VIRY.CZ

Dobrý večer prosím o radu,

Při hře BF 5 vysoký ping a nelze se přihlásit k EA serverům, při přihlášení k účtu Windows se spustí internetový prohlížeč a otevře stránky, které při zavření karty se opět spustí a tak pořád dokola.

Moc děkuji Drajfus

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-12-2021
Ran by Radim (administrator) on DESKTOP-PIDEN7P (LENOVO 82EY) (28-12-2021 19:05:53)
Running from C:\Users\Radim\Desktop
Loaded Profiles: Radim
Platform: Microsoft Windows 10 Pro Version 20H2 19042.1165 (X64) Language: Čeština (Česko)
Default browser: Brave
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0361612.inf_amd64_b679e02f70413f9f\B361368\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0361612.inf_amd64_b679e02f70413f9f\B361368\atiesrxx.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe <13>
(Discord Inc. -> Discord Inc.) C:\Users\Radim\AppData\Local\Discord\app-1.0.9003\Discord.exe <6>
(Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\DAX3_S~2.INF\DAX3API.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_fe9531bca29258f3\DAX3API.exe
(Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe <5>
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginClientService.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2109.6305.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12107.1001.15.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvlt.inf_amd64_01ef36ba3f9e7237\Display.NvContainer\NVDisplay.Container.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Volkswagen AG) [File not signed] C:\ElsaWin\bin\LcSvrAdm.exe
(Volkswagen AG) [File not signed] C:\ElsaWin\bin\LcSvrAuf.exe
(Volkswagen AG) [File not signed] C:\ElsaWin\bin\LcSvrDba.exe
(Volkswagen AG) [File not signed] C:\ElsaWin\bin\LcSvrHis.exe
(Volkswagen AG) [File not signed] C:\ElsaWin\bin\LcSvrPas.exe
(Volkswagen AG) [File not signed] C:\ElsaWin\bin\LcSvrSaz.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [1086248 2020-05-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [339512 2021-09-22] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-3569167530-3382689829-1244394080-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4267432 2021-12-16] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3569167530-3382689829-1244394080-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3145920 2021-12-19] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-3569167530-3382689829-1244394080-1001\...\Run: [Discord] => C:\Users\Radim\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3569167530-3382689829-1244394080-1002\...\Run: [MicrosoftEdgeAutoLaunch_C11954C7B94E0AA845E01A33AB7A3DFE] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\96.1.33.106\Installer\chrmstp.exe [2021-12-19] (Brave Software, Inc. -> Brave Software, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Java 32bit.bat [2018-01-07] () [File not signed]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {10DAFA28-71DF-4954-9C8F-5E3997183AAA} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3569167530-3382689829-1244394080-1002 => C:\Users\Radim\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe /reporting (No File)
Task: {25C9EE93-7695-4A10-AA65-7F6577CBDD55} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {2D1923B2-A458-40E9-9AD3-14718DB4DEBE} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {6FF8C25C-7271-4D1E-9935-8B4D468A866C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-19] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8EEC747E-A4E4-42F5-AD6A-6A72D0CFB263} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-19] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {98D31746-69BA-4E0F-BC7C-9FC040EE4CF6} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3569167530-3382689829-1244394080-500 => C:\Users\Radim\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Task: {9B720F70-6A74-4F0C-A157-70AC78EE39EC} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {AD0B23C8-633D-4EF5-936C-505D8F2B382C} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162400 2021-04-26] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {AF15208B-1AAD-421B-8CFD-A2395191A4AA} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3569167530-3382689829-1244394080-1002 => C:\Users\Radim\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Task: {C80743E1-092C-4DCE-93A5-DAEAF0BF035C} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162400 2021-04-26] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {D17ACBF8-CBAF-419B-9B54-DC8FFD518407} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-19] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D49AA24C-5CD7-4FF3-9109-101E8527DD71} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MpCmdRun.exe [901048 2021-12-19] (Microsoft Windows Publisher -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{92587f30-7a25-417a-8f5e-5a0f80b56f2f}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{a315ac24-f5f2-4435-86a8-604f07e6768a}: [DhcpNameServer] 192.168.0.1

Edge:
=======
Edge Profile: C:\Users\Radim\AppData\Local\Microsoft\Edge\User Data\Default [2021-12-28]

FireFox:
========
FF DefaultProfile: 30b47bxx.default
FF ProfilePath: C:\Users\Radim\AppData\Roaming\Mozilla\Firefox\Profiles\30b47bxx.default [2021-04-26]
FF ProfilePath: C:\Users\Radim\AppData\Roaming\Mozilla\Firefox\Profiles\2kd03z9g.default-release [2021-04-26]
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2021-11-07] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2021-11-07] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\Radim\AppData\Local\Google\Chrome\User Data\Default [2021-12-28]
CHR StartupUrls: Default -> "hxxps://www.google.com/"

