VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Poprosim o preventivku

https://forum.viry.cz:443/viewtopic.php?t=158110

Stránka 1 z 1

Poprosim o preventivku

Napsal: 31 kvě 2021 21:24
od PureHate44
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-05-2021 01
Ran by PC1 (administrator) on DESKTOP-NORVJE6 (MSI MS-7A39) (31-05-2021 22:21:40)
Running from C:\Users\PC1\Downloads
Loaded Profiles: PC1
Platform: Windows 10 Home Version 2004 19041.985 (X64) Language: Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0360470.inf_amd64_35c64671e7fac064\B360357\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0360470.inf_amd64_35c64671e7fac064\B360357\atiesrxx.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\AvastUI.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <22>
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\Smart Defrag\pub\PubPlatform.exe
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\PC1\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2105.19601.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe\HxAccounts.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20920.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12104.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9277520 2020-04-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [118496 2021-05-07] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\Run: [utweb] => "C:\Users\PC1\AppData\Roaming\uTorrent Web\utweb.exe" /MINIMIZED
HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33223648 2021-05-29] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\Run: [uTorrent] => C:\Users\PC1\AppData\Roaming\uTorrent\uTorrent.exe [1964064 2021-04-18] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [33770112 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\90.0.4430.212\Installer\chrmstp.exe [2021-05-12] (Google LLC -> Google LLC)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {03E2AE8E-D90D-4311-84BD-4EC53ADC12E6} - System32\Tasks\SmartDefrag_AutoAnalyze => C:\Program Files (x86)\IObit\Smart Defrag\AutoDefrag.exe [314128 2018-05-02] (IObit Information Technology -> IObit)
Task: {16BF366D-9B8D-4ED9-A193-35B61B467FFF} - System32\Tasks\IObitSelfCheckTask => C:\Program Files (x86)\IObit\Smart Defrag\IObitSelfCheck.exe
Task: {31CCFF01-B50B-49A1-AE61-D27E251929BD} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [28158080 2021-05-20] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {4B45F0DA-7953-453D-9B6D-E5F1B669D67F} - System32\Tasks\SmartDefrag_Startup => C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe [5867976 2021-01-13] (IObit Information Technology -> IObit)
Task: {73AFBA93-A06C-4079-9D96-C629482A4856} - System32\Tasks\SmartDefrag_Update => C:\Program Files (x86)\IObit\Smart Defrag\AutoUpdate.exe [3472848 2021-01-05] (IObit Information Technology -> IObit)
Task: {B984746D-9FC2-46AF-B5F7-79134032CA2D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-20] (Google LLC -> Google LLC)
Task: {BA6FBB2C-9462-4AFC-B177-F86D8B50A846} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-20] (Google LLC -> Google LLC)
Task: {C1B2EDFE-7395-464A-9656-77633BE9BF5E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-05-20] (Piriform Software Ltd -> Piriform)
Task: {E0AE1FE2-3B63-4D32-A5FB-B6E5F82CE7F2} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [4699872 2021-05-07] (Avast Software s.r.o. -> AVAST Software)
Task: {FBD4795D-57A3-4976-91C7-50F1B0EA8AA6} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-05-07] (Avast Software s.r.o. -> Avast Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{54db6741-c35b-439b-9673-ac7e98521184}: [DhcpNameServer] 192.168.1.1 195.146.128.62

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\PC1\AppData\Local\Microsoft\Edge\User Data\Default [2021-05-31]
Edge Extension: (Outlook) - C:\Users\PC1\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bjhmmnoficofgoiacjaajpkfndojknpb [2020-12-23]
Edge Extension: (Word) - C:\Users\PC1\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hikhggiobiflkdfdgdajcfklmcibbopi [2020-12-23]
Edge Extension: (Excel) - C:\Users\PC1\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\leffmjdabcgaflkikcefahmlgpodjkdm [2020-12-23]
Edge Extension: (PowerPoint) - C:\Users\PC1\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\opfacbhaojodjaojgocnibmklknchehf [2020-12-23]

FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)

