Temer vsechny fotky v PC se z jpg. a pod zmenily na .LOCKED
Napsal: 18 zář 2019 19:59
Zdravim, potreboval bych poradit jak se dostat zpet k fotkam a nekterym videiim jsou temer vsechny zasifrovane na .LOCKED a ve slozkach s nimi html s nazvem how to descrypt files.
posilam alespon log snad to nejak pomuze.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 18-09-2019
Ran by Azziky (administrator) on AZZIKY-PC (Gigabyte Technology Co., Ltd. To be filled by O.E.M.) (18-09-2019 20:51:53)
Running from C:\Users\Azziky\Downloads
Loaded Profiles: Azziky (Available Profiles: Azziky & Janysek)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Blizzard App\Battle.net.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Blizzard App\Battle.net.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.6838\Agent.exe
(Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
(Digital Wave Ltd -> Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(Discord Inc. -> Discord Inc.) C:\Users\Azziky\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Azziky\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Azziky\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Azziky\AppData\Local\Discord\app-0.0.305\Discord.exe
(EnigmaSoft Limited -> EnigmaSoft Limited) C:\Program Files\EnigmaSoft\SpyHunter\ShKernel.exe
(EnigmaSoft Limited -> EnigmaSoft Limited) C:\Program Files\EnigmaSoft\SpyHunter\ShMonitor.exe
(EnigmaSoft Limited -> EnigmaSoft Limited) C:\Program Files\EnigmaSoft\SpyHunter\SpyHunter5.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(NOVERIA online s.r.o. -> NOVERIA online s.r.o.) C:\Users\Azziky\Downloads\kontrola.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(VIA Technologies, Inc.) [File not signed] C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [VIAxHCUtl] => C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe [331776 2011-07-12] (VIA Technologies, Inc.) [File not signed]
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7632088 2014-06-10] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-08-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [52553728 2017-06-15] (Hammer & Chisel Inc. -> Hammer & Chisel, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [644552 2019-07-04] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [227648 2019-08-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-2306020130-587888901-628383107-1000\...\Run: [Codec Pack Update Checker] => "C:\Windows\system32\Codecs\UpdateChecker.exe"
HKU\S-1-5-21-2306020130-587888901-628383107-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3210528 2019-09-15] (Valve -> Valve Corporation)
HKU\S-1-5-21-2306020130-587888901-628383107-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-2306020130-587888901-628383107-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [53646912 2019-06-20] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2306020130-587888901-628383107-1000\...\Run: [{D92D519A-41A3-9E83-9E00-C3C793B07417}] => C:\Users\Azziky\AppData\Roaming\Oploy\wuoca.exe [33096 2019-09-09] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2306020130-587888901-628383107-1000\...\Run: [Discord] => C:\Users\Azziky\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-2306020130-587888901-628383107-1000\...\Run: [] => [X]
HKU\S-1-5-21-2306020130-587888901-628383107-1000\...\MountPoints2: {0a280008-ccb0-11e8-9f9f-fcaa1495d1e7} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2306020130-587888901-628383107-1000\...\MountPoints2: {0a28000c-ccb0-11e8-9f9f-fcaa1495d1e7} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2306020130-587888901-628383107-1000\...\MountPoints2: {6ae5c9c3-0552-11e9-a24d-fcaa1495d1e7} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2306020130-587888901-628383107-1000\...\Winlogon: [Shell] C:\Windows\explorer.exe [2872320 2010-11-21] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [243200 2011-06-24] () [File not signed]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2011-12-07] ( ) [File not signed]
HKLM\...\Drivers32: [VIDC.HFYU] => C:\Windows\SysWOW64\huffyuv.dll [39936 2004-05-18] (Disappearing Inc.) [File not signed]
HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\SysWOW64\ff_vfw.dll [112640 2013-03-07] () [File not signed]
HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\SysWOW64\x264vfw.dll [4102656 2012-07-02] (x264vfw project) [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\SysWOW64\ac3acm.acm [151552 2011-12-21] (fccHandler) [File not signed]
HKLM\...\Drivers32: [msacm.lameacm] => C:\Windows\SysWOW64\lameACM.acm [839680 2008-09-24] (hxxp://www.mp3dev.org/) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\Installer\chrmstp.exe [2019-08-28] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodecPackTrayMenu.lnk [2017-06-18]
ShortcutTarget: CodecPackTrayMenu.lnk -> C:\Windows\SysWOW64\Codecs\TrayMenu.exe (No File)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {014B824F-0B1E-40EF-8AF0-D6A75DBC7538} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130296 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0420F98C-025F-40CC-94E3-7E0AEB838844} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2017-08-16] (Google Inc -> Google Inc.)
Task: {107262AA-8460-4164-BF27-F077A2FCF9B0} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [899056 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {320E9010-459E-4E56-BD68-6A3E1BDC68D7} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3787304 2019-05-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {324BFE5D-C975-4F0C-97B1-BF7D665A1EE2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
Task: {3C538699-0515-4CB9-A966-E68FB55D00DC} - System32\Tasks\AVG\Overseer => C:\Program Files\AVG\Antivirus\setup\overseer.exe [1905072 2019-09-18] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {485261D1-F05E-4F66-AD0C-8506623CDB1E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2017-08-16] (Google Inc -> Google Inc.)
Task: {69D418FD-70AC-4DF0-B9BF-A9A9301971E7} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [648504 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {739076EC-B4B6-4D3B-AE12-1C9CCD646E93} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-02-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {78F7C9C2-1F6B-4D93-ADFA-46B65C22030B} - System32\Tasks\{22F5CB10-752E-47DD-A6F6-33BE2C78936F} => C:\Windows\system32\pcalua.exe -a "C:\Users\Azziky\Desktop\Rise of the Tomb Raider + All Updates & DLC+Čeština\Čeština+instalace\RiseOfTheTomb Raider Čeština..exe" -d "C:\Users\Azziky\Desktop\Rise of the Tomb Raider + All Updates & DLC+Čeština\Čeština+instalace"
Task: {7C5BB9A5-DE38-41F2-B729-2E2CE9E53C24} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130296 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7E35EDC1-DF52-403C-8755-E8C75C7A59DD} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-02-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {82087AFC-8D87-4B33-8180-40B03663EC44} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130296 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {91DE4C00-88D5-4151-BA1F-0772CF1E8C81} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130296 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {92A9D027-E6E3-4F4A-8CFD-25744CFB6AA8} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_Plugin.exe [1457720 2019-09-10] (Adobe Inc. -> Adobe)
Task: {9D1A5CB9-242B-4256-83F0-EC76C7655DD2} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2757472 2019-09-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {9DFFAE7B-A51D-4598-8813-19BAE64116CE} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-09-10] (Adobe Inc. -> Adobe)
Task: {D65FC691-83A4-43E6-B148-1A02B5E8115D} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [899056 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{0AAFEA8C-C285-4486-90D1-BEE3EE664D13}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKU\S-1-5-21-2306020130-587888901-628383107-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.dell.com
HKU\S-1-5-21-2306020130-587888901-628383107-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.com
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_221\bin\ssv.dll [2019-09-10] (Oracle America, Inc. -> Oracle Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-08-16] (Google Inc -> Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-09-10] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: ArcPluginIEBHO Class -> {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} -> C:\Program Files (x86)\Arc\Plugins\ArcPluginIE.dll => No File
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-08-16] (Google Inc -> Google Inc.)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-08-16] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-08-16] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-2306020130-587888901-628383107-1000 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKU\S-1-5-21-2306020130-587888901-628383107-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-08-16] (Google Inc -> Google Inc.)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Windows -> Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Windows -> Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF DefaultProfile: 04hwwi5e.default
FF ProfilePath: C:\Users\Azziky\AppData\Roaming\Mozilla\Firefox\Profiles\04hwwi5e.default [2019-09-18]
FF Homepage: Mozilla\Firefox\Profiles\04hwwi5e.default -> hxxps://www.seznam.cz/
FF Extension: (SafeGuard) - C:\Users\Azziky\AppData\Roaming\Mozilla\Firefox\Profiles\04hwwi5e.default\Extensions\extension@safeguard.ws.xpi [2019-09-09]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_255.dll [2019-09-10] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-09-10] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-09-10] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_255.dll [2019-09-10] (Adobe Inc. -> )
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> C:\Program Files (x86)\Arc\Plugins\npArcPluginFF.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.)
StartMenuInternet: FIREFOX.EXE - firefox.exe
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\Azziky\AppData\Local\Google\Chrome\User Data\Default [2019-09-18]
CHR Extension: (Prezentace) - C:\Users\Azziky\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-20]
CHR Extension: (Dokumenty) - C:\Users\Azziky\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-20]
CHR Extension: (Disk Google) - C:\Users\Azziky\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-08-16]
CHR Extension: (YouTube) - C:\Users\Azziky\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-08-16]
CHR Extension: (Tabulky) - C:\Users\Azziky\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\Azziky\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-30]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Azziky\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-14]
CHR Extension: (Gmail) - C:\Users\Azziky\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-07-18]
CHR Extension: (Chrome Media Router) - C:\Users\Azziky\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-09]
StartMenuInternet: Google Chrome - Chrome.exe
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-08-30] (Advanced Micro Devices, Inc.) [File not signed]
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1207624 2019-09-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [484144 2019-09-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [484144 2019-09-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [501600 2019-09-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 ArcService; C:\Program Files (x86)\Arc\ArcService.exe [123000 2019-03-15] (Perfect World Entertainment Inc. -> Perfect World Entertainment Inc)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [582016 2019-08-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [440808 2017-03-22] (Digital Wave Ltd -> Digital Wave Ltd.)
R2 EsgShKernel; C:\Program Files\EnigmaSoft\SpyHunter\ShKernel.exe [11457840 2019-09-17] (EnigmaSoft Limited -> EnigmaSoft Limited)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140936 2013-05-14] (Canon Inc. -> )
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [7987104 2017-04-10] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-02-27] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-02-27] (NVIDIA Corporation -> NVIDIA Corporation)
R2 ShMonitor; C:\Program Files\EnigmaSoft\SpyHunter\ShMonitor.exe [512816 2019-09-17] (EnigmaSoft Limited -> EnigmaSoft Limited)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 amd_sata; C:\Windows\System32\DRIVERS\amd_sata.sys [82240 2013-06-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\Windows\System32\DRIVERS\amd_xata.sys [42304 2013-06-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [68152 2019-06-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [218552 2019-09-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [176816 2019-09-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [36072 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [78600 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [35376 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2017-09-03] (DT Soft Ltd -> DT Soft Ltd)
R3 EnigmaFileMonDriver; C:\Windows\System32\drivers\EnigmaFileMonDriver.sys [68424 2019-09-18] (EnigmaSoft Limited -> EnigmaSoft Limited)
S3 nusb3hub; C:\Windows\system32\drivers\nusb3hub.sys [80384 2010-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 nusb3xhc; C:\Windows\system32\drivers\nusb3xhc.sys [180736 2010-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-05-10] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [75600 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
R3 usbfilter; C:\Windows\System32\DRIVERS\usbfilter.sys [58536 2012-08-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R3 VUSB3HUB; C:\Windows\System32\DRIVERS\ViaHub3.sys [225792 2013-08-12] (Microsoft Windows Hardware Compatibility Publisher -> VIA Technologies, Inc.)
