0x01d828134fc68468
Cesta k chybující aplikaci: C:\Program Files (x86)\Winamp\winamp.exe
Cesta k chybujícímu modulu: C:\Windows\System32\iertutil.dll
ID zprávy: f5680044-e8a7-4efe-af18-d336c25e0da6
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/22/2022 06:40:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: winamp.exe, verze: 5.3.2.1003, časové razítko: 0x456339e4
Název chybujícího modulu: iertutil.dll, verze: 11.0.19041.1503, časové razítko: 0x8cf7d6e8
Kód výjimky: 0xc0000005
Posun chyby: 0x001d0af0
ID chybujícího procesu: 0x13a0
Čas spuštění chybující aplikace: 0x01d8280d31c023d6
Cesta k chybující aplikaci: C:\Program Files (x86)\Winamp\winamp.exe
Cesta k chybujícímu modulu: C:\Windows\System32\iertutil.dll
ID zprávy: 9c381d24-0f75-468d-a745-9701e4e7ed68
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/22/2022 05:56:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: winamp.exe, verze: 5.3.2.1003, časové razítko: 0x456339e4
Název chybujícího modulu: iertutil.dll, verze: 11.0.19041.1503, časové razítko: 0x8cf7d6e8
Kód výjimky: 0xc0000005
Posun chyby: 0x001d0af0
ID chybujícího procesu: 0x315c
Čas spuštění chybující aplikace: 0x01d827fcf432e139
Cesta k chybující aplikaci: C:\Program Files (x86)\Winamp\winamp.exe
Cesta k chybujícímu modulu: C:\Windows\System32\iertutil.dll
ID zprávy: 6d449c5f-8ac5-42f8-a50b-e826d604c1bd
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/21/2022 05:48:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: winamp.exe, verze: 5.3.2.1003, časové razítko: 0x456339e4
Název chybujícího modulu: iertutil.dll, verze: 11.0.19041.1503, časové razítko: 0x8cf7d6e8
Kód výjimky: 0xc0000005
Posun chyby: 0x001d0af0
ID chybujícího procesu: 0x33b0
Čas spuštění chybující aplikace: 0x01d827428a93832e
Cesta k chybující aplikaci: C:\Program Files (x86)\Winamp\winamp.exe
Cesta k chybujícímu modulu: C:\Windows\System32\iertutil.dll
ID zprávy: 3aa4f6ee-d6d5-4954-a1af-602c62f672ba
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (02/28/2022 03:35:50 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HE8OVF9)
Description: Server {5F7F3F7B-1177-4D4B-B1DB-BC6F671B8F25} se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/28/2022 03:35:45 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HE8OVF9)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/27/2022 11:23:00 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (02/27/2022 01:28:46 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (02/26/2022 08:40:56 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (02/26/2022 03:13:25 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (02/26/2022 02:23:49 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (02/25/2022 10:35:55 PM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Windows Defender:
================Event[0]:
Date: 2021-11-26 04:25:42
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.303.25.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16400.2
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.
Date: 2021-11-26 04:25:42
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.303.25.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16400.2
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.
Date: 2021-11-25 04:25:14
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.303.25.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16400.2
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.
Date: 2021-11-25 04:25:14
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.303.25.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16400.2
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.
CodeIntegrity:
===============
Date: 2022-02-28 15:39:14
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2022-02-28 15:38:06
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 3602 11/01/2012
Motherboard: ASUSTeK Computer INC. P8P67 REV 3.1
Processor: Intel(R) Core(TM) i5-3570K CPU @ 3.40GHz
Percentage of memory in use: 22%
Total physical RAM: 16351.13 MB
Available physical RAM: 12614.82 MB
Total Virtual: 32735.13 MB
Available Virtual: 27369.25 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:118.34 GB) (Free:46.13 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive e: (Nový svazek) (Fixed) (Total:1863.01 GB) (Free:51.4 GB) NTFS
Drive f: (Nový svazek) (Fixed) (Total:476.94 GB) (Free:94.48 GB) NTFS
\\?\Volume{2023efa1-0000-0000-0000-e09b1d000000}\ () (Fixed) (Total:0.8 GB) (Free:0.38 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 476.9 GB) (Disk ID: 95F9AFE7)
Partition 1: (Not Active) - (Size=476.9 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: 2023EFA1)
Partition 1: (Active) - (Size=118.3 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=824 MB) - (Type=27)
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 97524877)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Re: Prosím o kontrolu FRST. Díky moc!
Je to ovela lepsie 
Doporucujem prescanovat/vycistit PC s MBAM
Doporucujem prescanovat/vycistit PC s MBAM
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Prosím o kontrolu FRST. Díky moc!
Děkuju mockrát 
Re: Prosím o kontrolu FRST. Díky moc!
Rado sa stalo 
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Přispějete na provoz fóra?