Chrome:
=======
CHR Profile: C:\Users\PC1\AppData\Local\Google\Chrome\User Data\Default [2021-05-31]
CHR Notifications: Default -> hxxps://sibirem.ru
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Extension: (YouTube) - C:\Users\PC1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-12-20]
CHR Extension: (AdBlock - najlepší blokovač reklám) - C:\Users\PC1\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-05-01]
CHR Extension: (Coupons at Checkout) - C:\Users\PC1\AppData\Local\Google\Chrome\User Data\Default\Extensions\inlgdellfblpplcogjfedlhjnpgafnia [2020-12-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\PC1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\PC1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-12-20]
CHR Extension: (Chrome Media Router) - C:\Users\PC1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-04-30]
CHR HKLM\...\Chrome\Extension: [joiapjkjgbcljoopaenlplkfapolkdhp]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [joiapjkjgbcljoopaenlplkfapolkdhp]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7894040 2021-05-07] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [606944 2021-05-07] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [356064 2021-05-07] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56920 2021-05-07] (Avast Software s.r.o. -> AVAST Software)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [926176 2021-03-16] (Epic Games Inc. -> Epic Games, Inc.)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1716632 2021-05-14] (Rockstar Games, Inc. -> Rockstar Games)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12871464 2021-04-20] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.9-0\NisSrv.exe [2599296 2021-05-06] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.9-0\MsMpEng.exe [128360 2021-05-06] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 2C50ECBD; C:\WINDOWS\System32\drivers\2C50ECBD.sys [478392 2021-04-14] (Kaspersky Lab -> Kaspersky Lab ZAO)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [35664 2021-05-07] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [212192 2021-05-07] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [365024 2021-05-07] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [250336 2021-05-07] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [99288 2021-05-07] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [17328 2021-05-28] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [41296 2021-05-07] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [180448 2021-05-07] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [522936 2021-05-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [107792 2021-05-07] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [82872 2021-05-07] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [850632 2021-05-07] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [467720 2021-05-07] (Avast Software s.r.o. -> AVAST Software)
S2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [215352 2021-05-07] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326992 2021-05-07] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2020-11-07] (Microsoft Corporation) [File not signed]
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2020-01-03] (Disc Soft Ltd -> Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2020-01-03] (Disc Soft Ltd -> Disc Soft Ltd)
R0 SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [30744 2017-03-09] (IObit Information Technology -> IObit)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49544 2021-05-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [421112 2021-05-06] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [73976 2021-05-06] (Microsoft Windows -> Microsoft Corporation)
R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [312776 2020-12-24] (Microsoft Windows Hardware Compatibility Publisher -> Nox Limited Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-05-31 22:21 - 2021-05-31 22:22 - 000015683 _____ C:\Users\PC1\Downloads\FRST.txt
2021-05-31 22:21 - 2021-05-31 22:21 - 002299904 _____ (Farbar) C:\Users\PC1\Downloads\FRST64 (1).exe
2021-05-31 13:56 - 2021-05-31 13:56 - 000000000 ____D C:\Users\PC1\Desktop\Nový priečinok
2021-05-31 13:33 - 2021-05-31 13:49 - 000000000 ____D C:\Users\PC1\Desktop\fENIX
2021-05-31 13:33 - 2021-05-31 13:33 - 000381861 _____ C:\Users\PC1\Downloads\PhoenixModMenu.rar
2021-05-31 13:26 - 2021-05-31 13:26 - 000000000 ___HD C:\$AV_ASW
2021-05-31 13:25 - 2021-05-31 13:25 - 000017694 _____ C:\Users\PC1\Downloads\Phoenix ModMenu.rar
2021-05-30 11:48 - 2021-05-30 11:48 - 000001699 _____ C:\Users\Public\Desktop\Recuva.lnk
2021-05-30 11:48 - 2021-05-30 11:48 - 000001699 _____ C:\ProgramData\Desktop\Recuva.lnk
2021-05-30 11:48 - 2021-05-30 11:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2021-05-30 11:48 - 2021-05-30 11:48 - 000000000 ____D C:\Program Files\Recuva
2021-05-30 11:46 - 2021-05-30 11:47 - 000000000 ____D C:\Program Files\Defraggler
2021-05-30 11:46 - 2021-05-30 11:46 - 000001765 _____ C:\Users\Public\Desktop\Defraggler.lnk
2021-05-30 11:46 - 2021-05-30 11:46 - 000001765 _____ C:\ProgramData\Desktop\Defraggler.lnk
2021-05-30 11:46 - 2021-05-30 11:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
2021-05-30 11:45 - 2021-05-31 22:18 - 000000000 ____D C:\Program Files\CCleaner
2021-05-30 11:45 - 2021-05-31 18:07 - 000003194 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-05-30 11:45 - 2021-05-30 11:45 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2021-05-30 11:45 - 2021-05-30 11:45 - 000000863 _____ C:\ProgramData\Desktop\CCleaner.lnk
2021-05-30 11:45 - 2021-05-30 11:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2021-05-29 17:38 - 2021-05-29 17:38 - 000031393 _____ C:\Users\PC1\Downloads\HoboRPG (3).CT
2021-05-29 17:32 - 2021-05-29 17:32 - 000135820 _____ C:\Users\PC1\Downloads\Hobo-second.CT
2021-05-28 22:46 - 2021-05-28 22:46 - 000017328 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2021-05-13 05:08 - 2021-05-13 05:08 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-05-13 05:07 - 2021-05-13 05:07 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-05-13 05:07 - 2021-05-13 05:07 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-05-13 05:07 - 2021-05-13 05:07 - 001823816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-05-13 05:07 - 2021-05-13 05:07 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-05-13 05:07 - 2021-05-13 05:07 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-05-13 05:07 - 2021-05-13 05:07 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-13 05:07 - 2021-05-13 05:07 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-05-13 05:07 - 2021-05-13 05:07 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-05-13 05:07 - 2021-05-13 05:07 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-05-13 05:07 - 2021-05-13 05:07 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-05-13 05:07 - 2021-05-13 05:07 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-05-12 22:00 - 2021-05-12 22:00 - 000040246 _____ C:\Users\PC1\Downloads\Speccy_1_25_674CZ.zip