Brave:
=======
BRA Profile: C:\Users\Radim\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2021-12-28]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Radim\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2021-10-14]
BRA Extension: (Brave NTP background images) - C:\Users\Radim\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2021-12-19]
BRA Extension: (Wallet Data Files Updater) - C:\Users\Radim\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2021-12-03]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\Radim\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2021-12-28]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\Radim\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2021-10-14]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Radim\AppData\Local\BraveSoftware\Brave-Browser\User Data\efkihffiamafhbhefjaljejgdpkelpal [2021-12-28]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\Radim\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2021-10-13]
BRA Extension: (Brave Ad Block Updater (CZE, SVK: EasyList Czech and Slovak)) - C:\Users\Radim\AppData\Local\BraveSoftware\Brave-Browser\User Data\omkkefoeihpbpebhhbhmjekpnegokpbj [2021-12-28]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\Radim\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2021-12-25]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [99104 2021-08-20] (Apple Inc. -> Apple Inc.)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162400 2021-04-26] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162400 2021-04-26] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 DolbyDAXAPI; C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_fe9531bca29258f3\DAX3API.exe [1928648 2020-05-19] (Dolby Laboratories, Inc. -> Dolby Laboratories)
R2 FMAPOService; C:\Windows\System32\FMService64.exe [390400 2020-05-21] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
R2 LcSvrAdm; C:\ElsaWin\bin\LcSvrAdm.exe [240640 2011-12-06] (Volkswagen AG) [File not signed]
R3 LcSvrAuf; C:\ElsaWin\bin\LcSvrAuf.exe [1321472 2011-12-06] (Volkswagen AG) [File not signed]
R2 LcSvrDba; C:\ElsaWin\bin\LcSvrDba.exe [392704 2011-12-06] (Volkswagen AG) [File not signed]
R2 LcSvrHis; C:\ElsaWin\bin\LcSvrHis.exe [335360 2011-12-06] (Volkswagen AG) [File not signed]
R2 LcSvrPAS; C:\ElsaWin\bin\LcSvrPas.exe [477696 2011-12-06] (Volkswagen AG) [File not signed]
R2 LcSvrSaz; C:\ElsaWin\bin\LcSvrSaz.exe [373248 2011-12-06] (Volkswagen AG) [File not signed]
R3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2559704 2021-12-19] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3477728 2021-12-19] (Electronic Arts, Inc. -> Electronic Arts)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5414976 2021-10-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 UsoSvc; C:\Windows\system32\usosvc.dll [569856 2021-09-01] (Microsoft Corporation) [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\NisSrv.exe [2876152 2021-12-19] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe [128360 2021-12-19] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 wuauserv; C:\Windows\system32\wuaueng.dll [3399680 2021-09-01] (Microsoft Corporation) [File not signed]
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvlt.inf_amd64_01ef36ba3f9e7237\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvlt.inf_amd64_01ef36ba3f9e7237\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleKmdfFilter; C:\Windows\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R3 MpKslc9f0dafc; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8D264246-46BB-4FE7-BB0A-95C30437F61E}\MpKslDrv.sys [134376 2021-12-28] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [48536 2021-12-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [435432 2021-12-19] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [86248 2021-12-19] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-12-28 19:05 - 2021-12-28 19:06 - 000017208 _____ C:\Users\Radim\Desktop\FRST.txt
2021-12-28 19:05 - 2021-12-28 19:06 - 000000000 ____D C:\FRST
2021-12-28 19:03 - 2021-12-28 19:03 - 002311168 _____ (Farbar) C:\Users\Radim\Desktop\FRST64.exe
2021-12-28 18:47 - 2021-12-28 18:47 - 000000000 ____D C:\Battlefield V
2021-12-28 18:35 - 2021-12-28 18:41 - 000000000 ____D C:\Users\Radim\AppData\Local\Avast Software
2021-12-28 18:35 - 2021-12-28 18:37 - 000000000 ____D C:\Program Files (x86)\Google
2021-12-28 18:35 - 2021-12-28 18:35 - 000000000 ____D C:\Users\Radim\AppData\Local\Google
2021-12-28 18:34 - 2021-12-28 18:34 - 000061304 _____ () C:\Windows\system32\Drivers\lpsport.sys
2021-12-28 18:33 - 2021-12-28 18:41 - 000000000 ____D C:\ProgramData\Avast Software
2021-12-12 14:14 - 2021-12-12 14:14 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3569167530-3382689829-1244394080-1002
2021-12-07 13:55 - 2021-12-07 13:55 - 004808542 _____ (Titan Launcher) C:\Users\Michaela\Downloads\Minecraft Launcher (1).exe
2021-12-07 13:30 - 2021-12-07 13:30 - 000000000 ____D C:\Users\Michaela\AppData\Roaming\WinRAR
2021-12-07 13:24 - 2021-12-07 13:24 - 004808542 _____ (Titan Launcher) C:\Users\Michaela\Downloads\Minecraft Launcher.exe
2021-12-07 12:58 - 2021-12-07 12:58 - 000000000 ____D C:\Users\Michaela\AppData\LocalLow\SKS