R3 xhcdrv; C:\Windows\System32\DRIVERS\xhcdrv.sys [295424 2013-08-12] (Microsoft Windows Hardware Compatibility Publisher -> VIA Technologies, Inc.)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-09-18 20:51 - 2019-09-18 20:53 - 000027559 _____ C:\Users\Azziky\Downloads\FRST.txt
2019-09-18 20:51 - 2019-09-18 20:51 - 000000000 ____D C:\FRST
2019-09-18 20:50 - 2019-09-18 20:50 - 001615360 _____ (Farbar) C:\Users\Azziky\Downloads\FRST64.exe
2019-09-18 19:25 - 2019-09-18 19:25 - 000588200 _____ (NOVERIA online s.r.o.) C:\Users\Azziky\Downloads\kontrola.exe
2019-09-18 19:07 - 2019-09-18 19:07 - 000003292 _____ C:\Windows\System32\Tasks\Avira_Antivirus_Systray
2019-09-18 19:07 - 2019-09-18 19:07 - 000001116 _____ C:\Users\Public\Desktop\Avira.lnk
2019-09-18 19:06 - 2019-09-18 19:08 - 000218552 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2019-09-18 19:06 - 2019-09-18 19:08 - 000176816 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2019-09-18 19:06 - 2019-09-18 19:06 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2019-09-18 19:06 - 2019-06-07 15:09 - 000068152 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avdevprot.sys
2019-09-18 19:06 - 2019-03-20 19:50 - 000078600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2019-09-18 19:06 - 2019-03-20 19:50 - 000036072 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2019-09-18 19:06 - 2019-03-20 19:50 - 000035376 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avusbflt.sys
2019-09-18 19:05 - 2019-09-18 19:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2019-09-18 19:05 - 2019-09-18 19:06 - 000000000 ____D C:\ProgramData\Avira
2019-09-18 19:05 - 2019-09-18 19:06 - 000000000 ____D C:\Program Files (x86)\Avira
2019-09-18 18:57 - 2019-09-18 19:00 - 206470896 _____ (Avira Operations GmbH & Co. KG) C:\Users\Azziky\Downloads\avira_antivirus_en-us.exe
2019-09-18 18:49 - 2019-09-18 18:49 - 002375968 _____ (AVAST Software) C:\Users\Azziky\Downloads\avast_decryptor_hiddentear.exe
2019-09-18 18:47 - 2019-09-18 18:48 - 002375968 _____ (AVAST Software) C:\Users\Azziky\Downloads\avast_decryptor_apocalypse.exe
2019-09-18 18:35 - 2019-09-18 19:57 - 000000000 ____D C:\Users\Azziky\Desktop\Nová složka (2)
2019-09-18 18:35 - 2019-09-18 18:41 - 000000000 ____D C:\Users\Azziky\Desktop\Nová složka
2019-09-18 18:33 - 2019-09-18 18:34 - 002375968 _____ (AVAST Software) C:\Users\Azziky\Downloads\avast_decryptor_stampado.exe
2019-09-17 23:28 - 2019-09-17 23:40 - 372171584 _____ C:\Users\Azziky\Downloads\Hrdinové S03E17 - Studene valky.avi
2019-09-17 23:27 - 2019-09-17 23:40 - 362686464 _____ C:\Users\Azziky\Downloads\Hrdinove s03e15 - Duvera a krev.avi
2019-09-17 23:27 - 2019-09-17 23:40 - 362500096 _____ C:\Users\Azziky\Downloads\Hrdinove s03e14 - V zajmu bezpecnosti.avi
2019-09-17 23:27 - 2019-09-17 23:40 - 362371072 _____ C:\Users\Azziky\Downloads\Hrdinové S03E16 - Budova 26.avi
2019-09-17 23:20 - 2019-09-18 16:27 - 000068424 _____ (EnigmaSoft Limited) C:\Windows\system32\Drivers\EnigmaFileMonDriver.sys
2019-09-17 23:20 - 2019-09-17 23:20 - 000001010 _____ C:\Users\Public\Desktop\SpyHunter5.lnk
2019-09-17 23:20 - 2019-09-17 23:20 - 000000000 ____D C:\sh5ldr
2019-09-17 23:20 - 2019-09-17 23:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EnigmaSoft
2019-09-17 23:20 - 2019-09-17 23:20 - 000000000 ____D C:\ProgramData\EnigmaSoft Limited
2019-09-17 23:19 - 2019-09-17 23:19 - 000000000 ____D C:\Program Files\EnigmaSoft
2019-09-17 23:18 - 2019-09-17 23:18 - 006822192 _____ (EnigmaSoft Limited) C:\Users\Azziky\Downloads\SpyHunter-Installer.exe
2019-09-17 22:59 - 2019-09-17 23:09 - 000000000 ____D C:\Program Files\FileViewPro
2019-09-17 22:59 - 2019-09-17 22:59 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\IsolatedStorage
2019-09-17 22:59 - 2019-09-17 22:59 - 000000000 ____D C:\ProgramData\IsolatedStorage
2019-09-17 22:59 - 2019-09-17 22:59 - 000000000 ____D C:\ProgramData\FileViewPro
2019-09-17 22:58 - 2019-09-17 23:09 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\WinThruster
2019-09-17 22:58 - 2019-09-17 23:09 - 000000000 ____D C:\Program Files (x86)\WinThruster
2019-09-17 21:20 - 2019-09-17 23:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malware Eraser
2019-09-17 21:20 - 2019-09-17 23:09 - 000000000 ____D C:\Program Files (x86)\Malware Eraser
2019-09-17 21:08 - 2019-09-17 23:09 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2019-09-17 21:08 - 2019-09-17 21:58 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2019-09-16 21:04 - 2019-09-16 21:04 - 000000000 ____D C:\Users\Azziky\AppData\Local\AVAST Software
2019-09-16 21:04 - 2019-09-16 21:04 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2019-09-16 21:00 - 2019-09-16 22:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2019-09-16 21:00 - 2019-09-16 21:00 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\AVAST Software
2019-09-16 20:59 - 2019-09-16 22:31 - 000000000 ____D C:\Windows\System32\Tasks\Avast Software
2019-09-16 20:58 - 2019-09-16 20:58 - 000000000 ____D C:\Program Files\Common Files\AVAST Software
2019-09-16 20:56 - 2019-09-16 20:58 - 000000000 ____D C:\ProgramData\AVAST Software
2019-09-16 20:56 - 2019-09-16 20:56 - 000000000 ____D C:\Program Files\AVAST Software
2019-09-16 20:50 - 2019-09-16 20:50 - 000000000 ____D C:\Program Files (x86)\AVG
2019-09-16 20:47 - 2019-09-16 20:47 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\AVG
2019-09-16 20:45 - 2019-09-16 22:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2019-09-16 20:16 - 2019-09-16 20:16 - 000057560 _____ C:\Users\Azziky\AppData\Local\GDIPFONTCACHEV1.DAT
2019-09-16 20:16 - 2019-09-16 20:16 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\360DrvMgr
2019-09-16 19:51 - 2019-09-16 20:35 - 000000000 __SHD C:\$360Section
2019-09-16 19:50 - 2019-09-16 19:50 - 000000000 ____D C:\Windows\Tasks\360Disabled
2019-09-16 19:48 - 2019-09-16 20:47 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\360DesktopLite
2019-09-16 19:48 - 2019-09-16 20:35 - 000000000 ____D C:\ProgramData\360Quarant
2019-09-16 19:47 - 2019-09-16 19:47 - 000000000 ____D C:\Program Files (x86)\360
2019-09-11 21:04 - 2019-09-11 21:25 - 1979604348 _____ C:\Users\Azziky\Downloads\ALDN.019.Aladdin.2019.BRRip.DD5.1(Ac3).CZ.Dabing.mkv
2019-09-11 14:13 - 2019-09-11 14:13 - 000000000 ____D C:\Users\Azziky\AppData\Local\Discord
2019-09-10 23:02 - 2019-09-10 23:03 - 048494776 _____ (Hammer & Chisel, Inc.) C:\Users\Azziky\Downloads\DiscordSetup(1).exe
2019-09-10 20:12 - 2019-09-11 14:13 - 000002127 _____ C:\Users\Azziky\Desktop\Discord.lnk
2019-09-10 20:01 - 2019-09-10 20:02 - 079607256 _____ (Oracle Corporation) C:\Users\Azziky\Downloads\jre-8u221-windows-x64.exe
2019-09-10 19:58 - 2019-09-10 19:59 - 061370712 _____ (Discord Inc.) C:\Users\Azziky\Downloads\DiscordSetup.exe
2019-09-09 21:28 - 2019-09-09 22:20 - 1925544566 _____ C:\Users\Azziky\Downloads\X-Men.Dark.Phoenix.2019.BRRip.XviD.AC3.CZ.avi
2019-09-09 21:27 - 2019-09-09 21:56 - 481008954 _____ C:\Users\Azziky\Downloads\Hrdinove s02e07 - Cas nic nespravi.avi
2019-09-09 21:26 - 2019-09-09 21:56 - 480671248 _____ C:\Users\Azziky\Downloads\Hrdinove S02E05.avi
2019-09-09 21:26 - 2019-09-09 21:55 - 466693358 _____ C:\Users\Azziky\Downloads\Hrdinove S02E06.avi
2019-09-09 21:26 - 2019-09-09 21:51 - 405357118 _____ C:\Users\Azziky\Downloads\Hrdinove S02E04.avi
2019-09-09 21:26 - 2019-09-09 21:50 - 406428810 _____ C:\Users\Azziky\Downloads\Hrdinove S02E03.avi
2019-09-09 21:08 - 2019-09-09 21:08 - 000280416 _____ (Mozilla) C:\Users\Azziky\Downloads\Firefox Installer.exe
2019-09-09 20:28 - 2019-09-09 20:28 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\Media Player Classic
2019-09-09 20:27 - 2019-09-09 20:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2019-09-09 20:27 - 2019-09-09 20:27 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2019-09-09 20:27 - 2013-03-07 20:00 - 000112640 _____ C:\Windows\SysWOW64\ff_vfw.dll
2019-09-09 20:27 - 2012-07-02 01:15 - 004102656 _____ (x264vfw project) C:\Windows\SysWOW64\x264vfw.dll
2019-09-09 20:27 - 2012-06-09 20:21 - 000178688 _____ C:\Windows\SysWOW64\unrar.dll
2019-09-09 20:27 - 2012-05-22 00:48 - 000000415 _____ C:\Windows\SysWOW64\lame_acm.xml
2019-09-09 20:27 - 2011-12-21 20:14 - 000151552 _____ (fccHandler) C:\Windows\SysWOW64\ac3acm.acm
2019-09-09 20:27 - 2011-12-07 20:32 - 000216064 _____ ( ) C:\Windows\SysWOW64\lagarith.dll
2019-09-09 20:27 - 2011-06-24 17:44 - 000243200 _____ C:\Windows\SysWOW64\xvidvfw.dll
2019-09-09 20:27 - 2011-06-24 17:28 - 000650752 _____ C:\Windows\SysWOW64\xvidcore.dll
2019-09-09 20:27 - 2008-09-24 21:41 - 000839680 _____ (hxxp://www.mp3dev.org/) C:\Windows\SysWOW64\lameACM.acm
2019-09-09 20:27 - 2004-05-18 21:16 - 000039936 _____ (Disappearing Inc.) C:\Windows\SysWOW64\huffyuv.dll
2019-09-09 20:24 - 2019-09-09 20:24 - 000009058 _____ C:\Users\Azziky\Desktop\[HOW_TO_DECRYPT_FILES].html
2019-09-09 20:18 - 2019-09-09 20:18 - 000009058 _____ C:\Users\Azziky\AppData\Local\[HOW_TO_DECRYPT_FILES].html
2019-09-09 20:16 - 2019-09-17 23:09 - 000000000 __SHD C:\Users\Azziky\AppData\Roaming\Oploy
2019-09-09 20:16 - 2019-09-09 20:16 - 000002889 _____ C:\Users\Public\Desktop\KEY
2019-09-09 20:15 - 2019-09-09 20:16 - 035069440 _____ (Sky and) C:\Users\Azziky\Downloads\Codec Pack All in 1 6.0.2.6 - freeware.exe
2019-09-09 20:14 - 2019-09-09 20:14 - 031893619 _____ C:\Users\Azziky\Downloads\K-Lite_Codec_Pack_Mega.exe
2019-09-09 20:04 - 2019-09-09 20:04 - 017310011 _____ (KLCP ) C:\Users\Azziky\Downloads\K-Lite_Codec_Pack_1516_Basic.exe
2019-09-09 20:01 - 2019-09-09 20:02 - 059789295 _____ (KLCP ) C:\Users\Azziky\Downloads\K-Lite_Codec_Pack_1500_Mega.exe
2019-09-08 21:08 - 2019-09-08 21:27 - 492387876 _____ C:\Users\Azziky\Downloads\Hrdinove s02e01 - Ctyri mesice predtim.avi
2019-09-08 21:08 - 2019-09-08 21:27 - 405557522 _____ C:\Users\Azziky\Downloads\Hrdinove S02E02.avi
2019-09-08 21:07 - 2019-09-08 21:25 - 358132744 _____ C:\Users\Azziky\Downloads\Hrdinove s01e22 - Drtive vitezstvi.avi
2019-09-08 21:07 - 2019-09-08 21:25 - 357157446 _____ C:\Users\Azziky\Downloads\Hrdinove s01e23 - Jak zastavit vybuchujiciho muze.avi
2019-09-08 21:07 - 2019-09-08 21:24 - 358619532 _____ C:\Users\Azziky\Downloads\Hrdinove s01e21 - ta tezsi cast.avi
2019-09-08 21:06 - 2019-09-08 21:22 - 357480448 _____ C:\Users\Azziky\Downloads\Hrdinove s01e20 - Pet let pote.avi
2019-09-07 10:27 - 2019-09-07 10:27 - 000000000 ___SD C:\Users\Janysek\AppData\LocalLow\Temp
2019-09-05 23:07 - 2019-09-05 23:28 - 357879808 _____ C:\Users\Azziky\Downloads\Heroes - Hrdinove ( serial 2006 ) CZ S01E10 - Pred eesti mesici.avi
2019-09-05 23:07 - 2019-09-05 23:25 - 357402672 _____ C:\Users\Azziky\Downloads\Heroes---Hrdinove--serial-2006--CZ-S01E09---Majales.avi
2019-09-05 23:07 - 2019-09-05 23:25 - 355569664 _____ C:\Users\Azziky\Downloads\Heroes - Hrdinove ( serial 2006 ) CZ S01E08 - Za sedm minut dvanact.avi
2019-09-05 23:06 - 2019-09-05 23:26 - 419516464 _____ C:\Users\Azziky\Downloads\Heroes---Hrdinove--serial-2006--CZ-S01E07---Neni-co-skryvat.avi
2019-09-05 23:06 - 2019-09-05 23:25 - 419557376 _____ C:\Users\Azziky\Downloads\Heroes - Hrdinove ( serial 2006 ) CZ S01E06 - Lepsi polovicky.avi
2019-09-05 23:04 - 2019-09-05 23:18 - 419536944 _____ C:\Users\Azziky\Downloads\Heroes---Hrdinove--serial-2006--CZ-S01E05---Hirodinove.avi
2019-09-04 04:46 - 2019-09-04 04:57 - 988036632 _____ C:\Users\Azziky\Downloads\Aliance-(Woodley)-(2016)--cz-dabing.avi
2019-08-29 21:45 - 2019-08-29 22:29 - 2428520758 _____ C:\Users\Azziky\Downloads\Hellboy.(2019).720pCZDabing.mkv
2019-08-29 21:44 - 2019-08-29 22:20 - 1602573398 _____ C:\Users\Azziky\Downloads\Syn temnoty - Brightburn (2019) CZ dabing.mkv
2019-08-26 09:22 - 2019-08-26 10:12 - 164536679 _____ C:\Users\Azziky\Downloads\Avengers.endgame.3D.cz.dab..mkv
2019-08-24 19:57 - 2019-08-24 20:40 - 4008084078 _____ C:\Users\Azziky\Downloads\Avengers.Endgame.2019.1080p.BluRay.DD5.1 CZ.Dabing.mkv
2019-08-23 20:29 - 2019-08-23 23:03 - 2367004970 _____ C:\Users\Azziky\Downloads\gua-endgame.3d-1080p.mkv
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-09-18 20:47 - 2017-10-08 11:07 - 000000000 ____D C:\Users\Azziky\AppData\Local\Battle.net
2019-09-18 19:57 - 2017-06-18 22:42 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\WinRAR
2019-09-18 19:28 - 2019-08-17 21:29 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-09-18 19:07 - 2017-06-13 13:45 - 000000000 ____D C:\ProgramData\Package Cache