2021-05-08 14:03 - 2021-05-08 14:03 - 000031430 _____ C:\Users\PC1\Downloads\HoboRPG (2).CT
2021-05-08 13:29 - 2021-05-08 13:29 - 000144395 _____ C:\Users\PC1\Downloads\[SkT]Cyberpunk.2077_v1.22_.torrent
2021-05-08 09:21 - 2021-05-08 09:21 - 001053492 _____ C:\Users\PC1\Downloads\HostsEditor.zip
2021-05-08 07:58 - 2021-05-30 11:49 - 000000837 _____ C:\Users\Public\Desktop\Speccy.lnk
2021-05-08 07:58 - 2021-05-30 11:49 - 000000837 _____ C:\ProgramData\Desktop\Speccy.lnk
2021-05-08 07:58 - 2021-05-30 11:49 - 000000000 ____D C:\Program Files\Speccy
2021-05-08 07:58 - 2021-05-08 07:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2021-05-08 07:38 - 2021-05-08 07:38 - 000031430 _____ C:\Users\PC1\Downloads\HoboRPG (1).CT
2021-05-07 04:35 - 2021-05-07 04:35 - 000000000 ____D C:\Users\PC1\AppData\Roaming\Avast Software
2021-05-07 04:31 - 2021-05-31 16:59 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2021-05-07 04:31 - 2021-05-25 20:29 - 000522936 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2021-05-07 04:31 - 2021-05-07 04:31 - 000326992 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-05-07 04:31 - 2021-05-07 04:31 - 000003990 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-05-07 04:31 - 2021-05-07 04:31 - 000002164 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2021-05-07 04:31 - 2021-05-07 04:31 - 000002152 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2021-05-07 04:31 - 2021-05-07 04:31 - 000002152 _____ C:\ProgramData\Desktop\Avast Free Antivirus.lnk
2021-05-07 04:31 - 2021-05-07 04:31 - 000000000 ____D C:\Program Files\Common Files\Avast Software
2021-05-07 04:31 - 2021-05-07 04:30 - 000850632 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2021-05-07 04:31 - 2021-05-07 04:30 - 000467720 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-05-07 04:31 - 2021-05-07 04:30 - 000365024 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2021-05-07 04:31 - 2021-05-07 04:30 - 000339680 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-05-07 04:31 - 2021-05-07 04:30 - 000250336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2021-05-07 04:31 - 2021-05-07 04:30 - 000215352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2021-05-07 04:31 - 2021-05-07 04:30 - 000212192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2021-05-07 04:31 - 2021-05-07 04:30 - 000180448 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-05-07 04:31 - 2021-05-07 04:30 - 000107792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2021-05-07 04:31 - 2021-05-07 04:30 - 000099288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2021-05-07 04:31 - 2021-05-07 04:30 - 000082872 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2021-05-07 04:31 - 2021-05-07 04:30 - 000041296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2021-05-07 04:31 - 2021-05-07 04:30 - 000035664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2021-05-07 04:30 - 2021-05-07 04:30 - 000000000 ____D C:\Program Files\Avast Software
2021-05-07 04:29 - 2021-05-07 04:30 - 000220392 _____ (AVAST Software) C:\Users\PC1\Downloads\avast_free_antivirus_setup_online.exe
2021-05-06 21:28 - 2021-05-06 21:28 - 000000795 _____ C:\Users\Public\Desktop\Hobo Tough Life.lnk
2021-05-06 21:28 - 2021-05-06 21:28 - 000000795 _____ C:\ProgramData\Desktop\Hobo Tough Life.lnk
2021-05-02 20:29 - 2021-05-02 20:29 - 000068763 _____ C:\Users\PC1\Downloads\[SkT]Tom a Jerry _ Tom and Jerry (2021)(CZ_EN)[WebRip][2160p] CSFD 43%.torrent
2021-05-02 20:27 - 2021-05-02 20:27 - 000058692 _____ C:\Users\PC1\Downloads\[SkT]Tom_a_Jerry___Tom_and_Jerry_(2021)(CZ_EN)[1080p]_=_CSFD_43%.torrent
2021-05-02 20:21 - 2021-05-02 20:21 - 000000000 ____D C:\Users\PC1\AppData\Roaming\Cheat Happens
2021-05-02 20:17 - 2021-05-02 20:17 - 000025106 _____ C:\Users\PC1\Downloads\[SkT]Windows_10_May_2020_Update_Home_Pro_Education_Workstations_N_v.2004_(Build_19041.264)_(x64)_(CZ) (1).torrent
2021-05-02 20:13 - 2021-05-02 20:13 - 006257533 _____ C:\Users\PC1\Downloads\Hobo_Tough_Life_Trainer_5_cha.zip
2021-05-02 20:12 - 2021-05-02 20:12 - 004606365 _____ C:\Users\PC1\Downloads\_9Trainers.com_Trainer_File_Hobo_Tough_Life (2).rar
2021-05-02 20:05 - 2021-05-02 20:05 - 000000000 ____D C:\Program Files\dotnet
2021-05-02 20:04 - 2021-05-02 20:04 - 000000000 ____D C:\Users\PC1\Cheathappens
2021-05-02 20:03 - 2021-05-02 20:03 - 006257533 _____ C:\Users\PC1\Downloads\Hobo_Tough_Life_Trai.zip
2021-05-02 18:49 - 2021-05-02 18:49 - 007891694 _____ C:\Users\PC1\Downloads\torrent-cd-serial-ke_431220617.zip
2021-05-02 18:27 - 2021-05-02 18:27 - 000000000 ____D C:\Users\PC1\Downloads\rufus_files
2021-05-02 18:20 - 2021-05-02 18:27 - 2877227008 _____ C:\Users\PC1\Downloads\ubuntu-20.04.2.0-desktop-amd64.iso
2021-05-02 18:15 - 2021-05-06 04:21 - 000000290 __RSH C:\ProgramData\ntuser.pol
2021-05-02 18:15 - 2021-05-02 18:15 - 001173560 _____ (Akeo Consulting) C:\Users\PC1\Downloads\rufus-3.14.exe
2021-05-02 18:14 - 2021-05-02 18:14 - 000025106 _____ C:\Users\PC1\Downloads\[SkT]Windows_10_May_2020_Update_Home_Pro_Education_Workstations_N_v.2004_(Build_19041.264)_(x64)_(CZ).torrent
2021-05-02 17:53 - 2021-05-02 17:53 - 000026541 _____ C:\Users\PC1\Downloads\[SkT]Windows_10_May_2020_Update_Home_Pro_Enterprise_v.2004_(Build_10.0.19041.264)(x86)(CZ_SK).torrent
2021-05-02 17:38 - 2021-05-02 17:38 - 000011545 _____ C:\Users\PC1\Downloads\HoboRPG_mod by iLucky - v.1.00.019.CT
2021-05-02 17:36 - 2021-05-02 17:36 - 000113805 _____ C:\Users\PC1\Downloads\HoboRPG.CT
2021-05-02 17:32 - 2021-05-02 17:32 - 000011915 _____ C:\Users\PC1\Downloads\HoboRPG.1.00.019.CT
2021-05-02 17:31 - 2021-05-02 17:31 - 007890237 _____ C:\Users\PC1\Downloads\trainerverpc_890806843.zip
2021-05-02 17:31 - 2021-05-02 17:31 - 000000000 ____D C:\Users\PC1\AppData\Local\MegaDev
2021-05-02 17:30 - 2021-05-02 17:30 - 056610696 _____ (MegaDev GmbH) C:\Users\PC1\Downloads\Plitch_setup_1.1.7.exe
2021-05-02 17:30 - 2021-05-02 17:30 - 000000000 ____D C:\Users\PC1\AppData\Local\plitch-updater
2021-05-01 08:18 - 2021-05-01 08:18 - 025306568 _____ (Piriform Software Ltd) C:\Users\PC1\Downloads\ccsetup566pro.exe
2021-05-01 08:06 - 2021-05-31 18:07 - 000002238 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-05-01 08:06 - 2021-05-01 08:06 - 000000055 _____ C:\Users\PC1\Desktop\Internet Search.URL
2021-05-01 08:06 - 2021-05-01 08:06 - 000000000 ____D C:\Program Files (x86)\me.fo
2021-05-01 07:51 - 2021-05-30 11:36 - 000000000 ____D C:\Users\PC1\AppData\LocalLow\uTorrent

