Preventivní kontrola - chyba google

Zpráva

Perotin · #1 Příspěvek od **Perotin** » 07 led 2021 11:40

Prosím o preventivní kontrolu logů. Při vyhledávání na google mi vyskakuje hláska "Naše systémy zjistily, že vaše počítačová síť je zdrojem neobvyklého provozu" a je po mě požadováno odkliknutí, že nejsem robot. Předem děkuji za pomoc:

Malware:

# -------------------------------
# Malwarebytes AdwCleaner 8.0.8.0
# -------------------------------
# Build: 10-08-2020
# Database: 2021-01-06.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 01-07-2021
# Duration: 00:00:16
# OS: Windows 10 Home
# Scanned: 31955
# Detected: 0

***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.

AdwCleaner[S00].txt - [1549 octets] - [07/01/2021 11:33:31]
AdwCleaner[C00].txt - [1701 octets] - [07/01/2021 11:33:54]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S01].txt ##########

FRST:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 05-01-2021
Ran by lisak (administrator) on PEROTIN (Micro-Star International Co., Ltd MS-7C02) (07-01-2021 11:30:14)
Running from C:\Users\lisak\OneDrive\Plocha
Loaded Profiles: lisak
Platform: Windows 10 Home Version 20H2 19042.685 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(cFos Software GmbH -> cFos Software GmbH) C:\Program Files\cFosSpeed\spd.exe
(Discord Inc. -> Discord Inc.) C:\Users\lisak\AppData\Local\Discord\app-0.0.309\Discord.exe <6>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <27>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.52\GoogleCrashHandler64.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.2\avp.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.2\avpui.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.2\plugins_nms.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.47.10001.0_x64__8wekyb3d8bbwe\GamingServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.47.10001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2011.16.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe <2>
(MICRO-STAR INTERNATIONAL CO., LTD) C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.DragonCenter_2.0.96.0_x64__kzh8wxbdkxb8p\DCv2\DCv2.exe
(Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\FoundationService\MSIAPService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\MSI_Companion_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\MSI.CentralServer.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LEDKeeper2.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\Speed Up\StorageMonitor.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\True Color\MSI.True Color.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControl_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControlEngine.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\One Dragon Center\CC_Engine_x64.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\One Dragon Center\Super_Charger\MSI_Super_Charger_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe
(Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_a51067c0ac557884\Display.NvContainer\NVDisplay.Container.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9270560 2020-04-17] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-17] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-3731235652-646393183-1318076386-1001\...\Run: [Discord] => C:\Users\lisak\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3731235652-646393183-1318076386-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3411232 2020-12-21] (Valve -> Valve Corporation)
HKU\S-1-5-21-3731235652-646393183-1318076386-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-10-22] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3731235652-646393183-1318076386-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32410000 2020-09-18] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3731235652-646393183-1318076386-1001\...\Run: [kpm.exe] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm.exe [659976 2020-10-06] (Kaspersky Lab -> AO Kaspersky Lab)
HKU\S-1-5-21-3731235652-646393183-1318076386-1001\...\Run: [Facebook.MessengerDesktop] => C:\Users\lisak\AppData\Local\Programs\Messenger\Messenger.exe
HKU\S-1-5-21-3731235652-646393183-1318076386-1001\...\Run: [BitTorrent] => C:\Users\lisak\AppData\Roaming\BitTorrent\BitTorrent.exe [1960416 2020-12-29] (BitTorrent Inc -> BitTorrent Inc.)
HKLM\...\Windows x64\Print Processors\BJ Print Processor4: C:\Windows\System32\spool\prtprocs\x64\CNBPP4.DLL [84992 2011-08-30] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\BJ Language Monitor4: C:\Windows\system32\CNBLM4.DLL [267776 2011-08-30] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.88\Installer\chrmstp.exe [2020-12-02] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {006C5564-128E-486B-BC18-7D522A3CC3BB} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {02AEC26B-3504-4012-AB62-D879A23E2F0A} - System32\Tasks\Opera scheduled Autoupdate 1587158667 => C:\Users\lisak\AppData\Local\Programs\Opera\launcher.exe
Task: {312D94B0-1BBC-4571-81AA-99ED62954D5F} - System32\Tasks\MSI Task Host - LEDKeeper2_Host => C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LEDKeeper2.exe [1632016 2020-12-03] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {339D6B6B-4FF0-47AE-86DF-C533961712B4} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3301176 2020-10-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3FB26A9B-EB02-4338-A62C-02B8D6F98623} - System32\Tasks\MSI Task Host - Detect_Monitor => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [74528 2020-09-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {43F70392-7C1D-4852-9575-1188AFE975B1} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [670928 2020-12-09] (Mozilla Corporation -> Mozilla Foundation)
Task: {440684BF-F59F-45BD-B848-A34D67F8F918} - System32\Tasks\MSI Task Host - DisplayID => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [74528 2020-09-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {515D63C2-2235-47F3-AF26-FF110013FBFB} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23054216 2020-12-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {668F4DF8-032D-4908-B56C-74A56B3B8CD0} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116584 2020-12-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {7969F605-CB38-4D68-AA29-52EBA92D0937} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8625B057-3001-40A0-90B8-E77AFB135AB7} - System32\Tasks\MSI Task Host - MSI.True Color => C:\Program Files (x86)\MSI\One Dragon Center\True Color\MSI.True Color.exe [44720 2020-05-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {8AC26471-A025-4B33-90E5-5E1EF32B99F7} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {92E964D6-2E94-49A2-A79C-C77A9AA02F09} - System32\Tasks\Agent Activation Runtime\S-1-5-21-3731235652-646393183-1318076386-1008 => C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe [13312 2020-12-09] (Microsoft Windows -> )
Task: {AD8D21FC-4762-4442-BF06-C935985A4322} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B828B8B6-3DDB-4248-A9F4-405C02D4E40D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B8EA374E-A2B3-45BE-9830-2E09E81D8C50} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe [791232 2021-01-05] (Kaspersky Lab -> AO Kaspersky Lab)
Task: {BD0854B6-054B-4266-A761-9EECF3118B01} - System32\Tasks\MSISW_Host => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {BD0F6D5F-43D8-4681-90C7-7D94FA3DFBDC} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C954B52A-B037-4B0B-A81F-0700A64F9755} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-16] (Google LLC -> Google LLC)
Task: {C9C28C22-A142-4B48-A076-4E7813BF83FC} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D225D0C2-9E7E-4233-B601-15207068F913} - System32\Tasks\Opera scheduled assistant Autoupdate 1587158673 => C:\Users\lisak\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\lisak\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {DAC7DDBC-DF4A-4750-B256-45B9706F07DF} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DB7334B9-B38F-4943-A072-5E3BBA5C5B16} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116584 2020-12-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {E88CA564-1861-439B-868A-F01907F3E651} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-16] (Google LLC -> Google LLC)
Task: {F3609807-2918-4B31-A127-E04617E47A74} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FBEDF584-B68B-4907-98F2-94E360106947} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23054216 2020-12-19] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\MSISW_Host.job => C:\WINDOWS\SysWOW64\muachost.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{05d1c862-2a2b-4fc1-95a3-e21816769578}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{33d86b26-5369-432c-b54d-fbd5d1037999}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{6fbe3e34-d7e8-4bf9-98c1-d265f04eaa8e}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{7a482e7e-0a36-4bd1-b6cb-8aeb52cba30e}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{cb625c51-155e-4373-92f6-fec651f3682a}: [DhcpNameServer] 172.20.10.1

Edge:
======
Edge Profile: C:\Users\lisak\AppData\Local\Microsoft\Edge\User Data\Default [2020-12-23]
Edge Extension: (Seznam doplněk - Email) - C:\Users\lisak\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2020-06-25]
Edge Extension: (Ochrana Kaspersky) - C:\Users\lisak\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\elhpdacimkjpccooodognopfhbdgnpbk [2020-07-06]
Edge Extension: (BetterTTV) - C:\Users\lisak\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\icllegkipkooaicfmdfaloehobmglglb [2020-06-25]
Edge Extension: (Seznam doplněk - Esko) - C:\Users\lisak\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2020-06-25]
Edge HKU\S-1-5-21-3731235652-646393183-1318076386-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]

FireFox:
========
FF DefaultProfile: hntpunyv.default
FF ProfilePath: C:\Users\lisak\AppData\Roaming\Mozilla\Firefox\Profiles\hntpunyv.default [2020-09-21]
FF ProfilePath: C:\Users\lisak\AppData\Roaming\Mozilla\Firefox\Profiles\tl3qtz7n.default-release [2021-01-07]
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.2\FFExt\light_plugin_firefox\addon.xpi => not found
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.2\FFExt\light_plugin_firefox\addon.xpi => not found
FF Plugin: @java.com/DTPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\dtplugin\npDeployJava1.dll [2020-10-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.271.2 -> C:\Program Files\Java\jre1.8.0_271\bin\plugin2\npjp2.dll [2020-10-25] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-3731235652-646393183-1318076386-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\lisak\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-31] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2020-12-09] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2020-12-09] <==== ATTENTION

Chrome:
=======
CHR Profile: C:\Users\lisak\AppData\Local\Google\Chrome\User Data\Default [2021-01-07]
CHR Notifications: Default -> hxxps://www.chess.com; hxxps://www.facebook.com; hxxps://www.g2a.com
CHR Extension: (Prezentace) - C:\Users\lisak\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-04-16]
CHR Extension: (Safe Torrent Scanner) - C:\Users\lisak\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2020-12-29]
CHR Extension: (Ochrana Kaspersky) - C:\Users\lisak\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-01-07]
CHR Extension: (BetterTTV) - C:\Users\lisak\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2020-12-19]
CHR Extension: (Dokumenty) - C:\Users\lisak\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-04-16]
CHR Extension: (Disk Google) - C:\Users\lisak\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (Seznam doplněk - Email) - C:\Users\lisak\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2020-04-16]
CHR Extension: (YouTube) - C:\Users\lisak\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-04-16]
CHR Extension: (Tabulky) - C:\Users\lisak\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-04-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\lisak\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-13]
CHR Extension: (Black & White) - C:\Users\lisak\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhhlgkfginnlendpfkhcmldikeepoefa [2020-04-16]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\lisak\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-04-16]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\lisak\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2020-04-16]
CHR Extension: (Gmail) - C:\Users\lisak\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\lisak\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-11-26]
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVP21.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.2\avp.exe [381928 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8646752 2020-06-20] (BattlEye Innovations e.K. -> )
R2 cFosSpeedS; C:\Program Files\cFosSpeed\spd.exe [623880 2020-11-07] (cFos Software GmbH -> cFos Software GmbH)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9105800 2020-12-01] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2020-12-31] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [287720 2020-10-19] (NVIDIA Corporation -> NVIDIA)
S3 klvssbridge64_21.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.2\x64\vssbridge64.exe [467352 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [351424 2020-12-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 KSDE5.1; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 5.1\ksde.exe [644312 2020-06-29] (Kaspersky Lab -> AO Kaspersky Lab)
R2 LightKeeperService; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe [86776 2020-11-27] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI Foundation Service; C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\FoundationService\MSIAPService.exe [75216 2020-09-23] (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.)
R2 MSI_Central_Service; C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe [147088 2020-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 MSI_Companion_Service; C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\MSI_Companion_Service.exe [122616 2020-10-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_Super_Charger_Service; C:\Program Files (x86)\MSI\One Dragon Center\Super_Charger\MSI_Super_Charger_Service.exe [32432 2020-02-27] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 Mystic_Light_Service; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe [35504 2020-07-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S3 TwitchService; C:\Program Files\Common Files\Twitch\TwitchService.exe [334208 2020-12-27] (Twitch Interactive, Inc. -> )
S3 uncheater_bgl; C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe [2097008 2020-09-06] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
R2 VoiceControlService; C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControl_Service.exe [32400 2020-07-06] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_a51067c0ac557884\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_a51067c0ac557884\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
R1 cFosSpeed; C:\WINDOWS\system32\DRIVERS\cfosspeed6.sys [1804072 2020-11-06] (cFos Software GmbH -> cFos Software GmbH)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [251608 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 I2cHkBurn; C:\WINDOWS\system32\drivers\I2cHkBurn.sys [38544 2018-12-13] (Feature Integration Technology Inc -> FINTEK Corp.)
S3 ipadtst2; C:\ProgramData\MSI\Super_Charger\ipadtst2_64.sys [26824 2020-02-27] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [110392 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [212280 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [127288 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [37496 2020-10-21] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [523576 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [659768 2020-09-30] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [1341232 2020-09-30] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.2\Bases\klids.sys [244768 2021-01-07] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1025336 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [95544 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [113464 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [113464 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [85288 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [97080 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [55592 2020-06-29] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [257208 2020-10-29] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [99152 2020-10-09] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [310232 2020-10-29] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [117456 2020-10-29] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [207352 2020-10-31] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S4 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [153400 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [250168 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [300856 2020-10-21] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [18448 2019-10-17] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 NTIOLib_CC_COMM; C:\Program Files (x86)\MSI\One Dragon Center\Lib\SYS\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_CC_CPU; C:\Program Files (x86)\MSI\One Dragon Center\Super_Charger\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_MysticLight; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Lib\NTIOLib_X64.sys [14288 2017-07-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-12-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [429296 2020-12-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-15] (Microsoft Windows -> Microsoft Corporation)
R3 WinRing0_1_2_0; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\MODAPI.sys [14544 2021-01-07] (Noriyuki MIYAZAKI -> OpenLibSys.org)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [74552 2020-09-21] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 RtlWlanu; \SystemRoot\System32\drivers\rtwlanu.sys [X]
S3 VBAudioVMVAIOMME; \SystemRoot\System32\drivers\vbaudio_vmvaio64_win10.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-07 11:30 - 2021-01-07 11:30 - 000000000 ____D C:\FRST
2021-01-07 11:21 - 2021-01-07 11:21 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-01-07 11:03 - 2021-01-07 11:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Free
2021-01-07 02:23 - 2021-01-07 02:25 - 000000000 ____D C:\Program Files\Native Instruments
2021-01-07 02:23 - 2021-01-07 02:25 - 000000000 ____D C:\Program Files\Common Files\Native Instruments
2021-01-07 02:13 - 2021-01-07 02:13 - 000000000 ____D C:\Users\lisak\AppData\Local\Native Instruments
2021-01-07 02:11 - 2021-01-07 02:11 - 000000000 ____D C:\ProgramData\Native Instruments
2021-01-04 03:16 - 2021-01-04 03:16 - 003647756 _____ C:\WINDOWS\Minidump\010421-17796-01.dmp
2021-01-03 18:55 - 2021-01-03 18:55 - 000000000 ____D C:\Users\lisak\OneDrive\Dokumenty\Harry Potter and the Prisoner of Azkaban
2021-01-03 12:31 - 2021-01-03 12:31 - 000000000 ____D C:\Users\lisak\AppData\Roaming\EasyAntiCheat
2021-01-03 12:31 - 2021-01-03 12:31 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2020-12-31 13:34 - 2020-12-31 13:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III
2020-12-31 13:18 - 2020-12-31 14:50 - 000000000 ____D C:\Program Files (x86)\Diablo III
2020-12-31 13:17 - 2020-12-31 13:17 - 000000000 ____D C:\Users\lisak\AppData\Roaming\Surviving Mars
2020-12-31 13:16 - 2020-12-31 13:16 - 000000000 ____D C:\Users\lisak\OneDrive\Dokumenty\Almost Human
2020-12-30 19:41 - 2020-12-30 19:41 - 000000000 ____D C:\Users\lisak\AppData\Roaming\Streamlabs OBS
2020-12-30 19:35 - 2020-12-30 19:35 - 000000016 _____ C:\Users\lisak\AppData\Roaming\obs-virtualcam.txt
2020-12-29 21:24 - 2020-12-29 21:24 - 000000000 ____D C:\Users\lisak\AppData\Roaming\vlc
2020-12-29 21:24 - 2020-12-29 21:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2020-12-29 21:24 - 2020-12-29 21:24 - 000000000 ____D C:\Program Files\VideoLAN
2020-12-29 18:01 - 2021-01-07 03:13 - 000000000 ____D C:\Users\lisak\AppData\Roaming\BitTorrent
2020-12-29 18:01 - 2021-01-07 02:45 - 000000000 ____D C:\Users\lisak\AppData\LocalLow\BitTorrent
2020-12-29 18:01 - 2020-12-29 18:01 - 000000941 _____ C:\Users\lisak\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk
2020-12-27 21:01 - 2020-12-27 21:02 - 003518740 _____ C:\WINDOWS\Minidump\122720-9343-01.dmp
2020-12-27 15:21 - 2021-01-06 23:28 - 000000000 ____D C:\Users\lisak\AppData\Roaming\Twitch Soundtrack
2020-12-27 15:21 - 2020-12-27 15:22 - 000000000 ____D C:\Program Files\Common Files\Twitch
2020-12-27 15:21 - 2020-12-27 15:21 - 000001221 _____ C:\Users\lisak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Soundtrack by Twitch.lnk
2020-12-27 15:05 - 2020-12-27 15:05 - 000000000 ____D C:\Users\lisak\Apple
2020-12-27 15:05 - 2020-12-27 15:05 - 000000000 ____D C:\ProgramData\Apple Computer
2020-12-27 15:05 - 2020-12-27 15:05 - 000000000 ____D C:\ProgramData\Apple
2020-12-22 18:18 - 2020-12-22 18:18 - 000003216 _____ C:\WINDOWS\system32\Tasks\MSI Task Host - MSI.True Color
2020-12-22 18:18 - 2020-11-06 17:43 - 001804072 _____ (cFos Software GmbH) C:\WINDOWS\system32\Drivers\cfosspeed6.sys
2020-12-22 18:17 - 2020-12-22 18:17 - 000003190 _____ C:\WINDOWS\system32\Tasks\MSI Task Host - LEDKeeper2_Host
2020-12-22 18:17 - 2020-12-22 18:17 - 000000000 ____D C:\Program Files\ENE
2020-12-22 18:17 - 2020-12-22 18:17 - 000000000 ____D C:\Program Files (x86)\ENE
2020-12-22 18:17 - 2020-05-12 01:28 - 000020992 _____ C:\WINDOWS\system32\Drivers\ene.sys
2020-12-22 18:06 - 2020-12-12 14:50 - 001786584 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-12-22 18:06 - 2020-12-12 14:50 - 001786584 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-12-22 18:06 - 2020-12-12 14:50 - 001454488 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-12-22 18:06 - 2020-12-12 14:50 - 001382616 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-12-22 18:06 - 2020-12-12 14:50 - 001382616 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-12-22 18:06 - 2020-12-12 14:50 - 001193880 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-12-22 18:06 - 2020-12-12 14:50 - 001087704 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-12-22 18:06 - 2020-12-12 14:50 - 001087704 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-12-22 18:06 - 2020-12-12 14:50 - 000940760 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-12-22 18:06 - 2020-12-12 14:50 - 000940760 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-12-22 18:06 - 2020-12-12 14:48 - 001512856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-12-22 18:06 - 2020-12-12 14:48 - 001164528 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-12-22 18:06 - 2020-12-12 14:48 - 000685976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2020-12-22 18:06 - 2020-12-12 14:48 - 000680856 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-12-22 18:06 - 2020-12-12 14:48 - 000672496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-12-22 18:06 - 2020-12-12 14:48 - 000609688 _____ C:\WINDOWS\system32\nvml.dll
2020-12-22 18:06 - 2020-12-12 14:48 - 000559000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-12-22 18:06 - 2020-12-12 14:48 - 000547056 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-12-22 18:06 - 2020-12-12 14:47 - 008261360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-12-22 18:06 - 2020-12-12 14:47 - 007391984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-12-22 18:06 - 2020-12-12 14:47 - 004612504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-12-22 18:06 - 2020-12-12 14:47 - 002731928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-12-22 18:06 - 2020-12-12 14:47 - 002103024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-12-22 18:06 - 2020-12-12 14:47 - 001589144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-12-22 18:06 - 2020-12-12 14:47 - 000812784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-12-22 18:06 - 2020-12-12 14:47 - 000447384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2020-12-22 18:06 - 2020-12-12 14:46 - 000849648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2020-12-22 18:06 - 2020-12-12 05:01 - 000084008 _____ C:\WINDOWS\system32\nvinfo.pb
2020-12-20 20:57 - 2020-12-20 20:57 - 000000000 ____D C:\ProgramData\GOG.com
2020-12-19 22:10 - 2020-12-19 22:10 - 000000000 ____D C:\Users\lisak\AppData\LocalLow\Bethesda Softworks
2020-12-15 19:29 - 2020-12-15 23:05 - 000000000 ____D C:\Users\lisak\AppData\Local\Bluestacks
2020-12-15 19:29 - 2020-12-15 19:33 - 000000000 ____D C:\Users\Public\BlueStacks
2020-12-12 10:51 - 2020-12-04 04:05 - 000038640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll
2020-12-12 10:50 - 2020-10-19 06:42 - 000069608 _____ C:\WINDOWS\system32\FvSDK_x64.dll
2020-12-12 10:50 - 2020-10-19 06:42 - 000058344 _____ C:\WINDOWS\SysWOW64\FvSDK_x86.dll
2020-12-12 10:38 - 2020-12-22 20:17 - 000000000 ____D C:\Users\lisak\AppData\Roaming\Messenger
2020-12-12 10:38 - 2020-12-22 20:17 - 000000000 ____D C:\Users\lisak\AppData\Local\Messenger
2020-12-12 10:38 - 2020-12-16 23:14 - 000000000 ____D C:\Users\lisak\AppData\Local\messenger-updater
2020-12-12 10:38 - 2020-12-12 10:38 - 000000000 ____D C:\Users\lisak\AppData\LocalLow\Messenger
2020-12-12 09:58 - 2020-12-12 09:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MTG Arena
2020-12-09 12:41 - 2021-01-07 11:21 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-12-09 11:35 - 2020-12-09 11:35 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-12-09 11:35 - 2020-12-09 11:35 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-12-09 11:35 - 2020-12-09 11:35 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2020-12-09 11:35 - 2020-12-09 11:35 - 001822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-12-09 11:35 - 2020-12-09 11:35 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-12-09 11:35 - 2020-12-09 11:35 - 001333248 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2020-12-09 11:35 - 2020-12-09 11:35 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-12-09 11:35 - 2020-12-09 11:35 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2020-12-09 11:35 - 2020-12-09 11:35 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-12-09 11:35 - 2020-12-09 11:35 - 000240640 _____ C:\WINDOWS\SysWOW64\CoreMas.dll
2020-12-09 11:35 - 2020-12-09 11:35 - 000165376 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2020-12-09 11:35 - 2020-12-09 11:35 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncpa.cpl
2020-12-09 11:35 - 2020-12-09 11:35 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncpa.cpl
2020-12-09 11:35 - 2020-12-09 11:35 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2020-12-09 11:35 - 2020-12-09 11:35 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2020-12-09 11:35 - 2020-12-09 11:35 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2020-12-09 11:35 - 2020-12-09 11:35 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2020-12-09 11:35 - 2020-12-09 11:35 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2020-12-09 11:35 - 2020-12-09 11:35 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2020-12-09 11:35 - 2020-12-09 11:35 - 000010912 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-12-09 11:35 - 2020-12-09 11:35 - 000010752 _____ C:\WINDOWS\SysWOW64\agentactivationruntimestarter.exe
2020-12-09 11:35 - 2020-12-09 11:35 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-07 11:25 - 2020-05-07 16:31 - 000000000 ____D C:\Users\lisak\AppData\LocalLow\Mozilla
2021-01-07 11:23 - 2020-05-07 16:31 - 000000000 ____D C:\ProgramData\Mozilla
2021-01-07 11:22 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-01-07 11:21 - 2020-05-07 16:31 - 000000971 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-01-07 11:21 - 2020-05-07 16:31 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-01-07 11:19 - 2020-04-16 22:56 - 000000000 ____D C:\Users\lisak\AppData\Roaming\discord
2021-01-07 11:19 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-07 11:10 - 2020-09-20 00:12 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-01-07 11:10 - 2019-12-07 15:41 - 000716602 _____ C:\WINDOWS\system32\perfh005.dat
2021-01-07 11:10 - 2019-12-07 15:41 - 000144780 _____ C:\WINDOWS\system32\perfc005.dat
2021-01-07 11:10 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-01-07 11:05 - 2020-04-16 23:11 - 000000000 ____D C:\ProgramData\NVIDIA
2021-01-07 11:04 - 2020-09-20 00:09 - 000003240 _____ C:\WINDOWS\system32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901}
2021-01-07 11:04 - 2020-04-17 06:01 - 000000000 ____D C:\Program Files (x86)\Steam
2021-01-07 11:04 - 2020-04-16 23:17 - 000000000 ____D C:\Program Files\Common Files\AV
2021-01-07 11:03 - 2020-09-20 00:09 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-01-07 11:03 - 2020-09-20 00:04 - 000008192 ___SH C:\DumpStack.log.tmp
2021-01-07 11:03 - 2020-09-20 00:04 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-01-07 11:03 - 2020-04-16 23:17 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2021-01-07 11:03 - 2020-04-16 23:17 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab
2021-01-07 11:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-01-07 02:30 - 2020-10-03 18:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TP-Link
2021-01-07 02:30 - 2020-04-16 23:40 - 000190193 _____ C:\WINDOWS\cFosSpeed_Setup_Log.txt
2021-01-07 02:30 - 2020-04-16 23:33 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-01-07 02:28 - 2020-10-03 18:04 - 000000000 ____D C:\Program Files (x86)\TP-Link
2021-01-07 02:28 - 2020-04-16 23:33 - 000000000 ____D C:\Program Files (x86)\Realtek
2021-01-07 02:27 - 2020-04-20 14:12 - 000000000 ____D C:\Users\lisak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VB Audio
2021-01-07 02:27 - 2020-04-20 14:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VB Audio
2021-01-07 02:27 - 2020-04-20 14:12 - 000000000 ____D C:\Program Files\VB
2021-01-07 02:26 - 2020-04-17 22:32 - 000000000 ____D C:\Program Files\Common Files\VST2
2021-01-07 02:25 - 2020-04-17 22:31 - 000000000 ____D C:\Users\lisak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line
2021-01-07 02:14 - 2020-04-17 23:14 - 000000000 ____D C:\Users\lisak\AppData\Local\CrashDumps
2021-01-07 01:51 - 2020-04-18 18:06 - 000000000 ____D C:\Users\lisak\AppData\Roaming\audacity
2021-01-07 01:18 - 2020-04-19 18:18 - 000000000 ____D C:\Users\lisak\AppData\Roaming\obs-studio
2021-01-06 23:45 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-01-06 16:45 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-01-05 17:53 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-01-05 14:35 - 2020-10-04 00:02 - 000000000 ____D C:\Users\Eve
2021-01-04 14:22 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-01-04 13:34 - 2020-09-20 00:04 - 000000000 ____D C:\Users\lisak
2021-01-04 03:16 - 2020-11-03 16:18 - 1484997572 _____ C:\WINDOWS\MEMORY.DMP
2021-01-04 03:16 - 2020-11-03 16:18 - 000000000 ____D C:\WINDOWS\Minidump
2021-01-03 22:18 - 2020-04-16 22:48 - 000000000 ____D C:\Users\lisak\AppData\Local\Packages
2021-01-03 12:31 - 2020-04-20 14:57 - 000000000 ____D C:\Users\lisak\AppData\Local\Battle.net
2021-01-03 04:00 - 2020-04-17 06:05 - 000000000 ____D C:\Users\lisak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2021-01-03 00:20 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-12-31 00:16 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-12-30 20:28 - 2020-04-18 23:07 - 000000000 ____D C:\Users\lisak\AppData\Roaming\slobs-client
2020-12-30 20:23 - 2020-04-26 23:20 - 000000000 ____D C:\Users\lisak\OneDrive\Dokumenty\The Witcher 3
2020-12-27 15:05 - 2020-04-16 22:50 - 000000000 ____D C:\Users\lisak\AppData\Local\PlaceholderTileLogoFolder
2020-12-27 15:05 - 2020-04-16 22:48 - 000000000 ____D C:\Users\lisak\AppData\Local\Publishers
2020-12-27 15:05 - 2020-04-16 22:32 - 000000000 ____D C:\ProgramData\Packages
2020-12-26 21:40 - 2020-04-17 22:24 - 000000000 ____D C:\Users\lisak\AppData\Roaming\BitTorrent Web
2020-12-25 18:41 - 2020-04-17 22:25 - 000000000 ____D C:\Users\lisak\AppData\Local\BitTorrentHelper
2020-12-23 19:17 - 2020-05-07 15:32 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-12-23 18:34 - 2020-04-21 10:40 - 000000000 ____D C:\Users\lisak\AppData\Local\NVIDIA
2020-12-23 10:23 - 2020-09-20 09:02 - 000000000 ____D C:\Users\lisak\AppData\Local\D3DSCache
2020-12-23 10:21 - 2020-04-20 14:57 - 000000000 ____D C:\Program Files (x86)\Battle.net
2020-12-22 20:44 - 2020-04-20 14:58 - 000000000 ____D C:\Program Files (x86)\Overwatch
2020-12-22 18:48 - 2020-04-24 19:46 - 000000000 ____D C:\Users\lisak\AppData\Roaming\DarkSoulsIII
2020-12-22 18:28 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-12-22 18:18 - 2020-04-16 23:40 - 000000000 ____D C:\Program Files\cFosSpeed
2020-12-22 18:17 - 2020-04-16 23:36 - 000000000 ____D C:\ProgramData\Package Cache
2020-12-22 18:16 - 2020-04-16 23:39 - 000000000 ____D C:\Users\lisak\AppData\Local\Downloaded Installations
2020-12-19 22:11 - 2020-04-16 22:50 - 000000000 ___RD C:\Users\lisak\OneDrive
2020-12-19 13:07 - 2020-06-10 20:17 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-12-16 21:17 - 2020-09-20 00:09 - 000003362 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3731235652-646393183-1318076386-1001
2020-12-16 21:17 - 2020-09-20 00:04 - 000002406 _____ C:\Users\lisak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-12-15 19:44 - 2020-04-17 04:18 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-12-15 19:34 - 2020-04-16 22:53 - 000795000 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2020-12-12 14:47 - 2020-09-18 12:14 - 000657816 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-12-12 14:45 - 2020-09-18 12:14 - 007114256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-12-12 14:45 - 2020-09-18 12:14 - 006070008 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-12-12 10:52 - 2020-06-04 12:34 - 000000000 ____D C:\Users\lisak\AppData\LocalLow\Unity
2020-12-12 10:50 - 2020-09-20 00:09 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-12 10:50 - 2020-09-20 00:09 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-12 10:50 - 2020-04-16 22:32 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-12-12 10:50 - 2020-04-16 22:32 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-12-12 10:49 - 2020-09-20 00:09 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-12 10:49 - 2020-09-20 00:09 - 000004106 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-12 10:49 - 2020-09-20 00:09 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-12 10:49 - 2020-09-20 00:09 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-12 10:49 - 2020-09-20 00:09 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-12 10:49 - 2020-09-20 00:09 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-12 10:49 - 2020-09-20 00:09 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-12 10:49 - 2020-09-20 00:09 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-12 10:49 - 2020-04-26 21:58 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-12-09 20:01 - 2020-09-20 00:04 - 000295568 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-12-09 20:00 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-12-09 20:00 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-12-09 20:00 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-12-09 20:00 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-12-09 20:00 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-12-09 20:00 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2020-12-09 20:00 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender

==================== Files in the root of some directories ========

2020-12-30 19:35 - 2020-12-30 19:35 - 000000016 _____ () C:\Users\lisak\AppData\Roaming\obs-virtualcam.txt
2020-04-24 00:20 - 2020-04-24 00:30 - 000004635 _____ () C:\Users\lisak\AppData\Roaming\VoiceMeeterDefault.xml
2020-10-03 23:55 - 2020-10-03 23:55 - 000000017 _____ () C:\Users\lisak\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-01-2021
Ran by lisak (07-01-2021 11:31:54)
Running from C:\Users\lisak\OneDrive\Plocha
Windows 10 Home Version 20H2 19042.685 (X64) (2020-09-19 23:09:12)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-3731235652-646393183-1318076386-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3731235652-646393183-1318076386-503 - Limited - Disabled)
Eve (S-1-5-21-3731235652-646393183-1318076386-1008 - Limited - Enabled) => C:\Users\Eve
Guest (S-1-5-21-3731235652-646393183-1318076386-501 - Limited - Enabled)
lisak (S-1-5-21-3731235652-646393183-1318076386-1001 - Administrator - Enabled) => C:\Users\lisak
WDAGUtilityAccount (S-1-5-21-3731235652-646393183-1318076386-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Free (Enabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23}
AV: Kaspersky Free (Enabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Lightroom Classic CC (HKLM-x32\...\LTRM_8_2_1) (Version: 8.2.1 - Adobe Systems Incorporated)
Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_0_1) (Version: 21.0.1 - Adobe Systems Incorporated)
Aktualizace NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden
AMD Product Verification Tool version 1.0.6.0 (HKLM\...\{4242685A-EF3E-45FF-B4AE-758E49020936}}_is1) (Version: 1.0.6.0 - AMD)
AMD Ryzen Master SDK (HKLM\...\{DBD50508-5F75-416B-995D-C42433A00944}) (Version: 2.6.0.1708 - Advanced Micro Devices, Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 19.10.36 - Advanced Micro Devices, Inc.)
Audacity 2.3.3 (HKLM-x32\...\Audacity_is1) (Version: 2.3.3 - Audacity Team)
Balanced (HKLM-x32\...\{24819F88-1B0B-4808-9982-5DC9C4AC7FA6}) (Version: 5.00.0000 - Advanced Micro Devices, Inc.) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BitTorrent (HKU\S-1-5-21-3731235652-646393183-1318076386-1001\...\BitTorrent) (Version: 7.10.5.45857 - BitTorrent Inc.)
BitTorrent Web (HKU\S-1-5-21-3731235652-646393183-1318076386-1001\...\btweb) (Version: 1.1.1 - BitTorrent, Inc.)
cFosSpeed 11.07 (HKLM\...\cFosSpeed) (Version: 11.07 - cFos Software GmbH, Bonn)
CPUID HWMonitor 1.43 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.43 - CPUID, Inc.)
Crusader Kings III (HKLM-x32\...\Crusader Kings III_is1) (Version: 0.0.0 - DODI-Repacks)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Discord (HKU\S-1-5-21-3731235652-646393183-1318076386-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
ENE IO Driver (HKLM-x32\...\{D0512FFD-6194-4D2E-967E-25B82A3322FF}) (Version: 3.3.0 - ENE TECHNOLOGY INC.) Hidden
ENE_DRAM_RGB_AIO (HKLM\...\{1745D314-9077-46C9-8562-1C62BAE189B7}) (Version: 1.0.0.10 - Ene Tech.) Hidden
ENE_DRAM_RGB_AIO (HKLM-x32\...\{52d1d7de-19c3-4f83-97bb-f9435dc84c5b}) (Version: 1.0.0.10 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.6.0 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{d8516682-de60-4332-ad6f-49373754b677}) (Version: 1.0.6.0 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_SSS_HAL (HKLM\...\{CF703694-01C6-4062-B797-84DB215662BC}) (Version: 1.0.1.0 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_SSS_HAL (HKLM-x32\...\{20610ecc-e094-423e-af0c-7d0bcfe117e9}) (Version: 1.0.1.0 - ENE TECHNOLOGY INC.) Hidden
ENE_X-JMI_HAL (HKLM\...\{2B8E611F-0B51-4FAC-87BB-AF50D82E7DDA}) (Version: 1.0.4.1 - ENE Tech) Hidden
ENE_X-JMI_HAL (HKLM-x32\...\{4604ba27-dfa3-4d5d-8c29-0c9c9b6460ce}) (Version: 1.0.4.1 - ENE Tech) Hidden
Epic Games Launcher (HKLM-x32\...\{1D4EB18B-0FEE-444E-B4D1-6F2CFBC363E6}) (Version: 1.1.267.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
GameInput Redistributable (HKLM-x32\...\{5FAD63E8-8F1C-6687-0325-3BBF64B4FD89}) (Version: 10.1.19041.3918 - Microsoft Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.88 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Java 8 Update 271 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180271F0}) (Version: 8.0.2710.9 - Oracle Corporation)
Kaspersky Free (HKLM-x32\...\{63129F5E-8EC5-41BA-A4CF-47966CE84953}) (Version: 21.2.16.590 - Kaspersky) Hidden
Kaspersky Free (HKLM-x32\...\InstallWIX_{63129F5E-8EC5-41BA-A4CF-47966CE84953}) (Version: 21.2.16.590 - Kaspersky)
Kaspersky Password Manager (HKLM-x32\...\{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab) Hidden
Kaspersky Password Manager (HKLM-x32\...\InstallWIX_{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab)
Kaspersky Secure Connection (HKLM-x32\...\{8E3A90F0-23D4-4761-AEBF-409CBBA48C80}) (Version: 21.1.15.500 - Kaspersky) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{8E3A90F0-23D4-4761-AEBF-409CBBA48C80}) (Version: 21.1.15.500 - Kaspersky)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKU\S-1-5-21-3731235652-646393183-1318076386-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.66 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.59 - )
Microsoft Office 2019 pro studenty a domácnosti - cs-cz (HKLM\...\HomeStudent2019Retail - cs-cz) (Version: 16.0.13426.20404 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3731235652-646393183-1318076386-1001\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.26.28720 (HKLM-x32\...\{7d607fb4-7e28-4c7a-a92f-3fcdaf555faf}) (Version: 14.26.28720.3 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.25.28508 (HKLM-x32\...\{65e650ff-30be-469d-b63a-418d71ea1765}) (Version: 14.25.28508.3 - Microsoft Corporation)
Mozilla Firefox 83.0 (x64 cs) (HKLM\...\Mozilla Firefox 83.0 (x64 cs)) (Version: 83.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 76.0 - Mozilla)
MSI SDK (HKLM-x32\...\{EE7D557C-3AE7-4348-8DCA-3A89790D0002}}_is1) (Version: 2.2020.1207.02 - MSI)
MTG Arena (HKLM\...\{C700347B-14A5-4724-BB85-EA0F8C791628}) (Version: 0.1.3288 - Wizards of the Coast)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.27 - NVIDIA Corporation) Hidden
NVIDIA FrameView SDK 1.1.4923.29214634 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29214634 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.5.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.5.70 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.40 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 460.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 460.89 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA USBC Driver 1.46.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.46.831.832 - NVIDIA Corporation)
NvModuleTracker (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Version: 6.14.24033.38719 - NVIDIA Corporation) Hidden
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 25.0.4 - OBS Project)
OEM Application Profile (HKLM-x32\...\{84AD2AF7-10C8-0395-66F9-FFAEB4C5DBF1}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13426.20404 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13426.20404 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13426.20404 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.13426.20404 - Microsoft Corporation) Hidden
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
PUBG LITE (HKLM-x32\...\PUBG LITE_is1) (Version: 1.0.1.0 - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.38.1118.2019 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8703.1 - Realtek Semiconductor Corp.)
Soundtrack by Twitch (HKU\S-1-5-21-3731235652-646393183-1318076386-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF372D0}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
WD_BLACK AN1500 (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.12.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK AN1500 (HKLM-x32\...\{9c94735f-73fd-4b0f-9ddb-8be7b3cc4681}) (Version: 1.0.12.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK D50 (HKLM\...\{BDE43F26-5917-44F8-B86A-F1D9A6B80B32}) (Version: 1.0.9.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK D50 (HKLM-x32\...\{a1d1ba00-92b7-4a99-8ebd-65b25c0e9e44}) (Version: 1.0.9.0 - ENE TECHNOLOGY INC.) Hidden
WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
Zoom (HKU\S-1-5-21-3731235652-646393183-1318076386-1001\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.)

Packages:
=========
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-09-20] (Microsoft Corporation)
DragonCenter -> C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.DragonCenter_2.0.96.0_x64__kzh8wxbdkxb8p [2020-12-30] (MICRO-STAR INTERNATIONAL CO., LTD) [Startup Task]
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa [2020-12-27] (Apple Inc.) [Startup Task]
Lexmark Printer Home -> C:\Program Files\WindowsApps\58539F3C.LexmarkPrinterHome_3.0.73.0_neutral__xyj5e99tmxdva [2020-05-01] (Lexmark International, Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-04-16] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-04-16] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2021-01-03] (Microsoft Studios) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.959.0_x64__56jybvy8sckqj [2020-12-22] (NVIDIA Corp.)
PowerOff Timer -> C:\Program Files\WindowsApps\7026LibertatiaNetwork.PowerOffTimer_1.1.8.0_neutral__gxq537y54331a [2020-12-29] (Devcoons)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0 [2020-12-12] (Spotify AB) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [Kaspersky Anti-Virus 21.2] -> {9B9F6E01-A5CF-4269-B245-CFF66A7DAEBD} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.2\x64\shellex.dll [2021-01-05] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Kaspersky Anti-Virus 21.2] -> {9B9F6E01-A5CF-4269-B245-CFF66A7DAEBD} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.2\x64\shellex.dll [2021-01-05] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers4: [Kaspersky Anti-Virus 21.2] -> {9B9F6E01-A5CF-4269-B245-CFF66A7DAEBD} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.2\x64\shellex.dll [2021-01-05] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_a51067c0ac557884\nvshext.dll [2020-12-12] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Kaspersky Anti-Virus 21.2] -> {9B9F6E01-A5CF-4269-B245-CFF66A7DAEBD} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.2\x64\shellex.dll [2021-01-05] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.i420] => C:\Windows\system32\lvcod64.dll [175392 2012-10-26] (Logitech, Inc. -> Logitech Inc.)
HKLM\...\Drivers32: [vidc.i420] => C:\Windows\SysWOW64\lvcodec2.dll [305000 2012-10-26] (Logitech, Inc. -> Logitech Inc.)

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2020-04-16 23:40 - 2017-08-03 05:48 - 000237568 _____ () [File not signed] C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LEDControl.dll
2020-02-24 17:38 - 2020-02-24 17:38 - 000176128 _____ (ENE Technology inc.) [File not signed] C:\Program Files\ENE\Aac_ENE_EHD_SSS_HAL\AacHal_x86.dll
2020-04-16 23:40 - 2018-08-31 07:26 - 000053760 _____ (MS) [File not signed] C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\MsIo32_Galax.dll
2020-04-16 23:37 - 2020-04-16 23:37 - 001612800 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.DragonCenter_2.0.96.0_x64__kzh8wxbdkxb8p\DCv2\SQLite.Interop.dll
2020-12-22 18:17 - 2016-10-04 04:43 - 000399872 _____ (TODO: <公司名稱>) [File not signed] C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Lib\SDKDLL.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\lisak\Data aplikací:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]
AlternateDataStreams: C:\Users\lisak\AppData\Roaming:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-09-18] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_271\bin\ssv.dll [2020-10-25] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_271\bin\jp2ssv.dll [2020-10-25] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-12-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-12-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-12-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-12-07] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

2020-10-03 18:49 - 2020-10-03 18:49 - 000000375 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3731235652-646393183-1318076386-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\lisak\OneDrive\Obrázky\8ec428a6929aa5ceaf09d8b6bda43c8e.png
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

Network Binding:
=============
Ethernet 2: cFosSpeed for faster Internet connections (NDIS 6) -> cfosspeed (enabled)
Ethernet: cFosSpeed for faster Internet connections (NDIS 6) -> cfosspeed (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\StartupFolder: => "TP-LINK Wireless Configuration Utility.lnk"
HKU\S-1-5-21-3731235652-646393183-1318076386-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3731235652-646393183-1318076386-1001\...\StartupApproved\Run: => "Opera Browser Assistant"
HKU\S-1-5-21-3731235652-646393183-1318076386-1001\...\StartupApproved\Run: => "btweb"
HKU\S-1-5-21-3731235652-646393183-1318076386-1001\...\StartupApproved\Run: => "Voicemod"
HKU\S-1-5-21-3731235652-646393183-1318076386-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-3731235652-646393183-1318076386-1001\...\StartupApproved\Run: => "kpm.exe"
HKU\S-1-5-21-3731235652-646393183-1318076386-1001\...\StartupApproved\Run: => "Facebook.MessengerDesktop"
HKU\S-1-5-21-3731235652-646393183-1318076386-1001\...\StartupApproved\Run: => "BitTorrent"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{BE2103C7-3D2C-447C-A2F1-02624126FE23}C:\program files (x86)\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe] => (Allow) C:\program files (x86)\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe (PUBG CORPORATION -> PUBG Works)
FirewallRules: [TCP Query User{4209FA72-756C-43DD-8519-D0DFD6DCBEB1}C:\program files (x86)\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe] => (Allow) C:\program files (x86)\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe (PUBG CORPORATION -> PUBG Works)
FirewallRules: [{380ED8F5-EB0A-4561-9023-E2FAA20EB659}] => (Allow) F:\SteamLibrary\steamapps\common\Layers of Fear\Layers of Fear.exe () [File not signed]
FirewallRules: [{154B1609-EF5D-429E-BEA8-B62BD9247BD7}] => (Allow) F:\SteamLibrary\steamapps\common\Layers of Fear\Layers of Fear.exe () [File not signed]
FirewallRules: [{D516C4FB-DF12-4083-B568-749652EC0C43}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe (QLOC S.A. -> Bethesda Softworks)
FirewallRules: [{290914FB-7D8F-440A-9256-2F2CFC32F7F4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe (QLOC S.A. -> Bethesda Softworks)
FirewallRules: [{0B70FA61-C9D9-4493-B007-84633B0AA402}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Doki Doki Literature Club\DDLC.exe () [File not signed]
FirewallRules: [{B19D78A7-9C50-439D-BAA1-CC28A14D8FAA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Doki Doki Literature Club\DDLC.exe () [File not signed]
FirewallRules: [UDP Query User{B13A24AF-1F13-4C50-86CF-3AEDB56291F3}C:\program files (x86)\image-line\fl studio 20\system\tools\bridge\64bit\ilbridge.exe] => (Allow) C:\program files (x86)\image-line\fl studio 20\system\tools\bridge\64bit\ilbridge.exe => No File
FirewallRules: [TCP Query User{E47224BB-848F-41B8-A11C-D3371EBE6AC8}C:\program files (x86)\image-line\fl studio 20\system\tools\bridge\64bit\ilbridge.exe] => (Allow) C:\program files (x86)\image-line\fl studio 20\system\tools\bridge\64bit\ilbridge.exe => No File
FirewallRules: [UDP Query User{5EB1C72A-8B24-4FEC-8294-D82D7A710BC6}C:\users\lisak\downloads\java\jre1.8.0_201\bin\java.exe] => (Allow) C:\users\lisak\downloads\java\jre1.8.0_201\bin\java.exe => No File
FirewallRules: [TCP Query User{E0AF7D52-8DE9-43B0-A78A-8A94C16DD924}C:\users\lisak\downloads\java\jre1.8.0_201\bin\java.exe] => (Allow) C:\users\lisak\downloads\java\jre1.8.0_201\bin\java.exe => No File
FirewallRules: [UDP Query User{68B00215-639C-48EF-9AB7-4E5ECDC799F8}C:\program files (x86)\wowko\world of warcraft\_retail_\utils\wowvoiceproxy.exe] => (Allow) C:\program files (x86)\wowko\world of warcraft\_retail_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{CAE03781-8EA0-4D08-B767-12B64EF65358}C:\program files (x86)\wowko\world of warcraft\_retail_\utils\wowvoiceproxy.exe] => (Allow) C:\program files (x86)\wowko\world of warcraft\_retail_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{B8DB679F-A56D-43B4-A3C6-4FFE04312121}C:\program files\wizards of the coast\mtga\mtga.exe] => (Allow) C:\program files\wizards of the coast\mtga\mtga.exe (Wizards of the Coast, LLC -> )
FirewallRules: [TCP Query User{7A525C38-EE29-488E-A3D7-12EEE5EC4BBD}C:\program files\wizards of the coast\mtga\mtga.exe] => (Allow) C:\program files\wizards of the coast\mtga\mtga.exe (Wizards of the Coast, LLC -> )
FirewallRules: [UDP Query User{60E99736-57B3-419E-A0A4-1DBF7F5E9D21}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [TCP Query User{F23806F5-2547-4F0D-A955-881C59A968F3}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [{71EB26B1-7AF8-467B-8F1C-3D1E1F409162}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe (Activision Publishing Inc -> )
FirewallRules: [{70323AF3-B6EC-482F-9077-44FE6439181C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe (Activision Publishing Inc -> )
FirewallRules: [UDP Query User{E2F8EDE8-9013-4010-B1F4-626E84106FE1}C:\program files (x86)\steam\steamapps\common\spyro reignited trilogy\falcon\binaries\win64\spyro-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\spyro reignited trilogy\falcon\binaries\win64\spyro-win64-shipping.exe (Activision Publishing Inc -> Activision Publishing, Inc.)
FirewallRules: [TCP Query User{B6E1BAE9-EDF1-4D65-B80B-238625A066F1}C:\program files (x86)\steam\steamapps\common\spyro reignited trilogy\falcon\binaries\win64\spyro-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\spyro reignited trilogy\falcon\binaries\win64\spyro-win64-shipping.exe (Activision Publishing Inc -> Activision Publishing, Inc.)
FirewallRules: [{DF6C35C1-51E5-4203-A294-633F7B2BDE47}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Spyro Reignited Trilogy\Spyro.exe (Activision Publishing Inc -> Epic Games, Inc.)
FirewallRules: [{4B4C99A8-7CCA-40C0-9A29-5E8467CC6E78}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Spyro Reignited Trilogy\Spyro.exe (Activision Publishing Inc -> Epic Games, Inc.)
FirewallRules: [{21498E23-DFF3-412C-9B30-CA2E2D0CF184}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mafia\Mafia\Setup.exe => No File
FirewallRules: [{15052B7B-24CE-4FA7-A543-98B8DCF7EBB0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mafia\Mafia\Setup.exe => No File
FirewallRules: [{9FD83D59-A67E-4BB7-B259-0E57B5841457}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mafia\Mafia\Game.exe => No File
FirewallRules: [{61305B7B-8144-4F59-804D-98AA5A183455}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mafia\Mafia\Game.exe => No File
FirewallRules: [{5A83FD6B-A06A-4093-B601-0F362790D0DE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe => No File
FirewallRules: [{11A197F7-6913-4A24-99F1-84E79C55432F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe => No File
FirewallRules: [{793AB200-8E72-4A80-9F7F-1E6EF93D2701}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe (FromSoftware,Inc. -> BANDAI NAMCO Entertainment Inc.)
FirewallRules: [{9885A1A0-559C-4D4D-B7B7-E2FD667201F0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe (FromSoftware,Inc. -> BANDAI NAMCO Entertainment Inc.)
FirewallRules: [{CCFB0F66-8A75-43FB-8DE5-C4B651362AA5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoE2DE\BattleServer\BattleServer.exe () [File not signed]
FirewallRules: [{262282E1-1E4A-4777-941D-A6489E9CB381}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoE2DE\BattleServer\BattleServer.exe () [File not signed]
FirewallRules: [{C4E90EFD-FBF0-4DAE-950D-1DA2CFF306AC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoE2DE\AoE2DE_s.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CE084ABC-EC03-4825-B7D5-F1E0EECA87ED}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AoE2DE\AoE2DE_s.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{BD0C40AD-2289-457A-8FE0-5A128316722E}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{51FB7431-0E84-4F9F-A01E-1B9106CCA587}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{0CA6F6A6-AF7E-41CD-A6E4-F27D4E160E9E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{50A1987A-387F-416C-A14C-DF2263118AB6}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{15CE156B-7129-4D3E-A7D3-BC06C08A1DAE}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{17C75B92-14DF-4714-B70A-5644830373D2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{57C7B0DD-2985-47B0-A104-1A1D7FBAA99A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{8174560B-07DE-444A-A1BF-064EE4238E5F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{DC04D894-4E42-4875-B467-A850743B6145}C:\program files (x86)\synesthesia\synesthesia.exe] => (Allow) C:\program files (x86)\synesthesia\synesthesia.exe => No File
FirewallRules: [TCP Query User{5D97302E-2C99-4EA5-AA38-EAA7D7EC4355}C:\program files (x86)\synesthesia\synesthesia.exe] => (Allow) C:\program files (x86)\synesthesia\synesthesia.exe => No File
FirewallRules: [UDP Query User{C7C71A46-EB8C-4D98-A173-23952F03523D}C:\program files\obs-studio\bin\64bit\obs64.exe] => (Allow) C:\program files\obs-studio\bin\64bit\obs64.exe (Hugh Bailey -> OBS)
FirewallRules: [TCP Query User{720C13A0-9FA6-4BB2-ABF2-3736CF8FDB43}C:\program files\obs-studio\bin\64bit\obs64.exe] => (Allow) C:\program files\obs-studio\bin\64bit\obs64.exe (Hugh Bailey -> OBS)
FirewallRules: [{84AB4054-4CB4-4F44-812E-6BE0809E47C6}] => (Allow) C:\Users\lisak\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{73E7F2D0-B3A4-4747-90F1-B310C2416F20}] => (Allow) C:\Users\lisak\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [UDP Query User{5C679C0A-D60A-4CDE-8018-4C4E507C0E1B}C:\program files (x86)\overwatch\_retail_\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{9B73569B-2673-4CDE-A977-293272AE65B5}C:\program files (x86)\overwatch\_retail_\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{F408EF37-D49C-4D25-988A-033CC76170C8}] => (Allow) C:\Users\lisak\AppData\Local\Programs\Opera\67.0.3575.137\opera.exe => No File
FirewallRules: [{8EE021C4-A01F-4131-8FF6-A1CBE283A74A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{5EC20690-0A4D-45DE-9BA9-950DC12A2BAE}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{76A8B981-3E5C-40C4-A72B-DF3663339AA5}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{620F36E6-A166-421A-82DF-9568C381AFE8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{B10015CE-678F-434F-B833-E32587E6B59E}] => (Allow) F:\SteamLibrary\steamapps\common\Divinity Original Sin 2\bin\SupportTool.exe (Larian Studios -> Larian Studios)
FirewallRules: [{B46E8318-6F0F-470A-A846-996974BD9587}] => (Allow) F:\SteamLibrary\steamapps\common\Divinity Original Sin 2\bin\SupportTool.exe (Larian Studios -> Larian Studios)
FirewallRules: [TCP Query User{05D474A7-9903-4663-87D9-F260895B6CBC}F:\steamlibrary\steamapps\common\divinity original sin 2\defed\bin\eocapp.exe] => (Allow) F:\steamlibrary\steamapps\common\divinity original sin 2\defed\bin\eocapp.exe (Larian Studios -> )
FirewallRules: [UDP Query User{A577E954-F11B-4C50-9ECD-EC9B074C3EB6}F:\steamlibrary\steamapps\common\divinity original sin 2\defed\bin\eocapp.exe] => (Allow) F:\steamlibrary\steamapps\common\divinity original sin 2\defed\bin\eocapp.exe (Larian Studios -> )
FirewallRules: [TCP Query User{EC1E3E42-2BEB-4AA3-847E-2B33FEFDF925}C:\users\lisak\appdata\roaming\bittorrent web\btweb.exe] => (Allow) C:\users\lisak\appdata\roaming\bittorrent web\btweb.exe => No File
FirewallRules: [UDP Query User{23E087E9-0963-4E0C-B3E1-4E5159865F14}C:\users\lisak\appdata\roaming\bittorrent web\btweb.exe] => (Allow) C:\users\lisak\appdata\roaming\bittorrent web\btweb.exe => No File
FirewallRules: [TCP Query User{AD18EACB-1920-48FC-AE68-4812E6315BA5}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [UDP Query User{99F9CF02-E472-433A-ADD1-76FD4B26ACD5}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [TCP Query User{B71CCFB0-0A22-4D7B-8418-41AFEE49FC34}F:\steamlibrary\steamapps\common\divinity original sin 2\defed\bin\eocapp.exe] => (Allow) F:\steamlibrary\steamapps\common\divinity original sin 2\defed\bin\eocapp.exe (Larian Studios -> )
FirewallRules: [UDP Query User{E90FCE44-67AB-42C8-9917-409F67FF77FB}F:\steamlibrary\steamapps\common\divinity original sin 2\defed\bin\eocapp.exe] => (Allow) F:\steamlibrary\steamapps\common\divinity original sin 2\defed\bin\eocapp.exe (Larian Studios -> )
FirewallRules: [TCP Query User{CC0E34D7-249B-49C4-AB72-C2B3614F267E}C:\program files\wizards of the coast\mtga\mtga.exe] => (Allow) C:\program files\wizards of the coast\mtga\mtga.exe (Wizards of the Coast, LLC -> )
FirewallRules: [UDP Query User{35FDC254-63D2-4D2F-BCE8-C786DCAA516B}C:\program files\wizards of the coast\mtga\mtga.exe] => (Allow) C:\program files\wizards of the coast\mtga\mtga.exe (Wizards of the Coast, LLC -> )
FirewallRules: [{C3CD45CC-815B-420A-A5EB-BAE9C8579A1B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{2F0C667F-0005-4A4B-9181-DDE98BC1BA73}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D2055D84-2CD4-4F06-9BBB-8CAF0043DF4B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{3F9FE97A-BBE8-43CE-8748-F44A37DBD235}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{EE344C37-C44B-4574-A040-B5107F6A0E21}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C41D8577-83E2-4881-BA7D-A9E4F7B5EECD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F1EBE653-EB51-4B4A-BBA4-9DE3EF0A56E0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{ED03F4D9-BA77-4BC1-9F91-1DC18FE7C734}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FFC9998C-CD25-4041-88DE-574773453034}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B86EF383-25D2-4722-B012-E746178BD9AE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{AE8540BA-946E-4335-8EEB-EC41CC91279F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{66244CDE-DBD7-42F9-B832-EE6886941EC9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5172E5E7-B1D8-4730-B423-F18E0ED95845}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F5C7C7E0-E989-417E-BEE1-06D9218B09A6}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe => No File
FirewallRules: [{051AAD2C-1B00-4FCC-B99B-BE660A43F8BE}] => (Allow) F:\SteamLibrary\steamapps\common\Ultimate Doom\rerelease\DOOM.exe () [File not signed]
FirewallRules: [{30EBCC82-1501-434E-9482-BBF6184E200B}] => (Allow) F:\SteamLibrary\steamapps\common\Ultimate Doom\rerelease\DOOM.exe () [File not signed]
FirewallRules: [{F8CE186E-36D7-4464-91ED-5EAFC7D211D5}] => (Allow) F:\SteamLibrary\steamapps\common\Ultimate Doom\base\dosbox.exe (DOSBox Team) [File not signed]
FirewallRules: [{3EF7D027-575E-41AF-B991-A02957770627}] => (Allow) F:\SteamLibrary\steamapps\common\Ultimate Doom\base\dosbox.exe (DOSBox Team) [File not signed]
FirewallRules: [TCP Query User{02BCFD34-B301-4A66-9ED0-289F27EE3884}C:\program files (x86)\overwatch\_retail_\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{B9D00014-9811-4607-8239-40BA3C840FBB}C:\program files (x86)\overwatch\_retail_\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{417693CE-F0AA-4F80-B576-C326836FCA98}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{792EA2B1-E00F-4E84-8CA6-887C1E10FD62}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{44A6DC68-D404-42A9-A2A4-B9153A88F35C}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B6D12264-29C4-4C55-9122-967D6D3BE857}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{91FC8D6A-FB93-442C-98D8-BEF606A66D61}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E07DFEE1-5A55-4CA3-A428-1E5AFF489941}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5B07E993-D395-4A90-8B84-CF4D0A557DFD}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{8C56C246-F6F9-4D6A-B506-79EF6663B470}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0463EB4E-E35E-4184-9FB2-C7852348BF86}] => (Allow) F:\SteamLibrary\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [File not signed]
FirewallRules: [{AEC93AA5-25CA-4B4B-86B7-A1FCFCA014A4}] => (Allow) F:\SteamLibrary\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [File not signed]
FirewallRules: [TCP Query User{5BD55FF5-2E4B-4F2B-A1CF-FDDE80F4CD83}C:\program files (x86)\steam\steamapps\common\spyro reignited trilogy\falcon\binaries\win64\spyro-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\spyro reignited trilogy\falcon\binaries\win64\spyro-win64-shipping.exe (Activision Publishing Inc -> Activision Publishing, Inc.)
FirewallRules: [UDP Query User{D3FBA496-ED09-4865-AAB7-FE5194A674F9}C:\program files (x86)\steam\steamapps\common\spyro reignited trilogy\falcon\binaries\win64\spyro-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\spyro reignited trilogy\falcon\binaries\win64\spyro-win64-shipping.exe (Activision Publishing Inc -> Activision Publishing, Inc.)
FirewallRules: [{1E7176D8-D87F-4322-9AD1-1EB08DD92F44}] => (Allow) C:\Users\lisak\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{4CA71BC9-B21F-4D45-9137-90FBBC35E0AB}] => (Allow) C:\Users\lisak\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{B7894402-F504-4D1F-9F63-153519280EE0}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{039CE335-AE9C-4A06-AADA-9A8BF63FF80B}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{ECFC8D89-9339-4517-BD01-D3E6EDD25EE6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B1549BBD-C576-46CD-812E-A9E71967E52A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{739A4F52-0DAC-4215-9DBE-7DB440627786}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7BF3085F-229C-48DE-B458-E184F4E78943}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0804E55F-4EC7-42EB-820A-4B2D5D7DE3D1}] => (Allow) F:\SteamLibrary\steamapps\common\Miscreated\Miscreated.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{16A56462-ED83-4897-90BB-E97766A75716}] => (Allow) F:\SteamLibrary\steamapps\common\Miscreated\Miscreated.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{493A0268-5ADD-4791-A435-AF0E1B2B7EE2}F:\steamlibrary\steamapps\common\miscreated\bin64\miscreated.exe] => (Allow) F:\steamlibrary\steamapps\common\miscreated\bin64\miscreated.exe (Entrada Interactive LLC) [File not signed]
FirewallRules: [UDP Query User{CCDCF473-7180-4D47-8ADC-3B850ADFD66A}F:\steamlibrary\steamapps\common\miscreated\bin64\miscreated.exe] => (Allow) F:\steamlibrary\steamapps\common\miscreated\bin64\miscreated.exe (Entrada Interactive LLC) [File not signed]
FirewallRules: [{B97685BD-F46E-46DB-8AE9-7E6EFA19D0AB}] => (Allow) F:\SteamLibrary\steamapps\common\Europa Universalis IV\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{D1DA1C25-89D7-495E-9B61-967278D1490B}] => (Allow) F:\SteamLibrary\steamapps\common\Europa Universalis IV\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{C32D1209-7395-4BE3-9763-2220E792C534}] => (Allow) F:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{9BA2307F-4866-4D5F-A3D6-628F455FE4B9}] => (Allow) F:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{E19F02E3-716B-4530-9C74-0F356408038F}] => (Allow) F:\SteamLibrary\steamapps\common\Amnesia The Dark Descent\Amnesia.exe () [File not signed]
FirewallRules: [{7289B2E8-D859-4379-8F98-E84F4E7DC504}] => (Allow) F:\SteamLibrary\steamapps\common\Amnesia The Dark Descent\Amnesia.exe () [File not signed]
FirewallRules: [{FCD3C9D8-B188-4BAA-B36C-03E6547878AE}] => (Allow) F:\SteamLibrary\steamapps\common\Amnesia The Dark Descent\Launcher.exe () [File not signed]
FirewallRules: [{972EA5C0-028C-420B-BA36-3781E6174721}] => (Allow) F:\SteamLibrary\steamapps\common\Amnesia The Dark Descent\Launcher.exe () [File not signed]
FirewallRules: [{B395486F-9E65-4B70-A641-8AAC28091A50}] => (Allow) F:\SteamLibrary\steamapps\common\The Binding Of Isaac\Isaac.exe (Edmund Mcmillen & Florian Himsl) [File not signed]
FirewallRules: [{FD1EC7D4-B6BB-4DA4-A2C2-D51C98094848}] => (Allow) F:\SteamLibrary\steamapps\common\The Binding Of Isaac\Isaac.exe (Edmund Mcmillen & Florian Himsl) [File not signed]
FirewallRules: [{B3D478B5-AC45-4FA6-B8A0-0211D377D86A}] => (Allow) F:\SteamLibrary\steamapps\common\Legend of Grimrock\grimrock.exe () [File not signed]
FirewallRules: [{0256F8FD-E7B4-4467-9BC1-D4BAB74CCC70}] => (Allow) F:\SteamLibrary\steamapps\common\Legend of Grimrock\grimrock.exe () [File not signed]
FirewallRules: [{2152AD67-F0EC-4F53-A72A-2DFB5E40B650}] => (Allow) LPort=32682

==================== Restore Points =========================

29-12-2020 15:57:48 Naplánovaný kontrolní bod
07-01-2021 01:22:47 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (01/07/2021 11:21:18 AM) (Source: Firefox Default Browser Agent) (EventID: 0) (User: )
Description: Event-ID 0

Error: (01/07/2021 02:45:16 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na 1TB-DOWN (F:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (01/07/2021 02:43:50 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na SSD-SYSTEM (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (01/07/2021 02:14:09 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ilbridge.exe, verze: 1.5.113.0, časové razítko: 0x5c66867d
Název chybujícího modulu: ilbridge.exe, verze: 1.5.113.0, časové razítko: 0x5c66867d
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000000de1c
ID chybujícího procesu: 0xa38
Čas spuštění chybující aplikace: 0x01d6e49264ae1269
Cesta k chybující aplikaci: C:\Program Files (x86)\Image-Line\FL Studio 20\System\Tools\Bridge\64bit\ilbridge.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\Image-Line\FL Studio 20\System\Tools\Bridge\64bit\ilbridge.exe
ID zprávy: fe35801a-d9e6-43f2-8ab3-d9ec92cc2afb
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/07/2021 02:14:08 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ilbridge.exe, verze: 1.5.113.0, časové razítko: 0x5c66867d
Název chybujícího modulu: ilbridge.exe, verze: 1.5.113.0, časové razítko: 0x5c66867d
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000032a1b4
ID chybujícího procesu: 0xa38
Čas spuštění chybující aplikace: 0x01d6e49264ae1269
Cesta k chybující aplikaci: C:\Program Files (x86)\Image-Line\FL Studio 20\System\Tools\Bridge\64bit\ilbridge.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\Image-Line\FL Studio 20\System\Tools\Bridge\64bit\ilbridge.exe
ID zprávy: 32eb231c-f4bb-4b0a-b7cb-29e3e405c3c8
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/07/2021 02:14:05 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ilbridge.exe, verze: 1.5.113.0, časové razítko: 0x5c668682
Název chybujícího modulu: ilbridge.exe, verze: 1.5.113.0, časové razítko: 0x5c668682
Kód výjimky: 0xc0000005
Posun chyby: 0x000082f2
ID chybujícího procesu: 0x20e4
Čas spuštění chybující aplikace: 0x01d6e492605fad96
Cesta k chybující aplikaci: C:\Program Files (x86)\Image-Line\FL Studio 20\System\Tools\Bridge\32bit\ilbridge.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\Image-Line\FL Studio 20\System\Tools\Bridge\32bit\ilbridge.exe
ID zprávy: 4f975fab-d6b9-41fc-a21b-5a0bcf466635
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/07/2021 02:14:05 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ilbridge.exe, verze: 1.5.113.0, časové razítko: 0x5c668682
Název chybujícího modulu: ilbridge.exe, verze: 1.5.113.0, časové razítko: 0x5c668682
Kód výjimky: 0xc0000005
Posun chyby: 0x0022b9db
ID chybujícího procesu: 0x20e4
Čas spuštění chybující aplikace: 0x01d6e492605fad96
Cesta k chybující aplikaci: C:\Program Files (x86)\Image-Line\FL Studio 20\System\Tools\Bridge\32bit\ilbridge.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\Image-Line\FL Studio 20\System\Tools\Bridge\32bit\ilbridge.exe
ID zprávy: 75766306-1508-46f7-9943-b8225bc2c2f3
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/04/2021 02:01:30 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na 1TB-DOWN (F:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

System errors:
=============
Error: (01/07/2021 11:22:01 AM) (Source: KLIF) (EventID: 0) (User: )
Description: Event-ID 0

Error: (01/07/2021 11:03:43 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (3:12:30, ‎07.‎01.‎2021) bylo neočekávané.

Error: (01/07/2021 11:03:32 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
Description: 3221225684Při zpracování obnovovacích dat došlo k závažné chybě.

Error: (01/05/2021 05:53:54 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: Volání ScRegSetValueExW skončilo neúspěšné pro Start s touto chybou:
Přístup byl odepřen.

Error: (01/05/2021 02:22:56 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (18:40:39, ‎04.‎01.‎2021) bylo neočekávané.

Error: (01/05/2021 02:22:46 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
Description: 3221225684Při zpracování obnovovacích dat došlo k závažné chybě.

Error: (01/04/2021 02:22:00 PM) (Source: DCOM) (EventID: 10010) (User: PEROTIN)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/04/2021 03:16:11 AM) (Source: BugCheck) (EventID: 1001) (User: )
Description: Počítač byl restartován z procesu kontroly chyb. Kontrola chyb: 0x0000007e (0xffffffffc0000005, 0xfffff8067eaee050, 0xffffde0f93b94f18, 0xffffde0f93b94750). Výpis byl uložen do: C:\WINDOWS\MEMORY.DMP. ID hlášení: d8d783f8-9839-4694-a99b-08c808ea3bf0

Windows Defender:
===================================
Date: 2020-12-15 19:44:18.2570000Z
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {245FFBEE-5A7C-4C72-8EAF-BC9ED8BC6533}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-01-04 13:26:15.7710000Z
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.329.1055.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17700.4
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2021-01-04 13:26:15.7700000Z
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.329.1055.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17700.4
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2021-01-04 13:26:15.7700000Z
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.329.1055.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17700.4
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2021-01-04 13:26:15.7660000Z
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.329.1055.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17700.4
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2021-01-04 13:26:15.7650000Z
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.329.1055.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17700.4
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

CodeIntegrity:
===================================

Date: 2021-01-07 11:05:47.8900000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.2\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2021-01-07 11:05:47.8530000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.2\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2021-01-07 11:05:47.0470000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.2\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2021-01-07 11:05:47.0420000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.2\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2021-01-07 11:05:45.2750000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.2\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2021-01-07 11:05:45.2720000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.2\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2021-01-07 11:05:45.2660000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.2\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

Date: 2021-01-07 11:04:45.7720000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.2\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. 3.50 11/07/2019
Motherboard: Micro-Star International Co., Ltd B450 TOMAHAWK MAX (MS-7C02)
Processor: AMD Ryzen 7 3700X 8-Core Processor
Percentage of memory in use: 34%
Total physical RAM: 16333 MB
Available physical RAM: 10634.61 MB
Total Virtual: 18893 MB
Available Virtual: 9966.07 MB

==================== Drives ================================

Drive c: (SSD-OS) (Fixed) (Total:476.31 GB) (Free:104.91 GB) NTFS
Drive d: (SSD-SYSTEM) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive e: (2TB-DATA) (Fixed) (Total:1863 GB) (Free:1795.93 GB) NTFS
Drive f: (1TB-DOWN) (Fixed) (Total:931.02 GB) (Free:435.1 GB) NTFS

\\?\Volume{8ad2e326-c190-43df-99ec-c5c47a742df9}\ (Obnovení) (Fixed) (Total:0.52 GB) (Free:0.1 GB) NTFS
\\?\Volume{e38f3e9e-b449-48a9-b17b-a4c7e6f79f51}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 6CC01275)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 2 (Protective MBR) (Size: 476.9 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

#2 Příspěvek od **Rudy** » 08 led 2021 14:34

Zdravím!
Problém se může týkat kteréhokoliv uživatele v síti vašeho providera, nemusí to být zrovna váš PC. Hláška obvykle po několika dnech sama zmizí. Zkusíme vyčistit. Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-17] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {C954B52A-B037-4B0B-A81F-0700A64F9755} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-16] (Google LLC -> Google LLC)
Task: {E88CA564-1861-439B-868A-F01907F3E651} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-16] (Google LLC -> Google LLC)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2020-12-09] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2020-12-09] <==== ATTENTION
C:\DumpStack.log.tmp
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
AlternateDataStreams: C:\Users\lisak\Data aplikací:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]
AlternateDataStreams: C:\Users\lisak\AppData\Roaming:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]
FirewallRules: [UDP Query User{B13A24AF-1F13-4C50-86CF-3AEDB56291F3}C:\program files (x86)\image-line\fl studio 20\system\tools\bridge\64bit\ilbridge.exe] => (Allow) C:\program files (x86)\image-line\fl studio 20\system\tools\bridge\64bit\ilbridge.exe => No File
FirewallRules: [TCP Query User{E47224BB-848F-41B8-A11C-D3371EBE6AC8}C:\program files (x86)\image-line\fl studio 20\system\tools\bridge\64bit\ilbridge.exe] => (Allow) C:\program files (x86)\image-line\fl studio 20\system\tools\bridge\64bit\ilbridge.exe => No File
FirewallRules: [UDP Query User{5EB1C72A-8B24-4FEC-8294-D82D7A710BC6}C:\users\lisak\downloads\java\jre1.8.0_201\bin\java.exe] => (Allow) C:\users\lisak\downloads\java\jre1.8.0_201\bin\java.exe => No File
FirewallRules: [TCP Query User{E0AF7D52-8DE9-43B0-A78A-8A94C16DD924}C:\users\lisak\downloads\java\jre1.8.0_201\bin\java.exe] => (Allow) C:\users\lisak\downloads\java\jre1.8.0_201\bin\java.exe => No File
FirewallRules: [{21498E23-DFF3-412C-9B30-CA2E2D0CF184}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mafia\Mafia\Setup.exe => No File
FirewallRules: [{15052B7B-24CE-4FA7-A543-98B8DCF7EBB0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mafia\Mafia\Setup.exe => No File
FirewallRules: [{9FD83D59-A67E-4BB7-B259-0E57B5841457}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mafia\Mafia\Game.exe => No File
FirewallRules: [{61305B7B-8144-4F59-804D-98AA5A183455}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mafia\Mafia\Game.exe => No File
FirewallRules: [{5A83FD6B-A06A-4093-B601-0F362790D0DE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe => No File
FirewallRules: [{11A197F7-6913-4A24-99F1-84E79C55432F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe => No File
FirewallRules: [UDP Query User{DC04D894-4E42-4875-B467-A850743B6145}C:\program files (x86)\synesthesia\synesthesia.exe] => (Allow) C:\program files (x86)\synesthesia\synesthesia.exe => No File
FirewallRules: [TCP Query User{5D97302E-2C99-4EA5-AA38-EAA7D7EC4355}C:\program files (x86)\synesthesia\synesthesia.exe] => (Allow) C:\program files (x86)\synesthesia\synesthesia.exe => No File
FirewallRules: [{84AB4054-4CB4-4F44-812E-6BE0809E47C6}] => (Allow) C:\Users\lisak\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{F408EF37-D49C-4D25-988A-033CC76170C8}] => (Allow) C:\Users\lisak\AppData\Local\Programs\Opera\67.0.3575.137\opera.exe => No File
FirewallRules: [{8EE021C4-A01F-4131-8FF6-A1CBE283A74A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{5EC20690-0A4D-45DE-9BA9-950DC12A2BAE}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [TCP Query User{EC1E3E42-2BEB-4AA3-847E-2B33FEFDF925}C:\users\lisak\appdata\roaming\bittorrent web\btweb.exe] => (Allow) C:\users\lisak\appdata\roaming\bittorrent web\btweb.exe => No File
FirewallRules: [UDP Query User{23E087E9-0963-4E0C-B3E1-4E5159865F14}C:\users\lisak\appdata\roaming\bittorrent web\btweb.exe] => (Allow) C:\users\lisak\appdata\roaming\bittorrent web\btweb.exe => No File
FirewallRules: [{F5C7C7E0-E989-417E-BEE1-06D9218B09A6}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe => No File

EmptyTemp:
End

Uložte do C:\Users\lisak\OneDrive\Plocha jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Perotin · #3 Příspěvek od **Perotin** » 08 led 2021 20:44

Zdravím. Velmi děkuji za pomoc. Zjistil jsem, že stejný problém má i jiné zařízení v síti. Restart CE zatím nepomohl. Po vyčištění FRSTem se ale zatím neprojevilo. V případě, že ano, informuji o tom, hádám, svého ISP. Nicméně zde výsledek logu a prosím o další kontrolu:

Fix result of Farbar Recovery Scan Tool (x64) Version: 05-01-2021
Ran by lisak (08-01-2021 20:40:07) Run:1
Running from C:\Users\lisak\OneDrive\Plocha
Loaded Profiles: lisak
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-09-17] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {C954B52A-B037-4B0B-A81F-0700A64F9755} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-16] (Google LLC -> Google LLC)
Task: {E88CA564-1861-439B-868A-F01907F3E651} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-16] (Google LLC -> Google LLC)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2020-12-09] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2020-12-09] <==== ATTENTION
C:\DumpStack.log.tmp
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
AlternateDataStreams: C:\Users\lisak\Data aplikací:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]
AlternateDataStreams: C:\Users\lisak\AppData\Roaming:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]
FirewallRules: [UDP Query User{B13A24AF-1F13-4C50-86CF-3AEDB56291F3}C:\program files (x86)\image-line\fl studio 20\system\tools\bridge\64bit\ilbridge.exe] => (Allow) C:\program files (x86)\image-line\fl studio 20\system\tools\bridge\64bit\ilbridge.exe => No File
FirewallRules: [TCP Query User{E47224BB-848F-41B8-A11C-D3371EBE6AC8}C:\program files (x86)\image-line\fl studio 20\system\tools\bridge\64bit\ilbridge.exe] => (Allow) C:\program files (x86)\image-line\fl studio 20\system\tools\bridge\64bit\ilbridge.exe => No File
FirewallRules: [UDP Query User{5EB1C72A-8B24-4FEC-8294-D82D7A710BC6}C:\users\lisak\downloads\java\jre1.8.0_201\bin\java.exe] => (Allow) C:\users\lisak\downloads\java\jre1.8.0_201\bin\java.exe => No File
FirewallRules: [TCP Query User{E0AF7D52-8DE9-43B0-A78A-8A94C16DD924}C:\users\lisak\downloads\java\jre1.8.0_201\bin\java.exe] => (Allow) C:\users\lisak\downloads\java\jre1.8.0_201\bin\java.exe => No File
FirewallRules: [{21498E23-DFF3-412C-9B30-CA2E2D0CF184}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mafia\Mafia\Setup.exe => No File
FirewallRules: [{15052B7B-24CE-4FA7-A543-98B8DCF7EBB0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mafia\Mafia\Setup.exe => No File
FirewallRules: [{9FD83D59-A67E-4BB7-B259-0E57B5841457}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mafia\Mafia\Game.exe => No File
FirewallRules: [{61305B7B-8144-4F59-804D-98AA5A183455}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mafia\Mafia\Game.exe => No File
FirewallRules: [{5A83FD6B-A06A-4093-B601-0F362790D0DE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe => No File
FirewallRules: [{11A197F7-6913-4A24-99F1-84E79C55432F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe => No File
FirewallRules: [UDP Query User{DC04D894-4E42-4875-B467-A850743B6145}C:\program files (x86)\synesthesia\synesthesia.exe] => (Allow) C:\program files (x86)\synesthesia\synesthesia.exe => No File
FirewallRules: [TCP Query User{5D97302E-2C99-4EA5-AA38-EAA7D7EC4355}C:\program files (x86)\synesthesia\synesthesia.exe] => (Allow) C:\program files (x86)\synesthesia\synesthesia.exe => No File
FirewallRules: [{84AB4054-4CB4-4F44-812E-6BE0809E47C6}] => (Allow) C:\Users\lisak\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{F408EF37-D49C-4D25-988A-033CC76170C8}] => (Allow) C:\Users\lisak\AppData\Local\Programs\Opera\67.0.3575.137\opera.exe => No File
FirewallRules: [{8EE021C4-A01F-4131-8FF6-A1CBE283A74A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{5EC20690-0A4D-45DE-9BA9-950DC12A2BAE}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [TCP Query User{EC1E3E42-2BEB-4AA3-847E-2B33FEFDF925}C:\users\lisak\appdata\roaming\bittorrent web\btweb.exe] => (Allow) C:\users\lisak\appdata\roaming\bittorrent web\btweb.exe => No File
FirewallRules: [UDP Query User{23E087E9-0963-4E0C-B3E1-4E5159865F14}C:\users\lisak\appdata\roaming\bittorrent web\btweb.exe] => (Allow) C:\users\lisak\appdata\roaming\bittorrent web\btweb.exe => No File
FirewallRules: [{F5C7C7E0-E989-417E-BEE1-06D9218B09A6}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe => No File

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C954B52A-B037-4B0B-A81F-0700A64F9755}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C954B52A-B037-4B0B-A81F-0700A64F9755}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E88CA564-1861-439B-868A-F01907F3E651}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E88CA564-1861-439B-868A-F01907F3E651}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js => moved successfully
C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg => moved successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => removed successfully
C:\Users\lisak\Data aplikací => ":fbd50e2f7662a5c33287ddc6e65ab5a1" ADS removed successfully
"C:\Users\lisak\AppData\Roaming" => ":fbd50e2f7662a5c33287ddc6e65ab5a1" ADS not found.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{B13A24AF-1F13-4C50-86CF-3AEDB56291F3}C:\program files (x86)\image-line\fl studio 20\system\tools\bridge\64bit\ilbridge.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{E47224BB-848F-41B8-A11C-D3371EBE6AC8}C:\program files (x86)\image-line\fl studio 20\system\tools\bridge\64bit\ilbridge.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{5EB1C72A-8B24-4FEC-8294-D82D7A710BC6}C:\users\lisak\downloads\java\jre1.8.0_201\bin\java.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{E0AF7D52-8DE9-43B0-A78A-8A94C16DD924}C:\users\lisak\downloads\java\jre1.8.0_201\bin\java.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{21498E23-DFF3-412C-9B30-CA2E2D0CF184}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{15052B7B-24CE-4FA7-A543-98B8DCF7EBB0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9FD83D59-A67E-4BB7-B259-0E57B5841457}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{61305B7B-8144-4F59-804D-98AA5A183455}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5A83FD6B-A06A-4093-B601-0F362790D0DE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{11A197F7-6913-4A24-99F1-84E79C55432F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{DC04D894-4E42-4875-B467-A850743B6145}C:\program files (x86)\synesthesia\synesthesia.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{5D97302E-2C99-4EA5-AA38-EAA7D7EC4355}C:\program files (x86)\synesthesia\synesthesia.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{84AB4054-4CB4-4F44-812E-6BE0809E47C6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F408EF37-D49C-4D25-988A-033CC76170C8}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8EE021C4-A01F-4131-8FF6-A1CBE283A74A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5EC20690-0A4D-45DE-9BA9-950DC12A2BAE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{EC1E3E42-2BEB-4AA3-847E-2B33FEFDF925}C:\users\lisak\appdata\roaming\bittorrent web\btweb.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{23E087E9-0963-4E0C-B3E1-4E5159865F14}C:\users\lisak\appdata\roaming\bittorrent web\btweb.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F5C7C7E0-E989-417E-BEE1-06D9218B09A6}" => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 105701850 B
Java, Flash, Steam htmlcache => 198324054 B
Windows/system/drivers => 27125706 B
Edge => 1916631 B
Chrome => 896886255 B
Firefox => 1095767191 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 267558 B
NetworkService => 310830 B
lisak => 1109741173 B
Eve => 1236500833 B

RecycleBin => 0 B
EmptyTemp: => 4.4 GB temporary data Removed.

================================

Perotin · #4 Příspěvek od **Perotin** » 08 led 2021 20:56

Tak captcha kontrola se opět objevuje. Je to už asi 4. den

#5 Příspěvek od **Rudy** » 08 led 2021 20:58

Bylo smazáno. ISP informujte v případě, že by hláška trvala více než 2-3 další dny. Je možné, že některé PC na síti je zavirované. Google se takto brání DDoS útokům. Z logu byly smazány jen zbytečnosti a dočasné soubory internetu. Nemáte zač!

Perotin · #6 Příspěvek od **Perotin** » 08 led 2021 21:02

Velice děkuji za pomoc! Je ale divné, že se captcha objevuje i v případě, že jsem nyní na jiné konektivitě (mobilní hotspot)

#7 Příspěvek od **Rudy** » 08 led 2021 21:54

To nevím proč, nicméně vás mohu ubezpečit, že ve vašem PC malware není. Osobně jsem tohle měl už také a zmizelo to samo asi po 4 dnech. Zkuste ještě smazat cache prohlížeče.

VIRY.CZ

Preventivní kontrola - chyba google

Preventivní kontrola - chyba google

Re: Preventivní kontrola - chyba google

Re: Preventivní kontrola - chyba google

Re: Preventivní kontrola - chyba google

Re: Preventivní kontrola - chyba google

Re: Preventivní kontrola - chyba google

Re: Preventivní kontrola - chyba google