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-12-28 19:07 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-12-28 18:56 - 2021-11-06 17:05 - 000000000 ____D C:\Users\Radim\AppData\Roaming\discord
2021-12-28 18:56 - 2021-04-27 16:42 - 000000000 ____D C:\Program Files (x86)\Steam
2021-12-28 18:52 - 2020-11-19 00:55 - 001605602 _____ C:\Windows\system32\PerfStringBackup.INI
2021-12-28 18:52 - 2019-12-07 15:43 - 000683504 _____ C:\Windows\system32\perfh005.dat
2021-12-28 18:52 - 2019-12-07 15:43 - 000137284 _____ C:\Windows\system32\perfc005.dat
2021-12-28 18:52 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2021-12-28 18:42 - 2021-11-06 17:05 - 000000000 ____D C:\Users\Radim\AppData\Local\Discord
2021-12-28 18:42 - 2021-11-01 21:15 - 000000000 ____D C:\Program Files (x86)\Origin Games
2021-12-28 18:42 - 2021-11-01 21:13 - 000000000 ____D C:\Users\Radim\AppData\Roaming\Origin
2021-12-28 18:42 - 2021-11-01 21:13 - 000000000 ____D C:\Users\Radim\AppData\Local\Origin
2021-12-28 18:42 - 2021-11-01 21:13 - 000000000 ____D C:\ProgramData\Origin
2021-12-28 18:41 - 2021-04-27 16:40 - 000000000 ____D C:\ProgramData\NVIDIA
2021-12-28 18:41 - 2021-04-27 00:54 - 000008192 ___SH C:\DumpStack.log.tmp
2021-12-28 18:41 - 2020-11-19 00:46 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-12-28 18:39 - 2019-12-07 10:03 - 001048576 _____ C:\Windows\system32\config\BBI
2021-12-28 18:34 - 2019-12-07 10:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2021-12-28 18:31 - 2020-11-18 23:46 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-12-25 12:00 - 2021-10-16 16:07 - 000000000 ____D C:\Users\Michaela\Documents\The Witcher 3
2021-12-25 11:58 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState
2021-12-25 11:51 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2021-12-19 18:19 - 2021-04-26 19:18 - 000000000 ____D C:\Users\Radim\AppData\Local\D3DSCache
2021-12-19 14:24 - 2020-11-19 00:46 - 000000000 ____D C:\Windows\system32\Drivers\wd
2021-12-19 14:12 - 2021-11-01 21:15 - 000000000 ____D C:\Program Files (x86)\Origin
2021-12-19 14:08 - 2021-04-26 19:15 - 000002364 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2021-12-19 14:08 - 2020-11-19 00:48 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-12-19 14:08 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-12-12 14:15 - 2021-09-01 19:02 - 000000000 ____D C:\Users\Michaela\AppData\Local\D3DSCache
2021-12-12 14:15 - 2020-11-19 00:48 - 000003584 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-12-12 14:15 - 2020-11-19 00:48 - 000003460 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-12-07 14:01 - 2021-11-07 20:21 - 000000000 ____D C:\Users\Michaela\AppData\Roaming\.minecraft
2021-12-02 16:35 - 2021-09-01 19:03 - 000003386 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3569167530-3382689829-1244394080-1002
2021-12-02 16:35 - 2021-09-01 19:02 - 000002390 _____ C:\Users\Michaela\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-12-01 12:27 - 2021-04-26 19:15 - 000003496 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineUA
2021-12-01 12:27 - 2021-04-26 19:15 - 000003372 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineCore

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-12-2021
Ran by Radim (28-12-2021 19:07:57)
Running from C:\Users\Radim\Desktop
Microsoft Windows 10 Pro Version 20H2 19042.1165 (X64) (2021-04-26 23:56:15)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-3569167530-3382689829-1244394080-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3569167530-3382689829-1244394080-503 - Limited - Disabled)
Guest (S-1-5-21-3569167530-3382689829-1244394080-501 - Limited - Disabled)
Michaela (S-1-5-21-3569167530-3382689829-1244394080-1002 - Limited - Enabled) => C:\Users\Michaela
Radim (S-1-5-21-3569167530-3382689829-1244394080-1001 - Administrator - Enabled) => C:\Users\Radim
WDAGUtilityAccount (S-1-5-21-3569167530-3382689829-1244394080-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 21.007.20099 - Adobe Systems Incorporated)
Adobe SVG Viewer 3.0 (HKLM-x32\...\Adobe SVG Viewer) (Version: 3.0 - )
Apple Mobile Device Support (HKLM\...\{527DD209-8A66-482F-8779-C7B3BACCA8F1}) (Version: 15.0.0.16 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
Battlefield™ V (HKLM-x32\...\{e26b382f-e945-4f70-9318-121b683f1d61}) (Version: 1.0.64.43202 - Electronic Arts)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 96.1.33.106 - Autoři prohlížeče Brave)
Discord (HKU\S-1-5-21-3569167530-3382689829-1244394080-1001\...\Discord) (Version: 1.0.9003 - Discord Inc.)
ElsaWin (HKLM-x32\...\ElsaWin) (Version: 4.00 - )
Gas Station Simulator (HKLM-x32\...\Gas Station Simulator_is1) (Version: - )
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.101.0 - Google LLC) Hidden
iTunes (HKLM\...\{4C2F1221-6FDE-439E-8561-F7770ED95EC1}) (Version: 12.12.1.1 - Apple Inc.)
Java 8 Update 151 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{88EC8D4A-54AB-4A7F-BDE9-4AD906D9D11F}) (Version: 3.2.2110.14001 - Microsoft Corporation)
LibreOffice 7.1 Help Pack (Czech) (HKLM\...\{60A188F2-1CE4-4AFD-9E74-98F97DD908B1}) (Version: 7.1.2.2 - The Document Foundation)
LibreOffice 7.1.2.2 (HKLM\...\{07426A34-E0CD-4EC4-843B-F7A47C7BC835}) (Version: 7.1.2.2 - The Document Foundation)
Mafia - Definitve Edition (HKLM-x32\...\{D383B15E-3CE1-4B7F-8E88-F93D39BB2E5C}_is1) (Version: - hangar 13)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 96.0.1054.62 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3569167530-3382689829-1244394080-1002\...\OneDriveSetup.exe) (Version: 21.230.1107.0004 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Minecraft 1.12.2 + Titan Launcher 3.7.0 (HKLM-x32\...\Minecraft 1.12.2 + Titan Launcher 3.7.0 1.12.2) (Version: 1.12.2 - Mojang)
Mozilla Firefox 88.0 (x64 cs) (HKLM\...\Mozilla Firefox 88.0 (x64 cs)) (Version: 88.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 78.10.0 - Mozilla)
Mozilla Thunderbird 78.10.0 (x64 cs) (HKLM\...\Mozilla Thunderbird 78.10.0 (x64 cs)) (Version: 78.10.0 - Mozilla)
NVIDIA Ovladače grafiky 457.49 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 457.49 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.108.49699 - Electronic Arts, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN)
WinRAR 6.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.01.0 - win.rar GmbH)

Packages:
=========
Dolby Audio -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAudio_3.20602.609.0_x64__rz1tebttyb220 [2021-10-13] (Dolby Laboratories)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-10-13] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_132.1.257.0_x64__v10z8vjag6ke6 [2021-11-01] (HP Inc.)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.10270.0_x64__8wekyb3d8bbwe [2021-11-07] (Microsoft Studios) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-09-01] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.12.219.0_x64__dt26b99r8h8gj [2021-09-01] (Realtek Semiconductor Corp)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3569167530-3382689829-1244394080-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Radim\AppData\Local\Microsoft\OneDrive\19.043.0304.0013\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-3569167530-3382689829-1244394080-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Radim\AppData\Local\Microsoft\OneDrive\19.043.0304.0013\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-3569167530-3382689829-1244394080-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Radim\AppData\Local\Microsoft\OneDrive\19.043.0304.0013\amd64\FileSyncShell64.dll => No File
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvlt.inf_amd64_01ef36ba3f9e7237\nvshext.dll [2021-06-21] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2021-11-01 21:15 - 2021-12-19 14:11 - 000015360 _____ () [File not signed] C:\Program Files (x86)\Origin\libEGL.DLL
2021-11-01 21:15 - 2021-12-19 14:11 - 003090944 _____ () [File not signed] C:\Program Files (x86)\Origin\libGLESv2.dll
2021-04-27 16:43 - 2021-10-06 02:30 - 126961152 _____ () [File not signed] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libcef.dll
2021-04-27 16:43 - 2021-10-06 02:30 - 000384000 _____ () [File not signed] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libegl.dll
2021-04-27 16:43 - 2021-10-06 02:30 - 008006656 _____ () [File not signed] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libglesv2.dll
2021-09-01 19:08 - 2021-09-01 19:08 - 000569856 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\usosvc.dll
2021-09-01 19:06 - 2021-07-31 19:45 - 001721856 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.19041.1151_none_91a40286cc884949\gdiplus.dll
2021-09-01 19:06 - 2021-07-31 19:45 - 001459712 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.19041.1151_none_d951395de104724f\gdiplus.dll
2021-04-27 16:43 - 2021-10-06 02:30 - 000983552 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\chrome_elf.dll
2021-12-19 14:12 - 2021-12-19 14:11 - 000002560 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\Origin\icudt58.dll
2021-12-19 14:12 - 2021-12-19 14:11 - 001252864 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\Origin\icuuc58.dll
2021-11-01 21:15 - 2021-12-19 14:11 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2021-11-01 21:15 - 2021-12-19 14:11 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2021-12-19 14:12 - 2021-12-19 14:11 - 000030208 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qgif.dll
2021-12-19 14:12 - 2021-12-19 14:11 - 000032768 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qico.dll
2021-12-19 14:12 - 2021-12-19 14:11 - 000256512 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2021-12-19 14:12 - 2021-12-19 14:11 - 000026112 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qtga.dll
2021-12-19 14:12 - 2021-12-19 14:11 - 000305152 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2021-12-19 14:12 - 2021-12-19 14:11 - 000025600 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qwbmp.dll
2021-11-01 21:15 - 2021-12-19 14:11 - 000278016 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\mediaservice\dsengine.dll
2021-11-01 21:15 - 2021-12-19 14:11 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2021-12-19 14:12 - 2021-12-19 14:11 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2021-12-19 14:12 - 2021-12-19 14:11 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2021-12-19 14:12 - 2021-12-19 14:11 - 000709120 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Multimedia.dll
2021-12-19 14:12 - 2021-12-19 14:11 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2021-12-19 14:12 - 2021-12-19 14:11 - 000207360 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Positioning.dll
2021-12-19 14:12 - 2021-12-19 14:11 - 000310272 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5PrintSupport.dll
2021-12-19 14:12 - 2021-12-19 14:11 - 003513344 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Qml.dll
2021-12-19 14:12 - 2021-12-19 14:11 - 003390976 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Quick.dll
2021-12-19 14:12 - 2021-12-19 14:11 - 000068096 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5QuickWidgets.dll
2021-12-19 14:12 - 2021-12-19 14:11 - 000045568 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5TextToSpeech.dll
2021-12-19 14:12 - 2021-12-19 14:11 - 054071296 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebEngineCore.dll
2021-12-19 14:12 - 2021-12-19 14:11 - 000211456 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebEngineWidgets.dll
2021-12-19 14:12 - 2021-12-19 14:11 - 000116224 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebChannel.dll
2021-12-19 14:12 - 2021-12-19 14:11 - 000146432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2021-12-19 14:12 - 2021-12-19 14:11 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2021-12-19 14:12 - 2021-12-19 14:11 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
2011-12-06 16:03 - 2011-12-06 16:03 - 000364032 _____ (Volkswagen AG) [File not signed] C:\ElsaWin\bin\vfc10u.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\ssv.dll [2021-11-07] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\jp2ssv.dll [2021-11-07] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: vw-wi - {0F3C833F-FB28-40EA-8CB9-6A55B996C3F6} - C:\ElsaWin\bin\wiprot.dll [2011-12-06] (TODO: <Company name>) [File not signed]

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3569167530-3382689829-1244394080-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Radim\Pictures\2822392.png
HKU\S-1-5-21-3569167530-3382689829-1244394080-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Michaela\Downloads\R+M - kopie.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{85BA214C-02FA-4D4C-8F86-057F755ADAB8}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{77627226-CB7D-437D-8984-C9D37945AB3B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E2E2FF31-E907-4603-9C4D-45B0FA00E31C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{1104D442-07D3-469C-A275-51218D1BF4E1}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{DC4C1654-A4DE-4C40-A0D4-8067C1C2D95E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{B12B0D45-89B1-4E85-8190-819BF9A943ED}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{1EB6A757-AEC9-4484-BBC2-DDFE674F1B56}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe () [File not signed]
FirewallRules: [{89605BA7-2A6E-4975-9F08-24305B05A612}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe () [File not signed]
FirewallRules: [{1FC763E2-FB83-483C-8FB0-92A13E7B5AEE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForestVR.exe () [File not signed]
FirewallRules: [{AB380CE7-E7AE-4C3D-8638-A89EF80B5B37}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForestVR.exe () [File not signed]
FirewallRules: [{C5F4DAD9-67F3-49EC-B74E-0F9888069745}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{438F486A-E62C-4721-B771-A03856459718}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E34650DD-7A1F-413C-B4A6-610F04D816E6}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F88C21A6-27AC-4159-B67A-62AF9E149569}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7DA2431C-0E36-43E0-A9C3-49E9AF84F2BD}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6B6070DB-C8F6-41D2-A37B-CAB8944A1491}] => (Allow) LPort=135
FirewallRules: [{69758B56-A3DD-43A6-B5A2-1120189CBC71}] => (Allow) C:\ElsaWin\bin\ElsaWin.exe (Volkswagen AG) [File not signed]
FirewallRules: [{AA2D2C2E-A612-404B-B3E7-4ADA48B2E257}] => (Allow) C:\ElsaWin\bin\ElsaWin.exe (Volkswagen AG) [File not signed]
FirewallRules: [{6A068830-A0F4-4F8D-BD03-91D1A8B335D6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [File not signed]
FirewallRules: [{634200EF-BA03-4427-836D-0AE543EB2BC6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [File not signed]
FirewallRules: [{55FF2913-B470-4674-856F-3984FC7DE322}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4104D9E3-0440-4F4C-8B09-349EC35A879A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{720D2572-C44B-4FA1-B38F-5E263F270C8D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F13C06F6-C019-49E9-858F-470E6F1FB3DA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F685AA7D-AAFA-441D-89F3-D0905C615745}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{B3B3CD4E-950A-4310-8BE5-CBD4CDB34142}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{80A65A46-D411-44F9-A687-F175DBEC945E}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield V\bfv.exe (EA Digital Illusions CE AB) [File not signed]
FirewallRules: [{C7D323DA-26C9-4344-8980-39CC824387ED}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield V\bfv.exe (EA Digital Illusions CE AB) [File not signed]
FirewallRules: [TCP Query User{06792315-33D7-4D00-8316-A7D782479637}C:\program files (x86)\java\jre1.8.0_151\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_151\bin\javaw.exe
FirewallRules: [UDP Query User{3677066A-0B93-4E51-B836-926F7C2E2021}C:\program files (x86)\java\jre1.8.0_151\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_151\bin\javaw.exe
FirewallRules: [{DD1D545A-E098-4750-854A-245174BCABB8}] => (Allow) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)