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-05-31 22:21 - 2020-12-19 11:48 - 000000000 ____D C:\FRST
2021-05-31 22:18 - 2019-12-30 14:51 - 000000000 ___RD C:\Users\PC1\OneDrive
2021-05-31 19:07 - 2020-12-20 11:44 - 000000000 ____D C:\Users\PC1
2021-05-31 19:07 - 2020-12-20 11:32 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-05-31 18:07 - 2021-03-29 06:02 - 000002684 _____ C:\WINDOWS\system32\Tasks\SmartDefrag_AutoAnalyze
2021-05-31 18:07 - 2021-03-29 06:02 - 000002446 _____ C:\WINDOWS\system32\Tasks\SmartDefrag_Startup
2021-05-31 18:07 - 2021-03-29 06:02 - 000002446 _____ C:\WINDOWS\system32\Tasks\IObitSelfCheckTask
2021-05-31 18:07 - 2021-03-29 06:02 - 000002442 _____ C:\WINDOWS\system32\Tasks\SmartDefrag_Update
2021-05-31 18:07 - 2021-02-05 20:03 - 000003384 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-05-31 18:07 - 2021-02-05 20:03 - 000003160 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-05-31 18:07 - 2020-12-23 18:30 - 000003504 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-05-31 18:07 - 2020-12-23 18:30 - 000003280 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-05-31 18:07 - 2020-12-20 11:57 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3805889190-2908880830-1705731779-1001
2021-05-31 16:59 - 2020-12-20 11:55 - 000000000 ____D C:\Users\PC1\AppData\Local\D3DSCache
2021-05-31 16:29 - 2020-12-20 11:41 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-05-31 14:42 - 2021-03-09 16:44 - 000000000 ____D C:\Users\PC1\AppData\Local\CrashDumps
2021-05-31 13:54 - 2020-12-20 11:53 - 000840598 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-05-31 13:54 - 2020-12-20 11:31 - 000000000 ____D C:\WINDOWS\INF
2021-05-31 13:49 - 2021-01-02 13:33 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-05-31 13:49 - 2020-12-20 11:41 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-05-31 13:49 - 2020-11-07 11:27 - 000008192 ___SH C:\DumpStack.log.tmp
2021-05-31 10:11 - 2020-12-20 11:32 - 000000000 ___HD C:\Program Files\WindowsApps
2021-05-31 10:11 - 2020-12-20 11:32 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-05-30 13:57 - 2021-02-27 12:06 - 000000000 ____D C:\Users\PC1\AppData\Roaming\uTorrent
2021-05-30 12:20 - 2020-12-20 11:32 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-05-29 17:38 - 2021-04-16 19:13 - 000000000 ____D C:\Program Files\Cheat Engine 7.2
2021-05-28 22:46 - 2020-12-23 18:30 - 000002282 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-05-28 22:46 - 2020-12-23 18:30 - 000002282 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2021-05-28 22:46 - 2020-06-10 21:36 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-05-28 22:45 - 2021-03-29 06:02 - 000000000 ____D C:\ProgramData\ProductData
2021-05-25 20:29 - 2020-12-20 11:44 - 000002349 _____ C:\Users\PC1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-05-16 06:59 - 2020-12-20 11:28 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-05-13 05:16 - 2020-12-20 11:32 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-05-13 05:14 - 2021-03-07 20:59 - 000000000 ____D C:\ProgramData\Avast Software
2021-05-13 05:14 - 2020-12-20 11:40 - 000259032 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-05-13 05:13 - 2020-12-20 11:41 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2021-05-13 05:13 - 2020-12-20 11:35 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-05-13 05:13 - 2020-12-20 11:32 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-05-13 05:13 - 2020-12-20 11:32 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-05-13 05:13 - 2020-12-20 11:32 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-05-13 05:13 - 2020-12-20 11:32 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-05-13 05:13 - 2020-12-20 11:32 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-05-13 05:13 - 2020-12-20 11:32 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-05-13 05:13 - 2020-12-20 11:32 - 000000000 ____D C:\WINDOWS\SystemResources
2021-05-13 05:13 - 2020-12-20 11:32 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-05-13 05:13 - 2020-12-20 11:32 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-05-13 05:13 - 2020-12-20 11:32 - 000000000 ____D C:\WINDOWS\system32\setup
2021-05-13 05:13 - 2020-12-20 11:32 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-05-13 05:13 - 2020-12-20 11:32 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-05-13 05:13 - 2020-12-20 11:32 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-05-13 05:13 - 2020-12-20 11:32 - 000000000 ____D C:\WINDOWS\Provisioning
2021-05-13 05:13 - 2020-12-20 11:32 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-05-13 05:13 - 2020-12-20 11:32 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-05-13 05:13 - 2020-12-20 11:32 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-05-13 05:13 - 2020-12-20 11:27 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-05-13 05:10 - 2020-12-20 11:33 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-05-13 04:58 - 2020-12-20 12:41 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-05-13 04:56 - 2020-12-20 12:41 - 132732536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-05-12 22:00 - 2020-12-20 12:00 - 000002319 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-05-12 22:00 - 2020-12-20 12:00 - 000002278 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-05-12 22:00 - 2020-12-20 12:00 - 000002278 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2021-05-07 04:31 - 2020-12-20 11:32 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-05-06 04:15 - 2020-12-20 11:41 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-05-02 20:05 - 2020-12-20 12:08 - 000000000 ____D C:\ProgramData\Package Cache
2021-05-02 18:15 - 2020-12-20 11:32 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2021-05-02 18:15 - 2020-12-20 11:32 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2021-05-01 08:08 - 2020-12-20 18:07 - 000000916 _____ C:\Users\Public\Desktop\VLC media player.lnk
2021-05-01 08:08 - 2020-12-20 18:07 - 000000916 _____ C:\ProgramData\Desktop\VLC media player.lnk