2019-09-18 18:40 - 2017-06-13 22:45 - 000680466 _____ C:\Windows\system32\perfh005.dat
2019-09-18 18:40 - 2017-06-13 22:45 - 000147486 _____ C:\Windows\system32\perfc005.dat
2019-09-18 18:40 - 2009-07-14 07:13 - 001620576 _____ C:\Windows\system32\PerfStringBackup.INI
2019-09-18 18:40 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2019-09-18 18:34 - 2019-07-28 11:50 - 000000000 ____D C:\Users\Azziky\Desktop\Vsechno foto
2019-09-18 18:25 - 2017-06-13 14:10 - 000000000 ____D C:\Users\Azziky\AppData\LocalLow\Mozilla
2019-09-18 18:17 - 2017-09-02 22:00 - 000000000 ____D C:\Program Files (x86)\Steam
2019-09-18 18:16 - 2017-06-13 14:33 - 000000000 ____D C:\ProgramData\NVIDIA
2019-09-18 18:15 - 2017-09-03 18:48 - 000000000 ____D C:\Users\Azziky\AppData\LocalLow\Temp
2019-09-18 16:34 - 2009-07-14 06:45 - 000026512 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-09-18 16:34 - 2009-07-14 06:45 - 000026512 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-09-18 16:27 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-09-18 04:46 - 2018-11-04 18:33 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\discord
2019-09-17 23:10 - 2017-06-13 12:55 - 000000000 ____D C:\Users\Azziky
2019-09-17 23:09 - 2017-10-08 11:09 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\Battle.net
2019-09-17 23:09 - 2017-06-30 10:21 - 000000000 ____D C:\Users\Janysek
2019-09-17 23:09 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\registration
2019-09-16 23:01 - 2017-06-13 14:42 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\Skype
2019-09-16 22:31 - 2018-05-28 19:29 - 000000000 ____D C:\Windows\System32\Tasks\AVG
2019-09-16 22:31 - 2018-04-22 11:15 - 000000000 ___HD C:\Users\Azziky\AppData\Roaming\ZdWLaCApZCfPrAxE
2019-09-16 22:31 - 2017-06-13 14:42 - 000000000 ____D C:\ProgramData\Skype
2019-09-16 22:31 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy
2019-09-16 22:31 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\AppCompat
2019-09-16 22:29 - 2018-04-15 14:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA Games
2019-09-16 20:50 - 2018-05-28 19:30 - 000000000 ____D C:\Users\Azziky\AppData\Local\Avg
2019-09-16 20:40 - 2018-05-28 19:26 - 000000000 ____D C:\ProgramData\AVG
2019-09-16 19:52 - 2017-06-13 22:46 - 000000000 ____D C:\Windows\Panther
2019-09-16 19:52 - 2017-06-13 21:31 - 000000000 ____D C:\Users\Azziky\AppData\Local\CrashDumps
2019-09-16 19:48 - 2009-07-14 05:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2019-09-11 14:13 - 2018-11-04 18:34 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2019-09-11 14:13 - 2018-11-04 18:32 - 000000000 ____D C:\Users\Azziky\AppData\Local\SquirrelTemp
2019-09-11 13:54 - 2018-11-04 18:33 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
2019-09-10 20:25 - 2018-09-17 16:25 - 000004532 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-09-10 20:25 - 2018-09-17 16:25 - 000004408 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2019-09-10 20:25 - 2017-08-16 20:41 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2019-09-10 20:25 - 2017-08-16 20:41 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-09-10 20:25 - 2017-08-16 20:41 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2019-09-10 20:25 - 2017-08-16 20:41 - 000000000 ____D C:\Windows\system32\Macromed
2019-09-10 20:03 - 2018-02-18 22:05 - 000110064 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2019-09-10 20:03 - 2018-02-18 22:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-09-10 20:02 - 2018-02-18 22:05 - 000000000 ____D C:\Program Files\Java
2019-09-10 19:40 - 2017-06-13 14:10 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-09-09 21:11 - 2017-06-13 14:10 - 000001159 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-09-09 21:11 - 2017-06-13 14:10 - 000001147 _____ C:\Users\Public\Desktop\Firefox.lnk
2019-09-09 20:33 - 2018-12-21 22:37 - 000000000 ____D C:\Users\Azziky\Desktop\Mp3
2019-09-09 20:24 - 2019-04-11 10:06 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\Twitch
2019-09-09 20:24 - 2017-09-02 21:41 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\uTorrent
2019-09-09 20:24 - 2017-07-30 13:55 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\TS3Client
2019-09-09 20:20 - 2019-03-16 14:42 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\Arc
2019-09-09 20:20 - 2018-04-24 20:32 - 000000000 ____D C:\Users\Azziky\AppData\Local\Oblivion
2019-09-09 20:20 - 2018-04-22 11:09 - 000000000 ____D C:\Users\Azziky\AppData\Local\Skyrim
2019-09-09 20:20 - 2017-09-03 09:01 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\DAEMON Tools Lite
2019-09-09 20:20 - 2017-09-02 22:17 - 000000000 ____D C:\Users\Azziky\AppData\Local\Ubisoft Game Launcher
2019-09-09 20:20 - 2017-07-30 13:54 - 000000000 ____D C:\Users\Azziky\AppData\Local\TeamSpeak 3 Client
2019-09-09 20:20 - 2017-06-18 22:28 - 000000000 ____D C:\Users\Azziky\AppData\LocalLow\Canon Easy-WebPrint EX
2019-09-09 20:18 - 2018-02-18 21:50 - 000000000 ____D C:\Users\Azziky\AppData\Local\Fallout4
2019-09-09 20:18 - 2017-09-03 09:13 - 000000000 ____D C:\Users\Azziky\AppData\Local\Fallout3
2019-09-09 20:10 - 2019-03-16 21:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2019-09-09 20:10 - 2017-06-14 17:14 - 000001306 _____ C:\Users\Public\Desktop\Skype.lnk
2019-09-09 20:06 - 2017-06-13 14:10 - 000000000 ____D C:\Users\Azziky\AppData\Local\Mozilla
2019-09-09 20:06 - 2017-06-13 13:01 - 010816916 ____H C:\Users\Azziky\AppData\Local\iznomituh.locked
2019-09-07 09:58 - 2017-06-30 10:22 - 000000000 ____D C:\Users\Janysek\AppData\LocalLow\Mozilla
2019-09-01 23:02 - 2018-05-30 20:40 - 000000000 ____D C:\ProgramData\CanonIJPLM
2019-09-01 08:50 - 2017-10-08 11:07 - 000000000 ____D C:\Program Files (x86)\Blizzard App
2019-08-29 21:56 - 2017-10-08 11:10 - 000000000 ____D C:\Program Files (x86)\Diablo III
2019-08-29 21:53 - 2019-03-21 23:51 - 000000000 ____D C:\Program Files (x86)\World of Warcraft
2019-08-28 17:05 - 2017-08-16 20:41 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-08-28 17:05 - 2017-08-16 20:41 - 000002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-08-23 20:01 - 2017-07-05 09:21 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
==================== Files in the root of some directories ================
2017-06-13 15:14 - 2017-06-13 15:14 - 000058372 _____ () C:\Users\Azziky\AppData\Local\EXOKYGOHOXAZYKZ.locked
2017-06-13 13:01 - 2019-09-09 20:06 - 010816916 ____H () C:\Users\Azziky\AppData\Local\iznomituh.locked
2018-07-14 15:42 - 2019-06-10 19:13 - 000007602 _____ () C:\Users\Azziky\AppData\Local\Resmon.ResmonCfg
2019-09-09 20:18 - 2019-09-09 20:18 - 000009058 _____ () C:\Users\Azziky\AppData\Local\[HOW_TO_DECRYPT_FILES].html
==================== SigCheck ===============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2019-09-16 23:43
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-09-2019
Ran by Azziky (18-09-2019 20:54:42)
Running from C:\Users\Azziky\Downloads
Windows 7 Professional Service Pack 1 (X64) (2017-06-13 10:55:20)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2306020130-587888901-628383107-500 - Administrator - Disabled)
Azziky (S-1-5-21-2306020130-587888901-628383107-1000 - Administrator - Enabled) => C:\Users\Azziky
Guest (S-1-5-21-2306020130-587888901-628383107-501 - Limited - Disabled)
Janysek (S-1-5-21-2306020130-587888901-628383107-1002 - Limited - Enabled) => C:\Users\Janysek
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avira Antivirus (Disabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AS: Avira Antivirus (Disabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.012.20040 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.255 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.255 - Adobe)
Aktualizace NVIDIA 37.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 37.0.0.0 - NVIDIA Corporation) Hidden
AMD Catalyst Install Manager (HKLM\...\{1D1DCF8A-6961-F848-0DA0-5401969C44CE}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Arc (HKLM-x32\...\{CED8E25B-122A-4E80-B612-7F99B93284B3}) (Version: 1.1.0.17816 - Perfect World Entertainment)
Avira (HKLM-x32\...\{1db45392-716a-490d-9b3e-2d96adbb5ab0}) (Version: 1.2.136.25116 - Avira Operations GmbH & Co. KG)
Avira (HKLM-x32\...\{CC898F82-66EF-4083-947F-5C69703DDBAF}) (Version: 1.2.136.25116 - Avira Operations GmbH & Co. KG) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.1908.1579 - Avira Operations GmbH & Co. KG)
Blizzard App (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.1.0 - Canon Inc.)
Canon MG2400 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG2400_series) (Version: 1.02 - Canon Inc.)
Canon MG2400 series On-screen Manual (HKLM-x32\...\Canon MG2400 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.47.1.0333 - Disc Soft Ltd)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Discord (HKU\S-1-5-21-2306020130-587888901-628383107-1000\...\Discord) (Version: 0.0.305 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 391.01 - NVIDIA Corporation) Hidden
EVEREST Ultimate Edition v5.50 (HKLM-x32\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.)
Fallout 3 (HKLM-x32\...\{974C4B12-4D02-4879-85E0-61C95CC63E9E}) (Version: 1.00.0000 - Bethesda Softworks)
Free Video Flip and Rotate (HKLM-x32\...\Free Video Flip and Rotate_is1) (Version: 1.1.35.831 - Digital Wave Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 76.0.3809.132 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of Might and Magic IV Gold verze 3.0c (HKLM-x32\...\{67FA88C6-ECC7-45AD-9615-3FB4AFE3E131}_is1) (Version: 3.0c - )
Heroes of Might and Magic V - Tribes of the East (HKLM-x32\...\{66FF4C48-0083-4E60-8556-B883AB200092}) (Version: - )
Heroes of Might and Magic V (HKLM-x32\...\Uplay Install 87) (Version: - Ubisoft)
Heroes of Might and Magic V Tribes of the East (HKLM-x32\...\Uplay Install 147) (Version: - Ubisoft)
Java 8 Update 161 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180161F0}) (Version: 8.0.1610.12 - Oracle Corporation)
Java 8 Update 221 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180221F0}) (Version: 8.0.2210.11 - Oracle Corporation)
JPG/JPEG Photo Converter version 1.1.0.7 (HKLM-x32\...\JPG/JPEG Photo Converter_is1) (Version: - )
K-Lite Mega Codec Pack 9.8.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.8.0 - )
Metin2 (HKLM-x32\...\Metin2_CZ_is1) (Version: - Gameforge 4D GmbH)
Microsoft .NET Framework 4.5.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{929CE49F-1CA7-4CF3-A9A1-6D757443C63F}) (Version: 1.2.0241 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 69.0 (x64 cs) (HKLM\...\Mozilla Firefox 69.0 (x64 cs)) (Version: 69.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 69.0 - Mozilla)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.15 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.19.0.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.19.0.94 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.16 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 430.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 430.86 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Ovládací panel NVIDIA 430.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 430.86 - NVIDIA Corporation) Hidden
Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.88.617.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7266 - Realtek Semiconductor Corp.)
Registrace uživatele zařízení Canon MG2400 series (HKLM-x32\...\Registrace uživatele zařízení Canon MG2400 series) (Version: - Canon Inc.)
SilentSetup (HKLM-x32\...\{BA073B32-292B-424A-97E1-70C25CD1075F}) (Version: 1.0.0 - Default Company Name) Hidden
Skype verze 8.48 (HKLM-x32\...\Skype_is1) (Version: 8.48 - Skype Technologies S.A.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
SpyHunter 5 (HKLM-x32\...\SpyHunter5) (Version: 5.6.1.119 - EnigmaSoft Limited)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKU\S-1-5-21-2306020130-587888901-628383107-1000\...\TeamSpeak 3 Client) (Version: 3.1.4.2 - TeamSpeak Systems GmbH)
Twitch (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Twitch Interactive, Inc.)
Twitch (HKU\S-1-5-21-2306020130-587888901-628383107-1000\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Uplay (HKLM-x32\...\Uplay) (Version: 29.1 - Ubisoft)
VIA Platforma Ovladače zařízení (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.)
