VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Kontrola logu

https://forum.viry.cz:443/viewtopic.php?t=156789

Stránka 1 z 1

Kontrola logu

Napsal: 26 led 2020 13:23
od PacandaMilan
Zdravím, byl by někdo tak hodnej a koukl by mi na windows?
Je to asi týden co mi při hraní her fps padá z 200 na 1.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-01-2020
Ran by LEGION-Y520 (administrator) on DESKTOP-4UJ58MB (LENOVO 80WK) (26-01-2020 13:02:55)
Running from C:\Users\cccccccccccccccccccc\Desktop
Loaded Profiles: LEGION-Y520 (Available Profiles: LEGION-Y520)
Platform: Windows 10 Pro Version 1809 17763.973 (X64) Language: Čeština (Česko)
Default browser: "C:\Users\cccccccccccccccccccc\AppData\Local\Torch\Application\torch.exe" -- "%1"
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler64.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki125133.inf_amd64_7a52044300619fc7\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki125133.inf_amd64_7a52044300619fc7\igfxEM.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(IP Izmaylov Artem Andreevich -> AIMP DevTeam) C:\Program Files (x86)\AIMP\AIMP.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\avp.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\avpui.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksdeui.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Shenzhen Jia Xing Investment Co., Ltd. -> AimerSoft) C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18391120 2019-04-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506384 2019-04-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506384 2019-04-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Aimersoft Helper Compact.exe] => C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe [2138272 2016-10-08] (Shenzhen Jia Xing Investment Co., Ltd. -> AimerSoft)
HKU\S-1-5-21-2662234876-99792091-3662101863-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-12-09] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2662234876-99792091-3662101863-1001\...\Run: [AppleIEDAV] => C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [68408 2019-12-09] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2662234876-99792091-3662101863-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2019-12-09] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2662234876-99792091-3662101863-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2019-12-09] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2662234876-99792091-3662101863-1001\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2019-12-09] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2662234876-99792091-3662101863-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.130\Installer\chrmstp.exe [2020-01-17] (Google LLC -> Google LLC)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {02A29E34-2209-46E0-9B60-65C16C0AED50} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130296 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0508CA38-479D-4E57-A3D0-3330A5D668F5} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [899056 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1961F1EA-2507-48DE-8A3B-A81D476E90D3} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3787304 2019-05-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {33A61887-572B-4ED9-9A2A-D073C85ACA15} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [899056 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {33E0FF2F-8179-45EE-822F-4271662966B0} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\WINDOWS\system32\EOSNotify.exe
Task: {372416CF-C3B3-46BB-98D9-B51ECF5E5FD9} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {3FC39DCC-3B03-4C2B-9ADF-6007B994BBE1} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130296 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {42135625-6ACB-44EE-A28E-FB365DAA8189} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe [791232 2019-10-12] (Kaspersky Lab -> AO Kaspersky Lab)
Task: {4896E8E7-D232-4B47-A43D-253376D3B8AC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-13] (Google Inc -> Google LLC)
Task: {48E48C30-5BA5-4705-B5FF-987A3E4A4B62} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-01-21] (Adobe Inc. -> Adobe)
Task: {4FF8F00F-A0EB-4B36-A05E-0083C4F18556} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_321_pepper.exe [1453624 2020-01-21] (Adobe Inc. -> Adobe)
Task: {598A0910-EADC-4E53-AA3D-601E5A849F9A} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {5BD6592C-310F-4CB5-B649-712C7B654727} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {5D24F433-FEC5-4878-9B3B-2F2BB181E837} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-02-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {66118C05-3BAF-42EF-B74B-97BD715D10F1} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1905072 2019-09-19] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {767472E8-DECC-486A-B84B-F1B8B8DFB29B} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130296 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B159C4E3-DC5D-4108-B6B4-00D8A3E07BC4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-13] (Google Inc -> Google LLC)
Task: {BEB89B3C-78E0-45FA-873E-E02CBD29B00F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [648504 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DA7E8DBE-F694-4083-9514-63384786F11D} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-02-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E90E5683-81E3-4903-AE13-419A7298DBFB} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130296 2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F309DD35-FE64-4BA4-86C9-D071F8C8A126} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{4546c49a-2972-47a4-9a4f-8c04d6408086}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{9619ed81-03fc-41de-b9d0-fd26e8ff66d1}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{ac64a2a9-b219-4ee7-9062-31de40e09aed}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{d8f198d3-1603-458b-b17c-147cd37e47f8}: [DhcpNameServer] 172.20.10.1

Internet Explorer:
==================
BHO: Kaspersky Protection -> {9F904093-6E18-4536-BF5F-B03689CF00F0} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\IEExt\ie_plugin.dll [2019-12-18] (Kaspersky Lab -> AO Kaspersky Lab)
BHO-x32: Kaspersky Protection -> {9F904093-6E18-4536-BF5F-B03689CF00F0} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\IEExt\ie_plugin.dll [2019-12-18] (Kaspersky Lab -> AO Kaspersky Lab)
Toolbar: HKLM - Kaspersky Protection Toolbar - {EF293C5A-9F37-49FD-91C4-2B867063FC54} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\IEExt\ie_plugin.dll [2019-12-18] (Kaspersky Lab -> AO Kaspersky Lab)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {EF293C5A-9F37-49FD-91C4-2B867063FC54} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\IEExt\ie_plugin.dll [2019-12-18] (Kaspersky Lab -> AO Kaspersky Lab)
Toolbar: HKU\S-1-5-21-2662234876-99792091-3662101863-1001 -> Kaspersky Protection Toolbar - {EF293C5A-9F37-49FD-91C4-2B867063FC54} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\IEExt\ie_plugin.dll [2019-12-18] (Kaspersky Lab -> AO Kaspersky Lab)

FireFox:
========
FF HKLM\...\Firefox\Extensions: [light_plugin_B29D4AD94F82454BBC9215BCBD7E80AE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Ochrana Kaspersky) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\FFExt\light_plugin_firefox\addon.xpi [2019-12-18]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_B29D4AD94F82454BBC9215BCBD7E80AE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\FFExt\light_plugin_firefox\addon.xpi
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-13] (Google LLC -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-13] (Google LLC -> Google LLC)

Chrome:
=======
CHR Profile: C:\Users\cccccccccccccccccccc\AppData\Local\Google\Chrome\User Data\Default [2020-01-26]
CHR DownloadDir: C:\Users\cccccccccccccccccccc\Desktop
CHR Notifications: Default -> hxxps://www.facebook.com
CHR HomePage: Default -> hxxp://seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR NewTab: Default -> Not-active:"chrome-extension://ehhkfhegcenpfoanmgfpfhnmdmflkbgk/index.html"
CHR DefaultSearchURL: Default -> hxxp://www.google.com/search?q={searchTerms}
CHR DefaultSearchKeyword: Default -> dasdasdasdas
CHR Extension: (Prezentace) - C:\Users\cccccccccccccccccccc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-12-28]
CHR Extension: (Dokumenty) - C:\Users\cccccccccccccccccccc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-12-28]
CHR Extension: (Disk Google) - C:\Users\cccccccccccccccccccc\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-12-28]
CHR Extension: (ColorZilla) - C:\Users\cccccccccccccccccccc\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2018-12-28]
CHR Extension: (YouTube) - C:\Users\cccccccccccccccccccc\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-12-28]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\cccccccccccccccccccc\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-01-18]
CHR Extension: (Home - New Tab Page) - C:\Users\cccccccccccccccccccc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehhkfhegcenpfoanmgfpfhnmdmflkbgk [2019-10-13]
CHR Extension: (Ochrana Kaspersky) - C:\Users\cccccccccccccccccccc\AppData\Local\Google\Chrome\User Data\Default\Extensions\elhpdacimkjpccooodognopfhbdgnpbk [2019-11-26]
CHR Extension: (Tabulky) - C:\Users\cccccccccccccccccccc\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-12-28]
CHR Extension: (Dokumenty Google offline) - C:\Users\cccccccccccccccccccc\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-08]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\cccccccccccccccccccc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-01-24]
CHR Extension: (Video Recorder) - C:\Users\cccccccccccccccccccc\AppData\Local\Google\Chrome\User Data\Default\Extensions\janpabomenbggihohponfklipffjhlfb [2018-12-28]
CHR Extension: (Chrono správce stahování) - C:\Users\cccccccccccccccccccc\AppData\Local\Google\Chrome\User Data\Default\Extensions\mciiogijehkdemklbdcbfkefimifhecn [2018-12-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\cccccccccccccccccccc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\cccccccccccccccccccc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-29]
CHR Extension: (Chrome Media Router) - C:\Users\cccccccccccccccccccc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-13]
CHR Profile: C:\Users\cccccccccccccccccccc\AppData\Local\Google\Chrome\User Data\System Profile [2019-10-15]
CHR HKLM\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk
CHR HKLM-x32\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVP20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\avp.exe [357416 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8402648 2019-11-24] (BattlEye Innovations e.K. -> )
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2018-09-25] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
S2 DSAService; C:\Program Files (x86)\Intel Driver and Support Assistant\DSAService.exe [23288 2019-01-02] (Intel(R) Driver & Support Assistant -> Intel)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-04-21] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 iaStorAfsService; C:\WINDOWS\IAStorAfsService\iaStorAfsService.exe [2413024 2018-04-05] (Intel Corporation -> Intel Corporation)
R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [530208 2019-08-07] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
S3 Intel(R) SUR QC SAM; C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
S3 klvssbridge64_20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\vssbridge64.exe [438928 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
R2 KSDE4.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe [619752 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-02-27] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-02-27] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2332464 2019-07-27] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3206448 2019-07-27] (Electronic Arts, Inc. -> Electronic Arts)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [268368 2019-04-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5378320 2019-10-04] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SmrtService; C:\ProgramData\SmartGuard\lineage2\smrt3d\release\Data\6cf745cc1723307cd1600d2b9abceced99fec7b3\smrtsvc64.exe [6511968 2019-06-22] (Eikonect Software SL -> )
R2 SynTPEnhService; C:\WINDOWS\System32\SynTPEnhService.exe [345056 2019-04-19] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)
S3 TNTClientDaemonMS2; C:\Program Files (x86)\GameforgeLoginMS2\daemon.exe [406184 2019-02-28] (Gameforge 4D GmbH -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\NisSrv.exe [3880120 2018-12-29] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MsMpEng.exe [114208 2018-12-29] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2019-05-03] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2019-05-03] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 BHTPCRDR; C:\WINDOWS\System32\drivers\bhtpcrdr.sys [174496 2019-04-19] (BayHub Technology Inc. -> BayHubTech/O2Micro )
S3 CMUAC; C:\WINDOWS\system32\DRIVERS\CMUAC.sys [613888 2014-10-09] (C-MEDIA) [File not signed]
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [246912 2019-02-16] (Kaspersky Lab -> AO Kaspersky Lab)
R3 GDPL_BOOM; C:\WINDOWS\system32\drivers\boomvad.sys [50504 2019-04-10] (WDKTestCert Adarsh,131897759775447238 -> Windows (R) Win 7 DDK provider)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-12-29] (Martin Malik - REALiX -> REALiX(tm))
R3 iaLPSS2_GPIO2; C:\WINDOWS\System32\drivers\iaLPSS2_GPIO2.sys [98760 2019-04-19] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R0 iaStorAC; C:\WINDOWS\System32\drivers\iaStorAC.sys [906216 2018-04-05] (Intel Corporation -> Intel Corporation)
S3 iaStorAfs; C:\WINDOWS\System32\drivers\iaStorAfs.sys [69096 2018-04-05] (Intel Corporation -> Intel Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [730912 2019-08-07] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [79696 2019-12-18] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [145304 2019-12-18] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [93312 2019-03-12] (Kaspersky Lab -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [37816 2019-01-24] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [251512 2019-10-30] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [516216 2019-09-17] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [1123664 2019-10-17] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\klids.sys [201280 2019-12-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [998016 2019-10-30] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [58192 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [79184 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [59512 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [51328 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab)
S3 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [45904 2019-03-10] (Kaspersky Lab -> AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [48592 2018-03-16] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [251256 2019-10-17] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [99152 2019-10-12] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [306248 2019-10-22] (Kaspersky Lab -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [119744 2019-10-22] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [204520 2019-10-20] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [105600 2019-03-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [211048 2019-12-18] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [232272 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [275232 2019-10-27] (Malwarebytes Corporation -> Malwarebytes)
R3 MEIx64; C:\WINDOWS\System32\DriverStore\FileRepository\heci.inf_amd64_85021432489d6a1c\x64\TeeDriverW8x64.sys [266128 2019-07-23] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 mtkmbim; C:\WINDOWS\System32\drivers\mtkmbim7_x64.sys [282448 2017-01-03] (MEDIATEK INC. -> MBB)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2019-02-15] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 NETwNb64; C:\WINDOWS\System32\drivers\Netwbw04.sys [3629008 2019-02-03] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 Netwtw06; C:\WINDOWS\System32\drivers\Netwtw06.sys [8832504 2019-08-07] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_5e9204584188e59f\nvlddmkm.sys [21836032 2019-05-23] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-05-10] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-03-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [75600 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1158944 2019-09-10] (Realtek Semiconductor Corp. -> Realtek )
S3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [3236800 2018-12-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [56840 2019-04-19] (Synaptics Incorporated -> Synaptics Incorporated)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2019-02-15] (Apple, Inc.) [File not signed]
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46680 2018-12-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [330936 2018-12-29] (Microsoft Windows -> Microsoft Corporation)
S3 wdf_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [82944 2017-01-03] (Microsoft Windows Hardware Compatibility Publisher -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62136 2018-12-29] (Microsoft Windows -> Microsoft Corporation)
S3 WsAudio_Device; C:\WINDOWS\system32\drivers\VirtualAudio.sys [48424 2018-01-19] (Wondershare Technology Co.,Ltd -> Wondershare)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [74552 2019-04-18] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 YLED; C:\WINDOWS\System32\drivers\YLED.sys [23960 2016-04-15] (LENOVO -> )

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-01-26 13:02 - 2020-01-26 13:06 - 000032629 _____ C:\Users\cccccccccccccccccccc\Desktop\FRST.txt
2020-01-26 13:00 - 2020-01-26 13:00 - 002581504 _____ (Farbar) C:\Users\cccccccccccccccccccc\Desktop\FRST64.exe
2020-01-25 19:42 - 2020-01-25 19:48 - 015532062 _____ C:\Users\cccccccccccccccccccc\Desktop\sa-mp-0.3.7-R4-install.exe
2020-01-25 19:12 - 2020-01-25 19:12 - 000001681 _____ C:\Users\Public\Desktop\EUNE.lnk
2020-01-25 18:57 - 2020-01-25 19:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
2020-01-25 18:57 - 2020-01-25 18:57 - 000000000 ____D C:\Users\cccccccccccccccccccc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riot Games
2020-01-25 18:55 - 2020-01-25 18:55 - 068584616 _____ C:\Users\cccccccccccccccccccc\Desktop\Install League of Legends eune.exe
2020-01-25 18:19 - 2020-01-25 18:20 - 000000204 _____ C:\Users\cccccccccccccccccccc\Desktop\Lineagers.ru - LSDmichalcz12.txt
2020-01-25 18:14 - 2020-01-25 18:14 - 000000246 _____ C:\Users\cccccccccccccccccccc\Desktop\Lineagers.ru - michalcz12@seznam.cz.txt
2020-01-25 18:13 - 2020-01-25 18:16 - 363283210 _____ C:\Users\cccccccccccccccccccc\Desktop\Lineagers.ru Patch 2.0 [24.01.2020].zip
2020-01-25 17:06 - 2020-01-25 17:06 - 000000152 _____ C:\Users\cccccccccccccccccccc\Desktop\My Account (michalcz12ZHH).txt
2020-01-25 15:57 - 2020-01-25 15:59 - 2042756527 _____ C:\Users\cccccccccccccccccccc\Desktop\Age of Menor.exe
2020-01-15 18:31 - 2020-01-15 18:31 - 000000964 _____ C:\Users\Public\Desktop\AIMP.lnk
2020-01-15 17:56 - 2020-01-15 17:56 - 009668408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-01-15 17:56 - 2020-01-15 17:56 - 008905728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 007922688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 006543736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 005436696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-01-15 17:56 - 2020-01-15 17:56 - 003637248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-01-15 17:56 - 2020-01-15 17:56 - 002707968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-01-15 17:56 - 2020-01-15 17:56 - 002469440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 002419712 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-01-15 17:56 - 2020-01-15 17:56 - 002323896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 002149160 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 001936520 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 001721144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 001677088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 001670800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 001665712 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 001484800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 001258296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-01-15 17:56 - 2020-01-15 17:56 - 001200920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 001084416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 001050624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-01-15 17:56 - 2020-01-15 17:56 - 001049400 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-01-15 17:56 - 2020-01-15 17:56 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000930816 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000878080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-01-15 17:56 - 2020-01-15 17:56 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000839680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000677144 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000651776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2020-01-15 17:56 - 2020-01-15 17:56 - 000572416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000541264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000410616 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000405304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-01-15 17:56 - 2020-01-15 17:56 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000350416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV1.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti_ci.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000154976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2020-01-15 17:56 - 2020-01-15 17:56 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadss.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tsusbhub.sys
2020-01-15 17:56 - 2020-01-15 17:56 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000122568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiadss.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-01-15 17:56 - 2020-01-15 17:56 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\LSCSHostPolicy.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2020-01-15 17:56 - 2020-01-15 17:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-01-15 17:56 - 2020-01-15 17:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-01-15 17:56 - 2020-01-15 17:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-01-15 17:56 - 2020-01-15 17:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-01-15 17:56 - 2020-01-15 17:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-01-15 17:56 - 2020-01-15 17:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-01-15 17:56 - 2020-01-15 17:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-01-15 17:56 - 2020-01-15 17:56 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-12-29 15:57 - 2019-12-29 15:57 - 000000000 ____D C:\Users\cccccccccccccccccccc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-01-26 13:04 - 2019-10-27 18:27 - 000000000 ____D C:\FRST
2020-01-26 13:04 - 2019-10-12 14:47 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2020-01-26 12:25 - 2018-12-29 20:40 - 000000000 ____D C:\ProgramData\NVIDIA
2020-01-26 11:56 - 2019-01-12 17:26 - 000000000 ____D C:\Lineage II
2020-01-26 11:43 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-01-26 03:04 - 2018-12-29 20:35 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-01-25 22:26 - 2019-01-01 18:27 - 000000000 ____D C:\Users\cccccccccccccccccccc\AppData\Roaming\AIMP
2020-01-25 21:19 - 2018-12-28 19:03 - 000000000 ____D C:\Program Files\Steam
2020-01-25 18:57 - 2019-10-12 19:42 - 000000000 ____D C:\Users\cccccccccccccccccccc\AppData\Local\Riot Games
2020-01-25 18:56 - 2018-12-30 01:21 - 000000000 ____D C:\Users\cccccccccccccccccccc\AppData\Local\CrashDumps
2020-01-25 17:04 - 2019-01-31 22:01 - 000000000 ____D C:\ProgramData\SmartGuard
2020-01-25 16:39 - 2019-08-28 15:21 - 000000000 ____D C:\Users\cccccccccccccccccccc\Desktop\Age of Menor
2020-01-25 14:20 - 2019-03-15 21:25 - 000000000 ____D C:\Users\cccccccccccccccccccc\AppData\Roaming\vlc
2020-01-25 13:57 - 2019-04-18 17:40 - 000000000 ___RD C:\pergl
2020-01-25 10:04 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2020-01-25 10:04 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-01-25 09:58 - 2018-09-15 07:09 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2020-01-24 21:26 - 2018-12-28 16:06 - 001693704 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-01-24 21:26 - 2018-09-15 18:39 - 000718198 _____ C:\WINDOWS\system32\perfh005.dat
2020-01-24 21:26 - 2018-09-15 18:39 - 000145242 _____ C:\WINDOWS\system32\perfc005.dat
2020-01-24 21:26 - 2018-09-15 08:31 - 000000000 ____D C:\WINDOWS\INF
2020-01-24 17:57 - 2019-10-04 21:06 - 000000000 ___RD C:\Users\cccccccccccccccccccc\iCloudDrive
2020-01-24 17:54 - 2018-12-29 20:47 - 000000000 ____D C:\Users\cccccccccccccccccccc
2020-01-24 17:52 - 2018-12-29 20:56 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-01-21 21:39 - 2019-11-13 19:25 - 008647224 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2020-01-21 21:39 - 2019-09-04 10:24 - 000004636 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player PPAPI Notifier
2020-01-21 21:39 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2020-01-21 21:39 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\Macromed
2020-01-20 18:51 - 2018-09-15 08:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-01-20 18:48 - 2018-09-15 07:09 - 000000000 ____D C:\WINDOWS\servicing
2020-01-17 19:15 - 2019-10-13 21:43 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-01-17 19:15 - 2019-10-13 21:43 - 000002262 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-01-17 19:09 - 2019-06-19 18:01 - 000000000 ____D C:\Program Files\UNP
2020-01-17 14:43 - 2018-12-29 20:35 - 000276736 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-01-16 22:07 - 2018-09-15 07:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-01-16 22:06 - 2018-09-15 08:33 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-01-16 22:06 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-01-16 22:06 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-01-15 18:31 - 2019-12-15 21:32 - 000156592 _____ C:\WINDOWS\SysWOW64\antimalware.patch_management.product_registry.kvdb-wal
2020-01-15 18:31 - 2019-01-01 18:27 - 000000000 ____D C:\Program Files (x86)\AIMP
2020-01-15 18:07 - 2018-12-28 23:58 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-01-15 18:02 - 2018-12-28 23:58 - 120202352 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-01-14 19:47 - 2019-07-01 15:55 - 000000000 ____D C:\Users\cccccccccccccccccccc\Documents\GTA San Andreas User Files
2020-01-14 19:46 - 2019-11-16 15:16 - 000001104 _____ C:\Users\cccccccccccccccccccc\Desktop\MediaCoder.lnk
2020-01-14 19:46 - 2019-10-12 16:31 - 000001923 _____ C:\Users\cccccccccccccccccccc\Desktop\Peace.lnk
2020-01-13 17:24 - 2019-12-20 15:43 - 000032768 _____ C:\WINDOWS\SysWOW64\antimalware.unwanted_products.browser_extension_registry.kvdb-shm
2020-01-13 17:24 - 2019-12-15 21:32 - 000032768 _____ C:\WINDOWS\SysWOW64\antimalware.unwanted_products.product_registry.kvdb-shm
2020-01-13 17:24 - 2019-12-15 21:32 - 000032768 _____ C:\WINDOWS\SysWOW64\antimalware.patch_management.product_registry.kvdb-shm
2020-01-05 00:51 - 2019-10-06 17:07 - 000000000 ____D C:\Users\cccccccccccccccccccc\AppData\LocalLow\Mozilla
2020-01-02 12:58 - 2019-12-15 21:32 - 000016512 _____ C:\WINDOWS\SysWOW64\antimalware.unwanted_products.product_registry.kvdb-wal

==================== Files in the root of some directories ========

2018-12-29 22:12 - 2018-12-31 02:37 - 000007604 _____ () C:\Users\cccccccccccccccccccc\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Re: Kontrola logu

Napsal: 26 led 2020 13:54
od PacandaMilan
# -------------------------------
# Malwarebytes AdwCleaner 8.0.1.0
# -------------------------------
# Build: 12-17-2019
# Database: 2020-01-24.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 01-26-2020
# Duration: 00:00:14
# OS: Windows 10 Pro
# Cleaned: 0
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner_Debug.log - [208612 octets] - [27/10/2019 18:59:53]
AdwCleaner[S00].txt - [1541 octets] - [27/10/2019 19:00:43]
AdwCleaner[C00].txt - [1673 octets] - [27/10/2019 19:06:27]
AdwCleaner[S01].txt - [1511 octets] - [26/01/2020 13:41:21]
AdwCleaner[S02].txt - [1572 octets] - [26/01/2020 13:41:54]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C02].txt ##########

Re: Kontrola logu

Napsal: 26 led 2020 15:17
od Rudy
Zdravím!
Ještě bych potřeboval vidět log Addition. Je na ploše v souboru addition.txt. Děkuji.

Re: Kontrola logu

Napsal: 26 led 2020 15:51
od PacandaMilan
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-01-2020
Ran by LEGION-Y520 (26-01-2020 13:11:45)
Running from C:\Users\cccccccccccccccccccc\Desktop
Windows 10 Pro Version 1809 17763.973 (X64) (2018-12-29 19:59:05)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2662234876-99792091-3662101863-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2662234876-99792091-3662101863-503 - Limited - Disabled)
Guest (S-1-5-21-2662234876-99792091-3662101863-501 - Limited - Disabled)
LEGION-Y520 (S-1-5-21-2662234876-99792091-3662101863-1001 - Administrator - Enabled) => C:\Users\cccccccccccccccccccc
WDAGUtilityAccount (S-1-5-21-2662234876-99792091-3662101863-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Internet Security (Enabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}
AS: Kaspersky Internet Security (Enabled - Up to date) {B1D2E896-6D96-7460-F17A-838B9D00DD65}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {32888857-01C3-7AB6-E095-11CC1854D0A3}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

. . (HKLM\...\{E24348A6-82E6-4FC7-BE14-189265418B30}) (Version: 7.1 - Intel) Hidden
. . . (HKLM-x32\...\{0F58DF31-E2D8-45BE-AD43-D31D8707ACA1}) (Version: 3.7.0.8 - Intel) Hidden
4game (HKLM-x32\...\4game2.0) (Version: 1.0.0.135 - Innova Co. SARL)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.321 - Adobe)
Aimersoft Helper Compact 2.5.2 (HKLM-x32\...\{405147F7-FCC5-499B-A27E-EA6BD4A80435}_is1) (Version: 2.5.2 - Aimersoft)
AIMP (HKLM-x32\...\AIMP) (Version: v4.60.2169, 08.01.2020 - AIMP DevTeam)
Aktualizace NVIDIA 37.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 37.0.0.0 - NVIDIA Corporation) Hidden
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.0.4 - Electronic Arts, Inc.)
Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
AVIcodec (remove only) (HKLM-x32\...\AVIcodec) (Version: - )
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Boom 3D (HKLM\...\{6E0CA788-5CD0-4366-A5BD-B67676B978C3}) (Version: 1.0.10 - Global Delight)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 419.17 - NVIDIA Corporation) Hidden
D-Link Connection Manager v3.0.3EU (HKLM-x32\...\Broad Mobi HSPA Modem Normal Version_is1) (Version: - )
Dolby Audio X2 Windows API SDK (HKLM\...\{8738A898-221B-4279-BC87-FEF7938022C1}) (Version: 0.8.8.87 - Dolby Laboratories, Inc.)
DS502 GAMING Headset (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392006620}) (Version: 1.00.0019 - )
Equalizer APO (HKLM\...\EqualizerAPO) (Version: 1.2.1 - )
FIFA 19 (HKLM-x32\...\{3391E07D-8484-4124-817E-FCBDA859FD62}) (Version: 1.0.61.54442 - Electronic Arts)
Gameforge Login MS2 (HKLM-x32\...\{703bd6d7-79c0-4005-8cd7-89522a05a546}_is1) (Version: 1.3.39 - Gameforge)
GameRanger (HKU\S-1-5-21-2662234876-99792091-3662101863-1001\...\GameRanger) (Version: - GameRanger Technologies)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.130 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden
iCloud (HKLM\...\{4E727621-3550-4CE0-883E-F27D7D7E0D2C}) (Version: 7.16.0.15 - Apple Inc.)
Intel(R) Computing Improvement Program (HKLM\...\{93FE134F-7678-4D90-A849-6FF6EB28CCDF}) (Version: 2.4.04289 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{e03c7229-07fa-483d-a64f-55e545a2e21d}) (Version: 3.7.0.8 - Intel)
IrfanView 4.54 (64-bit) (HKLM\...\IrfanView64) (Version: 4.54 - Irfan Skiljan)
Kaspersky Internet Security (HKLM-x32\...\{D891550B-ACFE-4797-B368-BCFC434BBEB1}) (Version: 20.0.14.1085 - Kaspersky) Hidden
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{D891550B-ACFE-4797-B368-BCFC434BBEB1}) (Version: 20.0.14.1085 - Kaspersky)
Kaspersky Secure Connection (HKLM-x32\...\{145AE349-477A-45E5-A57C-5F5BF2BB5775}) (Version: 20.0.14.1085 - Kaspersky) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{145AE349-477A-45E5-A57C-5F5BF2BB5775}) (Version: 20.0.14.1085 - Kaspersky)
League of Legends (HKU\S-1-5-21-2662234876-99792091-3662101863-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Lineage II (HKLM-x32\...\{21040472-F8DF-48A9-A093-2986C1495670}) (Version: 170.0.0 - NCsoft)
LineageII Classic EU (HKLM-x32\...\4game2.0_cl-eu_live) (Version: cleu-P.180905.17.04.01 - Innova Co. SARL)
MediaCoder 0.8.55.5938 (HKLM-x32\...\MediaCoder) (Version: 0.8.55.5938 - Mediatronic)
MediaInfo 19.04 (HKLM\...\MediaInfo) (Version: 19.04 - MediaArea.net)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25017 (HKLM-x32\...\{d6f233bd-3f8c-43f6-878b-07bd0568d595}) (Version: 14.10.25017.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25017 (HKLM-x32\...\{cb7c3049-21de-415b-bd85-b65c14e547df}) (Version: 14.10.25017.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Minecraft Launcher (HKLM-x32\...\{CFF44AE9-2908-4D7D-B48B-1CB5139015C7}) (Version: 1.0.0.0 - Mojang)
Mp3tag v2.95 (HKLM-x32\...\Mp3tag) (Version: 2.95 - Florian Heidenreich)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.15 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.19.0.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.19.0.94 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 430.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 430.86 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 10.5.43.28287 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 430.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 430.86 - NVIDIA Corporation) Hidden
Peace (HKLM\...\Peace) (Version: 1.5.3.2 - P.E. Verbeek)
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{5C028510-A6A1-409A-A2BF-4DCB43B21EF9}) (Version: 7.6 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{5C7D4FCF-80C5-4520-9934-D50532AAC59C}) (Version: 7.6 - Apple Inc.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{33AABC60-A52F-41FF-B2B9-17321240CD5}) (Version: 1.215.243 - REALTEK Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.4.1 - Rockstar Games)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
UpdateAssistant (HKLM\...\{EC4F72E8-52FE-454E-B70F-DBE5C0FA44C5}) (Version: 1.20.0.0 - Microsoft Corporation) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 73.0 - Ubisoft)
uTorrent Web (HKU\S-1-5-21-2662234876-99792091-3662101863-1001\...\utweb) (Version: 0.18.2 - BitTorrent, Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1) (Version: 1.0.54.1 - Intel Corporation Inc.) Hidden
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1-2) (Version: 1.0.54.1 - Intel Corporation Inc.) Hidden
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1-3) (Version: 1.0.54.1 - Intel Corporation Inc.) Hidden
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1-4) (Version: 1.0.54.1 - Intel Corporation Inc.) Hidden
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1-5) (Version: 1.0.54.1 - Intel Corporation Inc.)
Winamp (HKLM-x32\...\Winamp) (Version: 5.8 - Winamp SA)
WinRAR 5.80 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.80.0 - win.rar GmbH)
World of Warcraft Classic (HKLM-x32\...\World of Warcraft Classic) (Version: - Blizzard Entertainment)

Packages:
=========
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1680.3.0_x86__kgqvnymyfvs32 [2020-01-16] (king.com)
Cooking Fever -> C:\Program Files\WindowsApps\NORDCURRENT.COOKINGFEVER_7.0.0.2_x86__m9bz608c1b9ra [2019-12-05] (Nordcurrent)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.0.2204.0_x64__rz1tebttyb220 [2019-11-15] (Dolby Laboratories)
Fitbit Coach -> C:\Program Files\WindowsApps\Fitbit.FitbitCoach_4.4.133.0_x64__6mqt6hf9g46tw [2018-12-30] (Fitbit)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa [2019-12-15] (Apple Inc.) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-21] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-21] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-10] (Microsoft Studios) [MS Ad]
Microsoft Zprávy -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.34.20074.0_x64__8wekyb3d8bbwe [2020-01-14] (Microsoft Corporation) [MS Ad]
MSN Money -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.34.20074.0_x64__8wekyb3d8bbwe [2020-01-14] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-19] (Microsoft Corporation) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.34.20074.0_x64__8wekyb3d8bbwe [2020-01-14] (Microsoft Corporation) [MS Ad]
Phototastic Collage -> C:\Program Files\WindowsApps\ThumbmunkeysLtd.PhototasticCollage_2.2.16.0_x64__nfy108tqq3p12 [2019-09-26] (Thumbmunkeys Ltd) [MS Ad]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2020-01-15] (IP Izmaylov Artem Andreevich -> AIMP DevTeam)
ContextMenuHandlers1: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\ShellEx.dll [2019-10-30] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2019-04-18] (Florian Heidenreich) [File not signed]
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2019-12-09] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\ShellEx.dll [2019-10-30] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2019-04-18] (Florian Heidenreich) [File not signed]
ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2020-01-15] (IP Izmaylov Artem Andreevich -> AIMP DevTeam)
ContextMenuHandlers4: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\ShellEx.dll [2019-10-30] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2019-04-18] (Florian Heidenreich) [File not signed]
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\ki125133.inf_amd64_7a52044300619fc7\igfxDTCM.dll [2017-11-05] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-05-22] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\x64\ShellEx.dll [2019-10-30] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\cccccccccccccccccccc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVIcodec\Website.lnk -> hxxp://avicodec.duby.info

==================== Loaded Modules (Whitelisted) =============

2020-01-15 18:31 - 2020-01-15 18:31 - 000147456 _____ () [File not signed] C:\Program Files (x86)\AIMP\Plugins\aimp_sacd\libsacd.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 000026624 _____ () [File not signed] C:\Program Files (x86)\AIMP\Plugins\Aorta\Aorta.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 000504038 _____ () [File not signed] C:\Program Files (x86)\AIMP\sqlite3.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 000811008 _____ () [File not signed] C:\Program Files (x86)\AIMP\System\Encoders\aimp_libvorbis.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 000286208 _____ () [File not signed] C:\Program Files (x86)\AIMP\System\Encoders\lame_enc.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 000723456 _____ () [File not signed] C:\Program Files (x86)\AIMP\System\Encoders\libFLAC.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 000205824 _____ () [File not signed] C:\Program Files (x86)\AIMP\System\libsoxr.dll
2019-05-06 19:07 - 2016-07-21 09:54 - 000137728 _____ () [File not signed] C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\CBSCreateVC.dll
2019-05-06 19:07 - 2016-10-08 16:03 - 001506304 _____ () [File not signed] C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\DAQExp.dll
2019-06-10 12:21 - 2019-06-10 12:21 - 000668160 _____ () [File not signed] C:\Program Files\EqualizerAPO\EqualizerAPO.dll
2017-07-08 11:52 - 2017-07-08 11:52 - 002983917 _____ () [File not signed] C:\Program Files\EqualizerAPO\libfftw3f-3.dll
2015-11-22 21:05 - 2015-11-22 21:05 - 001530880 _____ () [File not signed] C:\Program Files\EqualizerAPO\libsndfile-1.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 000226304 _____ (Conifer Software) [File not signed] C:\Program Files (x86)\AIMP\System\Encoders\wavpackdll.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 001061376 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\AIMP\Plugins\aimp_inputFFmpeg\avcodec-aimp-57.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 000497152 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\AIMP\Plugins\aimp_inputFFmpeg\avformat-aimp-57.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 000571904 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\AIMP\Plugins\aimp_inputFFmpeg\avutil-aimp-55.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 000122368 _____ (FFmpeg Project) [File not signed] C:\Program Files (x86)\AIMP\Plugins\aimp_inputFFmpeg\swresample-aimp-2.dll
2019-04-18 09:31 - 2019-04-18 09:31 - 000424448 _____ (Florian Heidenreich) [File not signed] C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 000214016 _____ (Florin Ghido, florin.ghido@gmail.com) [File not signed] C:\Program Files (x86)\AIMP\Plugins\bass_ofr\OptimFROG.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 000149845 _____ (MaresWEB) [File not signed] C:\Program Files (x86)\AIMP\Plugins\bass_aac\bass_aac.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 000015113 _____ (MaresWEB) [File not signed] C:\Program Files (x86)\AIMP\Plugins\bass_ac3\bass_ac3.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 000009416 _____ (MaresWEB) [File not signed] C:\Program Files (x86)\AIMP\Plugins\bass_alac\bass_alac.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 000029052 _____ (MaresWEB) [File not signed] C:\Program Files (x86)\AIMP\Plugins\bass_ape\bass_ape.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 000021112 _____ (MaresWEB) [File not signed] C:\Program Files (x86)\AIMP\Plugins\bass_mpc\bass_mpc.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 000005960 _____ (MaresWEB) [File not signed] C:\Program Files (x86)\AIMP\Plugins\bass_ofr\bass_ofr.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 000036105 _____ (MaresWEB) [File not signed] C:\Program Files (x86)\AIMP\Plugins\bass_spx\bass_spx.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 000007910 _____ (MaresWEB) [File not signed] C:\Program Files (x86)\AIMP\Plugins\bass_tta\bass_tta.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 000464896 _____ (Matthew T. Ashland) [File not signed] C:\Program Files (x86)\AIMP\System\Encoders\MACDll.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 000114688 _____ (Thomas Becker, Osnabrueck) [File not signed] C:\Program Files (x86)\AIMP\Plugins\tak_deco_lib\tak_deco_lib.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 000128181 _____ (Un4seen Developments) [File not signed] C:\Program Files (x86)\AIMP\bass.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 000018966 _____ (Un4seen Developments) [File not signed] C:\Program Files (x86)\AIMP\Plugins\aimp_cdda\aimp_cdda_basscd.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 000024844 _____ (Un4seen Developments) [File not signed] C:\Program Files (x86)\AIMP\Plugins\bass_flac\bass_flac.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 000012000 _____ (Un4seen Developments) [File not signed] C:\Program Files (x86)\AIMP\Plugins\bass_hls\bass_hls.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 000052643 _____ (Un4seen Developments) [File not signed] C:\Program Files (x86)\AIMP\Plugins\bass_midi\bass_midi.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 000069388 _____ (Un4seen Developments) [File not signed] C:\Program Files (x86)\AIMP\Plugins\bass_opus\bass_opus.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 000017733 _____ (Un4seen Developments) [File not signed] C:\Program Files (x86)\AIMP\Plugins\bass_wma\bass_wma.dll
2020-01-15 18:31 - 2020-01-15 18:31 - 000028224 _____ (Un4seen Developments) [File not signed] C:\Program Files (x86)\AIMP\Plugins\bass_wv\bass_wv.dll
2019-05-06 19:07 - 2016-10-08 16:04 - 000708608 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\CBSProducstInfo.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\cccccccccccccccccccc\Data aplikací:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\cccccccccccccccccccc\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-10-15 19:35 - 2019-10-15 19:35 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost

2019-06-20 19:30 - 2019-10-23 20:04 - 000000445 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2662234876-99792091-3662101863-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\cccccccccccccccccccc\AppData\Roaming\Microsoft\Windows Photo Viewer\Tapeta programu Windows Prohlížeč fotografií.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run32: => "GameZone"
HKU\S-1-5-21-2662234876-99792091-3662101863-1001\...\StartupApproved\Run: => "OneDrive"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{9AF918EA-D36A-4C13-B3BF-BACF12D456C7}C:\users\cccccccccccccccccccc\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\cccccccccccccccccccc\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{2C87C0E2-836D-4FE4-849D-B1131A2FE394}C:\users\cccccccccccccccccccc\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\cccccccccccccccccccc\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{94EBF72C-F8A1-46F7-945A-A2B2699A7BFB}C:\program files\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [TCP Query User{611525B5-A929-4F60-8F63-7CDD10A37A14}C:\program files\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [{9FAFA98F-675E-4637-8D01-89C39D179C7F}] => (Allow) C:\Program Files\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (Bluehole, Inc. -> PUBG Corporation )
FirewallRules: [{A9BBF73E-808D-41F6-8E6B-99265DFD930F}] => (Allow) C:\Program Files\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (Bluehole, Inc. -> PUBG Corporation )
FirewallRules: [{EA055E00-F067-49E1-8F8D-8E3DFE3D8761}] => (Allow) C:\Program Files\Steam\steamapps\common\MountBlade Warband\mb_warband.exe ( Taleworlds Entertainment) [File not signed]
FirewallRules: [{91DEC1A3-57C8-469E-81C3-D17A8760B479}] => (Allow) C:\Program Files\Steam\steamapps\common\MountBlade Warband\mb_warband.exe ( Taleworlds Entertainment) [File not signed]
FirewallRules: [{C4C9097A-C073-46E1-9BAF-6E5AEAF9EB2B}] => (Allow) C:\Program Files\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{C26A2706-1D5C-4976-A608-828075D5655F}] => (Allow) C:\Program Files\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{EA43BF56-2F81-4FDE-8366-F4658B1717FC}] => (Allow) C:\Program Files\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{405B5EB4-2E0F-48FF-983B-841F2D5590BC}] => (Allow) C:\Program Files\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{4AE83D8C-E998-454E-BE75-E2831544BC05}C:\program files\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files\steam\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{EDB3440E-2381-4439-91CD-0EF53161CC5F}C:\program files\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files\steam\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{05BF548F-68F5-4562-BA7C-FA19B6C7A216}] => (Allow) C:\Program Files\Steam\steamapps\common\Black Desert Online\Black Desert Online Steam Launcher.exe (Kakao Games Europe B.V. -> KakaoGames USA Inc.)
FirewallRules: [{935EB627-93BE-4D6B-86BF-ABCAA0C14DD9}] => (Allow) C:\Program Files\Steam\steamapps\common\Black Desert Online\Black Desert Online Steam Launcher.exe (Kakao Games Europe B.V. -> KakaoGames USA Inc.)
FirewallRules: [{E6D449A0-D484-442E-9507-7D42D06C130B}] => (Allow) C:\Program Files\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{E57E3428-4B90-4EDA-9CAC-7DEE26F1E973}] => (Allow) C:\Program Files\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{CFB81D8E-822B-4AB2-AE05-71689BF474D5}] => (Allow) C:\Program Files\Steam\steamapps\common\DiRT Rally\drt.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{1072B864-4154-437A-A934-0E57EFFFCAB7}] => (Allow) C:\Program Files\Steam\steamapps\common\DiRT Rally\drt.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{E726DF79-AD26-497D-942D-084CB66AED0F}] => (Allow) C:\Program Files\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{7B546A1B-B88B-47F2-9093-93870177F91C}] => (Allow) C:\Program Files\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{29A7029B-8774-4F1D-A59D-FFFCCD4CC4FE}] => (Allow) C:\Program Files\Steam\steamapps\common\MorphVOX Pro\MorphVOXPro.exe (Screaming Bee Inc -> Screaming Bee)
FirewallRules: [{976A5EA6-BBA3-465F-A53F-EB7C94A8716B}] => (Allow) C:\Program Files\Steam\steamapps\common\MorphVOX Pro\MorphVOXPro.exe (Screaming Bee Inc -> Screaming Bee)
FirewallRules: [{F49B0012-5314-4098-A620-F2C9B98C2943}] => (Allow) C:\Program Files\Steam\steamapps\common\Stronghold Crusader Extreme\Stronghold Crusader.exe ( ) [File not signed]
FirewallRules: [{D75CD3F2-39DC-419A-AFD0-D8288C20F867}] => (Allow) C:\Program Files\Steam\steamapps\common\Stronghold Crusader Extreme\Stronghold Crusader.exe ( ) [File not signed]
FirewallRules: [{99016630-C190-468A-8940-A4A8B62BB913}] => (Allow) C:\Program Files\Steam\steamapps\common\Stronghold Crusader Extreme\Stronghold_Crusader_Extreme.exe ( ) [File not signed]
FirewallRules: [{B68CA340-1ACD-4345-8F5D-08978E8A330B}] => (Allow) C:\Program Files\Steam\steamapps\common\Stronghold Crusader Extreme\Stronghold_Crusader_Extreme.exe ( ) [File not signed]
FirewallRules: [TCP Query User{EAC1013B-9D91-436E-95F4-4FC44CE502CF}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{A9090B92-BFC8-4B9B-B53E-33C3F6FD7A68}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{1A793573-C6ED-4479-BF10-9C85ABEFE1F1}] => (Allow) C:\Program Files\Steam\steamapps\common\Blackwake\Blackwake.exe () [File not signed]
FirewallRules: [{A055017E-F845-434C-8EF6-E2D8893CD734}] => (Allow) C:\Program Files\Steam\steamapps\common\Blackwake\Blackwake.exe () [File not signed]
FirewallRules: [{760FD1CC-A7E0-4D8E-9DA7-54A15263A47C}] => (Allow) C:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{A6B5B62C-0409-4906-80D2-D70711AD9182}] => (Allow) C:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{96C096F9-178A-450D-B034-439315E43E5D}C:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) C:\program files (x86)\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [UDP Query User{27FFD357-49C1-4EA2-A609-36F86D00F600}C:\program files (x86)\origin games\apex\r5apex.exe] => (Allow) C:\program files (x86)\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [{49B104D1-ED3D-424E-80EF-17AB609CBDB8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{75D40867-20F6-4CE6-BCC8-AE06209F193D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{EC85CCF3-7385-4D8D-9F08-862500D658B9}C:\users\cccccccccccccccccccc\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\cccccccccccccccccccc\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{5263811B-6FEB-4F4E-8A59-D802C7214D37}C:\users\cccccccccccccccccccc\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\cccccccccccccccccccc\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{5E2F78C3-07C4-4492-8232-D8556B2013EB}] => (Allow) C:\Program Files\Steam\steamapps\common\Stronghold Crusader 2\bin\win32_release\Crusader2.exe () [File not signed]
FirewallRules: [{39EDA037-0F17-4012-BA75-16C518B3F814}] => (Allow) C:\Program Files\Steam\steamapps\common\Stronghold Crusader 2\bin\win32_release\Crusader2.exe () [File not signed]
FirewallRules: [{F686C8C7-6431-45B0-BBEC-6C5527519481}] => (Allow) C:\Program Files\Steam\steamapps\common\WW1GameSeries\WW1 Game Series.exe () [File not signed]
FirewallRules: [{FF582CDA-053D-4818-82B8-D51C3742A9AF}] => (Allow) C:\Program Files\Steam\steamapps\common\WW1GameSeries\WW1 Game Series.exe () [File not signed]
FirewallRules: [{963C03F4-347A-4995-8E5A-5C3B48457D4F}] => (Allow) C:\Program Files\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]
FirewallRules: [{AC1C4C83-452C-4C5A-933F-73C98BEA9E59}] => (Allow) C:\Program Files\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]
FirewallRules: [{35DD70F2-0368-468E-AB24-755CBB64F5E8}] => (Allow) C:\Program Files\Steam\steamapps\common\Gothic 3\Gothic3.exe (Nordic Games GmbH) [File not signed]
FirewallRules: [{34F10866-71C4-4B9F-BC20-7649549B9842}] => (Allow) C:\Program Files\Steam\steamapps\common\Gothic 3\Gothic3.exe (Nordic Games GmbH) [File not signed]
FirewallRules: [{07E49EF1-7823-4D85-B561-1B3C5B29674D}] => (Allow) C:\Program Files\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{D995473E-EF0F-4327-A204-E89A1EFE9502}] => (Allow) C:\Program Files\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{F28DF149-69B7-4088-AB76-E53681D3E748}] => (Allow) C:\Program Files\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{3CE837D5-C2BB-4A5D-8717-2E91EE522A22}] => (Allow) C:\Program Files\Steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{99A6E243-D4DB-43C3-AAE3-A827F56DC16E}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F4CAD471-CE30-4066-A8F9-8584E60F2932}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2C845B2F-1C26-495D-8C06-FD1C4A510A46}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{8F088E87-C44A-4262-B22B-4CA161DD618A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0C44BCBA-94A9-4A78-9020-8FD2BC790978}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6FB9A4A3-DA5E-4C0B-ADD6-FA916FA6B701}] => (Allow) C:\Program Files\Steam\steamapps\common\Mordhau\Mordhau.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{16834710-076B-4721-BBB5-393DE1DBAC21}] => (Allow) C:\Program Files\Steam\steamapps\common\Mordhau\Mordhau.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{E449504F-00DE-40BB-96E5-BDB7AB3A7449}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{93714885-CFD7-4AB3-9B8A-609B5A28513F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FC10610D-78E8-4511-9EFD-08299D23A918}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D42612C9-F0E3-484F-8877-A5347CAC89F6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{6037D7DB-AE89-43B2-9D52-23EFFA04E1D4}] => (Allow) C:\Program Files\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]
FirewallRules: [{EE4FA9EC-A9E8-4127-8E01-0CB8464153C1}] => (Allow) C:\Program Files\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]
FirewallRules: [TCP Query User{40B5FAB8-0F28-41C0-9433-825A6A324349}C:\program files\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files\steam\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{842FCD2F-0F0B-4452-8C9D-70C0A4AB5472}C:\program files\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files\steam\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{891B59A6-2DE8-49AB-B224-F4B12D9EC7DA}] => (Allow) C:\Program Files\Steam\steamapps\common\Mafia\Mafia\Game.exe (Illusion Softworks) [File not signed]
FirewallRules: [{0736103C-FB21-4D29-BE65-C6AFE3DF383B}] => (Allow) C:\Program Files\Steam\steamapps\common\Mafia\Mafia\Game.exe (Illusion Softworks) [File not signed]
FirewallRules: [{80B9677A-4E2D-472A-B946-074A162563DA}] => (Allow) C:\Program Files\Steam\steamapps\common\Mafia\Mafia\Setup.exe () [File not signed]
FirewallRules: [{0D7D013F-A88B-4653-BFF2-84D541D4ECAF}] => (Allow) C:\Program Files\Steam\steamapps\common\Mafia\Mafia\Setup.exe () [File not signed]
FirewallRules: [{A497BBD4-D680-477D-B913-27D6A1D291CA}] => (Allow) C:\Program Files\Steam\steamapps\common\KillSquad\Game.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{596CBD4B-73EA-454B-9F86-9CB086E4BE3F}] => (Allow) C:\Program Files\Steam\steamapps\common\KillSquad\Game.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [TCP Query User{06E7ECEE-BA5C-4E40-BF7E-173B47AAB6AD}C:\program files\steam\steamapps\common\killsquad\game\binaries\win64\game-win64-shipping.exe] => (Allow) C:\program files\steam\steamapps\common\killsquad\game\binaries\win64\game-win64-shipping.exe (Novarama Technology SL) [File not signed]
FirewallRules: [UDP Query User{89297B32-F6A6-41B8-9E54-33266B54A734}C:\program files\steam\steamapps\common\killsquad\game\binaries\win64\game-win64-shipping.exe] => (Allow) C:\program files\steam\steamapps\common\killsquad\game\binaries\win64\game-win64-shipping.exe (Novarama Technology SL) [File not signed]
FirewallRules: [TCP Query User{466BD755-46F8-4813-AC10-86573F295CD0}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe
FirewallRules: [UDP Query User{08E992CD-71A1-4AE0-BCF4-1CF3E5152783}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe
FirewallRules: [{CB98CE4E-2BA6-464F-AE1C-D822ACCF6F91}] => (Allow) C:\Program Files\Steam\steamapps\common\Colorcers\Colorcers.exe () [File not signed]
FirewallRules: [{9A39189A-F865-4335-A0BE-B60BA78D793B}] => (Allow) C:\Program Files\Steam\steamapps\common\Colorcers\Colorcers.exe () [File not signed]
FirewallRules: [{1D8BA426-786F-49A8-9387-97ED20074D50}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 19\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{949D1E17-E579-4409-992C-8ECF0992D163}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 19\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [TCP Query User{B905AD76-31F1-42EF-9F7B-1ADE4FE05F2B}C:\program files (x86)\origin games\fifa 19\fifa19.exe] => (Allow) C:\program files (x86)\origin games\fifa 19\fifa19.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [UDP Query User{5ECE9256-738B-4AFA-B964-A8D78971BEFD}C:\program files (x86)\origin games\fifa 19\fifa19.exe] => (Allow) C:\program files (x86)\origin games\fifa 19\fifa19.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [TCP Query User{85CCD3B0-0DC4-465C-B4A5-D2A96AAC7384}C:\riot games\league of legends\game\league of legends.exe] => (Allow) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{D8B2B38A-6568-4994-9B1A-297CCDA23717}C:\riot games\league of legends\game\league of legends.exe] => (Allow) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{55F5D8F8-DED5-4607-AD4F-E9D077816974}] => (Allow) C:\Program Files\Steam\steamapps\common\Albion Online\launcher\AlbionLauncher.exe (Sandbox Interactive GmbH -> Sandbox Interactive GmbH)
FirewallRules: [{5160B939-55D6-401B-8637-02E72D3C01A4}] => (Allow) C:\Program Files\Steam\steamapps\common\Albion Online\launcher\AlbionLauncher.exe (Sandbox Interactive GmbH -> Sandbox Interactive GmbH)
FirewallRules: [{9889F4BD-7876-4CC6-B4A3-50BF334604D7}] => (Allow) C:\Program Files\Steam\steamapps\common\No Man's Sky\Binaries\NMS.exe (Hello Games) [File not signed]
FirewallRules: [{7065EA47-179E-41F9-A4C6-2B349F82963F}] => (Allow) C:\Program Files\Steam\steamapps\common\No Man's Sky\Binaries\NMS.exe (Hello Games) [File not signed]
FirewallRules: [TCP Query User{98967620-C98D-4B87-B871-C2751CEBF623}C:\program files (x86)\world of warcraft\_classic_\utils\wowvoiceproxy.exe] => (Allow) C:\program files (x86)\world of warcraft\_classic_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{EE4CAEDA-3661-4812-87AC-96A71FD8B627}C:\program files (x86)\world of warcraft\_classic_\utils\wowvoiceproxy.exe] => (Allow) C:\program files (x86)\world of warcraft\_classic_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{B6438C1C-9FEC-462A-A8AA-E2B37ED90787}C:\riot games\league of legends\game\league of legends.exe] => (Allow) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [UDP Query User{75A78B44-3A30-4E4E-B081-910404459102}C:\riot games\league of legends\game\league of legends.exe] => (Allow) C:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{54AB4FAA-EE25-45C6-81A5-3E7F9DCB436D}] => (Allow) C:\Program Files\Steam\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{435177AC-44D1-4A65-B30C-47EEE549B28B}] => (Allow) C:\Program Files\Steam\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{1059C45F-B935-4911-B472-C7B33B97ECC4}] => (Allow) C:\Program Files\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]
FirewallRules: [{BBB7E54A-5726-49DA-97A4-DAC74D1720F2}] => (Allow) C:\Program Files\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [File not signed]
FirewallRules: [{CE64DC4E-DD4A-455E-9B38-EEFD708363BF}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{0191E43A-4507-45D0-A46A-82E6C5D764BF}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe (Riot Games, Inc. -> Riot Games, Inc.)
FirewallRules: [{885F9393-A38B-4652-A28D-1F143091FE2F}] => (Allow) C:\Users\cccccccccccccccccccc\Downloads\gta\GTA San Andreas\samp.exe () [File not signed]
FirewallRules: [{01D6B42D-E530-4F7B-8B9F-F256F9BFBEFD}] => (Allow) C:\Users\cccccccccccccccccccc\Downloads\gta\GTA San Andreas\samp.exe () [File not signed]
FirewallRules: [{AF23B6D0-6003-4B4B-A4FB-4961DDEFE08D}] => (Allow) C:\Users\cccccccccccccccccccc\Downloads\gta\GTA San Andreas\samp.exe () [File not signed]
FirewallRules: [{2E484E8B-1B0A-4011-96C6-CB7AF057979C}] => (Allow) C:\Users\cccccccccccccccccccc\Downloads\gta\GTA San Andreas\samp.exe () [File not signed]
FirewallRules: [{F1F3620E-E1DB-4D3A-8519-9B5BCC3AE077}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Winamp SA -> Winamp SA)
FirewallRules: [{9B57B232-3534-4B12-8D18-FBBE8BF51B0F}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Winamp SA -> Winamp SA)
FirewallRules: [{E0E01116-DA6D-4BCD-A598-BEFBB84787F2}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{AA606F7F-5EC7-4ED9-A753-615E7B46AF72}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{59589CD1-1DBE-4B5F-93F0-3BDFFB1BE19B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2386B24F-51B1-48C2-9C5C-677B27E51699}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5048AB55-7B4E-4819-8C80-3DF33C08441F}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7FDADD36-0BF0-4C1E-AE5E-063D47B4BD75}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7DF6D21E-FFFD-4AD9-A1A1-62E535C33A33}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D525D470-10EE-47D8-AF35-4D13154E135D}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12103.1.43048.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{225ABBD4-A384-4E3F-8856-976F6D15C7E5}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

08-01-2020 19:27:57 Naplánovaný kontrolní bod
15-01-2020 17:42:52 Windows Update
23-01-2020 18:45:09 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (01/26/2020 11:00:27 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (01/26/2020 10:25:57 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (01/26/2020 10:25:55 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (01/26/2020 12:04:24 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1891

Error: (01/26/2020 12:04:24 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1891

Error: (01/26/2020 12:04:24 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/25/2020 08:58:37 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (01/25/2020 08:56:40 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1750


System errors:
=============
Error: (01/25/2020 10:08:43 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-4UJ58MB)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-4UJ58MB\LEGION-Y520 (SID: S-1-5-21-2662234876-99792091-3662101863-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/25/2020 09:38:44 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-4UJ58MB)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-4UJ58MB\LEGION-Y520 (SID: S-1-5-21-2662234876-99792091-3662101863-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/25/2020 09:17:42 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-4UJ58MB)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-4UJ58MB\LEGION-Y520 (SID: S-1-5-21-2662234876-99792091-3662101863-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/25/2020 08:54:03 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-4UJ58MB)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-4UJ58MB\LEGION-Y520 (SID: S-1-5-21-2662234876-99792091-3662101863-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/25/2020 03:08:38 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-4UJ58MB)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-4UJ58MB\LEGION-Y520 (SID: S-1-5-21-2662234876-99792091-3662101863-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/24/2020 09:22:09 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění výchozí pro počítač neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
a APPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/24/2020 09:22:09 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/24/2020 09:22:09 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění výchozí pro počítač neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
a APPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.


Windows Defender:
===================================
Date: 2018-12-30 13:28:46.461
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/Keygen
ID: 2147593794
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\cccccccccccccccccccc\Downloads\KMSAuto.exe
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: DESKTOP-4UJ58MB\cccccccccccccccccccc
Název procesu: C:\Users\cccccccccccccccccccc\AppData\Roaming\uTorrent\utorrent.exe
Verze podpisu: AV: 1.283.1833.0, AS: 1.283.1833.0, NIS: 1.283.1833.0
Verze modulu: AM: 1.1.15500.2, NIS: 1.1.15500.2

Date: 2018-12-30 13:21:46.754
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/Keygen
ID: 2147593794
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\cccccccccccccccccccc\Downloads\KMSAuto.exe
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: DESKTOP-4UJ58MB\cccccccccccccccccccc
Název procesu: C:\Users\cccccccccccccccccccc\AppData\Roaming\uTorrent\utorrent.exe
Verze podpisu: AV: 1.283.1833.0, AS: 1.283.1833.0, NIS: 1.283.1833.0
Verze modulu: AM: 1.1.15500.2, NIS: 1.1.15500.2

Date: 2018-12-29 23:21:35.877
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.199.1615.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.11701.0
Kód chyby: 0x80070643
Popis chyby :Při instalaci došlo k závažné chybě.

Date: 2018-12-29 23:21:32.482
Description:
Program Antivirová ochrana v programu Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu: 1.1.15500.2
Předchozí verze modulu: 1.1.11701.0
Uživatel: NT AUTHORITY\SYSTEM
Kód chyby: 0x80508007
Popis chyby: Zařízení nemá dostatek paměti. Ukončete některé programy a opakujte akci, nebo v nápovědě a podpoře vyhledejte informace, jak se vyhnout potížím s nedostatkem paměti.

CodeIntegrity:
===================================

Date: 2020-01-26 13:07:00.972
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\avp.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-01-26 13:07:00.971
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\avp.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-01-26 13:07:00.832
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\avp.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-01-26 13:07:00.830
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\avp.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-01-26 13:07:00.829
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\avp.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-01-26 13:07:00.828
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\avp.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-01-26 13:06:59.004
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\avp.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-01-26 13:06:59.003
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 20.0\avp.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info ===========================

BIOS: LENOVO 4KCN23WW 01/12/2017
Motherboard: LENOVO Provence-5R1
Processor: Intel(R) Core(TM) i5-7300HQ CPU @ 2.50GHz
Percentage of memory in use: 53%
Total physical RAM: 12163.16 MB
Available physical RAM: 5681.01 MB
Total Virtual: 14579.16 MB
Available Virtual: 6167.79 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.08 GB) (Free:141.77 GB) NTFS

\\?\Volume{fd91d4c4-d294-4ee9-b0ff-53d8c8879f77}\ (Obnovení) (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{45e684c8-5b0b-46a2-bfd8-4c21afd3ed18}\ () (Fixed) (Total:0.88 GB) (Free:0.34 GB) NTFS
\\?\Volume{c344045f-e870-46be-87d5-ffdafc4e4c7e}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

Re: Kontrola logu

Napsal: 26 led 2020 16:04
od Rudy
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
AlternateDataStreams: C:\Users\cccccccccccccccccccc\Data aplikací:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\cccccccccccccccccccc\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
C:\Users\cccccccccccccccccccc\Downloads\KMSAuto.exe
C:\Program Files\Bonjour
Task: {4896E8E7-D232-4B47-A43D-253376D3B8AC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-13] (Google Inc -> Google LLC)
Task: {B159C4E3-DC5D-4108-B6B4-00D8A3E07BC4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-13] (Google Inc -> Google LLC)

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Kontrola logu

Napsal: 26 led 2020 17:34
od PacandaMilan
Fix result of Farbar Recovery Scan Tool (x64) Version: 26-01-2020
Ran by LEGION-Y520 (26-01-2020 17:11:03) Run:3
Running from C:\Users\cccccccccccccccccccc\Desktop
Loaded Profiles: LEGION-Y520 (Available Profiles: LEGION-Y520)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
AlternateDataStreams: C:\Users\cccccccccccccccccccc\Data aplikací:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\cccccccccccccccccccc\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
C:\Users\cccccccccccccccccccc\Downloads\KMSAuto.exe
C:\Program Files\Bonjour
Task: {4896E8E7-D232-4B47-A43D-253376D3B8AC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-13] (Google Inc -> Google LLC)
Task: {B159C4E3-DC5D-4108-B6B4-00D8A3E07BC4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-10-13] (Google Inc -> Google LLC)

EmptyTemp:
End
*****************

Processes closed successfully.
"C:\Users\cccccccccccccccccccc\Data aplikací" => ":00e481b5e22dbe1f649fcddd505d3eb7" ADS not found.
"C:\Users\cccccccccccccccccccc\AppData\Roaming" => ":00e481b5e22dbe1f649fcddd505d3eb7" ADS not found.
"C:\Users\cccccccccccccccccccc\Downloads\KMSAuto.exe" => not found
"C:\Program Files\Bonjour" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4896E8E7-D232-4B47-A43D-253376D3B8AC}" => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B159C4E3-DC5D-4108-B6B4-00D8A3E07BC4}" => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => not found

=========== EmptyTemp: ==========

BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 2104856 B
Java, Flash, Steam htmlcache => 148187181 B
Windows/system/drivers => 24674 B
Edge => 26624 B
Chrome => 378063927 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 52154 B
NetworkService => 52154 B
cccccccccccccccccccc => 144512898 B

RecycleBin => 19807896303 B
EmptyTemp: => 19.1 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 17:14:58 ====

Re: Kontrola logu

Napsal: 26 led 2020 17:53
od Rudy
OK. Nastala nějaká změna?

Re: Kontrola logu

Napsal: 26 led 2020 18:34
od PacandaMilan
Ano, PC se zrychlil, díky ! :thumbsup:

Re: Kontrola logu

Napsal: 26 led 2020 18:50
od Rudy
Rádo se stalo! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz