Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-12-2020
Ran by micha (administrator) on DESKTOP-LVA03BU (Micro-Star International Co., Ltd. MS-7B48) (29-12-2020 21:00:41)
Running from C:\Users\micha\OneDrive\Plocha
Loaded Profiles: micha
Platform: Windows 10 Home Version 20H2 19042.685 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_1e5aa28740c131d2\RstMwService.exe
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\Driver Booster\8.2.0\Scheduler.exe
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <11>
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowsstore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
(NortonLifeLock Inc. -> NortonLifeLock Inc.) C:\Program Files\Norton Security\Engine\22.20.5.40\nsWscSvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.20.5.40\NortonSecurity.exe <2>
(TeamSpeak Systems GmbH -> TeamSpeak Systems GmbH) D:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9277520 2020-04-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\Run: [MicrosoftEdgeAutoLaunch_ED02E366447D09E4F124EF89B233D989] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window /prefetch:5
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe --flag-switches-begin --flag-switches-end --enable-audio-service-sandbox --restore-last-session -- hxxps://accounts.nvgs.nvidia.com/api/1/ (the data entry has 353 more characters).
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\MountPoints2: {1e49444c-489c-11eb-add2-806e6f6e6963} - "E:\autorun.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.88\Installer\chrmstp.exe [2020-12-28] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {02495FF7-AF0E-4CAF-A0B8-B73BAF17AFC8} - System32\Tasks\Norton Security\Norton Security Error Analyzer => C:\Program Files\Norton Security\Engine\22.20.5.40\SymErr.exe [117192 2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {2835BE17-991E-4BA0-916A-BA2CB247AB47} - System32\Tasks\ProtonVPN Update => D:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [61760 2020-10-23] (ProtonVPN AG -> )
Task: {2E7CE70F-B4D1-4A74-97A2-FE7CA27337E5} - System32\Tasks\Avast Software\Overseer => C:\Windows\OEM\CustomizationFiles\Overseer.exe [1741416 2020-12-03] (Avast Software s.r.o. -> Avast Software)
Task: {2F292775-5F16-48E0-B852-F1CBDFECE5A9} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\8.2.0\AutoUpdate.exe [2268432 2020-12-21] (IObit Information Technology -> IObit)
Task: {37D52301-B2DB-48C5-9CB0-45472AB6E374} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {390F9655-5CF1-4673-838C-39C9504DDAE1} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3301176 2020-10-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {44AF991A-38E6-45B4-89AA-824CC42527FA} - System32\Tasks\Norton Security\Norton Security Autofix => C:\Program Files\Norton Security\Engine\22.20.5.40\SymErr.exe [117192 2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {4693C9B5-E42A-40AD-9AF1-32FACA52B7CE} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4783FF20-54DE-43F0-9106-EDFCBFCC7A0A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2020-12-28] (Google Inc -> Google Inc.)
Task: {52C05B9E-DFA9-4404-B489-64F4FBAFB23C} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.20.5.40\WSCStub.exe [644608 2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {5CE9335C-3FBF-4F9D-A886-2235CA6B6331} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe [2162328 2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Task: {6B4ACAAB-8A3A-4418-AD90-ECB959AC5BB4} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {7885547F-10E0-46DD-A2FF-FEB358AC5175} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {825E0027-F44D-43B4-8ADC-539EF2001773} - System32\Tasks\Driver Booster SkipUAC (micha) => C:\Program Files (x86)\IObit\Driver Booster\8.2.0\DriverBooster.exe [8147216 2020-12-23] (IObit Information Technology -> IObit)
Task: {A4F1BD62-B952-4D2C-9431-7489113B0035} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\8.2.0\Scheduler.exe [152848 2020-12-21] (IObit Information Technology -> IObit)
Task: {A6EF7B6D-DA28-4DC9-AF1A-97448DDC1485} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A9545557-AFE7-4D61-A0E2-BF9C02ED8451} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [816960 2017-09-21] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {A9FCF0F3-7F37-44D0-AAE9-D14F81D38C90} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {ABF98DF4-8711-4380-AC57-4B5D7DEC1064} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B40A43F6-4703-4CAA-AB64-591B5EE93E0E} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BF27D920-00BB-48F9-B773-AFCAF15D22D7} - System32\Tasks\Uninstaller_SkipUac_micha => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [6621456 2020-11-30] (IObit Information Technology -> IObit)
Task: {C23DA232-22F9-451F-801C-6ED788B6D3F2} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C2D95CF8-F72E-4445-844A-18AEE67F787D} - System32\Tasks\Norton Security\Norton Security Error Processor => C:\Program Files\Norton Security\Engine\22.20.5.40\SymErr.exe [117192 2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc)
Task: {F346A3C9-E68A-4A57-B092-85F1244801AF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2020-12-28] (Google Inc -> Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{1e1aca64-35a3-4752-aa81-d435d4e5cfc5}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{6152e2c7-c809-4027-b34d-16ca16983613}: [DhcpNameServer] 10.8.0.1
Edge:
======
Edge DefaultProfile: Default
Edge Profile: C:\Users\micha\AppData\Local\Microsoft\Edge\User Data\Default [2020-12-29]
Edge Extension: (Norton Safe Web) - C:\Users\micha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bdaafgjhhjkdplpffldcncdignokfkbo [2020-12-29]
Edge Extension: (Browsing Protection by F-Secure) - C:\Users\micha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjjnhpacphpjmnnlnccpfmhkcloaade [2020-12-28]
Chrome:
=======
CHR Profile: C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default [2020-12-28]
CHR Extension: (Prezentace) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-12-28]
CHR Extension: (Dokumenty) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-12-28]
CHR Extension: (Disk Google) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-12-28]
CHR Extension: (YouTube) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-12-28]
CHR Extension: (Tabulky) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-12-28]
CHR Extension: (Dokumenty Google offline) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-12-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-12-28]
CHR Extension: (Gmail) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-12-28]
CHR Extension: (Chrome Media Router) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-28]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.20.5.40\Exts\Chrome.crx <not found>
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.20.5.40\Exts\Chrome.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2020-07-15] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [287720 2020-10-19] (NVIDIA Corporation -> NVIDIA)
S2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [158992 2020-10-19] (IObit Information Technology -> IObit)
S3 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2333328 2020-05-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [183480 2017-11-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.20.5.40\NortonSecurity.exe [344760 2020-08-01] (Symantec Corporation -> Symantec Corporation)
R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.20.5.40\nsWscSvc.exe [1056096 2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
S3 Origin Client Service; D:\Games\Origin\OriginClientService.exe [2523448 2020-12-28] (Electronic Arts, Inc. -> Electronic Arts)
S3 Origin Web Helper Service; D:\Games\Origin\OriginWebHelperService.exe [3478336 2020-12-28] (Electronic Arts, Inc. -> Electronic Arts)
S3 ProtonVPN Service; D:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe [99136 2020-10-23] (ProtonVPN AG -> )
S3 ProtonVPN Update Service; D:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [61760 2020-10-23] (ProtonVPN AG -> )
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 AdvancedSystemCareService14; "C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe" [X]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.20.5.40\Definitions\BASHDefs\20201215.001\BHDrvx64.sys [1991536 2020-12-15] (Symantec Corporation -> Broadcom)
R1 ccSet_NGC; C:\WINDOWS\System32\drivers\NGCx64\1614050.028\ccSetx64.sys [192248 2020-08-01] (Symantec Corporation -> Symantec Corporation)
S3 cpuz145; C:\WINDOWS\temp\cpuz145\cpuz145_x64.sys [49968 2020-12-29] (CPUID -> CPUID)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [516960 2020-12-27] (Symantec Corporation -> Broadcom)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [154464 2020-12-28] (Symantec Corporation -> Broadcom)
R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.20.5.40\Definitions\IPSDefs\20201228.061\IDSvia64.sys [1478496 2020-12-25] (Symantec Corporation -> Broadcom)
R3 IUFileFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys [43896 2020-07-31] (IObit Information Technology -> IObit)
R3 IUProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys [37112 2020-07-31] (IObit Information Technology -> IObit)
R3 IURegistryFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys [51128 2020-07-31] (IObit Information Technology -> IObit)
S3 ProtonVPNSplitTunnel; D:\Program Files (x86)\Proton Technologies\ProtonVPN\x64\Win10\ProtonVPN.SplitTunnelDriver.sys [31584 2020-08-19] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
S3 spacedeskKtmInputMouse; C:\WINDOWS\System32\drivers\spacedeskKtmInputMouse.sys [35240 2020-08-18] (Datronicsoft, Inc. -> )
R3 SRTSP; C:\WINDOWS\System32\drivers\NGCx64\1614050.028\SRTSP64.SYS [889704 2020-08-01] (Symantec Corporation -> Symantec Corporation)
R1 SRTSPX; C:\WINDOWS\System32\drivers\NGCx64\1614050.028\SRTSPX64.SYS [50920 2020-08-01] (Symantec Corporation -> Symantec Corporation)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NGCx64\1614050.028\SYMEFASI64.SYS [1964384 2020-08-01] (Symantec Corporation -> Symantec Corporation)
S0 SymELAM; C:\WINDOWS\System32\drivers\NGCx64\1614050.028\SymELAM.sys [25080 2020-08-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Broadcom Corporation)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [99912 2020-12-28] (Symantec Corporation -> Symantec Corporation)
R3 SymEvnt; C:\Program Files\Norton Security\NortonData\22.20.5.40\SymPlatform\SymEvnt.sys [712424 2020-07-21] (Symantec Corporation -> Symantec Corporation)
R1 SymIRON; C:\WINDOWS\System32\drivers\NGCx64\1614050.028\Ironx64.SYS [316488 2020-08-01] (Symantec Corporation -> Symantec Corporation)
R1 SymNetS; C:\WINDOWS\System32\drivers\NGCx64\1614050.028\symnets.sys [575328 2020-08-01] (Symantec Corporation -> Symantec Corporation)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2014-11-05] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49008 2020-08-19] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 wpCtrlDrv_NGC; C:\WINDOWS\System32\drivers\NGCx64\1614050.028\wpCtrlDrv.sys [1013792 2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
R2 WtfEngineDrv; C:\WINDOWS\system32\DRIVERS\WtfEngineDrv.sys [27904 2016-02-01] (Initex -> AAA Internet Publishing, Inc.)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-12-29 20:59 - 2020-12-29 21:00 - 000000000 ____D C:\FRST
2020-12-29 20:57 - 2020-12-29 20:57 - 002286592 _____ (Farbar) C:\Users\micha\Downloads\FRST64 (1).exe
2020-12-29 20:43 - 2020-12-29 20:43 - 002286592 _____ (Farbar) C:\Users\micha\Downloads\FRST64.exe
2020-12-29 12:20 - 2020-12-29 12:20 - 000000000 ____D C:\WINDOWS\system32\Tasks\Remediation
2020-12-29 11:21 - 2020-12-29 11:22 - 000000000 ____D C:\ProgramData\ProtonVPN
2020-12-29 11:21 - 2020-12-29 11:21 - 000003770 _____ C:\WINDOWS\system32\Tasks\ProtonVPN Update
2020-12-29 11:21 - 2020-12-29 11:21 - 000000955 _____ C:\ProgramData\Plocha\ProtonVPN.lnk
2020-12-29 11:21 - 2020-12-29 11:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ProtonVPN
2020-12-29 11:20 - 2020-12-29 11:20 - 016245304 _____ (Proton Technologies AG) C:\Users\micha\Downloads\ProtonVPN_win_v1.17.5 (1).exe
2020-12-29 11:17 - 2020-12-29 11:23 - 000000000 ____D C:\Users\micha\AppData\Local\ProtonVPN
2020-12-29 11:17 - 2020-12-29 11:17 - 000000000 ____D C:\Program Files (x86)\Proton Technologies
2020-12-29 11:16 - 2020-12-29 11:17 - 016245304 _____ (Proton Technologies AG) C:\Users\micha\Downloads\ProtonVPN_win_v1.17.5.exe
2020-12-29 11:01 - 2020-12-29 11:06 - 000000000 ____D C:\ProgramData\ZenVPN
2020-12-29 11:01 - 2020-12-29 11:06 - 000000000 ____D C:\Program Files (x86)\ZenVPN OpenVPN bundle
2020-12-29 11:01 - 2020-12-29 11:01 - 000000000 ____D C:\Program Files\TAP-Windows
2020-12-29 11:00 - 2020-12-29 11:01 - 010583240 _____ C:\Users\micha\Downloads\zenvpn-install.exe
2020-12-29 10:43 - 2020-12-29 10:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 8
2020-12-29 10:41 - 2020-12-29 10:41 - 026414408 _____ (IObit ) C:\Users\micha\Downloads\driver_booster_setup_trial.exe
2020-12-29 10:31 - 2020-12-29 10:31 - 001171552 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2020-12-28 22:49 - 2020-12-28 22:49 - 000000000 ____D C:\ProgramData\{150F4013-6884-4350-8DDC-6BFCB4C5DC15}
2020-12-28 22:07 - 2020-12-28 22:07 - 000011692 _____ C:\Users\micha\Downloads\FS19PlaceAnywhere-master (1).zip
2020-12-28 22:06 - 2020-12-28 22:06 - 000014622 _____ C:\Users\micha\Downloads\FS19PlaceAnywhere_master.zip
2020-12-28 22:06 - 2020-12-28 22:06 - 000014622 _____ C:\Users\micha\Downloads\FS19PlaceAnywhere_master (1).zip
2020-12-28 21:58 - 2020-12-28 21:58 - 000011692 _____ C:\Users\micha\Downloads\FS19PlaceAnywhere-master.zip
2020-12-28 19:14 - 2020-12-28 19:14 - 000000000 ____D C:\Program Files (x86)\Origin Games
2020-12-28 17:49 - 2020-12-28 17:49 - 000002277 _____ C:\ProgramData\Plocha\uRage Reaper Revolution Gaming mouse.lnk
2020-12-28 17:49 - 2020-12-28 17:49 - 000000000 ____D C:\Users\micha\OneDrive\Dokumenty\uRage Reaper Revolution
2020-12-28 17:49 - 2020-12-28 17:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\uRage Reaper Revolution Gaming mouse
2020-12-28 17:49 - 2020-12-28 17:49 - 000000000 ____D C:\Program Files (x86)\uRage Reaper Revolution Gaming mouse
2020-12-28 17:48 - 2020-12-28 17:48 - 011660130 _____ C:\Users\micha\Downloads\113749_uRage_Reaper_Revolution_Setup_20161026.zip
2020-12-28 14:09 - 2020-12-29 15:24 - 000004212 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{3C66E53F-07F0-4903-A3F0-9C52DD208737}
2020-12-28 13:56 - 2020-12-28 13:56 - 000000000 ____D C:\Users\micha\OneDrive\Dokumenty\Battlefield V
2020-12-28 13:56 - 2020-12-28 13:56 - 000000000 ____D C:\Users\micha\AppData\Local\Battlefield V
2020-12-28 13:32 - 2020-12-28 13:32 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2020-12-28 13:00 - 2020-12-28 18:56 - 000000000 ____D C:\WINDOWS\LastGood
2020-12-28 13:00 - 2020-12-28 13:00 - 000000000 _____ C:\WINDOWS\system32\fpfftResultsFile.txt
2020-12-28 12:57 - 2020-12-29 08:54 - 000003192 _____ C:\WINDOWS\system32\Tasks\Driver Booster Scheduler
2020-12-28 12:57 - 2020-12-29 08:54 - 000003178 _____ C:\WINDOWS\system32\Tasks\Driver Booster Update
2020-12-28 12:57 - 2020-12-29 08:54 - 000002952 _____ C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (micha)
2020-12-28 12:57 - 2020-12-28 13:00 - 000000000 ____D C:\Users\micha\AppData\Roaming\instinfo
2020-12-28 12:57 - 2020-12-28 12:57 - 000000000 ____D C:\ProgramData\{E0224FF9-7AE3-4F9E-991A-2F004F7E3952}
2020-12-28 12:54 - 2020-12-28 13:29 - 2423656448 _____ C:\Users\micha\Downloads\FarmingSimulator2019Patch1.7.1.img
2020-12-28 12:51 - 2020-12-28 12:54 - 004718592 _____ (GIANTS Software GmbH) C:\Users\micha\Downloads\Nepotvrzeno 367508.crdownload
2020-12-28 12:50 - 2020-12-28 12:54 - 012591104 _____ (GIANTS Software GmbH) C:\Users\micha\Downloads\Nepotvrzeno 877956.crdownload
2020-12-28 12:32 - 2020-12-28 12:51 - 1296645937 _____ C:\Users\micha\Downloads\Nepotvrzeno 989168.crdownload
2020-12-28 12:28 - 2020-12-29 11:23 - 000000000 ____D C:\Users\micha\AppData\Local\Spotify
2020-12-28 12:28 - 2020-12-28 12:28 - 000001843 _____ C:\Users\micha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2020-12-28 12:27 - 2020-12-29 19:23 - 000000000 ____D C:\Users\micha\AppData\Roaming\Spotify
2020-12-28 12:27 - 2020-12-28 12:27 - 000891344 _____ (Spotify Ltd) C:\Users\micha\Downloads\SpotifySetup.exe
2020-12-28 11:36 - 2020-12-28 11:36 - 000000768 _____ C:\ProgramData\Plocha\Battlefield™ V.lnk
2020-12-28 11:36 - 2020-12-28 11:36 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2020-12-28 11:36 - 2020-12-28 11:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield™ V
2020-12-28 08:48 - 2020-12-28 08:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Farming Simulator 2019
2020-12-28 08:35 - 2020-12-28 22:53 - 000000000 ____D C:\Users\micha\AppData\Local\CrashDumps
2020-12-28 08:29 - 2020-12-28 08:29 - 000000000 ____D C:\Users\micha\AppData\Roaming\EasyAntiCheat
2020-12-28 08:29 - 2020-12-28 08:29 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2020-12-28 08:28 - 2020-12-28 08:28 - 000743437 _____ C:\Users\micha\Downloads\756-mod_marksOnGunExtended (3).rar
2020-12-28 08:27 - 2020-12-28 08:27 - 003417616 _____ C:\Users\micha\Downloads\winrar-x64-591cz.exe
2020-12-28 08:27 - 2020-12-28 08:27 - 000000000 ____D C:\Users\micha\AppData\Roaming\WinRAR
2020-12-28 08:27 - 2020-12-28 08:27 - 000000000 ____D C:\Users\micha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-12-28 08:27 - 2020-12-28 08:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-12-28 08:26 - 2020-12-28 08:26 - 000743437 _____ C:\Users\micha\Downloads\756-mod_marksOnGunExtended.rar
2020-12-28 08:26 - 2020-12-28 08:26 - 000743437 _____ C:\Users\micha\Downloads\756-mod_marksOnGunExtended (2).rar
2020-12-28 08:26 - 2020-12-28 08:26 - 000743437 _____ C:\Users\micha\Downloads\756-mod_marksOnGunExtended (1).rar
2020-12-28 08:13 - 2020-12-28 13:56 - 000000000 ____D C:\ProgramData\Electronic Arts
2020-12-28 08:13 - 2020-12-28 08:13 - 000000673 _____ C:\ProgramData\Plocha\Origin.lnk
2020-12-28 08:13 - 2020-12-28 08:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2020-12-28 08:10 - 2020-12-29 20:53 - 000000000 ____D C:\Users\micha\AppData\Roaming\Origin
2020-12-28 08:10 - 2020-12-29 11:23 - 000000000 ____D C:\Users\micha\AppData\Local\Origin
2020-12-28 08:10 - 2020-12-29 11:23 - 000000000 ____D C:\ProgramData\Origin
2020-12-28 08:10 - 2020-12-28 08:13 - 263356427 _____ C:\Users\micha\Downloads\WGMods_Essentials_for_1.11.0.0_-_4.zip
2020-12-28 08:10 - 2020-12-28 08:10 - 000000000 ____D C:\Users\micha\.QtWebEngineProcess
2020-12-28 08:10 - 2020-12-28 08:10 - 000000000 ____D C:\Users\micha\.Origin
2020-12-28 07:58 - 2020-12-28 08:01 - 063645448 _____ (Electronic Arts) C:\Users\micha\Downloads\OriginThinSetup.exe
2020-12-28 07:57 - 2020-12-28 07:57 - 000000881 _____ C:\ProgramData\Plocha\Epic Games Launcher.lnk
2020-12-28 07:57 - 2020-12-28 07:57 - 000000881 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2020-12-28 07:57 - 2020-12-28 07:57 - 000000000 ____D C:\Users\micha\AppData\Local\UnrealEngineLauncher
2020-12-28 07:57 - 2020-12-28 07:57 - 000000000 ____D C:\Users\micha\AppData\Local\UnrealEngine
2020-12-28 07:57 - 2020-12-28 07:57 - 000000000 ____D C:\Users\micha\AppData\Local\EpicGamesLauncher
2020-12-28 07:56 - 2020-12-28 08:02 - 000000000 ____D C:\ProgramData\Epic
2020-12-28 07:55 - 2020-12-28 07:56 - 044568576 _____ C:\Users\micha\Downloads\EpicInstaller-10.19.2.msi
2020-12-28 07:48 - 2020-12-28 07:48 - 074891264 _____ C:\WINDOWS\system32\config\SOFTWARE.iobit
2020-12-28 07:48 - 2020-12-28 07:48 - 007008256 _____ C:\WINDOWS\system32\config\DRIVERS.iobit
2020-12-28 07:48 - 2020-12-28 07:48 - 000348160 _____ C:\WINDOWS\system32\config\DEFAULT.iobit
2020-12-28 07:48 - 2020-12-28 07:48 - 000081920 _____ C:\WINDOWS\system32\config\SAM.iobit
2020-12-28 07:48 - 2020-12-28 07:48 - 000028672 _____ C:\WINDOWS\system32\config\SECURITY.iobit
2020-12-28 07:47 - 2020-12-28 07:47 - 000000000 ____D C:\ProgramData\{F86B0233-9A85-4589-8AAF-524CC4F8211B}
2020-12-28 07:42 - 2020-12-29 08:54 - 000000000 ____D C:\ProgramData\ProductData
2020-12-28 07:42 - 2020-12-28 12:57 - 000000000 ____D C:\Program Files (x86)\IObit
2020-12-28 07:42 - 2020-12-28 07:47 - 000000000 ____D C:\Users\micha\AppData\LocalLow\IObit
2020-12-28 07:42 - 2020-12-28 07:42 - 000002956 _____ C:\WINDOWS\system32\Tasks\Uninstaller_SkipUac_micha
2020-12-28 07:42 - 2020-12-28 07:42 - 000001435 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk
2020-12-28 07:42 - 2020-12-28 07:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2020-12-28 07:41 - 2020-12-28 22:49 - 000000000 ____D C:\ProgramData\IObit
2020-12-28 07:41 - 2020-12-28 12:57 - 000000000 ____D C:\Users\micha\AppData\Roaming\IObit
2020-12-28 07:41 - 2020-12-28 07:41 - 000000000 ____D C:\Users\micha\AppData\Local\Steam
2020-12-28 07:39 - 2020-12-29 21:01 - 000000000 ____D C:\Users\micha\AppData\Roaming\TS3Client
2020-12-28 07:39 - 2020-12-28 07:40 - 050117008 _____ (IObit ) C:\Users\micha\Downloads\advanced-systemcare-setup.exe
2020-12-28 07:39 - 2020-12-28 07:39 - 000000000 ____D C:\Users\micha\AppData\Local\TeamSpeak 3
2020-12-28 07:38 - 2020-12-28 07:39 - 025230736 _____ (IObit ) C:\Users\micha\Downloads\iobituninstaller.exe
2020-12-28 07:38 - 2020-12-28 07:38 - 000000549 _____ C:\ProgramData\Plocha\Steam.lnk
2020-12-28 07:38 - 2020-12-28 07:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2020-12-28 07:37 - 2020-12-28 07:37 - 000000864 _____ C:\ProgramData\Plocha\TeamSpeak 3 Client.lnk
2020-12-28 07:37 - 2020-12-28 07:37 - 000000814 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2020-12-28 07:36 - 2020-12-28 07:36 - 001573568 _____ C:\Users\micha\Downloads\SteamSetup.exe
2020-12-28 07:35 - 2020-12-28 07:36 - 090699776 _____ (TeamSpeak Systems GmbH) C:\Users\micha\Downloads\TeamSpeak3-Client-win64-3.5.6.exe
2020-12-28 07:22 - 2020-12-28 07:22 - 000000000 ___HD C:\$SysReset
2020-12-28 07:03 - 2020-12-29 20:59 - 000000000 ____D C:\WINDOWS\system32\Tasks\Norton Security
2020-12-28 07:02 - 2020-12-28 07:22 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2020-12-28 07:02 - 2020-12-28 07:02 - 000003376 _____ C:\WINDOWS\system32\Tasks\Norton WSC Integration
2020-12-28 03:45 - 2020-12-28 03:45 - 000000000 ____D C:\WINDOWS\system32\Drivers\NGCx64
2020-12-28 02:48 - 2020-12-28 02:48 - 000000000 ____D C:\Users\micha\AppData\Local\Gaijin
2020-12-28 02:48 - 2020-12-28 02:48 - 000000000 ____D C:\ProgramData\Gaijin
2020-12-28 02:47 - 2020-12-28 08:49 - 000000000 ____D C:\Users\micha\OneDrive\Dokumenty\My Games
2020-12-28 02:47 - 2020-12-28 02:47 - 000000000 ____D C:\Users\micha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
2020-12-28 02:44 - 2020-12-28 02:45 - 010416024 _____ (Gaijin Network ) C:\Users\micha\Downloads\wt_launcher_1.0.3.260-oufz9yq6e.exe
2020-12-28 02:38 - 2020-12-28 08:51 - 000000000 ____D C:\Games
2020-12-28 02:37 - 2020-12-29 20:44 - 000000000 ____D C:\Users\micha\AppData\Local\D3DSCache
2020-12-28 02:37 - 2020-12-29 18:57 - 000000000 ____D C:\Users\micha\AppData\Roaming\discord
2020-12-28 02:37 - 2020-12-28 08:00 - 000000000 ____D C:\Users\micha\AppData\Roaming\Wargaming.net
2020-12-28 02:37 - 2020-12-28 02:38 - 000000000 ____D C:\Users\micha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net
2020-12-28 02:37 - 2020-12-28 02:37 - 068822328 _____ (Discord Inc.) C:\Users\micha\Downloads\DiscordSetup.exe
2020-12-28 02:37 - 2020-12-28 02:37 - 000000000 ____D C:\Users\micha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2020-12-28 02:37 - 2020-12-28 02:37 - 000000000 ____D C:\Users\micha\AppData\Local\SquirrelTemp
2020-12-28 02:37 - 2020-12-28 02:37 - 000000000 ____D C:\Users\micha\AppData\Local\Discord
2020-12-28 02:35 - 2020-12-28 02:35 - 006513880 _____ (Wargaming.net ) C:\Users\micha\Downloads\world_of_tanks_install_eu_c8416zh5hspv.exe
2020-12-28 02:35 - 2020-12-28 02:35 - 000000000 ____D C:\ProgramData\Wargaming.net
2020-12-28 02:13 - 2020-12-28 02:14 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2020-12-28 02:13 - 2020-12-12 15:29 - 001786584 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-12-28 02:13 - 2020-12-12 15:29 - 001786584 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-12-28 02:13 - 2020-12-12 15:29 - 001454488 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-12-28 02:13 - 2020-12-12 15:29 - 001382616 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-12-28 02:13 - 2020-12-12 15:29 - 001382616 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-12-28 02:13 - 2020-12-12 15:29 - 001193880 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-12-28 02:13 - 2020-12-12 15:29 - 001087704 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-12-28 02:13 - 2020-12-12 15:29 - 001087704 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-12-28 02:13 - 2020-12-12 15:29 - 000940760 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-12-28 02:13 - 2020-12-12 15:29 - 000940760 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-12-28 02:13 - 2020-12-12 15:27 - 008261360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-12-28 02:13 - 2020-12-12 15:27 - 002103024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-12-28 02:13 - 2020-12-12 15:27 - 001731824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6446089.dll
2020-12-28 02:13 - 2020-12-12 15:27 - 001589144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-12-28 02:13 - 2020-12-12 15:27 - 001512856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-12-28 02:13 - 2020-12-12 15:27 - 001492376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6446089.dll
2020-12-28 02:13 - 2020-12-12 15:27 - 001164528 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-12-28 02:13 - 2020-12-12 15:27 - 000812784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-12-28 02:13 - 2020-12-12 15:27 - 000680856 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-12-28 02:13 - 2020-12-12 15:27 - 000672496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-12-28 02:13 - 2020-12-12 15:27 - 000657816 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-12-28 02:13 - 2020-12-12 15:27 - 000559000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-12-28 02:13 - 2020-12-12 15:27 - 000547056 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-12-28 02:13 - 2020-12-12 15:26 - 007391984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-12-28 02:13 - 2020-12-12 15:26 - 004612504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-12-28 02:13 - 2020-12-12 15:26 - 002731928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-12-28 02:13 - 2020-12-12 15:21 - 006070008 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-12-28 02:13 - 2020-12-12 04:59 - 000060811 _____ C:\WINDOWS\system32\nvinfo.pb
2020-12-28 02:13 - 2020-12-12 04:59 - 000038640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2020-12-28 02:11 - 2020-12-28 02:11 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-28 02:11 - 2020-12-28 02:11 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-28 02:11 - 2020-12-28 02:11 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-28 02:11 - 2020-12-28 02:11 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-28 02:11 - 2020-10-19 06:42 - 000069608 _____ C:\WINDOWS\system32\FvSDK_x64.dll
2020-12-28 02:11 - 2020-10-19 06:42 - 000058344 _____ C:\WINDOWS\SysWOW64\FvSDK_x86.dll
2020-12-28 02:09 - 2020-12-28 02:09 - 000000000 ____D C:\Program Files\Common Files\AV
2020-12-28 01:49 - 2020-12-28 01:51 - 127450288 _____ (NVIDIA Corporation New) C:\Users\micha\Downloads\GeForce_Experience_v3.20.5.70.exe
2020-12-28 01:44 - 2020-12-28 07:22 - 000002427 _____ C:\ProgramData\Plocha\Norton Security.lnk
2020-12-28 01:42 - 2020-12-28 01:42 - 000000000 ____D C:\Users\micha\AppData\Local\AAA_Internet_Publishing,_
2020-12-28 01:40 - 2020-12-28 01:41 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-12-28 01:17 - 2020-12-28 16:20 - 000000000 ____D C:\Users\micha\AppData\Local\NVIDIA Corporation
2020-12-28 01:17 - 2020-12-28 01:17 - 000000000 ____D C:\Users\micha\AppData\Local\NVIDIA
2020-12-28 01:17 - 2020-12-28 01:17 - 000000000 ____D C:\Users\micha\AppData\Local\CEF
2020-12-28 01:17 - 2020-12-28 01:17 - 000000000 ____D C:\Users\micha\ansel
2020-12-28 01:16 - 2020-12-28 14:57 - 000000000 ____D C:\Program Files (x86)\WTFast
2020-12-28 01:16 - 2020-12-28 01:16 - 000001059 _____ C:\ProgramData\Plocha\WTFast.lnk
2020-12-28 01:16 - 2020-12-28 01:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WTFast
2020-12-28 01:16 - 2016-02-01 12:17 - 000027904 _____ (AAA Internet Publishing, Inc.) C:\WINDOWS\system32\Drivers\WtfEngineDrv.sys
2020-12-28 01:15 - 2020-12-28 12:56 - 000003256 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-28 01:15 - 2020-12-28 12:56 - 000002974 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-28 01:15 - 2020-12-28 12:56 - 000002804 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-28 01:15 - 2020-12-28 02:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2020-12-28 01:15 - 2020-12-28 02:11 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-28 01:15 - 2020-12-28 02:11 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-28 01:15 - 2020-12-28 02:11 - 000001454 _____ C:\ProgramData\Plocha\GeForce Experience.lnk
2020-12-28 01:15 - 2020-12-28 02:00 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-28 01:15 - 2020-12-28 01:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI Kombustor 3
2020-12-28 01:15 - 2020-12-28 01:15 - 000000000 ____D C:\Program Files\MSI Kombustor 3
2020-12-28 01:15 - 2020-10-20 13:56 - 002797552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2020-12-28 01:15 - 2020-10-20 13:56 - 002154984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2020-12-28 01:15 - 2020-10-20 13:56 - 001294832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2020-12-28 01:15 - 2020-03-11 20:26 - 000067456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2020-12-28 01:15 - 2014-04-30 16:23 - 000011248 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\acpimof.dll
2020-12-28 01:14 - 2020-12-28 01:14 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2020-12-28 01:14 - 2020-08-10 16:20 - 000169272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2020-12-28 01:14 - 2020-08-10 16:20 - 000145208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2020-12-28 01:14 - 2020-03-06 11:03 - 000069840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2020-12-28 01:14 - 2018-06-02 04:04 - 002014144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6439811.dll
2020-12-28 01:14 - 2018-06-02 04:04 - 001468272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6439811.dll
2020-12-28 01:14 - 2018-06-01 09:39 - 000450856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2020-12-28 01:12 - 2018-06-02 04:04 - 013727800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2020-12-28 01:12 - 2018-06-02 04:04 - 011272944 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2020-12-28 01:12 - 2018-06-02 04:03 - 001157216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2020-12-28 01:12 - 2018-06-02 04:03 - 000904720 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2020-12-28 01:12 - 2018-06-02 04:03 - 000634792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-12-28 01:11 - 2018-06-02 04:04 - 040346536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2020-12-28 01:11 - 2018-06-02 04:04 - 035250624 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2020-12-28 01:08 - 2020-12-28 01:08 - 000000000 ____D C:\Users\micha\AppData\Local\Comms
2020-12-28 01:07 - 2020-12-28 03:46 - 000099912 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS
2020-12-28 01:07 - 2020-12-28 03:46 - 000010227 _____ C:\WINDOWS\system32\Drivers\SYMEVENT64x86.CAT
2020-12-28 01:07 - 2020-12-28 01:07 - 000000000 ____D C:\Program Files\Common Files\Symantec Shared
2020-12-28 01:06 - 2020-12-28 07:02 - 000000000 ____D C:\ProgramData\Norton
2020-12-28 01:06 - 2020-12-28 01:23 - 000000000 ____D C:\Users\micha\AppData\Local\Google
2020-12-28 01:06 - 2020-12-28 01:06 - 000002122 _____ C:\ProgramData\Plocha\Google Slides.lnk
2020-12-28 01:06 - 2020-12-28 01:06 - 000002120 _____ C:\ProgramData\Plocha\Google Sheets.lnk
2020-12-28 01:06 - 2020-12-28 01:06 - 000002110 _____ C:\ProgramData\Plocha\Google Docs.lnk
2020-12-28 01:06 - 2020-12-28 01:06 - 000000000 ____D C:\WINDOWS\system32\Drivers\NSx64
2020-12-28 01:06 - 2020-12-28 01:06 - 000000000 ____D C:\ProgramData\NortonInstaller
2020-12-28 01:06 - 2020-12-28 01:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2020-12-28 01:06 - 2020-12-28 01:06 - 000000000 ____D C:\Program Files\Norton Security
2020-12-28 01:06 - 2020-12-28 01:06 - 000000000 ____D C:\Program Files (x86)\NortonInstaller
2020-12-28 01:05 - 2020-12-28 01:16 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-12-28 01:05 - 2020-12-28 01:16 - 000002267 _____ C:\ProgramData\Plocha\Google Chrome.lnk
2020-12-28 01:05 - 2020-12-28 01:10 - 000003472 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-12-28 01:05 - 2020-12-28 01:10 - 000003348 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-12-28 01:05 - 2020-12-28 01:10 - 000000000 ____D C:\Program Files (x86)\Google
2020-12-28 01:05 - 2020-12-28 01:05 - 000000000 ____D C:\Program Files (x86)\Intel
2020-12-28 01:04 - 2020-12-28 01:04 - 000000000 ____D C:\Users\micha\Intel
2020-12-28 01:03 - 2020-12-28 13:00 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2020-12-28 01:03 - 2020-12-28 13:00 - 000000000 ____D C:\WINDOWS\system32\DAX3
2020-12-28 01:03 - 2020-12-28 13:00 - 000000000 ____D C:\WINDOWS\system32\DAX2
2020-12-28 01:03 - 2020-12-28 01:03 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2020-12-28 01:03 - 2020-12-28 01:03 - 000000000 ____D C:\Program Files\Realtek
2020-12-28 01:02 - 2020-12-28 01:03 - 000000000 ___HD C:\Program Files (x86)\Temp
2020-12-28 01:02 - 2017-07-21 10:17 - 002839488 ____R (Realtek Semiconductor Corp.) C:\WINDOWS\RtlExUpd.dll
2020-12-28 01:00 - 2020-12-28 08:13 - 000000000 ____D C:\ProgramData\Package Cache
2020-12-28 01:00 - 2020-12-28 01:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2020-12-28 01:00 - 2020-12-28 01:44 - 000000000 ____D C:\Program Files (x86)\MSI
2020-12-28 01:00 - 2020-12-28 01:16 - 000000000 ____D C:\MSI
2020-12-28 01:00 - 2020-12-28 01:05 - 000000000 ____D C:\Program Files\Intel
2020-12-28 01:00 - 2020-12-28 01:02 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-12-28 01:00 - 2020-12-28 01:02 - 000000000 ____D C:\Program Files (x86)\Realtek
2020-12-28 01:00 - 2020-12-28 01:00 - 000000000 ____D C:\Users\micha\AppData\Local\PlaceholderTileLogoFolder
2020-12-28 00:53 - 2020-12-28 00:53 - 000000000 ___HD C:\OneDriveTemp
2020-12-28 00:53 - 2020-12-09 13:17 - 000000122 ____R C:\Users\micha\OneDrive\Dokumenty\Poznámkový blok uživatele Michal.url
2020-12-28 00:52 - 2020-12-28 07:22 - 000000000 ___RD C:\Users\micha\OneDrive
2020-12-28 00:52 - 2020-12-28 00:53 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3466437676-3512538346-3754865819-1001
2020-12-28 00:52 - 2020-12-28 00:52 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2020-12-28 00:51 - 2020-12-28 01:42 - 000000000 ____D C:\Users\micha\AppData\Local\ConnectedDevicesPlatform
2020-12-28 00:51 - 2020-12-28 01:07 - 000000000 ____D C:\Users\micha\AppData\Local\Packages
2020-12-28 00:51 - 2020-12-28 01:07 - 000000000 ____D C:\ProgramData\Packages
2020-12-28 00:51 - 2020-12-28 00:52 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-12-28 00:51 - 2020-12-28 00:51 - 000000000 ___RD C:\Users\micha\3D Objects
2020-12-28 00:51 - 2020-12-28 00:51 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-12-28 00:51 - 2020-12-28 00:51 - 000000000 ____D C:\Users\micha\AppData\Roaming\Adobe
2020-12-28 00:51 - 2020-12-28 00:51 - 000000000 ____D C:\Users\micha\AppData\Local\VirtualStore
2020-12-28 00:51 - 2020-12-28 00:51 - 000000000 ____D C:\Users\micha\AppData\Local\Publishers
2020-12-28 00:42 - 2020-12-29 21:00 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-12-28 00:41 - 2020-12-28 08:10 - 000000000 ____D C:\Users\micha
2020-12-28 00:41 - 2020-12-28 00:53 - 000002372 _____ C:\Users\micha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-12-28 00:41 - 2020-12-28 00:41 - 000000020 ___SH C:\Users\micha\ntuser.ini
2020-12-28 00:41 - 2020-12-28 00:41 - 000000000 _SHDL C:\Users\micha\Šablony
2020-12-28 00:41 - 2020-12-28 00:41 - 000000000 _SHDL C:\Users\micha\Soubory cookie
2020-12-28 00:41 - 2020-12-28 00:41 - 000000000 _SHDL C:\Users\micha\Poslední
2020-12-28 00:41 - 2020-12-28 00:41 - 000000000 _SHDL C:\Users\micha\Okolní tiskárny
2020-12-28 00:41 - 2020-12-28 00:41 - 000000000 _SHDL C:\Users\micha\Okolní síť
2020-12-28 00:41 - 2020-12-28 00:41 - 000000000 _SHDL C:\Users\micha\Nabídka Start
2020-12-28 00:41 - 2020-12-28 00:41 - 000000000 _SHDL C:\Users\micha\Dokumenty
2020-12-28 00:41 - 2020-12-28 00:41 - 000000000 _SHDL C:\Users\micha\Data aplikací
2020-12-28 00:41 - 2020-12-28 00:41 - 000000000 _SHDL C:\Users\micha\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2020-12-28 00:41 - 2020-12-28 00:41 - 000000000 _SHDL C:\Users\micha\AppData\Local\Data aplikací
2020-12-28 00:38 - 2020-12-28 01:05 - 000003738 _____ C:\WINDOWS\system32\Tasks\Intel PTT EK Recertification
2020-12-28 00:38 - 2020-12-28 01:05 - 000000000 ____D C:\ProgramData\Intel
2020-12-28 00:38 - 2020-12-28 00:38 - 000000000 _SHDL C:\Users\Default\Šablony
2020-12-28 00:38 - 2020-12-28 00:38 - 000000000 _SHDL C:\Users\Default\Soubory cookie
2020-12-28 00:38 - 2020-12-28 00:38 - 000000000 _SHDL C:\Users\Default\Poslední
2020-12-28 00:38 - 2020-12-28 00:38 - 000000000 _SHDL C:\Users\Default\Okolní tiskárny
2020-12-28 00:38 - 2020-12-28 00:38 - 000000000 _SHDL C:\Users\Default\Okolní síť
2020-12-28 00:38 - 2020-12-28 00:38 - 000000000 _SHDL C:\Users\Default\Nabídka Start
2020-12-28 00:38 - 2020-12-28 00:38 - 000000000 _SHDL C:\Users\Default\Dokumenty
2020-12-28 00:38 - 2020-12-28 00:38 - 000000000 _SHDL C:\Users\Default\Data aplikací
2020-12-28 00:38 - 2020-12-28 00:38 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2020-12-28 00:38 - 2020-12-28 00:38 - 000000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2020-12-28 00:38 - 2020-12-28 00:38 - 000000000 _SHDL C:\Users\Default User\Šablony
2020-12-28 00:38 - 2020-12-28 00:38 - 000000000 _SHDL C:\Users\Default User\Soubory cookie
2020-12-28 00:38 - 2020-12-28 00:38 - 000000000 _SHDL C:\Users\Default User\Poslední
2020-12-28 00:38 - 2020-12-28 00:38 - 000000000 _SHDL C:\Users\Default User\Okolní tiskárny
2020-12-28 00:38 - 2020-12-28 00:38 - 000000000 _SHDL C:\Users\Default User\Okolní síť
2020-12-28 00:38 - 2020-12-28 00:38 - 000000000 _SHDL C:\Users\Default User\Nabídka Start
2020-12-28 00:38 - 2020-12-28 00:38 - 000000000 _SHDL C:\Users\Default User\Dokumenty
2020-12-28 00:38 - 2020-12-28 00:38 - 000000000 _SHDL C:\Users\Default User\Data aplikací
2020-12-28 00:38 - 2020-12-28 00:38 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2020-12-28 00:38 - 2020-12-28 00:38 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Data aplikací
2020-12-28 00:38 - 2020-12-28 00:38 - 000000000 _SHDL C:\ProgramData\Šablony
2020-12-28 00:38 - 2020-12-28 00:38 - 000000000 _SHDL C:\ProgramData\Plocha
2020-12-28 00:38 - 2020-12-28 00:38 - 000000000 _SHDL C:\ProgramData\Nabídka Start
2020-12-28 00:38 - 2020-12-28 00:38 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy
2020-12-28 00:38 - 2020-12-28 00:38 - 000000000 _SHDL C:\ProgramData\Dokumenty
2020-12-28 00:38 - 2020-12-28 00:38 - 000000000 _SHDL C:\ProgramData\Data aplikací
2020-12-28 00:38 - 2020-12-28 00:38 - 000000000 _SHDL C:\Documents and Settings
2020-12-28 00:37 - 2020-12-28 01:31 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-12-28 00:37 - 2020-12-28 01:31 - 000002281 _____ C:\ProgramData\Plocha\Microsoft Edge.lnk
2020-12-28 00:37 - 2020-12-28 00:54 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-12-28 00:37 - 2020-12-28 00:54 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-12-28 00:35 - 2020-12-29 20:53 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-12-28 00:35 - 2020-12-29 20:53 - 000000000 ____D C:\ProgramData\NVIDIA
2020-12-28 00:35 - 2020-12-29 15:57 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-12-28 00:35 - 2020-12-28 04:14 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-12-28 00:35 - 2020-12-28 02:14 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-12-28 00:35 - 2020-12-28 02:14 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-12-28 00:35 - 2020-12-28 00:35 - 000258096 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-12-28 00:35 - 2020-12-28 00:35 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-12-28 00:35 - 2020-12-28 00:35 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2020-12-28 00:35 - 2020-12-28 00:35 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2020-12-28 00:35 - 2020-12-28 00:35 - 000000000 ____D C:\WINDOWS\Intel
2020-12-28 00:35 - 2020-12-12 00:55 - 009371667 _____ C:\WINDOWS\system32\nvcoproc.bin
2020-12-28 00:35 - 2020-12-12 00:55 - 005622072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2020-12-28 00:35 - 2020-12-12 00:55 - 002636776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2020-12-28 00:35 - 2020-12-12 00:55 - 001760232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2020-12-28 00:35 - 2020-12-12 00:55 - 000992232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2020-12-28 00:35 - 2020-12-12 00:55 - 000121144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2020-12-28 00:35 - 2020-12-12 00:55 - 000083256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2020-12-28 00:35 - 2020-06-13 18:11 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2020-12-28 00:34 - 2020-12-29 20:53 - 000008192 ___SH C:\DumpStack.log.tmp
2020-12-28 00:33 - 2020-12-28 00:33 - 000000000 ____D C:\WINDOWS\OEM
2020-12-28 00:32 - 2020-12-28 07:50 - 000000000 ____D C:\WINDOWS\Panther
2020-12-28 00:31 - 2020-12-28 00:31 - 000000000 ____D C:\ProgramData\ssh
2020-12-28 00:29 - 2020-12-28 00:29 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-12-28 00:29 - 2020-12-28 00:29 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-12-28 00:29 - 2020-12-28 00:29 - 000580096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2020-12-28 00:29 - 2020-12-28 00:29 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2020-12-28 00:29 - 2020-12-28 00:29 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2020-12-28 00:29 - 2020-12-28 00:29 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpg2splt.ax
2020-12-28 00:29 - 2020-12-28 00:29 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpg2splt.ax
2020-12-28 00:29 - 2020-12-28 00:29 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2020-12-28 00:29 - 2020-12-28 00:29 - 000045880 _____ C:\WINDOWS\system32\HvSocket.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 004898144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin
2020-12-28 00:28 - 2020-12-28 00:28 - 003860832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 001822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-12-28 00:28 - 2020-12-28 00:28 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-12-28 00:28 - 2020-12-28 00:28 - 001354080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 001333248 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 001309504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2020-12-28 00:28 - 2020-12-28 00:28 - 001162240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2020-12-28 00:28 - 2020-12-28 00:28 - 001091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 001032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 000980320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 000915296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 000732000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 000707544 _____ C:\WINDOWS\system32\TextShaping.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 000645120 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2020-12-28 00:28 - 2020-12-28 00:28 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2020-12-28 00:28 - 2020-12-28 00:28 - 000455168 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2020-12-28 00:28 - 2020-12-28 00:28 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 000306176 _____ C:\WINDOWS\system32\HeatCore.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2020-12-28 00:28 - 2020-12-28 00:28 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 000240640 _____ C:\WINDOWS\SysWOW64\CoreMas.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2020-12-28 00:28 - 2020-12-28 00:28 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2020-12-28 00:28 - 2020-12-28 00:28 - 000197632 _____ C:\WINDOWS\system32\IHDS.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2020-12-28 00:28 - 2020-12-28 00:28 - 000165376 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2020-12-28 00:28 - 2020-12-28 00:28 - 000152576 _____ C:\WINDOWS\system32\EoAExperiences.exe
2020-12-28 00:28 - 2020-12-28 00:28 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\activeds.tlb
2020-12-28 00:28 - 2020-12-28 00:28 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\activeds.tlb
2020-12-28 00:28 - 2020-12-28 00:28 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
2020-12-28 00:28 - 2020-12-28 00:28 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2020-12-28 00:28 - 2020-12-28 00:28 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2020-12-28 00:28 - 2020-12-28 00:28 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 000064552 _____ C:\WINDOWS\system32\umpdc.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2020-12-28 00:28 - 2020-12-28 00:28 - 000056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 000055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 000047472 _____ C:\WINDOWS\SysWOW64\umpdc.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.drv
2020-12-28 00:28 - 2020-12-28 00:28 - 000029696 _____ (The ICU Project) C:\WINDOWS\system32\icuuc.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 000025088 _____ (The ICU Project) C:\WINDOWS\system32\icuin.dll
2020-12-28 00:28 - 2020-12-28 00:28 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.drv
2020-12-28 00:28 - 2020-12-28 00:28 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2020-12-28 00:28 - 2020-12-28 00:28 - 000010912 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-12-28 00:28 - 2020-12-28 00:28 - 000010752 _____ C:\WINDOWS\SysWOW64\agentactivationruntimestarter.exe
2020-12-28 00:28 - 2020-12-28 00:28 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt
2020-12-28 00:24 - 2020-12-28 00:24 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2020-12-28 00:24 - 2020-12-28 00:24 - 000000000 ____D C:\Program Files\Reference Assemblies
2020-12-28 00:24 - 2020-12-28 00:24 - 000000000 ____D C:\Program Files\MSBuild
2020-12-28 00:24 - 2020-12-28 00:24 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2020-12-28 00:24 - 2020-12-28 00:24 - 000000000 ____D C:\Program Files (x86)\MSBuild
2020-12-28 00:24 - 2019-10-15 13:53 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2020-12-28 00:24 - 2019-04-18 18:49 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2020-12-28 00:21 - 2020-12-28 00:21 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2020-12-21 19:34 - 2020-12-12 04:59 - 001682376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2020-12-21 19:34 - 2020-12-12 04:59 - 000135592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2020-12-15 16:29 - 2020-12-12 15:21 - 007114256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-12-06 18:12 - 2020-03-04 13:54 - 000050592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\NvModuleTracker.sys
2020-11-24 09:00 - 2020-11-24 09:00 - 000026488 _____ (Intel Corporation) C:\WINDOWS\system32\RstMwEventLogMsg.dll
2020-11-07 16:59 - 2020-07-23 04:42 - 001138416 _____ (Realtek Semiconductor) C:\WINDOWS\system32\RtkAudUService64.exe
2020-11-07 16:59 - 2020-07-23 04:41 - 000854120 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64U.dll
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-12-29 21:00 - 2019-12-07 15:41 - 000716602 _____ C:\WINDOWS\system32\perfh005.dat
2020-12-29 21:00 - 2019-12-07 15:41 - 000144780 _____ C:\WINDOWS\system32\perfc005.dat
2020-12-29 21:00 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2020-12-29 20:54 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-12-29 20:53 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-12-28 18:15 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-12-28 07:22 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-12-28 07:03 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2020-12-28 03:37 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\appcompat
2020-12-28 02:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Help
2020-12-28 01:44 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-12-28 01:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-12-28 01:41 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-12-28 01:16 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-12-28 01:07 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2020-12-28 01:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2020-12-28 00:51 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-12-28 00:41 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2020-12-28 00:39 - 2019-12-07 15:42 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2020-12-28 00:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\spool
2020-12-28 00:38 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate
2020-12-28 00:38 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows NT
2020-12-28 00:32 - 2019-12-07 10:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2020-12-28 00:31 - 2019-12-07 15:44 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2020-12-28 00:31 - 2019-12-07 15:44 - 000020908 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2020-12-28 00:31 - 2019-12-07 15:44 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2020-12-28 00:31 - 2019-12-07 15:44 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2020-12-28 00:31 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2020-12-28 00:31 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2020-12-28 00:24 - 2019-12-07 15:41 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2020-12-28 00:24 - 2019-12-07 15:41 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2020-12-28 00:24 - 2019-12-07 15:41 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2020-12-28 00:24 - 2019-12-07 15:41 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2020-12-28 00:24 - 2019-12-07 15:41 - 000000000 ____D C:\WINDOWS\system32\winrm
2020-12-28 00:24 - 2019-12-07 15:41 - 000000000 ____D C:\WINDOWS\system32\WCN
2020-12-28 00:24 - 2019-12-07 15:41 - 000000000 ____D C:\WINDOWS\system32\slmgr
2020-12-28 00:24 - 2019-12-07 15:41 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2020-12-28 00:24 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2020-12-28 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2020-12-28 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2020-12-28 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2020-12-28 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2020-12-28 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2020-12-28 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\MUI
2020-12-28 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2020-12-28 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2020-12-28 00:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu logu(procesor neustále běží na 100)
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118375
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu(procesor neustále běží na 100)
Zdravím!
Přidejte ještě log Addition, je v souboru addition.txt v C:\Users\micha\OneDrive\Plocha. Děkuji.
Přidejte ještě log Addition, je v souboru addition.txt v C:\Users\micha\OneDrive\Plocha. Děkuji.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu(procesor neustále běží na 100)
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-12-2020
Ran by micha (29-12-2020 21:02:14)
Running from C:\Users\micha\OneDrive\Plocha
Windows 10 Home Version 20H2 19042.685 (X64) (2020-12-27 23:38:06)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3466437676-3512538346-3754865819-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3466437676-3512538346-3754865819-503 - Limited - Disabled)
Guest (S-1-5-21-3466437676-3512538346-3754865819-501 - Limited - Disabled)
micha (S-1-5-21-3466437676-3512538346-3754865819-1001 - Administrator - Enabled) => C:\Users\micha
WDAGUtilityAccount (S-1-5-21-3466437676-3512538346-3754865819-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Norton Security (Enabled - Up to date) {30744133-1E94-7B35-F4A3-82A5AEF1CBAA}
AV: Norton Security (Enabled - Up to date) {9E3FD331-C4C2-7AC4-0537-131EEF1B1F8A}
FW: Norton Security (Enabled) {A6045214-8EAD-7B9C-2E68-BA2B11C858F1}
FW: Norton Security (Enabled) {084FC016-54FB-7A6D-DFFC-2B9050228CD1}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
«WGMods Essentials» - #4 (HKLM-x32\...\WGMods_Essentials_ENG_is1) (Version: 1.11.0.0 - WGMods.net)
Aktualizace NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden
Battlefield™ V (HKLM-x32\...\{e26b382f-e945-4f70-9318-121b683f1d61}) (Version: 1.0.64.43202 - Electronic Arts)
Discord (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
Driver Booster 8 (HKLM-x32\...\Driver Booster_is1) (Version: 8.2.0 - IObit)
Epic Games Launcher (HKLM-x32\...\{FEF3A9BA-A962-4469-AD62-04839D4BB847}) (Version: 1.1.298.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Farming Simulator 19 (HKLM-x32\...\FarmingSimulator2019_is1) (Version: 1.7.1 - GIANTS Software)
Google Drive (HKLM-x32\...\{459CE109-4E46-4340-92BC-054642BC3BC2}) (Version: 1.31.2873.2758 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.88 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1043 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{2b32b7d0-4f9f-47c8-adb7-807e6cb2fb75}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{44ded3eb-1686-46a6-9770-fd79096c29f7}) (Version: 10.1.1.45 - Intel(R) Corporation) Hidden
IObit Uninstaller 10 (HKLM-x32\...\IObitUninstall) (Version: 10.2.0.13 - IObit)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.66 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.59 - )
Microsoft OneDrive (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
MSI Kombustor 3.5.0 (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version: - MSI Co., LTD)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.2.0.69 - MSI)
MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.3.0.20 - MSI)
Norton Security (HKLM-x32\...\NGC) (Version: 22.20.5.40 - NortonLifeLock Inc)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.27 - NVIDIA Corporation) Hidden
NVIDIA FrameView SDK 1.1.4923.29214634 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29214634 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.5.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.5.70 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.40 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 460.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 460.89 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NvModuleTracker (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Version: 6.14.24033.38719 - NVIDIA Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.5.90.45798 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 460.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 460.89 - NVIDIA Corporation) Hidden
ProtonVPN (HKLM-x32\...\{D19979C9-8B5B-4500-AA6A-EF331F658074}) (Version: 1.17.5 - Proton Technologies AG) Hidden
ProtonVPN (HKLM-x32\...\ProtonVPN 1.17.5) (Version: 1.17.5 - Proton Technologies AG)
ProtonVPNTap (HKLM-x32\...\{BCB82CD9-F514-4F93-A6D9-F898494DC927}) (Version: 1.1.0 - Proton Technologies AG)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.23.1003.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8746.1 - Realtek Semiconductor Corp.)
Spotify (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\Spotify) (Version: 1.1.48.625.g1c87c7f7 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TAP-Windows 9.21.1 (HKLM\...\TAP-Windows) (Version: 9.21.1 - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH)
uRage Reaper Revolution Gaming mouse (HKLM-x32\...\uRage Reaper Revolution Gaming mouse) (Version: 1.0 - Areson)
War Thunder Launcher 1.0.3.260 (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Network)
Wargaming.net Game Center (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\Wargaming.net Game Center) (Version: 20.7.2.2851 - Wargaming.net)
WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
World of Tanks EU (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)
WTFast 4.0 (HKLM-x32\...\{12B4121D-5221-4AFC-9EDC-63B0CA139856}_is1) (Version: 4.0.7.692 - Initex & AAA Internet Publishing)
Packages:
=========
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2020-12-28] (Microsoft Studios) [MS Ad]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.14.225.0_x64__dt26b99r8h8gj [2020-12-28] (Realtek Semiconductor Corp)
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\microsoft.mpeg2videoextension_1.0.22661.0_x64__8wekyb3d8bbwe [2020-12-28] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers-x32: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers-x32: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers-x32: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> No File
ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-07-31] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.20.5.40\NavShExt.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext32.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> No File
ContextMenuHandlers2: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.20.5.40\NavShExt.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers4: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> No File
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-07-31] (IObit Information Technology -> IObit)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-12-12] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-07-31] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.20.5.40\NavShExt.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext32.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2020-12-28 07:39 - 2020-12-28 07:39 - 000157696 _____ () [File not signed] C:\Users\micha\AppData\Roaming\TS3Client\plugins\gamepad_joystick_win64.dll
2019-04-09 09:21 - 2019-04-09 09:21 - 000018432 _____ () [File not signed] D:\Program Files\TeamSpeak 3 Client\libEGL.DLL
2019-04-09 09:21 - 2019-04-09 09:21 - 003572224 _____ () [File not signed] D:\Program Files\TeamSpeak 3 Client\libGLESv2.dll
2019-04-10 17:30 - 2019-04-10 17:30 - 000035328 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\iconengines\qsvgicon.dll
2019-04-09 09:28 - 2019-04-09 09:28 - 000031744 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\imageformats\qgif.dll
2019-04-09 09:29 - 2019-04-09 09:29 - 000397312 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\imageformats\qjpeg.dll
2019-04-10 17:29 - 2019-04-10 17:29 - 000025600 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\imageformats\qsvg.dll
2019-04-09 09:30 - 2019-04-09 09:30 - 001453568 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\platforms\qwindows.dll
2019-05-31 12:05 - 2019-05-31 12:05 - 006130176 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Core.dll
2019-04-09 09:25 - 2019-04-09 09:25 - 006470656 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Gui.dll
2019-04-09 09:24 - 2019-04-09 09:24 - 001314816 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Network.dll
2019-04-10 18:31 - 2019-04-10 18:31 - 000317440 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Positioning.dll
2019-04-09 09:28 - 2019-04-09 09:28 - 000318464 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5PrintSupport.dll
2019-04-10 17:55 - 2019-04-10 17:55 - 004001792 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Qml.dll
2019-04-10 17:48 - 2019-04-10 17:48 - 003776000 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Quick.dll
2019-04-10 17:50 - 2019-04-10 17:50 - 000072704 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5QuickWidgets.dll
2019-04-09 09:23 - 2019-04-09 09:23 - 000205312 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Sql.dll
2019-04-10 17:29 - 2019-04-10 17:29 - 000332288 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Svg.dll
2019-04-11 02:37 - 2019-04-11 02:37 - 079989760 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5WebEngineCore.dll
2019-04-11 02:54 - 2019-04-11 02:54 - 000228864 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5WebEngineWidgets.dll
2019-04-10 18:40 - 2019-04-10 18:40 - 000113664 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5WebChannel.dll
2019-04-09 09:27 - 2019-04-09 09:27 - 005580800 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Widgets.dll
2019-04-09 09:28 - 2019-04-09 09:28 - 001151488 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\sqldrivers\qsqlite.dll
2019-04-09 09:29 - 2019-04-09 09:29 - 000137216 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\styles\qwindowsvistastyle.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2020-01-31] (IObit Information Technology -> IObit)
BHO: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine\22.20.5.40\coIEPlg.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
BHO-x32: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine32\22.20.5.40\coIEPlg.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine\22.20.5.40\coIEPlg.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine32\22.20.5.40\coIEPlg.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\micha\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\summer_marathon_2018_2560x1440_logo_com_c2f913b335f7493b9dd1f3817c934be3.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{513B6330-E57D-4981-8AB1-FE0C94C1AB8F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4E80D5F0-61BA-4DE8-8E0C-4284C7374065}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5D65F29A-7C68-4C6D-AC2D-FE16D6D7C8FA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C1B4EC4A-1886-4227-BCE9-2C7FF1968A48}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{1CCE9B94-AFB1-436D-A0F4-D46F31492127}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CA8A0DB2-8426-4F49-9B3E-0CC94BB270EE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{87002034-958A-476F-AFC3-859E19641BD4}] => (Allow) C:\Program Files (x86)\WTFast\WTFast.exe (AAA Internet Publishing, Inc. -> AAA Internet Publishing, Inc.)
FirewallRules: [{0680AA6B-946B-4B6E-90D0-546F39BCA3B9}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{0ED1445C-A187-41A6-9433-B0AEA8C11D0C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{DD5DC949-0599-47F3-B2AB-54ABD14783BF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FF43246D-6EA6-4609-B379-49663C756592}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9EAC9953-507E-424D-A87E-282A3DF21227}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5D0AB822-F000-4A39-892C-108AA9B447E0}] => (Allow) D:\Games\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{8476216B-F2E4-43AF-A7BE-D8182AA31C9D}] => (Allow) D:\Games\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{9C91CD83-2399-449F-9B6C-71A75D9E32C3}] => (Allow) D:\Games\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{D8B69214-2DCE-4370-94F0-195CDD62F0B8}] => (Allow) D:\Games\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{82801007-56F4-4984-AF43-8F3A5405500E}] => (Allow) D:\Program Files (x86)\Farming Simulator 2019\FarmingSimulator2019.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{05D7A41D-1EA8-42D2-AA3A-96272AB11EF4}] => (Allow) D:\Program Files (x86)\Farming Simulator 2019\FarmingSimulator2019.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{C9A42E68-EBD0-4803-93D3-7837ECB0A751}] => (Allow) D:\Program Files (x86)\Farming Simulator 2019\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{BDF95722-D4F5-4989-9E3C-8A3EE1014015}] => (Allow) D:\Program Files (x86)\Farming Simulator 2019\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{B7387A7D-2817-494F-954A-D35F007CAE04}] => (Allow) C:\Games\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{4B3A50C8-4B2F-4F91-8262-243B7912403C}] => (Allow) C:\Games\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{67AC600C-C0DB-4DE8-9DE0-E8155FCB65AD}] => (Allow) C:\Games\Battlefield V\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{00A94EAF-47BA-49C6-9F4D-99B4634C1B50}] => (Allow) C:\Games\Battlefield V\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
==================== Restore Points =========================
28-12-2020 07:57:03 Nainstalováno rozhraní DirectX
28-12-2020 08:01:39 Nainstalováno rozhraní DirectX
28-12-2020 08:13:24 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
28-12-2020 08:48:52 Nainstalováno rozhraní DirectX
28-12-2020 12:59:41 Driver Booster : Realtek(R) Audio
29-12-2020 10:30:45 Driver Booster : Realtek PCIe GBE Family Controller
29-12-2020 11:17:39 Installed ProtonVPN
29-12-2020 11:19:07 Installed ProtonVPN
29-12-2020 11:21:09 Installed ProtonVPN
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (12/29/2020 12:17:51 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program FarmingSimulator2019Game.exe verze 8.0.0.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 1f88
Čas spuštění: 01d6ddccb7800be4
Čas ukončení: 12
Cesta k aplikaci: D:\Program Files (x86)\Farming Simulator 2019\x64\FarmingSimulator2019Game.exe
ID hlášení: f25734a3-0be6-43e1-98b9-f0206cdc4bba
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (12/29/2020 11:19:39 AM) (Source: MsiInstaller) (EventID: 11308) (User: DESKTOP-LVA03BU)
Description: Product: ProtonVPN -- Error 1308. Source file not found: C:\Users\micha\AppData\Local\Temp\{D19979C9-8B5B-4500-AA6A-EF331F658074}\F658074\ProtonVPN.exe. Verify that the file exists and that you can access it.
Error: (12/29/2020 11:19:34 AM) (Source: MsiInstaller) (EventID: 11308) (User: DESKTOP-LVA03BU)
Description: Product: ProtonVPN -- Error 1308. Source file not found: C:\Users\micha\AppData\Local\Temp\{D19979C9-8B5B-4500-AA6A-EF331F658074}\F658074\ProtonVPN.exe. Verify that the file exists and that you can access it.
Error: (12/29/2020 11:19:34 AM) (Source: MsiInstaller) (EventID: 11308) (User: DESKTOP-LVA03BU)
Description: Product: ProtonVPN -- Error 1308. Source file not found: C:\Users\micha\AppData\Local\Temp\{D19979C9-8B5B-4500-AA6A-EF331F658074}\F658074\ProtonVPN.exe. Verify that the file exists and that you can access it.
Error: (12/29/2020 11:19:34 AM) (Source: MsiInstaller) (EventID: 11308) (User: DESKTOP-LVA03BU)
Description: Product: ProtonVPN -- Error 1308. Source file not found: C:\Users\micha\AppData\Local\Temp\{D19979C9-8B5B-4500-AA6A-EF331F658074}\F658074\ProtonVPN.exe. Verify that the file exists and that you can access it.
Error: (12/29/2020 11:19:33 AM) (Source: MsiInstaller) (EventID: 11308) (User: DESKTOP-LVA03BU)
Description: Product: ProtonVPN -- Error 1308. Source file not found: C:\Users\micha\AppData\Local\Temp\{D19979C9-8B5B-4500-AA6A-EF331F658074}\F658074\ProtonVPN.exe. Verify that the file exists and that you can access it.
Error: (12/29/2020 11:19:33 AM) (Source: MsiInstaller) (EventID: 11308) (User: DESKTOP-LVA03BU)
Description: Product: ProtonVPN -- Error 1308. Source file not found: C:\Users\micha\AppData\Local\Temp\{D19979C9-8B5B-4500-AA6A-EF331F658074}\F658074\ProtonVPN.exe. Verify that the file exists and that you can access it.
Error: (12/29/2020 11:19:33 AM) (Source: MsiInstaller) (EventID: 11308) (User: DESKTOP-LVA03BU)
Description: Product: ProtonVPN -- Error 1308. Source file not found: C:\Users\micha\AppData\Local\Temp\{D19979C9-8B5B-4500-AA6A-EF331F658074}\F658074\ProtonVPN.exe. Verify that the file exists and that you can access it.
System errors:
=============
Error: (12/29/2020 08:53:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba AdvancedSystemCareService14 neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.
Error: (12/29/2020 08:53:04 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-LVA03BU)
Description: Server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/29/2020 11:17:58 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-LVA03BU)
Description: Server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/28/2020 11:14:12 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-LVA03BU)
Description: Server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/28/2020 04:16:57 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-LVA03BU)
Description: Server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/28/2020 07:41:23 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Steam Client Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (12/28/2020 07:41:23 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Steam Client Service bylo dosaženo časového limitu (30000 ms).
Error: (12/28/2020 07:21:46 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-LVA03BU)
Description: Server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} se v daném časovém limitu neregistroval u služby DCOM.
CodeIntegrity:
===================================
Date: 2020-12-29 20:56:37.5260000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-29 20:56:37.5190000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-29 20:56:37.5120000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-29 20:56:37.5060000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-29 20:56:37.4980000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-29 20:56:37.4900000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-29 20:56:37.4840000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-29 20:56:37.4770000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 2.40 03/08/2018
Motherboard: Micro-Star International Co., Ltd. Z370-A PRO (MS-7B48)
Processor: Intel(R) Core(TM) i5-8500 CPU @ 3.00GHz
Percentage of memory in use: 23%
Total physical RAM: 16344.73 MB
Available physical RAM: 12577.27 MB
Total Virtual: 19288.73 MB
Available Virtual: 13610.36 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:445.83 GB) (Free:209.73 GB) NTFS
Drive d: () (Fixed) (Total:1863 GB) (Free:1788.54 GB) NTFS
Drive e: (FarmingSimulator19) (CDROM) (Total:5.72 GB) (Free:0 GB) UDF
\\?\Volume{21153163-0000-0000-0000-100000000000}\ (Boot) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS
\\?\Volume{21153163-0000-0000-0000-a0946f000000}\ () (Fixed) (Total:0.81 GB) (Free:0.38 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 447.1 GB) (Disk ID: 21153163)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=445.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=826 MB) - (Type=27)
==========================================================
Disk: 1 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
Ran by micha (29-12-2020 21:02:14)
Running from C:\Users\micha\OneDrive\Plocha
Windows 10 Home Version 20H2 19042.685 (X64) (2020-12-27 23:38:06)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3466437676-3512538346-3754865819-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3466437676-3512538346-3754865819-503 - Limited - Disabled)
Guest (S-1-5-21-3466437676-3512538346-3754865819-501 - Limited - Disabled)
micha (S-1-5-21-3466437676-3512538346-3754865819-1001 - Administrator - Enabled) => C:\Users\micha
WDAGUtilityAccount (S-1-5-21-3466437676-3512538346-3754865819-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Norton Security (Enabled - Up to date) {30744133-1E94-7B35-F4A3-82A5AEF1CBAA}
AV: Norton Security (Enabled - Up to date) {9E3FD331-C4C2-7AC4-0537-131EEF1B1F8A}
FW: Norton Security (Enabled) {A6045214-8EAD-7B9C-2E68-BA2B11C858F1}
FW: Norton Security (Enabled) {084FC016-54FB-7A6D-DFFC-2B9050228CD1}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
«WGMods Essentials» - #4 (HKLM-x32\...\WGMods_Essentials_ENG_is1) (Version: 1.11.0.0 - WGMods.net)
Aktualizace NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden
Battlefield™ V (HKLM-x32\...\{e26b382f-e945-4f70-9318-121b683f1d61}) (Version: 1.0.64.43202 - Electronic Arts)
Discord (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
Driver Booster 8 (HKLM-x32\...\Driver Booster_is1) (Version: 8.2.0 - IObit)
Epic Games Launcher (HKLM-x32\...\{FEF3A9BA-A962-4469-AD62-04839D4BB847}) (Version: 1.1.298.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Farming Simulator 19 (HKLM-x32\...\FarmingSimulator2019_is1) (Version: 1.7.1 - GIANTS Software)
Google Drive (HKLM-x32\...\{459CE109-4E46-4340-92BC-054642BC3BC2}) (Version: 1.31.2873.2758 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.88 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1043 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{2b32b7d0-4f9f-47c8-adb7-807e6cb2fb75}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{44ded3eb-1686-46a6-9770-fd79096c29f7}) (Version: 10.1.1.45 - Intel(R) Corporation) Hidden
IObit Uninstaller 10 (HKLM-x32\...\IObitUninstall) (Version: 10.2.0.13 - IObit)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.66 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.59 - )
Microsoft OneDrive (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
MSI Kombustor 3.5.0 (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version: - MSI Co., LTD)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.2.0.69 - MSI)
MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.3.0.20 - MSI)
Norton Security (HKLM-x32\...\NGC) (Version: 22.20.5.40 - NortonLifeLock Inc)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.27 - NVIDIA Corporation) Hidden
NVIDIA FrameView SDK 1.1.4923.29214634 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29214634 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.5.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.5.70 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.40 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 460.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 460.89 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NvModuleTracker (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Version: 6.14.24033.38719 - NVIDIA Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.5.90.45798 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 460.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 460.89 - NVIDIA Corporation) Hidden
ProtonVPN (HKLM-x32\...\{D19979C9-8B5B-4500-AA6A-EF331F658074}) (Version: 1.17.5 - Proton Technologies AG) Hidden
ProtonVPN (HKLM-x32\...\ProtonVPN 1.17.5) (Version: 1.17.5 - Proton Technologies AG)
ProtonVPNTap (HKLM-x32\...\{BCB82CD9-F514-4F93-A6D9-F898494DC927}) (Version: 1.1.0 - Proton Technologies AG)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.23.1003.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8746.1 - Realtek Semiconductor Corp.)
Spotify (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\Spotify) (Version: 1.1.48.625.g1c87c7f7 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TAP-Windows 9.21.1 (HKLM\...\TAP-Windows) (Version: 9.21.1 - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH)
uRage Reaper Revolution Gaming mouse (HKLM-x32\...\uRage Reaper Revolution Gaming mouse) (Version: 1.0 - Areson)
War Thunder Launcher 1.0.3.260 (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Network)
Wargaming.net Game Center (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\Wargaming.net Game Center) (Version: 20.7.2.2851 - Wargaming.net)
WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
World of Tanks EU (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)
WTFast 4.0 (HKLM-x32\...\{12B4121D-5221-4AFC-9EDC-63B0CA139856}_is1) (Version: 4.0.7.692 - Initex & AAA Internet Publishing)
Packages:
=========
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2020-12-28] (Microsoft Studios) [MS Ad]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.14.225.0_x64__dt26b99r8h8gj [2020-12-28] (Realtek Semiconductor Corp)
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\microsoft.mpeg2videoextension_1.0.22661.0_x64__8wekyb3d8bbwe [2020-12-28] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers-x32: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers-x32: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers-x32: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> No File
ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-07-31] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.20.5.40\NavShExt.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext32.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> No File
ContextMenuHandlers2: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.20.5.40\NavShExt.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers4: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> No File
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-07-31] (IObit Information Technology -> IObit)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-12-12] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-07-31] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.20.5.40\NavShExt.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext32.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2020-12-28 07:39 - 2020-12-28 07:39 - 000157696 _____ () [File not signed] C:\Users\micha\AppData\Roaming\TS3Client\plugins\gamepad_joystick_win64.dll
2019-04-09 09:21 - 2019-04-09 09:21 - 000018432 _____ () [File not signed] D:\Program Files\TeamSpeak 3 Client\libEGL.DLL
2019-04-09 09:21 - 2019-04-09 09:21 - 003572224 _____ () [File not signed] D:\Program Files\TeamSpeak 3 Client\libGLESv2.dll
2019-04-10 17:30 - 2019-04-10 17:30 - 000035328 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\iconengines\qsvgicon.dll
2019-04-09 09:28 - 2019-04-09 09:28 - 000031744 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\imageformats\qgif.dll
2019-04-09 09:29 - 2019-04-09 09:29 - 000397312 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\imageformats\qjpeg.dll
2019-04-10 17:29 - 2019-04-10 17:29 - 000025600 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\imageformats\qsvg.dll
2019-04-09 09:30 - 2019-04-09 09:30 - 001453568 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\platforms\qwindows.dll
2019-05-31 12:05 - 2019-05-31 12:05 - 006130176 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Core.dll
2019-04-09 09:25 - 2019-04-09 09:25 - 006470656 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Gui.dll
2019-04-09 09:24 - 2019-04-09 09:24 - 001314816 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Network.dll
2019-04-10 18:31 - 2019-04-10 18:31 - 000317440 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Positioning.dll
2019-04-09 09:28 - 2019-04-09 09:28 - 000318464 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5PrintSupport.dll
2019-04-10 17:55 - 2019-04-10 17:55 - 004001792 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Qml.dll
2019-04-10 17:48 - 2019-04-10 17:48 - 003776000 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Quick.dll
2019-04-10 17:50 - 2019-04-10 17:50 - 000072704 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5QuickWidgets.dll
2019-04-09 09:23 - 2019-04-09 09:23 - 000205312 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Sql.dll
2019-04-10 17:29 - 2019-04-10 17:29 - 000332288 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Svg.dll
2019-04-11 02:37 - 2019-04-11 02:37 - 079989760 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5WebEngineCore.dll
2019-04-11 02:54 - 2019-04-11 02:54 - 000228864 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5WebEngineWidgets.dll
2019-04-10 18:40 - 2019-04-10 18:40 - 000113664 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5WebChannel.dll
2019-04-09 09:27 - 2019-04-09 09:27 - 005580800 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Widgets.dll
2019-04-09 09:28 - 2019-04-09 09:28 - 001151488 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\sqldrivers\qsqlite.dll
2019-04-09 09:29 - 2019-04-09 09:29 - 000137216 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\styles\qwindowsvistastyle.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2020-01-31] (IObit Information Technology -> IObit)
BHO: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine\22.20.5.40\coIEPlg.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
BHO-x32: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine32\22.20.5.40\coIEPlg.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine\22.20.5.40\coIEPlg.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine32\22.20.5.40\coIEPlg.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\micha\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\summer_marathon_2018_2560x1440_logo_com_c2f913b335f7493b9dd1f3817c934be3.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{513B6330-E57D-4981-8AB1-FE0C94C1AB8F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4E80D5F0-61BA-4DE8-8E0C-4284C7374065}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5D65F29A-7C68-4C6D-AC2D-FE16D6D7C8FA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C1B4EC4A-1886-4227-BCE9-2C7FF1968A48}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{1CCE9B94-AFB1-436D-A0F4-D46F31492127}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CA8A0DB2-8426-4F49-9B3E-0CC94BB270EE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{87002034-958A-476F-AFC3-859E19641BD4}] => (Allow) C:\Program Files (x86)\WTFast\WTFast.exe (AAA Internet Publishing, Inc. -> AAA Internet Publishing, Inc.)
FirewallRules: [{0680AA6B-946B-4B6E-90D0-546F39BCA3B9}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{0ED1445C-A187-41A6-9433-B0AEA8C11D0C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{DD5DC949-0599-47F3-B2AB-54ABD14783BF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FF43246D-6EA6-4609-B379-49663C756592}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9EAC9953-507E-424D-A87E-282A3DF21227}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5D0AB822-F000-4A39-892C-108AA9B447E0}] => (Allow) D:\Games\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{8476216B-F2E4-43AF-A7BE-D8182AA31C9D}] => (Allow) D:\Games\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{9C91CD83-2399-449F-9B6C-71A75D9E32C3}] => (Allow) D:\Games\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{D8B69214-2DCE-4370-94F0-195CDD62F0B8}] => (Allow) D:\Games\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{82801007-56F4-4984-AF43-8F3A5405500E}] => (Allow) D:\Program Files (x86)\Farming Simulator 2019\FarmingSimulator2019.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{05D7A41D-1EA8-42D2-AA3A-96272AB11EF4}] => (Allow) D:\Program Files (x86)\Farming Simulator 2019\FarmingSimulator2019.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{C9A42E68-EBD0-4803-93D3-7837ECB0A751}] => (Allow) D:\Program Files (x86)\Farming Simulator 2019\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{BDF95722-D4F5-4989-9E3C-8A3EE1014015}] => (Allow) D:\Program Files (x86)\Farming Simulator 2019\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{B7387A7D-2817-494F-954A-D35F007CAE04}] => (Allow) C:\Games\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{4B3A50C8-4B2F-4F91-8262-243B7912403C}] => (Allow) C:\Games\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{67AC600C-C0DB-4DE8-9DE0-E8155FCB65AD}] => (Allow) C:\Games\Battlefield V\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{00A94EAF-47BA-49C6-9F4D-99B4634C1B50}] => (Allow) C:\Games\Battlefield V\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
==================== Restore Points =========================
28-12-2020 07:57:03 Nainstalováno rozhraní DirectX
28-12-2020 08:01:39 Nainstalováno rozhraní DirectX
28-12-2020 08:13:24 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
28-12-2020 08:48:52 Nainstalováno rozhraní DirectX
28-12-2020 12:59:41 Driver Booster : Realtek(R) Audio
29-12-2020 10:30:45 Driver Booster : Realtek PCIe GBE Family Controller
29-12-2020 11:17:39 Installed ProtonVPN
29-12-2020 11:19:07 Installed ProtonVPN
29-12-2020 11:21:09 Installed ProtonVPN
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (12/29/2020 12:17:51 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program FarmingSimulator2019Game.exe verze 8.0.0.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 1f88
Čas spuštění: 01d6ddccb7800be4
Čas ukončení: 12
Cesta k aplikaci: D:\Program Files (x86)\Farming Simulator 2019\x64\FarmingSimulator2019Game.exe
ID hlášení: f25734a3-0be6-43e1-98b9-f0206cdc4bba
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (12/29/2020 11:19:39 AM) (Source: MsiInstaller) (EventID: 11308) (User: DESKTOP-LVA03BU)
Description: Product: ProtonVPN -- Error 1308. Source file not found: C:\Users\micha\AppData\Local\Temp\{D19979C9-8B5B-4500-AA6A-EF331F658074}\F658074\ProtonVPN.exe. Verify that the file exists and that you can access it.
Error: (12/29/2020 11:19:34 AM) (Source: MsiInstaller) (EventID: 11308) (User: DESKTOP-LVA03BU)
Description: Product: ProtonVPN -- Error 1308. Source file not found: C:\Users\micha\AppData\Local\Temp\{D19979C9-8B5B-4500-AA6A-EF331F658074}\F658074\ProtonVPN.exe. Verify that the file exists and that you can access it.
Error: (12/29/2020 11:19:34 AM) (Source: MsiInstaller) (EventID: 11308) (User: DESKTOP-LVA03BU)
Description: Product: ProtonVPN -- Error 1308. Source file not found: C:\Users\micha\AppData\Local\Temp\{D19979C9-8B5B-4500-AA6A-EF331F658074}\F658074\ProtonVPN.exe. Verify that the file exists and that you can access it.
Error: (12/29/2020 11:19:34 AM) (Source: MsiInstaller) (EventID: 11308) (User: DESKTOP-LVA03BU)
Description: Product: ProtonVPN -- Error 1308. Source file not found: C:\Users\micha\AppData\Local\Temp\{D19979C9-8B5B-4500-AA6A-EF331F658074}\F658074\ProtonVPN.exe. Verify that the file exists and that you can access it.
Error: (12/29/2020 11:19:33 AM) (Source: MsiInstaller) (EventID: 11308) (User: DESKTOP-LVA03BU)
Description: Product: ProtonVPN -- Error 1308. Source file not found: C:\Users\micha\AppData\Local\Temp\{D19979C9-8B5B-4500-AA6A-EF331F658074}\F658074\ProtonVPN.exe. Verify that the file exists and that you can access it.
Error: (12/29/2020 11:19:33 AM) (Source: MsiInstaller) (EventID: 11308) (User: DESKTOP-LVA03BU)
Description: Product: ProtonVPN -- Error 1308. Source file not found: C:\Users\micha\AppData\Local\Temp\{D19979C9-8B5B-4500-AA6A-EF331F658074}\F658074\ProtonVPN.exe. Verify that the file exists and that you can access it.
Error: (12/29/2020 11:19:33 AM) (Source: MsiInstaller) (EventID: 11308) (User: DESKTOP-LVA03BU)
Description: Product: ProtonVPN -- Error 1308. Source file not found: C:\Users\micha\AppData\Local\Temp\{D19979C9-8B5B-4500-AA6A-EF331F658074}\F658074\ProtonVPN.exe. Verify that the file exists and that you can access it.
System errors:
=============
Error: (12/29/2020 08:53:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba AdvancedSystemCareService14 neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.
Error: (12/29/2020 08:53:04 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-LVA03BU)
Description: Server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/29/2020 11:17:58 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-LVA03BU)
Description: Server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/28/2020 11:14:12 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-LVA03BU)
Description: Server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/28/2020 04:16:57 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-LVA03BU)
Description: Server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/28/2020 07:41:23 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Steam Client Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (12/28/2020 07:41:23 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Steam Client Service bylo dosaženo časového limitu (30000 ms).
Error: (12/28/2020 07:21:46 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-LVA03BU)
Description: Server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} se v daném časovém limitu neregistroval u služby DCOM.
CodeIntegrity:
===================================
Date: 2020-12-29 20:56:37.5260000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-29 20:56:37.5190000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-29 20:56:37.5120000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-29 20:56:37.5060000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-29 20:56:37.4980000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-29 20:56:37.4900000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-29 20:56:37.4840000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-29 20:56:37.4770000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 2.40 03/08/2018
Motherboard: Micro-Star International Co., Ltd. Z370-A PRO (MS-7B48)
Processor: Intel(R) Core(TM) i5-8500 CPU @ 3.00GHz
Percentage of memory in use: 23%
Total physical RAM: 16344.73 MB
Available physical RAM: 12577.27 MB
Total Virtual: 19288.73 MB
Available Virtual: 13610.36 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:445.83 GB) (Free:209.73 GB) NTFS
Drive d: () (Fixed) (Total:1863 GB) (Free:1788.54 GB) NTFS
Drive e: (FarmingSimulator19) (CDROM) (Total:5.72 GB) (Free:0 GB) UDF
\\?\Volume{21153163-0000-0000-0000-100000000000}\ (Boot) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS
\\?\Volume{21153163-0000-0000-0000-a0946f000000}\ () (Fixed) (Total:0.81 GB) (Free:0.38 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 447.1 GB) (Disk ID: 21153163)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=445.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=826 MB) - (Type=27)
==========================================================
Disk: 1 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
-
Rudy
- Site Admin
- Příspěvky: 118375
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu(procesor neustále běží na 100)
OK. Teď spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu(procesor neustále běží na 100)
# -------------------------------
# Malwarebytes AdwCleaner 8.0.8.0
# -------------------------------
# Build: 10-08-2020
# Database: 2020-12-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 12-30-2020
# Duration: 00:00:01
# OS: Windows 10 Home
# Cleaned: 15
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare
Deleted C:\Program Files (x86)\IObit\Advanced SystemCare
Deleted C:\ProgramData\IObit\Advanced SystemCare
Deleted C:\Users\micha\AppData\LocalLow\IObit\Advanced SystemCare
Deleted C:\Users\micha\AppData\Roaming\IObit\Advanced SystemCare
Deleted C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKLM\SOFTWARE\CLASSES\DIRECTORY\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted HKLM\SOFTWARE\CLASSES\DRIVE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted HKLM\SOFTWARE\CLASSES\LNKFILE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted HKLM\SOFTWARE\Classes\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted HKLM\Software\Classes\CLSID\{2803063F-4B8D-4dc6-8874-D1802487FE2D}
Deleted HKLM\Software\Classes\Interface\{BA935377-E17C-4475-B1BF-DE3110613A99}
Deleted HKLM\Software\Wow6432Node\IOBIT\ASC
Deleted HKLM\Software\Wow6432Node\IObit\RealTimeProtector
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [2830 octets] - [30/12/2020 10:49:05]
AdwCleaner_Debug.log - [7086 octets] - [30/12/2020 10:50:00]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
# Malwarebytes AdwCleaner 8.0.8.0
# -------------------------------
# Build: 10-08-2020
# Database: 2020-12-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 12-30-2020
# Duration: 00:00:01
# OS: Windows 10 Home
# Cleaned: 15
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare
Deleted C:\Program Files (x86)\IObit\Advanced SystemCare
Deleted C:\ProgramData\IObit\Advanced SystemCare
Deleted C:\Users\micha\AppData\LocalLow\IObit\Advanced SystemCare
Deleted C:\Users\micha\AppData\Roaming\IObit\Advanced SystemCare
Deleted C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKLM\SOFTWARE\CLASSES\DIRECTORY\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted HKLM\SOFTWARE\CLASSES\DRIVE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted HKLM\SOFTWARE\CLASSES\LNKFILE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted HKLM\SOFTWARE\Classes\CLSID\{645FF040-5081-101B-9F08-00AA002F954E}\shellex\ContextMenuHandlers\Advanced SystemCare
Deleted HKLM\Software\Classes\CLSID\{2803063F-4B8D-4dc6-8874-D1802487FE2D}
Deleted HKLM\Software\Classes\Interface\{BA935377-E17C-4475-B1BF-DE3110613A99}
Deleted HKLM\Software\Wow6432Node\IOBIT\ASC
Deleted HKLM\Software\Wow6432Node\IObit\RealTimeProtector
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [2830 octets] - [30/12/2020 10:49:05]
AdwCleaner_Debug.log - [7086 octets] - [30/12/2020 10:50:00]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 118375
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu(procesor neustále běží na 100)
Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu(procesor neustále běží na 100)
FRST
==================== End of FRST.txt ========================
Addition
==================== Memory info ===========================
BIOS: American Megatrends Inc. 2.40 03/08/2018
Motherboard: Micro-Star International Co., Ltd. Z370-A PRO (MS-7B48)
Processor: Intel(R) Core(TM) i5-8500 CPU @ 3.00GHz
Percentage of memory in use: 26%
Total physical RAM: 16344.71 MB
Available physical RAM: 11950.97 MB
Total Virtual: 19288.71 MB
Available Virtual: 12544.05 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:445.83 GB) (Free:209.13 GB) NTFS
Drive d: () (Fixed) (Total:1863 GB) (Free:1788.54 GB) NTFS
Drive e: (FarmingSimulator19) (CDROM) (Total:5.72 GB) (Free:0 GB) UDF
Drive f: (HiSuite) (CDROM) (Total:0 GB) (Free:0 GB) CDFS
\\?\Volume{21153163-0000-0000-0000-100000000000}\ (Boot) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS
\\?\Volume{21153163-0000-0000-0000-a0946f000000}\ () (Fixed) (Total:0.81 GB) (Free:0.38 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 447.1 GB) (Disk ID: 21153163)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=445.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=826 MB) - (Type=27)
==========================================================
Disk: 1 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
==================== End of FRST.txt ========================
Addition
==================== Memory info ===========================
BIOS: American Megatrends Inc. 2.40 03/08/2018
Motherboard: Micro-Star International Co., Ltd. Z370-A PRO (MS-7B48)
Processor: Intel(R) Core(TM) i5-8500 CPU @ 3.00GHz
Percentage of memory in use: 26%
Total physical RAM: 16344.71 MB
Available physical RAM: 11950.97 MB
Total Virtual: 19288.71 MB
Available Virtual: 12544.05 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:445.83 GB) (Free:209.13 GB) NTFS
Drive d: () (Fixed) (Total:1863 GB) (Free:1788.54 GB) NTFS
Drive e: (FarmingSimulator19) (CDROM) (Total:5.72 GB) (Free:0 GB) UDF
Drive f: (HiSuite) (CDROM) (Total:0 GB) (Free:0 GB) CDFS
\\?\Volume{21153163-0000-0000-0000-100000000000}\ (Boot) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS
\\?\Volume{21153163-0000-0000-0000-a0946f000000}\ () (Fixed) (Total:0.81 GB) (Free:0.38 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 447.1 GB) (Disk ID: 21153163)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=445.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=826 MB) - (Type=27)
==========================================================
Disk: 1 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
-
Rudy
- Site Admin
- Příspěvky: 118375
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu(procesor neustále běží na 100)
Nějaké divné logy, ne? FRST Prázdný a Addition jen některé položky.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu(procesor neustále běží na 100)
FRST64 log s programu
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-12-2020
Ran by micha (30-12-2020 13:59:02)
Running from C:\Users\micha\OneDrive\Plocha
Windows 10 Home Version 20H2 19042.685 (X64) (2020-12-27 23:38:06)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3466437676-3512538346-3754865819-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3466437676-3512538346-3754865819-503 - Limited - Disabled)
Guest (S-1-5-21-3466437676-3512538346-3754865819-501 - Limited - Disabled)
micha (S-1-5-21-3466437676-3512538346-3754865819-1001 - Administrator - Enabled) => C:\Users\micha
WDAGUtilityAccount (S-1-5-21-3466437676-3512538346-3754865819-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Norton Security (Enabled - Up to date) {30744133-1E94-7B35-F4A3-82A5AEF1CBAA}
AV: Norton Security (Enabled - Up to date) {9E3FD331-C4C2-7AC4-0537-131EEF1B1F8A}
FW: Norton Security (Enabled) {A6045214-8EAD-7B9C-2E68-BA2B11C858F1}
FW: Norton Security (Enabled) {084FC016-54FB-7A6D-DFFC-2B9050228CD1}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
«WGMods Essentials» - #4 (HKLM-x32\...\WGMods_Essentials_ENG_is1) (Version: 1.11.0.0 - WGMods.net)
Aktualizace NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden
Battlefield™ V (HKLM-x32\...\{e26b382f-e945-4f70-9318-121b683f1d61}) (Version: 1.0.64.43202 - Electronic Arts)
Discord (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{FEF3A9BA-A962-4469-AD62-04839D4BB847}) (Version: 1.1.298.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Farming Simulator 19 (HKLM-x32\...\FarmingSimulator2019_is1) (Version: 1.7.1 - GIANTS Software)
Google Drive (HKLM-x32\...\{459CE109-4E46-4340-92BC-054642BC3BC2}) (Version: 1.31.2873.2758 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.88 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1043 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{2b32b7d0-4f9f-47c8-adb7-807e6cb2fb75}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{44ded3eb-1686-46a6-9770-fd79096c29f7}) (Version: 10.1.1.45 - Intel(R) Corporation) Hidden
IObit Uninstaller 10 (HKLM-x32\...\IObitUninstall) (Version: 10.2.0.13 - IObit)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.66 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.59 - )
Microsoft OneDrive (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
MSI Kombustor 3.5.0 (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version: - MSI Co., LTD)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.2.0.69 - MSI)
MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.3.0.20 - MSI)
Norton Security (HKLM-x32\...\NGC) (Version: 22.20.5.40 - NortonLifeLock Inc)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.27 - NVIDIA Corporation) Hidden
NVIDIA FrameView SDK 1.1.4923.29214634 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29214634 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.5.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.5.70 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.40 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 460.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 460.89 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NvModuleTracker (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Version: 6.14.24033.38719 - NVIDIA Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.5.90.45798 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 460.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 460.89 - NVIDIA Corporation) Hidden
ProtonVPN (HKLM-x32\...\{D19979C9-8B5B-4500-AA6A-EF331F658074}) (Version: 1.17.5 - Proton Technologies AG) Hidden
ProtonVPN (HKLM-x32\...\ProtonVPN 1.17.5) (Version: 1.17.5 - Proton Technologies AG)
ProtonVPNTap (HKLM-x32\...\{BCB82CD9-F514-4F93-A6D9-F898494DC927}) (Version: 1.1.0 - Proton Technologies AG)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.23.1003.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8746.1 - Realtek Semiconductor Corp.)
Spotify (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\Spotify) (Version: 1.1.48.625.g1c87c7f7 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TAP-Windows 9.21.1 (HKLM\...\TAP-Windows) (Version: 9.21.1 - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH)
uRage Reaper Revolution Gaming mouse (HKLM-x32\...\uRage Reaper Revolution Gaming mouse) (Version: 1.0 - Areson)
War Thunder Launcher 1.0.3.260 (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Network)
Wargaming.net Game Center (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\Wargaming.net Game Center) (Version: 20.7.2.2851 - Wargaming.net)
WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
World of Tanks EU (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)
WTFast 4.0 (HKLM-x32\...\{12B4121D-5221-4AFC-9EDC-63B0CA139856}_is1) (Version: 4.0.7.692 - Initex & AAA Internet Publishing)
Packages:
=========
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2020-12-28] (Microsoft Studios) [MS Ad]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.14.225.0_x64__dt26b99r8h8gj [2020-12-28] (Realtek Semiconductor Corp)
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\microsoft.mpeg2videoextension_1.0.22661.0_x64__8wekyb3d8bbwe [2020-12-28] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers-x32: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers-x32: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers-x32: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-07-31] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.20.5.40\NavShExt.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext32.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.20.5.40\NavShExt.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-07-31] (IObit Information Technology -> IObit)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-12-12] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-07-31] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.20.5.40\NavShExt.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext32.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2020-12-28 08:22 - 2020-12-30 13:24 - 000167936 _____ () [File not signed] C:\Games\World_of_Tanks_EU\mods\temp\com.modxvm.xfw.native\native_64bit\_ctypes.pyd
2020-12-28 08:22 - 2020-12-30 13:24 - 000140800 _____ () [File not signed] C:\Games\World_of_Tanks_EU\mods\temp\com.modxvm.xfw.native\native_64bit\xfw_wotexport.dll
2020-12-28 07:39 - 2020-12-28 07:39 - 000157696 _____ () [File not signed] C:\Users\micha\AppData\Roaming\TS3Client\plugins\gamepad_joystick_win64.dll
2019-04-09 09:21 - 2019-04-09 09:21 - 000018432 _____ () [File not signed] D:\Program Files\TeamSpeak 3 Client\libEGL.DLL
2019-04-09 09:21 - 2019-04-09 09:21 - 003572224 _____ () [File not signed] D:\Program Files\TeamSpeak 3 Client\libGLESv2.dll
2019-04-10 17:30 - 2019-04-10 17:30 - 000035328 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\iconengines\qsvgicon.dll
2019-04-09 09:28 - 2019-04-09 09:28 - 000031744 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\imageformats\qgif.dll
2019-04-09 09:29 - 2019-04-09 09:29 - 000397312 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\imageformats\qjpeg.dll
2019-04-10 17:29 - 2019-04-10 17:29 - 000025600 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\imageformats\qsvg.dll
2019-04-09 09:30 - 2019-04-09 09:30 - 001453568 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\platforms\qwindows.dll
2019-05-31 12:05 - 2019-05-31 12:05 - 006130176 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Core.dll
2019-04-09 09:25 - 2019-04-09 09:25 - 006470656 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Gui.dll
2019-04-09 09:24 - 2019-04-09 09:24 - 001314816 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Network.dll
2019-04-10 18:31 - 2019-04-10 18:31 - 000317440 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Positioning.dll
2019-04-09 09:28 - 2019-04-09 09:28 - 000318464 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5PrintSupport.dll
2019-04-10 17:55 - 2019-04-10 17:55 - 004001792 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Qml.dll
2019-04-10 17:48 - 2019-04-10 17:48 - 003776000 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Quick.dll
2019-04-10 17:50 - 2019-04-10 17:50 - 000072704 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5QuickWidgets.dll
2019-04-09 09:23 - 2019-04-09 09:23 - 000205312 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Sql.dll
2019-04-10 17:29 - 2019-04-10 17:29 - 000332288 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Svg.dll
2019-04-11 02:37 - 2019-04-11 02:37 - 079989760 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5WebEngineCore.dll
2019-04-11 02:54 - 2019-04-11 02:54 - 000228864 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5WebEngineWidgets.dll
2019-04-10 18:40 - 2019-04-10 18:40 - 000113664 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5WebChannel.dll
2019-04-09 09:27 - 2019-04-09 09:27 - 005580800 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Widgets.dll
2019-04-09 09:28 - 2019-04-09 09:28 - 001151488 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\sqldrivers\qsqlite.dll
2019-04-09 09:29 - 2019-04-09 09:29 - 000137216 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\styles\qwindowsvistastyle.dll
2020-12-28 08:22 - 2020-12-30 13:24 - 000050688 _____ (Tsuda Kageyu) [File not signed] C:\Games\World_of_Tanks_EU\mods\temp\com.modxvm.xfw.native\native_64bit\MinHook.x64.dll
2020-12-28 08:22 - 2020-12-30 13:24 - 000208384 _____ (WoT libpython contributors) [File not signed] C:\Games\World_of_Tanks_EU\mods\temp\com.modxvm.xfw.native\native_64bit\python27.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2020-01-31] (IObit Information Technology -> IObit)
BHO: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine\22.20.5.40\coIEPlg.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
BHO-x32: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine32\22.20.5.40\coIEPlg.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine\22.20.5.40\coIEPlg.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine32\22.20.5.40\coIEPlg.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\micha\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\summer_marathon_2018_2560x1440_logo_com_c2f913b335f7493b9dd1f3817c934be3.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{513B6330-E57D-4981-8AB1-FE0C94C1AB8F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4E80D5F0-61BA-4DE8-8E0C-4284C7374065}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5D65F29A-7C68-4C6D-AC2D-FE16D6D7C8FA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C1B4EC4A-1886-4227-BCE9-2C7FF1968A48}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{1CCE9B94-AFB1-436D-A0F4-D46F31492127}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CA8A0DB2-8426-4F49-9B3E-0CC94BB270EE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{87002034-958A-476F-AFC3-859E19641BD4}] => (Allow) C:\Program Files (x86)\WTFast\WTFast.exe (AAA Internet Publishing, Inc. -> AAA Internet Publishing, Inc.)
FirewallRules: [{0680AA6B-946B-4B6E-90D0-546F39BCA3B9}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{0ED1445C-A187-41A6-9433-B0AEA8C11D0C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{DD5DC949-0599-47F3-B2AB-54ABD14783BF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FF43246D-6EA6-4609-B379-49663C756592}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9EAC9953-507E-424D-A87E-282A3DF21227}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5D0AB822-F000-4A39-892C-108AA9B447E0}] => (Allow) D:\Games\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{8476216B-F2E4-43AF-A7BE-D8182AA31C9D}] => (Allow) D:\Games\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{9C91CD83-2399-449F-9B6C-71A75D9E32C3}] => (Allow) D:\Games\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{D8B69214-2DCE-4370-94F0-195CDD62F0B8}] => (Allow) D:\Games\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{82801007-56F4-4984-AF43-8F3A5405500E}] => (Allow) D:\Program Files (x86)\Farming Simulator 2019\FarmingSimulator2019.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{05D7A41D-1EA8-42D2-AA3A-96272AB11EF4}] => (Allow) D:\Program Files (x86)\Farming Simulator 2019\FarmingSimulator2019.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{C9A42E68-EBD0-4803-93D3-7837ECB0A751}] => (Allow) D:\Program Files (x86)\Farming Simulator 2019\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{BDF95722-D4F5-4989-9E3C-8A3EE1014015}] => (Allow) D:\Program Files (x86)\Farming Simulator 2019\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{B7387A7D-2817-494F-954A-D35F007CAE04}] => (Allow) C:\Games\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{4B3A50C8-4B2F-4F91-8262-243B7912403C}] => (Allow) C:\Games\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{67AC600C-C0DB-4DE8-9DE0-E8155FCB65AD}] => (Allow) C:\Games\Battlefield V\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{00A94EAF-47BA-49C6-9F4D-99B4634C1B50}] => (Allow) C:\Games\Battlefield V\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
==================== Restore Points =========================
28-12-2020 07:57:03 Nainstalováno rozhraní DirectX
28-12-2020 08:01:39 Nainstalováno rozhraní DirectX
28-12-2020 08:13:24 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
28-12-2020 08:48:52 Nainstalováno rozhraní DirectX
28-12-2020 12:59:41 Driver Booster : Realtek(R) Audio
29-12-2020 10:30:45 Driver Booster : Realtek PCIe GBE Family Controller
29-12-2020 11:17:39 Installed ProtonVPN
29-12-2020 11:19:07 Installed ProtonVPN
29-12-2020 11:21:09 Installed ProtonVPN
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (12/29/2020 12:17:51 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program FarmingSimulator2019Game.exe verze 8.0.0.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 1f88
Čas spuštění: 01d6ddccb7800be4
Čas ukončení: 12
Cesta k aplikaci: D:\Program Files (x86)\Farming Simulator 2019\x64\FarmingSimulator2019Game.exe
ID hlášení: f25734a3-0be6-43e1-98b9-f0206cdc4bba
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (12/29/2020 11:19:39 AM) (Source: MsiInstaller) (EventID: 11308) (User: DESKTOP-LVA03BU)
Description: Product: ProtonVPN -- Error 1308. Source file not found: C:\Users\micha\AppData\Local\Temp\{D19979C9-8B5B-4500-AA6A-EF331F658074}\F658074\ProtonVPN.exe. Verify that the file exists and that you can access it.
Error: (12/29/2020 11:19:34 AM) (Source: MsiInstaller) (EventID: 11308) (User: DESKTOP-LVA03BU)
Description: Product: ProtonVPN -- Error 1308. Source file not found: C:\Users\micha\AppData\Local\Temp\{D19979C9-8B5B-4500-AA6A-EF331F658074}\F658074\ProtonVPN.exe. Verify that the file exists and that you can access it.
Error: (12/29/2020 11:19:34 AM) (Source: MsiInstaller) (EventID: 11308) (User: DESKTOP-LVA03BU)
Description: Product: ProtonVPN -- Error 1308. Source file not found: C:\Users\micha\AppData\Local\Temp\{D19979C9-8B5B-4500-AA6A-EF331F658074}\F658074\ProtonVPN.exe. Verify that the file exists and that you can access it.
Error: (12/29/2020 11:19:34 AM) (Source: MsiInstaller) (EventID: 11308) (User: DESKTOP-LVA03BU)
Description: Product: ProtonVPN -- Error 1308. Source file not found: C:\Users\micha\AppData\Local\Temp\{D19979C9-8B5B-4500-AA6A-EF331F658074}\F658074\ProtonVPN.exe. Verify that the file exists and that you can access it.
Error: (12/29/2020 11:19:33 AM) (Source: MsiInstaller) (EventID: 11308) (User: DESKTOP-LVA03BU)
Description: Product: ProtonVPN -- Error 1308. Source file not found: C:\Users\micha\AppData\Local\Temp\{D19979C9-8B5B-4500-AA6A-EF331F658074}\F658074\ProtonVPN.exe. Verify that the file exists and that you can access it.
Error: (12/29/2020 11:19:33 AM) (Source: MsiInstaller) (EventID: 11308) (User: DESKTOP-LVA03BU)
Description: Product: ProtonVPN -- Error 1308. Source file not found: C:\Users\micha\AppData\Local\Temp\{D19979C9-8B5B-4500-AA6A-EF331F658074}\F658074\ProtonVPN.exe. Verify that the file exists and that you can access it.
Error: (12/29/2020 11:19:33 AM) (Source: MsiInstaller) (EventID: 11308) (User: DESKTOP-LVA03BU)
Description: Product: ProtonVPN -- Error 1308. Source file not found: C:\Users\micha\AppData\Local\Temp\{D19979C9-8B5B-4500-AA6A-EF331F658074}\F658074\ProtonVPN.exe. Verify that the file exists and that you can access it.
System errors:
=============
Error: (12/30/2020 10:52:33 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba AdvancedSystemCareService14 neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.
Error: (12/30/2020 10:51:52 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Storage Middleware Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (12/30/2020 10:51:52 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA Display Container LS byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.
Error: (12/30/2020 10:51:52 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba MSI Super Charger Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (12/29/2020 09:45:58 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba AdvancedSystemCareService14 neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.
Error: (12/29/2020 09:44:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba AdvancedSystemCareService14 neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.
Error: (12/29/2020 09:43:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba AdvancedSystemCareService14 neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.
Error: (12/29/2020 09:41:32 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-LVA03BU)
Description: Server {A463FCB9-6B1C-4E0D-A80B-A2CA7999E25D} se v daném časovém limitu neregistroval u služby DCOM.
CodeIntegrity:
===================================
Date: 2020-12-30 10:55:36.1370000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-30 10:55:36.1300000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-30 10:55:36.1230000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-30 10:55:36.1170000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-30 10:55:36.1090000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-30 10:55:36.1010000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-30 10:55:36.0940000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-30 10:55:36.0870000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 2.40 03/08/2018
Motherboard: Micro-Star International Co., Ltd. Z370-A PRO (MS-7B48)
Processor: Intel(R) Core(TM) i5-8500 CPU @ 3.00GHz
Percentage of memory in use: 47%
Total physical RAM: 16344.71 MB
Available physical RAM: 8662.28 MB
Total Virtual: 19288.71 MB
Available Virtual: 7521.16 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:445.83 GB) (Free:208.98 GB) NTFS
Drive d: () (Fixed) (Total:1863 GB) (Free:1788.54 GB) NTFS
Drive e: (FarmingSimulator19) (CDROM) (Total:5.72 GB) (Free:0 GB) UDF
Drive f: (HiSuite) (CDROM) (Total:0 GB) (Free:0 GB) CDFS
\\?\Volume{21153163-0000-0000-0000-100000000000}\ (Boot) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS
\\?\Volume{21153163-0000-0000-0000-a0946f000000}\ () (Fixed) (Total:0.81 GB) (Free:0.38 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 447.1 GB) (Disk ID: 21153163)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=445.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=826 MB) - (Type=27)
==========================================================
Disk: 1 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-12-2020
Ran by micha (30-12-2020 13:59:02)
Running from C:\Users\micha\OneDrive\Plocha
Windows 10 Home Version 20H2 19042.685 (X64) (2020-12-27 23:38:06)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3466437676-3512538346-3754865819-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3466437676-3512538346-3754865819-503 - Limited - Disabled)
Guest (S-1-5-21-3466437676-3512538346-3754865819-501 - Limited - Disabled)
micha (S-1-5-21-3466437676-3512538346-3754865819-1001 - Administrator - Enabled) => C:\Users\micha
WDAGUtilityAccount (S-1-5-21-3466437676-3512538346-3754865819-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Norton Security (Enabled - Up to date) {30744133-1E94-7B35-F4A3-82A5AEF1CBAA}
AV: Norton Security (Enabled - Up to date) {9E3FD331-C4C2-7AC4-0537-131EEF1B1F8A}
FW: Norton Security (Enabled) {A6045214-8EAD-7B9C-2E68-BA2B11C858F1}
FW: Norton Security (Enabled) {084FC016-54FB-7A6D-DFFC-2B9050228CD1}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
«WGMods Essentials» - #4 (HKLM-x32\...\WGMods_Essentials_ENG_is1) (Version: 1.11.0.0 - WGMods.net)
Aktualizace NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden
Battlefield™ V (HKLM-x32\...\{e26b382f-e945-4f70-9318-121b683f1d61}) (Version: 1.0.64.43202 - Electronic Arts)
Discord (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{FEF3A9BA-A962-4469-AD62-04839D4BB847}) (Version: 1.1.298.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Farming Simulator 19 (HKLM-x32\...\FarmingSimulator2019_is1) (Version: 1.7.1 - GIANTS Software)
Google Drive (HKLM-x32\...\{459CE109-4E46-4340-92BC-054642BC3BC2}) (Version: 1.31.2873.2758 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.88 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1043 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{2b32b7d0-4f9f-47c8-adb7-807e6cb2fb75}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{44ded3eb-1686-46a6-9770-fd79096c29f7}) (Version: 10.1.1.45 - Intel(R) Corporation) Hidden
IObit Uninstaller 10 (HKLM-x32\...\IObitUninstall) (Version: 10.2.0.13 - IObit)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.66 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.59 - )
Microsoft OneDrive (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
MSI Kombustor 3.5.0 (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version: - MSI Co., LTD)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.2.0.69 - MSI)
MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.3.0.20 - MSI)
Norton Security (HKLM-x32\...\NGC) (Version: 22.20.5.40 - NortonLifeLock Inc)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.27 - NVIDIA Corporation) Hidden
NVIDIA FrameView SDK 1.1.4923.29214634 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29214634 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.5.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.5.70 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.40 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 460.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 460.89 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NvModuleTracker (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Version: 6.14.24033.38719 - NVIDIA Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.5.90.45798 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 460.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 460.89 - NVIDIA Corporation) Hidden
ProtonVPN (HKLM-x32\...\{D19979C9-8B5B-4500-AA6A-EF331F658074}) (Version: 1.17.5 - Proton Technologies AG) Hidden
ProtonVPN (HKLM-x32\...\ProtonVPN 1.17.5) (Version: 1.17.5 - Proton Technologies AG)
ProtonVPNTap (HKLM-x32\...\{BCB82CD9-F514-4F93-A6D9-F898494DC927}) (Version: 1.1.0 - Proton Technologies AG)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.23.1003.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8746.1 - Realtek Semiconductor Corp.)
Spotify (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\Spotify) (Version: 1.1.48.625.g1c87c7f7 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TAP-Windows 9.21.1 (HKLM\...\TAP-Windows) (Version: 9.21.1 - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH)
uRage Reaper Revolution Gaming mouse (HKLM-x32\...\uRage Reaper Revolution Gaming mouse) (Version: 1.0 - Areson)
War Thunder Launcher 1.0.3.260 (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Network)
Wargaming.net Game Center (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\Wargaming.net Game Center) (Version: 20.7.2.2851 - Wargaming.net)
WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
World of Tanks EU (HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)
WTFast 4.0 (HKLM-x32\...\{12B4121D-5221-4AFC-9EDC-63B0CA139856}_is1) (Version: 4.0.7.692 - Initex & AAA Internet Publishing)
Packages:
=========
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2020-12-28] (Microsoft Studios) [MS Ad]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.14.225.0_x64__dt26b99r8h8gj [2020-12-28] (Realtek Semiconductor Corp)
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\microsoft.mpeg2videoextension_1.0.22661.0_x64__8wekyb3d8bbwe [2020-12-28] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers-x32: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers-x32: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ShellIconOverlayIdentifiers-x32: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-07-31] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.20.5.40\NavShExt.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext32.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.20.5.40\NavShExt.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-07-31] (IObit Information Technology -> IObit)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-12-12] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.20.5.40\buShell.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2020-07-31] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.20.5.40\NavShExt.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext32.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2020-12-28 08:22 - 2020-12-30 13:24 - 000167936 _____ () [File not signed] C:\Games\World_of_Tanks_EU\mods\temp\com.modxvm.xfw.native\native_64bit\_ctypes.pyd
2020-12-28 08:22 - 2020-12-30 13:24 - 000140800 _____ () [File not signed] C:\Games\World_of_Tanks_EU\mods\temp\com.modxvm.xfw.native\native_64bit\xfw_wotexport.dll
2020-12-28 07:39 - 2020-12-28 07:39 - 000157696 _____ () [File not signed] C:\Users\micha\AppData\Roaming\TS3Client\plugins\gamepad_joystick_win64.dll
2019-04-09 09:21 - 2019-04-09 09:21 - 000018432 _____ () [File not signed] D:\Program Files\TeamSpeak 3 Client\libEGL.DLL
2019-04-09 09:21 - 2019-04-09 09:21 - 003572224 _____ () [File not signed] D:\Program Files\TeamSpeak 3 Client\libGLESv2.dll
2019-04-10 17:30 - 2019-04-10 17:30 - 000035328 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\iconengines\qsvgicon.dll
2019-04-09 09:28 - 2019-04-09 09:28 - 000031744 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\imageformats\qgif.dll
2019-04-09 09:29 - 2019-04-09 09:29 - 000397312 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\imageformats\qjpeg.dll
2019-04-10 17:29 - 2019-04-10 17:29 - 000025600 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\imageformats\qsvg.dll
2019-04-09 09:30 - 2019-04-09 09:30 - 001453568 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\platforms\qwindows.dll
2019-05-31 12:05 - 2019-05-31 12:05 - 006130176 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Core.dll
2019-04-09 09:25 - 2019-04-09 09:25 - 006470656 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Gui.dll
2019-04-09 09:24 - 2019-04-09 09:24 - 001314816 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Network.dll
2019-04-10 18:31 - 2019-04-10 18:31 - 000317440 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Positioning.dll
2019-04-09 09:28 - 2019-04-09 09:28 - 000318464 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5PrintSupport.dll
2019-04-10 17:55 - 2019-04-10 17:55 - 004001792 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Qml.dll
2019-04-10 17:48 - 2019-04-10 17:48 - 003776000 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Quick.dll
2019-04-10 17:50 - 2019-04-10 17:50 - 000072704 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5QuickWidgets.dll
2019-04-09 09:23 - 2019-04-09 09:23 - 000205312 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Sql.dll
2019-04-10 17:29 - 2019-04-10 17:29 - 000332288 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Svg.dll
2019-04-11 02:37 - 2019-04-11 02:37 - 079989760 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5WebEngineCore.dll
2019-04-11 02:54 - 2019-04-11 02:54 - 000228864 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5WebEngineWidgets.dll
2019-04-10 18:40 - 2019-04-10 18:40 - 000113664 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5WebChannel.dll
2019-04-09 09:27 - 2019-04-09 09:27 - 005580800 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\Qt5Widgets.dll
2019-04-09 09:28 - 2019-04-09 09:28 - 001151488 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\sqldrivers\qsqlite.dll
2019-04-09 09:29 - 2019-04-09 09:29 - 000137216 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\TeamSpeak 3 Client\styles\qwindowsvistastyle.dll
2020-12-28 08:22 - 2020-12-30 13:24 - 000050688 _____ (Tsuda Kageyu) [File not signed] C:\Games\World_of_Tanks_EU\mods\temp\com.modxvm.xfw.native\native_64bit\MinHook.x64.dll
2020-12-28 08:22 - 2020-12-30 13:24 - 000208384 _____ (WoT libpython contributors) [File not signed] C:\Games\World_of_Tanks_EU\mods\temp\com.modxvm.xfw.native\native_64bit\python27.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2020-01-31] (IObit Information Technology -> IObit)
BHO: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine\22.20.5.40\coIEPlg.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
BHO-x32: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine32\22.20.5.40\coIEPlg.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine\22.20.5.40\coIEPlg.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine32\22.20.5.40\coIEPlg.dll [2020-08-01] (NortonLifeLock Inc. -> NortonLifeLock Inc.)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\micha\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\summer_marathon_2018_2560x1440_logo_com_c2f913b335f7493b9dd1f3817c934be3.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{513B6330-E57D-4981-8AB1-FE0C94C1AB8F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4E80D5F0-61BA-4DE8-8E0C-4284C7374065}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5D65F29A-7C68-4C6D-AC2D-FE16D6D7C8FA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C1B4EC4A-1886-4227-BCE9-2C7FF1968A48}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{1CCE9B94-AFB1-436D-A0F4-D46F31492127}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CA8A0DB2-8426-4F49-9B3E-0CC94BB270EE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{87002034-958A-476F-AFC3-859E19641BD4}] => (Allow) C:\Program Files (x86)\WTFast\WTFast.exe (AAA Internet Publishing, Inc. -> AAA Internet Publishing, Inc.)
FirewallRules: [{0680AA6B-946B-4B6E-90D0-546F39BCA3B9}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{0ED1445C-A187-41A6-9433-B0AEA8C11D0C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{DD5DC949-0599-47F3-B2AB-54ABD14783BF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FF43246D-6EA6-4609-B379-49663C756592}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9EAC9953-507E-424D-A87E-282A3DF21227}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5D0AB822-F000-4A39-892C-108AA9B447E0}] => (Allow) D:\Games\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{8476216B-F2E4-43AF-A7BE-D8182AA31C9D}] => (Allow) D:\Games\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{9C91CD83-2399-449F-9B6C-71A75D9E32C3}] => (Allow) D:\Games\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{D8B69214-2DCE-4370-94F0-195CDD62F0B8}] => (Allow) D:\Games\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{82801007-56F4-4984-AF43-8F3A5405500E}] => (Allow) D:\Program Files (x86)\Farming Simulator 2019\FarmingSimulator2019.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{05D7A41D-1EA8-42D2-AA3A-96272AB11EF4}] => (Allow) D:\Program Files (x86)\Farming Simulator 2019\FarmingSimulator2019.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{C9A42E68-EBD0-4803-93D3-7837ECB0A751}] => (Allow) D:\Program Files (x86)\Farming Simulator 2019\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{BDF95722-D4F5-4989-9E3C-8A3EE1014015}] => (Allow) D:\Program Files (x86)\Farming Simulator 2019\x64\FarmingSimulator2019Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{B7387A7D-2817-494F-954A-D35F007CAE04}] => (Allow) C:\Games\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{4B3A50C8-4B2F-4F91-8262-243B7912403C}] => (Allow) C:\Games\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{67AC600C-C0DB-4DE8-9DE0-E8155FCB65AD}] => (Allow) C:\Games\Battlefield V\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{00A94EAF-47BA-49C6-9F4D-99B4634C1B50}] => (Allow) C:\Games\Battlefield V\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
==================== Restore Points =========================
28-12-2020 07:57:03 Nainstalováno rozhraní DirectX
28-12-2020 08:01:39 Nainstalováno rozhraní DirectX
28-12-2020 08:13:24 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
28-12-2020 08:48:52 Nainstalováno rozhraní DirectX
28-12-2020 12:59:41 Driver Booster : Realtek(R) Audio
29-12-2020 10:30:45 Driver Booster : Realtek PCIe GBE Family Controller
29-12-2020 11:17:39 Installed ProtonVPN
29-12-2020 11:19:07 Installed ProtonVPN
29-12-2020 11:21:09 Installed ProtonVPN
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (12/29/2020 12:17:51 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program FarmingSimulator2019Game.exe verze 8.0.0.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 1f88
Čas spuštění: 01d6ddccb7800be4
Čas ukončení: 12
Cesta k aplikaci: D:\Program Files (x86)\Farming Simulator 2019\x64\FarmingSimulator2019Game.exe
ID hlášení: f25734a3-0be6-43e1-98b9-f0206cdc4bba
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (12/29/2020 11:19:39 AM) (Source: MsiInstaller) (EventID: 11308) (User: DESKTOP-LVA03BU)
Description: Product: ProtonVPN -- Error 1308. Source file not found: C:\Users\micha\AppData\Local\Temp\{D19979C9-8B5B-4500-AA6A-EF331F658074}\F658074\ProtonVPN.exe. Verify that the file exists and that you can access it.
Error: (12/29/2020 11:19:34 AM) (Source: MsiInstaller) (EventID: 11308) (User: DESKTOP-LVA03BU)
Description: Product: ProtonVPN -- Error 1308. Source file not found: C:\Users\micha\AppData\Local\Temp\{D19979C9-8B5B-4500-AA6A-EF331F658074}\F658074\ProtonVPN.exe. Verify that the file exists and that you can access it.
Error: (12/29/2020 11:19:34 AM) (Source: MsiInstaller) (EventID: 11308) (User: DESKTOP-LVA03BU)
Description: Product: ProtonVPN -- Error 1308. Source file not found: C:\Users\micha\AppData\Local\Temp\{D19979C9-8B5B-4500-AA6A-EF331F658074}\F658074\ProtonVPN.exe. Verify that the file exists and that you can access it.
Error: (12/29/2020 11:19:34 AM) (Source: MsiInstaller) (EventID: 11308) (User: DESKTOP-LVA03BU)
Description: Product: ProtonVPN -- Error 1308. Source file not found: C:\Users\micha\AppData\Local\Temp\{D19979C9-8B5B-4500-AA6A-EF331F658074}\F658074\ProtonVPN.exe. Verify that the file exists and that you can access it.
Error: (12/29/2020 11:19:33 AM) (Source: MsiInstaller) (EventID: 11308) (User: DESKTOP-LVA03BU)
Description: Product: ProtonVPN -- Error 1308. Source file not found: C:\Users\micha\AppData\Local\Temp\{D19979C9-8B5B-4500-AA6A-EF331F658074}\F658074\ProtonVPN.exe. Verify that the file exists and that you can access it.
Error: (12/29/2020 11:19:33 AM) (Source: MsiInstaller) (EventID: 11308) (User: DESKTOP-LVA03BU)
Description: Product: ProtonVPN -- Error 1308. Source file not found: C:\Users\micha\AppData\Local\Temp\{D19979C9-8B5B-4500-AA6A-EF331F658074}\F658074\ProtonVPN.exe. Verify that the file exists and that you can access it.
Error: (12/29/2020 11:19:33 AM) (Source: MsiInstaller) (EventID: 11308) (User: DESKTOP-LVA03BU)
Description: Product: ProtonVPN -- Error 1308. Source file not found: C:\Users\micha\AppData\Local\Temp\{D19979C9-8B5B-4500-AA6A-EF331F658074}\F658074\ProtonVPN.exe. Verify that the file exists and that you can access it.
System errors:
=============
Error: (12/30/2020 10:52:33 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba AdvancedSystemCareService14 neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.
Error: (12/30/2020 10:51:52 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Storage Middleware Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (12/30/2020 10:51:52 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA Display Container LS byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.
Error: (12/30/2020 10:51:52 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba MSI Super Charger Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (12/29/2020 09:45:58 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba AdvancedSystemCareService14 neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.
Error: (12/29/2020 09:44:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba AdvancedSystemCareService14 neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.
Error: (12/29/2020 09:43:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba AdvancedSystemCareService14 neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.
Error: (12/29/2020 09:41:32 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-LVA03BU)
Description: Server {A463FCB9-6B1C-4E0D-A80B-A2CA7999E25D} se v daném časovém limitu neregistroval u služby DCOM.
CodeIntegrity:
===================================
Date: 2020-12-30 10:55:36.1370000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-30 10:55:36.1300000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-30 10:55:36.1230000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-30 10:55:36.1170000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-30 10:55:36.1090000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-30 10:55:36.1010000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-30 10:55:36.0940000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
Date: 2020-12-30 10:55:36.0870000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Norton Security\Engine\22.20.5.40\symamsi.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 2.40 03/08/2018
Motherboard: Micro-Star International Co., Ltd. Z370-A PRO (MS-7B48)
Processor: Intel(R) Core(TM) i5-8500 CPU @ 3.00GHz
Percentage of memory in use: 47%
Total physical RAM: 16344.71 MB
Available physical RAM: 8662.28 MB
Total Virtual: 19288.71 MB
Available Virtual: 7521.16 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:445.83 GB) (Free:208.98 GB) NTFS
Drive d: () (Fixed) (Total:1863 GB) (Free:1788.54 GB) NTFS
Drive e: (FarmingSimulator19) (CDROM) (Total:5.72 GB) (Free:0 GB) UDF
Drive f: (HiSuite) (CDROM) (Total:0 GB) (Free:0 GB) CDFS
\\?\Volume{21153163-0000-0000-0000-100000000000}\ (Boot) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS
\\?\Volume{21153163-0000-0000-0000-a0946f000000}\ () (Fixed) (Total:0.81 GB) (Free:0.38 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 447.1 GB) (Disk ID: 21153163)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=445.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=826 MB) - (Type=27)
==========================================================
Disk: 1 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
Re: Prosím o kontrolu logu(procesor neustále běží na 100)
Nevlezlo se to sem posílám v raru, je to z programu FRST64.
- Přílohy
-
- FRST.rar
- (11.92 KiB) Staženo 53 x
-
Rudy
- Site Admin
- Příspěvky: 118375
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu(procesor neustále běží na 100)
Otevřte poznámkový blok a zkopírujte do něj:
Uložte do C:\Users\micha\OneDrive\Plocha jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\MountPoints2: {1e49444c-489c-11eb-add2-806e6f6e6963} - "E:\autorun.exe"
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\MountPoints2: {d73365cf-4a16-11eb-addd-309c23d0ad08} - "F:\HiSuiteDownLoader.exe"
Task: {4783FF20-54DE-43F0-9106-EDFCBFCC7A0A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2020-12-28] (Google Inc -> Google Inc.)
Task: {F346A3C9-E68A-4A57-B092-85F1244801AF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2020-12-28] (Google Inc -> Google Inc.)
C:\ProgramData\{E0224FF9-7AE3-4F9E-991A-2F004F7E3952}
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu(procesor neustále běží na 100)
Fix result of Farbar Recovery Scan Tool (x64) Version: 14-12-2020
Ran by micha (30-12-2020 15:41:41) Run:1
Running from C:\Users\micha\OneDrive\Plocha
Loaded Profiles: micha
Boot Mode: Normal
==============================================
fixlist content:
*****************
CloseProcesses:
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\MountPoints2: {1e49444c-489c-11eb-add2-806e6f6e6963} - "E:\autorun.exe"
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\MountPoints2: {d73365cf-4a16-11eb-addd-309c23d0ad08} - "F:\HiSuiteDownLoader.exe"
Task: {4783FF20-54DE-43F0-9106-EDFCBFCC7A0A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2020-12-28] (Google Inc -> Google Inc.)
Task: {F346A3C9-E68A-4A57-B092-85F1244801AF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2020-12-28] (Google Inc -> Google Inc.)
C:\ProgramData\{E0224FF9-7AE3-4F9E-991A-2F004F7E3952}
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
EmptyTemp:
End
*****************
Processes closed successfully.
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1e49444c-489c-11eb-add2-806e6f6e6963} => removed successfully
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d73365cf-4a16-11eb-addd-309c23d0ad08} => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4783FF20-54DE-43F0-9106-EDFCBFCC7A0A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4783FF20-54DE-43F0-9106-EDFCBFCC7A0A}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F346A3C9-E68A-4A57-B092-85F1244801AF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F346A3C9-E68A-4A57-B092-85F1244801AF}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
C:\ProgramData\{E0224FF9-7AE3-4F9E-991A-2F004F7E3952} => moved successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
=========== EmptyTemp: ==========
BITS transfer queue => 7888896 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 13831605 B
Java, Flash, Steam htmlcache => 33327585 B
Windows/system/drivers => 4318929 B
Edge => 0 B
Chrome => 8945295 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 26752 B
NetworkService => 26752 B
micha => 92792113 B
RecycleBin => 0 B
EmptyTemp: => 153.7 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 15:41:45 ====
Ran by micha (30-12-2020 15:41:41) Run:1
Running from C:\Users\micha\OneDrive\Plocha
Loaded Profiles: micha
Boot Mode: Normal
==============================================
fixlist content:
*****************
CloseProcesses:
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\MountPoints2: {1e49444c-489c-11eb-add2-806e6f6e6963} - "E:\autorun.exe"
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\...\MountPoints2: {d73365cf-4a16-11eb-addd-309c23d0ad08} - "F:\HiSuiteDownLoader.exe"
Task: {4783FF20-54DE-43F0-9106-EDFCBFCC7A0A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2020-12-28] (Google Inc -> Google Inc.)
Task: {F346A3C9-E68A-4A57-B092-85F1244801AF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2020-12-28] (Google Inc -> Google Inc.)
C:\ProgramData\{E0224FF9-7AE3-4F9E-991A-2F004F7E3952}
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
EmptyTemp:
End
*****************
Processes closed successfully.
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1e49444c-489c-11eb-add2-806e6f6e6963} => removed successfully
HKU\S-1-5-21-3466437676-3512538346-3754865819-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d73365cf-4a16-11eb-addd-309c23d0ad08} => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4783FF20-54DE-43F0-9106-EDFCBFCC7A0A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4783FF20-54DE-43F0-9106-EDFCBFCC7A0A}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F346A3C9-E68A-4A57-B092-85F1244801AF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F346A3C9-E68A-4A57-B092-85F1244801AF}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
C:\ProgramData\{E0224FF9-7AE3-4F9E-991A-2F004F7E3952} => moved successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
=========== EmptyTemp: ==========
BITS transfer queue => 7888896 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 13831605 B
Java, Flash, Steam htmlcache => 33327585 B
Windows/system/drivers => 4318929 B
Edge => 0 B
Chrome => 8945295 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 26752 B
NetworkService => 26752 B
micha => 92792113 B
RecycleBin => 0 B
EmptyTemp: => 153.7 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 15:41:45 ====
Re: Prosím o kontrolu logu(procesor neustále běží na 100)
Dobrý den mohu se zeptat jestli je vše v pořádku? Že jsem neobdržel další zprávu. Děkuji
-
Rudy
- Site Admin
- Příspěvky: 118375
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu(procesor neustále běží na 100)
Bylo smazáno. Disk už neběží na 100%?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu(procesor neustále běží na 100)
Procesor pořád běží na 100%,ale teď vím že to není virem. Děkuji za váš čas.
Přispějete na provoz fóra?