==================== Restore Points =========================

07-12-2021 13:05:34 Installed Minecraft Launcher
19-12-2021 18:26:17 Naplánovaný kontrolní bod
28-12-2021 18:04:24 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (12/28/2021 07:06:16 PM) (Source: VSS) (EventID: 12289) (User: )
Description: Chyba služby Stínová kopie svazků: Neočekávaná chyba DeviceIoControl(\\?\Volume{d9fa2484-0000-0000-0000-300300000000} - 0000000000000254,0x0053c028,0000010B2B0076F0,0,0000010B2B0066C0,4096,[0]). hr = 0x80070005, Přístup byl odepřen.
.

Operace:
Automatický výběr svazku rozdílové oblasti
Probíhá zpracování události EndPrepareSnapshots

Kontext:
Kontext spuštění: System Provider

Error: (12/28/2021 07:05:49 PM) (Source: VSS) (EventID: 12289) (User: )
Description: Chyba služby Stínová kopie svazků: Neočekávaná chyba DeviceIoControl(\\?\Volume{d9fa2484-0000-0000-0000-300300000000} - 0000000000000214,0x0053c028,0000010B2B0076F0,0,0000010B2B0066C0,4096,[0]). hr = 0x80070005, Přístup byl odepřen.
.

Operace:
Automatický výběr svazku rozdílové oblasti
Probíhá zpracování události EndPrepareSnapshots

Kontext:
Kontext spuštění: System Provider

Error: (12/28/2021 07:00:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_wuauserv, verze: 10.0.19041.546, časové razítko: 0x058e175a
Název chybujícího modulu: wuaueng.dll, verze: 10.0.19041.1151, časové razítko: 0x29b7f68a
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000088e26
ID chybujícího procesu: 0x19a4
Čas spuštění chybující aplikace: 0x01d7fc14de614a24
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: c:\windows\system32\wuaueng.dll
ID zprávy: d409af6f-52c4-49e7-b3be-83aa8901d0bd
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/28/2021 06:58:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_wuauserv, verze: 10.0.19041.546, časové razítko: 0x058e175a
Název chybujícího modulu: wuaueng.dll, verze: 10.0.19041.1151, časové razítko: 0x29b7f68a
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000088e26
ID chybujícího procesu: 0x343c
Čas spuštění chybující aplikace: 0x01d7fc1495a6a7cd
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: c:\windows\system32\wuaueng.dll
ID zprávy: 6d4f7520-1253-440d-b01c-19abff944a46
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/28/2021 06:56:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_wuauserv, verze: 10.0.19041.546, časové razítko: 0x058e175a
Název chybujícího modulu: wuaueng.dll, verze: 10.0.19041.1151, časové razítko: 0x29b7f68a
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000088e26
ID chybujícího procesu: 0x313c
Čas spuštění chybující aplikace: 0x01d7fc144d1717d2
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: c:\windows\system32\wuaueng.dll
ID zprávy: 95bb4327-3dcc-434d-a61d-6aef3e9787b8
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/28/2021 06:54:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_wuauserv, verze: 10.0.19041.546, časové razítko: 0x058e175a
Název chybujícího modulu: wuaueng.dll, verze: 10.0.19041.1151, časové razítko: 0x29b7f68a
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000148513
ID chybujícího procesu: 0x1504
Čas spuštění chybující aplikace: 0x01d7fc13eb6f6be6
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: c:\windows\system32\wuaueng.dll
ID zprávy: b49c4d58-bf70-4016-aff3-a5e8414ab050
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/28/2021 06:52:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_wuauserv, verze: 10.0.19041.546, časové razítko: 0x058e175a
Název chybujícího modulu: wuaueng.dll, verze: 10.0.19041.1151, časové razítko: 0x29b7f68a
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000019f63a
ID chybujícího procesu: 0xd64
Čas spuštění chybující aplikace: 0x01d7fc13a0777738
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: c:\windows\system32\wuaueng.dll
ID zprávy: f90bb611-7884-4440-826e-db0004c81a37
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/28/2021 06:47:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_wuauserv, verze: 10.0.19041.546, časové razítko: 0x058e175a
Název chybujícího modulu: wuaueng.dll, verze: 10.0.19041.1151, časové razítko: 0x29b7f68a
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000088e26
ID chybujícího procesu: 0x2720
Čas spuštění chybující aplikace: 0x01d7fc12f888594c
Cesta k chybující aplikaci: C:\Windows\system32\svchost.exe
Cesta k chybujícímu modulu: c:\windows\system32\wuaueng.dll
ID zprávy: 8609d6da-688d-455f-a070-960d4d6a95b1
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

System errors:
=============
Error: (12/28/2021 07:03:00 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {E60687F7-01A1-40AA-86AC-DB1CBF673334} se v daném časovém limitu neregistroval u služby DCOM.

Error: (12/28/2021 07:01:00 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Windows Update byla neočekávaně ukončena. Tento stav nastal již 9krát.

Error: (12/28/2021 07:00:59 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {E60687F7-01A1-40AA-86AC-DB1CBF673334} se v daném časovém limitu neregistroval u služby DCOM.

Error: (12/28/2021 06:58:59 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Windows Update byla neočekávaně ukončena. Tento stav nastal již 8krát.

Error: (12/28/2021 06:58:57 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {E60687F7-01A1-40AA-86AC-DB1CBF673334} se v daném časovém limitu neregistroval u služby DCOM.

Error: (12/28/2021 06:56:57 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Windows Update byla neočekávaně ukončena. Tento stav nastal již 7krát.

Error: (12/28/2021 06:56:15 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {E60687F7-01A1-40AA-86AC-DB1CBF673334} se v daném časovém limitu neregistroval u služby DCOM.

Error: (12/28/2021 06:54:15 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Windows Update byla neočekávaně ukončena. Tento stav nastal již 6krát.

Windows Defender:
================
Date: 2021-12-28 19:05:50
Description:
Řízený přístup ke složkám zablokoval pro C:\Windows\System32\svchost.exe provádění změn v paměti.
Čas detekce: 2021-12-28T18:05:50.874Z
Uživatel: NT AUTHORITY\SYSTEM
Cesta: \Device\HarddiskVolume1
Název procesu: C:\Windows\System32\svchost.exe
Verze bezpečnostních informací: 1.355.939.0
Verze modulu: 1.1.18800.4
Verze produktu: 4.18.2111.5

Date: 2021-12-28 18:58:35
Description:
Řízený přístup ke složkám zablokoval pro C:\Windows\System32\svchost.exe možnost upravit %userprofile%\Videos.
Čas detekce: 2021-12-28T17:58:35.869Z
Uživatel: DESKTOP-PIDEN7P\Radim
Cesta: %userprofile%\Videos
Název procesu: C:\Windows\System32\svchost.exe
Verze bezpečnostních informací: 1.355.939.0
Verze modulu: 1.1.18800.4
Verze produktu: 4.18.2111.5

Date: 2021-12-28 18:55:22
Description:
Řízený přístup ke složkám zablokoval pro C:\Windows\System32\svchost.exe možnost upravit %userprofile%\Videos.
Čas detekce: 2021-12-28T17:55:22.486Z
Uživatel: DESKTOP-PIDEN7P\Radim
Cesta: %userprofile%\Videos
Název procesu: C:\Windows\System32\svchost.exe
Verze bezpečnostních informací: 1.355.939.0
Verze modulu: 1.1.18800.4
Verze produktu: 4.18.2111.5

Date: 2021-12-28 18:55:10
Description:
Řízený přístup ke složkám zablokoval pro C:\Windows\System32\svchost.exe možnost upravit %userprofile%\Videos.
Čas detekce: 2021-12-28T17:55:10.273Z
Uživatel: DESKTOP-PIDEN7P\Radim
Cesta: %userprofile%\Videos
Název procesu: C:\Windows\System32\svchost.exe
Verze bezpečnostních informací: 1.355.939.0
Verze modulu: 1.1.18800.4
Verze produktu: 4.18.2111.5

Date: 2021-12-28 18:54:54
Description:
Řízený přístup ke složkám zablokoval pro C:\Windows\System32\svchost.exe možnost upravit %userprofile%\Videos.
Čas detekce: 2021-12-28T17:54:54.061Z
Uživatel: DESKTOP-PIDEN7P\Radim
Cesta: %userprofile%\Videos
Název procesu: C:\Windows\System32\svchost.exe
Verze bezpečnostních informací: 1.355.939.0
Verze modulu: 1.1.18800.4
Verze produktu: 4.18.2111.5
Event[0]:

Date: 2021-12-28 18:56:15
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.355.939.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18800.4
Kód chyby: 0x800706be
Popis chyby: Vzdálené volání procedury se nezdařilo.

Date: 2021-12-28 18:03:22
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.355.939.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18800.4
Kód chyby: 0x800706be
Popis chyby: Vzdálené volání procedury se nezdařilo.

Date: 2021-12-27 12:13:23
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.355.830.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18800.4
Kód chyby: 0x800706be
Popis chyby: Vzdálené volání procedury se nezdařilo.

Date: 2021-12-26 18:43:07
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.355.830.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18800.4
Kód chyby: 0x800706be
Popis chyby: Vzdálené volání procedury se nezdařilo.

Date: 2021-12-25 12:13:17
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.355.830.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18800.4
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.

CodeIntegrity:
===============
Date: 2021-12-28 19:00:23
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2021-12-28 18:36:54
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2021-12-28 18:36:52
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Avast Software\Avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info ===========================

BIOS: LENOVO FCCN15WW 12/23/2020
Motherboard: LENOVO LNVNB161216
Processor: AMD Ryzen 5 4600H with Radeon Graphics
Percentage of memory in use: 36%
Total physical RAM: 15741.31 MB
Available physical RAM: 10029.9 MB
Total Virtual: 18173.31 MB
Available Virtual: 10797.04 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:476.4 GB) (Free:69.72 GB) NTFS

\\?\Volume{d9fa2484-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.05 GB) (Free:0.02 GB) NTFS
\\?\Volume{d9fa2484-0000-0000-0000-c01c77000000}\ () (Fixed) (Total:0.49 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 476.9 GB) (Disk ID: D9FA2484)
Partition 1: (Active) - (Size=50 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=476.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=500 MB) - (Type=27)

==================== End of Addition.txt =======================

Zdravím!
Vysoký ping obvykle bývá často problém připojení. Zkusíme ale vyčistit. Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Zdravím, to už jsem zkoušel a bohužel nic nenalezl...

OK. Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
C:\Program Files\Bonjour
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-3569167530-3382689829-1244394080-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Radim\AppData\Local\Microsoft\OneDrive\19.043.0304.0013\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-3569167530-3382689829-1244394080-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Radim\AppData\Local\Microsoft\OneDrive\19.043.0304.0013\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-3569167530-3382689829-1244394080-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Radim\AppData\Local\Microsoft\OneDrive\19.043.0304.0013\amd64\FileSyncShell64.dll => No File
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Fix result of Farbar Recovery Scan Tool (x64) Version: 27-12-2021
Ran by Radim (29-12-2021 12:06:26) Run:1
Running from C:\Users\Radim\Desktop
Loaded Profiles: Radim & Michaela
Boot Mode: Normal
==============================================

fixlist content:
*****************
CloseProcesses:
C:\Program Files\Bonjour
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-3569167530-3382689829-1244394080-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Radim\AppData\Local\Microsoft\OneDrive\19.043.0304.0013\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-3569167530-3382689829-1244394080-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Radim\AppData\Local\Microsoft\OneDrive\19.043.0304.0013\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-3569167530-3382689829-1244394080-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Radim\AppData\Local\Microsoft\OneDrive\19.043.0304.0013\amd64\FileSyncShell64.dll => No File
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File

EmptyTemp:
End
*****************

Processes closed successfully.
C:\Program Files\Bonjour => moved successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKU\S-1-5-21-3569167530-3382689829-1244394080-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E} => removed successfully
HKU\S-1-5-21-3569167530-3382689829-1244394080-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C} => removed successfully
HKU\S-1-5-21-3569167530-3382689829-1244394080-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E} => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 1572864 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 23229615 B
Java, Flash, Steam htmlcache => 419427917 B
Windows/system/drivers => 76509838 B
Edge => 0 B
Chrome => 7654517 B
Brave => 437960973 B
Firefox => 18659373 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 10866 B
NetworkService => 8749176 B
Radim => 12106621 B
Michaela => 26227001 B

RecycleBin => 0 B
EmptyTemp: => 984.3 MB temporary data Removed.

================================

The system needed a reboot.

==== End of Fixlog 12:06:45 ====

Smazáno. Nastala nějaká změna?

Bohužel pořád se otvírá prohlížeč a spouští stranky který se pořád obnovují... asi me čeká přehraní win :/

Smažte tento soubor: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Java 32bit.bat

Super moc děkuji

)) posílám na pivko

Rádo se stalo a za příspěvek děkujeme!

VIRY.CZ

zvýšil se ping, nejdou online hry

zvýšil se ping, nejdou online hry

Re: zvýšil se ping, nejdou online hry

Re: zvýšil se ping, nejdou online hry

Re: zvýšil se ping, nejdou online hry

Re: zvýšil se ping, nejdou online hry

Re: zvýšil se ping, nejdou online hry

Re: zvýšil se ping, nejdou online hry

Re: zvýšil se ping, nejdou online hry

Re: zvýšil se ping, nejdou online hry

Re: zvýšil se ping, nejdou online hry