==================== Files in the root of some directories ========

2021-03-07 20:58 - 2021-03-07 20:58 - 000016438 _____ () C:\Users\PC1\AppData\Local\partner.bmp

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Re: Poprosim o preventivku

Napsal: 31 kvě 2021 21:25
od PureHate44
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-05-2021 01
Ran by PC1 (31-05-2021 22:22:43)
Running from C:\Users\PC1\Downloads
Windows 10 Home Version 2004 19041.985 (X64) (2020-12-20 09:55:41)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3805889190-2908880830-1705731779-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3805889190-2908880830-1705731779-503 - Limited - Disabled)
Guest (S-1-5-21-3805889190-2908880830-1705731779-501 - Limited - Disabled)
PC1 (S-1-5-21-3805889190-2908880830-1705731779-1001 - Administrator - Enabled) => C:\Users\PC1
WDAGUtilityAccount (S-1-5-21-3805889190-2908880830-1705731779-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\uTorrent) (Version: 3.5.5.45986 - BitTorrent Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 21.3.2459 - Avast Software)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.76.1090 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.80 - Piriform)
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
Epic Games Launcher (HKLM-x32\...\{FEF3A9BA-A962-4469-AD62-04839D4BB847}) (Version: 1.1.298.0 - Epic Games, Inc.)
Epic Online Services (HKLM-x32\...\{0B736177-814A-4ADE-81D1-66A0FDD55BB4}) (Version: 1.1.11.0 - Epic Games, Inc.)
Excel (HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\1fc5b090eab9aa41f8a2f5987367e6da) (Version: 1.0 - Excel)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 90.0.4430.212 - Google LLC)
Hobo Tough Life (HKLM-x32\...\Hobo Tough Life_is1) (Version: 1.00.022 - RePack)
Cheat Engine 7.2 (HKLM\...\Cheat Engine_is1) (Version: - Cheat Engine)
Kodi (HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\Kodi) (Version: - XBMC Foundation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
me.fo (HKLM\...\me.fo) (Version: 1.0 - me.fo)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 91.0.864.37 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\OneDriveSetup.exe) (Version: 21.083.0425.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{A0E1B43D-5F4A-46AF-9925-ABA3423325DC}) (Version: 2.77.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29914 (HKLM-x32\...\{43d1ce82-6f55-4860-a938-20e5deb28b98}) (Version: 14.28.29914.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.25.28508 (HKLM-x32\...\{65e650ff-30be-469d-b63a-418d71ea1765}) (Version: 14.25.28508.3 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 3.1.14 (x64) (HKLM-x32\...\{bbeb5577-ab87-4f55-b980-e5c35798201e}) (Version: 3.1.14.29915 - Microsoft Corporation)
NoxPlayer (HKLM-x32\...\Nox) (Version: 7.0.0.8 - Duodian Technology Co. Ltd.)
Outlast (CZ Dabing) (HKLM-x32\...\FPD_OUTLAST_is1) (Version: 1.0 - Fénix ProDabing)
Outlast (HKLM-x32\...\Outlast_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91)
Outlook (HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\6b0f23e57a39ebfbf2814acb1a24293d) (Version: 1.0 - Outlook)
Paragon Launcher 1.1.6 (HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\{2e8644a0-577a-5fc4-a6c2-64d3f9ff9e5b}) (Version: 1.1.6 - The New Paragon Team)
PowerPoint (HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\319814cb56b667dff88f54e08be8f51f) (Version: 1.0 - PowerPoint)
PUBG LITE (HKLM-x32\...\PUBG LITE_is1) (Version: 1.0.1.0 - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8746.1 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.40.358 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.8.1 - Rockstar Games)
Smart Defrag 6 (HKLM-x32\...\Smart Defrag_is1) (Version: 6.7.0 - IObit)
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.17.6 - TeamViewer)
UE4 Prerequisites (x64) (HKLM\...\{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN)
Vortex (HKLM\...\57979c68-f490-55b8-8fed-8b017a5af2fe) (Version: 1.3.22 - Black Tree Gaming Ltd.)
WeMod (HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\WeMod) (Version: 7.0.19 - WeMod)
WinRAR 5.80 Final (HKLM-x32\...\WinRAR 5.80 Final) (Version: 5.80 - Crackingpatching.com Team)
WinRAR 6.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.01.0 - win.rar GmbH)
Word (HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\1b837d0bf93d01407352736c91b7bf50) (Version: 1.0 - Word)

