Dobrý den, po startu windows mi vyhodí hlášku chybí version.dll i když v pc je. Nejde se ani dostat do správce zařízení. Píše to v modulu snap-in chyba.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-10-2020
Ran by SYSTEM on MININT-I3JEE32 (17-10-2020 14:47:19)
Running from D:\
Platform: Windows 10 Pro Version 2004 19041.1 (X64) Language: Čeština (Česko)
Boot Mode: Recovery
Default: ControlSet001
ATTENTION!:=====> If the system is bootable FRST must be run from normal or Safe mode to create a complete log.
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [SoftEther VPN Client UI Helper] => C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [5255104 2019-03-21] (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [109160 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [710264 2020-06-18] (Oracle America, Inc. -> Oracle Corporation)
HKU\Default\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Corporation)
HKU\Default User\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Corporation)
HKU\DefaultAppPool\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SoftEther VPN Client Manager Startup.lnk [2019-03-21]
ShortcutTarget: SoftEther VPN Client Manager Startup.lnk -> C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {05D44F7B-176D-4269-8ABA-8965F4DA95FC} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {08FFFF34-5CEC-4F15-B84F-CE359920AE78} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {0F8611AD-C752-4A2E-A15F-03E0E2D34337} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Plha\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads\esetonlinescanner (1).exe
Task: {12DF3F8A-9612-48CA-AE38-2818FA70CA73} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\Windows\System32\WinBioPlugIns\FaceFodUninstaller.exe [503296 2019-12-07] ()
Task: {14CA672D-F8FC-479E-B509-9B0D722D5BCF} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1741416 2020-09-17] (Avast Software s.r.o. -> Avast Software)
Task: {1698E10E-ED6A-4991-980F-81A3FBF267C5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24690360 2020-05-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {2BA964B7-81B4-433C-8803-2D472B1F7850} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {2CB15278-A715-4428-A9B5-D3EAB37EBB4F} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\Windows\system32\EOSNotify.exe
Task: {2CDB3F74-7661-46C7-8167-1B3773E8E2CC} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {303433AF-D232-498A-9D7E-CBF7A8BEECB6} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {36FC9F65-FBEA-4966-B8BA-E82F5204B9E1} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {3AD78E54-323E-43C9-AEBD-0F1759E0E295} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {3E5D6278-10BF-426D-B10D-15B92376FCB6} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {415D5E36-A0A4-4E8F-9FD7-17F96ACDEEC9} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {48C5DB0B-CF22-4616-9A7F-E190D08DD265} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {496C6621-103E-4205-96B5-BF532BBFFEA4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {4B2A4067-CB30-4BB3-B99B-7C169C0B2F20} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {4F0C5B68-5F03-4BC4-A0FD-EC67C0BF5BB2} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {4F56E2C4-4D37-4903-8EF4-D4CDF3C8EEEB} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {53B6F768-D33F-4145-9023-E8C6C76D6FD1} - System32\Tasks\{9CB13F02-3634-4FAA-8A5C-84F17793EF1F} => C:\Windows\system32\pcalua.exe -a "E:\Stažené\ANNO 1404 - Benátky\Patche\anno1404_1.2.exe" -d "E:\Stažené\ANNO 1404 - Benátky\Patche"
Task: {5429588C-3096-43B0-B1AB-C8D0CB63336B} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3850336 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
Task: {5540CBB5-3DCC-4BC6-BDAA-FAE017851B54} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {56C129C0-9326-4440-B8D6-F44F066F27CC} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {58D0B56E-7B13-46F5-8BF4-8F2FD84BDB0A} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {5AA5DF71-DA47-40A2-AAA9-7AE15810E294} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {6F0AE5A2-13C8-4DCC-9AC4-32EAB4C99F21} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {75B60B8A-3B0B-4295-8E58-D3E8888B9FDB} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {7BAA88D2-F47F-4A62-8903-9CCA39788517} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {7ED02C17-EFE4-4455-BCC6-7E9DC6BB1C78} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {833097C6-BF27-42EC-9628-5E258555A7CC} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {880B0356-4218-45E7-9E9B-F8041C805191} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-05-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8AF8F7F6-BA90-406C-A886-A23A50E5A378} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {8C749654-C073-4A97-A835-6155CB7A6F5E} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {91A8A0E5-48A9-46C8-99A6-AB94BB8200B2} - System32\Tasks\Outbyte\PC Repair\Start PC Repair оn logon => C:\Program Files (x86)\Outbyte\PC Repair\PCRepair.exe
Task: {A613BB19-3711-4BEE-A0A8-CF5EDA8A54C9} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {A7237022-80F4-4CF0-AF2C-DB719ABCAA56} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {ACE91629-4105-40C4-BB8C-D7064A8AA3A4} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B2D4F2A3-6F91-405E-9747-6D34809D4CBA} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {B7301EA6-EE9B-47AD-9D20-633489C6C905} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-22] (Google Inc -> Google Inc.)
Task: {BA31023E-D0BB-4F8D-9B80-63B79360C373} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1427180062-2798621324-3331812027-1000 => %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {BE16825F-B329-4817-9F8E-0DA172A941A0} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {C0520DE4-54AE-4F71-9C4B-7789E34AB4A4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-22] (Google Inc -> Google Inc.)
Task: {CA39650E-EB0A-4DB3-ADC1-050F4EABB0D3} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {D141A318-6919-49A8-AA42-BBE44912B952} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {D5041D30-FA84-4D97-9B96-227C9629E83F} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Plha\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads\esetonlinescanner (1).exe
Task: {DF8471CF-D0B1-4941-ADAB-5F9F6610114F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {E04F1D4C-B998-4F45-8048-4246FC0A3DB2} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {EE406CEA-4EA9-47E5-A18A-ADC3B8AA9621} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {EFF67579-D5F2-443D-8785-024A12E6D93C} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {F0E70FFD-E424-410B-A70E-972B0F1DC925} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {F20059BF-DD15-4FA4-982B-8F878BCD1775} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {F204A5FB-C36D-4A61-B2BA-3D73A0AED632} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {F3EA2A23-DA55-4627-B641-8549E68B5FD7} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {FE59A8C1-FE59-4BBF-9F14-7053D0EEBAAC} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7824280 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [357848 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
S2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [58048 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8615864 2020-07-13] (BattlEye Innovations e.K. -> )
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1368408 2015-11-30] (Disc Soft Ltd -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2019-01-21] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
S2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.)
S2 MBAMInstallerService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMInstallerService.exe [6329992 2020-10-16] (Malwarebytes Inc -> Malwarebytes)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [271920 2007-03-12] (Nero AG -> Nero AG)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4956856 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 SEVPNCLIENT; C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [5255104 2019-03-21] (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
S4 ssh-agent; C:\Windows\System32\OpenSSH\ssh-agent.exe [384512 2019-10-15] ()
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 QMEmulatorService; "E:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe" [X]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AcpiPmi; C:\Windows\System32\drivers\acpipmi.sys [18432 2019-12-07] (Microsoft Corporation)
S1 afunix; C:\Windows\system32\drivers\afunix.sys [41984 2019-12-07] (Microsoft Corporation)
S1 afunix; C:\Windows\SysWOW64\drivers\afunix.sys [29696 2019-12-07] (Microsoft Corporation)
S1 ahcache; C:\Windows\System32\DRIVERS\ahcache.sys [292864 2019-12-07] (Microsoft Corporation)
S3 applockerfltr; C:\Windows\System32\drivers\applockerfltr.sys [18432 2019-12-07] (Microsoft Corporation)
S0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37136 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
S1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [206392 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
S1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [235584 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
S0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [195648 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
S0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [60480 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
S0 aswElam; C:\Windows\System32\drivers\aswElam.sys [16824 2020-07-23] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
S1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42768 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
S2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175192 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
S1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [517592 2020-09-25] (Avast Software s.r.o. -> AVAST Software)
S1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109272 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
S0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84848 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
S1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851600 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
S1 aswSP; C:\Windows\System32\drivers\aswSP.sys [469880 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\Windows\System32\drivers\aswStm.sys [217328 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
S0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [326408 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2015-12-28] (Tages SA -> )
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [9728 2019-12-07] (Windows (R) Win 7 DDK provider)
S3 BEDaisy; C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys [3038568 2020-07-18] (BattlEye Innovations e.K. -> )
S1 Beep; C:\Windows\System32\Drivers\Beep.sys [10240 2019-12-07] (Microsoft Corporation)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation)
S3 BthEnum; C:\Windows\System32\drivers\BthEnum.sys [113664 2019-12-07] (Microsoft Corporation)
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation)
S3 BthLEEnum; C:\Windows\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [106496 2019-12-07] (Microsoft Corporation)
S3 BthMini; C:\Windows\System32\drivers\BTHMINI.sys [45568 2019-12-07] (Microsoft Corporation)
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [76800 2019-12-07] (Microsoft Corporation)
S3 BTHPORT; C:\Windows\System32\drivers\BTHport.sys [1548288 2019-12-07] (Microsoft Corporation)
S3 BTHUSB; C:\Windows\System32\drivers\BTHUSB.sys [110592 2019-12-07] (Microsoft Corporation)
S1 CimFS; C:\Windows\System32\Drivers\CimFS.sys [91136 2019-12-07] ()
S3 circlass; C:\Windows\System32\drivers\circlass.sys [52224 2019-12-07] (Microsoft Corporation)
S2 CldFlt; C:\Windows\System32\drivers\cldflt.sys [489984 2019-12-07] (Microsoft Corporation)
S1 CSC; C:\Windows\System32\drivers\csc.sys [580608 2019-12-07] (Microsoft Corporation)
S3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-12-24] (Disc Soft Ltd -> Disc Soft Ltd)
S3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [46392 2015-12-24] (Disc Soft Ltd -> Disc Soft Ltd)
S1 FileCrypt; C:\Windows\System32\drivers\filecrypt.sys [59392 2019-12-07] (Microsoft Corporation)
S1 GpuEnergyDrv; C:\Windows\System32\drivers\gpuenergydrv.sys [8704 2019-12-07] (Microsoft Corporation)
S3 Hamachi; C:\Windows\System32\drivers\Hamdrv.sys [45680 2016-05-04] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
S3 HidBth; C:\Windows\System32\drivers\hidbth.sys [120320 2019-12-07] (Microsoft Corporation)
S3 HidIr; C:\Windows\System32\drivers\hidir.sys [48640 2019-12-07] (Microsoft Corporation)
S3 HwNClx0101; C:\Windows\System32\Drivers\mshwnclx.sys [30208 2019-12-07] (Microsoft Corporation)
S3 IndirectKmd; C:\Windows\System32\drivers\IndirectKmd.sys [47104 2019-12-07] (Microsoft Corporation)
S3 intelpmax; C:\Windows\System32\drivers\intelpmax.sys [30720 2019-12-07] (Microsoft Corporation)
S4 IObitUnlocker; C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [36944 2014-03-04] (IObit Information Technology -> IObit)
S3 IpFilterDriver; C:\Windows\System32\DRIVERS\ipfltdrv.sys [90112 2019-12-07] (Microsoft Corporation)
S3 IPNAT; C:\Windows\System32\drivers\ipnat.sys [225280 2019-12-07] (Microsoft Corporation)
S2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2015-12-28] (Tages SA -> )
S2 lltdio; C:\Windows\System32\drivers\lltdio.sys [72704 2019-12-07] (Microsoft Corporation)
S2 luafv; C:\Windows\system32\drivers\luafv.sys [140288 2019-12-07] (Microsoft Corporation)
S3 MbbCx; C:\Windows\System32\drivers\MbbCx.sys [386048 2019-12-07] (Microsoft Corporation)
S3 Microsoft_Bluetooth_AvrcpTransport; C:\Windows\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [65024 2019-12-07] (Microsoft Corporation)
S3 Modem; C:\Windows\System32\drivers\modem.sys [47104 2019-12-07] (Microsoft Corporation)
S3 monitor; C:\Windows\System32\drivers\monitor.sys [80896 2019-12-07] (Microsoft Corporation)
S2 MQAC; C:\Windows\System32\drivers\mqac.sys [184320 2019-12-07] (Microsoft Corporation)
S3 MRxDAV; C:\Windows\system32\drivers\mrxdav.sys [157696 2019-12-07] (Microsoft Corporation)
S3 MsBridge; C:\Windows\System32\drivers\bridge.sys [127488 2019-12-07] (Microsoft Corporation)
S3 mshidumdf; C:\Windows\System32\drivers\mshidumdf.sys [12288 2019-12-07] (Microsoft Corporation)
S2 MsLldp; C:\Windows\System32\drivers\mslldp.sys [78848 2019-12-07] (Microsoft Corporation)
S1 NdisCap; C:\Windows\System32\drivers\ndiscap.sys [54272 2019-12-07] (Microsoft Corporation)
S3 NdisImPlatform; C:\Windows\System32\drivers\NdisImPlatform.sys [135168 2019-12-07] (Microsoft Corporation)
S2 Ndu; C:\Windows\System32\drivers\Ndu.sys [131584 2019-12-07] (Microsoft Corporation)
S3 Neo_VPN; C:\Windows\System32\drivers\Neo6_x64_VPN.sys [38216 2019-03-21] (SoftEther Corporation -> SoftEther Corporation)
S2 PEAUTH; C:\Windows\System32\drivers\peauth.sys [822784 2019-12-07] (Microsoft Corporation)
S3 PNPMEM; C:\Windows\System32\drivers\pnpmem.sys [17408 2019-12-07] (Microsoft Corporation)
S3 QWAVEdrv; C:\Windows\system32\drivers\qwavedrv.sys [53248 2019-12-07] (Microsoft Corporation)
S3 rdpbus; C:\Windows\System32\drivers\rdpbus.sys [28672 2019-12-07] (Microsoft Corporation)
S3 RDPDR; C:\Windows\System32\drivers\rdpdr.sys [168448 2019-12-07] (Microsoft Corporation)
S3 RFCOMM; C:\Windows\System32\drivers\rfcomm.sys [213504 2019-12-07] (Microsoft Corporation)
S3 rhproxy; C:\Windows\System32\drivers\rhproxy.sys [115712 2019-12-07] (Microsoft Corporation)
S2 rspndr; C:\Windows\System32\drivers\rspndr.sys [89088 2019-12-07] (Microsoft Corporation)
S3 scfilter; C:\Windows\System32\DRIVERS\scfilter.sys [44544 2019-12-07] (Microsoft Corporation)
S3 spaceparser; C:\Windows\System32\drivers\spaceparser.sys [26624 2019-12-07] (Microsoft Corporation)
S2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 Synth3dVsc; C:\Windows\System32\drivers\Synth3dVsc.sys [67072 2019-12-07] (Microsoft Corporation)
S2 tcpipreg; C:\Windows\System32\drivers\tcpipreg.sys [54784 2019-12-07] (Microsoft Corporation)
S3 TsUsbFlt; C:\Windows\System32\drivers\tsusbflt.sys [66560 2019-12-07] (Microsoft Corporation)
S3 TsUsbGD; C:\Windows\System32\drivers\TsUsbGD.sys [37888 2019-12-07] (Microsoft Corporation)
S3 tsusbhub; C:\Windows\System32\drivers\tsusbhub.sys [133120 2019-12-07] (Microsoft Corporation)
S3 tunnel; C:\Windows\System32\drivers\tunnel.sys [129024 2019-12-07] (Microsoft Corporation)
S3 UcmCx0101; C:\Windows\System32\Drivers\UcmCx.sys [160256 2019-12-07] (Microsoft Corporation)
S3 UcmTcpciCx0101; C:\Windows\System32\Drivers\UcmTcpciCx.sys [188416 2019-12-07] (Microsoft Corporation)
S3 UcmUcsiAcpiClient; C:\Windows\System32\drivers\UcmUcsiAcpiClient.sys [36864 2019-12-07] (Microsoft Corporation)
S3 UcmUcsiCx0101; C:\Windows\System32\Drivers\UcmUcsiCx.sys [113152 2019-12-07] (Microsoft Corporation)
S3 usbaudio2; C:\Windows\System32\drivers\usbaudio2.sys [260608 2019-12-07] (Microsoft Corporation)
S3 usbcir; C:\Windows\System32\drivers\usbcir.sys [107520 2019-12-07] (Microsoft Corporation)
S3 usbprint; C:\Windows\System32\drivers\usbprint.sys [35328 2019-12-07] (Microsoft Corporation)
S3 VirtualRender; C:\Windows\System32\DriverStore\FileRepository\vrd.inf_amd64_81fbd405ff2470fc\vrd.sys [11264 2019-12-07] (Microsoft Corporation)
S3 wcnfs; C:\Windows\system32\drivers\wcnfs.sys [93184 2019-12-07] (Microsoft Corporation)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [45664 2019-12-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [355760 2019-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WinNat; C:\Windows\System32\drivers\winnat.sys [258560 2019-12-07] (Microsoft Corporation)
S3 WINUSB; C:\Windows\System32\drivers\WinUsb.sys [107008 2019-12-07] (Microsoft Corporation)
S3 WudfPf; C:\Windows\System32\drivers\WudfPf.sys [136192 2019-12-07] (Microsoft Corporation)
S3 WUDFRd; C:\Windows\System32\drivers\WUDFRd.sys [315392 2019-12-07] (Microsoft Corporation)
S3 WUDFWpdFs; C:\Windows\system32\DRIVERS\WUDFRd.sys [315392 2019-12-07] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\Windows\System32\drivers\WUDFRd.sys [315392 2019-12-07] (Microsoft Corporation)
S3 xboxgip; C:\Windows\System32\drivers\xboxgip.sys [324608 2019-12-07] (Microsoft Corporation)
S3 xinputhid; C:\Windows\System32\drivers\xinputhid.sys [48640 2019-12-07] (Microsoft Corporation)
S2 aow_drv; \??\E:\Program Files\TxGameAssistant\UI\2.0.10707.123\aow_drv_x64_ev.sys [X]
S3 idsvc; no ImagePath
S3 OSFMount; \??\e:\Counter-Strike Global Offensive\image\x64\OSFMount.sys [X]
UpperFilters: [{4D36E967-E325-11CE-BFC1-08002BE10318}] -> [partmgr aswArDisk]
UpperFilters: [{4D36E96B-E325-11CE-BFC1-08002BE10318}] -> [aswKbd kbdclass]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-10-17 14:47 - 2020-10-17 14:47 - 000000000 ____D C:\FRST
2020-10-17 13:35 - 2020-10-17 15:31 - 000000000 _____ C:\Users\Plha\Downloads\avenger.exe
2020-10-17 13:34 - 2020-10-17 13:34 - 002299904 _____ (Farbar) C:\Users\Plha\Downloads\FRST64.exe
2020-10-17 10:42 - 2020-10-17 13:11 - 000000000 ____D C:\Users\Plha\AppData\Local\FSDART
2020-10-17 10:41 - 2020-10-17 10:42 - 000000000 ____D C:\Users\Plha\AppData\Local\F-Secure
2020-10-17 10:41 - 2020-10-17 10:42 - 000000000 ____D C:\ProgramData\F-Secure
2020-10-17 10:39 - 2020-10-17 10:39 - 000000000 ____D C:\ProgramData\IObit
2020-10-17 10:39 - 2020-10-17 10:39 - 000000000 ____D C:\Program Files (x86)\IObit
2020-10-17 10:39 - 2020-10-17 10:29 - 000001257 _____ C:\Users\Public\Desktop\IObit Unlocker.lnk
2020-10-17 09:52 - 2020-10-17 09:52 - 000724952 _____ C:\Users\Plha\Downloads\avenger.zip
2020-10-17 09:40 - 2020-10-17 13:34 - 000003614 _____ C:\Windows\System32\Tasks\MicrosoftEdgeUpdateTaskMachineUA1d6a45fdf63c634
2020-10-16 10:57 - 2020-10-16 10:57 - 001317080 _____ (Google LLC) C:\Users\Plha\Downloads\ChromeSetup.exe
2020-10-16 10:55 - 2020-10-16 10:55 - 000003934 _____ C:\Windows\System32\Tasks\EOSv3 Scheduler onLogOn
2020-10-16 10:55 - 2020-10-16 10:55 - 000003492 _____ C:\Windows\System32\Tasks\EOSv3 Scheduler onTime
2020-10-16 10:35 - 2020-10-17 10:43 - 000001667 _____ C:\Users\Plha\Desktop\ESET Online Scanner.lnk
2020-10-16 10:24 - 2020-10-16 10:24 - 000000000 ____D C:\Users\Matysek\AppData\Local\NVIDIA
2020-10-16 10:24 - 2020-10-16 10:24 - 000000000 ____D C:\Users\Matysek\AppData\Local\CrashDumps
2020-10-16 10:23 - 2020-10-16 10:23 - 000001446 _____ C:\Users\Matysek\Desktop\Microsoft Edge.lnk
2020-10-16 10:23 - 2020-10-16 10:23 - 000000000 ____D C:\Users\Matysek\AppData\Local\MicrosoftEdge
2020-10-16 10:21 - 2020-10-16 10:21 - 000000000 ____D C:\Users\Matysek\AppData\Local\Publishers
2020-10-16 10:20 - 2020-10-16 10:20 - 000000000 ___RD C:\Users\Matysek\3D Objects
2020-10-16 10:11 - 2020-10-16 10:11 - 000000000 ____D C:\Users\Matysek\AppData\Local\VirtualStore
2020-10-16 10:10 - 2020-10-16 10:22 - 000000000 ____D C:\Users\Matysek\AppData\Local\Packages
2020-10-16 10:10 - 2020-10-16 10:20 - 000000000 ____D C:\users\Matysek
2020-10-16 10:10 - 2020-10-16 10:10 - 000000020 ___SH C:\Users\Matysek\ntuser.ini
2020-10-16 10:10 - 2020-10-16 10:10 - 000000000 _SHDL C:\Users\Matysek\Šablony
2020-10-16 10:10 - 2020-10-16 10:10 - 000000000 _SHDL C:\Users\Matysek\Soubory cookie
2020-10-16 10:10 - 2020-10-16 10:10 - 000000000 _SHDL C:\Users\Matysek\Poslední
2020-10-16 10:10 - 2020-10-16 10:10 - 000000000 _SHDL C:\Users\Matysek\Okolní tiskárny
2020-10-16 10:10 - 2020-10-16 10:10 - 000000000 _SHDL C:\Users\Matysek\Okolní síť
2020-10-16 10:10 - 2020-10-16 10:10 - 000000000 _SHDL C:\Users\Matysek\Nabídka Start
2020-10-16 10:10 - 2020-10-16 10:10 - 000000000 _SHDL C:\Users\Matysek\Dokumenty
2020-10-16 10:10 - 2020-10-16 10:10 - 000000000 _SHDL C:\Users\Matysek\Documents\Obrázky
2020-10-16 10:10 - 2020-10-16 10:10 - 000000000 _SHDL C:\Users\Matysek\Documents\Hudba
2020-10-16 10:10 - 2020-10-16 10:10 - 000000000 _SHDL C:\Users\Matysek\Documents\Filmy
2020-10-16 10:10 - 2020-10-16 10:10 - 000000000 _SHDL C:\Users\Matysek\Data aplikací
2020-10-16 10:10 - 2020-10-16 10:10 - 000000000 _SHDL C:\Users\Matysek\AppData\Local\Data aplikací
2020-10-16 10:10 - 2020-10-16 10:10 - 000000000 ____D C:\Users\Matysek\AppData\Local\ConnectedDevicesPlatform
2020-10-16 10:10 - 2019-04-09 20:24 - 000000000 ____D C:\Users\Matysek\AppData\Local\LogMeIn Hamachi
2020-10-16 10:10 - 2019-03-20 16:44 - 000000000 ____D C:\Users\Matysek\AppData\Local\Microsoft Help
2020-10-16 10:10 - 2016-10-03 08:01 - 000000000 ____D C:\Users\Matysek\AppData\Roaming\Media Center Programs
2020-10-16 09:56 - 2020-10-16 09:56 - 000000000 ____D C:\Windows\System32\Tasks\Outbyte
2020-10-16 09:48 - 2020-10-16 10:06 - 000000000 ___HD C:\$SysReset
2020-10-16 09:48 - 2020-10-16 09:49 - 000000000 ____D C:\$Windows.~BT
2020-10-16 09:29 - 2020-10-16 10:10 - 000000000 ____D C:\KRD2018_Data
2020-10-16 08:41 - 2020-10-16 08:41 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-10-16 08:40 - 2020-10-16 08:40 - 000000000 ____D C:\Program Files\Malwarebytes
2020-10-16 07:22 - 2020-10-16 06:09 - 625199104 _____ C:\Users\Plha\Downloads\krd.iso
2020-10-15 21:24 - 2020-10-15 21:22 - 183879024 _____ C:\Users\Plha\Downloads\KVRT.exe
2020-10-15 11:38 - 2020-10-15 11:45 - 000000000 _____ C:\Recovery.txt
2020-10-15 09:47 - 2020-10-15 09:47 - 000000000 _____ C:\Users\Plha\Downloads\hijackthis.exe
2020-10-15 09:39 - 2020-10-14 11:14 - 500081112 _____ (AVAST Software) C:\Users\Plha\Downloads\avast_free_antivirus_setup_offline.exe
2020-10-14 08:31 - 2020-10-13 10:22 - 4294967295 _____ C:\Users\Plha\Downloads\Win10_2004_Czech_x64.iso
2020-10-13 08:10 - 2020-10-16 09:43 - 000000000 ____D C:\Users\DefaultAppPool\AppData\Local\CrashDumps
2020-10-12 10:29 - 2020-10-16 10:42 - 000000000 ____D C:\Program Files (x86)\Dll-Files.com Fixer
2020-10-12 10:22 - 2013-04-11 15:12 - 000019392 _____ (Dll-Files.com) C:\Windows\System32\roboot64.exe
2020-10-12 10:11 - 2020-10-12 10:11 - 000000000 ____D C:\Users\Plha\AppData\Roaming\dll-files.com
2020-10-12 09:37 - 2020-10-12 09:37 - 000000000 ____D C:\Program Files (x86)\Outbyte
2020-10-12 09:36 - 2020-10-12 09:36 - 000000000 ____D C:\ProgramData\Outbyte
2020-10-12 09:28 - 2020-10-12 09:28 - 000000000 ____D C:\Windows\System32\Drivers\NVIDIA Corporation
2020-10-12 09:27 - 2018-04-12 22:02 - 000998432 _____ (NVIDIA Corporation) C:\Windows\System32\NvIFR64.dll
2020-10-12 09:27 - 2018-04-12 22:02 - 000950016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2020-10-12 09:27 - 2018-04-12 22:01 - 001985112 _____ (NVIDIA Corporation) C:\Windows\System32\nvdispco6439135.dll
2020-10-12 09:27 - 2018-04-12 22:01 - 001690952 _____ (NVIDIA Corporation) C:\Windows\System32\nvhdagenco6420103.dll
2020-10-12 09:27 - 2018-04-12 22:01 - 001683712 _____ (NVIDIA Corporation) C:\Windows\System32\nvdispgenco6439135.dll
2020-10-12 09:27 - 2018-04-12 22:01 - 001138720 _____ (NVIDIA Corporation) C:\Windows\System32\NvFBC64.dll
2020-10-12 09:27 - 2018-04-12 22:01 - 001065888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2020-10-12 09:27 - 2018-04-12 22:01 - 000054272 _____ (NVIDIA Corporation) C:\Windows\System32\nvhdap64.dll
2020-10-12 09:27 - 2018-04-12 22:00 - 040278616 _____ (NVIDIA Corporation) C:\Windows\System32\nvcompiler.dll
2020-10-12 09:27 - 2018-04-12 22:00 - 035188992 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2020-10-12 09:27 - 2018-04-12 22:00 - 004318112 _____ (NVIDIA Corporation) C:\Windows\System32\nvcuvid.dll
2020-10-12 09:27 - 2018-04-12 22:00 - 003719096 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2020-10-12 09:27 - 2018-04-12 21:58 - 019855144 _____ (NVIDIA Corporation) C:\Windows\System32\nvopencl.dll
2020-10-12 09:27 - 2018-04-12 21:58 - 016496768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2020-10-12 09:27 - 2018-04-12 21:58 - 013571520 _____ (NVIDIA Corporation) C:\Windows\System32\nvptxJitCompiler.dll
2020-10-12 09:27 - 2018-04-12 21:58 - 011132384 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2020-10-12 09:27 - 2018-04-12 21:58 - 001153752 _____ (NVIDIA Corporation) C:\Windows\System32\nvfatbinaryLoader.dll
2020-10-12 09:27 - 2018-04-12 21:57 - 012967056 _____ (NVIDIA Corporation) C:\Windows\System32\nvcuda.dll
2020-10-12 09:27 - 2018-04-12 21:57 - 000902096 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2020-10-12 09:27 - 2018-04-12 21:56 - 011001504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2020-10-12 09:27 - 2018-04-12 21:56 - 004633920 _____ (NVIDIA Corporation) C:\Windows\System32\nvapi64.dll
2020-10-12 09:27 - 2018-04-12 21:56 - 003939624 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2020-10-12 07:52 - 2020-10-17 10:29 - 001063408 _____ C:\Windows\ntbtlog.txt
2020-10-09 19:04 - 2020-10-09 19:04 - 000001014 _____ C:\Users\Plha\Desktop\osu!.lnk
2020-10-09 19:03 - 2020-10-09 19:28 - 000000000 ____D C:\Users\Plha\AppData\Local\osu!
2020-10-09 19:03 - 2020-10-09 19:03 - 000000000 ____D C:\Users\Plha\Downloads\Localisation
2020-10-09 19:01 - 2020-10-09 19:01 - 004393728 _____ (ppy) C:\Users\Plha\Downloads\osu!install.exe
2020-10-07 17:36 - 2020-10-07 17:36 - 000069836 _____ C:\Users\Plha\Downloads\267204846_20200930_9_MCZS.pdf
2020-09-22 10:28 - 2020-09-22 10:27 - 000338528 _____ (AVAST Software) C:\Windows\System32\aswBoot.exe
2020-09-22 10:28 - 2020-09-22 10:27 - 000217328 _____ (AVAST Software) C:\Windows\System32\Drivers\aswStm.sys
2020-09-22 10:28 - 2020-09-22 10:27 - 000175192 _____ (AVAST Software) C:\Windows\System32\Drivers\aswMonFlt.sys
2020-09-19 06:53 - 2020-09-19 06:53 - 000000000 __SHD C:\found.000
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-10-17 13:39 - 2020-08-28 15:56 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-10-17 13:39 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-10-17 13:39 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\System32\config\BBI
2020-10-17 13:34 - 2020-08-28 15:56 - 000003460 _____ C:\Windows\System32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-10-17 13:15 - 2020-08-28 15:40 - 001919736 _____ C:\Windows\System32\PerfStringBackup.INI
2020-10-17 13:15 - 2019-12-07 15:43 - 000781566 _____ C:\Windows\System32\perfh005.dat
2020-10-17 13:15 - 2019-12-07 15:43 - 000172300 _____ C:\Windows\System32\perfc005.dat
2020-10-17 13:15 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2020-10-17 13:11 - 2020-08-28 15:23 - 000008192 ___SH C:\DumpStack.log.tmp
2020-10-17 13:11 - 2016-10-03 07:51 - 000000000 ____D C:\ProgramData\NVIDIA
2020-10-17 13:09 - 2020-08-28 15:24 - 000000000 ____D C:\Windows\System32\SleepStudy
2020-10-17 10:54 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2020-10-17 10:53 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-10-17 10:39 - 2015-12-25 12:46 - 000000000 ____D C:\Users\Plha\AppData\Local\CrashDumps
2020-10-17 10:30 - 2020-08-28 15:56 - 000003584 _____ C:\Windows\System32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-10-17 10:29 - 2019-07-04 20:57 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
2020-10-17 10:26 - 2015-12-22 23:02 - 000000632 _____ C:\Users\Plha\Desktop\Total Commander.lnk
2020-10-16 10:45 - 2015-12-24 10:31 - 000000000 ____D C:\Users\Plha\AppData\Roaming\uTorrent
2020-10-16 10:42 - 2020-04-19 17:05 - 000000000 ____D C:\Program Files (x86)\EUROBYTE TOOLS
2020-10-16 10:35 - 2015-12-22 22:51 - 000000000 ____D C:\Users\Plha\AppData\Local\ESET
2020-10-16 10:20 - 2016-02-13 14:14 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-10-16 10:11 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2020-10-16 10:05 - 2016-05-25 14:10 - 000000000 ____D C:\Users\Plha\AppData\Local\Packages
2020-10-16 09:53 - 2020-08-28 15:56 - 000003472 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2020-10-16 09:53 - 2020-08-28 15:56 - 000003348 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2020-10-16 09:32 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2020-10-16 07:24 - 2020-08-28 15:56 - 000004210 _____ C:\Windows\System32\Tasks\CCleaner Update
2020-10-15 10:11 - 2020-08-28 12:46 - 000000000 ____D C:\users\DefaultAppPool
2020-10-15 10:11 - 2019-12-07 10:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2020-10-15 10:11 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\System32\Sysprep
2020-10-15 10:11 - 2016-11-09 21:00 - 000000000 ____D C:\Users\Plha\AppData\Roaming\PSpad
2020-10-15 10:11 - 2015-12-22 23:02 - 000000000 ____D C:\Users\Plha\AppData\Roaming\GHISLER
2020-10-15 10:01 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\registration
2020-10-15 09:47 - 2016-11-01 11:00 - 000000000 ____D C:\Users\Plha\AppData\Local\ElevatedDiagnostics
2020-10-15 09:15 - 2020-08-28 12:46 - 000000000 ____D C:\users\Plha
2020-10-14 10:14 - 2019-04-22 19:11 - 000000175 _____ C:\Users\Plha\Desktop\Heslo roblox.txt
2020-10-13 08:28 - 2016-10-04 22:06 - 000000000 ____D C:\Users\Plha\AppData\Local\MicrosoftEdge
2020-10-13 08:19 - 2019-12-07 15:47 - 000000000 ___SD C:\Windows\System32\AppV
2020-10-13 08:19 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2020-10-13 08:19 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2020-10-13 08:19 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\F12
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\System32\UNP
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\System32\F12
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\System32\DiagSvcs
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\PrintDialog
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\migwiz
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\inetsrv
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Com
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\System32\WinMetadata
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\System32\WinBioPlugIns
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\System32\SystemResetPlatform
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\System32\ShellExperiences
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\System32\setup
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\System32\PerceptionSimulation
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\System32\oobe
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\System32\migwiz
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\System32\inetsrv
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\System32\Dism
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\System32\Com
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\System32\appraiser
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\System32\AdvancedInstallers
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellExperiences
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellComponents
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\DiagTrack
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2020-10-13 08:19 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2020-10-13 08:19 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing
2020-10-13 07:58 - 2019-01-21 11:32 - 000000000 ____D C:\ProgramData\AVAST Software
2020-10-13 07:48 - 2020-08-20 07:26 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-10-13 07:33 - 2019-01-21 11:44 - 000000000 ____D C:\Users\Plha\AppData\Roaming\AVAST Software
2020-10-13 07:22 - 2020-08-28 15:24 - 000443000 _____ C:\Windows\System32\FNTCACHE.DAT
2020-10-09 23:14 - 2020-08-28 15:56 - 000002238 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2020-10-09 23:14 - 2020-08-28 15:56 - 000000000 ____D C:\Windows\System32\Tasks\Avast Software
2020-10-09 23:05 - 2016-03-19 16:55 - 000000000 ____D C:\Program Files (x86)\Steam
2020-10-09 12:29 - 2019-03-21 16:28 - 000000000 ____D C:\Program Files\SoftEther VPN Client
2020-10-08 14:55 - 2020-08-20 07:26 - 000000000 ____D C:\Program Files\CCleaner
2020-10-08 14:52 - 2019-08-02 12:57 - 000001424 _____ C:\Users\Plha\Desktop\Roblox Player.lnk
2020-10-08 14:52 - 2019-03-16 10:10 - 000001247 _____ C:\Users\Plha\Desktop\Roblox Studio.lnk
2020-10-08 12:26 - 2020-08-28 15:56 - 000004264 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2020-10-03 01:33 - 2019-12-07 10:18 - 000835472 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-10-03 01:33 - 2019-12-07 10:18 - 000179608 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-09-29 19:39 - 2019-02-13 14:29 - 000000000 ____D C:\Users\Plha\AppData\Roaming\.minecraft
2020-09-29 19:34 - 2019-02-13 18:02 - 000000000 ____D C:\Users\Plha\AppData\Roaming\.tlauncher
2020-09-28 13:48 - 2016-05-28 14:14 - 000000000 ____D C:\Windows\System32\MRT
2020-09-28 13:41 - 2016-05-28 14:14 - 129170736 ____C (Microsoft Corporation) C:\Windows\System32\MRT.exe
2020-09-25 16:58 - 2020-04-19 16:49 - 000517592 _____ (AVAST Software) C:\Windows\System32\Drivers\aswNetHub.sys
2020-09-22 19:25 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\LiveKernelReports
2020-09-22 10:30 - 2019-01-21 11:40 - 000326408 _____ (AVAST Software) C:\Windows\System32\Drivers\aswVmm.sys
2020-09-22 10:27 - 2019-01-21 11:40 - 000851600 _____ (AVAST Software) C:\Windows\System32\Drivers\aswSnx.sys
2020-09-22 10:27 - 2019-01-21 11:40 - 000469880 _____ (AVAST Software) C:\Windows\System32\Drivers\aswSP.sys
2020-09-22 10:27 - 2019-01-21 11:40 - 000235584 _____ (AVAST Software) C:\Windows\System32\Drivers\aswbidsdriver.sys
2020-09-22 10:27 - 2019-01-21 11:40 - 000206392 _____ (AVAST Software) C:\Windows\System32\Drivers\aswArPot.sys
2020-09-22 10:27 - 2019-01-21 11:40 - 000195648 _____ (AVAST Software) C:\Windows\System32\Drivers\aswbidsh.sys
2020-09-22 10:27 - 2019-01-21 11:40 - 000109272 _____ (AVAST Software) C:\Windows\System32\Drivers\aswRdr2.sys
2020-09-22 10:27 - 2019-01-21 11:40 - 000084848 _____ (AVAST Software) C:\Windows\System32\Drivers\aswRvrt.sys
2020-09-22 10:27 - 2019-01-21 11:40 - 000060480 _____ (AVAST Software) C:\Windows\System32\Drivers\aswbuniv.sys
2020-09-22 10:27 - 2019-01-21 11:40 - 000042768 _____ (AVAST Software) C:\Windows\System32\Drivers\aswKbd.sys
2020-09-22 10:27 - 2019-01-21 11:40 - 000037136 _____ (AVAST Software) C:\Windows\System32\Drivers\aswArDisk.sys
2020-09-17 08:06 - 2019-02-16 19:28 - 000000000 ____D C:\Program Files (x86)\SpeedFan
2020-09-17 08:04 - 2020-08-20 07:29 - 000000000 ____D C:\Program Files\Speccy
==================== KnownDLLs (Whitelisted) =========================
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe
[2019-12-07 10:08] - [2019-12-07 10:08] - 004478208 _____ (Microsoft Corporation) FDE2638E4A80B507E683D973474168DA
C:\Windows\SysWOW64\explorer.exe
[2019-12-07 10:09] - [2019-12-07 10:09] - 003921960 _____ (Microsoft Corporation) 3CCACEA20F2788A194AA7DCA9179DA58
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll
[2019-12-07 10:08] - [2019-12-07 10:08] - 001700856 _____ (Microsoft Corporation) 71AE19E643566EFF05FC6AB3616B5D0D
C:\Windows\SysWOW64\User32.dll
[2019-12-07 10:09] - [2019-12-07 10:09] - 001655848 _____ (Microsoft Corporation) 4B91CAEA2D578748A058B65135DDB9AA
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll
[2019-12-07 10:08] - [2019-12-07 10:08] - 001331712 _____ (Microsoft Corporation) 87BE1626E88DFA7C55492518CF9650AC
C:\Windows\System32\dnsapi.dll => MD5 is legit
C:\Windows\SysWOW64\dnsapi.dll => MD5 is legit
C:\Windows\System32\dllhost.exe => MD5 is legit
C:\Windows\SysWOW64\dllhost.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
==================== Association (Whitelisted) =============
==================== Restore Points =========================
Restore point date: 2020-10-16 09:31
Restore point date: 2020-10-17 10:42
==================== Memory info ===========================
Percentage of memory in use: 27%
Total physical RAM: 4094.49 MB
Available physical RAM: 2969.41 MB
Total Virtual: 4094.49 MB
Available Virtual: 3018.94 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:114.42 GB) (Free:26.96 GB) NTFS
Drive d: (ESD-USB) (Removable) (Total:14.3 GB) (Free:9.21 GB) FAT32
Drive f: () (Fixed) (Total:0.5 GB) (Free:0.07 GB) NTFS
Drive g: (Nový svazek) (Fixed) (Total:350.74 GB) (Free:75.41 GB) NTFS
Drive x: (Boot) (Fixed) (Total:0.49 GB) (Free:0.49 GB) NTFS
Drive y: (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[system with boot components (obtained from drive)]
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: DC76DC76)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=114.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=509 MB) - (Type=27)
Partition 4: (Not Active) - (Size=350.7 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (Protective MBR) (Size: 14.3 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of FRST.txt ========================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Po startu windows vyhazuje hlášku version.dll
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Po startu windows vyhazuje hlášku version.dll
Zdravím!
1. FRST musí být spuštěn z normálního módu.
2. Potřebuji vidět oba logy, tj. kromě FRST také Addition.
3. Před tím, než sem dáte oba logy ze správného módu, spusťte kontrolu, příp. opravu systémových souborů. Do příkazového řádku napište:
1. FRST musí být spuštěn z normálního módu.
2. Potřebuji vidět oba logy, tj. kromě FRST také Addition.
3. Před tím, než sem dáte oba logy ze správného módu, spusťte kontrolu, příp. opravu systémových souborů. Do příkazového řádku napište:
a odentrujte. Spustí se sken, který zkontroluje a příp. opraví syst. soubory.sfc /scannow
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Po startu windows vyhazuje hlášku version.dll
Nejde spustit vyhodí mi to tuto hlášku. Kód nejde spustit , protože nenašel version.dll. Přitom v adresáři system32 je a to samé mi to píše když chci spustit FRST z plochy, proto jsem musel pouštět s flash disku.
- Přílohy
-
- hláška.jpg (70.13 KiB) Zobrazeno 1504 x
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Po startu windows vyhazuje hlášku version.dll
Zkuste kliknout na C:\Windows\System32\sfc.exe pravým myšítkem a spustit jako správce. Pokud se systém bude nadále bránit, zkuste opravu pomocí WindowsRepair: https://stahnu.cz/optimalizace-a-diagno ... ir#prehled .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Po startu windows vyhazuje hlášku version.dll
Nové logy FRST. Addition
FireFox:
========
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-07-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-07-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin HKU\S-1-5-21-1427180062-2798621324-3331812027-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Plha\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-08-28] (Unity Technologies SF -> Unity Technologies ApS)
Chrome:
=======
CHR Profile: C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default [2020-10-17]
CHR Extension: (Prezentace) - C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-10-17]
CHR Extension: (Dokumenty) - C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-10-17]
CHR Extension: (Disk Google) - C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-17]
CHR Extension: (Tabulky) - C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-10-17]
CHR Extension: (Gmail) - C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-17]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7824280 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [357848 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [58048 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8615864 2020-07-13] (BattlEye Innovations e.K. -> )
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1368408 2015-11-30] (Disc Soft Ltd -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2019-01-21] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7185288 2020-10-17] (Malwarebytes Inc -> Malwarebytes)
S3 NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2007-01-15] (Nero AG) [File not signed]
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [271920 2007-03-12] (Nero AG -> Nero AG)
S2 QMEmulatorService; E:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe [147704 2019-05-31] (Tencent Technology(Shenzhen) Company Limited -> Tencent)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4956856 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SEVPNCLIENT; C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [5255104 2019-03-21] (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 aow_drv; E:\Program Files\TxGameAssistant\UI\2.0.10707.123\aow_drv_x64_ev.sys [859712 2019-05-28] (Tencent Technology(Shenzhen) Company Limited -> Tencent)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37136 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [206392 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [235584 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [195648 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [60480 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16824 2020-07-23] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42768 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175192 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [517592 2020-09-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [109272 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84848 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851600 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [469880 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [217328 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326408 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [314016 2015-12-28] (Tages SA -> )
S3 BEDaisy; C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys [3038568 2020-07-18] (BattlEye Innovations e.K. -> )
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2015-12-24] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [46392 2015-12-24] (Disc Soft Ltd -> Disc Soft Ltd)
S3 Hamachi; C:\WINDOWS\System32\drivers\Hamdrv.sys [45680 2016-05-04] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
S4 IObitUnlocker; C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [36944 2014-03-04] (IObit Information Technology -> IObit)
R2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [43680 2015-12-28] (Tages SA -> )
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [218112 2020-10-17] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-10-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-10-17] (Malwarebytes Inc -> Malwarebytes)
R3 Neo_VPN; C:\WINDOWS\System32\drivers\Neo6_x64_VPN.sys [38216 2019-03-21] (SoftEther Corporation -> SoftEther Corporation)
S3 OSFMount; e:\Counter-Strike Global Offensive\image\x64\OSFMount.sys [552888 2013-10-18] (PassMark Software Pty Ltd -> PassMark Software)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-17] (Microsoft Windows -> Microsoft Corporation)
U3 idsvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-10-17 22:00 - 2020-10-17 22:00 - 000009768 _____ C:\Users\Plha\Desktop\FRST.txt
2020-10-17 21:38 - 2020-10-17 21:38 - 000002395 _____ C:\Users\Plha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-10-17 21:38 - 2020-10-17 21:38 - 000002336 _____ C:\Users\Plha\Desktop\Google Chrome.lnk
2020-10-17 21:31 - 2020-10-17 21:31 - 000218112 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-10-17 21:28 - 2020-10-17 21:23 - 000031496 _____ (Microsoft Corporation) C:\WINDOWS\system32\version.dll
2020-10-17 20:58 - 2020-10-17 20:58 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-10-17 20:58 - 2020-10-17 20:58 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-10-17 20:58 - 2020-10-17 20:58 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-10-17 20:58 - 2020-10-17 20:58 - 000002021 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-10-17 20:57 - 2020-10-17 20:57 - 000002076 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2020-10-17 20:57 - 2020-10-17 20:57 - 000002076 _____ C:\ProgramData\Desktop\Avast Free Antivirus.lnk
2020-10-17 20:57 - 2020-10-17 20:56 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-10-17 20:57 - 2020-10-17 20:56 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-10-17 20:35 - 2020-10-17 20:35 - 000015580 _____ C:\Users\Plha\Downloads\version (1).zip
2020-10-17 20:33 - 2020-10-17 20:33 - 000013631 _____ C:\Users\Plha\Downloads\version.zip
2020-10-17 20:18 - 2020-10-17 14:34 - 002299904 _____ (Farbar) C:\Users\Plha\Desktop\FRST64.exe
2020-10-17 19:31 - 2020-10-17 19:31 - 000000000 ____D C:\Users\Plha\AppData\Roaming\Tencent
2020-10-17 19:08 - 2020-10-17 19:28 - 000003168 _____ C:\WINDOWS\system32\Tasks\AdwCleaner_onReboot
2020-10-17 19:06 - 2020-10-17 19:07 - 000000000 ____D C:\AdwCleaner
2020-10-17 19:05 - 2020-10-17 19:05 - 008447152 _____ (Malwarebytes) C:\Users\Plha\Desktop\adwcleaner_8.0.8.exe
2020-10-17 15:47 - 2020-10-17 22:00 - 000000000 ____D C:\FRST
2020-10-17 14:35 - 2020-10-17 16:31 - 000000000 _____ C:\Users\Plha\Downloads\avenger.exe
2020-10-17 14:34 - 2020-10-17 14:34 - 002299904 _____ (Farbar) C:\Users\Plha\Downloads\FRST64.exe
2020-10-17 11:42 - 2020-10-17 14:11 - 000000000 ____D C:\Users\Plha\AppData\Local\FSDART
2020-10-17 11:41 - 2020-10-17 11:42 - 000000000 ____D C:\Users\Plha\AppData\Local\F-Secure
2020-10-17 11:41 - 2020-10-17 11:42 - 000000000 ____D C:\ProgramData\F-Secure
2020-10-17 11:39 - 2020-10-17 11:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Unlocker
2020-10-17 11:39 - 2020-10-17 11:39 - 000000000 ____D C:\ProgramData\IObit
2020-10-17 11:39 - 2020-10-17 11:39 - 000000000 ____D C:\Program Files (x86)\IObit
2020-10-17 11:39 - 2020-10-17 11:29 - 000001257 _____ C:\Users\Public\Desktop\IObit Unlocker.lnk
2020-10-17 11:39 - 2020-10-17 11:29 - 000001257 _____ C:\ProgramData\Desktop\IObit Unlocker.lnk
2020-10-17 10:52 - 2020-10-17 10:52 - 000724952 _____ C:\Users\Plha\Downloads\avenger.zip
2020-10-17 10:40 - 2020-10-17 21:35 - 000003614 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA1d6a45fdf63c634
2020-10-16 11:57 - 2020-10-16 11:57 - 001317080 _____ (Google LLC) C:\Users\Plha\Downloads\ChromeSetup.exe
2020-10-16 11:55 - 2020-10-16 11:55 - 000003934 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2020-10-16 11:55 - 2020-10-16 11:55 - 000003492 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2020-10-16 11:35 - 2020-10-17 11:44 - 000001773 _____ C:\Users\Plha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2020-10-16 11:35 - 2020-10-17 11:43 - 000001667 _____ C:\Users\Plha\Desktop\ESET Online Scanner.lnk
2020-10-16 11:24 - 2020-10-16 11:24 - 000000000 ____D C:\Users\Matysek\AppData\Local\NVIDIA
2020-10-16 11:24 - 2020-10-16 11:24 - 000000000 ____D C:\Users\Matysek\AppData\Local\CrashDumps
2020-10-16 11:23 - 2020-10-16 11:23 - 000001446 _____ C:\Users\Matysek\Desktop\Microsoft Edge.lnk
2020-10-16 11:23 - 2020-10-16 11:23 - 000000000 ____D C:\Users\Matysek\AppData\Local\MicrosoftEdge
2020-10-16 11:21 - 2020-10-16 11:21 - 000000000 ____D C:\Users\Matysek\AppData\Local\Publishers
2020-10-16 11:20 - 2020-10-16 11:20 - 000000000 ___RD C:\Users\Matysek\3D Objects
2020-10-16 11:11 - 2020-10-16 11:11 - 000000000 ____D C:\Users\Matysek\AppData\Local\VirtualStore
2020-10-16 11:10 - 2020-10-16 11:22 - 000000000 ____D C:\Users\Matysek\AppData\Local\Packages
2020-10-16 11:10 - 2020-10-16 11:20 - 000000000 ____D C:\Users\Matysek
2020-10-16 11:10 - 2020-10-16 11:10 - 000000020 ___SH C:\Users\Matysek\ntuser.ini
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Šablony
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Soubory cookie
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Poslední
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Okolní tiskárny
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Okolní síť
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Nabídka Start
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Dokumenty
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Documents\Obrázky
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Documents\Hudba
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Documents\Filmy
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Data aplikací
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\AppData\Local\Data aplikací
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 ____D C:\Users\Matysek\AppData\Local\ConnectedDevicesPlatform
2020-10-16 11:10 - 2019-12-07 11:10 - 000001105 _____ C:\Users\Matysek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-10-16 11:10 - 2019-04-09 21:24 - 000000000 ____D C:\Users\Matysek\AppData\Local\LogMeIn Hamachi
2020-10-16 11:10 - 2019-03-20 17:44 - 000000000 ____D C:\Users\Matysek\AppData\Local\Microsoft Help
2020-10-16 11:10 - 2016-10-03 09:01 - 000000000 ____D C:\Users\Matysek\AppData\Roaming\Media Center Programs
2020-10-16 10:48 - 2020-10-16 11:06 - 000000000 ___HD C:\$SysReset
2020-10-16 10:48 - 2020-10-16 10:49 - 000000000 ____D C:\$Windows.~BT
2020-10-16 10:29 - 2020-10-17 20:55 - 000000000 ____D C:\KRD2018_Data
2020-10-16 09:41 - 2020-10-16 09:41 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-10-16 09:40 - 2020-10-16 09:40 - 000000000 ____D C:\Program Files\Malwarebytes
2020-10-16 08:22 - 2020-10-16 07:09 - 625199104 _____ C:\Users\Plha\Downloads\krd.iso
2020-10-15 22:24 - 2020-10-15 22:22 - 183879024 _____ C:\Users\Plha\Downloads\KVRT.exe
2020-10-15 12:38 - 2020-10-15 12:45 - 000000000 _____ C:\Recovery.txt
2020-10-15 10:47 - 2020-10-15 10:47 - 000000000 _____ C:\Users\Plha\Downloads\hijackthis.exe
2020-10-15 10:39 - 2020-10-14 12:14 - 500081112 _____ (AVAST Software) C:\Users\Plha\Downloads\avast_free_antivirus_setup_offline.exe
2020-10-14 09:31 - 2020-10-13 11:22 - 4294967295 _____ C:\Users\Plha\Downloads\Win10_2004_Czech_x64.iso
2020-10-13 09:10 - 2020-10-16 10:43 - 000000000 ____D C:\Users\DefaultAppPool\AppData\Local\CrashDumps
2020-10-12 11:29 - 2020-10-16 11:42 - 000000000 ____D C:\Program Files (x86)\Dll-Files.com Fixer
2020-10-12 11:11 - 2020-10-16 11:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dll-Files Fixer
2020-10-12 11:11 - 2020-10-12 11:11 - 000000000 ____D C:\Users\Plha\AppData\Roaming\dll-files.com
2020-10-12 10:28 - 2020-10-12 10:28 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2020-10-12 10:27 - 2018-04-12 23:02 - 000998432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-10-12 10:27 - 2018-04-12 23:02 - 000950016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-10-12 10:27 - 2018-04-12 23:01 - 001985112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6439135.dll
2020-10-12 10:27 - 2018-04-12 23:01 - 001690952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2020-10-12 10:27 - 2018-04-12 23:01 - 001683712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6439135.dll
2020-10-12 10:27 - 2018-04-12 23:01 - 001138720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-10-12 10:27 - 2018-04-12 23:01 - 001065888 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-10-12 10:27 - 2018-04-12 23:01 - 000054272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2020-10-12 10:27 - 2018-04-12 23:00 - 040278616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2020-10-12 10:27 - 2018-04-12 23:00 - 035188992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2020-10-12 10:27 - 2018-04-12 23:00 - 004318112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-10-12 10:27 - 2018-04-12 23:00 - 003719096 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-10-12 10:27 - 2018-04-12 22:58 - 019855144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2020-10-12 10:27 - 2018-04-12 22:58 - 016496768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2020-10-12 10:27 - 2018-04-12 22:58 - 013571520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2020-10-12 10:27 - 2018-04-12 22:58 - 011132384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2020-10-12 10:27 - 2018-04-12 22:58 - 001153752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2020-10-12 10:27 - 2018-04-12 22:57 - 012967056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-10-12 10:27 - 2018-04-12 22:57 - 000902096 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2020-10-12 10:27 - 2018-04-12 22:56 - 011001504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-10-12 10:27 - 2018-04-12 22:56 - 004633920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-10-12 10:27 - 2018-04-12 22:56 - 003939624 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-10-12 08:52 - 2020-10-17 11:29 - 001063408 _____ C:\WINDOWS\ntbtlog.txt
2020-10-09 20:04 - 2020-10-09 20:04 - 000001022 _____ C:\Users\Plha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\osu!.lnk
2020-10-09 20:04 - 2020-10-09 20:04 - 000001014 _____ C:\Users\Plha\Desktop\osu!.lnk
2020-10-09 20:03 - 2020-10-09 20:28 - 000000000 ____D C:\Users\Plha\AppData\Local\osu!
2020-10-09 20:03 - 2020-10-09 20:03 - 000000000 ____D C:\Users\Plha\Downloads\Localisation
2020-10-09 20:01 - 2020-10-09 20:01 - 004393728 _____ (ppy) C:\Users\Plha\Downloads\osu!install.exe
2020-10-07 18:36 - 2020-10-07 18:36 - 000069836 _____ C:\Users\Plha\Downloads\267204846_20200930_9_MCZS.pdf
2020-09-22 11:28 - 2020-09-22 11:27 - 000338528 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2020-09-22 11:28 - 2020-09-22 11:27 - 000217328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2020-09-22 11:28 - 2020-09-22 11:27 - 000175192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2020-09-19 07:53 - 2020-09-19 07:53 - 000000000 __SHD C:\found.000
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-10-17 21:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-10-17 21:51 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-10-17 21:47 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2020-10-17 21:43 - 2019-01-21 12:32 - 000000000 ____D C:\ProgramData\AVAST Software
2020-10-17 21:41 - 2016-05-25 15:10 - 000000000 ____D C:\Users\Plha\AppData\Local\Packages
2020-10-17 21:41 - 2015-12-25 13:46 - 000000000 ____D C:\Users\Plha\AppData\Local\CrashDumps
2020-10-17 21:39 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-10-17 21:35 - 2020-08-28 16:56 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-10-17 21:32 - 2019-03-21 17:28 - 000000000 ____D C:\Program Files\SoftEther VPN Client
2020-10-17 21:31 - 2016-10-03 08:51 - 000000000 ____D C:\ProgramData\NVIDIA
2020-10-17 21:30 - 2020-08-28 16:56 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-10-17 21:30 - 2020-08-28 16:23 - 000008192 ___SH C:\DumpStack.log.tmp
2020-10-17 21:29 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-10-17 21:24 - 2020-08-28 16:24 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-10-17 21:05 - 2020-08-20 08:26 - 000000000 ____D C:\Program Files\CCleaner
2020-10-17 21:00 - 2020-08-28 16:56 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-10-17 20:58 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-10-17 20:57 - 2019-01-21 12:44 - 000002088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2020-10-17 14:55 - 2020-08-28 16:40 - 001919736 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-10-17 14:55 - 2019-12-07 16:43 - 000781566 _____ C:\WINDOWS\system32\perfh005.dat
2020-10-17 14:55 - 2019-12-07 16:43 - 000172300 _____ C:\WINDOWS\system32\perfc005.dat
2020-10-17 11:30 - 2020-08-28 16:56 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-10-17 11:29 - 2019-07-04 21:57 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2020-10-17 11:26 - 2015-12-23 00:02 - 000000632 _____ C:\Users\Plha\Desktop\Total Commander.lnk
2020-10-16 11:45 - 2015-12-24 11:31 - 000000000 ____D C:\Users\Plha\AppData\Roaming\uTorrent
2020-10-16 11:42 - 2020-04-19 18:05 - 000000000 ____D C:\Program Files (x86)\EUROBYTE TOOLS
2020-10-16 11:35 - 2015-12-22 23:51 - 000000000 ____D C:\Users\Plha\AppData\Local\ESET
2020-10-16 11:20 - 2016-02-13 15:14 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-10-16 11:11 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-10-16 10:53 - 2020-08-28 16:56 - 000003472 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-10-16 10:53 - 2020-08-28 16:56 - 000003348 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-10-16 10:32 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-10-16 08:24 - 2020-08-28 16:56 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-10-15 11:11 - 2020-08-28 13:46 - 000000000 ____D C:\Users\DefaultAppPool
2020-10-15 11:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2020-10-15 11:11 - 2016-11-09 22:00 - 000000000 ____D C:\Users\Plha\AppData\Roaming\PSpad
2020-10-15 11:11 - 2015-12-23 00:02 - 000000000 ____D C:\Users\Plha\AppData\Roaming\GHISLER
2020-10-15 11:01 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\registration
2020-10-15 10:47 - 2016-11-01 12:00 - 000000000 ____D C:\Users\Plha\AppData\Local\ElevatedDiagnostics
2020-10-15 10:15 - 2020-08-28 13:46 - 000000000 ____D C:\Users\Plha
2020-10-14 11:14 - 2019-04-22 20:11 - 000000175 _____ C:\Users\Plha\Desktop\Heslo roblox.txt
2020-10-13 09:28 - 2016-10-04 23:06 - 000000000 ____D C:\Users\Plha\AppData\Local\MicrosoftEdge
2020-10-13 09:19 - 2019-12-07 16:47 - 000000000 ___SD C:\WINDOWS\system32\AppV
2020-10-13 09:19 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2020-10-13 09:19 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2020-10-13 09:19 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Com
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2020-10-13 09:19 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2020-10-13 08:48 - 2020-08-20 08:26 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-10-13 08:48 - 2020-08-20 08:26 - 000000863 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-10-13 08:33 - 2019-01-21 12:44 - 000000000 ____D C:\Users\Plha\AppData\Roaming\AVAST Software
2020-10-13 08:22 - 2020-08-28 16:24 - 000443000 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-10-10 00:14 - 2020-08-28 16:56 - 000002238 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-10-10 00:14 - 2020-08-28 16:56 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-10-10 00:05 - 2016-03-19 17:55 - 000000000 ____D C:\Program Files (x86)\Steam
2020-10-08 15:52 - 2019-08-02 13:57 - 000001424 _____ C:\Users\Plha\Desktop\Roblox Player.lnk
2020-10-08 15:52 - 2019-03-16 11:10 - 000001247 _____ C:\Users\Plha\Desktop\Roblox Studio.lnk
2020-10-08 15:52 - 2019-03-16 11:10 - 000000000 ____D C:\Users\Plha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2020-10-03 02:33 - 2019-12-07 11:18 - 000835472 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-10-03 02:33 - 2019-12-07 11:18 - 000179608 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-09-29 20:39 - 2019-02-13 15:29 - 000000000 ____D C:\Users\Plha\AppData\Roaming\.minecraft
2020-09-29 20:34 - 2019-02-13 19:02 - 000000000 ____D C:\Users\Plha\AppData\Roaming\.tlauncher
2020-09-28 14:48 - 2016-05-28 15:14 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-09-28 14:41 - 2016-05-28 15:14 - 129170736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-09-25 17:58 - 2020-04-19 17:49 - 000517592 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2020-09-22 20:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-09-22 11:30 - 2019-01-21 12:40 - 000326408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000851600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000469880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000235584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000206392 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000195648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000109272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000084848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000060480 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000042768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000037136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2020-09-17 09:06 - 2019-02-16 20:28 - 000000000 ____D C:\Program Files (x86)\SpeedFan
2020-09-17 09:04 - 2020-08-20 08:29 - 000000000 ____D C:\Program Files\Speccy
==================== Files in the root of some directories ========
2020-02-25 20:28 - 2020-06-26 23:22 - 000006656 _____ () C:\Users\Plha\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2019-06-30 18:02 - 2019-06-30 18:02 - 000000000 _____ () C:\Users\Plha\AppData\Local\{B8C342F4-4420-4F76-8184-24C996FAEC09}
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-10-2020
Ran by Plha (17-10-2020 22:01:55)
Running from C:\Users\Plha\Desktop
Windows 10 Pro Version 2004 19041.1 (X64) (2020-08-28 14:57:57)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1427180062-2798621324-3331812027-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1427180062-2798621324-3331812027-503 - Limited - Disabled)
Guest (S-1-5-21-1427180062-2798621324-3331812027-501 - Limited - Disabled)
Matysek (S-1-5-21-1427180062-2798621324-3331812027-1001 - Limited - Enabled) => C:\Users\Matysek
Plha (S-1-5-21-1427180062-2798621324-3331812027-1000 - Administrator - Enabled) => C:\Users\Plha
WDAGUtilityAccount (S-1-5-21-1427180062-2798621324-3331812027-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Photoshop CC 2018 (HKLM-x32\...\PHSP_19_0) (Version: 19.0 - Adobe Systems Incorporated)
AIDA64 Extreme Edition v1.50 (HKLM-x32\...\AIDA64 Extreme Edition_is1) (Version: 1.50 - FinalWire Ltd.)
Aktualizace NVIDIA 2.11.4.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.11.4.1 - NVIDIA Corporation) Hidden
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.67 - Piriform)
Convert WAV To MP3 1.0 (HKLM-x32\...\Convert WAV To MP3_is1) (Version: - A Software Plus)
Counter-Strike Global Offensive [No-Steam] (HKLM-x32\...\Counter-Strike Global Offensive_is1) (Version: 1.32.2.1 - Valve software)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.2.0.0114 - Disc Soft Ltd)
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
Dll-Files Fixer (HKLM-x32\...\Dll-Files Fixer_is1) (Version: 1.0 - Dll-Files.com)
Epic Games Launcher (HKLM-x32\...\{0E63B233-DC24-442C-BD38-0B91D90FEC5B}) (Version: 1.1.167.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Farming Simulator 17 (HKLM\...\ZmFybWluZ3NpbXVsYXRvcjE3_is1) (Version: 1 - )
GameLoad 2.0.0 (HKLM-x32\...\{7FEA7AEB-C073-4687-B3E1-5282DFABAB56}_is1) (Version: 2.0.0 - Ant Media, s. r. o.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 86.0.4240.75 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 - Google LLC) Hidden
Grand Theft Auto V (HKLM-x32\...\Grand Theft Auto V_is1) (Version: 1.0.350.1 - Rockstar)
IObit Unlocker (HKLM-x32\...\IObit Unlocker_is1) (Version: 1.1 - IObit)
Java 8 Update 261 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180261F0}) (Version: 8.0.2610.12 - Oracle Corporation)
JPEG Recovery 1.1 (HKLM-x32\...\JPEG Recovery 1.1) (Version: - )
JPEG Recovery Pro 5.0 (HKLM-x32\...\JPEG Recovery Pro5.0) (Version: 5.0 - e.World Technology Limited)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\{ECC0FA07-863E-44BC-8B1D-DA22F96E5FB7}) (Version: 2.2.0.633 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.633 - LogMeIn, Inc.)
Mafia (HKLM-x32\...\1595659240_is1) (Version: 1.3 - GOG.com)
Mafia Compatibility Database (HKLM\...\{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb) (Version: - )
Malwarebytes version 4.2.1.89 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.2.1.89 - Malwarebytes)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 86.0.622.43 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.49 - )
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1427180062-2798621324-3331812027-1000\...\OneDriveSetup.exe) (Version: 20.084.0426.0007 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{406C9ADB-1325-4FD0-9D13-C119CFF64E0A}) (Version: 2.65.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{35D9277C-1EB7-4FBE-8B41-C520DE4F7A60}) (Version: 1.9.0 - OfficialHawk)
Mp3 Editor for Free v5.2.7 Build 79 (HKLM-x32\...\Mp3 Editor for Free_is1) (Version: 5.2.7 Build 79 - Mp3EditorforFree Ltd.)
Nero 7 Ultra Edition (HKLM-x32\...\{4F2CE68F-EDBB-4592-BF07-5AC930A51029}) (Version: 7.02.6446 - Nero AG)
NVIDIA Ovladač 3D Vision 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.13 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
osrss (HKLM-x32\...\{1BA1133B-1C7A-41A0-8CBF-9B993E63D296}) (Version: 1.0.0 - Microsoft Corporation) Hidden
osu! (HKLM-x32\...\{7c03dfac-c046-474d-b65c-3cb802a0c3ee}) (Version: latest - ppy Pty Ltd)
Ovládací panel NVIDIA 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.13 - NVIDIA Corporation) Hidden
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22617 - Microsoft Corporation)
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: 4.6.1.2730 - Jan Fiala)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.34.617.2014 - Realtek)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.30.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.30.0 - Renesas Electronics Corporation)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Roblox Player for Plha (HKU\S-1-5-21-1427180062-2798621324-3331812027-1000\...\roblox-player) (Version: - Roblox Corporation)
Roblox Studio for Plha (HKU\S-1-5-21-1427180062-2798621324-3331812027-1000\...\roblox-studio) (Version: - Roblox Corporation)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.4.1 - NVIDIA Corporation) Hidden
SoftEther VPN Client (HKLM\...\softether_sevpnclient) (Version: 4.24.9651 - SoftEther VPN Project)
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stellar Repair for Photo (HKLM-x32\...\Stellar Repair for Photo_is1) (Version: 6.0.0.0 - Stellar Information Technology Pvt Ltd.)
Swords & Souls: Neverseen (HKLM-x32\...\1741685922_is1) (Version: 1.12 - GOG.com)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
Tencent Gaming Buddy (HKLM-x32\...\MobileGamePC) (Version: 1.0.0.1 - Tencent Technology Company)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 8.52a - Ghisler Software GmbH)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Unity Web Player (HKU\S-1-5-21-1427180062-2798621324-3331812027-1000\...\UnityWebPlayer) (Version: 5.2.0f3 - Unity Technologies ApS)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{EC4F72E8-52FE-454E-B70F-DBE5C0FA44C5}) (Version: 1.20.0.0 - Microsoft Corporation) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
Packages:
=========
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.179.300.0_x86__kgqvnymyfvs32 [2020-10-16] (king.com)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-10-15] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-10-15] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-10-17] (Microsoft Studios) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-10-17] (Microsoft Corporation) [MS Ad]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2020-10-15] (Twitter Inc.)
WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x64__8wekyb3d8bbwe [2020-10-15] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1427180062-2798621324-3331812027-1000_Classes\CLSID\{ED90173A-3B4C-4E7E-B9CF-79714425D4B5}\InprocServer32 -> C:\Program Files (x86)\PSPad editor\pspshellx64.dll () [File not signed]
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6671064 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-09-22] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1-x32: [Cover Designer] -> {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} => C:\Program Files (x86)\Nero\Nero 7\Nero CoverDesigner\CoverEdExtension.dll [2007-02-28] (Nero AG -> Nero AG)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers1: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll [2014-03-04] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-10-16] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers4: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll [2014-03-04] (IObit Information Technology -> IObit)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-10-16] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll [2014-03-04] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-1427180062-2798621324-3331812027-1000: [EditWithPSPad] -> {ED90173A-3B4C-4E7E-B9CF-79714425D4B5} => C:\Program Files (x86)\PSPad editor\pspshellx64.dll [2014-11-02] () [File not signed]
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Plha\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Jiří - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"
==================== Loaded Modules (Whitelisted) =============
2016-11-09 21:59 - 2014-11-02 19:45 - 000029184 _____ () [File not signed] C:\Program Files (x86)\PSPad editor\pspshellx64.dll
2020-08-28 16:40 - 2017-10-27 18:06 - 000874368 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI64.dll
2020-08-28 16:40 - 2017-10-27 18:06 - 000339256 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\NvStereo\_nvstapisvr64.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [474]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\ssv.dll [2020-07-23] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\jp2ssv.dll [2020-07-23] (Oracle America, Inc. -> Oracle Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2020-08-20 08:18 - 000001347 ____R C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 license.piriform.com
127.0.0.1 www.license.piriform.com
127.0.0.1 speccy.piriform.com
127.0.0.1 www.speccy.piriform.com
127.0.0.1 recuva.piriform.com
127.0.0.1 www.recuva.piriform.com
127.0.0.1 defraggler.piriform.com
127.0.0.1 www.defraggler.piriform.com
127.0.0.1 ccleaner.piriform.com
127.0.0.1 www.ccleaner.piriform.com
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1427180062-2798621324-3331812027-1000\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\StartupFolder: => "SoftEther VPN Client Manager Startup.lnk"
HKLM\...\StartupApproved\Run: => "SoftEther VPN Client UI Helper"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{9E3800AE-21E9-4679-A82D-D5C6F99E8387}E:\games\grand theft auto v\gta5.exe] => (Block) E:\games\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{ADB078BA-845B-4B1C-B6D9-5754F73E2A68}E:\games\grand theft auto v\gta5.exe] => (Block) E:\games\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [{B53D82ED-4C7D-445C-A757-FA1266C3562B}] => (Block) E:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{D2CB59E9-3A4F-4EEE-8E3E-1A5A886AF4E4}] => (Block) E:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{645A9DCE-03A3-4C29-A56C-34AE90C13697}E:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) E:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{E816C1DC-E620-43B7-B05D-EA247DFC1F79}E:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) E:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{5B847D1A-F80B-4C62-AEC8-123CB3AA5463}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{0E14A1FB-84B2-464D-B952-27AA4CBE985E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{21CEA782-CDAA-4AE2-96EC-53020A261201}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{F5E671FC-67FB-42DC-B964-AD012EAD9E8B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{76E1AA9D-1B5B-413D-977F-95CF79F59908}E:\games\anno 1404\addon.exe] => (Allow) E:\games\anno 1404\addon.exe (Related Designs Software -> Related Designs)
FirewallRules: [TCP Query User{D1987BA0-5833-4BD2-8CBE-B70A6EE65BD9}E:\games\anno 1404\addon.exe] => (Allow) E:\games\anno 1404\addon.exe (Related Designs Software -> Related Designs)
FirewallRules: [UDP Query User{F6B7DB6F-9E45-4AE0-912D-296A90722AE6}E:\games\anno 1404\tools\addonweb.exe] => (Allow) E:\games\anno 1404\tools\addonweb.exe (Related Designs Software -> )
FirewallRules: [TCP Query User{D5D08936-A9DD-460E-9D42-F6285567E500}E:\games\anno 1404\tools\addonweb.exe] => (Allow) E:\games\anno 1404\tools\addonweb.exe (Related Designs Software -> )
FirewallRules: [{4333188A-EA79-4DA7-806F-06FBEEDF9EA7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5DCC9049-8221-4D0F-A56E-12967466804E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{8B3661AC-75D8-4CD4-A0A6-4469B0140024}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{5C47244E-6D1D-410C-8FDE-C15D8EC77404}E:\games\grand theft auto v\gta5.exe] => (Allow) E:\games\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{BB3227B3-6072-4243-A2B7-6088FB49831C}E:\games\grand theft auto v\gta5.exe] => (Allow) E:\games\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{3C5B1BD7-DF3F-4729-842C-FAB6C06B2944}C:\users\plha\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\plha\appdata\roaming\utorrent\utorrent.exe => No File
FirewallRules: [UDP Query User{2670E909-C795-4C2E-ADAC-CB5B6C94DA30}C:\users\plha\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\plha\appdata\roaming\utorrent\utorrent.exe => No File
FirewallRules: [{BA8FEAA8-DD15-47BB-A189-A33A897D5D96}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd_x64.exe (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{DB20F630-F57B-4D88-977F-66A5CE9CEBAA}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd.exe (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{45A15666-7F4E-4FFE-AE1E-E16C81EA4289}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr.exe (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{CC0E2697-98DB-4C2E-9C29-25CA7564E0F5}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{5C253EE6-3988-4CFD-A80B-0CB4BC1AB6A7}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient.exe (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{B8F0B49C-353E-4B48-A51B-37AD1B565855}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [TCP Query User{01099CEA-A5E0-43C4-AE0B-0BDE4BBC3644}E:\game instal\7dtd\7daystodie.exe] => (Allow) E:\game instal\7dtd\7daystodie.exe () [File not signed]
FirewallRules: [UDP Query User{25D46D3C-3C81-496D-ABF0-FD856D87858F}E:\game instal\7dtd\7daystodie.exe] => (Allow) E:\game instal\7dtd\7daystodie.exe () [File not signed]
FirewallRules: [{2A8A5AB9-F016-4353-9BAF-BD11268FB53D}] => (Block) E:\game instal\7dtd\7daystodie.exe () [File not signed]
FirewallRules: [{D0964FA4-2799-4B49-8815-90032EDE908B}] => (Block) E:\game instal\7dtd\7daystodie.exe () [File not signed]
FirewallRules: [TCP Query User{E7C448E2-B127-4F1D-BC47-9CAC3E6B39A6}E:\game instal\subnauticazero\subnauticazero.exe] => (Block) E:\game instal\subnauticazero\subnauticazero.exe () [File not signed]
FirewallRules: [UDP Query User{7913B5D6-8C8D-4E71-B68D-5ED48D9C61E4}E:\game instal\subnauticazero\subnauticazero.exe] => (Block) E:\game instal\subnauticazero\subnauticazero.exe () [File not signed]
FirewallRules: [{B8BF15C7-FCF0-4C74-8BF3-6F6954189197}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{10E335E8-245C-4680-8254-D9D04D3D5722}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{9DEAC5EF-D6A0-426A-9D13-44D2D623E646}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe (Smartly Dressed Games Ltd. -> ) [File not signed]
FirewallRules: [{79039D30-623A-45DF-89E9-3849095C700B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe (Smartly Dressed Games Ltd. -> ) [File not signed]
FirewallRules: [{0971A7AF-546C-4CCA-8CD4-9818457E4C85}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{19321148-E324-4B8E-AF2A-4329D90A2CF3}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{6FB57078-AE89-42EC-9419-B0F17B1FF599}] => (Allow) e:\program files\txgameassistant\appmarket\AppMarket.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{BFF92242-D2F4-443A-9A1A-7E9118588160}] => (Allow) e:\program files\txgameassistant\appmarket\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{160B0BD8-2A20-40E4-B1FB-071CF210C529}] => (Allow) e:\program files\txgameassistant\appmarket\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> 腾讯公司)
FirewallRules: [{07E95125-CF00-4C96-8F60-50C72EB14D04}] => (Allow) e:\program files\txgameassistant\appmarket\QQExternal.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{B8239F2C-4E0A-4B59-9512-4CF7076DF360}] => (Allow) e:\program files\txgameassistant\appmarket\GameDownload.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{D82B3CAD-5935-4C07-92ED-1EBA1A98AC7C}] => (Allow) e:\program files\txgameassistant\appmarket\GF186\TUpdate.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{044D75A4-4988-43E0-BD4B-184A23D2B85F}] => (Allow) e:\program files\txgameassistant\ui\AndroidEmulator.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{F7B7A3C3-CC28-4243-8BB2-F935CCC9CD6D}] => (Allow) e:\program files\txgameassistant\ui\adb.exe () [File not signed]
FirewallRules: [{671EDA99-7B26-4E91-96E6-D27A3824CD17}] => (Allow) e:\program files\txgameassistant\ui\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{BC332DA0-ABB3-4E86-B39F-E5D651FA9235}] => (Allow) e:\program files\txgameassistant\ui\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{512E0BD0-046C-4A04-9721-2647A0B957F2}] => (Allow) e:\program files\txgameassistant\ui\TxGaDcc.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [TCP Query User{EACAC531-E7B5-44B0-9DC1-436ACDB7220B}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{44DAD4B6-FABA-4BB7-A244-3AF6F05AD0B1}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{A146EA9C-CAB8-4613-A86A-EF55DAFE8FD4}] => (Allow) C:\Users\Plha\AppData\Roaming\uTorrent\utorrent.exe => No File
FirewallRules: [{D3E5B8C6-FA66-437F-B29E-184899AC2FB8}] => (Allow) C:\Users\Plha\AppData\Roaming\uTorrent\utorrent.exe => No File
FirewallRules: [TCP Query User{3044ECFD-DF34-4866-9513-74E3D7483FA8}C:\users\plha\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe] => (Block) C:\users\plha\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{6F70B44D-B614-4E09-B63B-758870B8F8AF}C:\users\plha\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe] => (Block) C:\users\plha\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe
FirewallRules: [{28B780E8-8205-40E7-B2D3-9044EB4792E2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A7DA3B16-D6F5-49AA-8832-C59B7402054F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{59DAD99E-85DC-48A5-981B-303F6AE4E427}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A604743B-F41E-4564-B5B9-893A61E74EDC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4C676AB0-5543-4E27-A1DB-1583EC2CD964}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{1BE6EEC1-5A4C-480C-BE95-C28DA415855E}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{B94BD3DF-5FF2-4042-BA31-1FA82059E73C}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{B893AEDE-5427-4CC7-A7F6-2CF84ED7D682}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{E23814B1-1F0D-48DB-968A-F2A672AF8FA9}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
15-10-2020 09:36:00 Instalační služba modulů systému Windows
16-10-2020 10:30:10 Instalační služba modulů systému Windows
==================== Faulty Device Manager Devices ============
Name: LogMeIn Hamachi Virtual Ethernet Adapter
Description: LogMeIn Hamachi Virtual Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn Inc.
Service: Hamachi
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: ========================
Application errors:
==================
Error: (10/17/2020 09:59:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program FRST64.exe verze 14.10.2020.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 2f8c
Čas spuštění: 01d6a4bd446b8015
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Users\Plha\Desktop\FRST64.exe
ID hlášení: b40989aa-7d55-44b1-9650-6d9aa5c9aebd
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Top level window is idle
Error: (10/17/2020 09:41:33 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Stellar Repair for Photo\StellarRepairforPhoto.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_fd031af45b0106f2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_b555e41d4684ddec.manifest.
Error: (10/17/2020 09:41:33 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Stellar Repair for Photo\StellarRepairforPhoto.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_fd031af45b0106f2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_b555e41d4684ddec.manifest.
Error: (10/17/2020 09:41:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: StartMenuExperienceHost.exe, verze: 0.0.0.0, časové razítko: 0x1ec08aff
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1, časové razítko: 0x42c97562
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000010b4ec
ID chybujícího procesu: 0x1cf8
Čas spuštění chybující aplikace: 0x01d6a4bd7ec20f0b
Cesta k chybující aplikaci: C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 58abb6f4-94d2-4b52-b59e-383c7c5078a1
Úplný název chybujícího balíčku: Microsoft.Windows.StartMenuExperienceHost_10.0.19041.1_neutral_neutral_cw5n1h2txyewy
ID aplikace související s chybujícím balíčkem: App
Error: (10/17/2020 09:41:08 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Stellar Repair for Photo\StellarRepairforPhoto.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_fd031af45b0106f2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_b555e41d4684ddec.manifest.
Error: (10/17/2020 09:41:08 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Stellar Repair for Photo\StellarRepairforPhoto.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_fd031af45b0106f2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_b555e41d4684ddec.manifest.
Error: (10/17/2020 09:40:15 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Stellar Repair for Photo\StellarRepairforPhoto.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_fd031af45b0106f2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_b555e41d4684ddec.manifest.
Error: (10/17/2020 09:40:15 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Stellar Repair for Photo\StellarRepairforPhoto.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_fd031af45b0106f2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_b555e41d4684ddec.manifest.
System errors:
=============
Error: (10/17/2020 10:01:44 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (10/17/2020 10:01:42 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (10/17/2020 09:58:42 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba QMEmulatorService byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/17/2020 09:54:40 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (10/17/2020 09:54:38 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (10/17/2020 09:43:10 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (10/17/2020 09:43:07 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (10/17/2020 09:41:45 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
CodeIntegrity:
===================================
Date: 2020-10-17 21:45:35.3260000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2020-10-17 21:45:35.3110000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2020-10-17 21:45:33.6510000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2020-10-17 21:39:28.8390000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-17 21:39:27.3840000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-17 21:39:27.3820000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-17 21:38:52.4640000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\PROGRAM FILES\AVAST SOFTWARE\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-17 21:38:49.2760000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\PROGRAM FILES\AVAST SOFTWARE\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: Award Software International, Inc. FA 04/20/2010
Motherboard: Gigabyte Technology Co., Ltd. X58A-UD3R
Processor: Intel(R) Core(TM) i7 CPU 950 @ 3.07GHz
Percentage of memory in use: 69%
Total physical RAM: 4094.49 MB
Available physical RAM: 1249.79 MB
Total Virtual: 8190.49 MB
Available Virtual: 4750.57 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:114.42 GB) (Free:25.85 GB) NTFS
Drive e: (Nový svazek) (Fixed) (Total:350.74 GB) (Free:75.41 GB) NTFS
Drive f: (ESD-USB) (Removable) (Total:14.3 GB) (Free:9.17 GB) FAT32
\\?\Volume{1b1a25ac-a8b1-11e5-aa9b-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{dc76dc76-0000-0000-0000-50a11c000000}\ () (Fixed) (Total:0.5 GB) (Free:0.07 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: DC76DC76)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=114.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=509 MB) - (Type=27)
Partition 4: (Not Active) - (Size=350.7 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (Protective MBR) (Size: 14.3 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
FireFox:
========
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-07-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-07-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin HKU\S-1-5-21-1427180062-2798621324-3331812027-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Plha\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-08-28] (Unity Technologies SF -> Unity Technologies ApS)
Chrome:
=======
CHR Profile: C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default [2020-10-17]
CHR Extension: (Prezentace) - C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-10-17]
CHR Extension: (Dokumenty) - C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-10-17]
CHR Extension: (Disk Google) - C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-17]
CHR Extension: (Tabulky) - C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-10-17]
CHR Extension: (Gmail) - C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-17]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7824280 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [357848 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [58048 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8615864 2020-07-13] (BattlEye Innovations e.K. -> )
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1368408 2015-11-30] (Disc Soft Ltd -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2019-01-21] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7185288 2020-10-17] (Malwarebytes Inc -> Malwarebytes)
S3 NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2007-01-15] (Nero AG) [File not signed]
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [271920 2007-03-12] (Nero AG -> Nero AG)
S2 QMEmulatorService; E:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe [147704 2019-05-31] (Tencent Technology(Shenzhen) Company Limited -> Tencent)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4956856 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SEVPNCLIENT; C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [5255104 2019-03-21] (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 aow_drv; E:\Program Files\TxGameAssistant\UI\2.0.10707.123\aow_drv_x64_ev.sys [859712 2019-05-28] (Tencent Technology(Shenzhen) Company Limited -> Tencent)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37136 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [206392 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [235584 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [195648 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [60480 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16824 2020-07-23] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42768 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175192 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [517592 2020-09-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [109272 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84848 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851600 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [469880 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [217328 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326408 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [314016 2015-12-28] (Tages SA -> )
S3 BEDaisy; C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys [3038568 2020-07-18] (BattlEye Innovations e.K. -> )
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2015-12-24] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [46392 2015-12-24] (Disc Soft Ltd -> Disc Soft Ltd)
S3 Hamachi; C:\WINDOWS\System32\drivers\Hamdrv.sys [45680 2016-05-04] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
S4 IObitUnlocker; C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [36944 2014-03-04] (IObit Information Technology -> IObit)
R2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [43680 2015-12-28] (Tages SA -> )
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [218112 2020-10-17] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-10-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-10-17] (Malwarebytes Inc -> Malwarebytes)
R3 Neo_VPN; C:\WINDOWS\System32\drivers\Neo6_x64_VPN.sys [38216 2019-03-21] (SoftEther Corporation -> SoftEther Corporation)
S3 OSFMount; e:\Counter-Strike Global Offensive\image\x64\OSFMount.sys [552888 2013-10-18] (PassMark Software Pty Ltd -> PassMark Software)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-17] (Microsoft Windows -> Microsoft Corporation)
U3 idsvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-10-17 22:00 - 2020-10-17 22:00 - 000009768 _____ C:\Users\Plha\Desktop\FRST.txt
2020-10-17 21:38 - 2020-10-17 21:38 - 000002395 _____ C:\Users\Plha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-10-17 21:38 - 2020-10-17 21:38 - 000002336 _____ C:\Users\Plha\Desktop\Google Chrome.lnk
2020-10-17 21:31 - 2020-10-17 21:31 - 000218112 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-10-17 21:28 - 2020-10-17 21:23 - 000031496 _____ (Microsoft Corporation) C:\WINDOWS\system32\version.dll
2020-10-17 20:58 - 2020-10-17 20:58 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-10-17 20:58 - 2020-10-17 20:58 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-10-17 20:58 - 2020-10-17 20:58 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-10-17 20:58 - 2020-10-17 20:58 - 000002021 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-10-17 20:57 - 2020-10-17 20:57 - 000002076 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2020-10-17 20:57 - 2020-10-17 20:57 - 000002076 _____ C:\ProgramData\Desktop\Avast Free Antivirus.lnk
2020-10-17 20:57 - 2020-10-17 20:56 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-10-17 20:57 - 2020-10-17 20:56 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-10-17 20:35 - 2020-10-17 20:35 - 000015580 _____ C:\Users\Plha\Downloads\version (1).zip
2020-10-17 20:33 - 2020-10-17 20:33 - 000013631 _____ C:\Users\Plha\Downloads\version.zip
2020-10-17 20:18 - 2020-10-17 14:34 - 002299904 _____ (Farbar) C:\Users\Plha\Desktop\FRST64.exe
2020-10-17 19:31 - 2020-10-17 19:31 - 000000000 ____D C:\Users\Plha\AppData\Roaming\Tencent
2020-10-17 19:08 - 2020-10-17 19:28 - 000003168 _____ C:\WINDOWS\system32\Tasks\AdwCleaner_onReboot
2020-10-17 19:06 - 2020-10-17 19:07 - 000000000 ____D C:\AdwCleaner
2020-10-17 19:05 - 2020-10-17 19:05 - 008447152 _____ (Malwarebytes) C:\Users\Plha\Desktop\adwcleaner_8.0.8.exe
2020-10-17 15:47 - 2020-10-17 22:00 - 000000000 ____D C:\FRST
2020-10-17 14:35 - 2020-10-17 16:31 - 000000000 _____ C:\Users\Plha\Downloads\avenger.exe
2020-10-17 14:34 - 2020-10-17 14:34 - 002299904 _____ (Farbar) C:\Users\Plha\Downloads\FRST64.exe
2020-10-17 11:42 - 2020-10-17 14:11 - 000000000 ____D C:\Users\Plha\AppData\Local\FSDART
2020-10-17 11:41 - 2020-10-17 11:42 - 000000000 ____D C:\Users\Plha\AppData\Local\F-Secure
2020-10-17 11:41 - 2020-10-17 11:42 - 000000000 ____D C:\ProgramData\F-Secure
2020-10-17 11:39 - 2020-10-17 11:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Unlocker
2020-10-17 11:39 - 2020-10-17 11:39 - 000000000 ____D C:\ProgramData\IObit
2020-10-17 11:39 - 2020-10-17 11:39 - 000000000 ____D C:\Program Files (x86)\IObit
2020-10-17 11:39 - 2020-10-17 11:29 - 000001257 _____ C:\Users\Public\Desktop\IObit Unlocker.lnk
2020-10-17 11:39 - 2020-10-17 11:29 - 000001257 _____ C:\ProgramData\Desktop\IObit Unlocker.lnk
2020-10-17 10:52 - 2020-10-17 10:52 - 000724952 _____ C:\Users\Plha\Downloads\avenger.zip
2020-10-17 10:40 - 2020-10-17 21:35 - 000003614 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA1d6a45fdf63c634
2020-10-16 11:57 - 2020-10-16 11:57 - 001317080 _____ (Google LLC) C:\Users\Plha\Downloads\ChromeSetup.exe
2020-10-16 11:55 - 2020-10-16 11:55 - 000003934 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2020-10-16 11:55 - 2020-10-16 11:55 - 000003492 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2020-10-16 11:35 - 2020-10-17 11:44 - 000001773 _____ C:\Users\Plha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2020-10-16 11:35 - 2020-10-17 11:43 - 000001667 _____ C:\Users\Plha\Desktop\ESET Online Scanner.lnk
2020-10-16 11:24 - 2020-10-16 11:24 - 000000000 ____D C:\Users\Matysek\AppData\Local\NVIDIA
2020-10-16 11:24 - 2020-10-16 11:24 - 000000000 ____D C:\Users\Matysek\AppData\Local\CrashDumps
2020-10-16 11:23 - 2020-10-16 11:23 - 000001446 _____ C:\Users\Matysek\Desktop\Microsoft Edge.lnk
2020-10-16 11:23 - 2020-10-16 11:23 - 000000000 ____D C:\Users\Matysek\AppData\Local\MicrosoftEdge
2020-10-16 11:21 - 2020-10-16 11:21 - 000000000 ____D C:\Users\Matysek\AppData\Local\Publishers
2020-10-16 11:20 - 2020-10-16 11:20 - 000000000 ___RD C:\Users\Matysek\3D Objects
2020-10-16 11:11 - 2020-10-16 11:11 - 000000000 ____D C:\Users\Matysek\AppData\Local\VirtualStore
2020-10-16 11:10 - 2020-10-16 11:22 - 000000000 ____D C:\Users\Matysek\AppData\Local\Packages
2020-10-16 11:10 - 2020-10-16 11:20 - 000000000 ____D C:\Users\Matysek
2020-10-16 11:10 - 2020-10-16 11:10 - 000000020 ___SH C:\Users\Matysek\ntuser.ini
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Šablony
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Soubory cookie
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Poslední
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Okolní tiskárny
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Okolní síť
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Nabídka Start
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Dokumenty
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Documents\Obrázky
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Documents\Hudba
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Documents\Filmy
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Data aplikací
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\AppData\Local\Data aplikací
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 ____D C:\Users\Matysek\AppData\Local\ConnectedDevicesPlatform
2020-10-16 11:10 - 2019-12-07 11:10 - 000001105 _____ C:\Users\Matysek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-10-16 11:10 - 2019-04-09 21:24 - 000000000 ____D C:\Users\Matysek\AppData\Local\LogMeIn Hamachi
2020-10-16 11:10 - 2019-03-20 17:44 - 000000000 ____D C:\Users\Matysek\AppData\Local\Microsoft Help
2020-10-16 11:10 - 2016-10-03 09:01 - 000000000 ____D C:\Users\Matysek\AppData\Roaming\Media Center Programs
2020-10-16 10:48 - 2020-10-16 11:06 - 000000000 ___HD C:\$SysReset
2020-10-16 10:48 - 2020-10-16 10:49 - 000000000 ____D C:\$Windows.~BT
2020-10-16 10:29 - 2020-10-17 20:55 - 000000000 ____D C:\KRD2018_Data
2020-10-16 09:41 - 2020-10-16 09:41 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-10-16 09:40 - 2020-10-16 09:40 - 000000000 ____D C:\Program Files\Malwarebytes
2020-10-16 08:22 - 2020-10-16 07:09 - 625199104 _____ C:\Users\Plha\Downloads\krd.iso
2020-10-15 22:24 - 2020-10-15 22:22 - 183879024 _____ C:\Users\Plha\Downloads\KVRT.exe
2020-10-15 12:38 - 2020-10-15 12:45 - 000000000 _____ C:\Recovery.txt
2020-10-15 10:47 - 2020-10-15 10:47 - 000000000 _____ C:\Users\Plha\Downloads\hijackthis.exe
2020-10-15 10:39 - 2020-10-14 12:14 - 500081112 _____ (AVAST Software) C:\Users\Plha\Downloads\avast_free_antivirus_setup_offline.exe
2020-10-14 09:31 - 2020-10-13 11:22 - 4294967295 _____ C:\Users\Plha\Downloads\Win10_2004_Czech_x64.iso
2020-10-13 09:10 - 2020-10-16 10:43 - 000000000 ____D C:\Users\DefaultAppPool\AppData\Local\CrashDumps
2020-10-12 11:29 - 2020-10-16 11:42 - 000000000 ____D C:\Program Files (x86)\Dll-Files.com Fixer
2020-10-12 11:11 - 2020-10-16 11:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dll-Files Fixer
2020-10-12 11:11 - 2020-10-12 11:11 - 000000000 ____D C:\Users\Plha\AppData\Roaming\dll-files.com
2020-10-12 10:28 - 2020-10-12 10:28 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2020-10-12 10:27 - 2018-04-12 23:02 - 000998432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-10-12 10:27 - 2018-04-12 23:02 - 000950016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-10-12 10:27 - 2018-04-12 23:01 - 001985112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6439135.dll
2020-10-12 10:27 - 2018-04-12 23:01 - 001690952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2020-10-12 10:27 - 2018-04-12 23:01 - 001683712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6439135.dll
2020-10-12 10:27 - 2018-04-12 23:01 - 001138720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-10-12 10:27 - 2018-04-12 23:01 - 001065888 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-10-12 10:27 - 2018-04-12 23:01 - 000054272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2020-10-12 10:27 - 2018-04-12 23:00 - 040278616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2020-10-12 10:27 - 2018-04-12 23:00 - 035188992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2020-10-12 10:27 - 2018-04-12 23:00 - 004318112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-10-12 10:27 - 2018-04-12 23:00 - 003719096 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-10-12 10:27 - 2018-04-12 22:58 - 019855144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2020-10-12 10:27 - 2018-04-12 22:58 - 016496768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2020-10-12 10:27 - 2018-04-12 22:58 - 013571520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2020-10-12 10:27 - 2018-04-12 22:58 - 011132384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2020-10-12 10:27 - 2018-04-12 22:58 - 001153752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2020-10-12 10:27 - 2018-04-12 22:57 - 012967056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-10-12 10:27 - 2018-04-12 22:57 - 000902096 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2020-10-12 10:27 - 2018-04-12 22:56 - 011001504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-10-12 10:27 - 2018-04-12 22:56 - 004633920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-10-12 10:27 - 2018-04-12 22:56 - 003939624 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-10-12 08:52 - 2020-10-17 11:29 - 001063408 _____ C:\WINDOWS\ntbtlog.txt
2020-10-09 20:04 - 2020-10-09 20:04 - 000001022 _____ C:\Users\Plha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\osu!.lnk
2020-10-09 20:04 - 2020-10-09 20:04 - 000001014 _____ C:\Users\Plha\Desktop\osu!.lnk
2020-10-09 20:03 - 2020-10-09 20:28 - 000000000 ____D C:\Users\Plha\AppData\Local\osu!
2020-10-09 20:03 - 2020-10-09 20:03 - 000000000 ____D C:\Users\Plha\Downloads\Localisation
2020-10-09 20:01 - 2020-10-09 20:01 - 004393728 _____ (ppy) C:\Users\Plha\Downloads\osu!install.exe
2020-10-07 18:36 - 2020-10-07 18:36 - 000069836 _____ C:\Users\Plha\Downloads\267204846_20200930_9_MCZS.pdf
2020-09-22 11:28 - 2020-09-22 11:27 - 000338528 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2020-09-22 11:28 - 2020-09-22 11:27 - 000217328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2020-09-22 11:28 - 2020-09-22 11:27 - 000175192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2020-09-19 07:53 - 2020-09-19 07:53 - 000000000 __SHD C:\found.000
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-10-17 21:54 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-10-17 21:51 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-10-17 21:47 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2020-10-17 21:43 - 2019-01-21 12:32 - 000000000 ____D C:\ProgramData\AVAST Software
2020-10-17 21:41 - 2016-05-25 15:10 - 000000000 ____D C:\Users\Plha\AppData\Local\Packages
2020-10-17 21:41 - 2015-12-25 13:46 - 000000000 ____D C:\Users\Plha\AppData\Local\CrashDumps
2020-10-17 21:39 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-10-17 21:35 - 2020-08-28 16:56 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-10-17 21:32 - 2019-03-21 17:28 - 000000000 ____D C:\Program Files\SoftEther VPN Client
2020-10-17 21:31 - 2016-10-03 08:51 - 000000000 ____D C:\ProgramData\NVIDIA
2020-10-17 21:30 - 2020-08-28 16:56 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-10-17 21:30 - 2020-08-28 16:23 - 000008192 ___SH C:\DumpStack.log.tmp
2020-10-17 21:29 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-10-17 21:24 - 2020-08-28 16:24 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-10-17 21:05 - 2020-08-20 08:26 - 000000000 ____D C:\Program Files\CCleaner
2020-10-17 21:00 - 2020-08-28 16:56 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-10-17 20:58 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-10-17 20:57 - 2019-01-21 12:44 - 000002088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2020-10-17 14:55 - 2020-08-28 16:40 - 001919736 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-10-17 14:55 - 2019-12-07 16:43 - 000781566 _____ C:\WINDOWS\system32\perfh005.dat
2020-10-17 14:55 - 2019-12-07 16:43 - 000172300 _____ C:\WINDOWS\system32\perfc005.dat
2020-10-17 11:30 - 2020-08-28 16:56 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-10-17 11:29 - 2019-07-04 21:57 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2020-10-17 11:26 - 2015-12-23 00:02 - 000000632 _____ C:\Users\Plha\Desktop\Total Commander.lnk
2020-10-16 11:45 - 2015-12-24 11:31 - 000000000 ____D C:\Users\Plha\AppData\Roaming\uTorrent
2020-10-16 11:42 - 2020-04-19 18:05 - 000000000 ____D C:\Program Files (x86)\EUROBYTE TOOLS
2020-10-16 11:35 - 2015-12-22 23:51 - 000000000 ____D C:\Users\Plha\AppData\Local\ESET
2020-10-16 11:20 - 2016-02-13 15:14 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-10-16 11:11 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-10-16 10:53 - 2020-08-28 16:56 - 000003472 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-10-16 10:53 - 2020-08-28 16:56 - 000003348 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-10-16 10:32 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-10-16 08:24 - 2020-08-28 16:56 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-10-15 11:11 - 2020-08-28 13:46 - 000000000 ____D C:\Users\DefaultAppPool
2020-10-15 11:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2020-10-15 11:11 - 2016-11-09 22:00 - 000000000 ____D C:\Users\Plha\AppData\Roaming\PSpad
2020-10-15 11:11 - 2015-12-23 00:02 - 000000000 ____D C:\Users\Plha\AppData\Roaming\GHISLER
2020-10-15 11:01 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\registration
2020-10-15 10:47 - 2016-11-01 12:00 - 000000000 ____D C:\Users\Plha\AppData\Local\ElevatedDiagnostics
2020-10-15 10:15 - 2020-08-28 13:46 - 000000000 ____D C:\Users\Plha
2020-10-14 11:14 - 2019-04-22 20:11 - 000000175 _____ C:\Users\Plha\Desktop\Heslo roblox.txt
2020-10-13 09:28 - 2016-10-04 23:06 - 000000000 ____D C:\Users\Plha\AppData\Local\MicrosoftEdge
2020-10-13 09:19 - 2019-12-07 16:47 - 000000000 ___SD C:\WINDOWS\system32\AppV
2020-10-13 09:19 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2020-10-13 09:19 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2020-10-13 09:19 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Com
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2020-10-13 09:19 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2020-10-13 08:48 - 2020-08-20 08:26 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-10-13 08:48 - 2020-08-20 08:26 - 000000863 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-10-13 08:33 - 2019-01-21 12:44 - 000000000 ____D C:\Users\Plha\AppData\Roaming\AVAST Software
2020-10-13 08:22 - 2020-08-28 16:24 - 000443000 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-10-10 00:14 - 2020-08-28 16:56 - 000002238 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-10-10 00:14 - 2020-08-28 16:56 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-10-10 00:05 - 2016-03-19 17:55 - 000000000 ____D C:\Program Files (x86)\Steam
2020-10-08 15:52 - 2019-08-02 13:57 - 000001424 _____ C:\Users\Plha\Desktop\Roblox Player.lnk
2020-10-08 15:52 - 2019-03-16 11:10 - 000001247 _____ C:\Users\Plha\Desktop\Roblox Studio.lnk
2020-10-08 15:52 - 2019-03-16 11:10 - 000000000 ____D C:\Users\Plha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2020-10-03 02:33 - 2019-12-07 11:18 - 000835472 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-10-03 02:33 - 2019-12-07 11:18 - 000179608 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-09-29 20:39 - 2019-02-13 15:29 - 000000000 ____D C:\Users\Plha\AppData\Roaming\.minecraft
2020-09-29 20:34 - 2019-02-13 19:02 - 000000000 ____D C:\Users\Plha\AppData\Roaming\.tlauncher
2020-09-28 14:48 - 2016-05-28 15:14 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-09-28 14:41 - 2016-05-28 15:14 - 129170736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-09-25 17:58 - 2020-04-19 17:49 - 000517592 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2020-09-22 20:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-09-22 11:30 - 2019-01-21 12:40 - 000326408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000851600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000469880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000235584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000206392 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000195648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000109272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000084848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000060480 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000042768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000037136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2020-09-17 09:06 - 2019-02-16 20:28 - 000000000 ____D C:\Program Files (x86)\SpeedFan
2020-09-17 09:04 - 2020-08-20 08:29 - 000000000 ____D C:\Program Files\Speccy
==================== Files in the root of some directories ========
2020-02-25 20:28 - 2020-06-26 23:22 - 000006656 _____ () C:\Users\Plha\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2019-06-30 18:02 - 2019-06-30 18:02 - 000000000 _____ () C:\Users\Plha\AppData\Local\{B8C342F4-4420-4F76-8184-24C996FAEC09}
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-10-2020
Ran by Plha (17-10-2020 22:01:55)
Running from C:\Users\Plha\Desktop
Windows 10 Pro Version 2004 19041.1 (X64) (2020-08-28 14:57:57)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1427180062-2798621324-3331812027-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1427180062-2798621324-3331812027-503 - Limited - Disabled)
Guest (S-1-5-21-1427180062-2798621324-3331812027-501 - Limited - Disabled)
Matysek (S-1-5-21-1427180062-2798621324-3331812027-1001 - Limited - Enabled) => C:\Users\Matysek
Plha (S-1-5-21-1427180062-2798621324-3331812027-1000 - Administrator - Enabled) => C:\Users\Plha
WDAGUtilityAccount (S-1-5-21-1427180062-2798621324-3331812027-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Photoshop CC 2018 (HKLM-x32\...\PHSP_19_0) (Version: 19.0 - Adobe Systems Incorporated)
AIDA64 Extreme Edition v1.50 (HKLM-x32\...\AIDA64 Extreme Edition_is1) (Version: 1.50 - FinalWire Ltd.)
Aktualizace NVIDIA 2.11.4.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.11.4.1 - NVIDIA Corporation) Hidden
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.67 - Piriform)
Convert WAV To MP3 1.0 (HKLM-x32\...\Convert WAV To MP3_is1) (Version: - A Software Plus)
Counter-Strike Global Offensive [No-Steam] (HKLM-x32\...\Counter-Strike Global Offensive_is1) (Version: 1.32.2.1 - Valve software)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.2.0.0114 - Disc Soft Ltd)
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
Dll-Files Fixer (HKLM-x32\...\Dll-Files Fixer_is1) (Version: 1.0 - Dll-Files.com)
Epic Games Launcher (HKLM-x32\...\{0E63B233-DC24-442C-BD38-0B91D90FEC5B}) (Version: 1.1.167.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Farming Simulator 17 (HKLM\...\ZmFybWluZ3NpbXVsYXRvcjE3_is1) (Version: 1 - )
GameLoad 2.0.0 (HKLM-x32\...\{7FEA7AEB-C073-4687-B3E1-5282DFABAB56}_is1) (Version: 2.0.0 - Ant Media, s. r. o.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 86.0.4240.75 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 - Google LLC) Hidden
Grand Theft Auto V (HKLM-x32\...\Grand Theft Auto V_is1) (Version: 1.0.350.1 - Rockstar)
IObit Unlocker (HKLM-x32\...\IObit Unlocker_is1) (Version: 1.1 - IObit)
Java 8 Update 261 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180261F0}) (Version: 8.0.2610.12 - Oracle Corporation)
JPEG Recovery 1.1 (HKLM-x32\...\JPEG Recovery 1.1) (Version: - )
JPEG Recovery Pro 5.0 (HKLM-x32\...\JPEG Recovery Pro5.0) (Version: 5.0 - e.World Technology Limited)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\{ECC0FA07-863E-44BC-8B1D-DA22F96E5FB7}) (Version: 2.2.0.633 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.633 - LogMeIn, Inc.)
Mafia (HKLM-x32\...\1595659240_is1) (Version: 1.3 - GOG.com)
Mafia Compatibility Database (HKLM\...\{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb) (Version: - )
Malwarebytes version 4.2.1.89 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.2.1.89 - Malwarebytes)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 86.0.622.43 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.49 - )
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1427180062-2798621324-3331812027-1000\...\OneDriveSetup.exe) (Version: 20.084.0426.0007 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{406C9ADB-1325-4FD0-9D13-C119CFF64E0A}) (Version: 2.65.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{35D9277C-1EB7-4FBE-8B41-C520DE4F7A60}) (Version: 1.9.0 - OfficialHawk)
Mp3 Editor for Free v5.2.7 Build 79 (HKLM-x32\...\Mp3 Editor for Free_is1) (Version: 5.2.7 Build 79 - Mp3EditorforFree Ltd.)
Nero 7 Ultra Edition (HKLM-x32\...\{4F2CE68F-EDBB-4592-BF07-5AC930A51029}) (Version: 7.02.6446 - Nero AG)
NVIDIA Ovladač 3D Vision 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.13 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
osrss (HKLM-x32\...\{1BA1133B-1C7A-41A0-8CBF-9B993E63D296}) (Version: 1.0.0 - Microsoft Corporation) Hidden
osu! (HKLM-x32\...\{7c03dfac-c046-474d-b65c-3cb802a0c3ee}) (Version: latest - ppy Pty Ltd)
Ovládací panel NVIDIA 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.13 - NVIDIA Corporation) Hidden
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22617 - Microsoft Corporation)
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: 4.6.1.2730 - Jan Fiala)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.34.617.2014 - Realtek)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.30.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.30.0 - Renesas Electronics Corporation)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Roblox Player for Plha (HKU\S-1-5-21-1427180062-2798621324-3331812027-1000\...\roblox-player) (Version: - Roblox Corporation)
Roblox Studio for Plha (HKU\S-1-5-21-1427180062-2798621324-3331812027-1000\...\roblox-studio) (Version: - Roblox Corporation)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.4.1 - NVIDIA Corporation) Hidden
SoftEther VPN Client (HKLM\...\softether_sevpnclient) (Version: 4.24.9651 - SoftEther VPN Project)
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stellar Repair for Photo (HKLM-x32\...\Stellar Repair for Photo_is1) (Version: 6.0.0.0 - Stellar Information Technology Pvt Ltd.)
Swords & Souls: Neverseen (HKLM-x32\...\1741685922_is1) (Version: 1.12 - GOG.com)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
Tencent Gaming Buddy (HKLM-x32\...\MobileGamePC) (Version: 1.0.0.1 - Tencent Technology Company)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 8.52a - Ghisler Software GmbH)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Unity Web Player (HKU\S-1-5-21-1427180062-2798621324-3331812027-1000\...\UnityWebPlayer) (Version: 5.2.0f3 - Unity Technologies ApS)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{EC4F72E8-52FE-454E-B70F-DBE5C0FA44C5}) (Version: 1.20.0.0 - Microsoft Corporation) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
Packages:
=========
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.179.300.0_x86__kgqvnymyfvs32 [2020-10-16] (king.com)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-10-15] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-10-15] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-10-17] (Microsoft Studios) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-10-17] (Microsoft Corporation) [MS Ad]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2020-10-15] (Twitter Inc.)
WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x64__8wekyb3d8bbwe [2020-10-15] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1427180062-2798621324-3331812027-1000_Classes\CLSID\{ED90173A-3B4C-4E7E-B9CF-79714425D4B5}\InprocServer32 -> C:\Program Files (x86)\PSPad editor\pspshellx64.dll () [File not signed]
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6671064 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-09-22] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1-x32: [Cover Designer] -> {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} => C:\Program Files (x86)\Nero\Nero 7\Nero CoverDesigner\CoverEdExtension.dll [2007-02-28] (Nero AG -> Nero AG)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers1: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll [2014-03-04] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-10-16] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers4: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll [2014-03-04] (IObit Information Technology -> IObit)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-10-16] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll [2014-03-04] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-1427180062-2798621324-3331812027-1000: [EditWithPSPad] -> {ED90173A-3B4C-4E7E-B9CF-79714425D4B5} => C:\Program Files (x86)\PSPad editor\pspshellx64.dll [2014-11-02] () [File not signed]
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Plha\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Jiří - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"
==================== Loaded Modules (Whitelisted) =============
2016-11-09 21:59 - 2014-11-02 19:45 - 000029184 _____ () [File not signed] C:\Program Files (x86)\PSPad editor\pspshellx64.dll
2020-08-28 16:40 - 2017-10-27 18:06 - 000874368 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI64.dll
2020-08-28 16:40 - 2017-10-27 18:06 - 000339256 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\NvStereo\_nvstapisvr64.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [474]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\ssv.dll [2020-07-23] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\jp2ssv.dll [2020-07-23] (Oracle America, Inc. -> Oracle Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2020-08-20 08:18 - 000001347 ____R C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 license.piriform.com
127.0.0.1 www.license.piriform.com
127.0.0.1 speccy.piriform.com
127.0.0.1 www.speccy.piriform.com
127.0.0.1 recuva.piriform.com
127.0.0.1 www.recuva.piriform.com
127.0.0.1 defraggler.piriform.com
127.0.0.1 www.defraggler.piriform.com
127.0.0.1 ccleaner.piriform.com
127.0.0.1 www.ccleaner.piriform.com
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1427180062-2798621324-3331812027-1000\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\StartupFolder: => "SoftEther VPN Client Manager Startup.lnk"
HKLM\...\StartupApproved\Run: => "SoftEther VPN Client UI Helper"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{9E3800AE-21E9-4679-A82D-D5C6F99E8387}E:\games\grand theft auto v\gta5.exe] => (Block) E:\games\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{ADB078BA-845B-4B1C-B6D9-5754F73E2A68}E:\games\grand theft auto v\gta5.exe] => (Block) E:\games\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [{B53D82ED-4C7D-445C-A757-FA1266C3562B}] => (Block) E:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{D2CB59E9-3A4F-4EEE-8E3E-1A5A886AF4E4}] => (Block) E:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{645A9DCE-03A3-4C29-A56C-34AE90C13697}E:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) E:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{E816C1DC-E620-43B7-B05D-EA247DFC1F79}E:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) E:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{5B847D1A-F80B-4C62-AEC8-123CB3AA5463}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{0E14A1FB-84B2-464D-B952-27AA4CBE985E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{21CEA782-CDAA-4AE2-96EC-53020A261201}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{F5E671FC-67FB-42DC-B964-AD012EAD9E8B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{76E1AA9D-1B5B-413D-977F-95CF79F59908}E:\games\anno 1404\addon.exe] => (Allow) E:\games\anno 1404\addon.exe (Related Designs Software -> Related Designs)
FirewallRules: [TCP Query User{D1987BA0-5833-4BD2-8CBE-B70A6EE65BD9}E:\games\anno 1404\addon.exe] => (Allow) E:\games\anno 1404\addon.exe (Related Designs Software -> Related Designs)
FirewallRules: [UDP Query User{F6B7DB6F-9E45-4AE0-912D-296A90722AE6}E:\games\anno 1404\tools\addonweb.exe] => (Allow) E:\games\anno 1404\tools\addonweb.exe (Related Designs Software -> )
FirewallRules: [TCP Query User{D5D08936-A9DD-460E-9D42-F6285567E500}E:\games\anno 1404\tools\addonweb.exe] => (Allow) E:\games\anno 1404\tools\addonweb.exe (Related Designs Software -> )
FirewallRules: [{4333188A-EA79-4DA7-806F-06FBEEDF9EA7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5DCC9049-8221-4D0F-A56E-12967466804E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{8B3661AC-75D8-4CD4-A0A6-4469B0140024}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{5C47244E-6D1D-410C-8FDE-C15D8EC77404}E:\games\grand theft auto v\gta5.exe] => (Allow) E:\games\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{BB3227B3-6072-4243-A2B7-6088FB49831C}E:\games\grand theft auto v\gta5.exe] => (Allow) E:\games\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{3C5B1BD7-DF3F-4729-842C-FAB6C06B2944}C:\users\plha\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\plha\appdata\roaming\utorrent\utorrent.exe => No File
FirewallRules: [UDP Query User{2670E909-C795-4C2E-ADAC-CB5B6C94DA30}C:\users\plha\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\plha\appdata\roaming\utorrent\utorrent.exe => No File
FirewallRules: [{BA8FEAA8-DD15-47BB-A189-A33A897D5D96}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd_x64.exe (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{DB20F630-F57B-4D88-977F-66A5CE9CEBAA}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd.exe (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{45A15666-7F4E-4FFE-AE1E-E16C81EA4289}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr.exe (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{CC0E2697-98DB-4C2E-9C29-25CA7564E0F5}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{5C253EE6-3988-4CFD-A80B-0CB4BC1AB6A7}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient.exe (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{B8F0B49C-353E-4B48-A51B-37AD1B565855}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [TCP Query User{01099CEA-A5E0-43C4-AE0B-0BDE4BBC3644}E:\game instal\7dtd\7daystodie.exe] => (Allow) E:\game instal\7dtd\7daystodie.exe () [File not signed]
FirewallRules: [UDP Query User{25D46D3C-3C81-496D-ABF0-FD856D87858F}E:\game instal\7dtd\7daystodie.exe] => (Allow) E:\game instal\7dtd\7daystodie.exe () [File not signed]
FirewallRules: [{2A8A5AB9-F016-4353-9BAF-BD11268FB53D}] => (Block) E:\game instal\7dtd\7daystodie.exe () [File not signed]
FirewallRules: [{D0964FA4-2799-4B49-8815-90032EDE908B}] => (Block) E:\game instal\7dtd\7daystodie.exe () [File not signed]
FirewallRules: [TCP Query User{E7C448E2-B127-4F1D-BC47-9CAC3E6B39A6}E:\game instal\subnauticazero\subnauticazero.exe] => (Block) E:\game instal\subnauticazero\subnauticazero.exe () [File not signed]
FirewallRules: [UDP Query User{7913B5D6-8C8D-4E71-B68D-5ED48D9C61E4}E:\game instal\subnauticazero\subnauticazero.exe] => (Block) E:\game instal\subnauticazero\subnauticazero.exe () [File not signed]
FirewallRules: [{B8BF15C7-FCF0-4C74-8BF3-6F6954189197}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{10E335E8-245C-4680-8254-D9D04D3D5722}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{9DEAC5EF-D6A0-426A-9D13-44D2D623E646}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe (Smartly Dressed Games Ltd. -> ) [File not signed]
FirewallRules: [{79039D30-623A-45DF-89E9-3849095C700B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe (Smartly Dressed Games Ltd. -> ) [File not signed]
FirewallRules: [{0971A7AF-546C-4CCA-8CD4-9818457E4C85}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{19321148-E324-4B8E-AF2A-4329D90A2CF3}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{6FB57078-AE89-42EC-9419-B0F17B1FF599}] => (Allow) e:\program files\txgameassistant\appmarket\AppMarket.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{BFF92242-D2F4-443A-9A1A-7E9118588160}] => (Allow) e:\program files\txgameassistant\appmarket\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{160B0BD8-2A20-40E4-B1FB-071CF210C529}] => (Allow) e:\program files\txgameassistant\appmarket\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> 腾讯公司)
FirewallRules: [{07E95125-CF00-4C96-8F60-50C72EB14D04}] => (Allow) e:\program files\txgameassistant\appmarket\QQExternal.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{B8239F2C-4E0A-4B59-9512-4CF7076DF360}] => (Allow) e:\program files\txgameassistant\appmarket\GameDownload.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{D82B3CAD-5935-4C07-92ED-1EBA1A98AC7C}] => (Allow) e:\program files\txgameassistant\appmarket\GF186\TUpdate.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{044D75A4-4988-43E0-BD4B-184A23D2B85F}] => (Allow) e:\program files\txgameassistant\ui\AndroidEmulator.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{F7B7A3C3-CC28-4243-8BB2-F935CCC9CD6D}] => (Allow) e:\program files\txgameassistant\ui\adb.exe () [File not signed]
FirewallRules: [{671EDA99-7B26-4E91-96E6-D27A3824CD17}] => (Allow) e:\program files\txgameassistant\ui\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{BC332DA0-ABB3-4E86-B39F-E5D651FA9235}] => (Allow) e:\program files\txgameassistant\ui\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{512E0BD0-046C-4A04-9721-2647A0B957F2}] => (Allow) e:\program files\txgameassistant\ui\TxGaDcc.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [TCP Query User{EACAC531-E7B5-44B0-9DC1-436ACDB7220B}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{44DAD4B6-FABA-4BB7-A244-3AF6F05AD0B1}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{A146EA9C-CAB8-4613-A86A-EF55DAFE8FD4}] => (Allow) C:\Users\Plha\AppData\Roaming\uTorrent\utorrent.exe => No File
FirewallRules: [{D3E5B8C6-FA66-437F-B29E-184899AC2FB8}] => (Allow) C:\Users\Plha\AppData\Roaming\uTorrent\utorrent.exe => No File
FirewallRules: [TCP Query User{3044ECFD-DF34-4866-9513-74E3D7483FA8}C:\users\plha\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe] => (Block) C:\users\plha\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{6F70B44D-B614-4E09-B63B-758870B8F8AF}C:\users\plha\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe] => (Block) C:\users\plha\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe
FirewallRules: [{28B780E8-8205-40E7-B2D3-9044EB4792E2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A7DA3B16-D6F5-49AA-8832-C59B7402054F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{59DAD99E-85DC-48A5-981B-303F6AE4E427}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A604743B-F41E-4564-B5B9-893A61E74EDC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4C676AB0-5543-4E27-A1DB-1583EC2CD964}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{1BE6EEC1-5A4C-480C-BE95-C28DA415855E}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{B94BD3DF-5FF2-4042-BA31-1FA82059E73C}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{B893AEDE-5427-4CC7-A7F6-2CF84ED7D682}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{E23814B1-1F0D-48DB-968A-F2A672AF8FA9}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
15-10-2020 09:36:00 Instalační služba modulů systému Windows
16-10-2020 10:30:10 Instalační služba modulů systému Windows
==================== Faulty Device Manager Devices ============
Name: LogMeIn Hamachi Virtual Ethernet Adapter
Description: LogMeIn Hamachi Virtual Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn Inc.
Service: Hamachi
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: ========================
Application errors:
==================
Error: (10/17/2020 09:59:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program FRST64.exe verze 14.10.2020.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 2f8c
Čas spuštění: 01d6a4bd446b8015
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Users\Plha\Desktop\FRST64.exe
ID hlášení: b40989aa-7d55-44b1-9650-6d9aa5c9aebd
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Top level window is idle
Error: (10/17/2020 09:41:33 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Stellar Repair for Photo\StellarRepairforPhoto.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_fd031af45b0106f2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_b555e41d4684ddec.manifest.
Error: (10/17/2020 09:41:33 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Stellar Repair for Photo\StellarRepairforPhoto.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_fd031af45b0106f2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_b555e41d4684ddec.manifest.
Error: (10/17/2020 09:41:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: StartMenuExperienceHost.exe, verze: 0.0.0.0, časové razítko: 0x1ec08aff
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1, časové razítko: 0x42c97562
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000010b4ec
ID chybujícího procesu: 0x1cf8
Čas spuštění chybující aplikace: 0x01d6a4bd7ec20f0b
Cesta k chybující aplikaci: C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 58abb6f4-94d2-4b52-b59e-383c7c5078a1
Úplný název chybujícího balíčku: Microsoft.Windows.StartMenuExperienceHost_10.0.19041.1_neutral_neutral_cw5n1h2txyewy
ID aplikace související s chybujícím balíčkem: App
Error: (10/17/2020 09:41:08 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Stellar Repair for Photo\StellarRepairforPhoto.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_fd031af45b0106f2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_b555e41d4684ddec.manifest.
Error: (10/17/2020 09:41:08 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Stellar Repair for Photo\StellarRepairforPhoto.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_fd031af45b0106f2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_b555e41d4684ddec.manifest.
Error: (10/17/2020 09:40:15 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Stellar Repair for Photo\StellarRepairforPhoto.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_fd031af45b0106f2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_b555e41d4684ddec.manifest.
Error: (10/17/2020 09:40:15 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Stellar Repair for Photo\StellarRepairforPhoto.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_fd031af45b0106f2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_b555e41d4684ddec.manifest.
System errors:
=============
Error: (10/17/2020 10:01:44 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (10/17/2020 10:01:42 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (10/17/2020 09:58:42 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba QMEmulatorService byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/17/2020 09:54:40 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (10/17/2020 09:54:38 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (10/17/2020 09:43:10 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (10/17/2020 09:43:07 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (10/17/2020 09:41:45 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
CodeIntegrity:
===================================
Date: 2020-10-17 21:45:35.3260000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2020-10-17 21:45:35.3110000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2020-10-17 21:45:33.6510000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2020-10-17 21:39:28.8390000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-17 21:39:27.3840000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-17 21:39:27.3820000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-17 21:38:52.4640000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\PROGRAM FILES\AVAST SOFTWARE\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-17 21:38:49.2760000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\PROGRAM FILES\AVAST SOFTWARE\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: Award Software International, Inc. FA 04/20/2010
Motherboard: Gigabyte Technology Co., Ltd. X58A-UD3R
Processor: Intel(R) Core(TM) i7 CPU 950 @ 3.07GHz
Percentage of memory in use: 69%
Total physical RAM: 4094.49 MB
Available physical RAM: 1249.79 MB
Total Virtual: 8190.49 MB
Available Virtual: 4750.57 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:114.42 GB) (Free:25.85 GB) NTFS
Drive e: (Nový svazek) (Fixed) (Total:350.74 GB) (Free:75.41 GB) NTFS
Drive f: (ESD-USB) (Removable) (Total:14.3 GB) (Free:9.17 GB) FAT32
\\?\Volume{1b1a25ac-a8b1-11e5-aa9b-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{dc76dc76-0000-0000-0000-50a11c000000}\ () (Fixed) (Total:0.5 GB) (Free:0.07 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: DC76DC76)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=114.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=509 MB) - (Type=27)
Partition 4: (Not Active) - (Size=350.7 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (Protective MBR) (Size: 14.3 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Po startu windows vyhazuje hlášku version.dll
Teď spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Po startu windows vyhazuje hlášku version.dll
# -------------------------------
# Malwarebytes AdwCleaner 8.0.8.0
# -------------------------------
# Build: 10-08-2020
# Database: 2020-09-29.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 10-18-2020
# Duration: 00:01:04
# OS: Windows 10 Pro
# Scanned: 31837
# Detected: 2
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
PUP.Optional.Legacy C:\Users\Plha\AppData\Roaming\Tencent
PUP.Optional.Legacy C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Tencent
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
No Preinstalled Software found.
AdwCleaner[S00].txt - [7234 octets] - [17/10/2020 19:07:46]
AdwCleaner[C00].txt - [6446 octets] - [17/10/2020 19:08:02]
AdwCleaner[S01].txt - [1569 octets] - [17/10/2020 19:13:13]
AdwCleaner[C01].txt - [1739 octets] - [17/10/2020 19:13:30]
AdwCleaner[S02].txt - [1863 octets] - [17/10/2020 19:28:35]
AdwCleaner[C02].txt - [1997 octets] - [17/10/2020 19:28:47]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S03].txt ##########
# Malwarebytes AdwCleaner 8.0.8.0
# -------------------------------
# Build: 10-08-2020
# Database: 2020-09-29.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 10-18-2020
# Duration: 00:01:04
# OS: Windows 10 Pro
# Scanned: 31837
# Detected: 2
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
PUP.Optional.Legacy C:\Users\Plha\AppData\Roaming\Tencent
PUP.Optional.Legacy C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Tencent
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
No Preinstalled Software found.
AdwCleaner[S00].txt - [7234 octets] - [17/10/2020 19:07:46]
AdwCleaner[C00].txt - [6446 octets] - [17/10/2020 19:08:02]
AdwCleaner[S01].txt - [1569 octets] - [17/10/2020 19:13:13]
AdwCleaner[C01].txt - [1739 octets] - [17/10/2020 19:13:30]
AdwCleaner[S02].txt - [1863 octets] - [17/10/2020 19:28:35]
AdwCleaner[C02].txt - [1997 octets] - [17/10/2020 19:28:47]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S03].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Po startu windows vyhazuje hlášku version.dll
Nalezené položky smažte a dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Po startu windows vyhazuje hlášku version.dll
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-10-2020
Ran by Plha (administrator) on PLHA-PC (Gigabyte Technology Co., Ltd. X58A-UD3R) (18-10-2020 13:01:22)
Running from C:\Users\Plha\Desktop
Loaded Profiles: Plha
Platform: Windows 10 Pro Version 2004 19041.1 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <3>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Ghisler Software GmbH -> Ghisler Software GmbH) C:\totalcmd\TOTALCMD.EXE
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <7>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler64.exe
(LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(LogMeIn, Inc. -> LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SrTasks.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.504_none_e781e76525fb2269\TiWorker.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
(Tencent Technology(Shenzhen) Company Limited -> Tencent) E:\program files\txgameassistant\appmarket\AppMarket.exe
(Tencent Technology(Shenzhen) Company Limited -> Tencent) E:\program files\txgameassistant\appmarket\QMEmulatorService.exe
(Tencent Technology(Shenzhen) Company Limited -> Tencent) E:\program files\txgameassistant\appmarket\TBSWebRenderer.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [SoftEther VPN Client UI Helper] => C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [5255104 2019-03-21] (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [109160 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [710264 2020-06-18] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\AppCompatFlags\Custom\Game.exe: [{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb] -> Mafia Compatibility Database
HKLM\Software\...\AppCompatFlags\Custom\Setup.exe: [{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb] -> Mafia Compatibility Database
HKLM\Software\...\AppCompatFlags\InstalledSDB\{481dc351-bab0-4f86-b085-87a5626fe6dc}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb [2017-10-31]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.75\Installer\chrmstp.exe [2020-10-17] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SoftEther VPN Client Manager Startup.lnk [2019-03-21]
ShortcutTarget: SoftEther VPN Client Manager Startup.lnk -> C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {05D44F7B-176D-4269-8ABA-8965F4DA95FC} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {08FFFF34-5CEC-4F15-B84F-CE359920AE78} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {0F8611AD-C752-4A2E-A15F-03E0E2D34337} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Plha\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads\esetonlinescanner (1).exe
Task: {14CA672D-F8FC-479E-B509-9B0D722D5BCF} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1741416 2020-09-17] (Avast Software s.r.o. -> Avast Software)
Task: {1698E10E-ED6A-4991-980F-81A3FBF267C5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24690360 2020-05-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {2BA964B7-81B4-433C-8803-2D472B1F7850} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {2CB15278-A715-4428-A9B5-D3EAB37EBB4F} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\WINDOWS\system32\EOSNotify.exe
Task: {2CDB3F74-7661-46C7-8167-1B3773E8E2CC} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {303433AF-D232-498A-9D7E-CBF7A8BEECB6} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {36FC9F65-FBEA-4966-B8BA-E82F5204B9E1} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3AD78E54-323E-43C9-AEBD-0F1759E0E295} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {3E5D6278-10BF-426D-B10D-15B92376FCB6} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {415D5E36-A0A4-4E8F-9FD7-17F96ACDEEC9} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {48C5DB0B-CF22-4616-9A7F-E190D08DD265} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {496C6621-103E-4205-96B5-BF532BBFFEA4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {4B2A4067-CB30-4BB3-B99B-7C169C0B2F20} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {4F0C5B68-5F03-4BC4-A0FD-EC67C0BF5BB2} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {4F56E2C4-4D37-4903-8EF4-D4CDF3C8EEEB} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {53B6F768-D33F-4145-9023-E8C6C76D6FD1} - System32\Tasks\{9CB13F02-3634-4FAA-8A5C-84F17793EF1F} => C:\Windows\system32\pcalua.exe -a "E:\Stažené\ANNO 1404 - Benátky\Patche\anno1404_1.2.exe" -d "E:\Stažené\ANNO 1404 - Benátky\Patche"
Task: {5429588C-3096-43B0-B1AB-C8D0CB63336B} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3850336 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
Task: {5540CBB5-3DCC-4BC6-BDAA-FAE017851B54} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {56C129C0-9326-4440-B8D6-F44F066F27CC} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {58D0B56E-7B13-46F5-8BF4-8F2FD84BDB0A} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5AA5DF71-DA47-40A2-AAA9-7AE15810E294} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {6F0AE5A2-13C8-4DCC-9AC4-32EAB4C99F21} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {719FE2B1-F5CC-4114-BD6F-63342A74A913} - System32\Tasks\AdwCleaner_onReboot => C:\Users\Plha\Desktop\adwcleaner_8.0.8.exe [8447152 2020-10-17] (Malwarebytes Inc -> Malwarebytes)
Task: {75B60B8A-3B0B-4295-8E58-D3E8888B9FDB} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {7BAA88D2-F47F-4A62-8903-9CCA39788517} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {7ED02C17-EFE4-4455-BCC6-7E9DC6BB1C78} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {833097C6-BF27-42EC-9628-5E258555A7CC} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {880B0356-4218-45E7-9E9B-F8041C805191} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-05-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8AF8F7F6-BA90-406C-A886-A23A50E5A378} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8C749654-C073-4A97-A835-6155CB7A6F5E} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {A613BB19-3711-4BEE-A0A8-CF5EDA8A54C9} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {A7237022-80F4-4CF0-AF2C-DB719ABCAA56} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {ACE91629-4105-40C4-BB8C-D7064A8AA3A4} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B2D4F2A3-6F91-405E-9747-6D34809D4CBA} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {B7301EA6-EE9B-47AD-9D20-633489C6C905} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-23] (Google Inc -> Google Inc.)
Task: {BE16825F-B329-4817-9F8E-0DA172A941A0} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C0520DE4-54AE-4F71-9C4B-7789E34AB4A4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-23] (Google Inc -> Google Inc.)
Task: {CA39650E-EB0A-4DB3-ADC1-050F4EABB0D3} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {D141A318-6919-49A8-AA42-BBE44912B952} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {D5041D30-FA84-4D97-9B96-227C9629E83F} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Plha\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads\esetonlinescanner (1).exe
Task: {DF8471CF-D0B1-4941-ADAB-5F9F6610114F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E04F1D4C-B998-4F45-8048-4246FC0A3DB2} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {EE406CEA-4EA9-47E5-A18A-ADC3B8AA9621} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {EFF67579-D5F2-443D-8785-024A12E6D93C} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {F0E70FFD-E424-410B-A70E-972B0F1DC925} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {F20059BF-DD15-4FA4-982B-8F878BCD1775} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {F204A5FB-C36D-4A61-B2BA-3D73A0AED632} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F3EA2A23-DA55-4627-B641-8549E68B5FD7} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {FE59A8C1-FE59-4BBF-9F14-7053D0EEBAAC} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{1ee4d317-835e-43bb-b0b5-1b04eaa3eacc}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{f0e4e0e7-1be3-4725-ba2f-09e2c46e09ba}: [DhcpNameServer] 192.168.10.1 217.197.152.132 217.197.144.22
FireFox:
========
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-07-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-07-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin HKU\S-1-5-21-1427180062-2798621324-3331812027-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Plha\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-08-28] (Unity Technologies SF -> Unity Technologies ApS)
Chrome:
=======
CHR Profile: C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default [2020-10-18]
CHR Extension: (Prezentace) - C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-10-17]
CHR Extension: (Dokumenty) - C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-10-17]
CHR Extension: (Disk Google) - C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-17]
CHR Extension: (Tabulky) - C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-10-17]
CHR Extension: (Dokumenty Google offline) - C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-10-17]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2020-10-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-10-17]
CHR Extension: (Gmail) - C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-17]
CHR Extension: (Chrome Media Router) - C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-17]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7824280 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [357848 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [58048 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8615864 2020-07-13] (BattlEye Innovations e.K. -> )
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1368408 2015-11-30] (Disc Soft Ltd -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2019-01-21] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7185288 2020-10-17] (Malwarebytes Inc -> Malwarebytes)
S3 NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2007-01-15] (Nero AG) [File not signed]
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [271920 2007-03-12] (Nero AG -> Nero AG)
R2 QMEmulatorService; E:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe [147704 2019-05-31] (Tencent Technology(Shenzhen) Company Limited -> Tencent)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4956856 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SEVPNCLIENT; C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [5255104 2019-03-21] (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 aow_drv; E:\Program Files\TxGameAssistant\UI\2.0.10707.123\aow_drv_x64_ev.sys [859712 2019-05-28] (Tencent Technology(Shenzhen) Company Limited -> Tencent)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37136 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [206392 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [235584 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [195648 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [60480 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16824 2020-07-23] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42768 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175192 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [517592 2020-09-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [109272 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84848 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851600 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [469880 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [217328 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326408 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [314016 2015-12-28] (Tages SA -> )
S3 BEDaisy; C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys [3038568 2020-07-18] (BattlEye Innovations e.K. -> )
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2015-12-24] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [46392 2015-12-24] (Disc Soft Ltd -> Disc Soft Ltd)
S3 Hamachi; C:\WINDOWS\System32\drivers\Hamdrv.sys [45680 2016-05-04] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
S4 IObitUnlocker; C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [36944 2014-03-04] (IObit Information Technology -> IObit)
R2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [43680 2015-12-28] (Tages SA -> )
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [218112 2020-10-17] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-10-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-10-17] (Malwarebytes Inc -> Malwarebytes)
R3 Neo_VPN; C:\WINDOWS\System32\drivers\Neo6_x64_VPN.sys [38216 2019-03-21] (SoftEther Corporation -> SoftEther Corporation)
S3 OSFMount; e:\Counter-Strike Global Offensive\image\x64\OSFMount.sys [552888 2013-10-18] (PassMark Software Pty Ltd -> PassMark Software)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-17] (Microsoft Windows -> Microsoft Corporation)
U3 idsvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-10-18 13:01 - 2020-10-18 13:05 - 000025537 _____ C:\Users\Plha\Desktop\FRST.txt
2020-10-17 21:38 - 2020-10-17 21:38 - 000002395 _____ C:\Users\Plha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-10-17 21:38 - 2020-10-17 21:38 - 000002336 _____ C:\Users\Plha\Desktop\Google Chrome.lnk
2020-10-17 21:31 - 2020-10-17 21:31 - 000218112 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-10-17 21:28 - 2020-10-17 21:23 - 000031496 _____ (Microsoft Corporation) C:\WINDOWS\system32\version.dll
2020-10-17 20:58 - 2020-10-17 20:58 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-10-17 20:58 - 2020-10-17 20:58 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-10-17 20:58 - 2020-10-17 20:58 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-10-17 20:58 - 2020-10-17 20:58 - 000002021 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-10-17 20:57 - 2020-10-17 20:57 - 000002076 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2020-10-17 20:57 - 2020-10-17 20:57 - 000002076 _____ C:\ProgramData\Desktop\Avast Free Antivirus.lnk
2020-10-17 20:57 - 2020-10-17 20:56 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-10-17 20:57 - 2020-10-17 20:56 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-10-17 20:35 - 2020-10-17 20:35 - 000015580 _____ C:\Users\Plha\Downloads\version (1).zip
2020-10-17 20:33 - 2020-10-17 20:33 - 000013631 _____ C:\Users\Plha\Downloads\version.zip
2020-10-17 20:18 - 2020-10-17 14:34 - 002299904 _____ (Farbar) C:\Users\Plha\Desktop\FRST64.exe
2020-10-17 19:31 - 2020-10-17 19:31 - 000000000 ____D C:\Users\Plha\AppData\Roaming\Tencent
2020-10-17 19:08 - 2020-10-18 12:36 - 000003168 _____ C:\WINDOWS\system32\Tasks\AdwCleaner_onReboot
2020-10-17 19:06 - 2020-10-17 19:07 - 000000000 ____D C:\AdwCleaner
2020-10-17 19:05 - 2020-10-17 19:05 - 008447152 _____ (Malwarebytes) C:\Users\Plha\Desktop\adwcleaner_8.0.8.exe
2020-10-17 15:47 - 2020-10-18 13:03 - 000000000 ____D C:\FRST
2020-10-17 14:35 - 2020-10-17 16:31 - 000000000 _____ C:\Users\Plha\Downloads\avenger.exe
2020-10-17 14:34 - 2020-10-17 14:34 - 002299904 _____ (Farbar) C:\Users\Plha\Downloads\FRST64.exe
2020-10-17 11:42 - 2020-10-17 14:11 - 000000000 ____D C:\Users\Plha\AppData\Local\FSDART
2020-10-17 11:41 - 2020-10-17 11:42 - 000000000 ____D C:\Users\Plha\AppData\Local\F-Secure
2020-10-17 11:41 - 2020-10-17 11:42 - 000000000 ____D C:\ProgramData\F-Secure
2020-10-17 11:39 - 2020-10-17 11:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Unlocker
2020-10-17 11:39 - 2020-10-17 11:39 - 000000000 ____D C:\ProgramData\IObit
2020-10-17 11:39 - 2020-10-17 11:39 - 000000000 ____D C:\Program Files (x86)\IObit
2020-10-17 11:39 - 2020-10-17 11:29 - 000001257 _____ C:\Users\Public\Desktop\IObit Unlocker.lnk
2020-10-17 11:39 - 2020-10-17 11:29 - 000001257 _____ C:\ProgramData\Desktop\IObit Unlocker.lnk
2020-10-17 10:52 - 2020-10-17 10:52 - 000724952 _____ C:\Users\Plha\Downloads\avenger.zip
2020-10-17 10:40 - 2020-10-18 12:44 - 000003614 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA1d6a45fdf63c634
2020-10-16 11:57 - 2020-10-16 11:57 - 001317080 _____ (Google LLC) C:\Users\Plha\Downloads\ChromeSetup.exe
2020-10-16 11:55 - 2020-10-16 11:55 - 000003934 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2020-10-16 11:55 - 2020-10-16 11:55 - 000003492 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2020-10-16 11:35 - 2020-10-17 11:44 - 000001773 _____ C:\Users\Plha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2020-10-16 11:35 - 2020-10-17 11:43 - 000001667 _____ C:\Users\Plha\Desktop\ESET Online Scanner.lnk
2020-10-16 11:24 - 2020-10-16 11:24 - 000000000 ____D C:\Users\Matysek\AppData\Local\NVIDIA
2020-10-16 11:24 - 2020-10-16 11:24 - 000000000 ____D C:\Users\Matysek\AppData\Local\CrashDumps
2020-10-16 11:23 - 2020-10-16 11:23 - 000001446 _____ C:\Users\Matysek\Desktop\Microsoft Edge.lnk
2020-10-16 11:23 - 2020-10-16 11:23 - 000000000 ____D C:\Users\Matysek\AppData\Local\MicrosoftEdge
2020-10-16 11:21 - 2020-10-16 11:21 - 000000000 ____D C:\Users\Matysek\AppData\Local\Publishers
2020-10-16 11:20 - 2020-10-16 11:20 - 000000000 ___RD C:\Users\Matysek\3D Objects
2020-10-16 11:11 - 2020-10-16 11:11 - 000000000 ____D C:\Users\Matysek\AppData\Local\VirtualStore
2020-10-16 11:10 - 2020-10-16 11:22 - 000000000 ____D C:\Users\Matysek\AppData\Local\Packages
2020-10-16 11:10 - 2020-10-16 11:20 - 000000000 ____D C:\Users\Matysek
2020-10-16 11:10 - 2020-10-16 11:10 - 000000020 ___SH C:\Users\Matysek\ntuser.ini
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Šablony
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Soubory cookie
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Poslední
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Okolní tiskárny
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Okolní síť
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Nabídka Start
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Dokumenty
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Documents\Obrázky
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Documents\Hudba
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Documents\Filmy
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Data aplikací
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\AppData\Local\Data aplikací
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 ____D C:\Users\Matysek\AppData\Local\ConnectedDevicesPlatform
2020-10-16 11:10 - 2019-12-07 11:10 - 000001105 _____ C:\Users\Matysek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-10-16 11:10 - 2019-04-09 21:24 - 000000000 ____D C:\Users\Matysek\AppData\Local\LogMeIn Hamachi
2020-10-16 11:10 - 2019-03-20 17:44 - 000000000 ____D C:\Users\Matysek\AppData\Local\Microsoft Help
2020-10-16 11:10 - 2016-10-03 09:01 - 000000000 ____D C:\Users\Matysek\AppData\Roaming\Media Center Programs
2020-10-16 10:48 - 2020-10-16 11:06 - 000000000 ___HD C:\$SysReset
2020-10-16 10:48 - 2020-10-16 10:49 - 000000000 ____D C:\$Windows.~BT
2020-10-16 10:29 - 2020-10-17 20:55 - 000000000 ____D C:\KRD2018_Data
2020-10-16 09:41 - 2020-10-16 09:41 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-10-16 09:40 - 2020-10-16 09:40 - 000000000 ____D C:\Program Files\Malwarebytes
2020-10-16 08:22 - 2020-10-16 07:09 - 625199104 _____ C:\Users\Plha\Downloads\krd.iso
2020-10-15 22:24 - 2020-10-15 22:22 - 183879024 _____ C:\Users\Plha\Downloads\KVRT.exe
2020-10-15 12:38 - 2020-10-15 12:45 - 000000000 _____ C:\Recovery.txt
2020-10-15 10:47 - 2020-10-15 10:47 - 000000000 _____ C:\Users\Plha\Downloads\hijackthis.exe
2020-10-15 10:39 - 2020-10-14 12:14 - 500081112 _____ (AVAST Software) C:\Users\Plha\Downloads\avast_free_antivirus_setup_offline.exe
2020-10-14 09:31 - 2020-10-13 11:22 - 4294967295 _____ C:\Users\Plha\Downloads\Win10_2004_Czech_x64.iso
2020-10-13 09:10 - 2020-10-16 10:43 - 000000000 ____D C:\Users\DefaultAppPool\AppData\Local\CrashDumps
2020-10-12 11:29 - 2020-10-16 11:42 - 000000000 ____D C:\Program Files (x86)\Dll-Files.com Fixer
2020-10-12 11:11 - 2020-10-16 11:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dll-Files Fixer
2020-10-12 11:11 - 2020-10-12 11:11 - 000000000 ____D C:\Users\Plha\AppData\Roaming\dll-files.com
2020-10-12 10:28 - 2020-10-12 10:28 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2020-10-12 10:27 - 2018-04-12 23:02 - 000998432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-10-12 10:27 - 2018-04-12 23:02 - 000950016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-10-12 10:27 - 2018-04-12 23:01 - 001985112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6439135.dll
2020-10-12 10:27 - 2018-04-12 23:01 - 001690952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2020-10-12 10:27 - 2018-04-12 23:01 - 001683712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6439135.dll
2020-10-12 10:27 - 2018-04-12 23:01 - 001138720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-10-12 10:27 - 2018-04-12 23:01 - 001065888 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-10-12 10:27 - 2018-04-12 23:01 - 000054272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2020-10-12 10:27 - 2018-04-12 23:00 - 040278616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2020-10-12 10:27 - 2018-04-12 23:00 - 035188992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2020-10-12 10:27 - 2018-04-12 23:00 - 004318112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-10-12 10:27 - 2018-04-12 23:00 - 003719096 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-10-12 10:27 - 2018-04-12 22:58 - 019855144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2020-10-12 10:27 - 2018-04-12 22:58 - 016496768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2020-10-12 10:27 - 2018-04-12 22:58 - 013571520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2020-10-12 10:27 - 2018-04-12 22:58 - 011132384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2020-10-12 10:27 - 2018-04-12 22:58 - 001153752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2020-10-12 10:27 - 2018-04-12 22:57 - 012967056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-10-12 10:27 - 2018-04-12 22:57 - 000902096 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2020-10-12 10:27 - 2018-04-12 22:56 - 011001504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-10-12 10:27 - 2018-04-12 22:56 - 004633920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-10-12 10:27 - 2018-04-12 22:56 - 003939624 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-10-12 08:52 - 2020-10-17 11:29 - 001063408 _____ C:\WINDOWS\ntbtlog.txt
2020-10-09 20:04 - 2020-10-09 20:04 - 000001022 _____ C:\Users\Plha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\osu!.lnk
2020-10-09 20:04 - 2020-10-09 20:04 - 000001014 _____ C:\Users\Plha\Desktop\osu!.lnk
2020-10-09 20:03 - 2020-10-09 20:28 - 000000000 ____D C:\Users\Plha\AppData\Local\osu!
2020-10-09 20:03 - 2020-10-09 20:03 - 000000000 ____D C:\Users\Plha\Downloads\Localisation
2020-10-09 20:01 - 2020-10-09 20:01 - 004393728 _____ (ppy) C:\Users\Plha\Downloads\osu!install.exe
2020-10-07 18:36 - 2020-10-07 18:36 - 000069836 _____ C:\Users\Plha\Downloads\267204846_20200930_9_MCZS.pdf
2020-09-22 11:28 - 2020-09-22 11:27 - 000338528 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2020-09-22 11:28 - 2020-09-22 11:27 - 000217328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2020-09-22 11:28 - 2020-09-22 11:27 - 000175192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2020-09-19 07:53 - 2020-09-19 07:53 - 000000000 __SHD C:\found.000
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-10-18 13:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-10-18 13:05 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-10-18 12:56 - 2019-01-21 12:32 - 000000000 ____D C:\ProgramData\AVAST Software
2020-10-18 12:53 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-10-18 12:44 - 2020-08-28 16:56 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-10-18 12:39 - 2019-03-21 17:28 - 000000000 ____D C:\Program Files\SoftEther VPN Client
2020-10-18 12:38 - 2020-08-28 16:56 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-10-18 12:38 - 2020-08-28 16:23 - 000008192 ___SH C:\DumpStack.log.tmp
2020-10-18 12:38 - 2016-10-03 08:51 - 000000000 ____D C:\ProgramData\NVIDIA
2020-10-18 12:37 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-10-18 12:21 - 2020-08-28 16:24 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-10-17 21:47 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2020-10-17 21:41 - 2016-05-25 15:10 - 000000000 ____D C:\Users\Plha\AppData\Local\Packages
2020-10-17 21:41 - 2015-12-25 13:46 - 000000000 ____D C:\Users\Plha\AppData\Local\CrashDumps
2020-10-17 21:39 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-10-17 21:05 - 2020-08-20 08:26 - 000000000 ____D C:\Program Files\CCleaner
2020-10-17 21:00 - 2020-08-28 16:56 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-10-17 20:58 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-10-17 20:57 - 2019-01-21 12:44 - 000002088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2020-10-17 14:55 - 2020-08-28 16:40 - 001919736 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-10-17 14:55 - 2019-12-07 16:43 - 000781566 _____ C:\WINDOWS\system32\perfh005.dat
2020-10-17 14:55 - 2019-12-07 16:43 - 000172300 _____ C:\WINDOWS\system32\perfc005.dat
2020-10-17 11:30 - 2020-08-28 16:56 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-10-17 11:29 - 2019-07-04 21:57 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2020-10-17 11:26 - 2015-12-23 00:02 - 000000632 _____ C:\Users\Plha\Desktop\Total Commander.lnk
2020-10-16 11:45 - 2015-12-24 11:31 - 000000000 ____D C:\Users\Plha\AppData\Roaming\uTorrent
2020-10-16 11:42 - 2020-04-19 18:05 - 000000000 ____D C:\Program Files (x86)\EUROBYTE TOOLS
2020-10-16 11:35 - 2015-12-22 23:51 - 000000000 ____D C:\Users\Plha\AppData\Local\ESET
2020-10-16 11:20 - 2016-02-13 15:14 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-10-16 11:11 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-10-16 10:53 - 2020-08-28 16:56 - 000003472 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-10-16 10:53 - 2020-08-28 16:56 - 000003348 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-10-16 08:24 - 2020-08-28 16:56 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-10-15 11:11 - 2020-08-28 13:46 - 000000000 ____D C:\Users\DefaultAppPool
2020-10-15 11:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2020-10-15 11:11 - 2016-11-09 22:00 - 000000000 ____D C:\Users\Plha\AppData\Roaming\PSpad
2020-10-15 11:11 - 2015-12-23 00:02 - 000000000 ____D C:\Users\Plha\AppData\Roaming\GHISLER
2020-10-15 11:01 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\registration
2020-10-15 10:47 - 2016-11-01 12:00 - 000000000 ____D C:\Users\Plha\AppData\Local\ElevatedDiagnostics
2020-10-15 10:15 - 2020-08-28 13:46 - 000000000 ____D C:\Users\Plha
2020-10-14 11:14 - 2019-04-22 20:11 - 000000175 _____ C:\Users\Plha\Desktop\Heslo roblox.txt
2020-10-13 09:28 - 2016-10-04 23:06 - 000000000 ____D C:\Users\Plha\AppData\Local\MicrosoftEdge
2020-10-13 09:19 - 2019-12-07 16:47 - 000000000 ___SD C:\WINDOWS\system32\AppV
2020-10-13 09:19 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2020-10-13 09:19 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2020-10-13 09:19 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Com
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2020-10-13 09:19 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2020-10-13 08:48 - 2020-08-20 08:26 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-10-13 08:48 - 2020-08-20 08:26 - 000000863 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-10-13 08:33 - 2019-01-21 12:44 - 000000000 ____D C:\Users\Plha\AppData\Roaming\AVAST Software
2020-10-13 08:22 - 2020-08-28 16:24 - 000443000 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-10-10 00:14 - 2020-08-28 16:56 - 000002238 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-10-10 00:14 - 2020-08-28 16:56 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-10-10 00:05 - 2016-03-19 17:55 - 000000000 ____D C:\Program Files (x86)\Steam
2020-10-08 15:52 - 2019-08-02 13:57 - 000001424 _____ C:\Users\Plha\Desktop\Roblox Player.lnk
2020-10-08 15:52 - 2019-03-16 11:10 - 000001247 _____ C:\Users\Plha\Desktop\Roblox Studio.lnk
2020-10-08 15:52 - 2019-03-16 11:10 - 000000000 ____D C:\Users\Plha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2020-10-03 02:33 - 2019-12-07 11:18 - 000835472 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-10-03 02:33 - 2019-12-07 11:18 - 000179608 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-09-29 20:39 - 2019-02-13 15:29 - 000000000 ____D C:\Users\Plha\AppData\Roaming\.minecraft
2020-09-29 20:34 - 2019-02-13 19:02 - 000000000 ____D C:\Users\Plha\AppData\Roaming\.tlauncher
2020-09-28 14:48 - 2016-05-28 15:14 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-09-28 14:41 - 2016-05-28 15:14 - 129170736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-09-25 17:58 - 2020-04-19 17:49 - 000517592 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2020-09-22 20:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-09-22 11:30 - 2019-01-21 12:40 - 000326408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000851600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000469880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000235584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000206392 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000195648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000109272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000084848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000060480 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000042768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000037136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
==================== Files in the root of some directories ========
2020-02-25 20:28 - 2020-06-26 23:22 - 000006656 _____ () C:\Users\Plha\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2019-06-30 18:02 - 2019-06-30 18:02 - 000000000 _____ () C:\Users\Plha\AppData\Local\{B8C342F4-4420-4F76-8184-24C996FAEC09}
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-10-2020
Ran by Plha (18-10-2020 13:09:40)
Running from C:\Users\Plha\Desktop
Windows 10 Pro Version 2004 19041.1 (X64) (2020-08-28 14:57:57)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1427180062-2798621324-3331812027-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1427180062-2798621324-3331812027-503 - Limited - Disabled)
Guest (S-1-5-21-1427180062-2798621324-3331812027-501 - Limited - Disabled)
Matysek (S-1-5-21-1427180062-2798621324-3331812027-1001 - Limited - Enabled) => C:\Users\Matysek
Plha (S-1-5-21-1427180062-2798621324-3331812027-1000 - Administrator - Enabled) => C:\Users\Plha
WDAGUtilityAccount (S-1-5-21-1427180062-2798621324-3331812027-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Photoshop CC 2018 (HKLM-x32\...\PHSP_19_0) (Version: 19.0 - Adobe Systems Incorporated)
AIDA64 Extreme Edition v1.50 (HKLM-x32\...\AIDA64 Extreme Edition_is1) (Version: 1.50 - FinalWire Ltd.)
Aktualizace NVIDIA 2.11.4.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.11.4.1 - NVIDIA Corporation) Hidden
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.67 - Piriform)
Convert WAV To MP3 1.0 (HKLM-x32\...\Convert WAV To MP3_is1) (Version: - A Software Plus)
Counter-Strike Global Offensive [No-Steam] (HKLM-x32\...\Counter-Strike Global Offensive_is1) (Version: 1.32.2.1 - Valve software)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.2.0.0114 - Disc Soft Ltd)
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
Dll-Files Fixer (HKLM-x32\...\Dll-Files Fixer_is1) (Version: 1.0 - Dll-Files.com)
Epic Games Launcher (HKLM-x32\...\{0E63B233-DC24-442C-BD38-0B91D90FEC5B}) (Version: 1.1.167.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Farming Simulator 17 (HKLM\...\ZmFybWluZ3NpbXVsYXRvcjE3_is1) (Version: 1 - )
GameLoad 2.0.0 (HKLM-x32\...\{7FEA7AEB-C073-4687-B3E1-5282DFABAB56}_is1) (Version: 2.0.0 - Ant Media, s. r. o.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 86.0.4240.75 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 - Google LLC) Hidden
Grand Theft Auto V (HKLM-x32\...\Grand Theft Auto V_is1) (Version: 1.0.350.1 - Rockstar)
IObit Unlocker (HKLM-x32\...\IObit Unlocker_is1) (Version: 1.1 - IObit)
Java 8 Update 261 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180261F0}) (Version: 8.0.2610.12 - Oracle Corporation)
JPEG Recovery 1.1 (HKLM-x32\...\JPEG Recovery 1.1) (Version: - )
JPEG Recovery Pro 5.0 (HKLM-x32\...\JPEG Recovery Pro5.0) (Version: 5.0 - e.World Technology Limited)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\{ECC0FA07-863E-44BC-8B1D-DA22F96E5FB7}) (Version: 2.2.0.633 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.633 - LogMeIn, Inc.)
Mafia (HKLM-x32\...\1595659240_is1) (Version: 1.3 - GOG.com)
Mafia Compatibility Database (HKLM\...\{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb) (Version: - )
Malwarebytes version 4.2.1.89 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.2.1.89 - Malwarebytes)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 86.0.622.43 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.49 - )
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1427180062-2798621324-3331812027-1000\...\OneDriveSetup.exe) (Version: 20.084.0426.0007 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{406C9ADB-1325-4FD0-9D13-C119CFF64E0A}) (Version: 2.65.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{35D9277C-1EB7-4FBE-8B41-C520DE4F7A60}) (Version: 1.9.0 - OfficialHawk)
Mp3 Editor for Free v5.2.7 Build 79 (HKLM-x32\...\Mp3 Editor for Free_is1) (Version: 5.2.7 Build 79 - Mp3EditorforFree Ltd.)
Nero 7 Ultra Edition (HKLM-x32\...\{4F2CE68F-EDBB-4592-BF07-5AC930A51029}) (Version: 7.02.6446 - Nero AG)
NVIDIA Ovladač 3D Vision 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.13 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
osrss (HKLM-x32\...\{1BA1133B-1C7A-41A0-8CBF-9B993E63D296}) (Version: 1.0.0 - Microsoft Corporation) Hidden
osu! (HKLM-x32\...\{7c03dfac-c046-474d-b65c-3cb802a0c3ee}) (Version: latest - ppy Pty Ltd)
Ovládací panel NVIDIA 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.13 - NVIDIA Corporation) Hidden
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22617 - Microsoft Corporation)
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: 4.6.1.2730 - Jan Fiala)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.34.617.2014 - Realtek)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.30.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.30.0 - Renesas Electronics Corporation)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Roblox Player for Plha (HKU\S-1-5-21-1427180062-2798621324-3331812027-1000\...\roblox-player) (Version: - Roblox Corporation)
Roblox Studio for Plha (HKU\S-1-5-21-1427180062-2798621324-3331812027-1000\...\roblox-studio) (Version: - Roblox Corporation)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.4.1 - NVIDIA Corporation) Hidden
SoftEther VPN Client (HKLM\...\softether_sevpnclient) (Version: 4.24.9651 - SoftEther VPN Project)
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stellar Repair for Photo (HKLM-x32\...\Stellar Repair for Photo_is1) (Version: 6.0.0.0 - Stellar Information Technology Pvt Ltd.)
Swords & Souls: Neverseen (HKLM-x32\...\1741685922_is1) (Version: 1.12 - GOG.com)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
Tencent Gaming Buddy (HKLM-x32\...\MobileGamePC) (Version: 1.0.0.1 - Tencent Technology Company)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 8.52a - Ghisler Software GmbH)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Unity Web Player (HKU\S-1-5-21-1427180062-2798621324-3331812027-1000\...\UnityWebPlayer) (Version: 5.2.0f3 - Unity Technologies ApS)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{EC4F72E8-52FE-454E-B70F-DBE5C0FA44C5}) (Version: 1.20.0.0 - Microsoft Corporation) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
Packages:
=========
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.179.300.0_x86__kgqvnymyfvs32 [2020-10-16] (king.com)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-10-15] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-10-15] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-10-17] (Microsoft Studios) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-10-17] (Microsoft Corporation) [MS Ad]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2020-10-15] (Twitter Inc.)
WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x64__8wekyb3d8bbwe [2020-10-15] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1427180062-2798621324-3331812027-1000_Classes\CLSID\{ED90173A-3B4C-4E7E-B9CF-79714425D4B5}\InprocServer32 -> C:\Program Files (x86)\PSPad editor\pspshellx64.dll () [File not signed]
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6671064 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-09-22] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1-x32: [Cover Designer] -> {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} => C:\Program Files (x86)\Nero\Nero 7\Nero CoverDesigner\CoverEdExtension.dll [2007-02-28] (Nero AG -> Nero AG)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers1: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll [2014-03-04] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-10-16] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers4: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll [2014-03-04] (IObit Information Technology -> IObit)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-10-16] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll [2014-03-04] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-1427180062-2798621324-3331812027-1000: [EditWithPSPad] -> {ED90173A-3B4C-4E7E-B9CF-79714425D4B5} => C:\Program Files (x86)\PSPad editor\pspshellx64.dll [2014-11-02] () [File not signed]
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Plha\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Jiří - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"
==================== Loaded Modules (Whitelisted) =============
2016-11-09 21:59 - 2014-11-02 19:45 - 000029184 _____ () [File not signed] C:\Program Files (x86)\PSPad editor\pspshellx64.dll
2020-08-28 16:40 - 2017-10-27 18:06 - 000874368 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI64.dll
2020-08-28 16:40 - 2017-10-27 18:06 - 000339256 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\NvStereo\_nvstapisvr64.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [474]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\ssv.dll [2020-07-23] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\jp2ssv.dll [2020-07-23] (Oracle America, Inc. -> Oracle Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2020-08-20 08:18 - 000001347 ____R C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 license.piriform.com
127.0.0.1 www.license.piriform.com
127.0.0.1 speccy.piriform.com
127.0.0.1 www.speccy.piriform.com
127.0.0.1 recuva.piriform.com
127.0.0.1 www.recuva.piriform.com
127.0.0.1 defraggler.piriform.com
127.0.0.1 www.defraggler.piriform.com
127.0.0.1 ccleaner.piriform.com
127.0.0.1 www.ccleaner.piriform.com
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1427180062-2798621324-3331812027-1000\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\StartupFolder: => "SoftEther VPN Client Manager Startup.lnk"
HKLM\...\StartupApproved\Run: => "SoftEther VPN Client UI Helper"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{9E3800AE-21E9-4679-A82D-D5C6F99E8387}E:\games\grand theft auto v\gta5.exe] => (Block) E:\games\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{ADB078BA-845B-4B1C-B6D9-5754F73E2A68}E:\games\grand theft auto v\gta5.exe] => (Block) E:\games\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [{B53D82ED-4C7D-445C-A757-FA1266C3562B}] => (Block) E:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{D2CB59E9-3A4F-4EEE-8E3E-1A5A886AF4E4}] => (Block) E:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{645A9DCE-03A3-4C29-A56C-34AE90C13697}E:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) E:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{E816C1DC-E620-43B7-B05D-EA247DFC1F79}E:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) E:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{5B847D1A-F80B-4C62-AEC8-123CB3AA5463}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{0E14A1FB-84B2-464D-B952-27AA4CBE985E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{21CEA782-CDAA-4AE2-96EC-53020A261201}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{F5E671FC-67FB-42DC-B964-AD012EAD9E8B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{76E1AA9D-1B5B-413D-977F-95CF79F59908}E:\games\anno 1404\addon.exe] => (Allow) E:\games\anno 1404\addon.exe (Related Designs Software -> Related Designs)
FirewallRules: [TCP Query User{D1987BA0-5833-4BD2-8CBE-B70A6EE65BD9}E:\games\anno 1404\addon.exe] => (Allow) E:\games\anno 1404\addon.exe (Related Designs Software -> Related Designs)
FirewallRules: [UDP Query User{F6B7DB6F-9E45-4AE0-912D-296A90722AE6}E:\games\anno 1404\tools\addonweb.exe] => (Allow) E:\games\anno 1404\tools\addonweb.exe (Related Designs Software -> )
FirewallRules: [TCP Query User{D5D08936-A9DD-460E-9D42-F6285567E500}E:\games\anno 1404\tools\addonweb.exe] => (Allow) E:\games\anno 1404\tools\addonweb.exe (Related Designs Software -> )
FirewallRules: [{4333188A-EA79-4DA7-806F-06FBEEDF9EA7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5DCC9049-8221-4D0F-A56E-12967466804E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{8B3661AC-75D8-4CD4-A0A6-4469B0140024}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{5C47244E-6D1D-410C-8FDE-C15D8EC77404}E:\games\grand theft auto v\gta5.exe] => (Allow) E:\games\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{BB3227B3-6072-4243-A2B7-6088FB49831C}E:\games\grand theft auto v\gta5.exe] => (Allow) E:\games\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{3C5B1BD7-DF3F-4729-842C-FAB6C06B2944}C:\users\plha\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\plha\appdata\roaming\utorrent\utorrent.exe => No File
FirewallRules: [UDP Query User{2670E909-C795-4C2E-ADAC-CB5B6C94DA30}C:\users\plha\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\plha\appdata\roaming\utorrent\utorrent.exe => No File
FirewallRules: [{BA8FEAA8-DD15-47BB-A189-A33A897D5D96}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd_x64.exe (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{DB20F630-F57B-4D88-977F-66A5CE9CEBAA}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd.exe (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{45A15666-7F4E-4FFE-AE1E-E16C81EA4289}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr.exe (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{CC0E2697-98DB-4C2E-9C29-25CA7564E0F5}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{5C253EE6-3988-4CFD-A80B-0CB4BC1AB6A7}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient.exe (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{B8F0B49C-353E-4B48-A51B-37AD1B565855}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [TCP Query User{01099CEA-A5E0-43C4-AE0B-0BDE4BBC3644}E:\game instal\7dtd\7daystodie.exe] => (Allow) E:\game instal\7dtd\7daystodie.exe () [File not signed]
FirewallRules: [UDP Query User{25D46D3C-3C81-496D-ABF0-FD856D87858F}E:\game instal\7dtd\7daystodie.exe] => (Allow) E:\game instal\7dtd\7daystodie.exe () [File not signed]
FirewallRules: [{2A8A5AB9-F016-4353-9BAF-BD11268FB53D}] => (Block) E:\game instal\7dtd\7daystodie.exe () [File not signed]
FirewallRules: [{D0964FA4-2799-4B49-8815-90032EDE908B}] => (Block) E:\game instal\7dtd\7daystodie.exe () [File not signed]
FirewallRules: [TCP Query User{E7C448E2-B127-4F1D-BC47-9CAC3E6B39A6}E:\game instal\subnauticazero\subnauticazero.exe] => (Block) E:\game instal\subnauticazero\subnauticazero.exe () [File not signed]
FirewallRules: [UDP Query User{7913B5D6-8C8D-4E71-B68D-5ED48D9C61E4}E:\game instal\subnauticazero\subnauticazero.exe] => (Block) E:\game instal\subnauticazero\subnauticazero.exe () [File not signed]
FirewallRules: [{B8BF15C7-FCF0-4C74-8BF3-6F6954189197}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{10E335E8-245C-4680-8254-D9D04D3D5722}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{9DEAC5EF-D6A0-426A-9D13-44D2D623E646}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe (Smartly Dressed Games Ltd. -> ) [File not signed]
FirewallRules: [{79039D30-623A-45DF-89E9-3849095C700B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe (Smartly Dressed Games Ltd. -> ) [File not signed]
FirewallRules: [{0971A7AF-546C-4CCA-8CD4-9818457E4C85}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{19321148-E324-4B8E-AF2A-4329D90A2CF3}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{6FB57078-AE89-42EC-9419-B0F17B1FF599}] => (Allow) e:\program files\txgameassistant\appmarket\AppMarket.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{BFF92242-D2F4-443A-9A1A-7E9118588160}] => (Allow) e:\program files\txgameassistant\appmarket\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{160B0BD8-2A20-40E4-B1FB-071CF210C529}] => (Allow) e:\program files\txgameassistant\appmarket\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> 腾讯公司)
FirewallRules: [{07E95125-CF00-4C96-8F60-50C72EB14D04}] => (Allow) e:\program files\txgameassistant\appmarket\QQExternal.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{B8239F2C-4E0A-4B59-9512-4CF7076DF360}] => (Allow) e:\program files\txgameassistant\appmarket\GameDownload.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{D82B3CAD-5935-4C07-92ED-1EBA1A98AC7C}] => (Allow) e:\program files\txgameassistant\appmarket\GF186\TUpdate.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{044D75A4-4988-43E0-BD4B-184A23D2B85F}] => (Allow) e:\program files\txgameassistant\ui\AndroidEmulator.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{F7B7A3C3-CC28-4243-8BB2-F935CCC9CD6D}] => (Allow) e:\program files\txgameassistant\ui\adb.exe () [File not signed]
FirewallRules: [{671EDA99-7B26-4E91-96E6-D27A3824CD17}] => (Allow) e:\program files\txgameassistant\ui\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{BC332DA0-ABB3-4E86-B39F-E5D651FA9235}] => (Allow) e:\program files\txgameassistant\ui\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{512E0BD0-046C-4A04-9721-2647A0B957F2}] => (Allow) e:\program files\txgameassistant\ui\TxGaDcc.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [TCP Query User{EACAC531-E7B5-44B0-9DC1-436ACDB7220B}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{44DAD4B6-FABA-4BB7-A244-3AF6F05AD0B1}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{A146EA9C-CAB8-4613-A86A-EF55DAFE8FD4}] => (Allow) C:\Users\Plha\AppData\Roaming\uTorrent\utorrent.exe => No File
FirewallRules: [{D3E5B8C6-FA66-437F-B29E-184899AC2FB8}] => (Allow) C:\Users\Plha\AppData\Roaming\uTorrent\utorrent.exe => No File
FirewallRules: [TCP Query User{3044ECFD-DF34-4866-9513-74E3D7483FA8}C:\users\plha\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe] => (Block) C:\users\plha\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{6F70B44D-B614-4E09-B63B-758870B8F8AF}C:\users\plha\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe] => (Block) C:\users\plha\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe
FirewallRules: [{28B780E8-8205-40E7-B2D3-9044EB4792E2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A7DA3B16-D6F5-49AA-8832-C59B7402054F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{59DAD99E-85DC-48A5-981B-303F6AE4E427}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A604743B-F41E-4564-B5B9-893A61E74EDC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4C676AB0-5543-4E27-A1DB-1583EC2CD964}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{1BE6EEC1-5A4C-480C-BE95-C28DA415855E}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{B94BD3DF-5FF2-4042-BA31-1FA82059E73C}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{B893AEDE-5427-4CC7-A7F6-2CF84ED7D682}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{E23814B1-1F0D-48DB-968A-F2A672AF8FA9}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
15-10-2020 09:36:00 Instalační služba modulů systému Windows
16-10-2020 10:30:10 Instalační služba modulů systému Windows
18-10-2020 12:53:31 Instalační služba modulů systému Windows
==================== Faulty Device Manager Devices ============
Name: LogMeIn Hamachi Virtual Ethernet Adapter
Description: LogMeIn Hamachi Virtual Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn Inc.
Service: Hamachi
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: ========================
Application errors:
==================
Error: (10/18/2020 12:42:10 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Stellar Repair for Photo\StellarRepairforPhoto.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_fd031af45b0106f2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_b555e41d4684ddec.manifest.
Error: (10/18/2020 12:42:10 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Stellar Repair for Photo\StellarRepairforPhoto.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_fd031af45b0106f2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_b555e41d4684ddec.manifest.
Error: (10/18/2020 12:27:27 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Stellar Repair for Photo\StellarRepairforPhoto.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_fd031af45b0106f2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_b555e41d4684ddec.manifest.
Error: (10/18/2020 12:27:26 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Stellar Repair for Photo\StellarRepairforPhoto.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_fd031af45b0106f2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_b555e41d4684ddec.manifest.
Error: (10/17/2020 09:59:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program FRST64.exe verze 14.10.2020.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 2f8c
Čas spuštění: 01d6a4bd446b8015
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Users\Plha\Desktop\FRST64.exe
ID hlášení: b40989aa-7d55-44b1-9650-6d9aa5c9aebd
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Top level window is idle
Error: (10/17/2020 09:41:33 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Stellar Repair for Photo\StellarRepairforPhoto.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_fd031af45b0106f2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_b555e41d4684ddec.manifest.
Error: (10/17/2020 09:41:33 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Stellar Repair for Photo\StellarRepairforPhoto.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_fd031af45b0106f2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_b555e41d4684ddec.manifest.
Error: (10/17/2020 09:41:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: StartMenuExperienceHost.exe, verze: 0.0.0.0, časové razítko: 0x1ec08aff
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1, časové razítko: 0x42c97562
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000010b4ec
ID chybujícího procesu: 0x1cf8
Čas spuštění chybující aplikace: 0x01d6a4bd7ec20f0b
Cesta k chybující aplikaci: C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 58abb6f4-94d2-4b52-b59e-383c7c5078a1
Úplný název chybujícího balíčku: Microsoft.Windows.StartMenuExperienceHost_10.0.19041.1_neutral_neutral_cw5n1h2txyewy
ID aplikace související s chybujícím balíčkem: App
System errors:
=============
Error: (10/18/2020 01:04:27 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (10/18/2020 01:04:25 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (10/18/2020 12:56:39 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (10/18/2020 12:56:36 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (10/18/2020 12:55:19 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (10/18/2020 12:55:17 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (10/18/2020 12:37:18 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (10/18/2020 12:37:15 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
CodeIntegrity:
===================================
Date: 2020-10-18 13:16:49.6590000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-18 13:16:32.1340000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-18 13:16:12.6070000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-18 13:00:58.5920000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-18 13:00:40.4670000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-18 13:00:22.5510000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-18 13:00:19.8170000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-18 13:00:16.5800000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: Award Software International, Inc. FA 04/20/2010
Motherboard: Gigabyte Technology Co., Ltd. X58A-UD3R
Processor: Intel(R) Core(TM) i7 CPU 950 @ 3.07GHz
Percentage of memory in use: 84%
Total physical RAM: 4094.49 MB
Available physical RAM: 645.47 MB
Total Virtual: 8190.49 MB
Available Virtual: 3950.67 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:114.42 GB) (Free:23.44 GB) NTFS
Drive e: (Nový svazek) (Fixed) (Total:350.74 GB) (Free:75.41 GB) NTFS
\\?\Volume{1b1a25ac-a8b1-11e5-aa9b-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{dc76dc76-0000-0000-0000-50a11c000000}\ () (Fixed) (Total:0.5 GB) (Free:0.07 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: DC76DC76)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=114.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=509 MB) - (Type=27)
Partition 4: (Not Active) - (Size=350.7 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Ran by Plha (administrator) on PLHA-PC (Gigabyte Technology Co., Ltd. X58A-UD3R) (18-10-2020 13:01:22)
Running from C:\Users\Plha\Desktop
Loaded Profiles: Plha
Platform: Windows 10 Pro Version 2004 19041.1 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <3>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Ghisler Software GmbH -> Ghisler Software GmbH) C:\totalcmd\TOTALCMD.EXE
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <7>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.32\GoogleCrashHandler64.exe
(LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(LogMeIn, Inc. -> LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SrTasks.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.504_none_e781e76525fb2269\TiWorker.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
(Tencent Technology(Shenzhen) Company Limited -> Tencent) E:\program files\txgameassistant\appmarket\AppMarket.exe
(Tencent Technology(Shenzhen) Company Limited -> Tencent) E:\program files\txgameassistant\appmarket\QMEmulatorService.exe
(Tencent Technology(Shenzhen) Company Limited -> Tencent) E:\program files\txgameassistant\appmarket\TBSWebRenderer.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [SoftEther VPN Client UI Helper] => C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [5255104 2019-03-21] (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [109160 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [710264 2020-06-18] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\AppCompatFlags\Custom\Game.exe: [{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb] -> Mafia Compatibility Database
HKLM\Software\...\AppCompatFlags\Custom\Setup.exe: [{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb] -> Mafia Compatibility Database
HKLM\Software\...\AppCompatFlags\InstalledSDB\{481dc351-bab0-4f86-b085-87a5626fe6dc}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb [2017-10-31]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.75\Installer\chrmstp.exe [2020-10-17] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SoftEther VPN Client Manager Startup.lnk [2019-03-21]
ShortcutTarget: SoftEther VPN Client Manager Startup.lnk -> C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {05D44F7B-176D-4269-8ABA-8965F4DA95FC} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {08FFFF34-5CEC-4F15-B84F-CE359920AE78} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {0F8611AD-C752-4A2E-A15F-03E0E2D34337} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Plha\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads\esetonlinescanner (1).exe
Task: {14CA672D-F8FC-479E-B509-9B0D722D5BCF} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1741416 2020-09-17] (Avast Software s.r.o. -> Avast Software)
Task: {1698E10E-ED6A-4991-980F-81A3FBF267C5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24690360 2020-05-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {2BA964B7-81B4-433C-8803-2D472B1F7850} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {2CB15278-A715-4428-A9B5-D3EAB37EBB4F} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\WINDOWS\system32\EOSNotify.exe
Task: {2CDB3F74-7661-46C7-8167-1B3773E8E2CC} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {303433AF-D232-498A-9D7E-CBF7A8BEECB6} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {36FC9F65-FBEA-4966-B8BA-E82F5204B9E1} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3AD78E54-323E-43C9-AEBD-0F1759E0E295} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {3E5D6278-10BF-426D-B10D-15B92376FCB6} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {415D5E36-A0A4-4E8F-9FD7-17F96ACDEEC9} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {48C5DB0B-CF22-4616-9A7F-E190D08DD265} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {496C6621-103E-4205-96B5-BF532BBFFEA4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {4B2A4067-CB30-4BB3-B99B-7C169C0B2F20} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {4F0C5B68-5F03-4BC4-A0FD-EC67C0BF5BB2} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {4F56E2C4-4D37-4903-8EF4-D4CDF3C8EEEB} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {53B6F768-D33F-4145-9023-E8C6C76D6FD1} - System32\Tasks\{9CB13F02-3634-4FAA-8A5C-84F17793EF1F} => C:\Windows\system32\pcalua.exe -a "E:\Stažené\ANNO 1404 - Benátky\Patche\anno1404_1.2.exe" -d "E:\Stažené\ANNO 1404 - Benátky\Patche"
Task: {5429588C-3096-43B0-B1AB-C8D0CB63336B} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3850336 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
Task: {5540CBB5-3DCC-4BC6-BDAA-FAE017851B54} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {56C129C0-9326-4440-B8D6-F44F066F27CC} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {58D0B56E-7B13-46F5-8BF4-8F2FD84BDB0A} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5AA5DF71-DA47-40A2-AAA9-7AE15810E294} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {6F0AE5A2-13C8-4DCC-9AC4-32EAB4C99F21} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {719FE2B1-F5CC-4114-BD6F-63342A74A913} - System32\Tasks\AdwCleaner_onReboot => C:\Users\Plha\Desktop\adwcleaner_8.0.8.exe [8447152 2020-10-17] (Malwarebytes Inc -> Malwarebytes)
Task: {75B60B8A-3B0B-4295-8E58-D3E8888B9FDB} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {7BAA88D2-F47F-4A62-8903-9CCA39788517} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {7ED02C17-EFE4-4455-BCC6-7E9DC6BB1C78} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {833097C6-BF27-42EC-9628-5E258555A7CC} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {880B0356-4218-45E7-9E9B-F8041C805191} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-05-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8AF8F7F6-BA90-406C-A886-A23A50E5A378} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8C749654-C073-4A97-A835-6155CB7A6F5E} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {A613BB19-3711-4BEE-A0A8-CF5EDA8A54C9} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {A7237022-80F4-4CF0-AF2C-DB719ABCAA56} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {ACE91629-4105-40C4-BB8C-D7064A8AA3A4} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B2D4F2A3-6F91-405E-9747-6D34809D4CBA} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {B7301EA6-EE9B-47AD-9D20-633489C6C905} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-23] (Google Inc -> Google Inc.)
Task: {BE16825F-B329-4817-9F8E-0DA172A941A0} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C0520DE4-54AE-4F71-9C4B-7789E34AB4A4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-23] (Google Inc -> Google Inc.)
Task: {CA39650E-EB0A-4DB3-ADC1-050F4EABB0D3} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {D141A318-6919-49A8-AA42-BBE44912B952} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {D5041D30-FA84-4D97-9B96-227C9629E83F} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Plha\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads\esetonlinescanner (1).exe
Task: {DF8471CF-D0B1-4941-ADAB-5F9F6610114F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E04F1D4C-B998-4F45-8048-4246FC0A3DB2} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {EE406CEA-4EA9-47E5-A18A-ADC3B8AA9621} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {EFF67579-D5F2-443D-8785-024A12E6D93C} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {F0E70FFD-E424-410B-A70E-972B0F1DC925} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {F20059BF-DD15-4FA4-982B-8F878BCD1775} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {F204A5FB-C36D-4A61-B2BA-3D73A0AED632} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F3EA2A23-DA55-4627-B641-8549E68B5FD7} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {FE59A8C1-FE59-4BBF-9F14-7053D0EEBAAC} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{1ee4d317-835e-43bb-b0b5-1b04eaa3eacc}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{f0e4e0e7-1be3-4725-ba2f-09e2c46e09ba}: [DhcpNameServer] 192.168.10.1 217.197.152.132 217.197.144.22
FireFox:
========
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-07-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-07-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-10-27] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin HKU\S-1-5-21-1427180062-2798621324-3331812027-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Plha\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-08-28] (Unity Technologies SF -> Unity Technologies ApS)
Chrome:
=======
CHR Profile: C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default [2020-10-18]
CHR Extension: (Prezentace) - C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-10-17]
CHR Extension: (Dokumenty) - C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-10-17]
CHR Extension: (Disk Google) - C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-17]
CHR Extension: (Tabulky) - C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-10-17]
CHR Extension: (Dokumenty Google offline) - C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-10-17]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2020-10-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-10-17]
CHR Extension: (Gmail) - C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-17]
CHR Extension: (Chrome Media Router) - C:\Users\Plha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-17]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7824280 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [357848 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [58048 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8615864 2020-07-13] (BattlEye Innovations e.K. -> )
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1368408 2015-11-30] (Disc Soft Ltd -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2019-01-21] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [3361736 2019-04-02] (LogMeIn, Inc. -> LogMeIn Inc.)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7185288 2020-10-17] (Malwarebytes Inc -> Malwarebytes)
S3 NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2007-01-15] (Nero AG) [File not signed]
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [271920 2007-03-12] (Nero AG -> Nero AG)
R2 QMEmulatorService; E:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe [147704 2019-05-31] (Tencent Technology(Shenzhen) Company Limited -> Tencent)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4956856 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SEVPNCLIENT; C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [5255104 2019-03-21] (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-17] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 aow_drv; E:\Program Files\TxGameAssistant\UI\2.0.10707.123\aow_drv_x64_ev.sys [859712 2019-05-28] (Tencent Technology(Shenzhen) Company Limited -> Tencent)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37136 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [206392 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [235584 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [195648 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [60480 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16824 2020-07-23] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42768 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175192 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [517592 2020-09-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [109272 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84848 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851600 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [469880 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [217328 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326408 2020-09-22] (Avast Software s.r.o. -> AVAST Software)
R2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [314016 2015-12-28] (Tages SA -> )
S3 BEDaisy; C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys [3038568 2020-07-18] (BattlEye Innovations e.K. -> )
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2015-12-24] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [46392 2015-12-24] (Disc Soft Ltd -> Disc Soft Ltd)
S3 Hamachi; C:\WINDOWS\System32\drivers\Hamdrv.sys [45680 2016-05-04] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
S4 IObitUnlocker; C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys [36944 2014-03-04] (IObit Information Technology -> IObit)
R2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [43680 2015-12-28] (Tages SA -> )
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [218112 2020-10-17] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-10-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-10-17] (Malwarebytes Inc -> Malwarebytes)
R3 Neo_VPN; C:\WINDOWS\System32\drivers\Neo6_x64_VPN.sys [38216 2019-03-21] (SoftEther Corporation -> SoftEther Corporation)
S3 OSFMount; e:\Counter-Strike Global Offensive\image\x64\OSFMount.sys [552888 2013-10-18] (PassMark Software Pty Ltd -> PassMark Software)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-17] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-17] (Microsoft Windows -> Microsoft Corporation)
U3 idsvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-10-18 13:01 - 2020-10-18 13:05 - 000025537 _____ C:\Users\Plha\Desktop\FRST.txt
2020-10-17 21:38 - 2020-10-17 21:38 - 000002395 _____ C:\Users\Plha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-10-17 21:38 - 2020-10-17 21:38 - 000002336 _____ C:\Users\Plha\Desktop\Google Chrome.lnk
2020-10-17 21:31 - 2020-10-17 21:31 - 000218112 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-10-17 21:28 - 2020-10-17 21:23 - 000031496 _____ (Microsoft Corporation) C:\WINDOWS\system32\version.dll
2020-10-17 20:58 - 2020-10-17 20:58 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-10-17 20:58 - 2020-10-17 20:58 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-10-17 20:58 - 2020-10-17 20:58 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-10-17 20:58 - 2020-10-17 20:58 - 000002021 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-10-17 20:57 - 2020-10-17 20:57 - 000002076 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2020-10-17 20:57 - 2020-10-17 20:57 - 000002076 _____ C:\ProgramData\Desktop\Avast Free Antivirus.lnk
2020-10-17 20:57 - 2020-10-17 20:56 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-10-17 20:57 - 2020-10-17 20:56 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-10-17 20:35 - 2020-10-17 20:35 - 000015580 _____ C:\Users\Plha\Downloads\version (1).zip
2020-10-17 20:33 - 2020-10-17 20:33 - 000013631 _____ C:\Users\Plha\Downloads\version.zip
2020-10-17 20:18 - 2020-10-17 14:34 - 002299904 _____ (Farbar) C:\Users\Plha\Desktop\FRST64.exe
2020-10-17 19:31 - 2020-10-17 19:31 - 000000000 ____D C:\Users\Plha\AppData\Roaming\Tencent
2020-10-17 19:08 - 2020-10-18 12:36 - 000003168 _____ C:\WINDOWS\system32\Tasks\AdwCleaner_onReboot
2020-10-17 19:06 - 2020-10-17 19:07 - 000000000 ____D C:\AdwCleaner
2020-10-17 19:05 - 2020-10-17 19:05 - 008447152 _____ (Malwarebytes) C:\Users\Plha\Desktop\adwcleaner_8.0.8.exe
2020-10-17 15:47 - 2020-10-18 13:03 - 000000000 ____D C:\FRST
2020-10-17 14:35 - 2020-10-17 16:31 - 000000000 _____ C:\Users\Plha\Downloads\avenger.exe
2020-10-17 14:34 - 2020-10-17 14:34 - 002299904 _____ (Farbar) C:\Users\Plha\Downloads\FRST64.exe
2020-10-17 11:42 - 2020-10-17 14:11 - 000000000 ____D C:\Users\Plha\AppData\Local\FSDART
2020-10-17 11:41 - 2020-10-17 11:42 - 000000000 ____D C:\Users\Plha\AppData\Local\F-Secure
2020-10-17 11:41 - 2020-10-17 11:42 - 000000000 ____D C:\ProgramData\F-Secure
2020-10-17 11:39 - 2020-10-17 11:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Unlocker
2020-10-17 11:39 - 2020-10-17 11:39 - 000000000 ____D C:\ProgramData\IObit
2020-10-17 11:39 - 2020-10-17 11:39 - 000000000 ____D C:\Program Files (x86)\IObit
2020-10-17 11:39 - 2020-10-17 11:29 - 000001257 _____ C:\Users\Public\Desktop\IObit Unlocker.lnk
2020-10-17 11:39 - 2020-10-17 11:29 - 000001257 _____ C:\ProgramData\Desktop\IObit Unlocker.lnk
2020-10-17 10:52 - 2020-10-17 10:52 - 000724952 _____ C:\Users\Plha\Downloads\avenger.zip
2020-10-17 10:40 - 2020-10-18 12:44 - 000003614 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA1d6a45fdf63c634
2020-10-16 11:57 - 2020-10-16 11:57 - 001317080 _____ (Google LLC) C:\Users\Plha\Downloads\ChromeSetup.exe
2020-10-16 11:55 - 2020-10-16 11:55 - 000003934 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2020-10-16 11:55 - 2020-10-16 11:55 - 000003492 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2020-10-16 11:35 - 2020-10-17 11:44 - 000001773 _____ C:\Users\Plha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2020-10-16 11:35 - 2020-10-17 11:43 - 000001667 _____ C:\Users\Plha\Desktop\ESET Online Scanner.lnk
2020-10-16 11:24 - 2020-10-16 11:24 - 000000000 ____D C:\Users\Matysek\AppData\Local\NVIDIA
2020-10-16 11:24 - 2020-10-16 11:24 - 000000000 ____D C:\Users\Matysek\AppData\Local\CrashDumps
2020-10-16 11:23 - 2020-10-16 11:23 - 000001446 _____ C:\Users\Matysek\Desktop\Microsoft Edge.lnk
2020-10-16 11:23 - 2020-10-16 11:23 - 000000000 ____D C:\Users\Matysek\AppData\Local\MicrosoftEdge
2020-10-16 11:21 - 2020-10-16 11:21 - 000000000 ____D C:\Users\Matysek\AppData\Local\Publishers
2020-10-16 11:20 - 2020-10-16 11:20 - 000000000 ___RD C:\Users\Matysek\3D Objects
2020-10-16 11:11 - 2020-10-16 11:11 - 000000000 ____D C:\Users\Matysek\AppData\Local\VirtualStore
2020-10-16 11:10 - 2020-10-16 11:22 - 000000000 ____D C:\Users\Matysek\AppData\Local\Packages
2020-10-16 11:10 - 2020-10-16 11:20 - 000000000 ____D C:\Users\Matysek
2020-10-16 11:10 - 2020-10-16 11:10 - 000000020 ___SH C:\Users\Matysek\ntuser.ini
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Šablony
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Soubory cookie
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Poslední
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Okolní tiskárny
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Okolní síť
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Nabídka Start
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Dokumenty
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Documents\Obrázky
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Documents\Hudba
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Documents\Filmy
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\Data aplikací
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 _SHDL C:\Users\Matysek\AppData\Local\Data aplikací
2020-10-16 11:10 - 2020-10-16 11:10 - 000000000 ____D C:\Users\Matysek\AppData\Local\ConnectedDevicesPlatform
2020-10-16 11:10 - 2019-12-07 11:10 - 000001105 _____ C:\Users\Matysek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-10-16 11:10 - 2019-04-09 21:24 - 000000000 ____D C:\Users\Matysek\AppData\Local\LogMeIn Hamachi
2020-10-16 11:10 - 2019-03-20 17:44 - 000000000 ____D C:\Users\Matysek\AppData\Local\Microsoft Help
2020-10-16 11:10 - 2016-10-03 09:01 - 000000000 ____D C:\Users\Matysek\AppData\Roaming\Media Center Programs
2020-10-16 10:48 - 2020-10-16 11:06 - 000000000 ___HD C:\$SysReset
2020-10-16 10:48 - 2020-10-16 10:49 - 000000000 ____D C:\$Windows.~BT
2020-10-16 10:29 - 2020-10-17 20:55 - 000000000 ____D C:\KRD2018_Data
2020-10-16 09:41 - 2020-10-16 09:41 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-10-16 09:40 - 2020-10-16 09:40 - 000000000 ____D C:\Program Files\Malwarebytes
2020-10-16 08:22 - 2020-10-16 07:09 - 625199104 _____ C:\Users\Plha\Downloads\krd.iso
2020-10-15 22:24 - 2020-10-15 22:22 - 183879024 _____ C:\Users\Plha\Downloads\KVRT.exe
2020-10-15 12:38 - 2020-10-15 12:45 - 000000000 _____ C:\Recovery.txt
2020-10-15 10:47 - 2020-10-15 10:47 - 000000000 _____ C:\Users\Plha\Downloads\hijackthis.exe
2020-10-15 10:39 - 2020-10-14 12:14 - 500081112 _____ (AVAST Software) C:\Users\Plha\Downloads\avast_free_antivirus_setup_offline.exe
2020-10-14 09:31 - 2020-10-13 11:22 - 4294967295 _____ C:\Users\Plha\Downloads\Win10_2004_Czech_x64.iso
2020-10-13 09:10 - 2020-10-16 10:43 - 000000000 ____D C:\Users\DefaultAppPool\AppData\Local\CrashDumps
2020-10-12 11:29 - 2020-10-16 11:42 - 000000000 ____D C:\Program Files (x86)\Dll-Files.com Fixer
2020-10-12 11:11 - 2020-10-16 11:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dll-Files Fixer
2020-10-12 11:11 - 2020-10-12 11:11 - 000000000 ____D C:\Users\Plha\AppData\Roaming\dll-files.com
2020-10-12 10:28 - 2020-10-12 10:28 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2020-10-12 10:27 - 2018-04-12 23:02 - 000998432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-10-12 10:27 - 2018-04-12 23:02 - 000950016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-10-12 10:27 - 2018-04-12 23:01 - 001985112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6439135.dll
2020-10-12 10:27 - 2018-04-12 23:01 - 001690952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2020-10-12 10:27 - 2018-04-12 23:01 - 001683712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6439135.dll
2020-10-12 10:27 - 2018-04-12 23:01 - 001138720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-10-12 10:27 - 2018-04-12 23:01 - 001065888 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-10-12 10:27 - 2018-04-12 23:01 - 000054272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2020-10-12 10:27 - 2018-04-12 23:00 - 040278616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2020-10-12 10:27 - 2018-04-12 23:00 - 035188992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2020-10-12 10:27 - 2018-04-12 23:00 - 004318112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-10-12 10:27 - 2018-04-12 23:00 - 003719096 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-10-12 10:27 - 2018-04-12 22:58 - 019855144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2020-10-12 10:27 - 2018-04-12 22:58 - 016496768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2020-10-12 10:27 - 2018-04-12 22:58 - 013571520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2020-10-12 10:27 - 2018-04-12 22:58 - 011132384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2020-10-12 10:27 - 2018-04-12 22:58 - 001153752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2020-10-12 10:27 - 2018-04-12 22:57 - 012967056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-10-12 10:27 - 2018-04-12 22:57 - 000902096 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2020-10-12 10:27 - 2018-04-12 22:56 - 011001504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-10-12 10:27 - 2018-04-12 22:56 - 004633920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-10-12 10:27 - 2018-04-12 22:56 - 003939624 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-10-12 08:52 - 2020-10-17 11:29 - 001063408 _____ C:\WINDOWS\ntbtlog.txt
2020-10-09 20:04 - 2020-10-09 20:04 - 000001022 _____ C:\Users\Plha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\osu!.lnk
2020-10-09 20:04 - 2020-10-09 20:04 - 000001014 _____ C:\Users\Plha\Desktop\osu!.lnk
2020-10-09 20:03 - 2020-10-09 20:28 - 000000000 ____D C:\Users\Plha\AppData\Local\osu!
2020-10-09 20:03 - 2020-10-09 20:03 - 000000000 ____D C:\Users\Plha\Downloads\Localisation
2020-10-09 20:01 - 2020-10-09 20:01 - 004393728 _____ (ppy) C:\Users\Plha\Downloads\osu!install.exe
2020-10-07 18:36 - 2020-10-07 18:36 - 000069836 _____ C:\Users\Plha\Downloads\267204846_20200930_9_MCZS.pdf
2020-09-22 11:28 - 2020-09-22 11:27 - 000338528 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2020-09-22 11:28 - 2020-09-22 11:27 - 000217328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2020-09-22 11:28 - 2020-09-22 11:27 - 000175192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2020-09-19 07:53 - 2020-09-19 07:53 - 000000000 __SHD C:\found.000
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-10-18 13:06 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-10-18 13:05 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-10-18 12:56 - 2019-01-21 12:32 - 000000000 ____D C:\ProgramData\AVAST Software
2020-10-18 12:53 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-10-18 12:44 - 2020-08-28 16:56 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-10-18 12:39 - 2019-03-21 17:28 - 000000000 ____D C:\Program Files\SoftEther VPN Client
2020-10-18 12:38 - 2020-08-28 16:56 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-10-18 12:38 - 2020-08-28 16:23 - 000008192 ___SH C:\DumpStack.log.tmp
2020-10-18 12:38 - 2016-10-03 08:51 - 000000000 ____D C:\ProgramData\NVIDIA
2020-10-18 12:37 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-10-18 12:21 - 2020-08-28 16:24 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-10-17 21:47 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2020-10-17 21:41 - 2016-05-25 15:10 - 000000000 ____D C:\Users\Plha\AppData\Local\Packages
2020-10-17 21:41 - 2015-12-25 13:46 - 000000000 ____D C:\Users\Plha\AppData\Local\CrashDumps
2020-10-17 21:39 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-10-17 21:05 - 2020-08-20 08:26 - 000000000 ____D C:\Program Files\CCleaner
2020-10-17 21:00 - 2020-08-28 16:56 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-10-17 20:58 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-10-17 20:57 - 2019-01-21 12:44 - 000002088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2020-10-17 14:55 - 2020-08-28 16:40 - 001919736 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-10-17 14:55 - 2019-12-07 16:43 - 000781566 _____ C:\WINDOWS\system32\perfh005.dat
2020-10-17 14:55 - 2019-12-07 16:43 - 000172300 _____ C:\WINDOWS\system32\perfc005.dat
2020-10-17 11:30 - 2020-08-28 16:56 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-10-17 11:29 - 2019-07-04 21:57 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2020-10-17 11:26 - 2015-12-23 00:02 - 000000632 _____ C:\Users\Plha\Desktop\Total Commander.lnk
2020-10-16 11:45 - 2015-12-24 11:31 - 000000000 ____D C:\Users\Plha\AppData\Roaming\uTorrent
2020-10-16 11:42 - 2020-04-19 18:05 - 000000000 ____D C:\Program Files (x86)\EUROBYTE TOOLS
2020-10-16 11:35 - 2015-12-22 23:51 - 000000000 ____D C:\Users\Plha\AppData\Local\ESET
2020-10-16 11:20 - 2016-02-13 15:14 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-10-16 11:11 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-10-16 10:53 - 2020-08-28 16:56 - 000003472 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-10-16 10:53 - 2020-08-28 16:56 - 000003348 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-10-16 08:24 - 2020-08-28 16:56 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-10-15 11:11 - 2020-08-28 13:46 - 000000000 ____D C:\Users\DefaultAppPool
2020-10-15 11:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2020-10-15 11:11 - 2016-11-09 22:00 - 000000000 ____D C:\Users\Plha\AppData\Roaming\PSpad
2020-10-15 11:11 - 2015-12-23 00:02 - 000000000 ____D C:\Users\Plha\AppData\Roaming\GHISLER
2020-10-15 11:01 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\registration
2020-10-15 10:47 - 2016-11-01 12:00 - 000000000 ____D C:\Users\Plha\AppData\Local\ElevatedDiagnostics
2020-10-15 10:15 - 2020-08-28 13:46 - 000000000 ____D C:\Users\Plha
2020-10-14 11:14 - 2019-04-22 20:11 - 000000175 _____ C:\Users\Plha\Desktop\Heslo roblox.txt
2020-10-13 09:28 - 2016-10-04 23:06 - 000000000 ____D C:\Users\Plha\AppData\Local\MicrosoftEdge
2020-10-13 09:19 - 2019-12-07 16:47 - 000000000 ___SD C:\WINDOWS\system32\AppV
2020-10-13 09:19 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2020-10-13 09:19 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2020-10-13 09:19 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Com
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-10-13 09:19 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2020-10-13 09:19 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2020-10-13 08:48 - 2020-08-20 08:26 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-10-13 08:48 - 2020-08-20 08:26 - 000000863 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-10-13 08:33 - 2019-01-21 12:44 - 000000000 ____D C:\Users\Plha\AppData\Roaming\AVAST Software
2020-10-13 08:22 - 2020-08-28 16:24 - 000443000 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-10-10 00:14 - 2020-08-28 16:56 - 000002238 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-10-10 00:14 - 2020-08-28 16:56 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-10-10 00:05 - 2016-03-19 17:55 - 000000000 ____D C:\Program Files (x86)\Steam
2020-10-08 15:52 - 2019-08-02 13:57 - 000001424 _____ C:\Users\Plha\Desktop\Roblox Player.lnk
2020-10-08 15:52 - 2019-03-16 11:10 - 000001247 _____ C:\Users\Plha\Desktop\Roblox Studio.lnk
2020-10-08 15:52 - 2019-03-16 11:10 - 000000000 ____D C:\Users\Plha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2020-10-03 02:33 - 2019-12-07 11:18 - 000835472 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-10-03 02:33 - 2019-12-07 11:18 - 000179608 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-09-29 20:39 - 2019-02-13 15:29 - 000000000 ____D C:\Users\Plha\AppData\Roaming\.minecraft
2020-09-29 20:34 - 2019-02-13 19:02 - 000000000 ____D C:\Users\Plha\AppData\Roaming\.tlauncher
2020-09-28 14:48 - 2016-05-28 15:14 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-09-28 14:41 - 2016-05-28 15:14 - 129170736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-09-25 17:58 - 2020-04-19 17:49 - 000517592 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2020-09-22 20:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-09-22 11:30 - 2019-01-21 12:40 - 000326408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000851600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000469880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000235584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000206392 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000195648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000109272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000084848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000060480 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000042768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2020-09-22 11:27 - 2019-01-21 12:40 - 000037136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
==================== Files in the root of some directories ========
2020-02-25 20:28 - 2020-06-26 23:22 - 000006656 _____ () C:\Users\Plha\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2019-06-30 18:02 - 2019-06-30 18:02 - 000000000 _____ () C:\Users\Plha\AppData\Local\{B8C342F4-4420-4F76-8184-24C996FAEC09}
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-10-2020
Ran by Plha (18-10-2020 13:09:40)
Running from C:\Users\Plha\Desktop
Windows 10 Pro Version 2004 19041.1 (X64) (2020-08-28 14:57:57)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1427180062-2798621324-3331812027-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1427180062-2798621324-3331812027-503 - Limited - Disabled)
Guest (S-1-5-21-1427180062-2798621324-3331812027-501 - Limited - Disabled)
Matysek (S-1-5-21-1427180062-2798621324-3331812027-1001 - Limited - Enabled) => C:\Users\Matysek
Plha (S-1-5-21-1427180062-2798621324-3331812027-1000 - Administrator - Enabled) => C:\Users\Plha
WDAGUtilityAccount (S-1-5-21-1427180062-2798621324-3331812027-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Photoshop CC 2018 (HKLM-x32\...\PHSP_19_0) (Version: 19.0 - Adobe Systems Incorporated)
AIDA64 Extreme Edition v1.50 (HKLM-x32\...\AIDA64 Extreme Edition_is1) (Version: 1.50 - FinalWire Ltd.)
Aktualizace NVIDIA 2.11.4.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.11.4.1 - NVIDIA Corporation) Hidden
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.67 - Piriform)
Convert WAV To MP3 1.0 (HKLM-x32\...\Convert WAV To MP3_is1) (Version: - A Software Plus)
Counter-Strike Global Offensive [No-Steam] (HKLM-x32\...\Counter-Strike Global Offensive_is1) (Version: 1.32.2.1 - Valve software)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.2.0.0114 - Disc Soft Ltd)
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
Dll-Files Fixer (HKLM-x32\...\Dll-Files Fixer_is1) (Version: 1.0 - Dll-Files.com)
Epic Games Launcher (HKLM-x32\...\{0E63B233-DC24-442C-BD38-0B91D90FEC5B}) (Version: 1.1.167.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Farming Simulator 17 (HKLM\...\ZmFybWluZ3NpbXVsYXRvcjE3_is1) (Version: 1 - )
GameLoad 2.0.0 (HKLM-x32\...\{7FEA7AEB-C073-4687-B3E1-5282DFABAB56}_is1) (Version: 2.0.0 - Ant Media, s. r. o.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 86.0.4240.75 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 - Google LLC) Hidden
Grand Theft Auto V (HKLM-x32\...\Grand Theft Auto V_is1) (Version: 1.0.350.1 - Rockstar)
IObit Unlocker (HKLM-x32\...\IObit Unlocker_is1) (Version: 1.1 - IObit)
Java 8 Update 261 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180261F0}) (Version: 8.0.2610.12 - Oracle Corporation)
JPEG Recovery 1.1 (HKLM-x32\...\JPEG Recovery 1.1) (Version: - )
JPEG Recovery Pro 5.0 (HKLM-x32\...\JPEG Recovery Pro5.0) (Version: 5.0 - e.World Technology Limited)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\{ECC0FA07-863E-44BC-8B1D-DA22F96E5FB7}) (Version: 2.2.0.633 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.633 - LogMeIn, Inc.)
Mafia (HKLM-x32\...\1595659240_is1) (Version: 1.3 - GOG.com)
Mafia Compatibility Database (HKLM\...\{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb) (Version: - )
Malwarebytes version 4.2.1.89 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.2.1.89 - Malwarebytes)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 86.0.622.43 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.49 - )
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1427180062-2798621324-3331812027-1000\...\OneDriveSetup.exe) (Version: 20.084.0426.0007 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{406C9ADB-1325-4FD0-9D13-C119CFF64E0A}) (Version: 2.65.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{35D9277C-1EB7-4FBE-8B41-C520DE4F7A60}) (Version: 1.9.0 - OfficialHawk)
Mp3 Editor for Free v5.2.7 Build 79 (HKLM-x32\...\Mp3 Editor for Free_is1) (Version: 5.2.7 Build 79 - Mp3EditorforFree Ltd.)
Nero 7 Ultra Edition (HKLM-x32\...\{4F2CE68F-EDBB-4592-BF07-5AC930A51029}) (Version: 7.02.6446 - Nero AG)
NVIDIA Ovladač 3D Vision 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.13 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
osrss (HKLM-x32\...\{1BA1133B-1C7A-41A0-8CBF-9B993E63D296}) (Version: 1.0.0 - Microsoft Corporation) Hidden
osu! (HKLM-x32\...\{7c03dfac-c046-474d-b65c-3cb802a0c3ee}) (Version: latest - ppy Pty Ltd)
Ovládací panel NVIDIA 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.13 - NVIDIA Corporation) Hidden
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22617 - Microsoft Corporation)
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: 4.6.1.2730 - Jan Fiala)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.34.617.2014 - Realtek)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.30.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.30.0 - Renesas Electronics Corporation)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Roblox Player for Plha (HKU\S-1-5-21-1427180062-2798621324-3331812027-1000\...\roblox-player) (Version: - Roblox Corporation)
Roblox Studio for Plha (HKU\S-1-5-21-1427180062-2798621324-3331812027-1000\...\roblox-studio) (Version: - Roblox Corporation)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.4.1 - NVIDIA Corporation) Hidden
SoftEther VPN Client (HKLM\...\softether_sevpnclient) (Version: 4.24.9651 - SoftEther VPN Project)
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stellar Repair for Photo (HKLM-x32\...\Stellar Repair for Photo_is1) (Version: 6.0.0.0 - Stellar Information Technology Pvt Ltd.)
Swords & Souls: Neverseen (HKLM-x32\...\1741685922_is1) (Version: 1.12 - GOG.com)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
Tencent Gaming Buddy (HKLM-x32\...\MobileGamePC) (Version: 1.0.0.1 - Tencent Technology Company)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 8.52a - Ghisler Software GmbH)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Unity Web Player (HKU\S-1-5-21-1427180062-2798621324-3331812027-1000\...\UnityWebPlayer) (Version: 5.2.0f3 - Unity Technologies ApS)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{EC4F72E8-52FE-454E-B70F-DBE5C0FA44C5}) (Version: 1.20.0.0 - Microsoft Corporation) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
Packages:
=========
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.179.300.0_x86__kgqvnymyfvs32 [2020-10-16] (king.com)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-10-15] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-10-15] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-10-17] (Microsoft Studios) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-10-17] (Microsoft Corporation) [MS Ad]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2020-10-15] (Twitter Inc.)
WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x64__8wekyb3d8bbwe [2020-10-15] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1427180062-2798621324-3331812027-1000_Classes\CLSID\{ED90173A-3B4C-4E7E-B9CF-79714425D4B5}\InprocServer32 -> C:\Program Files (x86)\PSPad editor\pspshellx64.dll () [File not signed]
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6671064 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-09-22] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1-x32: [Cover Designer] -> {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} => C:\Program Files (x86)\Nero\Nero 7\Nero CoverDesigner\CoverEdExtension.dll [2007-02-28] (Nero AG -> Nero AG)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers1: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll [2014-03-04] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-10-16] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers4: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll [2014-03-04] (IObit Information Technology -> IObit)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-10-16] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll [2014-03-04] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-1427180062-2798621324-3331812027-1000: [EditWithPSPad] -> {ED90173A-3B4C-4E7E-B9CF-79714425D4B5} => C:\Program Files (x86)\PSPad editor\pspshellx64.dll [2014-11-02] () [File not signed]
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Plha\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Jiří - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"
==================== Loaded Modules (Whitelisted) =============
2016-11-09 21:59 - 2014-11-02 19:45 - 000029184 _____ () [File not signed] C:\Program Files (x86)\PSPad editor\pspshellx64.dll
2020-08-28 16:40 - 2017-10-27 18:06 - 000874368 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI64.dll
2020-08-28 16:40 - 2017-10-27 18:06 - 000339256 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\NvStereo\_nvstapisvr64.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [474]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\ssv.dll [2020-07-23] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\jp2ssv.dll [2020-07-23] (Oracle America, Inc. -> Oracle Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2020-08-20 08:18 - 000001347 ____R C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 license.piriform.com
127.0.0.1 www.license.piriform.com
127.0.0.1 speccy.piriform.com
127.0.0.1 www.speccy.piriform.com
127.0.0.1 recuva.piriform.com
127.0.0.1 www.recuva.piriform.com
127.0.0.1 defraggler.piriform.com
127.0.0.1 www.defraggler.piriform.com
127.0.0.1 ccleaner.piriform.com
127.0.0.1 www.ccleaner.piriform.com
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1427180062-2798621324-3331812027-1000\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\StartupFolder: => "SoftEther VPN Client Manager Startup.lnk"
HKLM\...\StartupApproved\Run: => "SoftEther VPN Client UI Helper"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{9E3800AE-21E9-4679-A82D-D5C6F99E8387}E:\games\grand theft auto v\gta5.exe] => (Block) E:\games\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{ADB078BA-845B-4B1C-B6D9-5754F73E2A68}E:\games\grand theft auto v\gta5.exe] => (Block) E:\games\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [{B53D82ED-4C7D-445C-A757-FA1266C3562B}] => (Block) E:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{D2CB59E9-3A4F-4EEE-8E3E-1A5A886AF4E4}] => (Block) E:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{645A9DCE-03A3-4C29-A56C-34AE90C13697}E:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) E:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{E816C1DC-E620-43B7-B05D-EA247DFC1F79}E:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) E:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{5B847D1A-F80B-4C62-AEC8-123CB3AA5463}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{0E14A1FB-84B2-464D-B952-27AA4CBE985E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{21CEA782-CDAA-4AE2-96EC-53020A261201}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{F5E671FC-67FB-42DC-B964-AD012EAD9E8B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{76E1AA9D-1B5B-413D-977F-95CF79F59908}E:\games\anno 1404\addon.exe] => (Allow) E:\games\anno 1404\addon.exe (Related Designs Software -> Related Designs)
FirewallRules: [TCP Query User{D1987BA0-5833-4BD2-8CBE-B70A6EE65BD9}E:\games\anno 1404\addon.exe] => (Allow) E:\games\anno 1404\addon.exe (Related Designs Software -> Related Designs)
FirewallRules: [UDP Query User{F6B7DB6F-9E45-4AE0-912D-296A90722AE6}E:\games\anno 1404\tools\addonweb.exe] => (Allow) E:\games\anno 1404\tools\addonweb.exe (Related Designs Software -> )
FirewallRules: [TCP Query User{D5D08936-A9DD-460E-9D42-F6285567E500}E:\games\anno 1404\tools\addonweb.exe] => (Allow) E:\games\anno 1404\tools\addonweb.exe (Related Designs Software -> )
FirewallRules: [{4333188A-EA79-4DA7-806F-06FBEEDF9EA7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5DCC9049-8221-4D0F-A56E-12967466804E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{8B3661AC-75D8-4CD4-A0A6-4469B0140024}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{5C47244E-6D1D-410C-8FDE-C15D8EC77404}E:\games\grand theft auto v\gta5.exe] => (Allow) E:\games\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{BB3227B3-6072-4243-A2B7-6088FB49831C}E:\games\grand theft auto v\gta5.exe] => (Allow) E:\games\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{3C5B1BD7-DF3F-4729-842C-FAB6C06B2944}C:\users\plha\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\plha\appdata\roaming\utorrent\utorrent.exe => No File
FirewallRules: [UDP Query User{2670E909-C795-4C2E-ADAC-CB5B6C94DA30}C:\users\plha\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\plha\appdata\roaming\utorrent\utorrent.exe => No File
FirewallRules: [{BA8FEAA8-DD15-47BB-A189-A33A897D5D96}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd_x64.exe (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{DB20F630-F57B-4D88-977F-66A5CE9CEBAA}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd.exe (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{45A15666-7F4E-4FFE-AE1E-E16C81EA4289}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr.exe (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{CC0E2697-98DB-4C2E-9C29-25CA7564E0F5}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{5C253EE6-3988-4CFD-A80B-0CB4BC1AB6A7}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient.exe (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [{B8F0B49C-353E-4B48-A51B-37AD1B565855}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe (SoftEther K.K. -> SoftEther VPN Project at University of Tsukuba, Japan.)
FirewallRules: [TCP Query User{01099CEA-A5E0-43C4-AE0B-0BDE4BBC3644}E:\game instal\7dtd\7daystodie.exe] => (Allow) E:\game instal\7dtd\7daystodie.exe () [File not signed]
FirewallRules: [UDP Query User{25D46D3C-3C81-496D-ABF0-FD856D87858F}E:\game instal\7dtd\7daystodie.exe] => (Allow) E:\game instal\7dtd\7daystodie.exe () [File not signed]
FirewallRules: [{2A8A5AB9-F016-4353-9BAF-BD11268FB53D}] => (Block) E:\game instal\7dtd\7daystodie.exe () [File not signed]
FirewallRules: [{D0964FA4-2799-4B49-8815-90032EDE908B}] => (Block) E:\game instal\7dtd\7daystodie.exe () [File not signed]
FirewallRules: [TCP Query User{E7C448E2-B127-4F1D-BC47-9CAC3E6B39A6}E:\game instal\subnauticazero\subnauticazero.exe] => (Block) E:\game instal\subnauticazero\subnauticazero.exe () [File not signed]
FirewallRules: [UDP Query User{7913B5D6-8C8D-4E71-B68D-5ED48D9C61E4}E:\game instal\subnauticazero\subnauticazero.exe] => (Block) E:\game instal\subnauticazero\subnauticazero.exe () [File not signed]
FirewallRules: [{B8BF15C7-FCF0-4C74-8BF3-6F6954189197}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{10E335E8-245C-4680-8254-D9D04D3D5722}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{9DEAC5EF-D6A0-426A-9D13-44D2D623E646}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe (Smartly Dressed Games Ltd. -> ) [File not signed]
FirewallRules: [{79039D30-623A-45DF-89E9-3849095C700B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe (Smartly Dressed Games Ltd. -> ) [File not signed]
FirewallRules: [{0971A7AF-546C-4CCA-8CD4-9818457E4C85}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{19321148-E324-4B8E-AF2A-4329D90A2CF3}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{6FB57078-AE89-42EC-9419-B0F17B1FF599}] => (Allow) e:\program files\txgameassistant\appmarket\AppMarket.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{BFF92242-D2F4-443A-9A1A-7E9118588160}] => (Allow) e:\program files\txgameassistant\appmarket\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{160B0BD8-2A20-40E4-B1FB-071CF210C529}] => (Allow) e:\program files\txgameassistant\appmarket\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> 腾讯公司)
FirewallRules: [{07E95125-CF00-4C96-8F60-50C72EB14D04}] => (Allow) e:\program files\txgameassistant\appmarket\QQExternal.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{B8239F2C-4E0A-4B59-9512-4CF7076DF360}] => (Allow) e:\program files\txgameassistant\appmarket\GameDownload.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{D82B3CAD-5935-4C07-92ED-1EBA1A98AC7C}] => (Allow) e:\program files\txgameassistant\appmarket\GF186\TUpdate.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{044D75A4-4988-43E0-BD4B-184A23D2B85F}] => (Allow) e:\program files\txgameassistant\ui\AndroidEmulator.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{F7B7A3C3-CC28-4243-8BB2-F935CCC9CD6D}] => (Allow) e:\program files\txgameassistant\ui\adb.exe () [File not signed]
FirewallRules: [{671EDA99-7B26-4E91-96E6-D27A3824CD17}] => (Allow) e:\program files\txgameassistant\ui\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{BC332DA0-ABB3-4E86-B39F-E5D651FA9235}] => (Allow) e:\program files\txgameassistant\ui\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{512E0BD0-046C-4A04-9721-2647A0B957F2}] => (Allow) e:\program files\txgameassistant\ui\TxGaDcc.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [TCP Query User{EACAC531-E7B5-44B0-9DC1-436ACDB7220B}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{44DAD4B6-FABA-4BB7-A244-3AF6F05AD0B1}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{A146EA9C-CAB8-4613-A86A-EF55DAFE8FD4}] => (Allow) C:\Users\Plha\AppData\Roaming\uTorrent\utorrent.exe => No File
FirewallRules: [{D3E5B8C6-FA66-437F-B29E-184899AC2FB8}] => (Allow) C:\Users\Plha\AppData\Roaming\uTorrent\utorrent.exe => No File
FirewallRules: [TCP Query User{3044ECFD-DF34-4866-9513-74E3D7483FA8}C:\users\plha\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe] => (Block) C:\users\plha\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{6F70B44D-B614-4E09-B63B-758870B8F8AF}C:\users\plha\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe] => (Block) C:\users\plha\appdata\roaming\.tlauncher\jvms\jre1.8.0_51\bin\javaw.exe
FirewallRules: [{28B780E8-8205-40E7-B2D3-9044EB4792E2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A7DA3B16-D6F5-49AA-8832-C59B7402054F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{59DAD99E-85DC-48A5-981B-303F6AE4E427}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A604743B-F41E-4564-B5B9-893A61E74EDC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.64.80.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4C676AB0-5543-4E27-A1DB-1583EC2CD964}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{1BE6EEC1-5A4C-480C-BE95-C28DA415855E}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{B94BD3DF-5FF2-4042-BA31-1FA82059E73C}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{B893AEDE-5427-4CC7-A7F6-2CF84ED7D682}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{E23814B1-1F0D-48DB-968A-F2A672AF8FA9}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
15-10-2020 09:36:00 Instalační služba modulů systému Windows
16-10-2020 10:30:10 Instalační služba modulů systému Windows
18-10-2020 12:53:31 Instalační služba modulů systému Windows
==================== Faulty Device Manager Devices ============
Name: LogMeIn Hamachi Virtual Ethernet Adapter
Description: LogMeIn Hamachi Virtual Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn Inc.
Service: Hamachi
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: ========================
Application errors:
==================
Error: (10/18/2020 12:42:10 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Stellar Repair for Photo\StellarRepairforPhoto.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_fd031af45b0106f2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_b555e41d4684ddec.manifest.
Error: (10/18/2020 12:42:10 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Stellar Repair for Photo\StellarRepairforPhoto.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_fd031af45b0106f2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_b555e41d4684ddec.manifest.
Error: (10/18/2020 12:27:27 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Stellar Repair for Photo\StellarRepairforPhoto.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_fd031af45b0106f2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_b555e41d4684ddec.manifest.
Error: (10/18/2020 12:27:26 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Stellar Repair for Photo\StellarRepairforPhoto.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_fd031af45b0106f2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_b555e41d4684ddec.manifest.
Error: (10/17/2020 09:59:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program FRST64.exe verze 14.10.2020.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 2f8c
Čas spuštění: 01d6a4bd446b8015
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Users\Plha\Desktop\FRST64.exe
ID hlášení: b40989aa-7d55-44b1-9650-6d9aa5c9aebd
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Top level window is idle
Error: (10/17/2020 09:41:33 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Stellar Repair for Photo\StellarRepairforPhoto.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_fd031af45b0106f2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_b555e41d4684ddec.manifest.
Error: (10/17/2020 09:41:33 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Stellar Repair for Photo\StellarRepairforPhoto.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_fd031af45b0106f2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.1_none_b555e41d4684ddec.manifest.
Error: (10/17/2020 09:41:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: StartMenuExperienceHost.exe, verze: 0.0.0.0, časové razítko: 0x1ec08aff
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1, časové razítko: 0x42c97562
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000010b4ec
ID chybujícího procesu: 0x1cf8
Čas spuštění chybující aplikace: 0x01d6a4bd7ec20f0b
Cesta k chybující aplikaci: C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 58abb6f4-94d2-4b52-b59e-383c7c5078a1
Úplný název chybujícího balíčku: Microsoft.Windows.StartMenuExperienceHost_10.0.19041.1_neutral_neutral_cw5n1h2txyewy
ID aplikace související s chybujícím balíčkem: App
System errors:
=============
Error: (10/18/2020 01:04:27 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (10/18/2020 01:04:25 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (10/18/2020 12:56:39 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (10/18/2020 12:56:36 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (10/18/2020 12:55:19 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (10/18/2020 12:55:17 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (10/18/2020 12:37:18 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
Error: (10/18/2020 12:37:15 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.
CodeIntegrity:
===================================
Date: 2020-10-18 13:16:49.6590000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-18 13:16:32.1340000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-18 13:16:12.6070000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-18 13:00:58.5920000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-18 13:00:40.4670000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-18 13:00:22.5510000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-18 13:00:19.8170000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-10-18 13:00:16.5800000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: Award Software International, Inc. FA 04/20/2010
Motherboard: Gigabyte Technology Co., Ltd. X58A-UD3R
Processor: Intel(R) Core(TM) i7 CPU 950 @ 3.07GHz
Percentage of memory in use: 84%
Total physical RAM: 4094.49 MB
Available physical RAM: 645.47 MB
Total Virtual: 8190.49 MB
Available Virtual: 3950.67 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:114.42 GB) (Free:23.44 GB) NTFS
Drive e: (Nový svazek) (Fixed) (Total:350.74 GB) (Free:75.41 GB) NTFS
\\?\Volume{1b1a25ac-a8b1-11e5-aa9b-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{dc76dc76-0000-0000-0000-50a11c000000}\ () (Fixed) (Total:0.5 GB) (Free:0.07 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: DC76DC76)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=114.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=509 MB) - (Type=27)
Partition 4: (Not Active) - (Size=350.7 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Po startu windows vyhazuje hlášku version.dll
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [710264 2020-06-18] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
ask: {05D44F7B-176D-4269-8ABA-8965F4DA95FC} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {08FFFF34-5CEC-4F15-B84F-CE359920AE78} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {3AD78E54-323E-43C9-AEBD-0F1759E0E295} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {496C6621-103E-4205-96B5-BF532BBFFEA4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {4F56E2C4-4D37-4903-8EF4-D4CDF3C8EEEB} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {5540CBB5-3DCC-4BC6-BDAA-FAE017851B54} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {53B6F768-D33F-4145-9023-E8C6C76D6FD1} - System32\Tasks\{9CB13F02-3634-4FAA-8A5C-84F17793EF1F} => C:\Windows\system32\pcalua.exe -a "E:\Stažené\ANNO 1404 - Benátky\Patche\anno1404_1.2.exe" -d "E:\Stažené\ANNO 1404 - Benátky\Patche"
Task: {7BAA88D2-F47F-4A62-8903-9CCA39788517} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {833097C6-BF27-42EC-9628-5E258555A7CC} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {8C749654-C073-4A97-A835-6155CB7A6F5E} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {ACE91629-4105-40C4-BB8C-D7064A8AA3A4} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {B2D4F2A3-6F91-405E-9747-6D34809D4CBA} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {B7301EA6-EE9B-47AD-9D20-633489C6C905} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-23] (Google Inc -> Google Inc.)
Task: {C0520DE4-54AE-4F71-9C4B-7789E34AB4A4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-23] (Google Inc -> Google Inc.)
Task: {CA39650E-EB0A-4DB3-ADC1-050F4EABB0D3} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {D141A318-6919-49A8-AA42-BBE44912B952} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {E04F1D4C-B998-4F45-8048-4246FC0A3DB2} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
U3 idsvc; no ImagePath
C:\Users\Plha\AppData\Roaming\Tencent
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Plha\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\Plha\AppData\Local\{B8C342F4-4420-4F76-8184-24C996FAEC09}
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [474]
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
FirewallRules: [{6FB57078-AE89-42EC-9419-B0F17B1FF599}] => (Allow) e:\program files\txgameassistant\appmarket\AppMarket.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{BFF92242-D2F4-443A-9A1A-7E9118588160}] => (Allow) e:\program files\txgameassistant\appmarket\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{160B0BD8-2A20-40E4-B1FB-071CF210C529}] => (Allow) e:\program files\txgameassistant\appmarket\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> 腾讯公司)
FirewallRules: [{07E95125-CF00-4C96-8F60-50C72EB14D04}] => (Allow) e:\program files\txgameassistant\appmarket\QQExternal.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{B8239F2C-4E0A-4B59-9512-4CF7076DF360}] => (Allow) e:\program files\txgameassistant\appmarket\GameDownload.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{D82B3CAD-5935-4C07-92ED-1EBA1A98AC7C}] => (Allow) e:\program files\txgameassistant\appmarket\GF186\TUpdate.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{A146EA9C-CAB8-4613-A86A-EF55DAFE8FD4}] => (Allow) C:\Users\Plha\AppData\Roaming\uTorrent\utorrent.exe => No File
FirewallRules: [{D3E5B8C6-FA66-437F-B29E-184899AC2FB8}] => (Allow) C:\Users\Plha\AppData\Roaming\uTorrent\utorrent.exe => No File
FirewallRules: [{4C676AB0-5543-4E27-A1DB-1583EC2CD964}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{1BE6EEC1-5A4C-480C-BE95-C28DA415855E}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{B94BD3DF-5FF2-4042-BA31-1FA82059E73C}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{B893AEDE-5427-4CC7-A7F6-2CF84ED7D682}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
EmptyTemp:
Hosts:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Po startu windows vyhazuje hlášku version.dll
Fix result of Farbar Recovery Scan Tool (x64) Version: 14-10-2020
Ran by Plha (18-10-2020 18:50:04) Run:1
Running from C:\Users\Plha\Desktop
Loaded Profiles: Plha
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [710264 2020-06-18] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
ask: {05D44F7B-176D-4269-8ABA-8965F4DA95FC} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {08FFFF34-5CEC-4F15-B84F-CE359920AE78} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {3AD78E54-323E-43C9-AEBD-0F1759E0E295} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {496C6621-103E-4205-96B5-BF532BBFFEA4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {4F56E2C4-4D37-4903-8EF4-D4CDF3C8EEEB} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {5540CBB5-3DCC-4BC6-BDAA-FAE017851B54} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {53B6F768-D33F-4145-9023-E8C6C76D6FD1} - System32\Tasks\{9CB13F02-3634-4FAA-8A5C-84F17793EF1F} => C:\Windows\system32\pcalua.exe -a "E:\Stažené\ANNO 1404 - Benátky\Patche\anno1404_1.2.exe" -d "E:\Stažené\ANNO 1404 - Benátky\Patche"
Task: {7BAA88D2-F47F-4A62-8903-9CCA39788517} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {833097C6-BF27-42EC-9628-5E258555A7CC} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {8C749654-C073-4A97-A835-6155CB7A6F5E} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {ACE91629-4105-40C4-BB8C-D7064A8AA3A4} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {B2D4F2A3-6F91-405E-9747-6D34809D4CBA} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {B7301EA6-EE9B-47AD-9D20-633489C6C905} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-23] (Google Inc -> Google Inc.)
Task: {C0520DE4-54AE-4F71-9C4B-7789E34AB4A4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-23] (Google Inc -> Google Inc.)
Task: {CA39650E-EB0A-4DB3-ADC1-050F4EABB0D3} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {D141A318-6919-49A8-AA42-BBE44912B952} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {E04F1D4C-B998-4F45-8048-4246FC0A3DB2} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
U3 idsvc; no ImagePath
C:\Users\Plha\AppData\Roaming\Tencent
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Plha\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\Plha\AppData\Local\{B8C342F4-4420-4F76-8184-24C996FAEC09}
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [474]
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
FirewallRules: [{6FB57078-AE89-42EC-9419-B0F17B1FF599}] => (Allow) e:\program files\txgameassistant\appmarket\AppMarket.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{BFF92242-D2F4-443A-9A1A-7E9118588160}] => (Allow) e:\program files\txgameassistant\appmarket\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{160B0BD8-2A20-40E4-B1FB-071CF210C529}] => (Allow) e:\program files\txgameassistant\appmarket\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> 腾讯公司)
FirewallRules: [{07E95125-CF00-4C96-8F60-50C72EB14D04}] => (Allow) e:\program files\txgameassistant\appmarket\QQExternal.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{B8239F2C-4E0A-4B59-9512-4CF7076DF360}] => (Allow) e:\program files\txgameassistant\appmarket\GameDownload.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{D82B3CAD-5935-4C07-92ED-1EBA1A98AC7C}] => (Allow) e:\program files\txgameassistant\appmarket\GF186\TUpdate.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{A146EA9C-CAB8-4613-A86A-EF55DAFE8FD4}] => (Allow) C:\Users\Plha\AppData\Roaming\uTorrent\utorrent.exe => No File
FirewallRules: [{D3E5B8C6-FA66-437F-B29E-184899AC2FB8}] => (Allow) C:\Users\Plha\AppData\Roaming\uTorrent\utorrent.exe => No File
FirewallRules: [{4C676AB0-5543-4E27-A1DB-1583EC2CD964}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{1BE6EEC1-5A4C-480C-BE95-C28DA415855E}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{B94BD3DF-5FF2-4042-BA31-1FA82059E73C}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{B893AEDE-5427-4CC7-A7F6-2CF84ED7D682}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
EmptyTemp:
Hosts:
End
*****************
Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
ask: {05D44F7B-176D-4269-8ABA-8965F4DA95FC} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION => Error: No automatic fix found for this entry.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{08FFFF34-5CEC-4F15-B84F-CE359920AE78}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{08FFFF34-5CEC-4F15-B84F-CE359920AE78}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3AD78E54-323E-43C9-AEBD-0F1759E0E295}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3AD78E54-323E-43C9-AEBD-0F1759E0E295}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{496C6621-103E-4205-96B5-BF532BBFFEA4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{496C6621-103E-4205-96B5-BF532BBFFEA4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4F56E2C4-4D37-4903-8EF4-D4CDF3C8EEEB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4F56E2C4-4D37-4903-8EF4-D4CDF3C8EEEB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5540CBB5-3DCC-4BC6-BDAA-FAE017851B54}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5540CBB5-3DCC-4BC6-BDAA-FAE017851B54}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{53B6F768-D33F-4145-9023-E8C6C76D6FD1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{53B6F768-D33F-4145-9023-E8C6C76D6FD1}" => removed successfully
C:\WINDOWS\System32\Tasks\{9CB13F02-3634-4FAA-8A5C-84F17793EF1F} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{9CB13F02-3634-4FAA-8A5C-84F17793EF1F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7BAA88D2-F47F-4A62-8903-9CCA39788517}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7BAA88D2-F47F-4A62-8903-9CCA39788517}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{833097C6-BF27-42EC-9628-5E258555A7CC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{833097C6-BF27-42EC-9628-5E258555A7CC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8C749654-C073-4A97-A835-6155CB7A6F5E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8C749654-C073-4A97-A835-6155CB7A6F5E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{ACE91629-4105-40C4-BB8C-D7064A8AA3A4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ACE91629-4105-40C4-BB8C-D7064A8AA3A4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B2D4F2A3-6F91-405E-9747-6D34809D4CBA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B2D4F2A3-6F91-405E-9747-6D34809D4CBA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B7301EA6-EE9B-47AD-9D20-633489C6C905}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B7301EA6-EE9B-47AD-9D20-633489C6C905}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C0520DE4-54AE-4F71-9C4B-7789E34AB4A4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C0520DE4-54AE-4F71-9C4B-7789E34AB4A4}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CA39650E-EB0A-4DB3-ADC1-050F4EABB0D3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CA39650E-EB0A-4DB3-ADC1-050F4EABB0D3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\rundetector" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D141A318-6919-49A8-AA42-BBE44912B952}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D141A318-6919-49A8-AA42-BBE44912B952}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E04F1D4C-B998-4F45-8048-4246FC0A3DB2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E04F1D4C-B998-4F45-8048-4246FC0A3DB2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => removed successfully
HKLM\System\CurrentControlSet\Services\idsvc => removed successfully
idsvc => service removed successfully
C:\Users\Plha\AppData\Roaming\Tencent => moved successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
C:\Users\Plha\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
C:\Users\Plha\AppData\Local\{B8C342F4-4420-4F76-8184-24C996FAEC09} => moved successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\Gadgets => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File) => Error: No automatic fix found for this entry.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6FB57078-AE89-42EC-9419-B0F17B1FF599}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BFF92242-D2F4-443A-9A1A-7E9118588160}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{160B0BD8-2A20-40E4-B1FB-071CF210C529}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{07E95125-CF00-4C96-8F60-50C72EB14D04}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B8239F2C-4E0A-4B59-9512-4CF7076DF360}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D82B3CAD-5935-4C07-92ED-1EBA1A98AC7C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A146EA9C-CAB8-4613-A86A-EF55DAFE8FD4}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D3E5B8C6-FA66-437F-B29E-184899AC2FB8}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4C676AB0-5543-4E27-A1DB-1583EC2CD964}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1BE6EEC1-5A4C-480C-BE95-C28DA415855E}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B94BD3DF-5FF2-4042-BA31-1FA82059E73C}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B893AEDE-5427-4CC7-A7F6-2CF84ED7D682}" => not found
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
=========== EmptyTemp: ==========
BITS transfer queue => 12083200 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 15888660 B
Java, Flash, Steam htmlcache => 292756271 B
Windows/system/drivers => 35489507 B
Edge => 72421 B
Chrome => 64539072 B
Firefox => 0 B
Opera => 156408 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 22470 B
NetworkService => 22470 B
Plha => 40918890 B
Matysek => 95186937 B
DefaultAppPool => 95186937 B
RecycleBin => 0 B
EmptyTemp: => 622.1 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 18:51:25 ====
Ran by Plha (18-10-2020 18:50:04) Run:1
Running from C:\Users\Plha\Desktop
Loaded Profiles: Plha
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [710264 2020-06-18] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
ask: {05D44F7B-176D-4269-8ABA-8965F4DA95FC} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {08FFFF34-5CEC-4F15-B84F-CE359920AE78} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {3AD78E54-323E-43C9-AEBD-0F1759E0E295} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {496C6621-103E-4205-96B5-BF532BBFFEA4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {4F56E2C4-4D37-4903-8EF4-D4CDF3C8EEEB} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {5540CBB5-3DCC-4BC6-BDAA-FAE017851B54} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {53B6F768-D33F-4145-9023-E8C6C76D6FD1} - System32\Tasks\{9CB13F02-3634-4FAA-8A5C-84F17793EF1F} => C:\Windows\system32\pcalua.exe -a "E:\Stažené\ANNO 1404 - Benátky\Patche\anno1404_1.2.exe" -d "E:\Stažené\ANNO 1404 - Benátky\Patche"
Task: {7BAA88D2-F47F-4A62-8903-9CCA39788517} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {833097C6-BF27-42EC-9628-5E258555A7CC} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {8C749654-C073-4A97-A835-6155CB7A6F5E} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {ACE91629-4105-40C4-BB8C-D7064A8AA3A4} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {B2D4F2A3-6F91-405E-9747-6D34809D4CBA} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {B7301EA6-EE9B-47AD-9D20-633489C6C905} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-23] (Google Inc -> Google Inc.)
Task: {C0520DE4-54AE-4F71-9C4B-7789E34AB4A4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-23] (Google Inc -> Google Inc.)
Task: {CA39650E-EB0A-4DB3-ADC1-050F4EABB0D3} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {D141A318-6919-49A8-AA42-BBE44912B952} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {E04F1D4C-B998-4F45-8048-4246FC0A3DB2} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
U3 idsvc; no ImagePath
C:\Users\Plha\AppData\Roaming\Tencent
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Plha\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\Plha\AppData\Local\{B8C342F4-4420-4F76-8184-24C996FAEC09}
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [474]
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
FirewallRules: [{6FB57078-AE89-42EC-9419-B0F17B1FF599}] => (Allow) e:\program files\txgameassistant\appmarket\AppMarket.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{BFF92242-D2F4-443A-9A1A-7E9118588160}] => (Allow) e:\program files\txgameassistant\appmarket\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{160B0BD8-2A20-40E4-B1FB-071CF210C529}] => (Allow) e:\program files\txgameassistant\appmarket\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> 腾讯公司)
FirewallRules: [{07E95125-CF00-4C96-8F60-50C72EB14D04}] => (Allow) e:\program files\txgameassistant\appmarket\QQExternal.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{B8239F2C-4E0A-4B59-9512-4CF7076DF360}] => (Allow) e:\program files\txgameassistant\appmarket\GameDownload.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{D82B3CAD-5935-4C07-92ED-1EBA1A98AC7C}] => (Allow) e:\program files\txgameassistant\appmarket\GF186\TUpdate.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{A146EA9C-CAB8-4613-A86A-EF55DAFE8FD4}] => (Allow) C:\Users\Plha\AppData\Roaming\uTorrent\utorrent.exe => No File
FirewallRules: [{D3E5B8C6-FA66-437F-B29E-184899AC2FB8}] => (Allow) C:\Users\Plha\AppData\Roaming\uTorrent\utorrent.exe => No File
FirewallRules: [{4C676AB0-5543-4E27-A1DB-1583EC2CD964}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{1BE6EEC1-5A4C-480C-BE95-C28DA415855E}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{B94BD3DF-5FF2-4042-BA31-1FA82059E73C}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
FirewallRules: [{B893AEDE-5427-4CC7-A7F6-2CF84ED7D682}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe => No File
EmptyTemp:
Hosts:
End
*****************
Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
ask: {05D44F7B-176D-4269-8ABA-8965F4DA95FC} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION => Error: No automatic fix found for this entry.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{08FFFF34-5CEC-4F15-B84F-CE359920AE78}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{08FFFF34-5CEC-4F15-B84F-CE359920AE78}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3AD78E54-323E-43C9-AEBD-0F1759E0E295}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3AD78E54-323E-43C9-AEBD-0F1759E0E295}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{496C6621-103E-4205-96B5-BF532BBFFEA4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{496C6621-103E-4205-96B5-BF532BBFFEA4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4F56E2C4-4D37-4903-8EF4-D4CDF3C8EEEB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4F56E2C4-4D37-4903-8EF4-D4CDF3C8EEEB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5540CBB5-3DCC-4BC6-BDAA-FAE017851B54}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5540CBB5-3DCC-4BC6-BDAA-FAE017851B54}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{53B6F768-D33F-4145-9023-E8C6C76D6FD1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{53B6F768-D33F-4145-9023-E8C6C76D6FD1}" => removed successfully
C:\WINDOWS\System32\Tasks\{9CB13F02-3634-4FAA-8A5C-84F17793EF1F} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{9CB13F02-3634-4FAA-8A5C-84F17793EF1F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7BAA88D2-F47F-4A62-8903-9CCA39788517}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7BAA88D2-F47F-4A62-8903-9CCA39788517}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{833097C6-BF27-42EC-9628-5E258555A7CC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{833097C6-BF27-42EC-9628-5E258555A7CC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8C749654-C073-4A97-A835-6155CB7A6F5E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8C749654-C073-4A97-A835-6155CB7A6F5E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{ACE91629-4105-40C4-BB8C-D7064A8AA3A4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ACE91629-4105-40C4-BB8C-D7064A8AA3A4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B2D4F2A3-6F91-405E-9747-6D34809D4CBA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B2D4F2A3-6F91-405E-9747-6D34809D4CBA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B7301EA6-EE9B-47AD-9D20-633489C6C905}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B7301EA6-EE9B-47AD-9D20-633489C6C905}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C0520DE4-54AE-4F71-9C4B-7789E34AB4A4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C0520DE4-54AE-4F71-9C4B-7789E34AB4A4}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CA39650E-EB0A-4DB3-ADC1-050F4EABB0D3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CA39650E-EB0A-4DB3-ADC1-050F4EABB0D3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\rundetector" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D141A318-6919-49A8-AA42-BBE44912B952}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D141A318-6919-49A8-AA42-BBE44912B952}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E04F1D4C-B998-4F45-8048-4246FC0A3DB2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E04F1D4C-B998-4F45-8048-4246FC0A3DB2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => removed successfully
HKLM\System\CurrentControlSet\Services\idsvc => removed successfully
idsvc => service removed successfully
C:\Users\Plha\AppData\Roaming\Tencent => moved successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
C:\Users\Plha\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
C:\Users\Plha\AppData\Local\{B8C342F4-4420-4F76-8184-24C996FAEC09} => moved successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\Gadgets => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File) => Error: No automatic fix found for this entry.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6FB57078-AE89-42EC-9419-B0F17B1FF599}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BFF92242-D2F4-443A-9A1A-7E9118588160}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{160B0BD8-2A20-40E4-B1FB-071CF210C529}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{07E95125-CF00-4C96-8F60-50C72EB14D04}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B8239F2C-4E0A-4B59-9512-4CF7076DF360}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D82B3CAD-5935-4C07-92ED-1EBA1A98AC7C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A146EA9C-CAB8-4613-A86A-EF55DAFE8FD4}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D3E5B8C6-FA66-437F-B29E-184899AC2FB8}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4C676AB0-5543-4E27-A1DB-1583EC2CD964}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1BE6EEC1-5A4C-480C-BE95-C28DA415855E}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B94BD3DF-5FF2-4042-BA31-1FA82059E73C}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B893AEDE-5427-4CC7-A7F6-2CF84ED7D682}" => not found
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
=========== EmptyTemp: ==========
BITS transfer queue => 12083200 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 15888660 B
Java, Flash, Steam htmlcache => 292756271 B
Windows/system/drivers => 35489507 B
Edge => 72421 B
Chrome => 64539072 B
Firefox => 0 B
Opera => 156408 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 22470 B
NetworkService => 22470 B
Plha => 40918890 B
Matysek => 95186937 B
DefaultAppPool => 95186937 B
RecycleBin => 0 B
EmptyTemp: => 622.1 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 18:51:25 ====
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Po startu windows vyhazuje hlášku version.dll
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Po startu windows vyhazuje hlášku version.dll
Počítač vypadá ok. Děkuji moc 
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Po startu windows vyhazuje hlášku version.dll
To jsem rád a nemáte zač! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?