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
Zoner Photo Studio 14 (HKLM\...\ZonerPhotoStudio14_CZ_is1) (Version: 14.0.1.3 - ZONER software)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2019-09-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal) [File not signed]
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2012-06-09] (Alexander Roshal) [File not signed]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2013-08-30] (Advanced Micro Devices, Inc.) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-05-23] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2019-09-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal) [File not signed]
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2012-06-09] (Alexander Roshal) [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
==================== Loaded Modules (Whitelisted) ==============
2019-08-29 21:52 - 2019-08-29 21:54 - 085602816 _____ () [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\libcef.dll
2019-08-29 21:54 - 2019-08-29 21:54 - 000089600 _____ () [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\libEGL.dll
2019-08-29 21:54 - 2019-08-29 21:54 - 003841536 _____ () [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\libGLESv2.dll
2012-10-22 14:41 - 2012-10-22 14:41 - 000749056 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2013-08-30 19:47 - 2013-08-30 19:47 - 000214528 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2012-10-22 14:42 - 2012-10-22 14:42 - 003645952 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2013-08-30 19:37 - 2013-08-30 19:37 - 000897024 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll
2013-08-30 19:37 - 2013-08-30 19:37 - 000005120 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiamcsy.dll
2017-06-18 22:41 - 2012-06-09 19:20 - 000196096 _____ (Alexander Roshal) [File not signed] C:\Program Files\WinRAR\rarext.dll
2018-05-30 20:40 - 2017-07-05 13:43 - 000561152 _____ (CANON INC. ) [File not signed] C:\Program Files (x86)\Canon\Quick Menu\CCL.dll
2018-05-30 20:40 - 2017-07-05 13:49 - 000593920 _____ (CANON INC.) [File not signed] C:\Program Files (x86)\Canon\Quick Menu\CNQMMWRP.dll
2019-08-29 21:52 - 2019-08-29 21:52 - 001463808 _____ (Firelight Technologies) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\fmod.dll
2014-04-11 18:17 - 2014-04-11 18:17 - 000111104 _____ (Microsoft Corporation) [File not signed] C:\Windows\Microsoft.Net\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
2019-08-29 21:52 - 2019-08-29 21:52 - 000596992 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\chrome_elf.dll
2019-08-29 21:50 - 2019-08-29 21:50 - 000047104 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\audio\qtaudio_windows.dll
2019-08-29 21:52 - 2019-08-29 21:52 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\imageformats\qgif.dll
2019-08-29 21:52 - 2019-08-29 21:52 - 000027136 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\imageformats\qico.dll
2019-08-29 21:52 - 2019-08-29 21:52 - 000243712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\imageformats\qjpeg.dll
2019-08-29 21:52 - 2019-08-29 21:52 - 000223744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\imageformats\qmng.dll
2019-08-29 21:52 - 2019-08-29 21:52 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\imageformats\qsvg.dll
2019-08-29 21:52 - 2019-08-29 21:52 - 000332288 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\imageformats\qtiff.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 001140224 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\platforms\qwindows.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000041984 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\qml\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\qml\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\qml\QtQml\Models.2\modelsplugin.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\qml\QtQuick.2\qtquick2plugin.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000084480 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\qml\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000267776 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\qml\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000071680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\qml\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000211456 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\qml\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\qml\QtQuick\Window.2\windowplugin.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 004943360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\Qt5Core.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 005022208 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\Qt5Gui.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000626176 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\Qt5Multimedia.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000877056 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\Qt5Network.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 002908672 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\Qt5Qml.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 003078656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\Qt5Quick.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000096256 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\Qt5QuickControls2.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000681472 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\Qt5QuickTemplates2.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000259072 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\Qt5Svg.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 004718080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\Qt5Widgets.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000439296 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\Qt5WinExtras.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000159232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\Qt5Xml.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2009-06-10 23:00 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-2306020130-587888901-628383107-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Azziky\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{59959FBE-E01A-4F1C-B3F7-356DDDD169DD}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe No File
FirewallRules: [{FA4FD2AC-F0FC-4A9D-8732-A9CA271FAF1B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C2561C49-54CA-41E7-BE18-F20917F55B9D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{948F17F0-8036-46EB-91AF-F58394AD4AFE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{7BAE15DE-F3E9-4683-BA7B-A453F78A0ABB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F444B048-1907-446B-8406-2D38B3FD086B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe No File
FirewallRules: [{A2311847-A09A-4B72-81B7-BEF1490B6B0A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D7B62BED-BDCA-4CBB-9F91-6CC99EB36D28}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{A30CFD19-AAED-4DDF-8552-401241B59B15}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{75BB7F49-8004-4032-84CA-444DDAD7BF91}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{830EC6C9-B159-48AC-B52B-5185B04C93E2}C:\users\azziky\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\azziky\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{0B61FE2B-73A4-446F-9D5B-E26C0F7F7AFE}C:\users\azziky\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\azziky\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{02255D66-581E-42BC-B553-8FE165B34B0A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{3BC0AD82-140F-4732-9E93-C55DE1516D8E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{F4ABAD26-BA69-4A7A-8E21-3C128D675744}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{71C06009-F5B1-4E34-B2AA-6687E8102D10}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [TCP Query User{BE7E2E17-5472-423A-BB19-40D9066F9C63}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{54D90CB5-5298-4710-A1E7-93EDF4A890FA}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{72CFFE6E-8D70-443E-BF5F-75682CA47BA1}C:\program files (x86)\blizzard app\battle.net.9526\battle.net.exe] => (Allow) C:\program files (x86)\blizzard app\battle.net.9526\battle.net.exe No File
FirewallRules: [UDP Query User{5015A880-28AC-42A3-BE94-9CC0BDB8B4EA}C:\program files (x86)\blizzard app\battle.net.9526\battle.net.exe] => (Allow) C:\program files (x86)\blizzard app\battle.net.9526\battle.net.exe No File
FirewallRules: [TCP Query User{9298F996-3095-4A5A-AD35-53B2AFD2E35B}C:\program files (x86)\blizzard app\battle.net.exe] => (Allow) C:\program files (x86)\blizzard app\battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{3917B3A9-C1A5-41AB-8975-3C6D5FEA445C}C:\program files (x86)\blizzard app\battle.net.exe] => (Allow) C:\program files (x86)\blizzard app\battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{757E8278-2683-4DD6-8718-098B15BE9132}C:\program files (x86)\arc\arcchat.exe] => (Allow) C:\program files (x86)\arc\arcchat.exe (Perfect World Entertainment Inc. -> Perfect World Entertainment Inc)
FirewallRules: [UDP Query User{A6590CE9-4593-48BA-95D8-3ABACCFB0C9B}C:\program files (x86)\arc\arcchat.exe] => (Allow) C:\program files (x86)\arc\arcchat.exe (Perfect World Entertainment Inc. -> Perfect World Entertainment Inc)
FirewallRules: [TCP Query User{A1C99E60-655D-4AC5-9A30-8C3C027DF6D5}C:\program files (x86)\neverwinter_en\neverwinter\live\x86\gameclient.exe] => (Allow) C:\program files (x86)\neverwinter_en\neverwinter\live\x86\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [UDP Query User{1EC3E74E-77CF-47BD-B9FB-157A1A39675B}C:\program files (x86)\neverwinter_en\neverwinter\live\x86\gameclient.exe] => (Allow) C:\program files (x86)\neverwinter_en\neverwinter\live\x86\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [{9F50FFA0-D292-4AF4-92BF-2EE35F8FA897}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Heroes of Might and Magic V\bin\H5_Game.exe (Ubisoft Entertainment -> )
FirewallRules: [{D1120D6B-DA46-45B9-9620-0C97E82A7914}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Heroes of Might and Magic V\bin\H5_Game.exe (Ubisoft Entertainment -> )
FirewallRules: [{CDCC0A55-234C-4A4C-B12A-4779EA583D1E}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Heroes of Might and Magic V Tribes of the East\bin\H5_Game.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{7C7B7298-C108-4181-A37D-1AA6F34B80B0}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Heroes of Might and Magic V Tribes of the East\bin\H5_Game.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{0B2808F9-2E7D-461C-BC44-820C067D43B7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{500FE2CC-3E67-4FB4-9BA2-55DE6184DD6F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{B74F282B-6C1A-4712-9A91-BB2B50FF64A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Oblivion\OblivionLauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{683A129B-5AB7-4395-AD97-78AC09878906}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Oblivion\OblivionLauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{8FE16B98-063A-440E-8F7A-F643CA55F30D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{4E33BD8F-2BC6-4120-BAE5-FD094BE13207}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{BF48005E-4392-45A5-A55C-CA114F718E4E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Titan Quest\Titan Quest.exe () [File not signed]
FirewallRules: [{6AFB1B13-4280-4C77-8C1D-BA34BAC602CD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Titan Quest\Titan Quest.exe () [File not signed]
FirewallRules: [{21AF4273-57C2-4A2B-9B1A-826414C49212}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Titan Quest Anniversary Edition\TQ.exe () [File not signed]
FirewallRules: [{B33DFBC5-0751-40AA-8460-076FC5118D9D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Titan Quest Anniversary Edition\TQ.exe () [File not signed]
FirewallRules: [{06F28E1C-434A-4D49-9B79-93CB17F5F99C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Titan Quest Anniversary Edition\WorkshopTool\TQWorkshopTool.exe (Nordic Games) [File not signed]
FirewallRules: [{77EA7132-E53D-4F78-8E91-BCFE76754590}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Titan Quest Anniversary Edition\WorkshopTool\TQWorkshopTool.exe (Nordic Games) [File not signed]
FirewallRules: [{F3BC2EF5-E397-41EA-82CD-696F2239A808}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Titan Quest Immortal Throne\Tqit.exe () [File not signed]
FirewallRules: [{92B1BC49-847A-43BD-BFFA-906A4DF8A73C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Titan Quest Immortal Throne\Tqit.exe () [File not signed]
FirewallRules: [{46A0C2FD-B7A4-4E17-8E40-FF623A11F7D0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{0C27DED2-CD7B-48DD-BCD7-3F2CB520B2B6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{D8B94461-B950-49EE-B6F4-F55386144E6A}C:\program files (x86)\neverwinter_en\neverwinter\live\x64\gameclient.exe] => (Block) C:\program files (x86)\neverwinter_en\neverwinter\live\x64\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [UDP Query User{7EBD13C0-E13B-4CB9-9BCF-B612A9071EFF}C:\program files (x86)\neverwinter_en\neverwinter\live\x64\gameclient.exe] => (Block) C:\program files (x86)\neverwinter_en\neverwinter\live\x64\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [TCP Query User{FE355D4F-F770-4B42-9278-A497A4F49523}C:\program files (x86)\world of warcraft\_retail_\utils\wowvoiceproxy.exe] => (Allow) C:\program files (x86)\world of warcraft\_retail_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{9D71293D-AC6E-4204-B73D-FE5597D62737}C:\program files (x86)\world of warcraft\_retail_\utils\wowvoiceproxy.exe] => (Allow) C:\program files (x86)\world of warcraft\_retail_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{42DED6F3-FE5D-4848-8BAE-928BC0A8C155}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [UDP Query User{0AAA6B2B-01B5-4CF1-8EAF-FC8AB536E643}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [{3DD98325-B667-4C73-8DCA-EE5B72043CBB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Titan Quest Anniversary Edition\TQ_DX11.exe () [File not signed]
FirewallRules: [{9A0A0545-F20F-4C90-A777-BD5CC75DB3A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Titan Quest Anniversary Edition\TQ_DX11.exe () [File not signed]
FirewallRules: [{5D99BEA8-83AF-4690-AD17-F762AD293F21}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F507E32B-8043-4EB3-9B49-EA08463D6ACB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{6B9B80E8-EDEE-49E9-B806-5994AA8EC600}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B601B284-1626-4324-A454-CBC17343B1FE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{DD003F38-E6A7-45C2-892B-6D262DA78778}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{E298B5CD-11CE-4903-B705-AFBB2A09DC28}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{77B7FC2B-983D-4234-A855-048D8148F880}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
==================== Restore Points =========================
16-09-2019 23:50:03 Naplánovaný kontrolní bod
17-09-2019 23:08:08 Operace obnovení
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (09/18/2019 04:29:15 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (09/17/2019 11:12:30 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (09/17/2019 10:09:14 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (09/17/2019 09:24:52 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (09/17/2019 06:15:52 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (09/16/2019 10:34:25 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (09/16/2019 10:24:27 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (09/16/2019 09:16:36 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
System errors:
=============
Error: (09/18/2019 06:37:15 PM) (Source: Disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk2\DR2.
Error: (09/18/2019 06:37:15 PM) (Source: Disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk2\DR2.
Error: (09/18/2019 06:37:14 PM) (Source: Disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk2\DR2.
Error: (09/18/2019 06:37:14 PM) (Source: Disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk2\DR2.
Error: (09/18/2019 06:15:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Steam Client Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (09/18/2019 06:15:43 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Steam Client Service bylo dosaženo časového limitu (30000 ms).
Error: (09/18/2019 03:29:17 AM) (Source: Microsoft-Windows-HAL) (EventID: 12) (User: )
Description: Firmware platformy při předchozím přechodu systémového napájení poškodil paměť. Zkontrolujte dostupnost aktualizovaného firmwaru pro váš systém.
Error: (09/17/2019 10:09:13 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Spybot-S&D 2 Security Center Service neuspěla při spuštění v důsledku následující chyby:
V systému Windows nelze ověřit digitální podpis tohoto souboru. Při nedávné změně hardwaru nebo softwaru mohl být nainstalován nesprávně podepsaný nebo poškozený soubor nebo soubor škodlivého softwaru z neznámého zdroje.
Windows Defender:
===================================
Date: 2018-05-11 05:39:03.478
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{8F1E9346-13FC-4859-8B7A-63FAA2BE164C}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE
Date: 2018-04-03 05:24:10.561
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{D6B27EFE-DDDE-4D92-9937-AECF2257143D}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE
Date: 2018-03-29 05:12:27.565
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{04B609A9-91C6-412D-A051-95B7B9124D8D}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE
Date: 2018-03-05 05:20:07.063
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{7CB9FE05-C1C8-4A41-A8C9-1337C9CB2646}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE
CodeIntegrity:
===================================
Date: 2019-09-17 22:09:13.087
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.
Date: 2019-09-17 21:57:59.566
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.
Date: 2019-09-17 21:57:59.519
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.
Date: 2019-09-17 21:32:13.213
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.
Date: 2019-09-17 21:32:13.166
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.
Date: 2019-09-17 21:32:13.119
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.
Date: 2019-09-17 21:32:13.072
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.
Date: 2019-09-17 21:10:45.723
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
BIOS: American Megatrends Inc. FB 10/31/2014
Motherboard: Gigabyte Technology Co., Ltd. 970A-DS3P
Processor: AMD FX(tm)-8320 Eight-Core Processor
Percentage of memory in use: 89%
Total physical RAM: 8158.68 MB
Available physical RAM: 832.07 MB
Total Virtual: 16315.56 MB
Available Virtual: 6392.94 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:931.29 GB) (Free:535.44 GB) NTFS
Drive f: () (Removable) (Total:28.82 GB) (Free:0.32 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 2 (Protective MBR) (Size: 28.8 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt ============================
posilam alespon log snad to nejak pomuze.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 18-09-2019
Ran by Azziky (administrator) on AZZIKY-PC (Gigabyte Technology Co., Ltd. To be filled by O.E.M.) (18-09-2019 20:51:53)
Running from C:\Users\Azziky\Downloads
Loaded Profiles: Azziky (Available Profiles: Azziky & Janysek)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Blizzard App\Battle.net.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Blizzard App\Battle.net.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.6838\Agent.exe
(Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
(Digital Wave Ltd -> Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(Discord Inc. -> Discord Inc.) C:\Users\Azziky\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Azziky\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Azziky\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Azziky\AppData\Local\Discord\app-0.0.305\Discord.exe
(EnigmaSoft Limited -> EnigmaSoft Limited) C:\Program Files\EnigmaSoft\SpyHunter\ShKernel.exe
(EnigmaSoft Limited -> EnigmaSoft Limited) C:\Program Files\EnigmaSoft\SpyHunter\ShMonitor.exe
(EnigmaSoft Limited -> EnigmaSoft Limited) C:\Program Files\EnigmaSoft\SpyHunter\SpyHunter5.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(NOVERIA online s.r.o. -> NOVERIA online s.r.o.) C:\Users\Azziky\Downloads\kontrola.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(VIA Technologies, Inc.) [File not signed] C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [VIAxHCUtl] => C:\Program Files\VIA XHCI UASP Utility\usb3Monitor.exe [331776 2011-07-12] (VIA Technologies, Inc.) [File not signed]
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7632088 2014-06-10] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-08-30] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [52553728 2017-06-15] (Hammer & Chisel Inc. -> Hammer & Chisel, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [644552 2019-07-04] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [227648 2019-08-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-2306020130-587888901-628383107-1000\...\Run: [Codec Pack Update Checker] => "C:\Windows\system32\Codecs\UpdateChecker.exe"
HKU\S-1-5-21-2306020130-587888901-628383107-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3210528 2019-09-15] (Valve -> Valve Corporation)
HKU\S-1-5-21-2306020130-587888901-628383107-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-2306020130-587888901-628383107-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [53646912 2019-06-20] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2306020130-587888901-628383107-1000\...\Run: [{D92D519A-41A3-9E83-9E00-C3C793B07417}] => C:\Users\Azziky\AppData\Roaming\Oploy\wuoca.exe [33096 2019-09-09] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2306020130-587888901-628383107-1000\...\Run: [Discord] => C:\Users\Azziky\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-2306020130-587888901-628383107-1000\...\Run: [] => [X]
HKU\S-1-5-21-2306020130-587888901-628383107-1000\...\MountPoints2: {0a280008-ccb0-11e8-9f9f-fcaa1495d1e7} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2306020130-587888901-628383107-1000\...\MountPoints2: {0a28000c-ccb0-11e8-9f9f-fcaa1495d1e7} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2306020130-587888901-628383107-1000\...\MountPoints2: {6ae5c9c3-0552-11e9-a24d-fcaa1495d1e7} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2306020130-587888901-628383107-1000\...\Winlogon: [Shell] C:\Windows\explorer.exe [2872320 2010-11-21] (Microsoft Windows -> Microsoft Corporation) <==== ATTENTION
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [243200 2011-06-24] () [File not signed]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2011-12-07] ( ) [File not signed]
HKLM\...\Drivers32: [VIDC.HFYU] => C:\Windows\SysWOW64\huffyuv.dll [39936 2004-05-18] (Disappearing Inc.) [File not signed]
HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\SysWOW64\ff_vfw.dll [112640 2013-03-07] () [File not signed]
HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\SysWOW64\x264vfw.dll [4102656 2012-07-02] (x264vfw project) [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\SysWOW64\ac3acm.acm [151552 2011-12-21] (fccHandler) [File not signed]
HKLM\...\Drivers32: [msacm.lameacm] => C:\Windows\SysWOW64\lameACM.acm [839680 2008-09-24] (hxxp://www.mp3dev.org/) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\Installer\chrmstp.exe [2019-08-28] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodecPackTrayMenu.lnk [2017-06-18]
ShortcutTarget: CodecPackTrayMenu.lnk -> C:\Windows\SysWOW64\Codecs\TrayMenu.exe (No File)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {014B824F-0B1E-40EF-8AF0-D6A75DBC7538} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130296 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0420F98C-025F-40CC-94E3-7E0AEB838844} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2017-08-16] (Google Inc -> Google Inc.)
Task: {107262AA-8460-4164-BF27-F077A2FCF9B0} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [899056 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {320E9010-459E-4E56-BD68-6A3E1BDC68D7} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3787304 2019-05-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {324BFE5D-C975-4F0C-97B1-BF7D665A1EE2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
Task: {3C538699-0515-4CB9-A966-E68FB55D00DC} - System32\Tasks\AVG\Overseer => C:\Program Files\AVG\Antivirus\setup\overseer.exe [1905072 2019-09-18] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {485261D1-F05E-4F66-AD0C-8506623CDB1E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2017-08-16] (Google Inc -> Google Inc.)
Task: {69D418FD-70AC-4DF0-B9BF-A9A9301971E7} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [648504 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {739076EC-B4B6-4D3B-AE12-1C9CCD646E93} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-02-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {78F7C9C2-1F6B-4D93-ADFA-46B65C22030B} - System32\Tasks\{22F5CB10-752E-47DD-A6F6-33BE2C78936F} => C:\Windows\system32\pcalua.exe -a "C:\Users\Azziky\Desktop\Rise of the Tomb Raider + All Updates & DLC+Čeština\Čeština+instalace\RiseOfTheTomb Raider Čeština..exe" -d "C:\Users\Azziky\Desktop\Rise of the Tomb Raider + All Updates & DLC+Čeština\Čeština+instalace"
Task: {7C5BB9A5-DE38-41F2-B729-2E2CE9E53C24} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130296 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7E35EDC1-DF52-403C-8755-E8C75C7A59DD} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-02-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {82087AFC-8D87-4B33-8180-40B03663EC44} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130296 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {91DE4C00-88D5-4151-BA1F-0772CF1E8C81} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130296 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {92A9D027-E6E3-4F4A-8CFD-25744CFB6AA8} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_Plugin.exe [1457720 2019-09-10] (Adobe Inc. -> Adobe)
Task: {9D1A5CB9-242B-4256-83F0-EC76C7655DD2} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2757472 2019-09-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {9DFFAE7B-A51D-4598-8813-19BAE64116CE} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-09-10] (Adobe Inc. -> Adobe)
Task: {D65FC691-83A4-43E6-B148-1A02B5E8115D} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [899056 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{0AAFEA8C-C285-4486-90D1-BEE3EE664D13}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKU\S-1-5-21-2306020130-587888901-628383107-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.dell.com
HKU\S-1-5-21-2306020130-587888901-628383107-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.dell.com
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_221\bin\ssv.dll [2019-09-10] (Oracle America, Inc. -> Oracle Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-08-16] (Google Inc -> Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-09-10] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: ArcPluginIEBHO Class -> {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} -> C:\Program Files (x86)\Arc\Plugins\ArcPluginIE.dll => No File
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-08-16] (Google Inc -> Google Inc.)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-08-16] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-08-16] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-2306020130-587888901-628383107-1000 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKU\S-1-5-21-2306020130-587888901-628383107-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-08-16] (Google Inc -> Google Inc.)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Windows -> Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Windows -> Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF DefaultProfile: 04hwwi5e.default
FF ProfilePath: C:\Users\Azziky\AppData\Roaming\Mozilla\Firefox\Profiles\04hwwi5e.default [2019-09-18]
FF Homepage: Mozilla\Firefox\Profiles\04hwwi5e.default -> hxxps://www.seznam.cz/
FF Extension: (SafeGuard) - C:\Users\Azziky\AppData\Roaming\Mozilla\Firefox\Profiles\04hwwi5e.default\Extensions\extension@safeguard.ws.xpi [2019-09-09]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_255.dll [2019-09-10] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-09-10] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-09-10] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_255.dll [2019-09-10] (Adobe Inc. -> )
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> C:\Program Files (x86)\Arc\Plugins\npArcPluginFF.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.)
StartMenuInternet: FIREFOX.EXE - firefox.exe
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\Azziky\AppData\Local\Google\Chrome\User Data\Default [2019-09-18]
CHR Extension: (Prezentace) - C:\Users\Azziky\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-20]
CHR Extension: (Dokumenty) - C:\Users\Azziky\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-20]
CHR Extension: (Disk Google) - C:\Users\Azziky\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-08-16]
CHR Extension: (YouTube) - C:\Users\Azziky\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-08-16]
CHR Extension: (Tabulky) - C:\Users\Azziky\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\Azziky\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-30]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Azziky\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-14]
CHR Extension: (Gmail) - C:\Users\Azziky\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-07-18]
CHR Extension: (Chrome Media Router) - C:\Users\Azziky\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-09]
StartMenuInternet: Google Chrome - Chrome.exe
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-08-30] (Advanced Micro Devices, Inc.) [File not signed]
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1207624 2019-09-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [484144 2019-09-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [484144 2019-09-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [501600 2019-09-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 ArcService; C:\Program Files (x86)\Arc\ArcService.exe [123000 2019-03-15] (Perfect World Entertainment Inc. -> Perfect World Entertainment Inc)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [582016 2019-08-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [440808 2017-03-22] (Digital Wave Ltd -> Digital Wave Ltd.)
R2 EsgShKernel; C:\Program Files\EnigmaSoft\SpyHunter\ShKernel.exe [11457840 2019-09-17] (EnigmaSoft Limited -> EnigmaSoft Limited)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140936 2013-05-14] (Canon Inc. -> )
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [7987104 2017-04-10] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-02-27] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-02-27] (NVIDIA Corporation -> NVIDIA Corporation)
R2 ShMonitor; C:\Program Files\EnigmaSoft\SpyHunter\ShMonitor.exe [512816 2019-09-17] (EnigmaSoft Limited -> EnigmaSoft Limited)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 amd_sata; C:\Windows\System32\DRIVERS\amd_sata.sys [82240 2013-06-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\Windows\System32\DRIVERS\amd_xata.sys [42304 2013-06-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [68152 2019-06-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [218552 2019-09-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [176816 2019-09-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [36072 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [78600 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [35376 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2017-09-03] (DT Soft Ltd -> DT Soft Ltd)
R3 EnigmaFileMonDriver; C:\Windows\System32\drivers\EnigmaFileMonDriver.sys [68424 2019-09-18] (EnigmaSoft Limited -> EnigmaSoft Limited)
S3 nusb3hub; C:\Windows\system32\drivers\nusb3hub.sys [80384 2010-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 nusb3xhc; C:\Windows\system32\drivers\nusb3xhc.sys [180736 2010-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-05-10] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [75600 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
R3 usbfilter; C:\Windows\System32\DRIVERS\usbfilter.sys [58536 2012-08-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R3 VUSB3HUB; C:\Windows\System32\DRIVERS\ViaHub3.sys [225792 2013-08-12] (Microsoft Windows Hardware Compatibility Publisher -> VIA Technologies, Inc.)
R3 xhcdrv; C:\Windows\System32\DRIVERS\xhcdrv.sys [295424 2013-08-12] (Microsoft Windows Hardware Compatibility Publisher -> VIA Technologies, Inc.)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-09-18 20:51 - 2019-09-18 20:53 - 000027559 _____ C:\Users\Azziky\Downloads\FRST.txt
2019-09-18 20:51 - 2019-09-18 20:51 - 000000000 ____D C:\FRST
2019-09-18 20:50 - 2019-09-18 20:50 - 001615360 _____ (Farbar) C:\Users\Azziky\Downloads\FRST64.exe
2019-09-18 19:25 - 2019-09-18 19:25 - 000588200 _____ (NOVERIA online s.r.o.) C:\Users\Azziky\Downloads\kontrola.exe
2019-09-18 19:07 - 2019-09-18 19:07 - 000003292 _____ C:\Windows\System32\Tasks\Avira_Antivirus_Systray
2019-09-18 19:07 - 2019-09-18 19:07 - 000001116 _____ C:\Users\Public\Desktop\Avira.lnk
2019-09-18 19:06 - 2019-09-18 19:08 - 000218552 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2019-09-18 19:06 - 2019-09-18 19:08 - 000176816 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2019-09-18 19:06 - 2019-09-18 19:06 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2019-09-18 19:06 - 2019-06-07 15:09 - 000068152 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avdevprot.sys
2019-09-18 19:06 - 2019-03-20 19:50 - 000078600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2019-09-18 19:06 - 2019-03-20 19:50 - 000036072 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2019-09-18 19:06 - 2019-03-20 19:50 - 000035376 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avusbflt.sys
2019-09-18 19:05 - 2019-09-18 19:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2019-09-18 19:05 - 2019-09-18 19:06 - 000000000 ____D C:\ProgramData\Avira
2019-09-18 19:05 - 2019-09-18 19:06 - 000000000 ____D C:\Program Files (x86)\Avira
2019-09-18 18:57 - 2019-09-18 19:00 - 206470896 _____ (Avira Operations GmbH & Co. KG) C:\Users\Azziky\Downloads\avira_antivirus_en-us.exe
2019-09-18 18:49 - 2019-09-18 18:49 - 002375968 _____ (AVAST Software) C:\Users\Azziky\Downloads\avast_decryptor_hiddentear.exe
2019-09-18 18:47 - 2019-09-18 18:48 - 002375968 _____ (AVAST Software) C:\Users\Azziky\Downloads\avast_decryptor_apocalypse.exe
2019-09-18 18:35 - 2019-09-18 19:57 - 000000000 ____D C:\Users\Azziky\Desktop\Nová složka (2)
2019-09-18 18:35 - 2019-09-18 18:41 - 000000000 ____D C:\Users\Azziky\Desktop\Nová složka
2019-09-18 18:33 - 2019-09-18 18:34 - 002375968 _____ (AVAST Software) C:\Users\Azziky\Downloads\avast_decryptor_stampado.exe
2019-09-17 23:28 - 2019-09-17 23:40 - 372171584 _____ C:\Users\Azziky\Downloads\Hrdinové S03E17 - Studene valky.avi
2019-09-17 23:27 - 2019-09-17 23:40 - 362686464 _____ C:\Users\Azziky\Downloads\Hrdinove s03e15 - Duvera a krev.avi
2019-09-17 23:27 - 2019-09-17 23:40 - 362500096 _____ C:\Users\Azziky\Downloads\Hrdinove s03e14 - V zajmu bezpecnosti.avi
2019-09-17 23:27 - 2019-09-17 23:40 - 362371072 _____ C:\Users\Azziky\Downloads\Hrdinové S03E16 - Budova 26.avi
2019-09-17 23:20 - 2019-09-18 16:27 - 000068424 _____ (EnigmaSoft Limited) C:\Windows\system32\Drivers\EnigmaFileMonDriver.sys
2019-09-17 23:20 - 2019-09-17 23:20 - 000001010 _____ C:\Users\Public\Desktop\SpyHunter5.lnk
2019-09-17 23:20 - 2019-09-17 23:20 - 000000000 ____D C:\sh5ldr
2019-09-17 23:20 - 2019-09-17 23:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EnigmaSoft
2019-09-17 23:20 - 2019-09-17 23:20 - 000000000 ____D C:\ProgramData\EnigmaSoft Limited
2019-09-17 23:19 - 2019-09-17 23:19 - 000000000 ____D C:\Program Files\EnigmaSoft
2019-09-17 23:18 - 2019-09-17 23:18 - 006822192 _____ (EnigmaSoft Limited) C:\Users\Azziky\Downloads\SpyHunter-Installer.exe
2019-09-17 22:59 - 2019-09-17 23:09 - 000000000 ____D C:\Program Files\FileViewPro
2019-09-17 22:59 - 2019-09-17 22:59 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\IsolatedStorage
2019-09-17 22:59 - 2019-09-17 22:59 - 000000000 ____D C:\ProgramData\IsolatedStorage
2019-09-17 22:59 - 2019-09-17 22:59 - 000000000 ____D C:\ProgramData\FileViewPro
2019-09-17 22:58 - 2019-09-17 23:09 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\WinThruster
2019-09-17 22:58 - 2019-09-17 23:09 - 000000000 ____D C:\Program Files (x86)\WinThruster
2019-09-17 21:20 - 2019-09-17 23:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malware Eraser
2019-09-17 21:20 - 2019-09-17 23:09 - 000000000 ____D C:\Program Files (x86)\Malware Eraser
2019-09-17 21:08 - 2019-09-17 23:09 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2019-09-17 21:08 - 2019-09-17 21:58 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2019-09-16 21:04 - 2019-09-16 21:04 - 000000000 ____D C:\Users\Azziky\AppData\Local\AVAST Software
2019-09-16 21:04 - 2019-09-16 21:04 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2019-09-16 21:00 - 2019-09-16 22:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2019-09-16 21:00 - 2019-09-16 21:00 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\AVAST Software
2019-09-16 20:59 - 2019-09-16 22:31 - 000000000 ____D C:\Windows\System32\Tasks\Avast Software
2019-09-16 20:58 - 2019-09-16 20:58 - 000000000 ____D C:\Program Files\Common Files\AVAST Software
2019-09-16 20:56 - 2019-09-16 20:58 - 000000000 ____D C:\ProgramData\AVAST Software
2019-09-16 20:56 - 2019-09-16 20:56 - 000000000 ____D C:\Program Files\AVAST Software
2019-09-16 20:50 - 2019-09-16 20:50 - 000000000 ____D C:\Program Files (x86)\AVG
2019-09-16 20:47 - 2019-09-16 20:47 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\AVG
2019-09-16 20:45 - 2019-09-16 22:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2019-09-16 20:16 - 2019-09-16 20:16 - 000057560 _____ C:\Users\Azziky\AppData\Local\GDIPFONTCACHEV1.DAT
2019-09-16 20:16 - 2019-09-16 20:16 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\360DrvMgr
2019-09-16 19:51 - 2019-09-16 20:35 - 000000000 __SHD C:\$360Section
2019-09-16 19:50 - 2019-09-16 19:50 - 000000000 ____D C:\Windows\Tasks\360Disabled
2019-09-16 19:48 - 2019-09-16 20:47 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\360DesktopLite
2019-09-16 19:48 - 2019-09-16 20:35 - 000000000 ____D C:\ProgramData\360Quarant
2019-09-16 19:47 - 2019-09-16 19:47 - 000000000 ____D C:\Program Files (x86)\360
2019-09-11 21:04 - 2019-09-11 21:25 - 1979604348 _____ C:\Users\Azziky\Downloads\ALDN.019.Aladdin.2019.BRRip.DD5.1(Ac3).CZ.Dabing.mkv
2019-09-11 14:13 - 2019-09-11 14:13 - 000000000 ____D C:\Users\Azziky\AppData\Local\Discord
2019-09-10 23:02 - 2019-09-10 23:03 - 048494776 _____ (Hammer & Chisel, Inc.) C:\Users\Azziky\Downloads\DiscordSetup(1).exe
2019-09-10 20:12 - 2019-09-11 14:13 - 000002127 _____ C:\Users\Azziky\Desktop\Discord.lnk
2019-09-10 20:01 - 2019-09-10 20:02 - 079607256 _____ (Oracle Corporation) C:\Users\Azziky\Downloads\jre-8u221-windows-x64.exe
2019-09-10 19:58 - 2019-09-10 19:59 - 061370712 _____ (Discord Inc.) C:\Users\Azziky\Downloads\DiscordSetup.exe
2019-09-09 21:28 - 2019-09-09 22:20 - 1925544566 _____ C:\Users\Azziky\Downloads\X-Men.Dark.Phoenix.2019.BRRip.XviD.AC3.CZ.avi
2019-09-09 21:27 - 2019-09-09 21:56 - 481008954 _____ C:\Users\Azziky\Downloads\Hrdinove s02e07 - Cas nic nespravi.avi
2019-09-09 21:26 - 2019-09-09 21:56 - 480671248 _____ C:\Users\Azziky\Downloads\Hrdinove S02E05.avi
2019-09-09 21:26 - 2019-09-09 21:55 - 466693358 _____ C:\Users\Azziky\Downloads\Hrdinove S02E06.avi
2019-09-09 21:26 - 2019-09-09 21:51 - 405357118 _____ C:\Users\Azziky\Downloads\Hrdinove S02E04.avi
2019-09-09 21:26 - 2019-09-09 21:50 - 406428810 _____ C:\Users\Azziky\Downloads\Hrdinove S02E03.avi
2019-09-09 21:08 - 2019-09-09 21:08 - 000280416 _____ (Mozilla) C:\Users\Azziky\Downloads\Firefox Installer.exe
2019-09-09 20:28 - 2019-09-09 20:28 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\Media Player Classic
2019-09-09 20:27 - 2019-09-09 20:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2019-09-09 20:27 - 2019-09-09 20:27 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2019-09-09 20:27 - 2013-03-07 20:00 - 000112640 _____ C:\Windows\SysWOW64\ff_vfw.dll
2019-09-09 20:27 - 2012-07-02 01:15 - 004102656 _____ (x264vfw project) C:\Windows\SysWOW64\x264vfw.dll
2019-09-09 20:27 - 2012-06-09 20:21 - 000178688 _____ C:\Windows\SysWOW64\unrar.dll
2019-09-09 20:27 - 2012-05-22 00:48 - 000000415 _____ C:\Windows\SysWOW64\lame_acm.xml
2019-09-09 20:27 - 2011-12-21 20:14 - 000151552 _____ (fccHandler) C:\Windows\SysWOW64\ac3acm.acm
2019-09-09 20:27 - 2011-12-07 20:32 - 000216064 _____ ( ) C:\Windows\SysWOW64\lagarith.dll
2019-09-09 20:27 - 2011-06-24 17:44 - 000243200 _____ C:\Windows\SysWOW64\xvidvfw.dll
2019-09-09 20:27 - 2011-06-24 17:28 - 000650752 _____ C:\Windows\SysWOW64\xvidcore.dll
2019-09-09 20:27 - 2008-09-24 21:41 - 000839680 _____ (hxxp://www.mp3dev.org/) C:\Windows\SysWOW64\lameACM.acm
2019-09-09 20:27 - 2004-05-18 21:16 - 000039936 _____ (Disappearing Inc.) C:\Windows\SysWOW64\huffyuv.dll
2019-09-09 20:24 - 2019-09-09 20:24 - 000009058 _____ C:\Users\Azziky\Desktop\[HOW_TO_DECRYPT_FILES].html
2019-09-09 20:18 - 2019-09-09 20:18 - 000009058 _____ C:\Users\Azziky\AppData\Local\[HOW_TO_DECRYPT_FILES].html
2019-09-09 20:16 - 2019-09-17 23:09 - 000000000 __SHD C:\Users\Azziky\AppData\Roaming\Oploy
2019-09-09 20:16 - 2019-09-09 20:16 - 000002889 _____ C:\Users\Public\Desktop\KEY
2019-09-09 20:15 - 2019-09-09 20:16 - 035069440 _____ (Sky and) C:\Users\Azziky\Downloads\Codec Pack All in 1 6.0.2.6 - freeware.exe
2019-09-09 20:14 - 2019-09-09 20:14 - 031893619 _____ C:\Users\Azziky\Downloads\K-Lite_Codec_Pack_Mega.exe
2019-09-09 20:04 - 2019-09-09 20:04 - 017310011 _____ (KLCP ) C:\Users\Azziky\Downloads\K-Lite_Codec_Pack_1516_Basic.exe
2019-09-09 20:01 - 2019-09-09 20:02 - 059789295 _____ (KLCP ) C:\Users\Azziky\Downloads\K-Lite_Codec_Pack_1500_Mega.exe
2019-09-08 21:08 - 2019-09-08 21:27 - 492387876 _____ C:\Users\Azziky\Downloads\Hrdinove s02e01 - Ctyri mesice predtim.avi
2019-09-08 21:08 - 2019-09-08 21:27 - 405557522 _____ C:\Users\Azziky\Downloads\Hrdinove S02E02.avi
2019-09-08 21:07 - 2019-09-08 21:25 - 358132744 _____ C:\Users\Azziky\Downloads\Hrdinove s01e22 - Drtive vitezstvi.avi
2019-09-08 21:07 - 2019-09-08 21:25 - 357157446 _____ C:\Users\Azziky\Downloads\Hrdinove s01e23 - Jak zastavit vybuchujiciho muze.avi
2019-09-08 21:07 - 2019-09-08 21:24 - 358619532 _____ C:\Users\Azziky\Downloads\Hrdinove s01e21 - ta tezsi cast.avi
2019-09-08 21:06 - 2019-09-08 21:22 - 357480448 _____ C:\Users\Azziky\Downloads\Hrdinove s01e20 - Pet let pote.avi
2019-09-07 10:27 - 2019-09-07 10:27 - 000000000 ___SD C:\Users\Janysek\AppData\LocalLow\Temp
2019-09-05 23:07 - 2019-09-05 23:28 - 357879808 _____ C:\Users\Azziky\Downloads\Heroes - Hrdinove ( serial 2006 ) CZ S01E10 - Pred eesti mesici.avi
2019-09-05 23:07 - 2019-09-05 23:25 - 357402672 _____ C:\Users\Azziky\Downloads\Heroes---Hrdinove--serial-2006--CZ-S01E09---Majales.avi
2019-09-05 23:07 - 2019-09-05 23:25 - 355569664 _____ C:\Users\Azziky\Downloads\Heroes - Hrdinove ( serial 2006 ) CZ S01E08 - Za sedm minut dvanact.avi
2019-09-05 23:06 - 2019-09-05 23:26 - 419516464 _____ C:\Users\Azziky\Downloads\Heroes---Hrdinove--serial-2006--CZ-S01E07---Neni-co-skryvat.avi
2019-09-05 23:06 - 2019-09-05 23:25 - 419557376 _____ C:\Users\Azziky\Downloads\Heroes - Hrdinove ( serial 2006 ) CZ S01E06 - Lepsi polovicky.avi
2019-09-05 23:04 - 2019-09-05 23:18 - 419536944 _____ C:\Users\Azziky\Downloads\Heroes---Hrdinove--serial-2006--CZ-S01E05---Hirodinove.avi
2019-09-04 04:46 - 2019-09-04 04:57 - 988036632 _____ C:\Users\Azziky\Downloads\Aliance-(Woodley)-(2016)--cz-dabing.avi
2019-08-29 21:45 - 2019-08-29 22:29 - 2428520758 _____ C:\Users\Azziky\Downloads\Hellboy.(2019).720pCZDabing.mkv
2019-08-29 21:44 - 2019-08-29 22:20 - 1602573398 _____ C:\Users\Azziky\Downloads\Syn temnoty - Brightburn (2019) CZ dabing.mkv
2019-08-26 09:22 - 2019-08-26 10:12 - 164536679 _____ C:\Users\Azziky\Downloads\Avengers.endgame.3D.cz.dab..mkv
2019-08-24 19:57 - 2019-08-24 20:40 - 4008084078 _____ C:\Users\Azziky\Downloads\Avengers.Endgame.2019.1080p.BluRay.DD5.1 CZ.Dabing.mkv
2019-08-23 20:29 - 2019-08-23 23:03 - 2367004970 _____ C:\Users\Azziky\Downloads\gua-endgame.3d-1080p.mkv
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-09-18 20:47 - 2017-10-08 11:07 - 000000000 ____D C:\Users\Azziky\AppData\Local\Battle.net
2019-09-18 19:57 - 2017-06-18 22:42 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\WinRAR
2019-09-18 19:28 - 2019-08-17 21:29 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-09-18 19:07 - 2017-06-13 13:45 - 000000000 ____D C:\ProgramData\Package Cache
2019-09-18 18:40 - 2017-06-13 22:45 - 000680466 _____ C:\Windows\system32\perfh005.dat
2019-09-18 18:40 - 2017-06-13 22:45 - 000147486 _____ C:\Windows\system32\perfc005.dat
2019-09-18 18:40 - 2009-07-14 07:13 - 001620576 _____ C:\Windows\system32\PerfStringBackup.INI
2019-09-18 18:40 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2019-09-18 18:34 - 2019-07-28 11:50 - 000000000 ____D C:\Users\Azziky\Desktop\Vsechno foto
2019-09-18 18:25 - 2017-06-13 14:10 - 000000000 ____D C:\Users\Azziky\AppData\LocalLow\Mozilla
2019-09-18 18:17 - 2017-09-02 22:00 - 000000000 ____D C:\Program Files (x86)\Steam
2019-09-18 18:16 - 2017-06-13 14:33 - 000000000 ____D C:\ProgramData\NVIDIA
2019-09-18 18:15 - 2017-09-03 18:48 - 000000000 ____D C:\Users\Azziky\AppData\LocalLow\Temp
2019-09-18 16:34 - 2009-07-14 06:45 - 000026512 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-09-18 16:34 - 2009-07-14 06:45 - 000026512 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-09-18 16:27 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-09-18 04:46 - 2018-11-04 18:33 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\discord
2019-09-17 23:10 - 2017-06-13 12:55 - 000000000 ____D C:\Users\Azziky
2019-09-17 23:09 - 2017-10-08 11:09 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\Battle.net
2019-09-17 23:09 - 2017-06-30 10:21 - 000000000 ____D C:\Users\Janysek
2019-09-17 23:09 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\registration
2019-09-16 23:01 - 2017-06-13 14:42 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\Skype
2019-09-16 22:31 - 2018-05-28 19:29 - 000000000 ____D C:\Windows\System32\Tasks\AVG
2019-09-16 22:31 - 2018-04-22 11:15 - 000000000 ___HD C:\Users\Azziky\AppData\Roaming\ZdWLaCApZCfPrAxE
2019-09-16 22:31 - 2017-06-13 14:42 - 000000000 ____D C:\ProgramData\Skype
2019-09-16 22:31 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy
2019-09-16 22:31 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\AppCompat
2019-09-16 22:29 - 2018-04-15 14:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA Games
2019-09-16 20:50 - 2018-05-28 19:30 - 000000000 ____D C:\Users\Azziky\AppData\Local\Avg
2019-09-16 20:40 - 2018-05-28 19:26 - 000000000 ____D C:\ProgramData\AVG
2019-09-16 19:52 - 2017-06-13 22:46 - 000000000 ____D C:\Windows\Panther
2019-09-16 19:52 - 2017-06-13 21:31 - 000000000 ____D C:\Users\Azziky\AppData\Local\CrashDumps
2019-09-16 19:48 - 2009-07-14 05:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2019-09-11 14:13 - 2018-11-04 18:34 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2019-09-11 14:13 - 2018-11-04 18:32 - 000000000 ____D C:\Users\Azziky\AppData\Local\SquirrelTemp
2019-09-11 13:54 - 2018-11-04 18:33 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
2019-09-10 20:25 - 2018-09-17 16:25 - 000004532 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-09-10 20:25 - 2018-09-17 16:25 - 000004408 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2019-09-10 20:25 - 2017-08-16 20:41 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2019-09-10 20:25 - 2017-08-16 20:41 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-09-10 20:25 - 2017-08-16 20:41 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2019-09-10 20:25 - 2017-08-16 20:41 - 000000000 ____D C:\Windows\system32\Macromed
2019-09-10 20:03 - 2018-02-18 22:05 - 000110064 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2019-09-10 20:03 - 2018-02-18 22:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-09-10 20:02 - 2018-02-18 22:05 - 000000000 ____D C:\Program Files\Java
2019-09-10 19:40 - 2017-06-13 14:10 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-09-09 21:11 - 2017-06-13 14:10 - 000001159 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-09-09 21:11 - 2017-06-13 14:10 - 000001147 _____ C:\Users\Public\Desktop\Firefox.lnk
2019-09-09 20:33 - 2018-12-21 22:37 - 000000000 ____D C:\Users\Azziky\Desktop\Mp3
2019-09-09 20:24 - 2019-04-11 10:06 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\Twitch
2019-09-09 20:24 - 2017-09-02 21:41 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\uTorrent
2019-09-09 20:24 - 2017-07-30 13:55 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\TS3Client
2019-09-09 20:20 - 2019-03-16 14:42 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\Arc
2019-09-09 20:20 - 2018-04-24 20:32 - 000000000 ____D C:\Users\Azziky\AppData\Local\Oblivion
2019-09-09 20:20 - 2018-04-22 11:09 - 000000000 ____D C:\Users\Azziky\AppData\Local\Skyrim
2019-09-09 20:20 - 2017-09-03 09:01 - 000000000 ____D C:\Users\Azziky\AppData\Roaming\DAEMON Tools Lite
2019-09-09 20:20 - 2017-09-02 22:17 - 000000000 ____D C:\Users\Azziky\AppData\Local\Ubisoft Game Launcher
2019-09-09 20:20 - 2017-07-30 13:54 - 000000000 ____D C:\Users\Azziky\AppData\Local\TeamSpeak 3 Client
2019-09-09 20:20 - 2017-06-18 22:28 - 000000000 ____D C:\Users\Azziky\AppData\LocalLow\Canon Easy-WebPrint EX
2019-09-09 20:18 - 2018-02-18 21:50 - 000000000 ____D C:\Users\Azziky\AppData\Local\Fallout4
2019-09-09 20:18 - 2017-09-03 09:13 - 000000000 ____D C:\Users\Azziky\AppData\Local\Fallout3
2019-09-09 20:10 - 2019-03-16 21:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2019-09-09 20:10 - 2017-06-14 17:14 - 000001306 _____ C:\Users\Public\Desktop\Skype.lnk
2019-09-09 20:06 - 2017-06-13 14:10 - 000000000 ____D C:\Users\Azziky\AppData\Local\Mozilla
2019-09-09 20:06 - 2017-06-13 13:01 - 010816916 ____H C:\Users\Azziky\AppData\Local\iznomituh.locked
2019-09-07 09:58 - 2017-06-30 10:22 - 000000000 ____D C:\Users\Janysek\AppData\LocalLow\Mozilla
2019-09-01 23:02 - 2018-05-30 20:40 - 000000000 ____D C:\ProgramData\CanonIJPLM
2019-09-01 08:50 - 2017-10-08 11:07 - 000000000 ____D C:\Program Files (x86)\Blizzard App
2019-08-29 21:56 - 2017-10-08 11:10 - 000000000 ____D C:\Program Files (x86)\Diablo III
2019-08-29 21:53 - 2019-03-21 23:51 - 000000000 ____D C:\Program Files (x86)\World of Warcraft
2019-08-28 17:05 - 2017-08-16 20:41 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-08-28 17:05 - 2017-08-16 20:41 - 000002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-08-23 20:01 - 2017-07-05 09:21 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
==================== Files in the root of some directories ================
2017-06-13 15:14 - 2017-06-13 15:14 - 000058372 _____ () C:\Users\Azziky\AppData\Local\EXOKYGOHOXAZYKZ.locked
2017-06-13 13:01 - 2019-09-09 20:06 - 010816916 ____H () C:\Users\Azziky\AppData\Local\iznomituh.locked
2018-07-14 15:42 - 2019-06-10 19:13 - 000007602 _____ () C:\Users\Azziky\AppData\Local\Resmon.ResmonCfg
2019-09-09 20:18 - 2019-09-09 20:18 - 000009058 _____ () C:\Users\Azziky\AppData\Local\[HOW_TO_DECRYPT_FILES].html
==================== SigCheck ===============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2019-09-16 23:43
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-09-2019
Ran by Azziky (18-09-2019 20:54:42)
Running from C:\Users\Azziky\Downloads
Windows 7 Professional Service Pack 1 (X64) (2017-06-13 10:55:20)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2306020130-587888901-628383107-500 - Administrator - Disabled)
Azziky (S-1-5-21-2306020130-587888901-628383107-1000 - Administrator - Enabled) => C:\Users\Azziky
Guest (S-1-5-21-2306020130-587888901-628383107-501 - Limited - Disabled)
Janysek (S-1-5-21-2306020130-587888901-628383107-1002 - Limited - Enabled) => C:\Users\Janysek
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avira Antivirus (Disabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AS: Avira Antivirus (Disabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.012.20040 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.255 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.255 - Adobe)
Aktualizace NVIDIA 37.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 37.0.0.0 - NVIDIA Corporation) Hidden
AMD Catalyst Install Manager (HKLM\...\{1D1DCF8A-6961-F848-0DA0-5401969C44CE}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Arc (HKLM-x32\...\{CED8E25B-122A-4E80-B612-7F99B93284B3}) (Version: 1.1.0.17816 - Perfect World Entertainment)
Avira (HKLM-x32\...\{1db45392-716a-490d-9b3e-2d96adbb5ab0}) (Version: 1.2.136.25116 - Avira Operations GmbH & Co. KG)
Avira (HKLM-x32\...\{CC898F82-66EF-4083-947F-5C69703DDBAF}) (Version: 1.2.136.25116 - Avira Operations GmbH & Co. KG) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.1908.1579 - Avira Operations GmbH & Co. KG)
Blizzard App (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.1.0 - Canon Inc.)
Canon MG2400 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG2400_series) (Version: 1.02 - Canon Inc.)
Canon MG2400 series On-screen Manual (HKLM-x32\...\Canon MG2400 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.47.1.0333 - Disc Soft Ltd)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Discord (HKU\S-1-5-21-2306020130-587888901-628383107-1000\...\Discord) (Version: 0.0.305 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 391.01 - NVIDIA Corporation) Hidden
EVEREST Ultimate Edition v5.50 (HKLM-x32\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.)
Fallout 3 (HKLM-x32\...\{974C4B12-4D02-4879-85E0-61C95CC63E9E}) (Version: 1.00.0000 - Bethesda Softworks)
Free Video Flip and Rotate (HKLM-x32\...\Free Video Flip and Rotate_is1) (Version: 1.1.35.831 - Digital Wave Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 76.0.3809.132 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of Might and Magic IV Gold verze 3.0c (HKLM-x32\...\{67FA88C6-ECC7-45AD-9615-3FB4AFE3E131}_is1) (Version: 3.0c - )
Heroes of Might and Magic V - Tribes of the East (HKLM-x32\...\{66FF4C48-0083-4E60-8556-B883AB200092}) (Version: - )
Heroes of Might and Magic V (HKLM-x32\...\Uplay Install 87) (Version: - Ubisoft)
Heroes of Might and Magic V Tribes of the East (HKLM-x32\...\Uplay Install 147) (Version: - Ubisoft)
Java 8 Update 161 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180161F0}) (Version: 8.0.1610.12 - Oracle Corporation)
Java 8 Update 221 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180221F0}) (Version: 8.0.2210.11 - Oracle Corporation)
JPG/JPEG Photo Converter version 1.1.0.7 (HKLM-x32\...\JPG/JPEG Photo Converter_is1) (Version: - )
K-Lite Mega Codec Pack 9.8.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.8.0 - )
Metin2 (HKLM-x32\...\Metin2_CZ_is1) (Version: - Gameforge 4D GmbH)
Microsoft .NET Framework 4.5.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{929CE49F-1CA7-4CF3-A9A1-6D757443C63F}) (Version: 1.2.0241 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 69.0 (x64 cs) (HKLM\...\Mozilla Firefox 69.0 (x64 cs)) (Version: 69.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 69.0 - Mozilla)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.15 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.19.0.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.19.0.94 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.16 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 430.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 430.86 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Ovládací panel NVIDIA 430.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 430.86 - NVIDIA Corporation) Hidden
Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.88.617.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7266 - Realtek Semiconductor Corp.)
Registrace uživatele zařízení Canon MG2400 series (HKLM-x32\...\Registrace uživatele zařízení Canon MG2400 series) (Version: - Canon Inc.)
SilentSetup (HKLM-x32\...\{BA073B32-292B-424A-97E1-70C25CD1075F}) (Version: 1.0.0 - Default Company Name) Hidden
Skype verze 8.48 (HKLM-x32\...\Skype_is1) (Version: 8.48 - Skype Technologies S.A.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
SpyHunter 5 (HKLM-x32\...\SpyHunter5) (Version: 5.6.1.119 - EnigmaSoft Limited)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKU\S-1-5-21-2306020130-587888901-628383107-1000\...\TeamSpeak 3 Client) (Version: 3.1.4.2 - TeamSpeak Systems GmbH)
Twitch (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Twitch Interactive, Inc.)
Twitch (HKU\S-1-5-21-2306020130-587888901-628383107-1000\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Uplay (HKLM-x32\...\Uplay) (Version: 29.1 - Ubisoft)
VIA Platforma Ovladače zařízení (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.)
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
Zoner Photo Studio 14 (HKLM\...\ZonerPhotoStudio14_CZ_is1) (Version: 14.0.1.3 - ZONER software)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2019-09-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal) [File not signed]
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2012-06-09] (Alexander Roshal) [File not signed]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2013-08-30] (Advanced Micro Devices, Inc.) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-05-23] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2019-09-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal) [File not signed]
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2012-06-09] (Alexander Roshal) [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
==================== Loaded Modules (Whitelisted) ==============
2019-08-29 21:52 - 2019-08-29 21:54 - 085602816 _____ () [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\libcef.dll
2019-08-29 21:54 - 2019-08-29 21:54 - 000089600 _____ () [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\libEGL.dll
2019-08-29 21:54 - 2019-08-29 21:54 - 003841536 _____ () [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\libGLESv2.dll
2012-10-22 14:41 - 2012-10-22 14:41 - 000749056 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2013-08-30 19:47 - 2013-08-30 19:47 - 000214528 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2012-10-22 14:42 - 2012-10-22 14:42 - 003645952 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2013-08-30 19:37 - 2013-08-30 19:37 - 000897024 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll
2013-08-30 19:37 - 2013-08-30 19:37 - 000005120 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiamcsy.dll
2017-06-18 22:41 - 2012-06-09 19:20 - 000196096 _____ (Alexander Roshal) [File not signed] C:\Program Files\WinRAR\rarext.dll
2018-05-30 20:40 - 2017-07-05 13:43 - 000561152 _____ (CANON INC. ) [File not signed] C:\Program Files (x86)\Canon\Quick Menu\CCL.dll
2018-05-30 20:40 - 2017-07-05 13:49 - 000593920 _____ (CANON INC.) [File not signed] C:\Program Files (x86)\Canon\Quick Menu\CNQMMWRP.dll
2019-08-29 21:52 - 2019-08-29 21:52 - 001463808 _____ (Firelight Technologies) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\fmod.dll
2014-04-11 18:17 - 2014-04-11 18:17 - 000111104 _____ (Microsoft Corporation) [File not signed] C:\Windows\Microsoft.Net\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
2019-08-29 21:52 - 2019-08-29 21:52 - 000596992 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\chrome_elf.dll
2019-08-29 21:50 - 2019-08-29 21:50 - 000047104 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\audio\qtaudio_windows.dll
2019-08-29 21:52 - 2019-08-29 21:52 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\imageformats\qgif.dll
2019-08-29 21:52 - 2019-08-29 21:52 - 000027136 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\imageformats\qico.dll
2019-08-29 21:52 - 2019-08-29 21:52 - 000243712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\imageformats\qjpeg.dll
2019-08-29 21:52 - 2019-08-29 21:52 - 000223744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\imageformats\qmng.dll
2019-08-29 21:52 - 2019-08-29 21:52 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\imageformats\qsvg.dll
2019-08-29 21:52 - 2019-08-29 21:52 - 000332288 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\imageformats\qtiff.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 001140224 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\platforms\qwindows.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000041984 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\qml\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\qml\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\qml\QtQml\Models.2\modelsplugin.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\qml\QtQuick.2\qtquick2plugin.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000084480 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\qml\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000267776 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\qml\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000071680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\qml\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000211456 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\qml\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\qml\QtQuick\Window.2\windowplugin.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 004943360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\Qt5Core.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 005022208 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\Qt5Gui.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000626176 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\Qt5Multimedia.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000877056 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\Qt5Network.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 002908672 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\Qt5Qml.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 003078656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\Qt5Quick.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000096256 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\Qt5QuickControls2.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000681472 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\Qt5QuickTemplates2.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000259072 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\Qt5Svg.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 004718080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\Qt5Widgets.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000439296 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\Qt5WinExtras.dll
2019-08-29 21:55 - 2019-08-29 21:55 - 000159232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Blizzard App\Battle.net.11378\Qt5Xml.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2009-06-10 23:00 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-2306020130-587888901-628383107-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Azziky\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{59959FBE-E01A-4F1C-B3F7-356DDDD169DD}] => (Allow) C:\Program files (x86)\raidxpert2\apache\bin\httpd.exe No File
FirewallRules: [{FA4FD2AC-F0FC-4A9D-8732-A9CA271FAF1B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C2561C49-54CA-41E7-BE18-F20917F55B9D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{948F17F0-8036-46EB-91AF-F58394AD4AFE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{7BAE15DE-F3E9-4683-BA7B-A453F78A0ABB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F444B048-1907-446B-8406-2D38B3FD086B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe No File
FirewallRules: [{A2311847-A09A-4B72-81B7-BEF1490B6B0A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D7B62BED-BDCA-4CBB-9F91-6CC99EB36D28}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{A30CFD19-AAED-4DDF-8552-401241B59B15}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{75BB7F49-8004-4032-84CA-444DDAD7BF91}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{830EC6C9-B159-48AC-B52B-5185B04C93E2}C:\users\azziky\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\azziky\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{0B61FE2B-73A4-446F-9D5B-E26C0F7F7AFE}C:\users\azziky\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\azziky\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{02255D66-581E-42BC-B553-8FE165B34B0A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{3BC0AD82-140F-4732-9E93-C55DE1516D8E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{F4ABAD26-BA69-4A7A-8E21-3C128D675744}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{71C06009-F5B1-4E34-B2AA-6687E8102D10}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [TCP Query User{BE7E2E17-5472-423A-BB19-40D9066F9C63}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{54D90CB5-5298-4710-A1E7-93EDF4A890FA}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{72CFFE6E-8D70-443E-BF5F-75682CA47BA1}C:\program files (x86)\blizzard app\battle.net.9526\battle.net.exe] => (Allow) C:\program files (x86)\blizzard app\battle.net.9526\battle.net.exe No File
FirewallRules: [UDP Query User{5015A880-28AC-42A3-BE94-9CC0BDB8B4EA}C:\program files (x86)\blizzard app\battle.net.9526\battle.net.exe] => (Allow) C:\program files (x86)\blizzard app\battle.net.9526\battle.net.exe No File
FirewallRules: [TCP Query User{9298F996-3095-4A5A-AD35-53B2AFD2E35B}C:\program files (x86)\blizzard app\battle.net.exe] => (Allow) C:\program files (x86)\blizzard app\battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{3917B3A9-C1A5-41AB-8975-3C6D5FEA445C}C:\program files (x86)\blizzard app\battle.net.exe] => (Allow) C:\program files (x86)\blizzard app\battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{757E8278-2683-4DD6-8718-098B15BE9132}C:\program files (x86)\arc\arcchat.exe] => (Allow) C:\program files (x86)\arc\arcchat.exe (Perfect World Entertainment Inc. -> Perfect World Entertainment Inc)
FirewallRules: [UDP Query User{A6590CE9-4593-48BA-95D8-3ABACCFB0C9B}C:\program files (x86)\arc\arcchat.exe] => (Allow) C:\program files (x86)\arc\arcchat.exe (Perfect World Entertainment Inc. -> Perfect World Entertainment Inc)
FirewallRules: [TCP Query User{A1C99E60-655D-4AC5-9A30-8C3C027DF6D5}C:\program files (x86)\neverwinter_en\neverwinter\live\x86\gameclient.exe] => (Allow) C:\program files (x86)\neverwinter_en\neverwinter\live\x86\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [UDP Query User{1EC3E74E-77CF-47BD-B9FB-157A1A39675B}C:\program files (x86)\neverwinter_en\neverwinter\live\x86\gameclient.exe] => (Allow) C:\program files (x86)\neverwinter_en\neverwinter\live\x86\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [{9F50FFA0-D292-4AF4-92BF-2EE35F8FA897}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Heroes of Might and Magic V\bin\H5_Game.exe (Ubisoft Entertainment -> )
FirewallRules: [{D1120D6B-DA46-45B9-9620-0C97E82A7914}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Heroes of Might and Magic V\bin\H5_Game.exe (Ubisoft Entertainment -> )
FirewallRules: [{CDCC0A55-234C-4A4C-B12A-4779EA583D1E}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Heroes of Might and Magic V Tribes of the East\bin\H5_Game.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{7C7B7298-C108-4181-A37D-1AA6F34B80B0}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Heroes of Might and Magic V Tribes of the East\bin\H5_Game.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{0B2808F9-2E7D-461C-BC44-820C067D43B7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{500FE2CC-3E67-4FB4-9BA2-55DE6184DD6F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{B74F282B-6C1A-4712-9A91-BB2B50FF64A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Oblivion\OblivionLauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{683A129B-5AB7-4395-AD97-78AC09878906}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Oblivion\OblivionLauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{8FE16B98-063A-440E-8F7A-F643CA55F30D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{4E33BD8F-2BC6-4120-BAE5-FD094BE13207}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{BF48005E-4392-45A5-A55C-CA114F718E4E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Titan Quest\Titan Quest.exe () [File not signed]
FirewallRules: [{6AFB1B13-4280-4C77-8C1D-BA34BAC602CD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Titan Quest\Titan Quest.exe () [File not signed]
FirewallRules: [{21AF4273-57C2-4A2B-9B1A-826414C49212}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Titan Quest Anniversary Edition\TQ.exe () [File not signed]
FirewallRules: [{B33DFBC5-0751-40AA-8460-076FC5118D9D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Titan Quest Anniversary Edition\TQ.exe () [File not signed]
FirewallRules: [{06F28E1C-434A-4D49-9B79-93CB17F5F99C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Titan Quest Anniversary Edition\WorkshopTool\TQWorkshopTool.exe (Nordic Games) [File not signed]
FirewallRules: [{77EA7132-E53D-4F78-8E91-BCFE76754590}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Titan Quest Anniversary Edition\WorkshopTool\TQWorkshopTool.exe (Nordic Games) [File not signed]
FirewallRules: [{F3BC2EF5-E397-41EA-82CD-696F2239A808}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Titan Quest Immortal Throne\Tqit.exe () [File not signed]
FirewallRules: [{92B1BC49-847A-43BD-BFFA-906A4DF8A73C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Titan Quest Immortal Throne\Tqit.exe () [File not signed]
FirewallRules: [{46A0C2FD-B7A4-4E17-8E40-FF623A11F7D0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{0C27DED2-CD7B-48DD-BCD7-3F2CB520B2B6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{D8B94461-B950-49EE-B6F4-F55386144E6A}C:\program files (x86)\neverwinter_en\neverwinter\live\x64\gameclient.exe] => (Block) C:\program files (x86)\neverwinter_en\neverwinter\live\x64\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [UDP Query User{7EBD13C0-E13B-4CB9-9BCF-B612A9071EFF}C:\program files (x86)\neverwinter_en\neverwinter\live\x64\gameclient.exe] => (Block) C:\program files (x86)\neverwinter_en\neverwinter\live\x64\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [TCP Query User{FE355D4F-F770-4B42-9278-A497A4F49523}C:\program files (x86)\world of warcraft\_retail_\utils\wowvoiceproxy.exe] => (Allow) C:\program files (x86)\world of warcraft\_retail_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{9D71293D-AC6E-4204-B73D-FE5597D62737}C:\program files (x86)\world of warcraft\_retail_\utils\wowvoiceproxy.exe] => (Allow) C:\program files (x86)\world of warcraft\_retail_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{42DED6F3-FE5D-4848-8BAE-928BC0A8C155}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [UDP Query User{0AAA6B2B-01B5-4CF1-8EAF-FC8AB536E643}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [{3DD98325-B667-4C73-8DCA-EE5B72043CBB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Titan Quest Anniversary Edition\TQ_DX11.exe () [File not signed]
FirewallRules: [{9A0A0545-F20F-4C90-A777-BD5CC75DB3A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Titan Quest Anniversary Edition\TQ_DX11.exe () [File not signed]
FirewallRules: [{5D99BEA8-83AF-4690-AD17-F762AD293F21}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F507E32B-8043-4EB3-9B49-EA08463D6ACB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{6B9B80E8-EDEE-49E9-B806-5994AA8EC600}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B601B284-1626-4324-A454-CBC17343B1FE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{DD003F38-E6A7-45C2-892B-6D262DA78778}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{E298B5CD-11CE-4903-B705-AFBB2A09DC28}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{77B7FC2B-983D-4234-A855-048D8148F880}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
==================== Restore Points =========================
16-09-2019 23:50:03 Naplánovaný kontrolní bod
17-09-2019 23:08:08 Operace obnovení
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (09/18/2019 04:29:15 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (09/17/2019 11:12:30 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (09/17/2019 10:09:14 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (09/17/2019 09:24:52 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (09/17/2019 06:15:52 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (09/16/2019 10:34:25 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (09/16/2019 10:24:27 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
Error: (09/16/2019 09:16:36 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.
System errors:
=============
Error: (09/18/2019 06:37:15 PM) (Source: Disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk2\DR2.
Error: (09/18/2019 06:37:15 PM) (Source: Disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk2\DR2.
Error: (09/18/2019 06:37:14 PM) (Source: Disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk2\DR2.
Error: (09/18/2019 06:37:14 PM) (Source: Disk) (EventID: 11) (User: )
Description: Ovladač zjistil chybu řadiče na \Device\Harddisk2\DR2.
Error: (09/18/2019 06:15:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Steam Client Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (09/18/2019 06:15:43 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Steam Client Service bylo dosaženo časového limitu (30000 ms).
Error: (09/18/2019 03:29:17 AM) (Source: Microsoft-Windows-HAL) (EventID: 12) (User: )
Description: Firmware platformy při předchozím přechodu systémového napájení poškodil paměť. Zkontrolujte dostupnost aktualizovaného firmwaru pro váš systém.
Error: (09/17/2019 10:09:13 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Spybot-S&D 2 Security Center Service neuspěla při spuštění v důsledku následující chyby:
V systému Windows nelze ověřit digitální podpis tohoto souboru. Při nedávné změně hardwaru nebo softwaru mohl být nainstalován nesprávně podepsaný nebo poškozený soubor nebo soubor škodlivého softwaru z neznámého zdroje.
Windows Defender:
===================================
Date: 2018-05-11 05:39:03.478
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{8F1E9346-13FC-4859-8B7A-63FAA2BE164C}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE
Date: 2018-04-03 05:24:10.561
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{D6B27EFE-DDDE-4D92-9937-AECF2257143D}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE
Date: 2018-03-29 05:12:27.565
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{04B609A9-91C6-412D-A051-95B7B9124D8D}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE
Date: 2018-03-05 05:20:07.063
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{7CB9FE05-C1C8-4A41-A8C9-1337C9CB2646}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE
CodeIntegrity:
===================================
Date: 2019-09-17 22:09:13.087
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.
Date: 2019-09-17 21:57:59.566
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.
Date: 2019-09-17 21:57:59.519
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.
Date: 2019-09-17 21:32:13.213
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.
Date: 2019-09-17 21:32:13.166
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.
Date: 2019-09-17 21:32:13.119
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.
Date: 2019-09-17 21:32:13.072
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.
Date: 2019-09-17 21:10:45.723
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
BIOS: American Megatrends Inc. FB 10/31/2014
Motherboard: Gigabyte Technology Co., Ltd. 970A-DS3P
Processor: AMD FX(tm)-8320 Eight-Core Processor
Percentage of memory in use: 89%
Total physical RAM: 8158.68 MB
Available physical RAM: 832.07 MB
Total Virtual: 16315.56 MB
Available Virtual: 6392.94 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:931.29 GB) (Free:535.44 GB) NTFS
Drive f: () (Removable) (Total:28.82 GB) (Free:0.32 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 2 (Protective MBR) (Size: 28.8 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt ============================