Packages:
=========
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.5170.0_x64__8wekyb3d8bbwe [2021-05-28] (Microsoft Studios) [MS Ad]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3805889190-2908880830-1705731779-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3805889190-2908880830-1705731779-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3805889190-2908880830-1705731779-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3805889190-2908880830-1705731779-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3805889190-2908880830-1705731779-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3805889190-2908880830-1705731779-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-05-07] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-05-07] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-05-07] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers1: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\WINDOWS\System32\IObitSmartDefragExtension.dll [2019-09-12] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-05-07] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-05-07] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers6: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\WINDOWS\System32\IObitSmartDefragExtension.dll [2019-09-12] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\PC1\Desktop\Игры по сети.lnk -> E:\Games\Hobo Tough Life\ReadMe - Как играть по сети.url () <==== Cyrillic
ShortcutWithArgument: C:\Users\PC1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Excel.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=leffmjdabcgaflkikcefahmlgpodjkdm
ShortcutWithArgument: C:\Users\PC1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=bjhmmnoficofgoiacjaajpkfndojknpb
ShortcutWithArgument: C:\Users\PC1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=opfacbhaojodjaojgocnibmklknchehf
ShortcutWithArgument: C:\Users\PC1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Word.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=hikhggiobiflkdfdgdajcfklmcibbopi
ShortcutWithArgument: C:\Users\PC1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> hxxp://proppellerads.ru/?p303
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> hxxp://proppellerads.ru/?p303
ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> hxxp://proppellerads.ru/?p303

==================== Loaded Modules (Whitelisted) =============

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\2C50ECBD.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\2C50ECBD.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========


==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2020-12-20 11:33 - 2021-05-30 11:43 - 000000822 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\PC1\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1 - 195.146.128.62
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\StartupApproved\Run: => "utweb"
HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\StartupApproved\Run: => "BitTorrent"
HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\StartupApproved\Run: => "uTorrent"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{76479D23-BABB-4B44-8CA5-99040CC858D8}] => (Allow) E:\Program Files\txgameassistant\appmarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{B8813231-8AC4-4057-A6EB-9F8ED2076275}] => (Allow) E:\Program Files\txgameassistant\appmarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{C264E3BA-A0C9-461A-BB44-6FF4D813E63D}] => (Allow) E:\Program Files\txgameassistant\appmarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{25674321-2BB6-4356-AB23-C5100729084B}] => (Allow) E:\Program Files\txgameassistant\appmarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{BC53F919-759A-4705-BB28-C3C739726D24}] => (Allow) E:\Program Files\txgameassistant\appmarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{1D9454E8-FDFC-4A4B-89A9-87E90C5AA454}] => (Allow) E:\Program Files\txgameassistant\appmarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [TCP Query User{A75F6442-B574-465C-A1BE-EDF20E881D72}E:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) E:\games\kingdom come deliverance\bin\win64\kingdomcome.exe => No File
FirewallRules: [UDP Query User{4CA7D925-95FD-4D7A-8921-091AAA063896}E:\games\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) E:\games\kingdom come deliverance\bin\win64\kingdomcome.exe => No File
FirewallRules: [{2040B53A-AA33-427A-83AC-5263F0BF5437}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5A9B06DA-C207-40ED-8BE5-EB7807057FAC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A0E1CDD4-77B8-481E-8400-0E1C040ED1AB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5E2C0176-69F7-4BBF-BEA8-F56AD17CEAAF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{2E497131-185F-45D9-B66B-40DCBA311619}E:\games\gtav\gta5.exe] => (Allow) E:\games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{CE1D09BE-892B-4469-8BDB-183EBE02893E}E:\games\gtav\gta5.exe] => (Allow) E:\games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{AC741ED4-E044-4BC5-B477-209E5209AF91}E:\games\outlast\binaries\win64\olgame.exe] => (Block) E:\games\outlast\binaries\win64\olgame.exe (Red Barrels Inc.) [File not signed]
FirewallRules: [UDP Query User{8749EEAE-BC38-43FD-96E1-DCD8E169C39A}E:\games\outlast\binaries\win64\olgame.exe] => (Block) E:\games\outlast\binaries\win64\olgame.exe (Red Barrels Inc.) [File not signed]
FirewallRules: [TCP Query User{A4FE85D6-1397-4BAA-8B1F-425DCFB3742D}E:\games\hobo tough life\hoborpg.exe] => (Block) E:\games\hobo tough life\hoborpg.exe () [File not signed]
FirewallRules: [UDP Query User{1ABB5D93-DAAD-4D92-9BDB-CE0D369AE2DC}E:\games\hobo tough life\hoborpg.exe] => (Block) E:\games\hobo tough life\hoborpg.exe () [File not signed]
FirewallRules: [{1A323041-86A0-4111-8E89-29AE07FB7144}] => (Allow) C:\Users\PC1\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{A86FA3FB-E3E3-4860-999D-5EA390225399}] => (Allow) C:\Users\PC1\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{57EA5AA4-15E6-4811-B29A-C9A62A11D4F1}] => (Allow) C:\Users\PC1\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{5EA1E7FF-0E33-4E9A-8A55-28733143735E}] => (Allow) C:\Users\PC1\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{527EBD2C-3F56-4730-A23C-FB68F4591B94}] => (Allow) C:\Users\PC1\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{FC68185A-CC85-4F11-8026-E56A42E71944}] => (Allow) C:\Users\PC1\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{E1D90EDB-6F83-472C-AA6C-AE53B58A7692}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{4856EB4F-451C-4678-A795-BF435238552B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B01DDAA1-1DC3-40E4-AB19-3553B4B36944}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{28DBA916-17EF-49DF-86D9-75B75A910ACE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{13AE402E-5BAF-4149-A9F9-E3035C116C0B}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

13-05-2021 05:01:04 Inštalátor modulov systému Windows
20-05-2021 21:36:09 Scheduled Checkpoint
29-05-2021 17:11:42 Scheduled Checkpoint

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (05/31/2021 03:05:41 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v DATA (E:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)

Error: (05/31/2021 02:42:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: GTA5.exe, verzia: 1.0.2245.0, časová značka: 0x60424894
Názov chybujúceho modulu: GTA5.exe, verzia: 1.0.2245.0, časová značka: 0x60424894
Kód výnimky: 0xc0000005
Odstup chyby: 0x00000000012c5690
Identifikácia chybujúceho procesu: 0x2128
Čas spustenia chybujúcej aplikácie: 0x01d75615ec661450
Cesta chybujúcej aplikácie: E:\Games\GTAV\GTA5.exe
Cesta chybujúceho modulu: E:\Games\GTAV\GTA5.exe
Identifikácia hlásenia: 45205801-87c1-4448-af75-3b01b8602154
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (05/31/2021 01:31:59 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program GTA5.exe version 1.0.2245.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 970

Start Time: 01d756100930e652

Termination Time: 4294967295

Application Path: E:\Games\GTAV\GTA5.exe

Report Id: f14e78a1-4530-4b33-a10e-cf58dda26325

Faulting package full name:

Faulting package-relative application ID:

Hang type: Top level window is idle

Error: (05/29/2021 05:04:46 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v DATA (E:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)

Error: (05/25/2021 09:22:15 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program GTA5.exe version 1.0.2245.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 1d00

Start Time: 01d75195fa1fab78

Termination Time: 4294967295

Application Path: E:\Games\GTAV\GTA5.exe

Report Id: 3896aaa1-a0c6-4892-89c2-5cdec52136dc

Faulting package full name:

Faulting package-relative application ID:

Hang type: Top level window is idle

Error: (05/20/2021 09:31:56 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v DATA (E:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)

Error: (05/13/2021 08:58:25 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program Video.UI.exe version 10.21021.1031.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 2b60

Start Time: 01d747aa86374b84

Termination Time: 4294967295

Application Path: C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.21021.10311.0_x64__8wekyb3d8bbwe\Video.UI.exe

Report Id: fada2976-7770-4cc1-8099-40d08b84c12c

Faulting package full name: Microsoft.ZuneVideo_10.21021.10311.0_x64__8wekyb3d8bbwe

Faulting package-relative application ID: Microsoft.ZuneVideo

Hang type: Quiesce

Error: (05/13/2021 07:14:38 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiska nemohol dokončiť opätovné vystrihnutie v DATA (E:), pretože: Hardvér, ktorý podporuje tento zväzok, nepodporuje požadovanú operáciu. (0x8900002A)


System errors:
=============
Error: (05/31/2021 01:49:35 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 13:31:47 on ‎31. ‎5. ‎2021 was unexpected.

Error: (05/30/2021 12:04:35 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Počas čakania na pripojenie služby Windows Error Reporting Service bol dosiahnutý časový limit (30000 ms).

Error: (05/30/2021 11:49:09 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Peer Name Resolution Protocol bola ukončená s nasledujúcou chybou:
Unable to access a key.

Error: (05/30/2021 11:49:09 AM) (Source: PNRPSvc) (EventID: 102) (User: )
Description: The Peer Name Resolution Protocol cloud did not start because the creation of the default identity failed with error code: 0x80630203.

Error: (05/30/2021 11:43:17 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: There was an error while attempting to read the local hosts file.

Error: (05/25/2021 10:08:14 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-NORVJE6)
Description: The server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} did not register with DCOM within the required timeout.

Error: (05/19/2021 10:44:41 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-NORVJE6)
Description: The server {F9717507-6651-4EDB-BFF7-AE615179BCCF} did not register with DCOM within the required timeout.

Error: (05/19/2021 10:44:41 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-NORVJE6)
Description: The server {F9717507-6651-4EDB-BFF7-AE615179BCCF} did not register with DCOM within the required timeout.


Windows Defender:
================
Date: 2021-05-06 22:06:50
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2021-05-02 17:42:52
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2021-05-01 11:59:06
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2021-05-01 08:06:54
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: Trojan:Win32/Cryptinject!MTB
Severity: Závažná
Category: Trójsky kôň
Path: file:_C:\Users\PC1\AppData\Local\Temp\RarSFX0\extension.exe
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Users\PC1\AppData\Local\Temp\PACK.EXE
Security intelligence Version: AV: 1.337.321.0, AS: 1.337.321.0, NIS: 1.337.321.0
Engine Version: AM: 1.1.18100.5, NIS: 1.1.18100.5

Date: 2021-04-29 22:21:16
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: HackTool:Win32/Keygen
Severity: Vysoká
Category: Nástroj
Path: file:_C:\Users\PC1\AppData\Roaming\uTorrent\msimg32.dll
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Users\PC1\AppData\Roaming\uTorrent\uTorrent.exe
Security intelligence Version: AV: 1.335.1651.0, AS: 1.335.1651.0, NIS: 1.335.1651.0
Engine Version: AM: 1.1.18100.5, NIS: 1.1.18100.5

Date: 2021-05-06 04:25:42
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.337.600.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.18100.5
Error code: 0x80070643
Error description: Fatal error during installation.

Date: 2021-05-06 04:25:41
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 1.339.26.0
Previous security intelligence Version: 1.337.600.0
Update Source: User
Security intelligence Type: AntiSpyware
Update Type: Delta
Current Engine Version: 1.1.18100.6
Previous Engine Version: 1.1.18100.5
Error code: 0x80070666
Error description: Another version of this product is already installed. Installation of this version cannot continue. To configure or remove the existing version of this product, use Add/Remove Programs on the Control Panel.

Date: 2021-05-06 04:25:41
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version: 1.339.26.0
Previous security intelligence Version: 1.337.600.0
Update Source: User
Security intelligence Type: AntiVirus
Update Type: Delta
Current Engine Version: 1.1.18100.6
Previous Engine Version: 1.1.18100.5
Error code: 0x80070666
Error description: Another version of this product is already installed. Installation of this version cannot continue. To configure or remove the existing version of this product, use Add/Remove Programs on the Control Panel.

Date: 2021-05-06 04:25:41
Description:
Microsoft Defender Antivirus has encountered an error trying to update the engine.
New Engine Version: 1.1.18100.6
Previous Engine Version: 1.1.18100.5
Error Code: 0x80070666
Error description: Another version of this product is already installed. Installation of this version cannot continue. To configure or remove the existing version of this product, use Add/Remove Programs on the Control Panel.

Date: 2021-04-11 14:15:12
Description:
Microsoft Defender Antivirus has encountered an error trying to restore an item from quarantine.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: Trojan:Win32/Ymacco.AB2D
Severity: Závažná
Category: Trójsky kôň
Error Code: 0x80508014
Error description: Položku v karanténe nie je možné obnoviť.
Security intelligence Version: AV: 1.335.603.0, AS: 1.335.603.0
Engine Version: 1.1.18000.5

CodeIntegrity:
===============
Date: 2021-05-31 22:23:18
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\Avast Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends Inc. 2.L0 01/22/2019
Motherboard: MSI B350M GAMING PRO (MS-7A39)
Processor: AMD Ryzen 5 2600 Six-Core Processor
Percentage of memory in use: 24%
Total physical RAM: 16335.13 MB
Available physical RAM: 12340.68 MB
Total Virtual: 18767.13 MB
Available Virtual: 12341.89 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:223.07 GB) (Free:59.96 GB) NTFS
Drive e: (DATA) (Fixed) (Total:931.51 GB) (Free:504.01 GB) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{33d4e0ca-0000-0000-0000-90c437000000}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS
\\?\Volume{5f94829e-abbd-11eb-b554-806e6f6e6963}\ () (Removable) (Total:0 GB) (Free:0 GB)

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: D0D77719)
Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (Size: 223.6 GB) (Disk ID: 33D4E0CA)
Partition 1: (Not Active) - (Size=223.1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=517 MB) - (Type=27)

==========================================================
Disk: 2 (Protective MBR) (Size: 116.2 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

Re: Poprosim o preventivku

Napsal: 06 čer 2021 19:12
od PureHate44
Nikto nič ? Skúsim niekde inde....Lock... :thumbsup:

Re: Poprosim o preventivku

Napsal: 18 čer 2021 22:20
od Conder
Zdravim :)

Tema nam vypadla z prehladu tem bez odpovede, kedze si odoslal viac prispevkov.

:arrow: Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/
  • Uloz na plochu a ukonci vsetky programy
  • Spusti AdwCleaner ako spravca
  • Odsuhlas licencne podmienky
  • Klikni na Spustit skenovani a pockaj na dokoncenie
  • V pripade nalezov nechaj vsetky nalezy oznacene a klikni na Karantena (ak nie su ziadne nalezy, tak na Spustit zakladni opravu)
  • V pripade, ze sa detekuje aj "predinstalovany software", tieto programy mozes, ale nemusis zmazat (toto nie su skodlive programy, ale iba zbytocnosti)
  • Potvrd vyzvu, pockaj na dokoncenie a potvrd restartovanie PC
  • Po restartovani PC sa otvori AdwCleaner, klikni na Zobrazit soubor protokolu
  • Otvori sa log, jeho obsah skopiruj a vloz do dalsej odpovede
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz