Kontrola
Napsal: 17 dub 2021 18:23
Zdravím, dnes se mi stalo že jsem bouchnul do stolu (ne nějak hodně) a PC hodil modrou smrt..
PC funguje normálně ale bojím si ted sednout k pc abych ho něj zas nebouchnul
Posílám FRST log minidump se mi nedaří poslat.. jak na to?
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-04-2021
Ran by vitek (administrator) on VITEK-PC (Micro-Star International Co., Ltd MS-7C02) (17-04-2021 19:13:53)
Running from C:\Users\vitek\Desktop
Loaded Profiles: vitek
Platform: Windows 10 Pro Version 2004 19041.928 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(GAINWARD TECHNOLOGY INT'L LIMITED -> Gainward Co. Ltd.) D:\EXPERTool\TBPanel.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <20>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2103.17603.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12101.1001.14.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\NisSrv.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\APP Manager\AppManager.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\EyeRest.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\TriggerModeMonitor.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\VideoCardMonitorII.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Toast Server\MSIToastServer.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\APP Manager\AppManager_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
(uTorrent.CZ -> BitTorrent, Inc.) [File not signed] D:\uTorrent\utorrent.exe
(Western Digital Techologies -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Agent\WDDriveAgent.exe
(Western Digital Techologies -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [746440 2018-06-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601928 2018-12-15] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [WDDriveAgent] => C:\Program Files (x86)\Western Digital\WD Drive Agent\WDDriveAgent.exe [2379096 2018-03-26] (Western Digital Techologies -> Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [APP Manager] => C:\Program Files (x86)\MSI\APP Manager\AppManager.exe [3705520 2019-05-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [Command Center] => C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe [835760 2019-04-30] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\Run: [Steam] => D:\Steam\steam.exe [4087528 2021-04-12] (Valve -> Valve Corporation)
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\Run: [TBPanel] => D:\EXPERTool\TBPanel.exe [2438960 2018-10-17] (GAINWARD TECHNOLOGY INT'L LIMITED -> Gainward Co. Ltd.)
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\Run: [Discord] => C:\Users\vitek\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [731240 2018-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33169992 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\Run: [uTorrent] => D:\uTorrent\utorrent.exe [416168 2015-02-22] (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [123792288 2021-04-16] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\Run: [Gaijin.Net Updater] => C:\Users\vitek\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2361600 2019-11-28] (Gaijin Network LTD -> Gaijin Entertainment)
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33131408 2020-11-28] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1747288 2021-03-18] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\RunOnce: [Application Restart #2] => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\MountPoints2: {57cc3e08-0639-11e9-bbf2-309c23e37130} - "E:\setup.exe"
HKLM\...\Windows x64\Print Processors\Canon MG2500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBX.DLL [30208 2013-03-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG2500 series: C:\Windows\system32\CNMLMBX.DLL [391168 2013-03-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.72\Installer\chrmstp.exe [2021-04-15] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2021-04-15]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS -> SteelSeries ApS)
Startup: C:\Users\vitek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2021-03-03]
ShortcutTarget: Twitch.lnk -> C:\Users\vitek\AppData\Roaming\Twitch\Bin\Twitch.exe (Twitch Interactive, Inc. -> Twitch Interactive, Inc.)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {036F41AA-A447-4441-92A9-B2BE171EDA2B} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe
Task: {0B51EB86-0705-4341-A04A-35CC476F364A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27616328 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {124B8CBD-6F5C-4196-AA55-0EE7FA917DDF} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905584 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {13B82B8B-F321-457D-957E-9D112F6893A5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {29AC77D0-D3BB-4111-BB60-EE1EA5F15702} - System32\Tasks\EXPERTool => D:\EXPERTool\TBPanel.exe [2438960 2018-10-17] (GAINWARD TECHNOLOGY INT'L LIMITED -> Gainward Co. Ltd.)
Task: {2E1AF66F-98ED-461C-B38D-10343D5D6445} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {34E86712-6A33-4EE3-B919-3C1D64E52119} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {361EAF6E-FE2D-46F3-8C19-1BE260BA2FA9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {60C0B45C-5829-4D80-9175-C55E1CFC8561} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6326A153-6FFF-48D3-80A5-CB679EBFB99E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {63F6B716-B8A5-4438-B1BC-151D5EA49417} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-09-29] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {68B54F95-7684-4A0D-BEC2-11FA42BA3090} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-18] (Piriform Software Ltd -> Piriform)
Task: {6F5B2379-1874-4D53-8DDC-EFEA2C01A991} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {785FC0CA-40E6-4E0A-B30F-40FFC0E31E7A} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-09-29] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {7AFA946F-540D-4AE6-9A91-C8566CBE7024} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905584 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7ECDF896-720F-4F4B-BED6-AF70D2B5F16B} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {899DCD34-4B8C-4E97-8E61-AF411E2FCC0E} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8C8D38C1-8B34-45E6-A687-58F1EAB76E8B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-10-19] (Google Inc -> Google Inc.)
Task: {8E9149D8-0992-47E1-AC72-4D1974B0B5AD} - System32\Tasks\Norton Security Scan for vitek => C:\PROGRA~2\NORTON~2\Engine\461~1.150\Nss.exe
Task: {950E4C3E-27A5-43CD-AF03-8A9EE2F988A0} - System32\Tasks\MSI_Toast_Server => C:\Program Files (x86)\MSI\MSI Toast Server\MSIToastServer.exe [31904 2018-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
Task: {9A6502CE-CA74-44FA-8038-AC7CAB4655C0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-10-19] (Google Inc -> Google Inc.)
Task: {A205545B-8D53-4845-A683-D39B771FE7F4} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AA4A8021-0F9C-4194-8BF1-F0E144CD3586} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AA936059-F2DD-4236-96FC-0AF253E8E5FC} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe
Task: {C1F3810E-29C7-48DD-9E05-F38853D2ED52} - System32\Tasks\MSILEDKeeper_Host => C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe [1068688 2019-08-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {C4E64233-6610-4078-90D6-55D77103EA6F} - System32\Tasks\MSIGH_Host => C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe [3354296 2019-01-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
Task: {C7A606BD-64BE-44D6-97A9-3994C570609C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3336560 2021-04-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D5A8F596-C49B-43C5-8FB7-66182FE00400} - System32\Tasks\AMDAutoUpdate => C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe [677624 2019-11-21] (Advanced Micro Devices INC. -> )
Task: {DE9DDD1A-EA8C-4C4A-BF2B-FDFEED4F7575} - System32\Tasks\MSISW_Host => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {ECE4C001-7185-4869-B53F-15A894D73572} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2491736 2021-03-18] (Overwolf Ltd -> Overwolf LTD)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\MSIGH_Host.job => C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe
Task: C:\WINDOWS\Tasks\MSILEDKeeper_Host.job => C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe
Task: C:\WINDOWS\Tasks\MSISW_Host.job => C:\WINDOWS\SysWOW64\muachost.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{8964d957-5ab4-46e2-9dd6-778ddad6c01a}: [DhcpNameServer] 192.168.0.1
Edge:
=======
DownloadDir: C:\Users\vitek\Downloads
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge Profile: C:\Users\vitek\AppData\Local\Microsoft\Edge\User Data\Default [2021-04-17]
Edge DownloadDir: C:\Users\vitek\Downloads
Edge StartupUrls: Default -> "hxxps://sk0.forgeofempires.com/page/"
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-01-19] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-01-19] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [No File]
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [No File]
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [No File]
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [No File]
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.6.607.0\npCCleanerBrowserUpdate3.dll [No File]
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.6.607.0\npCCleanerBrowserUpdate3.dll [No File]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-03-06] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [No File]
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [No File]
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [No File]
FF Plugin HKU\S-1-5-21-443703425-2946328903-2492468108-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [No File]
FF Plugin HKU\S-1-5-21-443703425-2946328903-2492468108-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [No File]
FF Plugin HKU\S-1-5-21-443703425-2946328903-2492468108-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [No File]
Chrome:
=======
CHR Profile: C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default [2021-04-17]
CHR DownloadDir: D:\Stažené soubory
CHR Notifications: Default -> hxxps://steamcommunity.com
CHR HomePage: Default -> hxxps://www.google.com/
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-10-19]
CHR Extension: (BetterTTV) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2021-03-15]
CHR Extension: (Dokumenty) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-10-19]
CHR Extension: (Disk Google) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (YouTube) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-10-19]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-01-29]
CHR Extension: (Tipli do prohlížeče) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbnfnbehhjknomdbfhcobpgpphnlnikp [2021-01-23]
CHR Extension: (Tabulky) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-10-19]
CHR Extension: (Dokumenty Google offline) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-12]
CHR Extension: (Carbon Blackout) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ialnhggmaghopmhanfnjjneegopfpbdj [2020-01-06]
CHR Extension: (Twitch Now) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk [2020-07-01]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-16]
CHR Extension: (Hlídač Shopů) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\plmlonggbfebcjelncogcnclagkmkikk [2021-03-06]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8403672 2019-02-02] (BattlEye Innovations e.K. -> )
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3644008 2018-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-05-22] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [409456 2021-03-30] (NVIDIA Corporation -> NVIDIA)
R2 GamingApp_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe [46776 2018-09-06] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 GamingHotkey_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe [2027192 2019-01-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10605472 2021-04-16] (Logitech Inc -> Logitech, Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-01-13] (Malwarebytes Inc -> Malwarebytes)
S3 MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService_x64.exe [2669240 2018-01-12] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\MSICommService.exe [2343608 2018-11-19] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService_x64.exe [2725048 2017-12-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [2255544 2018-11-19] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2507952 2019-05-08] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [2136248 2018-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [2742968 2018-08-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_ActiveX_Service; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe [86688 2018-07-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_AppManager_Service; C:\Program Files (x86)\MSI\APP Manager\AppManager_Service.exe [2055352 2019-01-04] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MysticLight2_Service; C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe [34976 2018-12-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2491736 2021-03-18] (Overwolf Ltd -> Overwolf LTD)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1332632 2021-04-02] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5361256 2021-04-14] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesUpdateService.exe [31568 2021-04-14] (SteelSeries ApS -> )
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [524632 2018-03-26] (Western Digital Techologies -> Western Digital Technologies, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\NisSrv.exe [2624104 2021-04-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MsMpEng.exe [128376 2021-04-12] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2018-12-23] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2018-12-23] (Disc Soft Ltd -> Disc Soft Ltd)
R1 EneIo; C:\WINDOWS\system32\drivers\ene.sys [17624 2019-05-22] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 I2cHkBurn; C:\WINDOWS\system32\drivers\I2cHkBurn.sys [41760 2015-07-27] (Feature Integration Technology -> FINTEK Corp.)
R2 LGHUBTemperatureService; C:\Program Files\LGHUB\logi_core_temp.sys [22864 2021-04-16] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [37200 2021-03-18] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [25928 2021-03-18] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66896 2021-03-18] (Logitech Inc -> Logitech)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220616 2021-03-20] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-01-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-04-11] (Malwarebytes Inc -> Malwarebytes)
R3 Neo_VPN; C:\WINDOWS\System32\drivers\Neo6_x64_VPN.sys [38216 2018-12-30] (SoftEther Corporation -> SoftEther Corporation)
R3 NTIOLib_MysticLight; C:\Program Files (x86)\MSI\MysticLight\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [46776 2019-02-01] (SteelSeries ApS -> )
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-04-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [421088 2021-04-12] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72928 2021-04-12] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-04-17 19:12 - 2021-04-17 19:13 - 000048432 _____ C:\Users\vitek\Desktop\Addition.txt
2021-04-17 19:11 - 2021-04-17 19:14 - 000031773 _____ C:\Users\vitek\Desktop\FRST.txt
2021-04-17 19:11 - 2021-04-17 19:11 - 002298368 _____ (Farbar) C:\Users\vitek\Desktop\FRST64.exe
2021-04-17 13:51 - 2021-04-17 13:52 - 000876132 _____ C:\WINDOWS\Minidump\041721-5421-01.dmp
2021-04-17 13:51 - 2021-04-17 13:52 - 000000000 ____D C:\WINDOWS\Minidump
2021-04-17 13:51 - 2021-04-17 13:51 - 1267757072 _____ C:\WINDOWS\MEMORY.DMP
2021-04-17 11:42 - 2021-04-17 11:42 - 000000650 _____ C:\Users\Public\Desktop\Logitech G HUB.lnk
2021-04-17 11:42 - 2021-04-17 11:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2021-04-17 11:42 - 2021-04-17 11:42 - 000000000 ____D C:\ProgramData\Logishrd
2021-04-17 11:42 - 2021-04-17 11:42 - 000000000 ____D C:\Program Files\LGHUB
2021-04-14 21:17 - 2021-04-14 21:17 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-04-14 21:17 - 2021-04-14 21:17 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-04-14 21:17 - 2021-04-14 21:17 - 000011357 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-04-14 19:48 - 2021-04-14 19:48 - 000002697 _____ C:\Users\vitek\Desktop\SETUPAPPLICATION SOVIET – zástupce.lnk
2021-04-12 21:39 - 2021-04-12 21:39 - 000000000 ____D C:\WINDOWS\system32\lxss
2021-04-12 21:39 - 2021-03-26 11:17 - 001855192 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-04-12 21:39 - 2021-03-26 11:17 - 001855192 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-04-12 21:39 - 2021-03-26 11:17 - 001452312 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-04-12 21:39 - 2021-03-26 11:17 - 001435864 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-04-12 21:39 - 2021-03-26 11:17 - 001435864 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-04-12 21:39 - 2021-03-26 11:17 - 001191696 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-04-12 21:39 - 2021-03-26 11:17 - 001094864 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-04-12 21:39 - 2021-03-26 11:17 - 001094864 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-04-12 21:39 - 2021-03-26 11:17 - 000948952 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-04-12 21:39 - 2021-03-26 11:17 - 000948952 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-04-12 21:39 - 2021-03-26 11:15 - 000715568 _____ C:\WINDOWS\system32\nvofapi64.dll
2021-04-12 21:39 - 2021-03-26 11:15 - 000575760 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2021-04-12 21:39 - 2021-03-26 11:14 - 001730864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6446589.dll
2021-04-12 21:39 - 2021-03-26 11:14 - 001590064 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2021-04-12 21:39 - 2021-03-26 11:14 - 001514288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2021-04-12 21:39 - 2021-03-26 11:14 - 001490224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6446589.dll
2021-04-12 21:39 - 2021-03-26 11:14 - 001166128 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2021-04-12 21:39 - 2021-03-26 11:14 - 000811792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2021-04-12 21:39 - 2021-03-26 11:14 - 000675120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2021-04-12 21:39 - 2021-03-26 11:14 - 000563992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2021-04-12 21:39 - 2021-03-26 11:13 - 008316192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2021-04-12 21:39 - 2021-03-26 11:13 - 007433496 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2021-04-12 21:39 - 2021-03-26 11:13 - 004795160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2021-04-12 21:39 - 2021-03-26 11:13 - 002823440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2021-04-12 21:32 - 2020-08-14 09:59 - 000043416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\NvModuleTracker.sys
2021-04-04 20:07 - 2021-04-04 20:07 - 000000000 ___HD C:\ProgramData\CanonIJQuickMenu
2021-04-04 19:48 - 2021-04-04 20:19 - 000000000 ____D C:\Users\vitek\AppData\Roaming\Canon
2021-04-04 19:34 - 2021-04-04 20:05 - 000000000 ____D C:\ProgramData\CanonIJWSpt
2021-04-04 19:34 - 2021-04-04 19:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registrace uživatele zařízení Canon MG2500 series
2021-04-04 19:34 - 2013-02-04 15:10 - 000321536 _____ (CANON INC.) C:\WINDOWS\SysWOW64\CNC_BXL.dll
2021-04-04 19:34 - 2012-11-09 10:43 - 000088064 _____ C:\WINDOWS\SysWOW64\CNC176DD.TBL
2021-04-04 19:34 - 2008-08-25 18:02 - 000015872 _____ (CANON INC.) C:\WINDOWS\SysWOW64\CNHMCA.dll
2021-04-04 19:33 - 2021-04-04 19:33 - 000000000 ___HD C:\Program Files\CanonBJ
2021-04-04 19:32 - 2021-04-04 20:19 - 000000000 ____D C:\Program Files (x86)\Canon
2021-04-04 19:31 - 2021-04-04 19:31 - 049446448 _____ C:\Users\vitek\Desktop\win-mg2500-1_1-mcd.exe
2021-04-04 19:16 - 2021-04-04 19:16 - 015799230 _____ C:\Users\vitek\Desktop\Klaziena_-_EN.pdf
2021-04-03 14:17 - 2021-04-03 14:17 - 000671165 _____ C:\Users\vitek\Desktop\Uzavreni_smlouvy.pdf
2021-03-29 20:35 - 2021-03-29 20:35 - 000076245 _____ C:\Users\vitek\Desktop\Export.pdf
2021-03-27 19:11 - 2021-03-27 19:11 - 008665297 _____ C:\Users\vitek\Desktop\Šatkomaniačky- schémata 20 v 1.pdf
2021-03-26 19:16 - 2021-03-26 19:16 - 000051284 _____ C:\Users\vitek\Desktop\moreoverlays-1.15.1-mc1.12.2.jar
2021-03-25 23:46 - 2021-03-25 23:41 - 005465516 _____ () C:\Users\vitek\Desktop\Technic Origo.exe
2021-03-25 00:53 - 2021-03-25 00:53 - 011405203 _____ C:\Users\vitek\Desktop\Můj film.mp4
2021-03-18 01:39 - 2021-03-18 01:39 - 000066896 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_xlcore.sys
2021-03-18 01:39 - 2021-03-18 01:39 - 000037200 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_bus_enum.sys
2021-03-18 01:39 - 2021-03-18 01:39 - 000025928 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_vir_hid.sys
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-04-17 19:14 - 2020-01-29 14:20 - 000000000 ____D C:\FRST
2021-04-17 19:09 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-04-17 18:59 - 2020-08-17 17:47 - 001605602 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-04-17 18:59 - 2019-12-07 16:43 - 000682238 _____ C:\WINDOWS\system32\perfh005.dat
2021-04-17 18:59 - 2019-12-07 16:43 - 000137054 _____ C:\WINDOWS\system32\perfc005.dat
2021-04-17 18:59 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-04-17 18:58 - 2018-10-19 20:08 - 000000000 ____D C:\ProgramData\NVIDIA
2021-04-17 18:56 - 2020-01-08 17:35 - 000000000 ____D C:\Users\vitek\AppData\Roaming\LGHUB
2021-04-17 18:56 - 2020-01-08 17:35 - 000000000 ____D C:\Users\vitek\AppData\Local\LGHUB
2021-04-17 18:56 - 2019-05-23 13:35 - 000000000 ____D C:\Program Files\CCleaner
2021-04-17 13:55 - 2020-08-17 17:41 - 000000000 ____D C:\Users\vitek
2021-04-17 13:54 - 2018-10-25 22:01 - 000000000 ____D C:\Users\vitek\AppData\Local\CrashDumps
2021-04-17 13:51 - 2020-08-17 17:49 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-04-17 13:51 - 2020-08-17 17:40 - 000008192 ___SH C:\DumpStack.log.tmp
2021-04-17 13:51 - 2020-08-17 17:40 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-04-17 12:42 - 2021-03-13 23:15 - 000000000 ____D C:\Users\vitek\AppData\Roaming\.technic
2021-04-17 02:10 - 2018-10-20 09:47 - 000000000 ____D C:\Users\vitek\AppData\Roaming\discord
2021-04-16 18:51 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-04-16 18:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-04-16 18:51 - 2018-10-19 20:02 - 000000000 ____D C:\Users\vitek\AppData\Local\PlaceholderTileLogoFolder
2021-04-16 11:55 - 2020-06-05 12:51 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-04-16 11:55 - 2020-06-05 12:51 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-04-15 02:29 - 2018-10-19 21:29 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-04-15 02:29 - 2018-10-19 21:29 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-04-15 00:27 - 2020-08-17 17:40 - 000258096 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-04-15 00:27 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-04-15 00:26 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-04-15 00:26 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-04-15 00:26 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-04-15 00:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-04-15 00:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-04-15 00:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-04-15 00:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-04-15 00:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-04-15 00:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-04-15 00:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-04-15 00:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-04-15 00:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-04-15 00:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-04-14 21:19 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-04-14 21:17 - 2020-08-17 17:45 - 002877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-04-14 21:12 - 2018-10-19 22:28 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-04-14 21:10 - 2018-10-19 22:27 - 131963968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-04-12 23:40 - 2020-08-17 17:49 - 000003364 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-443703425-2946328903-2492468108-1001
2021-04-12 23:40 - 2020-08-17 17:41 - 000002361 _____ C:\Users\vitek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-04-12 23:40 - 2018-10-19 20:02 - 000000000 ___RD C:\Users\vitek\OneDrive
2021-04-12 22:50 - 2018-10-19 21:14 - 000000000 ____D C:\Users\vitek\AppData\Local\NVIDIA
2021-04-12 21:39 - 2018-10-19 20:07 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-04-12 21:32 - 2020-08-17 17:49 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-12 21:32 - 2020-08-17 17:49 - 000004106 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-12 21:32 - 2020-08-17 17:49 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-12 21:32 - 2020-08-17 17:49 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-12 21:32 - 2020-08-17 17:49 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-12 21:32 - 2020-08-17 17:49 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-12 21:32 - 2020-08-17 17:49 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-12 21:32 - 2020-08-17 17:49 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-12 21:32 - 2020-08-17 17:49 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-12 21:32 - 2020-08-17 17:49 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-12 21:32 - 2018-10-19 21:14 - 000001443 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2021-04-12 21:32 - 2018-10-19 20:08 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-04-12 21:32 - 2018-10-19 20:07 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2021-04-12 00:09 - 2018-10-19 19:52 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-04-11 15:13 - 2021-01-13 16:19 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-04-11 15:13 - 2019-09-02 12:47 - 000199128 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-04-07 13:38 - 2018-10-19 21:13 - 002817904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2021-04-07 13:38 - 2018-10-19 21:13 - 002171760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2021-04-07 13:38 - 2018-10-19 21:13 - 001293680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2021-04-04 19:34 - 2019-12-07 11:14 - 000000000 __RSD C:\WINDOWS\Media
2021-04-02 15:29 - 2018-10-31 23:36 - 000000000 ____D C:\Program Files\Rockstar Games
2021-04-02 15:29 - 2018-10-31 23:36 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2021-03-31 18:19 - 2021-03-03 18:19 - 000000000 ____D C:\Program Files (x86)\Overwolf
2021-03-30 22:33 - 2018-11-01 13:38 - 000000000 ____D C:\Users\vitek\Desktop\GTA_V_CZ_v7.8_Steam
2021-03-30 12:57 - 2020-10-29 18:29 - 000074608 _____ C:\WINDOWS\system32\FvSDK_x64.dll
2021-03-30 12:57 - 2020-10-29 18:29 - 000064880 _____ C:\WINDOWS\SysWOW64\FvSDK_x86.dll
2021-03-26 11:14 - 2020-10-29 19:11 - 000656176 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2021-03-26 11:14 - 2020-07-31 14:56 - 002105648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2021-03-26 11:06 - 2020-07-31 14:56 - 007207552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2021-03-26 11:06 - 2020-07-31 14:56 - 006154480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2021-03-26 03:59 - 2019-01-11 13:33 - 000000000 ____D C:\Users\vitek\AppData\Roaming\.minecraft
2021-03-26 02:12 - 2020-08-17 17:49 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-03-26 01:35 - 2020-07-31 14:56 - 000063942 _____ C:\WINDOWS\system32\nvinfo.pb
2021-03-25 21:14 - 2018-10-19 20:08 - 005667184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2021-03-25 21:14 - 2018-10-19 20:08 - 002637168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2021-03-25 21:14 - 2018-10-19 20:08 - 001758064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2021-03-25 21:14 - 2018-10-19 20:08 - 000990064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2021-03-25 21:14 - 2018-10-19 20:08 - 000120176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2021-03-25 21:14 - 2018-10-19 20:08 - 000082288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2021-03-22 15:51 - 2018-10-19 21:13 - 000000000 ____D C:\ProgramData\Package Cache
2021-03-22 15:51 - 2018-10-19 20:28 - 000000000 ____D C:\Users\vitek\AppData\Local\D3DSCache
2021-03-20 02:50 - 2021-02-11 12:26 - 000220616 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-03-19 14:09 - 2018-10-19 20:08 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
==================== Files in the root of some directories ========
2020-04-17 13:20 - 2021-03-02 18:50 - 053028851 _____ () C:\Users\vitek\AppData\Roaming\gta5_patch.bin
2020-04-17 13:20 - 2020-04-17 13:20 - 000332800 _____ () C:\Users\vitek\AppData\Roaming\patcher.dll
2020-09-24 18:41 - 2020-11-22 13:17 - 000004627 _____ () C:\Users\vitek\AppData\Local\PlariumPlay.log
2021-01-05 15:44 - 2021-01-05 15:44 - 000002137 _____ () C:\Users\vitek\AppData\Local\recently-used.xbel
2020-05-05 00:04 - 2020-05-05 00:04 - 000007605 _____ () C:\Users\vitek\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-04-2021
Ran by vitek (17-04-2021 19:14:49)
Running from C:\Users\vitek\Desktop
Windows 10 Pro Version 2004 19041.928 (X64) (2020-08-17 15:49:24)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-443703425-2946328903-2492468108-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-443703425-2946328903-2492468108-503 - Limited - Disabled)
Guest (S-1-5-21-443703425-2946328903-2492468108-501 - Limited - Disabled)
vitek (S-1-5-21-443703425-2946328903-2492468108-1001 - Administrator - Enabled) => C:\Users\vitek
WDAGUtilityAccount (S-1-5-21-443703425-2946328903-2492468108-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 21.001.20145 - Adobe Systems Incorporated)
AMD Ryzen Master (HKLM\...\AMD Ryzen Master) (Version: 2.1.1.1472 - Advanced Micro Devices, Inc.)
AMD Ryzen Master SDK (HKLM\...\{716F53C3-0B3F-4FB7-9AD7-9BC7DB7134A1}) (Version: 1.4.0.0659 - Advanced Micro Devices, Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 17.7 - Advanced Micro Devices, Inc.)
Balanced (HKLM-x32\...\{EFD0705E-598B-46D4-8D5B-4539431764B8}) (Version: 2.02.0000 - Název společnosti:) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Canon MG2500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG2500_series) (Version: 1.02 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.78 - Piriform)
CCleaner Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.6.607.0 - Piriform Software) Hidden
Cities Skylines Sunset Harbor (HKLM-x32\...\Cities Skylines Sunset Harbor_is1) (Version: - )
CPUID HWMonitor 1.37 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.37 - CPUID, Inc.)
Crossout Launcher 1.0.3.115 (HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\CrossOutLauncher_is1) (Version: - )
CurseForge (HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\Overwolf_cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj) (Version: 0.168.1.9 - Overwolf app)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.9.0.0677 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
ENE RGB HAL (HKLM\...\{87316426-A33E-41E9-942B-968E928A9A47}) (Version: 1.00.10 - Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32\...\{9f93601b-15ea-4e69-8d7c-dfa0f29ae04e}) (Version: 1.00.10 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{1CD178C9-BB49-4E59-9DA6-3C152E2A9844}) (Version: 1.00.01 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{fe81cfd3-9db4-409d-b0f9-26707d1423c6}) (Version: 1.00.01 - ENE TECHNOLOGY INC.) Hidden
Epic Games Launcher (HKLM-x32\...\{B2081DA9-6C73-403B-BA23-DCE21015C0A1}) (Version: 1.1.293.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
EXPERTool v10.20 (HKLM-x32\...\{551D9481-9487-4D0C-9A1D-6BC3E7B6D991}_is1) (Version: 10.20.0.0 - Gainward Co. Ltd.)
