Po startu PC naskočí v Chromu atharori.net a gestyy.com

[Danin]

Dobrý den,

cca poslední týden se mi po zapnutí PC sám od sebe zapne výchozí prohlížeč (Chrome) a spustí se stránky adfly stránky. Nevíte co s tím? Děkuji přikládám FRST a Addition

FRST:


==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [117344 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [62636856 2020-08-16] (Discord Inc. -> Discord Inc.)
HKLM-x32\...\Run: [Wraith Prism] => C:\Program Files (x86)\AMD Wraith\Wraith Prism\Wraith Prism HID.exe [1899520 2019-05-03] (Cooler Master) [File not signed]
HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [664872 2020-03-04] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM-x32\...\Run: [Autodesk Genuine Service ] => C:\Users\Daniel Nevřivý\AppData\Local\Programs\Autodesk\Genuine Service\GenuineService.exe [1077864 2020-01-02] (Autodesk, Inc. -> Autodesk)
HKU\S-1-5-21-4010863294-2269449235-3349940814-1001\...\Run: [qBittorrent] => C:\Program Files\qBittorrent\qbittorrent.exe [25778688 2020-11-24] () [File not signed]
HKU\S-1-5-21-4010863294-2269449235-3349940814-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32281272 2020-11-10] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-4010863294-2269449235-3349940814-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-4010863294-2269449235-3349940814-1001\...\Policies\Explorer: []
HKU\S-1-5-21-4010863294-2269449235-3349940814-1001\...\MountPoints2: {af6f9edd-e00a-11ea-a691-806e6f6e6963} - "H:\cont32.exe" dg_komplet.ctx
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\87.0.4280.66\Installer\chrmstp.exe [2020-11-26] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\update.bat [2019-12-24] () [File not signed]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {047D0F30-A222-4E56-9BD3-76247C326642} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5153176 2020-10-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {0D7B1274-FA34-4C5A-9BC4-E9342204BE51} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0FD700BA-1E5B-4025-8425-1FA12B2516FC} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\3B558032-E1A5-4012-BE68-193C37763BC9\Schedule #2 created by enrollment client => C:\Windows\system32\deviceenroller.exe [459776 2020-08-16] (Microsoft Windows -> Microsoft Corporation)
Task: {189D6B46-16AF-44F7-B189-6F607105B191} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1CED9478-6955-4A1D-9923-1C8CFDA124B7} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-11-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {22DADBD8-BED3-4FE0-9F59-AB6F39B27829} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\3B558032-E1A5-4012-BE68-193C37763BC9\Schedule created by enrollment client for renewal of certificate warning => C:\Windows\system32\deviceenroller.exe [459776 2020-08-16] (Microsoft Windows -> Microsoft Corporation)
Task: {2EE081C7-799C-48C2-82D2-E944ADD1AB58} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\MpCmdRun.exe [541576 2020-11-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2F5FDB1D-8E6B-49C9-A884-78198FD762AA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {3A91B8E5-E7C4-4250-BAB9-2D68378BAB68} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3CD61C5D-FCB8-4672-BE51-5E7B05677AEC} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26781880 2020-11-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {4E3B1113-4B18-4E10-9C63-3C8D01B66D16} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\3B558032-E1A5-4012-BE68-193C37763BC9\PushLaunch => C:\Windows\system32\deviceenroller.exe [459776 2020-08-16] (Microsoft Windows -> Microsoft Corporation)
Task: {5CEF4E47-C6DE-4935-9D44-A333612055ED} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4617832 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
Task: {5E1BBC46-3190-4AEA-B9A9-0DBBFFB9C8BA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5153176 2020-10-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {63FC6919-7AFA-474B-9726-699F7BD7D266} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144744 2020-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {694AF84F-F95D-4AB5-81ED-D6CD1E3D9C37} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22939528 2020-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {761025EC-2439-46BC-89CA-22A73D2327FA} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {83C5813E-0251-458F-BA86-E36905F81D93} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9739033A-6260-4807-A7CA-A78C0B5C5335} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {99673466-F4BA-41C5-9EF4-1537E281B6AD} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\3B558032-E1A5-4012-BE68-193C37763BC9\Provisioning initiated session => C:\Windows\system32\deviceenroller.exe [459776 2020-08-16] (Microsoft Windows -> Microsoft Corporation)
Task: {9D2E8EF0-E18D-489D-A35A-62CCB23E1878} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3292984 2020-06-25] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A34DB28E-51A0-444E-AC81-688562FA92EF} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {A3AEE75D-8F44-4B26-88A0-02E0521002B0} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\3B558032-E1A5-4012-BE68-193C37763BC9\Schedule #1 created by enrollment client => C:\Windows\system32\deviceenroller.exe [459776 2020-08-16] (Microsoft Windows -> Microsoft Corporation)
Task: {A60D5C28-0804-485F-AAB2-7654941EA7FE} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\3B558032-E1A5-4012-BE68-193C37763BC9\Schedule to run OMADMClient by client => C:\Windows\system32\omadmclient.exe [434176 2020-09-09] (Microsoft Windows -> Microsoft Corporation)
Task: {ABF58787-193B-452F-9CC3-2E16CC226638} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\3B558032-E1A5-4012-BE68-193C37763BC9\Schedule #3 created by enrollment client => C:\Windows\system32\deviceenroller.exe [459776 2020-08-16] (Microsoft Windows -> Microsoft Corporation)
Task: {AF66295F-2679-498C-ABDD-A306DBC41E02} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\MpCmdRun.exe [541576 2020-11-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B32AE8E2-8043-4203-8D82-E195B2843B2F} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\3B558032-E1A5-4012-BE68-193C37763BC9\Win10 S Mode event listener created by enrollment client => C:\Windows\system32\deviceenroller.exe [459776 2020-08-16] (Microsoft Windows -> Microsoft Corporation)
Task: {B866DB88-EA1E-4E5C-89F9-6A9162123C20} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144744 2020-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {B995FA51-4003-41D7-B5E8-DEECC7DE0877} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\3B558032-E1A5-4012-BE68-193C37763BC9\Passport for Work alert created by enrollment client => C:\Windows\system32\deviceenroller.exe [459776 2020-08-16] (Microsoft Windows -> Microsoft Corporation)
Task: {C038C036-4EEA-43EE-8559-150738C76CC0} - System32\Tasks\AMDAutoUpdate => C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe [677624 2019-11-21] (Advanced Micro Devices INC. -> )
Task: {C527FF60-8FF4-4C34-8EC0-7A2A2A03967B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-08-16] (Google LLC -> Google LLC)
Task: {C861B1EC-DAD2-461F-B2D4-0B7977DA062E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22939528 2020-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {CA0FE117-0798-43C6-ACFF-5D70E9A97A5D} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {CC6D841E-1148-42BE-A860-8A834109E08F} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\3B558032-E1A5-4012-BE68-193C37763BC9\PushRenewal => C:\Windows\system32\deviceenroller.exe [459776 2020-08-16] (Microsoft Windows -> Microsoft Corporation)
Task: {CDE164D8-21A3-4BB7-98D3-C2E0A58D7CC4} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\3B558032-E1A5-4012-BE68-193C37763BC9\Schedule to run OMADMClient by server => C:\Windows\system32\omadmclient.exe [434176 2020-09-09] (Microsoft Windows -> Microsoft Corporation)
Task: {CFC9E39A-43ED-466A-B57B-980FC5D2B504} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647656 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D3A055A9-83AE-4540-BCFF-448BE93661ED} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [782320 2019-10-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {DC6E2D14-67EB-4C83-8025-AF166A761A7C} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2020-09-18] (Avast Software s.r.o. -> Avast Software)
Task: {E5A5BC74-A52E-4884-8F16-1FB54AE74530} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4157536 2020-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {ED981591-C8BF-41F4-B02A-B088F1566517} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-08-16] (Google LLC -> Google LLC)
Task: {F00A1733-4DE6-4ED3-8E7A-EC56F9C075A2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\MpCmdRun.exe [541576 2020-11-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FF98B414-E565-40B6-AB33-132FEC6FE957} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\3B558032-E1A5-4012-BE68-193C37763BC9\OS Edition Upgrade event listener created by enrollment client => C:\Windows\system32\deviceenroller.exe [459776 2020-08-16] (Microsoft Windows -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{e6cc046b-8867-4bd0-a6a0-afc076d671ab}: [DhcpNameServer] 192.168.0.1

Edge:
======
Edge Profile: C:\Users\Daniel Nevřivý\AppData\Local\Microsoft\Edge\User Data\Default [2020-11-26]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-09-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-09-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-11-19] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Daniel Nevřivý\AppData\Local\Google\Chrome\User Data\Default [2020-11-26]
CHR DownloadDir: D:\Stažené soubory
CHR Notifications: Default -> hxxps://elnnf.emindeed.top; hxxps://zbcug.emindeed.top
CHR Extension: (Prezentace) - C:\Users\Daniel Nevřivý\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-08-16]
CHR Extension: (Download Button) - C:\Users\Daniel Nevřivý\AppData\Local\Google\Chrome\User Data\Default\Extensions\alakoggmijiicdlcjjeakffojoinhlpg [2020-09-04]
CHR Extension: (Dokumenty) - C:\Users\Daniel Nevřivý\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-08-16]
CHR Extension: (Disk Google) - C:\Users\Daniel Nevřivý\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (YouTube) - C:\Users\Daniel Nevřivý\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-08-16]
CHR Extension: (Tabulky) - C:\Users\Daniel Nevřivý\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-08-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\Daniel Nevřivý\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-12]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\Daniel Nevřivý\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-11-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Daniel Nevřivý\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-08-16]
CHR Extension: (Gmail) - C:\Users\Daniel Nevřivý\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
CHR Extension: (Chrome Media Router) - C:\Users\Daniel Nevřivý\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-26]
CHR Profile: C:\Users\Daniel Nevřivý\AppData\Local\Google\Chrome\User Data\System Profile [2020-11-26]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1046904 2020-03-04] (Autodesk, Inc. -> Autodesk Inc.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [16930616 2019-12-18] (Autodesk, Inc. -> Autodesk)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.38\atkexComSvc.exe [440368 2019-12-11] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [768408 2020-11-26] (ASUSTeK Computer Inc. -> )
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [8454552 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [365648 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [3096160 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [58048 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9057136 2020-11-04] (Microsoft Corporation -> Microsoft Corporation)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1728072 2020-10-01] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6821960 2020-10-01] (GOG Sp. z o.o. -> GOG.com)
S2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [2668136 2019-12-16] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7269976 2020-11-26] (Malwarebytes Inc -> Malwarebytes)
S3 OfficeSvcManagerAddons; C:\Windows\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [21312 2020-10-14] (Microsoft Windows -> Microsoft Corporation)
S3 OfficeSvcManagerAddons; C:\Windows\system32\dllhost.exe /Processid:{2CA2E202-932F-4BA2-8771-195BB86398F5} [21312 2020-10-14] (Microsoft Windows -> Microsoft Corporation)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1453184 2020-08-18] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5101992 2020-11-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13086224 2020-07-20] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\NisSrv.exe [2467088 2020-11-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\MsMpEng.exe [128376 2020-11-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_9cb6a07d60163933\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_9cb6a07d60163933\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [33832 2019-12-11] (ASUSTeK Computer Inc. -> )
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37152 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [206408 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [332368 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [247888 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [97352 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\Windows\System32\drivers\aswElam.sys [16816 2020-11-24] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42784 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [176744 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [521752 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109280 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84856 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851608 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [469832 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [217336 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [326416 2020-11-24] (Avast Software s.r.o. -> AVAST Software)
R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [19968 2019-10-17] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 GLCKIO2; C:\Windows\system32\drivers\GLCKIO2.sys [29368 2019-04-24] (ASUSTeK Computer Inc. -> )
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [220160 2020-11-26] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [19912 2020-11-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-11-26] (Malwarebytes Inc -> Malwarebytes)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [25616 2018-02-12] (MICSYS Technology Co., Ltd. -> )
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [24000 2019-09-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
R3 ViGEmBus; C:\Windows\System32\drivers\ViGEmBus.sys [69168 2019-04-04] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer)
R3 VOICEMOD_Driver; C:\Windows\system32\drivers\vmdrv.sys [49976 2020-09-08] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [48536 2020-11-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [429288 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [71912 2020-11-06] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-11-26 16:51 - 2020-11-26 16:51 - 000000000 ____D C:\FRST
2020-11-26 16:44 - 2020-11-26 16:46 - 000000000 ____D C:\AdwCleaner
2020-11-26 16:36 - 2020-11-26 16:36 - 000002326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-11-26 16:36 - 2020-11-26 16:36 - 000002285 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-11-26 16:36 - 2020-11-26 16:36 - 000000000 ____D C:\Program Files\Google
2020-11-26 16:24 - 2020-11-26 16:23 - 001317080 _____ (Google LLC) C:\Users\Daniel Nevřivý\Desktop\ChromeSetup.exe
2020-11-26 15:55 - 2020-11-26 16:06 - 000000000 ____D C:\Users\Daniel Nevřivý\AppData\LocalLow\IGDump
2020-11-26 15:54 - 2020-11-26 15:54 - 000002036 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-11-26 15:54 - 2020-11-26 15:54 - 000002024 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-11-26 15:54 - 2020-11-26 15:54 - 000000000 ____D C:\Users\Daniel Nevřivý\AppData\Local\mbam
2020-11-26 15:53 - 2020-11-26 15:53 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2020-11-26 15:53 - 2020-11-26 15:53 - 000220160 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2020-11-26 15:53 - 2020-11-26 15:53 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2020-11-26 15:53 - 2020-11-26 15:53 - 000019912 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2020-11-26 15:53 - 2020-11-26 15:53 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-11-26 15:53 - 2020-11-26 15:53 - 000000000 ____D C:\Program Files\Malwarebytes
2020-11-26 13:32 - 2020-11-26 13:33 - 000899934 _____ C:\Users\Daniel Nevřivý\Desktop\CamScanner 11-26-2020 13.30.pdf
2020-11-25 22:09 - 2020-11-25 22:09 - 000058603 _____ C:\Users\Daniel Nevřivý\Desktop\Hydrodyn. př. č.2.xlsx
2020-11-25 19:51 - 2020-11-25 19:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
2020-11-25 19:51 - 2020-11-25 19:51 - 000000000 ____D C:\Program Files\qBittorrent
2020-11-25 17:25 - 2020-11-25 17:25 - 000972888 _____ C:\Users\Daniel Nevřivý\Desktop\OPRAVENO Tenzometrie Nevřivý.pdf
2020-11-25 01:02 - 2020-11-25 01:02 - 001435819 _____ C:\Users\Daniel Nevřivý\Desktop\TISK!! mapa.PDF
2020-11-24 23:30 - 2020-11-24 23:30 - 000205650 _____ C:\Users\Daniel Nevřivý\Desktop\TISK Podélný profil.pdf
2020-11-24 23:25 - 2020-11-24 23:25 - 001065648 _____ C:\Users\Daniel Nevřivý\Desktop\Tenzometrie Nevřivý.pdf
2020-11-24 22:56 - 2020-11-24 22:56 - 000241308 _____ C:\Users\Daniel Nevřivý\Desktop\TISK situace.pdf
2020-11-24 20:49 - 2020-11-24 20:49 - 000280643 _____ C:\Users\Daniel Nevřivý\Desktop\Vytyčovací výkres Nevřivý.pdf
2020-11-24 20:49 - 2020-11-24 20:49 - 000196397 _____ C:\Users\Daniel Nevřivý\Desktop\Vytyčovací výkres Nevřivý.dwfx
2020-11-24 18:01 - 2020-11-24 18:01 - 000339552 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-11-24 18:01 - 2020-11-24 18:01 - 000217336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2020-11-24 17:48 - 2020-11-24 17:48 - 000412340 _____ C:\Users\Daniel Nevřivý\Desktop\Dosoudilová-technická-zpráva.pdf
2020-11-24 17:48 - 2020-11-24 17:48 - 000221572 _____ C:\Users\Daniel Nevřivý\Desktop\Dosoudilová-vytyčovací-výkres-stavby-A4.pdf
2020-11-22 15:57 - 2020-11-22 15:57 - 000001672 _____ C:\Users\Daniel Nevřivý\Desktop\Dark Souls II.lnk
2020-11-22 01:22 - 2020-11-22 01:22 - 000000000 ____D C:\Users\Daniel Nevřivý\AppData\Roaming\Dark Souls Čeština 2.0
2020-11-22 01:22 - 2020-11-22 01:22 - 000000000 ____D C:\ProgramData\Caphyon
2020-11-22 01:21 - 2020-11-22 01:21 - 000000000 ____D C:\Users\Daniel Nevřivý\AppData\Roaming\BonusWeb
2020-11-22 01:08 - 2020-11-22 01:08 - 000000000 ____D C:\Users\Daniel Nevřivý\AppData\Roaming\Steam
2020-11-22 01:08 - 2020-11-22 01:08 - 000000000 ____D C:\Users\Daniel Nevřivý\AppData\Roaming\DarkSoulsII
2020-11-14 23:48 - 2020-11-14 23:48 - 000000000 ____D C:\Users\Daniel Nevřivý\AppData\Local\AdSSO
2020-11-14 23:48 - 2020-11-14 23:48 - 000000000 ____D C:\ProgramData\boost_interprocess
2020-11-14 23:47 - 2020-11-24 18:30 - 000000000 ____D C:\Users\Daniel Nevřivý\Documents\Inventor Server for AutoCAD
2020-11-14 23:47 - 2020-11-14 23:47 - 000002190 _____ C:\Users\Public\Desktop\AutoCAD.lnk
2020-11-14 23:47 - 2020-11-14 23:47 - 000000000 ____D C:\Users\Daniel Nevřivý\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Autodesk
2020-11-14 23:47 - 2020-11-14 23:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoCAD 2021 – Čeština (Czech)
2020-11-14 23:46 - 2020-11-14 23:48 - 000000000 ____D C:\Users\Daniel Nevřivý\AppData\Local\Autodesk
2020-11-14 23:46 - 2020-11-14 23:47 - 000000000 ____D C:\Program Files\Common Files\Autodesk Shared
2020-11-14 23:46 - 2020-11-14 23:47 - 000000000 ____D C:\Program Files\Autodesk
2020-11-14 23:45 - 2020-11-14 23:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2020-11-14 23:45 - 2020-11-14 23:47 - 000000000 ____D C:\Program Files (x86)\Autodesk
2020-11-14 23:44 - 2020-11-24 18:30 - 000000000 ____D C:\ProgramData\Autodesk
2020-11-14 23:43 - 2020-11-14 23:47 - 000000000 ____D C:\Users\Daniel Nevřivý\AppData\Roaming\Autodesk
2020-11-14 23:43 - 2020-11-14 23:43 - 000000000 ____D C:\Autodesk
2020-11-12 17:31 - 2020-11-12 17:31 - 000000000 ____D C:\Users\Daniel Nevřivý\Documents\NBGI
2020-11-12 17:31 - 2020-11-12 17:31 - 000000000 ____D C:\Users\Daniel Nevřivý\AppData\Local\FromSoftware
2020-11-11 19:23 - 2020-11-11 19:23 - 000363520 _____ C:\Windows\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-11-11 19:23 - 2020-11-11 19:23 - 000266240 _____ C:\Windows\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-11-11 19:23 - 2020-11-11 19:23 - 000197632 _____ C:\Windows\system32\IHDS.dll
2020-11-11 19:23 - 2020-11-11 19:23 - 000152576 _____ C:\Windows\system32\EoAExperiences.exe
2020-11-11 19:23 - 2020-11-11 19:23 - 000009265 _____ C:\Windows\system32\DrtmAuthTxt.wim
2020-11-10 22:50 - 2020-11-10 22:50 - 000000222 _____ C:\Users\Daniel Nevřivý\Desktop\SMITE.url
2020-11-10 11:45 - 2020-11-10 11:45 - 000000000 ____D C:\Users\Daniel Nevřivý\AppData\Roaming\Teams
2020-11-09 22:54 - 2020-11-09 22:54 - 000000000 ____D C:\Users\Daniel Nevřivý\AppData\Roaming\.mono
2020-11-09 22:53 - 2020-11-09 22:53 - 000000000 ____D C:\Users\Daniel Nevřivý\AppData\LocalLow\miHoYo
2020-11-08 01:32 - 2020-11-26 14:49 - 000003512 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-11-08 01:32 - 2020-11-26 14:49 - 000003288 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-11-08 01:32 - 2020-11-25 11:57 - 000002439 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-10-29 17:37 - 2020-10-29 17:37 - 000000718 _____ C:\Users\Public\Desktop\Genshin Impact.lnk
2020-10-29 17:37 - 2020-10-29 17:37 - 000000000 ____D C:\Users\Daniel Nevřivý\AppData\Local\miHoYo
2020-10-29 17:37 - 2020-10-29 17:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Genshin Impact

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-11-26 16:49 - 2020-08-16 22:28 - 000000000 ____D C:\ProgramData\NVIDIA
2020-11-26 16:49 - 2020-08-16 16:50 - 000000000 ____D C:\Program Files\CCleaner
2020-11-26 16:48 - 2020-08-16 18:19 - 000000000 ____D C:\Users\Daniel Nevřivý\AppData\Roaming\qBittorrent
2020-11-26 16:47 - 2020-08-16 21:52 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-11-26 16:47 - 2020-08-16 21:51 - 000807280 _____ C:\Windows\system32\wpbbin.exe
2020-11-26 16:47 - 2020-08-16 21:51 - 000768408 _____ C:\Windows\system32\AsusUpdateCheck.exe
2020-11-26 16:47 - 2020-08-16 21:51 - 000008192 ___SH C:\DumpStack.log.tmp
2020-11-26 16:47 - 2020-08-16 16:45 - 000000000 ____D C:\ProgramData\Avast Software
2020-11-26 16:47 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-11-26 16:47 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2020-11-26 16:46 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2020-11-26 16:45 - 2020-08-17 14:16 - 000000000 ____D C:\Users\Daniel Nevřivý\AppData\Local\CrashDumps
2020-11-26 16:44 - 2020-08-16 21:59 - 001693568 _____ C:\Windows\system32\PerfStringBackup.INI
2020-11-26 16:44 - 2019-12-07 15:43 - 000716874 _____ C:\Windows\system32\perfh005.dat
2020-11-26 16:44 - 2019-12-07 15:43 - 000145052 _____ C:\Windows\system32\perfc005.dat
2020-11-26 16:37 - 2020-08-16 19:33 - 000002107 _____ C:\CosairDram.txt
2020-11-26 16:36 - 2020-09-06 14:29 - 000003160 _____ C:\Windows\system32\Tasks\MSIAfterburner
2020-11-26 16:35 - 2020-08-16 16:30 - 000000000 ____D C:\Users\Daniel Nevřivý\AppData\Local\Google
2020-11-26 16:25 - 2020-08-16 16:30 - 000000000 ____D C:\Program Files (x86)\Google
2020-11-26 15:53 - 2019-12-07 10:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2020-11-26 15:01 - 2020-08-16 21:51 - 000544288 _____ C:\Windows\system32\FNTCACHE.DAT
2020-11-26 14:49 - 2020-08-19 10:14 - 000003482 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2020-11-26 14:49 - 2020-08-16 22:28 - 000003398 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-26 14:49 - 2020-08-16 22:28 - 000003196 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-26 14:49 - 2020-08-16 22:28 - 000003152 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-26 14:49 - 2020-08-16 22:28 - 000002984 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-26 14:49 - 2020-08-16 22:28 - 000002948 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-26 14:49 - 2020-08-16 22:28 - 000002948 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-26 14:49 - 2020-08-16 22:28 - 000002948 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-26 14:49 - 2020-08-16 22:28 - 000002948 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-26 14:49 - 2020-08-16 22:28 - 000002914 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-26 14:49 - 2020-08-16 22:28 - 000002744 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-11-26 14:49 - 2020-08-16 22:20 - 000002600 _____ C:\Windows\system32\Tasks\AMDAutoUpdate
2020-11-26 14:49 - 2020-08-16 21:56 - 000002862 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4010863294-2269449235-3349940814-1001
2020-11-26 14:49 - 2020-08-16 16:50 - 000002988 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-11-26 14:49 - 2020-08-16 16:50 - 000002238 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-11-26 14:49 - 2020-08-16 16:46 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2020-11-26 14:49 - 2020-08-16 16:30 - 000003400 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-11-26 14:49 - 2020-08-16 16:30 - 000003176 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-11-26 13:03 - 2020-08-16 21:51 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-11-25 22:22 - 2020-08-16 21:55 - 000000000 ____D C:\Users\Daniel Nevřivý\AppData\Local\Packages
2020-11-25 22:13 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2020-11-25 12:00 - 2020-08-22 13:30 - 000000000 ____D C:\Windows\Minidump
2020-11-25 12:00 - 2020-08-16 22:51 - 000000000 ____D C:\Windows\Panther
2020-11-25 12:00 - 2020-08-16 16:30 - 000000000 ____D C:\Program Files (x86)\Steam
2020-11-25 11:57 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-11-25 01:15 - 2020-08-19 10:14 - 000002139 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-11-24 18:01 - 2020-10-24 14:59 - 000176744 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2020-11-24 18:01 - 2020-08-16 16:46 - 000851608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2020-11-24 18:01 - 2020-08-16 16:46 - 000521752 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2020-11-24 18:01 - 2020-08-16 16:46 - 000469832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2020-11-24 18:01 - 2020-08-16 16:46 - 000332368 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2020-11-24 18:01 - 2020-08-16 16:46 - 000326416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2020-11-24 18:01 - 2020-08-16 16:46 - 000247888 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2020-11-24 18:01 - 2020-08-16 16:46 - 000206408 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2020-11-24 18:01 - 2020-08-16 16:46 - 000109280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2020-11-24 18:01 - 2020-08-16 16:46 - 000097352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2020-11-24 18:01 - 2020-08-16 16:46 - 000084856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2020-11-24 18:01 - 2020-08-16 16:46 - 000042784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2020-11-24 18:01 - 2020-08-16 16:46 - 000037152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2020-11-24 18:01 - 2020-08-16 16:46 - 000016816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswElam.sys
2020-11-24 18:01 - 2020-08-16 16:46 - 000003990 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-11-23 15:44 - 2020-08-16 18:32 - 000000000 ___RD C:\Users\Daniel Nevřivý\Desktop\Danin
2020-11-22 13:37 - 2020-09-06 10:20 - 000002416 _____ C:\Users\Daniel Nevřivý\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2020-11-20 00:30 - 2020-08-16 16:34 - 000000000 ____D C:\Users\Daniel Nevřivý\AppData\Roaming\discord
2020-11-18 21:09 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Registration
2020-11-14 23:48 - 2020-08-16 22:24 - 000000000 ____D C:\Users\Daniel Nevřivý\AppData\Local\D3DSCache
2020-11-14 23:44 - 2020-08-16 22:17 - 000000000 ____D C:\ProgramData\Package Cache
2020-11-14 20:34 - 2020-09-05 16:38 - 000000000 ____D C:\Program Files\Microsoft Office
2020-11-13 11:12 - 2020-08-16 16:43 - 000000000 ____D C:\Windows\system32\MRT
2020-11-13 11:10 - 2020-08-16 16:43 - 133736600 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-11-12 00:52 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2020-11-12 00:52 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2020-11-12 00:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2020-11-12 00:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2020-11-12 00:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2020-11-12 00:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup
2020-11-12 00:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2020-11-12 00:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\migwiz
2020-11-12 00:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellExperiences
2020-11-12 00:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2020-11-12 00:52 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2020-11-11 19:25 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2020-11-11 19:23 - 2020-08-16 21:55 - 002876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2020-11-09 00:44 - 2020-08-16 21:54 - 000000000 ____D C:\Users\Daniel Nevřivý
2020-11-08 16:34 - 2020-09-19 16:48 - 000000000 ____D C:\ProgramData\Voicemod
2020-11-08 14:34 - 2020-09-19 16:48 - 000000000 ____D C:\Users\Daniel Nevřivý\AppData\Local\Voicemod
2020-11-08 14:34 - 2020-09-19 16:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Voicemod
2020-11-08 14:34 - 2020-09-19 16:48 - 000000000 ____D C:\Program Files\Voicemod Desktop
2020-11-07 19:05 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\LiveKernelReports
2020-11-06 10:41 - 2020-08-16 21:52 - 000000000 ____D C:\Windows\system32\Drivers\wd
2020-11-01 21:16 - 2020-08-16 19:16 - 000000000 ____D C:\ProgramData\Riot Games
2020-11-01 16:35 - 2020-08-16 17:07 - 000000000 ____D C:\Users\Daniel Nevřivý\AppData\Local\NVIDIA Corporation
2020-11-01 11:30 - 2020-09-06 13:57 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2020-11-01 11:30 - 2020-09-06 13:57 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2020-10-31 19:34 - 2020-08-16 16:46 - 000795000 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2020-10-29 10:36 - 2020-08-16 21:56 - 000000000 ___RD C:\Users\Daniel Nevřivý\OneDrive
2020-10-29 10:36 - 2020-08-16 21:54 - 000002395 _____ C:\Users\Daniel Nevřivý\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk

==================== Files in the root of some directories ========

2020-11-02 23:32 - 2020-11-24 15:56 - 000000330 _____ () C:\Users\Daniel Nevřivý\AppData\Roaming\debug.log
2020-08-19 11:04 - 2020-08-19 12:55 - 000005357 _____ () C:\Users\Daniel Nevřivý\AppData\Roaming\SpeedRunnersLog.txt
2020-10-11 21:45 - 2020-10-11 21:55 - 000000081 _____ () C:\Users\Daniel Nevřivý\AppData\Local\.bidstack.fault

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Addition:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 25-11-2020
Ran by Daniel Nevřivý (26-11-2020 16:53:03)
Running from D:\Stažené soubory
Windows 10 Pro Version 2004 19041.630 (X64) (2020-08-16 20:53:38)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-4010863294-2269449235-3349940814-500 - Administrator - Disabled)
Daniel Nevřivý (S-1-5-21-4010863294-2269449235-3349940814-1001 - Administrator - Enabled) => C:\Users\Daniel Nevřivý
DefaultAccount (S-1-5-21-4010863294-2269449235-3349940814-503 - Limited - Disabled)
Guest (S-1-5-21-4010863294-2269449235-3349940814-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-4010863294-2269449235-3349940814-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ACA & MEP 2021 Object Enabler (HKLM\...\{28B89EEF-4104-0000-5102-CF3F3A09B77D}) (Version: 8.3.51.0 - Autodesk) Hidden
ACAD Private (HKLM\...\{28B89EEF-4101-0000-3102-CF3F3A09B77D}) (Version: 24.0.47.0 - Autodesk) Hidden
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.013.20066 - Adobe Systems Incorporated)
Aktualizace NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 2.07.14.327 - Advanced Micro Devices, Inc.)
AMD Ryzen Master (HKLM\...\AMD Ryzen Master) (Version: 2.3.0.1591 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{07585caf-a143-476e-ab31-0e026584239d}) (Version: 2.07.14.327 - Advanced Micro Devices, Inc.) Hidden
ASUS AIOFan HAL (HKLM\...\{EAE80DED-1A39-41C5-9F60-87CC947F6454}) (Version: 1.0.19 - ASUSTek COMPUTER INC.) Hidden
ASUS AIOFan HAL (HKLM-x32\...\{1b15ca41-2671-4685-ab55-b8c814c4942a}) (Version: 1.0.19 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Display Component (HKLM\...\{AFD1CF98-FE97-434C-A095-9F27C5BEA53C}) (Version: 1.1.25 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA Display Component (HKLM-x32\...\{94267bd0-fa8a-4aa4-925d-ec3e0d130fba}) (Version: 1.1.25 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA Extension Card HAL (HKLM\...\{2C39FF80-1BB2-42C5-A58D-DC90EFF048F6}) (Version: 1.0.16 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM-x32\...\{e46f527f-1e64-4554-abc1-115f3429c25c}) (Version: 1.0.16 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Headset Component (HKLM\...\{A3C4120D-8096-4307-91A2-FFE37EBD5A3D}) (Version: 1.02.12 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Headset Component (HKLM-x32\...\{b96dabae-c7ef-45f2-95ab-1a4d917262a3}) (Version: 1.02.12 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM\...\{D800D836-DE15-4B00-8273-521F022CD837}) (Version: 1.0.58 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM-x32\...\{d00daf18-4c78-4fc6-bb05-376a06c79c48}) (Version: 1.0.58 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Odd Component (HKLM\...\{B5E322FB-C191-463E-BDDD-4F22290EDFDB}) (Version: 1.0.8 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Odd Component (HKLM-x32\...\{277875e0-972c-4705-b09c-ca5acf5b2f7c}) (Version: 1.0.8 - ASUSTeK COMPUTER INC.) Hidden
ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.03.45 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA VGA Component (HKLM\...\{71BB96A6-EAC4-45AE-A17D-D3ED43FF1D14}) (Version: 0.0.2.3 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA VGA Component (HKLM-x32\...\{2977b6c2-6523-42f4-8f52-bf4f7fc7a840}) (Version: 0.0.2.3 - ASUSTek COMPUTER INC. ) Hidden
ASUS GLCKIO2 Driver (HKLM-x32\...\{3507c756-a80f-4b0e-8475-975d8b432176}) (Version: 1.0.20 - ASUSTeK Computer Inc.) Hidden
ASUS GLCKIO2 Driver (HKLM-x32\...\{5960FD0F-BB3B-49AF-B175-F77DC91E995A}) (Version: 1.0.20 - ASUSTeK Computer Inc.) Hidden
ASUS Keyboard HAL (HKLM\...\{0FA0CDEE-5DC8-421E-A97D-C74FA6E66FC3}) (Version: 1.0.50 - ASUSTek COMPUTER INC.) Hidden
ASUS Keyboard HAL (HKLM-x32\...\{52400cff-4628-4ca3-a922-3767b198c1fd}) (Version: 1.0.50 - ASUSTek COMPUTER INC.) Hidden
ASUS MB Peripheral Products (HKLM\...\{BFED9861-7D96-4528-89F1-B090ABBF11A7}) (Version: 1.0.32 - ASUSTeK Computer Inc.) Hidden
ASUS MB Peripheral Products (HKLM-x32\...\{243ceb39-3b77-43ab-9135-fddab4ac7caf}) (Version: 1.0.32 - ASUSTeK Computer Inc.) Hidden
ASUS Mouse HAL (HKLM\...\{1838F91B-D481-45AA-B92F-071C62D0A19A}) (Version: 1.0.53 - ASUSTek COMPUTER INC.) Hidden
ASUS Mouse HAL (HKLM-x32\...\{3dcded5b-10da-4d98-9c1f-c33d25288ebd}) (Version: 1.0.53 - ASUSTek COMPUTER INC.) Hidden
ASUS MousePad HAL (HKLM\...\{723B40A4-5BF2-4DC6-834A-2ADF75F3CF7E}) (Version: 1.0.1.2 - ASUSTek COMPUTER INC.) Hidden
ASUS MousePad HAL (HKLM-x32\...\{0ebcd5fb-7bf9-45b4-a0b6-0932d728e289}) (Version: 1.0.1.2 - ASUSTek COMPUTER INC.) Hidden
AURA (HKLM-x32\...\{5899CD4F-8764-4303-A0D9-C60A62CFC24F}) (Version: 1.07.79 - ASUSTeK Computer Inc.)
AURA DRAM Component (HKLM\...\{3881F403-B6B7-4D2F-BDAC-7901EB677F52}) (Version: 1.0.37 - ASUS) Hidden
AURA DRAM Component (HKLM-x32\...\{60d8d6b5-0ec5-420a-a407-a42e19346d46}) (Version: 1.0.37 - ASUS) Hidden
AURA Service (HKLM-x32\...\{0E536061-3B55-4D45-BF58-0BDA261C94B0}) (Version: 3.03.79 - ASUSTeK Computer Inc.) Hidden
AURA Service (HKLM-x32\...\{880f3eb6-28fe-4c63-875f-c6fb491fc334}) (Version: 3.03.79 - ASUSTeK Computer Inc.)
AutoCAD 2021 – Čeština (Czech) (HKLM\...\{28B89EEF-4101-0405-2102-CF3F3A09B77D}) (Version: 24.0.47.0 - Autodesk) Hidden
AutoCAD 2021 (HKLM\...\{28B89EEF-4101-0000-0102-CF3F3A09B77D}) (Version: 24.0.47.0 - Autodesk) Hidden
AutoCAD 2021 Language Pack – Čeština (Czech) (HKLM\...\{28B89EEF-4101-0405-1102-CF3F3A09B77D}) (Version: 24.0.47.0 - Autodesk) Hidden
Autodesk App Manager 2020-2021 (HKLM-x32\...\{DB92FEA7-F78C-469E-B138-E2303220F0C4}) (Version: 3.1.0 - Autodesk)
Autodesk AutoCAD 2021 – Čeština (Czech) (HKLM\...\AutoCAD 2021 – Čeština (Czech)) (Version: 24.0.47.0 - Autodesk)
Autodesk Genuine Service (HKLM-x32\...\{54A00624-3EF9-49A2-92A9-7244EADD0212}) (Version: 3.2.18 - Autodesk)
Autodesk Material Library 2021 (HKLM-x32\...\{6774FD60-7D4B-4D57-BE56-2702A07C9701}) (Version: 19.1.22.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2021 (HKLM-x32\...\{6EFAD582-86C1-4AB2-97C5-2070D0B90E08}) (Version: 19.1.22.0 - Autodesk)
Autodesk Single Sign On Component (HKLM\...\{951BB060-1350-4C93-BD83-D966C51D4005}) (Version: 11.2.0.1802 - Autodesk)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.9.2437 - Avast Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.74 - Piriform)
Corsair AURA DRAM Component (HKLM\...\{376E0869-A4F1-4DC7-A1FD-EBF3AFFEB832}) (Version: 1.0.13 - CORSAIR COMPONENTS INC.) Hidden
Corsair AURA DRAM Component (HKLM-x32\...\{8fce5ea9-d56f-4f89-a363-830eceb72c72}) (Version: 1.0.13 - CORSAIR COMPONENTS INC.) Hidden
Dark Souls Čeština 2.0 (HKLM-x32\...\Dark Souls Čeština 2.0 2.0.0) (Version: 2.0.0 - BonusWeb)
Discord (HKU\S-1-5-21-4010863294-2269449235-3349940814-1001\...\Discord) (Version: 0.0.308 - Discord Inc.)
eFootball PES 2021 (HKLM-x32\...\{0A896ED2-FA9C-44BE-875F-559CE4C8780E}_is1) (Version: - KONAMI)
ENE IO Driver (HKLM-x32\...\{D0512FFD-6194-4D2E-967E-25B82A3322FF}) (Version: 3.0.0 - ENE TECHNOLOGY INC.) Hidden
ENE RGB HAL (HKLM\...\{BBEB79B8-472B-44E6-B0BA-157909EFE7D6}) (Version: 1.00.12 - Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32\...\{e0fa04a3-0593-40a3-8eea-c45cf5d09062}) (Version: 1.00.12 - Ene Tech.) Hidden
ENE_DRAM_RGB_AURA42 (HKLM\...\{BC5E0A82-C638-44CB-8129-20C8ED70DE7A}) (Version: 1.00.02 - Ene Tech.) Hidden
ENE_DRAM_RGB_AURA42 (HKLM-x32\...\{f3d7fb09-b93f-4c01-a765-0b0adc5bc746}) (Version: 1.00.02 - Ene Tech.) Hidden
ENE_EHD_ASM_HAL (HKLM\...\{CB19FBA3-7A4F-4D2A-A231-F580B5DCD203}) (Version: 1.00.05 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_ASM_HAL (HKLM-x32\...\{3532d794-73d7-42bd-af02-9f00623dd567}) (Version: 1.00.05 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{455E34DD-5F26-431E-B542-72F73A8FEED8}) (Version: 1.00.02 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{24a265a5-9f90-4090-904f-5ed9fa4414b8}) (Version: 1.00.02 - ENE TECHNOLOGY INC.) Hidden
Epic Games Launcher (HKLM-x32\...\{0EE6DDEF-E36B-45EB-9E03-5A266EC8A8F8}) (Version: 1.1.279.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
GALAX GAMER RGB (HKLM\...\{06A16AA8-BBA7-4362-962E-16651962D87C}) (Version: 1.00.02 - Galaxy Microsystems Ltd.) Hidden
GALAX GAMER RGB (HKLM-x32\...\{1257fdeb-ffa3-4e17-9d4b-189075ea3656}) (Version: 1.00.02 - Galaxy Microsystems Ltd.)
Genshin Impact (HKLM\...\Genshin Impact) (Version: 2.4.1.0 - miHoYo Co.,Ltd)
GeoGebra Classic (HKU\S-1-5-21-4010863294-2269449235-3349940814-1001\...\GeoGebra_6) (Version: 6.0.603 - International GeoGebra Institute)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.66 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 - Google LLC) Hidden
HandBrake 1.3.3 (HKLM-x32\...\HandBrake) (Version: 1.3.3 - )
Heroes of Might and Magic 4 Complete (HKLM-x32\...\GOGPACKHOMM4COMPLETE_is1) (Version: 2.0.0.12 - GOG.com)
Heroes of Might and Magic V - Tribes of the East (HKLM-x32\...\1207661193_is1) (Version: 2.1.0.24 - GOG.com)
Heroes of Might and Magic V with Hammers of Fate (HKLM-x32\...\1207661143_is1) (Version: 2.1.0.22 - GOG.com)
JoyToKey version 6.5 (HKLM-x32\...\{EBF21C82-423E-49FD-BCBD-88C08397CB44}_is1) (Version: 6.5 - JTK software)
Kingston AURA DRAM Component (HKLM\...\{6D2D2DAF-BFE4-45A6-BF40-8A9F7FF54F42}) (Version: 1.0.20 - KINGSTON COMPONENTS INC.) Hidden
Kingston AURA DRAM Component (HKLM-x32\...\{c0c65c06-e79e-44b5-bd66-85099364afeb}) (Version: 1.0.20 - KINGSTON COMPONENTS INC.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKU\S-1-5-21-4010863294-2269449235-3349940814-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Mafia - Definitve Edition (HKLM-x32\...\{D383B15E-3CE1-4B7F-8E88-F93D39BB2E5C}_is1) (Version: - hangar 13)
Malwarebytes version 4.2.3.96 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.2.3.96 - Malwarebytes)
Microsoft 365 Apps pro velké organizace - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.13328.20356 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.47 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.137.99 - )
Microsoft OneDrive (HKU\S-1-5-21-4010863294-2269449235-3349940814-1001\...\OneDriveSetup.exe) (Version: 20.169.0823.0008 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-4010863294-2269449235-3349940814-1001\...\Teams) (Version: 1.3.00.30866 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Minecraft Launcher (HKLM-x32\...\{F6678473-0198-46D0-A88F-2A247E6FA03C}) (Version: 1.0.0.0 - Mojang)
MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.27 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.4.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.4.14 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.35 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 456.55 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 456.55 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NvModuleTracker (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Version: 6.14.24033.38719 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.13328.20340 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.13328.20340 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.13328.20340 - Microsoft Corporation) Hidden
Patriot Viper M2 SSD RGB (HKLM\...\{0886A906-0625-4A43-930D-AA92F6665AF4}) (Version: 1.00.04 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{ebb7013c-0b03-497c-bed1-1e48e806a593}) (Version: 1.00.04 - Patriot Memory)
Patriot Viper RGB (HKLM\...\{E42E13B0-071E-49C1-B1CC-58198E82F302}) (Version: 1.00.08 - Patriot Memory) Hidden
Patriot Viper RGB (HKLM-x32\...\{4b7bfeff-ac47-46c1-aea6-4556f5f0e6bb}) (Version: 1.00.08 - Patriot Memory)
Planet Coaster version 1.3.6.45104 (HKLM\...\Planet Coaster_is1) (Version: 1.3.6.45104 - STEAMPUNKS)
Planet Zoo (HKLM-x32\...\Planet Zoo_is1) (Version: - )
Počítačová aplikace Autodesk (HKLM-x32\...\Autodesk Desktop App) (Version: 8.0.0.46 - Autodesk)
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 2.0.1.0 - Advanced Micro Devices, Inc.) Hidden
qBittorrent 4.3.1 (HKLM-x32\...\qBittorrent) (Version: 4.3.1 - The qBittorrent project)
RivaTuner Statistics Server 7.2.3 (HKLM-x32\...\RTSS) (Version: 7.2.3 - Unwinder)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.27.272 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.6.5 - Rockstar Games)
Speciální aplikace Autodesk 2020-2021 (HKLM-x32\...\{2CBD494D-0A3E-4CB3-AFB3-8CE1734613B0}) (Version: 3.1.0 - Autodesk)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stremio (HKU\S-1-5-21-4010863294-2269449235-3349940814-1001\...\Stremio) (Version: 4.4.120 - Smart Code Ltd)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.3.0.13565 - Microsoft Corporation)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.8.3 - TeamViewer)
Uložit do služby Autodesk Web and Mobile (HKLM\...\{A9005AC0-4AD8-4E84-B1F7-EE38BB6BCC2D}) (Version: 3.0.26 - Autodesk)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
Voicemod (HKLM\...\{8435A407-F778-4647-9CDB-46E5EC50BAD0}_is1) (Version: 2.1.3.2 - Voicemod S.L.)
WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
Wraith Prism Settings software (HKLM-x32\...\{1A3E3EA7-5A7C-4292-8A13-B0DE1BF49E13}_COOLER_MASTER_SR4) (Version: 1.18 - AMD Wraith)

Packages:
=========
ASUS Grid (Beta) -> C:\Program Files\WindowsApps\B9ECED6F.133F79A42C6_1.0.14.0_x64__qmba6cd70vzyy [2020-08-16] (ASUSTeK COMPUTER INC.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_121.1.193.0_x64__v10z8vjag6ke6 [2020-11-03] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-08-16] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-08-16] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2020-10-25] (Microsoft Studios) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.958.0_x64__56jybvy8sckqj [2020-08-16] (NVIDIA Corp.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.146.916.0_x86__zpdnekdrzrea0 [2020-11-17] (Spotify AB) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-4010863294-2269449235-3349940814-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Daniel Nevřivý\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20275.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4010863294-2269449235-3349940814-1001_Classes\CLSID\{345D3165-3889-4694-AB75-A91A27B217E8}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2021\acad.exe (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-4010863294-2269449235-3349940814-1001_Classes\CLSID\{8B4929F8-076F-4AEC-AFEE-8928747B7AE3}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2021\acad.exe (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-4010863294-2269449235-3349940814-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2021\cs-CZ\acadficn.dll (Autodesk Asia Pte. Ltd. -> Autodesk, Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-11-24] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2020-01-22] (Autodesk, Inc. -> Autodesk, Inc.)
ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2020-01-22] (Autodesk, Inc. -> Autodesk)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-11-24] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-11-24] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-11-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_9cb6a07d60163933\nvshext.dll [2020-09-25] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2020-11-24] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-11-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2020-08-16 19:45 - 2018-03-11 13:13 - 000082944 _____ () [File not signed] C:\Program Files (x86)\AMD Wraith\Wraith Prism\HidDevice.dll
2019-10-26 12:04 - 2019-10-26 12:04 - 000232960 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTCore.dll
2019-10-26 12:03 - 2019-10-26 12:03 - 000057344 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTFC.dll
2019-10-26 12:04 - 2019-10-26 12:04 - 000650240 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTHAL.dll
2019-10-26 12:03 - 2019-10-26 12:03 - 000074240 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTMUI.dll
2019-10-26 12:03 - 2019-10-26 12:03 - 000369664 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTUI.dll
2019-09-09 15:29 - 2019-09-09 15:29 - 000057344 _____ () [File not signed] C:\Program Files (x86)\RivaTuner Statistics Server\RTFC.dll
2019-09-09 15:30 - 2019-09-09 15:30 - 000074240 _____ () [File not signed] C:\Program Files (x86)\RivaTuner Statistics Server\RTMUI.dll
2019-09-09 15:30 - 2019-09-09 15:30 - 000368640 _____ () [File not signed] C:\Program Files (x86)\RivaTuner Statistics Server\RTUI.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-4010863294-2269449235-3349940814-1001\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1"

==================== Internet Explorer (Whitelisted) ==========

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2020-09-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-09-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-10-31] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-4010863294-2269449235-3349940814-1001\...\sharepoint.com -> hxxps://vutbr-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4010863294-2269449235-3349940814-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Daniel Nevřivý\Desktop\Danin\Obrázky\Wallpapers\nklngisdmdi51.png
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKU\S-1-5-21-4010863294-2269449235-3349940814-1001\...\StartupApproved\Run: => "OneDrive"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{B26E447C-DDD5-4760-9E15-77D530619A66}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FCD9DD6E-24C2-4F85-9A99-4D72DD8FBD90}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{DC7C6804-F898-4081-8D85-6610EC116114}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{CA6177F9-EB4D-4932-8B85-B329B1E50EAE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{F3C012D1-C7B7-42FE-8B1B-555005C14C06}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{48DE8DE5-7784-497B-A8FC-8649F5EEE64A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{9061AFC3-01F2-4B0B-A01F-A2CD5CE1A355}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{40C3F13E-ADE1-439C-8A23-0543F3DB739A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{66A61F36-230E-45E0-B52C-D82012C96050}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{50B84EBF-3381-43CD-AFE4-F6280F1E3753}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{76E19C33-69D2-4553-8A45-D167C397AA6B}C:\program files\qbittorrent\qbittorrent.exe] => (Allow) C:\program files\qbittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [UDP Query User{124EDCCF-19FA-40C8-893A-52EE541DB261}C:\program files\qbittorrent\qbittorrent.exe] => (Allow) C:\program files\qbittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{962BAF76-0F4C-4634-9346-C3F44F391404}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{1EEB0820-8F70-4B21-8BB9-DF621F4C3C27}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [TCP Query User{A07BC76A-DF7F-4A77-B757-DD5ED96938C4}F:\games\might and magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe] => (Allow) F:\games\might and magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe => No File
FirewallRules: [UDP Query User{FF5E54D1-6146-4B17-A183-CD5D583702C8}F:\games\might and magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe] => (Allow) F:\games\might and magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe => No File
FirewallRules: [TCP Query User{CC0B90B5-2B1D-49F3-B2AB-BCA826DC0702}F:\games\star wars\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Allow) F:\games\star wars\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe => No File
FirewallRules: [UDP Query User{F3B6853F-14D9-407B-B76E-0772FA9A10E0}F:\games\star wars\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Allow) F:\games\star wars\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe => No File
FirewallRules: [TCP Query User{3FDB7D5C-B7C8-4B31-BD9D-B5AE14171755}F:\games\crash the insane trilogy\crash bandicoot n sane trilogy\crashbandicootnsanetrilogy.exe] => (Allow) F:\games\crash the insane trilogy\crash bandicoot n sane trilogy\crashbandicootnsanetrilogy.exe => No File
FirewallRules: [UDP Query User{C1F7D615-42AD-48B0-B5B8-D99ECD90BDB9}F:\games\crash the insane trilogy\crash bandicoot n sane trilogy\crashbandicootnsanetrilogy.exe] => (Allow) F:\games\crash the insane trilogy\crash bandicoot n sane trilogy\crashbandicootnsanetrilogy.exe => No File
FirewallRules: [TCP Query User{E350AEA1-83D6-48EB-BB66-3C49B151AD2C}C:\program files\epic games\gtav\gta5.exe] => (Allow) C:\program files\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{CD18C04B-B1F3-4695-90D5-4D92C390BECD}C:\program files\epic games\gtav\gta5.exe] => (Allow) C:\program files\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{E34E4D5E-E5AF-48B1-A2F8-DD4B7607F011}C:\program files\epic games\theescapists2\theescapists2.exe] => (Allow) C:\program files\epic games\theescapists2\theescapists2.exe () [File not signed]
FirewallRules: [UDP Query User{7487E0C0-F85E-4945-A79E-92159883C591}C:\program files\epic games\theescapists2\theescapists2.exe] => (Allow) C:\program files\epic games\theescapists2\theescapists2.exe () [File not signed]
FirewallRules: [{3E51E1CF-352C-4A5E-824B-3B76A17948A4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{50AC4BB2-E1AE-4DF5-B796-E2D264480B3F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{99DF548B-6ABC-45D5-BB3A-1B46567F5164}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2AA0D0B5-F920-4425-8502-75874D9054EE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9AA81047-9CD2-4C7E-B0AA-62ADC36809A4}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6B093B4A-DDEF-46B3-B4CF-C4D8BC22A7B6}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{965A7F57-94F9-489B-A5CC-2CE19C8C0F7F}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4904A110-E551-454B-BF4C-BF3579C0060D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{EEB3E702-4CD5-4ACC-819F-DDB80F98A0D5}D:\games\might and magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe] => (Allow) D:\games\might and magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe (Ubisoft, Inc.) [File not signed]
FirewallRules: [UDP Query User{E0C6F051-FAAB-473F-B1BE-1D87FF2FAE28}D:\games\might and magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe] => (Allow) D:\games\might and magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe (Ubisoft, Inc.) [File not signed]
FirewallRules: [TCP Query User{015CA270-2C2D-4CAC-9F20-802AF4FF1F54}D:\games\crash the insane trilogy\crash bandicoot n sane trilogy\crashbandicootnsanetrilogy.exe] => (Allow) D:\games\crash the insane trilogy\crash bandicoot n sane trilogy\crashbandicootnsanetrilogy.exe (Activision Publishing Inc -> ) [File not signed]
FirewallRules: [UDP Query User{4EDFE438-AAC9-41D4-AE6B-5E23765DB357}D:\games\crash the insane trilogy\crash bandicoot n sane trilogy\crashbandicootnsanetrilogy.exe] => (Allow) D:\games\crash the insane trilogy\crash bandicoot n sane trilogy\crashbandicootnsanetrilogy.exe (Activision Publishing Inc -> ) [File not signed]
FirewallRules: [{F1F4DCC1-D1B1-4EC1-8251-1EEB3B0A086A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{36DEF9E5-AD87-4CD9-92ED-BE1FA6EEB7D7}C:\users\daniel nevřivý\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\daniel nevřivý\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{598A421C-3B33-4348-9E80-EFDA3A69BE60}C:\users\daniel nevřivý\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\daniel nevřivý\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{08BBB2FB-6E24-4809-B2DF-22649EEDD8C1}C:\games\planet zoo\planetzoo.exe] => (Allow) C:\games\planet zoo\planetzoo.exe (Frontier Developments) [File not signed]
FirewallRules: [UDP Query User{5775A555-104F-4D76-86EF-D5C95D3E1870}C:\games\planet zoo\planetzoo.exe] => (Allow) C:\games\planet zoo\planetzoo.exe (Frontier Developments) [File not signed]
FirewallRules: [{D9734615-854C-4AE3-A43F-7B955504CB9E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{D67F4C84-50EA-4F0B-A5F0-88559291285C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{A7982BDE-E8E3-4A27-9A95-A6936371CA8A}C:\users\daniel nevřivý\appdata\local\programs\lnv\stremio-4\node.exe] => (Allow) C:\users\daniel nevřivý\appdata\local\programs\lnv\stremio-4\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [UDP Query User{52E0A16F-0FFB-4C80-8277-488A721ED3F5}C:\users\daniel nevřivý\appdata\local\programs\lnv\stremio-4\node.exe] => (Allow) C:\users\daniel nevřivý\appdata\local\programs\lnv\stremio-4\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [TCP Query User{2FCA50A4-F7AA-4C09-977B-33AC0109CC3B}D:\games\efootball pes 2021\pes2021.exe] => (Allow) D:\games\efootball pes 2021\pes2021.exe (Konami Digital Entertainment Co., Ltd.) [File not signed]
FirewallRules: [UDP Query User{C3E95308-48A7-445B-8EE7-D7260E367FC0}D:\games\efootball pes 2021\pes2021.exe] => (Allow) D:\games\efootball pes 2021\pes2021.exe (Konami Digital Entertainment Co., Ltd.) [File not signed]
FirewallRules: [{AF40EF00-CDEA-4B0B-8FFA-69117441E056}] => (Allow) D:\Games\Steam\steamapps\common\SMITE\Binaries\Win64\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{3CC0AB9E-F9AC-4212-B432-9BFCA554D5E5}] => (Allow) D:\Games\Steam\steamapps\common\SMITE\Binaries\Win64\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{C41FFE4F-C6FD-47B7-8157-BA2D852F15D0}] => (Allow) D:\Games\Steam\steamapps\common\SMITE\Binaries\Win32\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{68EEE473-54C7-4966-BE8A-0D7013B6B86F}] => (Allow) D:\Games\Steam\steamapps\common\SMITE\Binaries\Win32\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{9DC1232D-907F-4102-A2EE-5620316336CE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.146.916.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E2BDA364-8612-4AF2-A550-91DBC6D246BA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.146.916.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{DF82C642-A1BB-4BD4-B9D7-594C529C6321}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.146.916.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{77A44C87-59D9-44B6-99D9-9657095595A6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.146.916.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C20406C1-0E23-40BD-904F-823676646CD7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.146.916.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6BBF565A-5520-4A81-9EAA-F03F79FCD8E3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.146.916.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{59F2FEA4-A943-45DA-9B91-D5890AA988F7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.146.916.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9998D197-4757-4BCC-B386-81AC763F6932}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.146.916.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{420ACD6B-9723-42C2-A7CB-E9CBE4106496}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D2092FFA-B27A-4B7B-8E39-36DB861E9CCC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F4EB2F6B-1CEC-47E4-A6A2-C5F2DF0542CC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{605EAEDB-8CD5-45A2-911A-D5FC9706E5EB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4F0A2DD1-D84C-4858-AF57-A6E3ADE9ED04}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [{3547C919-6FCB-45DA-889F-4A51379A242B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe (Psyonix, LLC) [File not signed]
FirewallRules: [{F7EF0D67-7A2E-499E-9007-728E0E5E799E}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{579AE85A-769A-47B7-B41F-BF981395FB30}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{762693EB-8B0C-4ABE-9986-4B4A7218B52D}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

14-11-2020 23:44:33 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
23-11-2020 15:43:34 Naplánovaný kontrolní bod
26-11-2020 16:25:29 Removed Google Chrome

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (11/26/2020 04:47:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: LightingService.exe, verze: 0.0.0.0, časové razítko: 0x5df6efcc
Název chybujícího modulu: LightingService.exe, verze: 0.0.0.0, časové razítko: 0x5df6efcc
Kód výjimky: 0xc0000005
Posun chyby: 0x00149432
ID chybujícího procesu: 0x11f8
Čas spuštění chybující aplikace: 0x01d6c40b6687ade9
Cesta k chybující aplikaci: C:\Program Files (x86)\LightingService\LightingService.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\LightingService\LightingService.exe
ID zprávy: b96aef7c-82c0-4d28-aed6-509ab372ee72
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (11/26/2020 04:46:43 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (11/26/2020 04:37:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SearchApp.exe, verze: 10.0.19041.546, časové razítko: 0xc404ae05
Název chybujícího modulu: icu.DLL, verze: 64.2.0.0, časové razítko: 0xe81cbb3e
Kód výjimky: 0xc0000006
Posun chyby: 0x0000000000009970
ID chybujícího procesu: 0x10b4
Čas spuštění chybující aplikace: 0x01d6c40a114bae36
Cesta k chybující aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\icu.DLL
ID zprávy: e8e035d1-29f6-4961-aa40-8d7b489fa04e
Úplný název chybujícího balíčku: Microsoft.Windows.Search_1.14.0.19041_neutral_neutral_cw5n1h2txyewy
ID aplikace související s chybujícím balíčkem: CortanaUI

Error: (11/26/2020 04:27:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: LightingService.exe, verze: 0.0.0.0, časové razítko: 0x5df6efcc
Název chybujícího modulu: LightingService.exe, verze: 0.0.0.0, časové razítko: 0x5df6efcc
Kód výjimky: 0xc0000005
Posun chyby: 0x00149432
ID chybujícího procesu: 0x11c8
Čas spuštění chybující aplikace: 0x01d6c408995118c1
Cesta k chybující aplikaci: C:\Program Files (x86)\LightingService\LightingService.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\LightingService\LightingService.exe
ID zprávy: aa7114b0-f1f5-485a-9678-6ae2a5eea77e
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (11/26/2020 04:07:54 PM) (Source: ESENT) (EventID: 454) (User: )
Description: DllHost (10764,U,98) WebPlatStorage: Při pokusu o obnovení nebo zotavení databáze došlo k neočekávané chybě -1022.

Error: (11/26/2020 04:07:54 PM) (Source: ESENT) (EventID: 439) (User: )
Description: DllHost (10764,U,98) WebPlatStorage: Pro soubor C:\Users\Daniel Nevřivý\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AppData\CacheStorage\CacheStorage.edb se nedá zapsat stínové záhlaví. Chyba: -1022

Error: (11/26/2020 04:07:54 PM) (Source: ESENT) (EventID: 482) (User: )
Description: DllHost (10764,U,98) WebPlatStorage: Pokus o zápis do souboru C:\Users\Daniel Nevřivý\AppData\Local\Packages\Microsoft.Windows.Search_cw5n1h2txyewy\AppData\CacheStorage\CacheStorage.edb na posunu 0 (0x0000000000000000) o 32768 (0x00008000) bajtů po 0.024 sekundách selhal. Došlo k systémové chybě 1 (0x00000001): Nesprávná funkce. . Operace zápisu selže a dojde k chybě -1022 (0xfffffc02). Pokud s tím budou dál problémy, může být soubor poškozený a budete ho možná muset obnovit z předchozí zálohy.

Error: (11/26/2020 03:59:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: LightingService.exe, verze: 0.0.0.0, časové razítko: 0x5df6efcc
Název chybujícího modulu: LightingService.exe, verze: 0.0.0.0, časové razítko: 0x5df6efcc
Kód výjimky: 0xc0000005
Posun chyby: 0x00149432
ID chybujícího procesu: 0x11a0
Čas spuštění chybující aplikace: 0x01d6c404be96edd3
Cesta k chybující aplikaci: C:\Program Files (x86)\LightingService\LightingService.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\LightingService\LightingService.exe
ID zprávy: a22ef8cd-499b-4190-85fc-aa1a7ec2baa3
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (11/26/2020 04:47:17 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba LightingService byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (11/26/2020 04:47:14 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.

Error: (11/26/2020 04:46:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA LocalSystem Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.

Error: (11/26/2020 04:46:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Microsoft Office Klikni a spusť byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.

Error: (11/26/2020 04:46:34 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba LightingService byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (11/26/2020 04:46:34 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba ASUS Com Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (11/26/2020 04:46:34 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Autodesk Desktop App Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (11/26/2020 04:46:34 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba FlexNet Licensing Service byla neočekávaně ukončena. Tento stav nastal již 1krát.


Windows Defender:
===================================
Date: 2020-10-18 00:33:33.3660000Z
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=1
Název: Trojan:Win32/Casdet!rfn
ID: 2147727512
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_J:\setup.exe; process:_pid:6284,ProcessStart:132474466384076080; process:_pid:9164,ProcessStart:132474466360022893
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Systém
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: J:\setup.exe
Verze bezpečnostních informací: AV: 1.325.945.0, AS: 1.325.945.0, NIS: 1.325.945.0
Verze modulu: AM: 1.1.17500.4, NIS: 1.1.17500.4

Date: 2020-10-18 20:07:17.6430000Z
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.325.945.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17500.4
Kód chyby: 0x8024001e
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2020-10-17 12:18:14.1050000Z
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.325.904.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17500.4
Kód chyby: 0x80240438
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

CodeIntegrity:
===================================

Date: 2020-11-26 16:53:13.1560000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-11-26 16:52:56.8500000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-11-26 16:52:18.1060000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-11-26 16:52:09.3110000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-11-26 16:52:04.9750000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-11-26 16:51:20.6140000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-11-26 16:51:20.2880000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-11-26 16:51:19.0520000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. 3103 06/17/2020
Motherboard: ASUSTeK COMPUTER INC. ROG STRIX B450-F GAMING
Processor: AMD Ryzen 7 2700X Eight-Core Processor
Percentage of memory in use: 26%
Total physical RAM: 16316.07 MB
Available physical RAM: 11935.94 MB
Total Virtual: 18748.07 MB
Available Virtual: 12312.1 MB

==================== Drives ================================

Drive c: (SSD) (Fixed) (Total:465.15 GB) (Free:185.64 GB) NTFS
Drive d: (HDD) (Fixed) (Total:931.51 GB) (Free:751.59 GB) NTFS

\\?\Volume{04da6cdc-5873-4d00-a7c5-fdebac6887e1}\ () (Fixed) (Total:0.49 GB) (Free:0.08 GB) NTFS
\\?\Volume{f60bdbcb-cadd-4a3e-a7a8-9a803ecd26dc}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: EF93076F)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

[JaRon]

Ahoj,
vyhladaj na disku subor update.bat a Zmaz ho
Restart PC

[Danin]

Sláva, je bez problému, děkuji mnohokrát

[JaRon]

To ma tesi