FiveM (HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\CitizenFX_FiveM) (Version: - The CitizenFX Collective)
Fotogalerie (HKLM-x32\...\{F37D360D-9308-4BB1-8515-DC6B637B9486}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
GIMP 2.10.18 (HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\GIMP-2_is1) (Version: 2.10.18 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 90.0.4430.72 - Google LLC)
HD Tune Pro 5.75 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software)
Java 8 Update 201 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2021.3.5164 - Logitech)
Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 89.0.774.77 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\OneDriveSetup.exe) (Version: 21.052.0314.0001 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{99FAF70F-9B61-4AB0-9EC0-B31F98FFDC4A}) (Version: 2.75.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{2D1ED4EA-B59D-4665-ACB3-9325872A300D}) (Version: 1.0.4.0 - Mojang)
Movie Maker (HKLM-x32\...\{3D2CF65C-B544-4308-B996-700D3E5F6C4C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSI APP Manager (HKLM-x32\...\{00F47104-12BA-4E58-A7E6-F456C1BA338E}}_is1) (Version: 1.0.0.32 - MSI)
MSI Gaming APP (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 6.2.0.86 - MSI)
MSI MysticLight (HKLM-x32\...\{93874B70-6C5E-446A-AF4D-E5AC776A0386}}_is1) (Version: 3.0.0.66 - MSI)
Navitel DVR Player (HKLM-x32\...\Navitel DVR Player) (Version: 1.3.12.856 - Navitel s.r.o)
NVIDIA FrameView SDK 1.1.4923.29781331 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29781331 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.22.0.32 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.22.0.32 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.40 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 465.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 465.89 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{7F5DCD33-1039-C3B2-9538-B645B65BBA63}) (Version: 1.00.0000 - Název společnosti:)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.168.0.12 - Overwolf Ltd.)
Phone Nokia USB Driver (HKLM-x32\...\{7F1C627F-7F07-4B51-B50F-FF8C64881D6E}) (Version: 1.1.0 - Mobile)
PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 1.7.17508 - Kakao Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.25.119.2018 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8470 - Realtek Semiconductor Corp.)
Registrace uživatele zařízení Canon MG2500 series (HKLM-x32\...\Registrace uživatele zařízení Canon MG2500 series) (Version: - Canon Inc.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.37.349 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.8.1 - Rockstar Games)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries Engine 3.20.0 (HKLM\...\SteelSeries Engine 3) (Version: 3.20.0 - SteelSeries ApS)
Stronghold Warlords (HKLM-x32\...\Stronghold Warlords_is1) (Version: - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.2.3 - TeamSpeak Systems GmbH)
TruckersMP Launcher 1.0.0.4 (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 1.0.0.4 - TruckersMP Team)
Twitch (HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
Wargaming.net Game Center (HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\Wargaming.net Game Center) (Version: 20.7.2.2851 - Wargaming.net)
WD Drive Agent (HKLM-x32\...\{10BD0B99-6C39-4246-85DA-E4AA34B7707E}) (Version: 1.1.0.18 - Western Digital Technologies, Inc.) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH)
Packages:
=========
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.7.2028.0_x64__rz1tebttyb220 [2021-03-21] (Dolby Laboratories)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-09-20] (Microsoft Corporation)
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.2.0_neutral__8xx8rvfyw5nnt [2020-03-05] (Instagram)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-11] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-11] (Microsoft Corporation) [MS Ad]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.1.137.0_x64__dt26b99r8h8gj [2019-10-25] (Realtek Semiconductor Corp)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.156.595.0_x86__zpdnekdrzrea0 [2021-04-02] (Spotify AB) [Startup Task]
Video Editor & Slideshow Maker -> C:\Program Files\WindowsApps\23140Kinderjoy.VideoEditorSlideshowMaker_1.1.160.0_x64__4k9s1t26vykqt [2019-06-28] (Video Apps Mechanic) [MS Ad]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2021-03-25] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2019-06-05 09:53 - 2005-07-18 13:43 - 000160256 _____ () [File not signed] C:\Program Files (x86)\MSI\APP Manager\unrar.dll
2018-10-19 23:08 - 2017-08-02 14:48 - 000237568 _____ () [File not signed] C:\Program Files (x86)\MSI\MysticLight\LEDControl.dll
2019-06-19 10:25 - 2019-06-19 10:25 - 000209920 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE RGB HAL\x86\AacHal_x86.dll
2018-03-20 14:34 - 2018-03-20 14:34 - 000265728 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE RGB HAL\x86\SB_SMBUS_SDK.dll
2019-07-07 22:56 - 2015-06-23 16:41 - 000082432 _____ (Fintek) [File not signed] C:\Program Files (x86)\MSI\Gaming APP\Lib\FintekUSBDll.dll
2020-06-10 22:44 - 2020-06-10 22:44 - 002146304 _____ (Holtek Semiconductor Inc.) [File not signed] C:\Program Files\SteelSeries\SteelSeries Engine 3\HIDDLL.dll
2020-06-10 22:44 - 2020-06-10 22:44 - 002284032 _____ (Holtek) [File not signed] C:\Program Files\SteelSeries\SteelSeries Engine 3\ISPDLL.dll
2019-10-02 10:30 - 2016-10-03 13:43 - 000399872 _____ (TODO: <公司名稱>) [File not signed] C:\Program Files (x86)\MSI\MysticLight\Lib\SDKDLL.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_201\bin\ssv.dll [2019-01-19] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-01-19] (Oracle America, Inc. -> Oracle Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-04-12 01:38 - 2018-04-12 01:36 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\vitek\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\arsenal gaming.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\StartupApproved\Run: => "Overwolf"
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\StartupApproved\Run: => "Wargaming.net Game Center"
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\StartupApproved\Run: => "Gaijin.Net Updater"
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\StartupApproved\Run: => "PlariumPlay"
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{0FEC0321-5C26-4166-BE6D-5DC630F7A409}] => (Allow) D:\Steam\steamapps\common\Crossout\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{DDF1CA99-202A-4E28-A6C6-925296253698}] => (Allow) D:\Steam\steamapps\common\Crossout\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [UDP Query User{4D064C6E-09C9-48B9-A844-FF9F67F6DF3D}C:\users\vitek\appdata\local\fivem\fivem.exe] => (Allow) C:\users\vitek\appdata\local\fivem\fivem.exe (cfx-collective) [File not signed]
FirewallRules: [TCP Query User{D7F9CEF2-B6CA-4579-9A8B-C56D27037F9E}C:\users\vitek\appdata\local\fivem\fivem.exe] => (Allow) C:\users\vitek\appdata\local\fivem\fivem.exe (cfx-collective) [File not signed]
FirewallRules: [UDP Query User{4C41F899-DD27-4A7E-9856-9EEF54B191B6}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{E3F41E29-C89E-4C40-B9B2-BD408CFED815}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{C67E59BB-33CA-4BC1-B998-5E45CD8FC9D0}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{B23035C9-5CD6-4A19-B19C-1D594ED16AED}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{AD6A98CE-B1CA-453A-BBB5-B84F31474B8D}] => (Allow) C:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{0E95AD82-C8FA-4CC7-BC0E-D80E30CE6C9B}] => (Allow) C:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{A269FB7A-2FE4-4143-804E-26A4EAA55339}D:\runtime\jre-x64\bin\javaw.exe] => (Allow) D:\runtime\jre-x64\bin\javaw.exe
FirewallRules: [TCP Query User{693B2E1C-05D5-4A90-B4AA-8F5111BCF089}D:\runtime\jre-x64\bin\javaw.exe] => (Allow) D:\runtime\jre-x64\bin\javaw.exe
FirewallRules: [{20B8B1F3-B6D9-4355-8E24-2946B7F14FCB}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{C8B158D4-E8F0-4724-A95C-3F0D88AE3D52}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{3D0CB6E3-7577-42B2-B13B-EA654B98003C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{140C1630-FA84-4FD0-953A-E5D016A27708}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{12ED78E6-458F-4193-9E87-A5567A1A8900}] => (Allow) D:\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe (Relic Entertainment, Inc -> Relic Entertainment Inc.)
FirewallRules: [{88F5D4F2-639A-46B5-9DE7-1344CF9F0FE1}] => (Allow) D:\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe (Relic Entertainment, Inc -> Relic Entertainment Inc.)
FirewallRules: [{027530CF-AF7B-4729-8CF9-D786C78697AD}] => (Allow) D:\Steam\steamapps\common\Golf With Your Friends\Golf With Your Friends.exe () [File not signed]
FirewallRules: [{AB76F19D-1CA0-4BDA-A1D7-C46DC673BBCE}] => (Allow) D:\Steam\steamapps\common\Golf With Your Friends\Golf With Your Friends.exe () [File not signed]
FirewallRules: [{27008868-1E3A-4223-BFCF-F0DB0E1B1044}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{6F1CD4AD-CFCE-46EB-89FF-D489F34D8FB4}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{E7F8AE30-94E4-4FEB-A79F-16205AC90964}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{1A2C4577-A22C-444C-8B1C-DF30ED7A091E}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{64EBB3A3-4300-4F3B-8D01-2DDBCEE27FCD}] => (Allow) C:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{527CAF3C-0E15-4399-9F5E-A9B37E71B928}] => (Allow) C:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{F1CEDEC9-B489-4B98-84E1-2ED96CD9A573}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{B7A86D72-FD65-4CCB-9A93-58D8F744E938}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{626C4AB3-C9BB-4DC2-8D46-22F231251B6C}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{06868809-F83D-46ED-8D53-04F92F2FE507}] => (Allow) LPort=2869
FirewallRules: [{FB117FB9-4943-4386-971D-5FF73DA2AE61}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{B553764A-8B08-455B-B9E4-3FBE08E08B33}C:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{3AF2069D-4C1A-4CEF-A361-033A5FE9F111}C:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{86E1E67C-0C01-40BA-AD8B-F88A9EDCEF15}] => (Allow) D:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe () [File not signed]
FirewallRules: [{C6F47269-7FBD-4C08-A84F-A4D983D6FEC2}] => (Allow) D:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe () [File not signed]
FirewallRules: [{5D1EAACE-C933-4060-91FE-0EE2047FDED2}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{E8697B4D-F313-4F3C-87D9-6236CC2CFD63}] => (Allow) D:\Steam\steamapps\common\7 Days To Die\7dLauncher.exe () [File not signed]
FirewallRules: [{1F47178C-3A28-44A5-94F5-9A848C82E19D}] => (Allow) D:\Steam\steamapps\common\7 Days To Die\7dLauncher.exe () [File not signed]
FirewallRules: [TCP Query User{4C999FB6-651D-474A-AA59-7C8DE82314F9}D:\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) D:\steam\steamapps\common\7 days to die\7daystodie.exe () [File not signed]
FirewallRules: [UDP Query User{0B3DB104-BA54-4597-826A-6C6FB11837A4}D:\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) D:\steam\steamapps\common\7 days to die\7daystodie.exe () [File not signed]
FirewallRules: [TCP Query User{8D7AF6F5-9F22-4BC5-836E-0974808997B6}D:\utorrent\utorrent.exe] => (Allow) D:\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{74CF6D0C-D549-4020-AED1-967C3BD166B6}D:\utorrent\utorrent.exe] => (Allow) D:\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{3F19B4CF-7E59-4F81-B88B-58BBB581771B}D:\games\world of warcraft\_retail_\utils\wowvoiceproxy.exe] => (Allow) D:\games\world of warcraft\_retail_\utils\wowvoiceproxy.exe => No File
FirewallRules: [UDP Query User{33F7FCA1-F132-453E-879D-FF9100E4FED8}D:\games\world of warcraft\_retail_\utils\wowvoiceproxy.exe] => (Allow) D:\games\world of warcraft\_retail_\utils\wowvoiceproxy.exe => No File
FirewallRules: [TCP Query User{689790E4-7576-4ACF-8921-1BB2750D8094}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{123DA1AD-EE3C-4A48-8C79-1EF7EE847780}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{1072E3DF-9C4E-4659-8168-399E21EC266D}C:\users\vitek\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\vitek\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (cfx-collective) [File not signed]
FirewallRules: [UDP Query User{259564FD-A19B-4DFB-BCB6-01ADEF06D2C8}C:\users\vitek\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\vitek\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (cfx-collective) [File not signed]
FirewallRules: [{E221B946-093C-4B9D-9D16-FE1D798A4327}] => (Allow) LPort=26789
FirewallRules: [{D80C65CE-7764-47C2-ABB2-CA4B29770080}] => (Allow) D:\Steam\steamapps\common\Stronghold Crusader 2\bin\win32_release\Crusader2.exe () [File not signed]
FirewallRules: [{9B473A3C-40DF-4921-830D-5C6623F5D516}] => (Allow) D:\Steam\steamapps\common\Stronghold Crusader 2\bin\win32_release\Crusader2.exe () [File not signed]
FirewallRules: [TCP Query User{6163F436-AD7E-418E-BE61-EE3153E7A3B1}D:\games\red dead redemption 2\rdr2.exe] => (Allow) D:\games\red dead redemption 2\rdr2.exe => No File
FirewallRules: [UDP Query User{2252B42D-D3B4-44FD-911E-6E3F5D7D3B9A}D:\games\red dead redemption 2\rdr2.exe] => (Allow) D:\games\red dead redemption 2\rdr2.exe => No File
FirewallRules: [{25AA3287-AA3C-480B-9DA4-02C29075F169}] => (Allow) D:\Steam\steamapps\common\Knights and Merchants Historical Version\KM_TPR.exe () [File not signed]
FirewallRules: [{3B8D82B7-1BFB-4DAB-9A93-721DFC80E475}] => (Allow) D:\Steam\steamapps\common\Knights and Merchants Historical Version\KM_TPR.exe () [File not signed]
FirewallRules: [{60733C71-C948-4BEC-B488-BE513E882F9B}] => (Allow) D:\Steam\steamapps\common\Knights and Merchants Historical Version\hd\Knights_and_Merchants_steam.exe () [File not signed]
FirewallRules: [{3EF6D276-1130-43E1-A70A-A0F453CD79E3}] => (Allow) D:\Steam\steamapps\common\Knights and Merchants Historical Version\hd\Knights_and_Merchants_steam.exe () [File not signed]
FirewallRules: [TCP Query User{1F7483C0-16ED-45AE-B0B2-FC05DD2F3334}C:\program files\java\jre1.8.0_201\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_201\bin\javaw.exe
FirewallRules: [UDP Query User{5A1D0D90-1B74-4857-A492-23759F70ADC4}C:\program files\java\jre1.8.0_201\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_201\bin\javaw.exe
FirewallRules: [TCP Query User{8F04F07C-213C-4C5C-A485-27A50B0770AF}D:\stažené soubory\dyson.sphere.program.v0.6.15.5678\dyson.sphere.program.v0.6.15.5678\dyson.sphere.program.v0.6.15.5678\dspgame.exe] => (Allow) D:\stažené soubory\dyson.sphere.program.v0.6.15.5678\dyson.sphere.program.v0.6.15.5678\dyson.sphere.program.v0.6.15.5678\dspgame.exe => No File
FirewallRules: [UDP Query User{D5F3305B-9427-4882-8BF0-155235D103B7}D:\stažené soubory\dyson.sphere.program.v0.6.15.5678\dyson.sphere.program.v0.6.15.5678\dyson.sphere.program.v0.6.15.5678\dspgame.exe] => (Allow) D:\stažené soubory\dyson.sphere.program.v0.6.15.5678\dyson.sphere.program.v0.6.15.5678\dyson.sphere.program.v0.6.15.5678\dspgame.exe => No File
FirewallRules: [TCP Query User{1C2F76D5-DDE8-4894-8D24-77A1CE5899C5}D:\games\stronghold warlords\bin\win32_release\strongholdwarlords.exe] => (Block) D:\games\stronghold warlords\bin\win32_release\strongholdwarlords.exe () [File not signed]
FirewallRules: [UDP Query User{94636316-3BA0-406B-98CF-972D1355BD2C}D:\games\stronghold warlords\bin\win32_release\strongholdwarlords.exe] => (Block) D:\games\stronghold warlords\bin\win32_release\strongholdwarlords.exe () [File not signed]
FirewallRules: [TCP Query User{6E212CD1-7BC7-4914-8AF3-2FDC97E0BAA9}D:\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) D:\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{2A283338-F67F-45F7-8C4E-062C3770E6E9}D:\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) D:\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [{FBD880A7-785B-4DE2-82D6-61486D1D0B00}] => (Allow) D:\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{66935A8A-BCB0-44FD-A1B0-9C0AB62F8770}] => (Allow) D:\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{6C995367-3B81-4641-B4F0-7919C0C418CE}] => (Allow) C:\Program Files (x86)\Overwolf\0.168.0.12\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{CB316440-3E3F-4DAD-A787-1B4C2903FFB7}] => (Allow) C:\Program Files (x86)\Overwolf\0.168.0.12\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{CFF4D419-F92F-4124-ACF8-6F9AFCA42EE7}] => (Block) C:\Program Files (x86)\Overwolf\0.168.0.12\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{FBFF82AD-74F0-4898-9C4F-4C456E435978}] => (Block) C:\Program Files (x86)\Overwolf\0.168.0.12\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{954B364D-65E5-4874-ACA6-ADCBBFDF342C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.156.595.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{55753B71-9CA3-4BBB-A196-CB2CDE83611A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.156.595.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{50DA069C-954A-41A3-960D-E12D366ED064}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.156.595.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{160C2828-5A55-4CA3-B275-6A2D450D0CAA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.156.595.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{2CA2EAB3-653B-4A64-A5B5-6B6DCAF7C709}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.156.595.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{95963D0F-9382-404F-A2FB-3658F5B52A13}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.156.595.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{28A819CD-4155-4BFF-B2AF-87CAA9D15F19}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.156.595.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{13F6F749-1C5C-4121-BB1A-0FF744176CD5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.156.595.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4A0FAAE7-B6FF-4DF3-8F44-DD67AC6AE537}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{1B343077-C52B-437A-8F15-55AD06B2E2C8}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{03FB2667-C764-45CC-A459-CC4CD663C624}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{E6A9FCC8-93B3-4F0E-B55F-79CCA5762012}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [TCP Query User{7F37E17A-F4B5-48F4-926E-1840814D7018}D:\stažené soubory\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\soviet64.exe] => (Block) D:\stažené soubory\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\soviet64.exe () [File not signed]
FirewallRules: [UDP Query User{996F62FE-7FAE-467B-8814-A55E9B6DE176}D:\stažené soubory\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\soviet64.exe] => (Block) D:\stažené soubory\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\soviet64.exe () [File not signed]
FirewallRules: [TCP Query User{802B8996-2196-47E1-9A4A-29E25399FA0B}D:\stažené soubory\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\setupapplication soviet.exe] => (Allow) D:\stažené soubory\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\setupapplication soviet.exe (3DIVISION) [File not signed]
FirewallRules: [UDP Query User{320712CE-089B-4CDF-9754-2823EDBB285B}D:\stažené soubory\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\setupapplication soviet.exe] => (Allow) D:\stažené soubory\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\setupapplication soviet.exe (3DIVISION) [File not signed]
FirewallRules: [{30FBE8F0-DD74-4D21-9B11-5EF8F1AA19D2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{6AB8B20B-AAEF-4BAD-BA05-93B567348905}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D8672D81-2BD1-4FE0-BBE6-162B8F743C51}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{DE50ED53-CF57-4509-9535-7A01C7E1007A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{39A15203-B62C-4BB0-A11B-776C9B4CC82D}D:\stažené soubory\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\soviet.exe] => (Allow) D:\stažené soubory\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\soviet.exe () [File not signed]
FirewallRules: [UDP Query User{FE1E8977-D915-44EF-8E18-1A1AF29CC6F5}D:\stažené soubory\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\soviet.exe] => (Allow) D:\stažené soubory\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\soviet.exe () [File not signed]
FirewallRules: [{4F728B49-BE54-4EA4-9AF6-E82312E4EB6E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{A157270E-DE0C-47B5-951A-DFA7C3176053}] => (Allow) LPort=26820
FirewallRules: [{6DBE18B6-8C72-4E01-AC91-4FCDF1C453E4}] => (Allow) LPort=26822
==================== Restore Points =========================
30-03-2021 18:47:48 Naplánovaný kontrolní bod
08-04-2021 18:31:45 Naplánovaný kontrolní bod
14-04-2021 21:12:22 Instalační služba modulů systému Windows
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (04/17/2021 01:54:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: utorrent.exe, verze: 2.2.1.25534, časové razítko: 0x4e4594ce
Název chybujícího modulu: GDI32.dll, verze: 10.0.19041.746, časové razítko: 0x1baae673
Kód výjimky: 0xc000041d
Posun chyby: 0x00005d67
ID chybujícího procesu: 0x33c4
Čas spuštění chybující aplikace: 0x01d733801df69258
Cesta k chybující aplikaci: D:\uTorrent\utorrent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\GDI32.dll
ID zprávy: 43a7eea4-9069-4a6a-81f9-ae3f784b8174
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (04/17/2021 02:01:03 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: utorrent.exe, verze: 2.2.1.25534, časové razítko: 0x4e4594ce
Název chybujícího modulu: GDI32.dll, verze: 10.0.19041.746, časové razítko: 0x1baae673
Kód výjimky: 0xc000041d
Posun chyby: 0x00005d67
ID chybujícího procesu: 0x3e64
Čas spuštění chybující aplikace: 0x01d732a64877d437
Cesta k chybující aplikaci: D:\uTorrent\utorrent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\GDI32.dll
ID zprávy: ba1f769f-c988-43f8-a9cd-f746a8f4f8a9
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (04/15/2021 02:28:35 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SOVIET.exe, verze: 0.0.0.0, časové razítko: 0x60508852
Název chybujícího modulu: SOVIET.exe, verze: 0.0.0.0, časové razítko: 0x60508852
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000333bfb
ID chybujícího procesu: 0xf14
Čas spuštění chybující aplikace: 0x01d7318799e16815
Cesta k chybující aplikaci: D:\Stažené soubory\Workers.&.Resources.Soviet.Republic.v0.8.3.26\Workers.&.Resources.Soviet.Republic.v0.8.3.26\Workers.&.Resources.Soviet.Republic.v0.8.3.26\SOVIET.exe
Cesta k chybujícímu modulu: D:\Stažené soubory\Workers.&.Resources.Soviet.Republic.v0.8.3.26\Workers.&.Resources.Soviet.Republic.v0.8.3.26\Workers.&.Resources.Soviet.Republic.v0.8.3.26\SOVIET.exe
ID zprávy: 69b05104-d19a-4c26-b401-6d5dc1fd8fb0
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (04/15/2021 12:27:03 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.
Error: (04/15/2021 12:27:03 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
Error: (04/14/2021 02:14:37 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: utorrent.exe, verze: 2.2.1.25534, časové razítko: 0x4e4594ce
Název chybujícího modulu: GDI32.dll, verze: 10.0.19041.746, časové razítko: 0x1baae673
Kód výjimky: 0xc000041d
Posun chyby: 0x00005d67
ID chybujícího procesu: 0x5340
Čas spuštění chybující aplikace: 0x01d7308350198b92
Cesta k chybující aplikaci: D:\uTorrent\utorrent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\GDI32.dll
ID zprávy: 9e68ff2f-3a9e-4815-96ed-b1534645789d
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (04/13/2021 07:05:51 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na HDD (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (04/12/2021 02:59:56 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program javaw.exe verze 8.0.201.9 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 2960
Čas spuštění: 01d72f21d4305485
Čas ukončení: 4
Cesta k aplikaci: C:\Program Files\Java\jre1.8.0_201\bin\javaw.exe
ID hlášení: f2e7c484-5257-46ee-9b33-9374727de129
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
System errors:
=============
Error: (04/17/2021 01:52:09 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: Počítač byl restartován z procesu kontroly chyb. Kontrola chyb: 0x000000be (0xffffbeffffffffe8, 0x8a00000000200121, 0xffffe08d145626a0, 0x000000000000000a). Výpis byl uložen do: C:\WINDOWS\MEMORY.DMP. ID hlášení: 6e31e7c4-2b9f-48fb-b3dd-05397dc9408e
Error: (04/17/2021 01:51:59 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (13:49:45, 17.04.2021) bylo neočekávané.
Error: (04/15/2021 12:26:01 AM) (Source: DCOM) (EventID: 10010) (User: VITEK-PC)
Description: Server microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/15/2021 12:26:01 AM) (Source: DCOM) (EventID: 10010) (User: VITEK-PC)
Description: Server Microsoft.WindowsStore_12101.1001.14.0_x64__8wekyb3d8bbwe!App.AppX8h0bdkbb5frkt9s09fvshhbvqnntmvm1.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/15/2021 12:26:01 AM) (Source: DCOM) (EventID: 10010) (User: VITEK-PC)
Description: Server DolbyLaboratories.DolbyAccess_3.7.2028.0_x64__rz1tebttyb220!App.AppXtzbhf6k67jn9be72jwc3zje4rv3bb4am.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/15/2021 12:26:01 AM) (Source: DCOM) (EventID: 10010) (User: VITEK-PC)
Description: Server NcsiUwpApp_1000.19041.423.0_neutral_neutral_8wekyb3d8bbwe!App.AppXw175g9nmx2zykh9fyt6xjc0xf8vmj1w6.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/15/2021 12:26:01 AM) (Source: DCOM) (EventID: 10010) (User: VITEK-PC)
Description: Server Microsoft.MicrosoftOfficeHub_18.2008.12711.0_x64__8wekyb3d8bbwe!Microsoft.MicrosoftOfficeHub.AppXt4mh7c9swwc5cmd5jgmtmwcfmvkddpn1.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/14/2021 12:59:32 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Steam Client Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Windows Defender:
================
Date: 2021-04-17 00:47:28
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {8D56DC07-CCE3-4D67-B12F-516FEBA48F11}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-04-14 00:53:49
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {C37C697B-C093-4F48-ADAB-2409EB704D50}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-04-13 00:32:23
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {EA4C8C63-36C8-4659-A230-11606365F76E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-04-11 13:28:06
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {06900059-E6D8-4FB7-8697-CB9C8766378C}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-04-09 13:40:23
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {C7582FFA-7836-4C35-B418-A4F6D750BBEE}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
CodeIntegrity:
===============
Date: 2021-03-03 17:21:08
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\vitek\AppData\Roaming\Twitch\Bin\Electron\TwitchUI.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\Overwolf\0.166.1.16\win32\OWExplorer.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 1.00 07/02/2018
Motherboard: Micro-Star International Co., Ltd B450 TOMAHAWK (MS-7C02)
Processor: AMD Ryzen 5 2600 Six-Core Processor
Percentage of memory in use: 36%
Total physical RAM: 16338.24 MB
Available physical RAM: 10448.64 MB
Total Virtual: 26578.24 MB
Available Virtual: 18214.44 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:232.28 GB) (Free:35.87 GB) NTFS
Drive d: (HDD) (Fixed) (Total:931.51 GB) (Free:133.67 GB) NTFS
\\?\Volume{a0806901-c8f2-438e-9b1f-6fcc1d4e3528}\ (Obnovení) (Fixed) (Total:0.49 GB) (Free:0.06 GB) NTFS
\\?\Volume{0ad3927e-b681-4d8e-8b7e-934856e286a9}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 232.9 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
PC funguje normálně ale bojím si ted sednout k pc abych ho něj zas nebouchnul
Posílám FRST log minidump se mi nedaří poslat.. jak na to?
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-04-2021
Ran by vitek (administrator) on VITEK-PC (Micro-Star International Co., Ltd MS-7C02) (17-04-2021 19:13:53)
Running from C:\Users\vitek\Desktop
Loaded Profiles: vitek
Platform: Windows 10 Pro Version 2004 19041.928 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(GAINWARD TECHNOLOGY INT'L LIMITED -> Gainward Co. Ltd.) D:\EXPERTool\TBPanel.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <20>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2103.17603.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12101.1001.14.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\NisSrv.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\APP Manager\AppManager.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\EyeRest.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\TriggerModeMonitor.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\VideoCardMonitorII.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Toast Server\MSIToastServer.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\APP Manager\AppManager_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe
(uTorrent.CZ -> BitTorrent, Inc.) [File not signed] D:\uTorrent\utorrent.exe
(Western Digital Techologies -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Agent\WDDriveAgent.exe
(Western Digital Techologies -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [746440 2018-06-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601928 2018-12-15] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [WDDriveAgent] => C:\Program Files (x86)\Western Digital\WD Drive Agent\WDDriveAgent.exe [2379096 2018-03-26] (Western Digital Techologies -> Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [APP Manager] => C:\Program Files (x86)\MSI\APP Manager\AppManager.exe [3705520 2019-05-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [Command Center] => C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe [835760 2019-04-30] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\Run: [Steam] => D:\Steam\steam.exe [4087528 2021-04-12] (Valve -> Valve Corporation)
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\Run: [TBPanel] => D:\EXPERTool\TBPanel.exe [2438960 2018-10-17] (GAINWARD TECHNOLOGY INT'L LIMITED -> Gainward Co. Ltd.)
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\Run: [Discord] => C:\Users\vitek\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [731240 2018-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33169992 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\Run: [uTorrent] => D:\uTorrent\utorrent.exe [416168 2015-02-22] (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [123792288 2021-04-16] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\Run: [Gaijin.Net Updater] => C:\Users\vitek\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2361600 2019-11-28] (Gaijin Network LTD -> Gaijin Entertainment)
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33131408 2020-11-28] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1747288 2021-03-18] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\RunOnce: [Application Restart #2] => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\MountPoints2: {57cc3e08-0639-11e9-bbf2-309c23e37130} - "E:\setup.exe"
HKLM\...\Windows x64\Print Processors\Canon MG2500 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBX.DLL [30208 2013-03-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG2500 series: C:\Windows\system32\CNMLMBX.DLL [391168 2013-03-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.72\Installer\chrmstp.exe [2021-04-15] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2021-04-15]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS -> SteelSeries ApS)
Startup: C:\Users\vitek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2021-03-03]
ShortcutTarget: Twitch.lnk -> C:\Users\vitek\AppData\Roaming\Twitch\Bin\Twitch.exe (Twitch Interactive, Inc. -> Twitch Interactive, Inc.)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {036F41AA-A447-4441-92A9-B2BE171EDA2B} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe
Task: {0B51EB86-0705-4341-A04A-35CC476F364A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [27616328 2021-03-18] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {124B8CBD-6F5C-4196-AA55-0EE7FA917DDF} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905584 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {13B82B8B-F321-457D-957E-9D112F6893A5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {29AC77D0-D3BB-4111-BB60-EE1EA5F15702} - System32\Tasks\EXPERTool => D:\EXPERTool\TBPanel.exe [2438960 2018-10-17] (GAINWARD TECHNOLOGY INT'L LIMITED -> Gainward Co. Ltd.)
Task: {2E1AF66F-98ED-461C-B38D-10343D5D6445} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {34E86712-6A33-4EE3-B919-3C1D64E52119} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {361EAF6E-FE2D-46F3-8C19-1BE260BA2FA9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {60C0B45C-5829-4D80-9175-C55E1CFC8561} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6326A153-6FFF-48D3-80A5-CB679EBFB99E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MpCmdRun.exe [566368 2021-04-12] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {63F6B716-B8A5-4438-B1BC-151D5EA49417} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-09-29] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {68B54F95-7684-4A0D-BEC2-11FA42BA3090} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-03-18] (Piriform Software Ltd -> Piriform)
Task: {6F5B2379-1874-4D53-8DDC-EFEA2C01A991} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {785FC0CA-40E6-4E0A-B30F-40FFC0E31E7A} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-09-29] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {7AFA946F-540D-4AE6-9A91-C8566CBE7024} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905584 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7ECDF896-720F-4F4B-BED6-AF70D2B5F16B} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {899DCD34-4B8C-4E97-8E61-AF411E2FCC0E} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8C8D38C1-8B34-45E6-A687-58F1EAB76E8B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-10-19] (Google Inc -> Google Inc.)
Task: {8E9149D8-0992-47E1-AC72-4D1974B0B5AD} - System32\Tasks\Norton Security Scan for vitek => C:\PROGRA~2\NORTON~2\Engine\461~1.150\Nss.exe
Task: {950E4C3E-27A5-43CD-AF03-8A9EE2F988A0} - System32\Tasks\MSI_Toast_Server => C:\Program Files (x86)\MSI\MSI Toast Server\MSIToastServer.exe [31904 2018-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
Task: {9A6502CE-CA74-44FA-8038-AC7CAB4655C0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-10-19] (Google Inc -> Google Inc.)
Task: {A205545B-8D53-4845-A683-D39B771FE7F4} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AA4A8021-0F9C-4194-8BF1-F0E144CD3586} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1260400 2021-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AA936059-F2DD-4236-96FC-0AF253E8E5FC} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe
Task: {C1F3810E-29C7-48DD-9E05-F38853D2ED52} - System32\Tasks\MSILEDKeeper_Host => C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe [1068688 2019-08-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {C4E64233-6610-4078-90D6-55D77103EA6F} - System32\Tasks\MSIGH_Host => C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe [3354296 2019-01-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
Task: {C7A606BD-64BE-44D6-97A9-3994C570609C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3336560 2021-04-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D5A8F596-C49B-43C5-8FB7-66182FE00400} - System32\Tasks\AMDAutoUpdate => C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe [677624 2019-11-21] (Advanced Micro Devices INC. -> )
Task: {DE9DDD1A-EA8C-4C4A-BF2B-FDFEED4F7575} - System32\Tasks\MSISW_Host => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {ECE4C001-7185-4869-B53F-15A894D73572} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2491736 2021-03-18] (Overwolf Ltd -> Overwolf LTD)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\MSIGH_Host.job => C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe
Task: C:\WINDOWS\Tasks\MSILEDKeeper_Host.job => C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe
Task: C:\WINDOWS\Tasks\MSISW_Host.job => C:\WINDOWS\SysWOW64\muachost.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{8964d957-5ab4-46e2-9dd6-778ddad6c01a}: [DhcpNameServer] 192.168.0.1
Edge:
=======
DownloadDir: C:\Users\vitek\Downloads
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge Profile: C:\Users\vitek\AppData\Local\Microsoft\Edge\User Data\Default [2021-04-17]
Edge DownloadDir: C:\Users\vitek\Downloads
Edge StartupUrls: Default -> "hxxps://sk0.forgeofempires.com/page/"
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-01-19] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-01-19] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [No File]
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [No File]
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [No File]
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [No File]
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.6.607.0\npCCleanerBrowserUpdate3.dll [No File]
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.6.607.0\npCCleanerBrowserUpdate3.dll [No File]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-03-06] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [No File]
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [No File]
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [No File]
FF Plugin HKU\S-1-5-21-443703425-2946328903-2492468108-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [No File]
FF Plugin HKU\S-1-5-21-443703425-2946328903-2492468108-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [No File]
FF Plugin HKU\S-1-5-21-443703425-2946328903-2492468108-1001: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [No File]
Chrome:
=======
CHR Profile: C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default [2021-04-17]
CHR DownloadDir: D:\Stažené soubory
CHR Notifications: Default -> hxxps://steamcommunity.com
CHR HomePage: Default -> hxxps://www.google.com/
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-10-19]
CHR Extension: (BetterTTV) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2021-03-15]
CHR Extension: (Dokumenty) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-10-19]
CHR Extension: (Disk Google) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (YouTube) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-10-19]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-01-29]
CHR Extension: (Tipli do prohlížeče) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbnfnbehhjknomdbfhcobpgpphnlnikp [2021-01-23]
CHR Extension: (Tabulky) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-10-19]
CHR Extension: (Dokumenty Google offline) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-03-12]
CHR Extension: (Carbon Blackout) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ialnhggmaghopmhanfnjjneegopfpbdj [2020-01-06]
CHR Extension: (Twitch Now) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlmbdmpjmlijibeockamioakdpmhjnpk [2020-07-01]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-16]
CHR Extension: (Hlídač Shopů) - C:\Users\vitek\AppData\Local\Google\Chrome\User Data\Default\Extensions\plmlonggbfebcjelncogcnclagkmkikk [2021-03-06]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8403672 2019-02-02] (BattlEye Innovations e.K. -> )
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3644008 2018-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-05-22] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [409456 2021-03-30] (NVIDIA Corporation -> NVIDIA)
R2 GamingApp_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe [46776 2018-09-06] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 GamingHotkey_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe [2027192 2019-01-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10605472 2021-04-16] (Logitech Inc -> Logitech, Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-01-13] (Malwarebytes Inc -> Malwarebytes)
S3 MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService_x64.exe [2669240 2018-01-12] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\MSICommService.exe [2343608 2018-11-19] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService_x64.exe [2725048 2017-12-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [2255544 2018-11-19] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2507952 2019-05-08] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [2136248 2018-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [2742968 2018-08-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_ActiveX_Service; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe [86688 2018-07-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_AppManager_Service; C:\Program Files (x86)\MSI\APP Manager\AppManager_Service.exe [2055352 2019-01-04] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MysticLight2_Service; C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe [34976 2018-12-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2491736 2021-03-18] (Overwolf Ltd -> Overwolf LTD)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1332632 2021-04-02] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5361256 2021-04-14] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesUpdateService.exe [31568 2021-04-14] (SteelSeries ApS -> )
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [524632 2018-03-26] (Western Digital Techologies -> Western Digital Technologies, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\NisSrv.exe [2624104 2021-04-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2103.7-0\MsMpEng.exe [128376 2021-04-12] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2018-12-23] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2018-12-23] (Disc Soft Ltd -> Disc Soft Ltd)
R1 EneIo; C:\WINDOWS\system32\drivers\ene.sys [17624 2019-05-22] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 I2cHkBurn; C:\WINDOWS\system32\drivers\I2cHkBurn.sys [41760 2015-07-27] (Feature Integration Technology -> FINTEK Corp.)
R2 LGHUBTemperatureService; C:\Program Files\LGHUB\logi_core_temp.sys [22864 2021-04-16] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [37200 2021-03-18] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [25928 2021-03-18] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66896 2021-03-18] (Logitech Inc -> Logitech)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220616 2021-03-20] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-01-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-04-11] (Malwarebytes Inc -> Malwarebytes)
R3 Neo_VPN; C:\WINDOWS\System32\drivers\Neo6_x64_VPN.sys [38216 2018-12-30] (SoftEther Corporation -> SoftEther Corporation)
R3 NTIOLib_MysticLight; C:\Program Files (x86)\MSI\MysticLight\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [46776 2019-02-01] (SteelSeries ApS -> )
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2021-04-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [421088 2021-04-12] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [72928 2021-04-12] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-04-17 19:12 - 2021-04-17 19:13 - 000048432 _____ C:\Users\vitek\Desktop\Addition.txt
2021-04-17 19:11 - 2021-04-17 19:14 - 000031773 _____ C:\Users\vitek\Desktop\FRST.txt
2021-04-17 19:11 - 2021-04-17 19:11 - 002298368 _____ (Farbar) C:\Users\vitek\Desktop\FRST64.exe
2021-04-17 13:51 - 2021-04-17 13:52 - 000876132 _____ C:\WINDOWS\Minidump\041721-5421-01.dmp
2021-04-17 13:51 - 2021-04-17 13:52 - 000000000 ____D C:\WINDOWS\Minidump
2021-04-17 13:51 - 2021-04-17 13:51 - 1267757072 _____ C:\WINDOWS\MEMORY.DMP
2021-04-17 11:42 - 2021-04-17 11:42 - 000000650 _____ C:\Users\Public\Desktop\Logitech G HUB.lnk
2021-04-17 11:42 - 2021-04-17 11:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2021-04-17 11:42 - 2021-04-17 11:42 - 000000000 ____D C:\ProgramData\Logishrd
2021-04-17 11:42 - 2021-04-17 11:42 - 000000000 ____D C:\Program Files\LGHUB
2021-04-14 21:17 - 2021-04-14 21:17 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-04-14 21:17 - 2021-04-14 21:17 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-04-14 21:17 - 2021-04-14 21:17 - 000011357 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-04-14 19:48 - 2021-04-14 19:48 - 000002697 _____ C:\Users\vitek\Desktop\SETUPAPPLICATION SOVIET – zástupce.lnk
2021-04-12 21:39 - 2021-04-12 21:39 - 000000000 ____D C:\WINDOWS\system32\lxss
2021-04-12 21:39 - 2021-03-26 11:17 - 001855192 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-04-12 21:39 - 2021-03-26 11:17 - 001855192 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-04-12 21:39 - 2021-03-26 11:17 - 001452312 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-04-12 21:39 - 2021-03-26 11:17 - 001435864 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-04-12 21:39 - 2021-03-26 11:17 - 001435864 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-04-12 21:39 - 2021-03-26 11:17 - 001191696 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-04-12 21:39 - 2021-03-26 11:17 - 001094864 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-04-12 21:39 - 2021-03-26 11:17 - 001094864 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-04-12 21:39 - 2021-03-26 11:17 - 000948952 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-04-12 21:39 - 2021-03-26 11:17 - 000948952 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-04-12 21:39 - 2021-03-26 11:15 - 000715568 _____ C:\WINDOWS\system32\nvofapi64.dll
2021-04-12 21:39 - 2021-03-26 11:15 - 000575760 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2021-04-12 21:39 - 2021-03-26 11:14 - 001730864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6446589.dll
2021-04-12 21:39 - 2021-03-26 11:14 - 001590064 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2021-04-12 21:39 - 2021-03-26 11:14 - 001514288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2021-04-12 21:39 - 2021-03-26 11:14 - 001490224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6446589.dll
2021-04-12 21:39 - 2021-03-26 11:14 - 001166128 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2021-04-12 21:39 - 2021-03-26 11:14 - 000811792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2021-04-12 21:39 - 2021-03-26 11:14 - 000675120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2021-04-12 21:39 - 2021-03-26 11:14 - 000563992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2021-04-12 21:39 - 2021-03-26 11:13 - 008316192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2021-04-12 21:39 - 2021-03-26 11:13 - 007433496 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2021-04-12 21:39 - 2021-03-26 11:13 - 004795160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2021-04-12 21:39 - 2021-03-26 11:13 - 002823440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2021-04-12 21:32 - 2020-08-14 09:59 - 000043416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\NvModuleTracker.sys
2021-04-04 20:07 - 2021-04-04 20:07 - 000000000 ___HD C:\ProgramData\CanonIJQuickMenu
2021-04-04 19:48 - 2021-04-04 20:19 - 000000000 ____D C:\Users\vitek\AppData\Roaming\Canon
2021-04-04 19:34 - 2021-04-04 20:05 - 000000000 ____D C:\ProgramData\CanonIJWSpt
2021-04-04 19:34 - 2021-04-04 19:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registrace uživatele zařízení Canon MG2500 series
2021-04-04 19:34 - 2013-02-04 15:10 - 000321536 _____ (CANON INC.) C:\WINDOWS\SysWOW64\CNC_BXL.dll
2021-04-04 19:34 - 2012-11-09 10:43 - 000088064 _____ C:\WINDOWS\SysWOW64\CNC176DD.TBL
2021-04-04 19:34 - 2008-08-25 18:02 - 000015872 _____ (CANON INC.) C:\WINDOWS\SysWOW64\CNHMCA.dll
2021-04-04 19:33 - 2021-04-04 19:33 - 000000000 ___HD C:\Program Files\CanonBJ
2021-04-04 19:32 - 2021-04-04 20:19 - 000000000 ____D C:\Program Files (x86)\Canon
2021-04-04 19:31 - 2021-04-04 19:31 - 049446448 _____ C:\Users\vitek\Desktop\win-mg2500-1_1-mcd.exe
2021-04-04 19:16 - 2021-04-04 19:16 - 015799230 _____ C:\Users\vitek\Desktop\Klaziena_-_EN.pdf
2021-04-03 14:17 - 2021-04-03 14:17 - 000671165 _____ C:\Users\vitek\Desktop\Uzavreni_smlouvy.pdf
2021-03-29 20:35 - 2021-03-29 20:35 - 000076245 _____ C:\Users\vitek\Desktop\Export.pdf
2021-03-27 19:11 - 2021-03-27 19:11 - 008665297 _____ C:\Users\vitek\Desktop\Šatkomaniačky- schémata 20 v 1.pdf
2021-03-26 19:16 - 2021-03-26 19:16 - 000051284 _____ C:\Users\vitek\Desktop\moreoverlays-1.15.1-mc1.12.2.jar
2021-03-25 23:46 - 2021-03-25 23:41 - 005465516 _____ () C:\Users\vitek\Desktop\Technic Origo.exe
2021-03-25 00:53 - 2021-03-25 00:53 - 011405203 _____ C:\Users\vitek\Desktop\Můj film.mp4
2021-03-18 01:39 - 2021-03-18 01:39 - 000066896 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_xlcore.sys
2021-03-18 01:39 - 2021-03-18 01:39 - 000037200 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_bus_enum.sys
2021-03-18 01:39 - 2021-03-18 01:39 - 000025928 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_vir_hid.sys
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-04-17 19:14 - 2020-01-29 14:20 - 000000000 ____D C:\FRST
2021-04-17 19:09 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-04-17 18:59 - 2020-08-17 17:47 - 001605602 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-04-17 18:59 - 2019-12-07 16:43 - 000682238 _____ C:\WINDOWS\system32\perfh005.dat
2021-04-17 18:59 - 2019-12-07 16:43 - 000137054 _____ C:\WINDOWS\system32\perfc005.dat
2021-04-17 18:59 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-04-17 18:58 - 2018-10-19 20:08 - 000000000 ____D C:\ProgramData\NVIDIA
2021-04-17 18:56 - 2020-01-08 17:35 - 000000000 ____D C:\Users\vitek\AppData\Roaming\LGHUB
2021-04-17 18:56 - 2020-01-08 17:35 - 000000000 ____D C:\Users\vitek\AppData\Local\LGHUB
2021-04-17 18:56 - 2019-05-23 13:35 - 000000000 ____D C:\Program Files\CCleaner
2021-04-17 13:55 - 2020-08-17 17:41 - 000000000 ____D C:\Users\vitek
2021-04-17 13:54 - 2018-10-25 22:01 - 000000000 ____D C:\Users\vitek\AppData\Local\CrashDumps
2021-04-17 13:51 - 2020-08-17 17:49 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-04-17 13:51 - 2020-08-17 17:40 - 000008192 ___SH C:\DumpStack.log.tmp
2021-04-17 13:51 - 2020-08-17 17:40 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-04-17 12:42 - 2021-03-13 23:15 - 000000000 ____D C:\Users\vitek\AppData\Roaming\.technic
2021-04-17 02:10 - 2018-10-20 09:47 - 000000000 ____D C:\Users\vitek\AppData\Roaming\discord
2021-04-16 18:51 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-04-16 18:51 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-04-16 18:51 - 2018-10-19 20:02 - 000000000 ____D C:\Users\vitek\AppData\Local\PlaceholderTileLogoFolder
2021-04-16 11:55 - 2020-06-05 12:51 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-04-16 11:55 - 2020-06-05 12:51 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-04-15 02:29 - 2018-10-19 21:29 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-04-15 02:29 - 2018-10-19 21:29 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-04-15 00:27 - 2020-08-17 17:40 - 000258096 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-04-15 00:27 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-04-15 00:26 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-04-15 00:26 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-04-15 00:26 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-04-15 00:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-04-15 00:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-04-15 00:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-04-15 00:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-04-15 00:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-04-15 00:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-04-15 00:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-04-15 00:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-04-15 00:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-04-15 00:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-04-14 21:19 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-04-14 21:17 - 2020-08-17 17:45 - 002877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-04-14 21:12 - 2018-10-19 22:28 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-04-14 21:10 - 2018-10-19 22:27 - 131963968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-04-12 23:40 - 2020-08-17 17:49 - 000003364 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-443703425-2946328903-2492468108-1001
2021-04-12 23:40 - 2020-08-17 17:41 - 000002361 _____ C:\Users\vitek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-04-12 23:40 - 2018-10-19 20:02 - 000000000 ___RD C:\Users\vitek\OneDrive
2021-04-12 22:50 - 2018-10-19 21:14 - 000000000 ____D C:\Users\vitek\AppData\Local\NVIDIA
2021-04-12 21:39 - 2018-10-19 20:07 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-04-12 21:32 - 2020-08-17 17:49 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-12 21:32 - 2020-08-17 17:49 - 000004106 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-12 21:32 - 2020-08-17 17:49 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-12 21:32 - 2020-08-17 17:49 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-12 21:32 - 2020-08-17 17:49 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-12 21:32 - 2020-08-17 17:49 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-12 21:32 - 2020-08-17 17:49 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-12 21:32 - 2020-08-17 17:49 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-12 21:32 - 2020-08-17 17:49 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-12 21:32 - 2020-08-17 17:49 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-04-12 21:32 - 2018-10-19 21:14 - 000001443 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2021-04-12 21:32 - 2018-10-19 20:08 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-04-12 21:32 - 2018-10-19 20:07 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2021-04-12 00:09 - 2018-10-19 19:52 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-04-11 15:13 - 2021-01-13 16:19 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-04-11 15:13 - 2019-09-02 12:47 - 000199128 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-04-07 13:38 - 2018-10-19 21:13 - 002817904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2021-04-07 13:38 - 2018-10-19 21:13 - 002171760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2021-04-07 13:38 - 2018-10-19 21:13 - 001293680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2021-04-04 19:34 - 2019-12-07 11:14 - 000000000 __RSD C:\WINDOWS\Media
2021-04-02 15:29 - 2018-10-31 23:36 - 000000000 ____D C:\Program Files\Rockstar Games
2021-04-02 15:29 - 2018-10-31 23:36 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2021-03-31 18:19 - 2021-03-03 18:19 - 000000000 ____D C:\Program Files (x86)\Overwolf
2021-03-30 22:33 - 2018-11-01 13:38 - 000000000 ____D C:\Users\vitek\Desktop\GTA_V_CZ_v7.8_Steam
2021-03-30 12:57 - 2020-10-29 18:29 - 000074608 _____ C:\WINDOWS\system32\FvSDK_x64.dll
2021-03-30 12:57 - 2020-10-29 18:29 - 000064880 _____ C:\WINDOWS\SysWOW64\FvSDK_x86.dll
2021-03-26 11:14 - 2020-10-29 19:11 - 000656176 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2021-03-26 11:14 - 2020-07-31 14:56 - 002105648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2021-03-26 11:06 - 2020-07-31 14:56 - 007207552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2021-03-26 11:06 - 2020-07-31 14:56 - 006154480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2021-03-26 03:59 - 2019-01-11 13:33 - 000000000 ____D C:\Users\vitek\AppData\Roaming\.minecraft
2021-03-26 02:12 - 2020-08-17 17:49 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-03-26 01:35 - 2020-07-31 14:56 - 000063942 _____ C:\WINDOWS\system32\nvinfo.pb
2021-03-25 21:14 - 2018-10-19 20:08 - 005667184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2021-03-25 21:14 - 2018-10-19 20:08 - 002637168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2021-03-25 21:14 - 2018-10-19 20:08 - 001758064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2021-03-25 21:14 - 2018-10-19 20:08 - 000990064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2021-03-25 21:14 - 2018-10-19 20:08 - 000120176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2021-03-25 21:14 - 2018-10-19 20:08 - 000082288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2021-03-22 15:51 - 2018-10-19 21:13 - 000000000 ____D C:\ProgramData\Package Cache
2021-03-22 15:51 - 2018-10-19 20:28 - 000000000 ____D C:\Users\vitek\AppData\Local\D3DSCache
2021-03-20 02:50 - 2021-02-11 12:26 - 000220616 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-03-19 14:09 - 2018-10-19 20:08 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
==================== Files in the root of some directories ========
2020-04-17 13:20 - 2021-03-02 18:50 - 053028851 _____ () C:\Users\vitek\AppData\Roaming\gta5_patch.bin
2020-04-17 13:20 - 2020-04-17 13:20 - 000332800 _____ () C:\Users\vitek\AppData\Roaming\patcher.dll
2020-09-24 18:41 - 2020-11-22 13:17 - 000004627 _____ () C:\Users\vitek\AppData\Local\PlariumPlay.log
2021-01-05 15:44 - 2021-01-05 15:44 - 000002137 _____ () C:\Users\vitek\AppData\Local\recently-used.xbel
2020-05-05 00:04 - 2020-05-05 00:04 - 000007605 _____ () C:\Users\vitek\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-04-2021
Ran by vitek (17-04-2021 19:14:49)
Running from C:\Users\vitek\Desktop
Windows 10 Pro Version 2004 19041.928 (X64) (2020-08-17 15:49:24)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-443703425-2946328903-2492468108-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-443703425-2946328903-2492468108-503 - Limited - Disabled)
Guest (S-1-5-21-443703425-2946328903-2492468108-501 - Limited - Disabled)
vitek (S-1-5-21-443703425-2946328903-2492468108-1001 - Administrator - Enabled) => C:\Users\vitek
WDAGUtilityAccount (S-1-5-21-443703425-2946328903-2492468108-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 21.001.20145 - Adobe Systems Incorporated)
AMD Ryzen Master (HKLM\...\AMD Ryzen Master) (Version: 2.1.1.1472 - Advanced Micro Devices, Inc.)
AMD Ryzen Master SDK (HKLM\...\{716F53C3-0B3F-4FB7-9AD7-9BC7DB7134A1}) (Version: 1.4.0.0659 - Advanced Micro Devices, Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 17.7 - Advanced Micro Devices, Inc.)
Balanced (HKLM-x32\...\{EFD0705E-598B-46D4-8D5B-4539431764B8}) (Version: 2.02.0000 - Název společnosti:) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Canon MG2500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG2500_series) (Version: 1.02 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.78 - Piriform)
CCleaner Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.6.607.0 - Piriform Software) Hidden
Cities Skylines Sunset Harbor (HKLM-x32\...\Cities Skylines Sunset Harbor_is1) (Version: - )
CPUID HWMonitor 1.37 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.37 - CPUID, Inc.)
Crossout Launcher 1.0.3.115 (HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\CrossOutLauncher_is1) (Version: - )
CurseForge (HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\Overwolf_cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj) (Version: 0.168.1.9 - Overwolf app)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.9.0.0677 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
ENE RGB HAL (HKLM\...\{87316426-A33E-41E9-942B-968E928A9A47}) (Version: 1.00.10 - Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32\...\{9f93601b-15ea-4e69-8d7c-dfa0f29ae04e}) (Version: 1.00.10 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{1CD178C9-BB49-4E59-9DA6-3C152E2A9844}) (Version: 1.00.01 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{fe81cfd3-9db4-409d-b0f9-26707d1423c6}) (Version: 1.00.01 - ENE TECHNOLOGY INC.) Hidden
Epic Games Launcher (HKLM-x32\...\{B2081DA9-6C73-403B-BA23-DCE21015C0A1}) (Version: 1.1.293.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
EXPERTool v10.20 (HKLM-x32\...\{551D9481-9487-4D0C-9A1D-6BC3E7B6D991}_is1) (Version: 10.20.0.0 - Gainward Co. Ltd.)
FiveM (HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\CitizenFX_FiveM) (Version: - The CitizenFX Collective)
Fotogalerie (HKLM-x32\...\{F37D360D-9308-4BB1-8515-DC6B637B9486}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
GIMP 2.10.18 (HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\GIMP-2_is1) (Version: 2.10.18 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 90.0.4430.72 - Google LLC)
HD Tune Pro 5.75 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software)
Java 8 Update 201 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2021.3.5164 - Logitech)
Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 89.0.774.77 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\OneDriveSetup.exe) (Version: 21.052.0314.0001 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{99FAF70F-9B61-4AB0-9EC0-B31F98FFDC4A}) (Version: 2.75.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{2D1ED4EA-B59D-4665-ACB3-9325872A300D}) (Version: 1.0.4.0 - Mojang)
Movie Maker (HKLM-x32\...\{3D2CF65C-B544-4308-B996-700D3E5F6C4C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSI APP Manager (HKLM-x32\...\{00F47104-12BA-4E58-A7E6-F456C1BA338E}}_is1) (Version: 1.0.0.32 - MSI)
MSI Gaming APP (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 6.2.0.86 - MSI)
MSI MysticLight (HKLM-x32\...\{93874B70-6C5E-446A-AF4D-E5AC776A0386}}_is1) (Version: 3.0.0.66 - MSI)
Navitel DVR Player (HKLM-x32\...\Navitel DVR Player) (Version: 1.3.12.856 - Navitel s.r.o)
NVIDIA FrameView SDK 1.1.4923.29781331 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29781331 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.22.0.32 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.22.0.32 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.40 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 465.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 465.89 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{7F5DCD33-1039-C3B2-9538-B645B65BBA63}) (Version: 1.00.0000 - Název společnosti:)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.168.0.12 - Overwolf Ltd.)
Phone Nokia USB Driver (HKLM-x32\...\{7F1C627F-7F07-4B51-B50F-FF8C64881D6E}) (Version: 1.1.0 - Mobile)
PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 1.7.17508 - Kakao Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.25.119.2018 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8470 - Realtek Semiconductor Corp.)
Registrace uživatele zařízení Canon MG2500 series (HKLM-x32\...\Registrace uživatele zařízení Canon MG2500 series) (Version: - Canon Inc.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.37.349 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.8.1 - Rockstar Games)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries Engine 3.20.0 (HKLM\...\SteelSeries Engine 3) (Version: 3.20.0 - SteelSeries ApS)
Stronghold Warlords (HKLM-x32\...\Stronghold Warlords_is1) (Version: - )
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.2.3 - TeamSpeak Systems GmbH)
TruckersMP Launcher 1.0.0.4 (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 1.0.0.4 - TruckersMP Team)
Twitch (HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
Wargaming.net Game Center (HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\Wargaming.net Game Center) (Version: 20.7.2.2851 - Wargaming.net)
WD Drive Agent (HKLM-x32\...\{10BD0B99-6C39-4246-85DA-E4AA34B7707E}) (Version: 1.1.0.18 - Western Digital Technologies, Inc.) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.90 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.90.0 - win.rar GmbH)
Packages:
=========
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.7.2028.0_x64__rz1tebttyb220 [2021-03-21] (Dolby Laboratories)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-09-20] (Microsoft Corporation)
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.2.0_neutral__8xx8rvfyw5nnt [2020-03-05] (Instagram)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-11] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-11] (Microsoft Corporation) [MS Ad]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.1.137.0_x64__dt26b99r8h8gj [2019-10-25] (Realtek Semiconductor Corp)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.156.595.0_x86__zpdnekdrzrea0 [2021-04-02] (Spotify AB) [Startup Task]
Video Editor & Slideshow Maker -> C:\Program Files\WindowsApps\23140Kinderjoy.VideoEditorSlideshowMaker_1.1.160.0_x64__4k9s1t26vykqt [2019-06-28] (Video Apps Mechanic) [MS Ad]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2021-03-25] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-03-26] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2019-06-05 09:53 - 2005-07-18 13:43 - 000160256 _____ () [File not signed] C:\Program Files (x86)\MSI\APP Manager\unrar.dll
2018-10-19 23:08 - 2017-08-02 14:48 - 000237568 _____ () [File not signed] C:\Program Files (x86)\MSI\MysticLight\LEDControl.dll
2019-06-19 10:25 - 2019-06-19 10:25 - 000209920 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE RGB HAL\x86\AacHal_x86.dll
2018-03-20 14:34 - 2018-03-20 14:34 - 000265728 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE RGB HAL\x86\SB_SMBUS_SDK.dll
2019-07-07 22:56 - 2015-06-23 16:41 - 000082432 _____ (Fintek) [File not signed] C:\Program Files (x86)\MSI\Gaming APP\Lib\FintekUSBDll.dll
2020-06-10 22:44 - 2020-06-10 22:44 - 002146304 _____ (Holtek Semiconductor Inc.) [File not signed] C:\Program Files\SteelSeries\SteelSeries Engine 3\HIDDLL.dll
2020-06-10 22:44 - 2020-06-10 22:44 - 002284032 _____ (Holtek) [File not signed] C:\Program Files\SteelSeries\SteelSeries Engine 3\ISPDLL.dll
2019-10-02 10:30 - 2016-10-03 13:43 - 000399872 _____ (TODO: <公司名稱>) [File not signed] C:\Program Files (x86)\MSI\MysticLight\Lib\SDKDLL.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_201\bin\ssv.dll [2019-01-19] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-01-19] (Oracle America, Inc. -> Oracle Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-04-12 01:38 - 2018-04-12 01:36 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\vitek\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\arsenal gaming.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\StartupApproved\Run: => "Overwolf"
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\StartupApproved\Run: => "Wargaming.net Game Center"
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\StartupApproved\Run: => "Gaijin.Net Updater"
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\StartupApproved\Run: => "PlariumPlay"
HKU\S-1-5-21-443703425-2946328903-2492468108-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{0FEC0321-5C26-4166-BE6D-5DC630F7A409}] => (Allow) D:\Steam\steamapps\common\Crossout\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [{DDF1CA99-202A-4E28-A6C6-925296253698}] => (Allow) D:\Steam\steamapps\common\Crossout\launcher.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [UDP Query User{4D064C6E-09C9-48B9-A844-FF9F67F6DF3D}C:\users\vitek\appdata\local\fivem\fivem.exe] => (Allow) C:\users\vitek\appdata\local\fivem\fivem.exe (cfx-collective) [File not signed]
FirewallRules: [TCP Query User{D7F9CEF2-B6CA-4579-9A8B-C56D27037F9E}C:\users\vitek\appdata\local\fivem\fivem.exe] => (Allow) C:\users\vitek\appdata\local\fivem\fivem.exe (cfx-collective) [File not signed]
FirewallRules: [UDP Query User{4C41F899-DD27-4A7E-9856-9EEF54B191B6}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{E3F41E29-C89E-4C40-B9B2-BD408CFED815}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{C67E59BB-33CA-4BC1-B998-5E45CD8FC9D0}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{B23035C9-5CD6-4A19-B19C-1D594ED16AED}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{AD6A98CE-B1CA-453A-BBB5-B84F31474B8D}] => (Allow) C:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{0E95AD82-C8FA-4CC7-BC0E-D80E30CE6C9B}] => (Allow) C:\SteamLibrary\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{A269FB7A-2FE4-4143-804E-26A4EAA55339}D:\runtime\jre-x64\bin\javaw.exe] => (Allow) D:\runtime\jre-x64\bin\javaw.exe
FirewallRules: [TCP Query User{693B2E1C-05D5-4A90-B4AA-8F5111BCF089}D:\runtime\jre-x64\bin\javaw.exe] => (Allow) D:\runtime\jre-x64\bin\javaw.exe
FirewallRules: [{20B8B1F3-B6D9-4355-8E24-2946B7F14FCB}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{C8B158D4-E8F0-4724-A95C-3F0D88AE3D52}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{3D0CB6E3-7577-42B2-B13B-EA654B98003C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{140C1630-FA84-4FD0-953A-E5D016A27708}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{12ED78E6-458F-4193-9E87-A5567A1A8900}] => (Allow) D:\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe (Relic Entertainment, Inc -> Relic Entertainment Inc.)
FirewallRules: [{88F5D4F2-639A-46B5-9DE7-1344CF9F0FE1}] => (Allow) D:\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe (Relic Entertainment, Inc -> Relic Entertainment Inc.)
FirewallRules: [{027530CF-AF7B-4729-8CF9-D786C78697AD}] => (Allow) D:\Steam\steamapps\common\Golf With Your Friends\Golf With Your Friends.exe () [File not signed]
FirewallRules: [{AB76F19D-1CA0-4BDA-A1D7-C46DC673BBCE}] => (Allow) D:\Steam\steamapps\common\Golf With Your Friends\Golf With Your Friends.exe () [File not signed]
FirewallRules: [{27008868-1E3A-4223-BFCF-F0DB0E1B1044}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{6F1CD4AD-CFCE-46EB-89FF-D489F34D8FB4}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{E7F8AE30-94E4-4FEB-A79F-16205AC90964}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{1A2C4577-A22C-444C-8B1C-DF30ED7A091E}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{64EBB3A3-4300-4F3B-8D01-2DDBCEE27FCD}] => (Allow) C:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{527CAF3C-0E15-4399-9F5E-A9B37E71B928}] => (Allow) C:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{F1CEDEC9-B489-4B98-84E1-2ED96CD9A573}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{B7A86D72-FD65-4CCB-9A93-58D8F744E938}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{626C4AB3-C9BB-4DC2-8D46-22F231251B6C}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{06868809-F83D-46ED-8D53-04F92F2FE507}] => (Allow) LPort=2869
FirewallRules: [{FB117FB9-4943-4386-971D-5FF73DA2AE61}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{B553764A-8B08-455B-B9E4-3FBE08E08B33}C:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{3AF2069D-4C1A-4CEF-A361-033A5FE9F111}C:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{86E1E67C-0C01-40BA-AD8B-F88A9EDCEF15}] => (Allow) D:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe () [File not signed]
FirewallRules: [{C6F47269-7FBD-4C08-A84F-A4D983D6FEC2}] => (Allow) D:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe () [File not signed]
FirewallRules: [{5D1EAACE-C933-4060-91FE-0EE2047FDED2}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{E8697B4D-F313-4F3C-87D9-6236CC2CFD63}] => (Allow) D:\Steam\steamapps\common\7 Days To Die\7dLauncher.exe () [File not signed]
FirewallRules: [{1F47178C-3A28-44A5-94F5-9A848C82E19D}] => (Allow) D:\Steam\steamapps\common\7 Days To Die\7dLauncher.exe () [File not signed]
FirewallRules: [TCP Query User{4C999FB6-651D-474A-AA59-7C8DE82314F9}D:\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) D:\steam\steamapps\common\7 days to die\7daystodie.exe () [File not signed]
FirewallRules: [UDP Query User{0B3DB104-BA54-4597-826A-6C6FB11837A4}D:\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) D:\steam\steamapps\common\7 days to die\7daystodie.exe () [File not signed]
FirewallRules: [TCP Query User{8D7AF6F5-9F22-4BC5-836E-0974808997B6}D:\utorrent\utorrent.exe] => (Allow) D:\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{74CF6D0C-D549-4020-AED1-967C3BD166B6}D:\utorrent\utorrent.exe] => (Allow) D:\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{3F19B4CF-7E59-4F81-B88B-58BBB581771B}D:\games\world of warcraft\_retail_\utils\wowvoiceproxy.exe] => (Allow) D:\games\world of warcraft\_retail_\utils\wowvoiceproxy.exe => No File
FirewallRules: [UDP Query User{33F7FCA1-F132-453E-879D-FF9100E4FED8}D:\games\world of warcraft\_retail_\utils\wowvoiceproxy.exe] => (Allow) D:\games\world of warcraft\_retail_\utils\wowvoiceproxy.exe => No File
FirewallRules: [TCP Query User{689790E4-7576-4ACF-8921-1BB2750D8094}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{123DA1AD-EE3C-4A48-8C79-1EF7EE847780}C:\windows\syswow64\dplaysvr.exe] => (Allow) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{1072E3DF-9C4E-4659-8168-399E21EC266D}C:\users\vitek\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\vitek\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (cfx-collective) [File not signed]
FirewallRules: [UDP Query User{259564FD-A19B-4DFB-BCB6-01ADEF06D2C8}C:\users\vitek\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\vitek\appdata\local\fivem\fivem.app\cache\subprocess\fivem_gtaprocess.exe (cfx-collective) [File not signed]
FirewallRules: [{E221B946-093C-4B9D-9D16-FE1D798A4327}] => (Allow) LPort=26789
FirewallRules: [{D80C65CE-7764-47C2-ABB2-CA4B29770080}] => (Allow) D:\Steam\steamapps\common\Stronghold Crusader 2\bin\win32_release\Crusader2.exe () [File not signed]
FirewallRules: [{9B473A3C-40DF-4921-830D-5C6623F5D516}] => (Allow) D:\Steam\steamapps\common\Stronghold Crusader 2\bin\win32_release\Crusader2.exe () [File not signed]
FirewallRules: [TCP Query User{6163F436-AD7E-418E-BE61-EE3153E7A3B1}D:\games\red dead redemption 2\rdr2.exe] => (Allow) D:\games\red dead redemption 2\rdr2.exe => No File
FirewallRules: [UDP Query User{2252B42D-D3B4-44FD-911E-6E3F5D7D3B9A}D:\games\red dead redemption 2\rdr2.exe] => (Allow) D:\games\red dead redemption 2\rdr2.exe => No File
FirewallRules: [{25AA3287-AA3C-480B-9DA4-02C29075F169}] => (Allow) D:\Steam\steamapps\common\Knights and Merchants Historical Version\KM_TPR.exe () [File not signed]
FirewallRules: [{3B8D82B7-1BFB-4DAB-9A93-721DFC80E475}] => (Allow) D:\Steam\steamapps\common\Knights and Merchants Historical Version\KM_TPR.exe () [File not signed]
FirewallRules: [{60733C71-C948-4BEC-B488-BE513E882F9B}] => (Allow) D:\Steam\steamapps\common\Knights and Merchants Historical Version\hd\Knights_and_Merchants_steam.exe () [File not signed]
FirewallRules: [{3EF6D276-1130-43E1-A70A-A0F453CD79E3}] => (Allow) D:\Steam\steamapps\common\Knights and Merchants Historical Version\hd\Knights_and_Merchants_steam.exe () [File not signed]
FirewallRules: [TCP Query User{1F7483C0-16ED-45AE-B0B2-FC05DD2F3334}C:\program files\java\jre1.8.0_201\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_201\bin\javaw.exe
FirewallRules: [UDP Query User{5A1D0D90-1B74-4857-A492-23759F70ADC4}C:\program files\java\jre1.8.0_201\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_201\bin\javaw.exe
FirewallRules: [TCP Query User{8F04F07C-213C-4C5C-A485-27A50B0770AF}D:\stažené soubory\dyson.sphere.program.v0.6.15.5678\dyson.sphere.program.v0.6.15.5678\dyson.sphere.program.v0.6.15.5678\dspgame.exe] => (Allow) D:\stažené soubory\dyson.sphere.program.v0.6.15.5678\dyson.sphere.program.v0.6.15.5678\dyson.sphere.program.v0.6.15.5678\dspgame.exe => No File
FirewallRules: [UDP Query User{D5F3305B-9427-4882-8BF0-155235D103B7}D:\stažené soubory\dyson.sphere.program.v0.6.15.5678\dyson.sphere.program.v0.6.15.5678\dyson.sphere.program.v0.6.15.5678\dspgame.exe] => (Allow) D:\stažené soubory\dyson.sphere.program.v0.6.15.5678\dyson.sphere.program.v0.6.15.5678\dyson.sphere.program.v0.6.15.5678\dspgame.exe => No File
FirewallRules: [TCP Query User{1C2F76D5-DDE8-4894-8D24-77A1CE5899C5}D:\games\stronghold warlords\bin\win32_release\strongholdwarlords.exe] => (Block) D:\games\stronghold warlords\bin\win32_release\strongholdwarlords.exe () [File not signed]
FirewallRules: [UDP Query User{94636316-3BA0-406B-98CF-972D1355BD2C}D:\games\stronghold warlords\bin\win32_release\strongholdwarlords.exe] => (Block) D:\games\stronghold warlords\bin\win32_release\strongholdwarlords.exe () [File not signed]
FirewallRules: [TCP Query User{6E212CD1-7BC7-4914-8AF3-2FDC97E0BAA9}D:\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) D:\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{2A283338-F67F-45F7-8C4E-062C3770E6E9}D:\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) D:\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [{FBD880A7-785B-4DE2-82D6-61486D1D0B00}] => (Allow) D:\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{66935A8A-BCB0-44FD-A1B0-9C0AB62F8770}] => (Allow) D:\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{6C995367-3B81-4641-B4F0-7919C0C418CE}] => (Allow) C:\Program Files (x86)\Overwolf\0.168.0.12\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{CB316440-3E3F-4DAD-A787-1B4C2903FFB7}] => (Allow) C:\Program Files (x86)\Overwolf\0.168.0.12\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{CFF4D419-F92F-4124-ACF8-6F9AFCA42EE7}] => (Block) C:\Program Files (x86)\Overwolf\0.168.0.12\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{FBFF82AD-74F0-4898-9C4F-4C456E435978}] => (Block) C:\Program Files (x86)\Overwolf\0.168.0.12\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{954B364D-65E5-4874-ACA6-ADCBBFDF342C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.156.595.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{55753B71-9CA3-4BBB-A196-CB2CDE83611A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.156.595.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{50DA069C-954A-41A3-960D-E12D366ED064}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.156.595.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{160C2828-5A55-4CA3-B275-6A2D450D0CAA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.156.595.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{2CA2EAB3-653B-4A64-A5B5-6B6DCAF7C709}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.156.595.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{95963D0F-9382-404F-A2FB-3658F5B52A13}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.156.595.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{28A819CD-4155-4BFF-B2AF-87CAA9D15F19}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.156.595.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{13F6F749-1C5C-4121-BB1A-0FF744176CD5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.156.595.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4A0FAAE7-B6FF-4DF3-8F44-DD67AC6AE537}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{1B343077-C52B-437A-8F15-55AD06B2E2C8}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{03FB2667-C764-45CC-A459-CC4CD663C624}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{E6A9FCC8-93B3-4F0E-B55F-79CCA5762012}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [TCP Query User{7F37E17A-F4B5-48F4-926E-1840814D7018}D:\stažené soubory\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\soviet64.exe] => (Block) D:\stažené soubory\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\soviet64.exe () [File not signed]
FirewallRules: [UDP Query User{996F62FE-7FAE-467B-8814-A55E9B6DE176}D:\stažené soubory\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\soviet64.exe] => (Block) D:\stažené soubory\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\soviet64.exe () [File not signed]
FirewallRules: [TCP Query User{802B8996-2196-47E1-9A4A-29E25399FA0B}D:\stažené soubory\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\setupapplication soviet.exe] => (Allow) D:\stažené soubory\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\setupapplication soviet.exe (3DIVISION) [File not signed]
FirewallRules: [UDP Query User{320712CE-089B-4CDF-9754-2823EDBB285B}D:\stažené soubory\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\setupapplication soviet.exe] => (Allow) D:\stažené soubory\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\setupapplication soviet.exe (3DIVISION) [File not signed]
FirewallRules: [{30FBE8F0-DD74-4D21-9B11-5EF8F1AA19D2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{6AB8B20B-AAEF-4BAD-BA05-93B567348905}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D8672D81-2BD1-4FE0-BBE6-162B8F743C51}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{DE50ED53-CF57-4509-9535-7A01C7E1007A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{39A15203-B62C-4BB0-A11B-776C9B4CC82D}D:\stažené soubory\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\soviet.exe] => (Allow) D:\stažené soubory\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\soviet.exe () [File not signed]
FirewallRules: [UDP Query User{FE1E8977-D915-44EF-8E18-1A1AF29CC6F5}D:\stažené soubory\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\soviet.exe] => (Allow) D:\stažené soubory\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\workers.&.resources.soviet.republic.v0.8.3.26\soviet.exe () [File not signed]
FirewallRules: [{4F728B49-BE54-4EA4-9AF6-E82312E4EB6E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{A157270E-DE0C-47B5-951A-DFA7C3176053}] => (Allow) LPort=26820
FirewallRules: [{6DBE18B6-8C72-4E01-AC91-4FCDF1C453E4}] => (Allow) LPort=26822
==================== Restore Points =========================
30-03-2021 18:47:48 Naplánovaný kontrolní bod
08-04-2021 18:31:45 Naplánovaný kontrolní bod
14-04-2021 21:12:22 Instalační služba modulů systému Windows
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (04/17/2021 01:54:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: utorrent.exe, verze: 2.2.1.25534, časové razítko: 0x4e4594ce
Název chybujícího modulu: GDI32.dll, verze: 10.0.19041.746, časové razítko: 0x1baae673
Kód výjimky: 0xc000041d
Posun chyby: 0x00005d67
ID chybujícího procesu: 0x33c4
Čas spuštění chybující aplikace: 0x01d733801df69258
Cesta k chybující aplikaci: D:\uTorrent\utorrent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\GDI32.dll
ID zprávy: 43a7eea4-9069-4a6a-81f9-ae3f784b8174
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (04/17/2021 02:01:03 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: utorrent.exe, verze: 2.2.1.25534, časové razítko: 0x4e4594ce
Název chybujícího modulu: GDI32.dll, verze: 10.0.19041.746, časové razítko: 0x1baae673
Kód výjimky: 0xc000041d
Posun chyby: 0x00005d67
ID chybujícího procesu: 0x3e64
Čas spuštění chybující aplikace: 0x01d732a64877d437
Cesta k chybující aplikaci: D:\uTorrent\utorrent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\GDI32.dll
ID zprávy: ba1f769f-c988-43f8-a9cd-f746a8f4f8a9
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (04/15/2021 02:28:35 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SOVIET.exe, verze: 0.0.0.0, časové razítko: 0x60508852
Název chybujícího modulu: SOVIET.exe, verze: 0.0.0.0, časové razítko: 0x60508852
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000333bfb
ID chybujícího procesu: 0xf14
Čas spuštění chybující aplikace: 0x01d7318799e16815
Cesta k chybující aplikaci: D:\Stažené soubory\Workers.&.Resources.Soviet.Republic.v0.8.3.26\Workers.&.Resources.Soviet.Republic.v0.8.3.26\Workers.&.Resources.Soviet.Republic.v0.8.3.26\SOVIET.exe
Cesta k chybujícímu modulu: D:\Stažené soubory\Workers.&.Resources.Soviet.Republic.v0.8.3.26\Workers.&.Resources.Soviet.Republic.v0.8.3.26\Workers.&.Resources.Soviet.Republic.v0.8.3.26\SOVIET.exe
ID zprávy: 69b05104-d19a-4c26-b401-6d5dc1fd8fb0
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (04/15/2021 12:27:03 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.
Error: (04/15/2021 12:27:03 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
Error: (04/14/2021 02:14:37 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: utorrent.exe, verze: 2.2.1.25534, časové razítko: 0x4e4594ce
Název chybujícího modulu: GDI32.dll, verze: 10.0.19041.746, časové razítko: 0x1baae673
Kód výjimky: 0xc000041d
Posun chyby: 0x00005d67
ID chybujícího procesu: 0x5340
Čas spuštění chybující aplikace: 0x01d7308350198b92
Cesta k chybující aplikaci: D:\uTorrent\utorrent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\GDI32.dll
ID zprávy: 9e68ff2f-3a9e-4815-96ed-b1534645789d
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (04/13/2021 07:05:51 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na HDD (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (04/12/2021 02:59:56 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program javaw.exe verze 8.0.201.9 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 2960
Čas spuštění: 01d72f21d4305485
Čas ukončení: 4
Cesta k aplikaci: C:\Program Files\Java\jre1.8.0_201\bin\javaw.exe
ID hlášení: f2e7c484-5257-46ee-9b33-9374727de129
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
System errors:
=============
Error: (04/17/2021 01:52:09 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: Počítač byl restartován z procesu kontroly chyb. Kontrola chyb: 0x000000be (0xffffbeffffffffe8, 0x8a00000000200121, 0xffffe08d145626a0, 0x000000000000000a). Výpis byl uložen do: C:\WINDOWS\MEMORY.DMP. ID hlášení: 6e31e7c4-2b9f-48fb-b3dd-05397dc9408e
Error: (04/17/2021 01:51:59 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (13:49:45, 17.04.2021) bylo neočekávané.
Error: (04/15/2021 12:26:01 AM) (Source: DCOM) (EventID: 10010) (User: VITEK-PC)
Description: Server microsoft.windowscommunicationsapps_16005.13426.20688.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/15/2021 12:26:01 AM) (Source: DCOM) (EventID: 10010) (User: VITEK-PC)
Description: Server Microsoft.WindowsStore_12101.1001.14.0_x64__8wekyb3d8bbwe!App.AppX8h0bdkbb5frkt9s09fvshhbvqnntmvm1.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/15/2021 12:26:01 AM) (Source: DCOM) (EventID: 10010) (User: VITEK-PC)
Description: Server DolbyLaboratories.DolbyAccess_3.7.2028.0_x64__rz1tebttyb220!App.AppXtzbhf6k67jn9be72jwc3zje4rv3bb4am.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/15/2021 12:26:01 AM) (Source: DCOM) (EventID: 10010) (User: VITEK-PC)
Description: Server NcsiUwpApp_1000.19041.423.0_neutral_neutral_8wekyb3d8bbwe!App.AppXw175g9nmx2zykh9fyt6xjc0xf8vmj1w6.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/15/2021 12:26:01 AM) (Source: DCOM) (EventID: 10010) (User: VITEK-PC)
Description: Server Microsoft.MicrosoftOfficeHub_18.2008.12711.0_x64__8wekyb3d8bbwe!Microsoft.MicrosoftOfficeHub.AppXt4mh7c9swwc5cmd5jgmtmwcfmvkddpn1.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/14/2021 12:59:32 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Steam Client Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Windows Defender:
================
Date: 2021-04-17 00:47:28
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {8D56DC07-CCE3-4D67-B12F-516FEBA48F11}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-04-14 00:53:49
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {C37C697B-C093-4F48-ADAB-2409EB704D50}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-04-13 00:32:23
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {EA4C8C63-36C8-4659-A230-11606365F76E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-04-11 13:28:06
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {06900059-E6D8-4FB7-8697-CB9C8766378C}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-04-09 13:40:23
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {C7582FFA-7836-4C35-B418-A4F6D750BBEE}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
CodeIntegrity:
===============
Date: 2021-03-03 17:21:08
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\vitek\AppData\Roaming\Twitch\Bin\Electron\TwitchUI.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\Overwolf\0.166.1.16\win32\OWExplorer.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 1.00 07/02/2018
Motherboard: Micro-Star International Co., Ltd B450 TOMAHAWK (MS-7C02)
Processor: AMD Ryzen 5 2600 Six-Core Processor
Percentage of memory in use: 36%
Total physical RAM: 16338.24 MB
Available physical RAM: 10448.64 MB
Total Virtual: 26578.24 MB
Available Virtual: 18214.44 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:232.28 GB) (Free:35.87 GB) NTFS
Drive d: (HDD) (Fixed) (Total:931.51 GB) (Free:133.67 GB) NTFS
\\?\Volume{a0806901-c8f2-438e-9b1f-6fcc1d4e3528}\ (Obnovení) (Fixed) (Total:0.49 GB) (Free:0.06 GB) NTFS
\\?\Volume{0ad3927e-b681-4d8e-8b7e-934856e286a9}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 232.9 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================