Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o preventivní kontrolu logu po dlouhé době (FRST)

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Javurek
Návštěvník
Návštěvník
Příspěvky: 31
Registrován: 27 pro 2005 11:48
Bydliště: Praha 10

Prosím o preventivní kontrolu logu po dlouhé době (FRST)

#1 Příspěvek od Javurek »

Dobrý den, dlouho jsem nedělal kontrolu tak bych chtěl poprosit o prohlédnutí. Děkuji

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-10-2022
Ran by Javurek (administrator) on DESKTOP-V0E6AN9 (29-10-2022 13:36:45)
Running from C:\Users\Javurek\Downloads
Loaded Profiles: Javurek
Platform: Microsoft Windows 10 Home Version 22H2 19045.2130 (X64) Language: Čeština (Česko)
Default browser: "C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe" --single-argument %1
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\AvastBrowserCrashHandler64.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <5>
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_3c7cc22001913661\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Safer Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(services.exe ->) (Safer-Networking Ltd. -> Safer-Networking Ltd.) [File not signed] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22082.119.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8725248 2015-11-13] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18630280 2018-05-07] (Logitech Inc -> Logitech Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [212192 2022-09-26] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-01-21] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer Networking Ltd. -> Safer-Networking Ltd.)
HKLM-x32\...\Run: [ICAMaintenance_ICAPKIService_RegKeysRefresh] => C:\Program Files (x86)\I.CA\I.CA Maintenance\ICAMaintenance.exe [283904 2019-08-02] (Prvni certifikacni autorita, a.s. -> I.CA, a.s.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\Run: [Steam] => D:\STEAM\steam.exe [4234088 2022-10-19] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\Run: [f.lux] => C:\Users\Javurek\AppData\Local\FluxSoftware\Flux\flux.exe [1515848 2021-06-18] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\Run: [Discord] => C:\Users\Javurek\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4836032 2017-07-03] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.) [File not signed]
HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-09-06] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\Run: [AvastBrowserAutoLaunch_09D3A15F54798255550A80F54B4890A8] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3012592 2022-10-12] (Avast Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [152025856 2022-10-25] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\Run: [Microsoft Edge Update] => C:\Users\Javurek\AppData\Local\Microsoft\EdgeUpdate\1.3.169.31\MicrosoftEdgeUpdateCore.exe [256440 2022-10-15] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\RunOnce: [FlashPlayerUpdate] => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_387_Plugin.exe [1459256 2020-07-09] (Adobe Inc. -> Adobe)
HKLM\...\Windows x64\Print Processors\Canon MG2400 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDBW.DLL [30208 2013-03-24] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\92.2.11577.159\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\106.0.5249.119\Installer\chrmstp.exe [2022-10-14] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\106.0.18815.119\Installer\chrmstp.exe [2022-10-26] (Avast Software s.r.o. -> AVAST Software)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> "C:\Program Files (x86)\AVAST Software\Browser\Application\88.0.7980.150\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\...\Authentication\PLAP Providers: [{0D4C4485-D868-41C6-876A-8AA3F6709BD5}] -> C:\Program Files (x86)\F5 VPN\F5CredProv64.dll [2019-06-25] (F5 Networks Inc -> F5 Networks, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2017-09-27]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS -> SteelSeries ApS)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00A8BF32-0F50-484E-80D9-012338D0AC77} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
Task: {018950DC-A41B-4350-9F6C-46D8CE766C31} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2017-02-28] (Google Inc -> Google Inc.)
Task: {0D5E4B72-E787-48C4-9CC2-6BC4ACD95B4D} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3012592 2022-10-12] (Avast Software s.r.o. -> AVAST Software)
Task: {1FD9EFDD-4BAB-4F47-8838-43C54A33CA6A} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [4747720 2014-06-27] (Safer Networking Ltd. -> Safer-Networking Ltd.)
Task: {21BD145C-14F0-463F-9954-AFF56AB7BB88} - System32\Tasks\ExclusiveTool => C:\Program Files (x86)\DSDCS\InputMapper\ExclusiveModeTool.exe [19968 2016-10-04] (InputMapper) [File not signed]
Task: {250205A1-319D-43D6-86AA-F9F888002B1C} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4946144 2022-09-26] (Avast Software s.r.o. -> AVAST Software)
Task: {452DB89E-732A-42B5-80F7-CBF14113543E} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-4085835496-1999825555-791825568-1002UA => C:\Users\Javurek\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [205744 2022-06-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {5DCD5188-5E82-4CD2-8E82-0D87AA182944} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-4085835496-1999825555-791825568-1002Core => C:\Users\Javurek\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [205744 2022-06-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {78164DFF-25DC-452E-820B-3D6723C834A1} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs (No File)
Task: {889A7239-264B-4279-B1A6-4BA0F1506694} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {930ACB39-4D75-4D1D-9E90-E5F9D103B845} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3012592 2022-10-12] (Avast Software s.r.o. -> AVAST Software)
Task: {9EDDFFA8-F8A1-44FB-B78D-B0270071D3CF} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [5753752 2016-03-21] (Safer-Networking Ltd. -> Safer-Networking Ltd.) [File not signed]
Task: {A80176AB-864D-4682-AA87-FE438761D26C} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {A872C18E-8E71-4EA8-BB88-46198FF2065D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848 2017-02-28] (Google Inc -> Google Inc.)
Task: {ABFE3064-FC4E-478F-90E2-34F82745E8C5} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [6193080 2016-03-21] (Safer-Networking Ltd. -> Safer-Networking Ltd.) [File not signed]
Task: {B9473138-5AEB-49F5-BEC4-07AB78D3E7F1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [13797712 2018-09-06] (Piriform Ltd -> Piriform Ltd)
Task: {C8A9E4E6-DCEB-41B4-BEC6-EB0A13E12705} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_387_Plugin.exe [1459256 2020-07-09] (Adobe Inc. -> Adobe)
Task: {CC652E31-10B1-44F2-B0AE-F0DCD1746DF7} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2250576 2022-05-24] (Avast Software s.r.o. -> Avast Software)
Task: {DA891BB7-E008-4BF0-9438-2BA1CB68180C} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
Task: {DBC5BE9B-FCF0-4046-9E2F-15643E0580DD} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe do-task "E7CF176E110C211B"
Task: {F9B95C85-2ED8-4F38-9C92-350F4611A118} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [1551520 2015-05-14] (ASUSTeK Computer Inc. -> ) [File not signed]
Task: {FE0044C1-2D2E-4EC5-81E3-99BFE13D8D5B} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-07-09] (Adobe Inc. -> Adobe)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 31.30.90.11 31.30.90.12
Tcpip\..\Interfaces\{4d5e95cf-6daf-4e9b-a3b5-617c8c7edff6}: [DhcpNameServer] 31.30.90.11 31.30.90.12

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Javurek\AppData\Local\Microsoft\Edge\User Data\Default [2022-10-26]

FireFox:
========
FF DefaultProfile: k7bojmhd.default
FF ProfilePath: C:\Users\Javurek\AppData\Roaming\Mozilla\Firefox\Profiles\k7bojmhd.default [2022-10-29]
FF Homepage: Mozilla\Firefox\Profiles\k7bojmhd.default -> hxxps://www.seznam.cz/
FF Notifications: Mozilla\Firefox\Profiles\k7bojmhd.default -> hxxps://us.forums.blizzard.com; hxxps://www.youtube.com
FF Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Javurek\AppData\Roaming\Mozilla\Firefox\Profiles\k7bojmhd.default\Extensions\sp@avast.com.xpi [2022-08-22]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_387.dll [2020-07-09] (Adobe Inc. -> )
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_387.dll [2020-07-09] (Adobe Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office14\NPSPWRAP.DLL [2010-01-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-26] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1065.0\npAvastBrowserUpdate3.dll [2020-10-26] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> D:\Programy\Programy\VLC\npvlc.dll [No File]
FF Plugin HKU\S-1-5-21-4085835496-1999825555-791825568-1002: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2019-12-18] (Ubisoft Entertainment Sweden AB -> )

Chrome:
=======
CHR Profile: C:\Users\Javurek\AppData\Local\Google\Chrome\User Data\Default [2022-10-29]
CHR Extension: (Vyhledávání Google) - C:\Users\Javurek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2017-03-02]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Javurek\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2022-08-12]
CHR Extension: (Dokumenty Google offline) - C:\Users\Javurek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-12]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Javurek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-08-12]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-07-09] (Adobe Inc. -> Adobe)
S2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2015-05-08] (ASUSTeK Computer Inc. -> )
S2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-04-24] (ASUSTeK Computer Inc. -> ) [File not signed]
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8513552 2022-10-05] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [592608 2022-09-26] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [592096 2022-09-26] (Avast Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [194200 2020-10-26] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\106.0.18815.119\elevation_service.exe [2047168 2022-10-12] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-20] (Avast Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6877224 2018-06-15] (BattlEye Innovations e.K. -> )
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291904 2017-07-03] (Disc Soft Ltd -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [779392 2019-03-24] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S2 F5 Networks Component Installer; C:\WINDOWS\SysWOW64\F5InstallerService.exe [589776 2022-03-08] (F5 Networks Inc -> F5 Networks, Inc.)
S2 F5FltSrv; C:\WINDOWS\SysWOW64\F5FltSrv.exe [686032 2022-03-08] (F5 Networks Inc -> F5 Networks, Inc.)
S2 F5TrafficSrv; C:\WINDOWS\SysWOW64\F5TrafficSrv.exe [292320 2019-06-25] (F5 Networks Inc -> F5 Networks, Inc.)
S3 I.CA Maintenance Service; C:\Program Files (x86)\I.CA\I.CA Maintenance\ICAMaintenance.exe [283904 2019-08-02] (Prvni certifikacni autorita, a.s. -> I.CA, a.s.)
S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10097408 2022-10-25] (Logitech Inc -> Logitech, Inc.)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206472 2018-05-07] (Logitech Inc -> Logitech Inc.)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2519864 2020-09-09] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3473216 2020-09-09] (Electronic Arts, Inc. -> Electronic Arts)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [474256 2019-12-05] (Rockstar Games, Inc. -> Rockstar Games)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer Networking Ltd. -> Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [4088608 2016-09-21] (Safer-Networking Ltd. -> Safer-Networking Ltd.) [File not signed]
S2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [235984 2016-11-24] (Safer-Networking Ltd. -> Safer-Networking Ltd.) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_3c7cc22001913661\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_3c7cc22001913661\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-09-09] (ASUSTeK Computer Inc. -> )
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [42296 2022-09-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [238128 2022-09-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [390096 2022-09-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [258496 2022-09-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [105920 2022-09-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-13] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [48488 2022-09-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [276496 2022-09-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [558536 2022-09-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [114488 2022-09-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [90000 2022-09-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [862960 2022-09-26] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [671712 2022-09-26] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [221976 2022-09-26] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [327904 2022-09-26] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-07-03] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-07-03] (Disc Soft Ltd -> Disc Soft Ltd)
S3 F5FltDrv; C:\WINDOWS\SysWOW64\drivers\F5FltDrv.sys [55648 2022-03-08] (F5 Networks Inc -> F5 Networks, Inc.)
S3 f5ipfw; C:\WINDOWS\system32\drivers\urfltv64.sys [49560 2022-03-08] (F5 Networks Inc -> F5 Networks, Inc.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-03-02] (Martin Malik - REALiX -> REALiX(tm))
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2017-01-24] (Logitech Inc -> Logitech Inc.)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2022-09-24] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2022-09-24] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2022-09-24] (Logitech Inc -> Logitech)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
R2 speedfan; C:\WINDOWS\SysWoW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [46408 2017-06-02] (SteelSeries ApS -> SteelSeries ApS)
R3 urvpndrv; C:\WINDOWS\System32\drivers\covpnv64.sys [59784 2022-03-08] (F5 Networks Inc -> F5 Networks, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S4 nvvhci; \SystemRoot\System32\drivers\nvvhci.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-10-29 13:36 - 2022-10-29 13:37 - 000028220 _____ C:\Users\Javurek\Downloads\FRST.txt
2022-10-29 13:01 - 2022-10-29 13:01 - 002374144 _____ (Farbar) C:\Users\Javurek\Downloads\FRST64.exe
2022-10-29 13:01 - 2022-10-29 13:01 - 002374144 _____ (Farbar) C:\Users\Javurek\Downloads\FRST64(1).exe
2022-10-29 12:32 - 2022-08-07 09:29 - 000001611 _____ C:\WINDOWS\system32\Drivers\etc\hosts.20221029-123221.backup
2022-10-29 12:08 - 2022-09-26 20:40 - 000270560 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2022-10-29 09:25 - 2022-10-29 09:25 - 000000000 ___HD C:\$WinREAgent
2022-10-26 17:25 - 2022-10-29 00:53 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2022-10-26 17:20 - 2022-10-26 17:20 - 000000650 _____ C:\Users\Public\Desktop\Logitech G HUB.lnk
2022-10-26 17:20 - 2022-10-26 17:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2022-10-26 17:20 - 2022-10-26 17:20 - 000000000 ____D C:\Program Files\LGHUB
2022-10-23 10:52 - 2022-10-23 10:52 - 000000000 _____ C:\Users\Javurek\Desktop\Nový textový dokument (2).txt
2022-10-22 07:55 - 2022-08-07 09:29 - 000001611 _____ C:\WINDOWS\system32\Drivers\etc\hosts.20221022-075509.backup
2022-10-22 06:50 - 2022-10-22 06:50 - 008791352 _____ (Malwarebytes) C:\Users\Javurek\Downloads\adwcleaner(2).exe
2022-10-20 18:13 - 2022-10-22 16:46 - 000000760 _____ C:\Users\Javurek\Desktop\HOORK.txt
2022-10-20 17:25 - 2022-10-20 17:25 - 000002274 _____ C:\Users\Javurek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox Private Browsing.lnk
2022-10-19 22:36 - 2022-10-19 22:36 - 000002740 _____ C:\Users\Javurek\Downloads\angličtina(5).txt
2022-10-16 17:22 - 2022-10-18 00:33 - 000000000 ____D C:\Users\Javurek\Desktop\Barbarian Grail
2022-10-14 16:57 - 2022-10-14 16:57 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-10-14 16:57 - 2022-10-14 16:57 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2022-10-14 16:57 - 2022-10-14 16:57 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-10-14 16:57 - 2022-10-14 16:57 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2022-10-14 16:57 - 2022-10-14 16:57 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2022-10-14 16:57 - 2022-10-14 16:57 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2022-10-14 16:57 - 2022-10-14 16:57 - 000012253 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-10-13 18:42 - 2022-10-22 00:51 - 000000356 _____ C:\Users\Javurek\Desktop\TRADE.txt
2022-10-13 16:26 - 2022-10-13 16:26 - 000025576 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2022-10-12 01:04 - 2022-10-12 01:04 - 000095278 _____ C:\Users\Javurek\Desktop\excel.xlsx
2022-10-08 07:59 - 2022-10-10 21:41 - 000001260 _____ C:\Users\Javurek\Desktop\FINDS TODAY.txt
2022-10-02 16:20 - 2022-10-02 16:33 - 000000000 ____D C:\Users\Javurek\AppData\Roaming\Trine4
2022-10-02 16:11 - 2022-10-02 16:11 - 000000202 _____ C:\Users\Javurek\Desktop\Trine 4 The Nightmare Prince.url
2022-10-01 16:36 - 2022-10-02 00:36 - 000010518 _____ C:\Users\Javurek\Desktop\Speedrun.xlsx
2022-10-01 16:35 - 2022-10-07 07:27 - 000002854 _____ C:\Users\Javurek\Desktop\SPEEDRUN.txt
2022-10-01 08:58 - 2022-10-01 08:58 - 002038470 _____ C:\Users\Javurek\Downloads\navod-tlakomer-veroval-compact.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-10-29 13:36 - 2022-02-09 22:59 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-10-29 13:36 - 2017-08-10 20:56 - 000000000 ____D C:\FRST
2022-10-29 13:36 - 2017-03-02 19:00 - 000000000 ____D C:\Users\Javurek\AppData\LocalLow\Mozilla
2022-10-29 13:24 - 2020-02-27 09:40 - 000000000 ____D C:\Users\Javurek\AppData\Local\LGHUB
2022-10-29 13:20 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-10-29 13:13 - 2017-02-28 14:55 - 000000000 ____D C:\Program Files (x86)\Google
2022-10-29 13:04 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-10-29 12:41 - 2017-08-08 19:57 - 000000000 ____D C:\Users\Javurek\Documents\záloha registrů
2022-10-29 12:39 - 2020-02-27 09:40 - 000000000 ____D C:\Users\Javurek\AppData\Roaming\LGHUB
2022-10-29 12:39 - 2017-11-08 18:14 - 000000000 ____D C:\Users\Javurek\AppData\Roaming\discord
2022-10-29 12:39 - 2017-02-28 15:23 - 000000000 ____D C:\ProgramData\NVIDIA
2022-10-29 12:37 - 2017-11-08 18:14 - 000000000 ____D C:\Users\Javurek\AppData\Local\Discord
2022-10-29 12:25 - 2022-06-25 12:24 - 000003746 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-4085835496-1999825555-791825568-1002UA
2022-10-29 12:25 - 2022-06-25 12:24 - 000003656 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-4085835496-1999825555-791825568-1002Core
2022-10-29 12:25 - 2021-12-26 08:09 - 000003062 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4085835496-1999825555-791825568-1002
2022-10-29 12:25 - 2020-10-03 09:31 - 000003816 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player NPAPI Notifier
2022-10-29 12:25 - 2020-10-03 09:31 - 000003568 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-10-29 12:25 - 2020-10-03 09:31 - 000003402 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-10-29 12:25 - 2020-10-03 09:31 - 000003344 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-10-29 12:25 - 2020-10-03 09:31 - 000003194 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-10-29 12:25 - 2020-10-03 09:31 - 000003178 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-10-29 12:25 - 2020-10-03 09:31 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4085835496-1999825555-791825568-1002
2022-10-29 12:25 - 2020-10-03 09:31 - 000002386 _____ C:\WINDOWS\system32\Tasks\ExclusiveTool
2022-10-29 12:25 - 2020-10-03 09:31 - 000002218 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2022-10-29 12:25 - 2020-10-03 09:31 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2022-10-29 12:25 - 2017-03-04 17:26 - 000000000 ____D C:\Users\Javurek\AppData\Roaming\vlc
2022-10-29 12:15 - 2020-10-03 09:33 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-10-29 12:15 - 2019-12-07 16:41 - 000716764 _____ C:\WINDOWS\system32\perfh005.dat
2022-10-29 12:15 - 2019-12-07 16:41 - 000144942 _____ C:\WINDOWS\system32\perfc005.dat
2022-10-29 12:10 - 2018-04-05 18:52 - 000000000 ____D C:\Users\Javurek\AppData\Local\AVAST Software
2022-10-29 12:09 - 2017-03-02 19:27 - 000000000 ____D C:\ProgramData\AVAST Software
2022-10-29 12:08 - 2020-10-03 09:31 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2022-10-29 12:08 - 2020-10-03 09:31 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-10-29 12:08 - 2020-10-03 09:24 - 000008192 ___SH C:\DumpStack.log.tmp
2022-10-29 12:08 - 2020-06-04 16:24 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-10-29 12:08 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-10-29 12:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-10-29 12:08 - 2018-04-05 18:52 - 000002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2022-10-29 12:08 - 2017-03-02 19:28 - 000002088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2022-10-29 12:08 - 2017-03-02 19:28 - 000002076 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2022-10-29 12:08 - 2017-02-28 14:55 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-10-29 12:08 - 2017-02-28 14:55 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-10-29 12:07 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-10-29 12:07 - 2017-09-16 15:15 - 000000000 ____D C:\Users\Javurek\AppData\Local\CrashDumps
2022-10-29 12:07 - 2017-03-03 15:55 - 000000000 ____D C:\Users\Javurek\AppData\Roaming\uTorrent
2022-10-29 12:00 - 2017-03-03 15:53 - 000000000 ____D C:\Program Files\PeerBlock
2022-10-29 09:14 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-10-29 09:12 - 2017-03-02 21:41 - 000000000 ____D C:\Users\Javurek\AppData\Local\Battle.net
2022-10-29 08:45 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-10-29 00:53 - 2020-10-03 09:24 - 000456848 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-10-29 00:53 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-10-29 00:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-10-29 00:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-10-29 00:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2022-10-29 00:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-10-29 00:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-10-29 00:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2022-10-29 00:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-10-29 00:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-10-29 00:53 - 2017-03-02 19:00 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-10-28 19:21 - 2022-09-13 00:14 - 000029027 _____ C:\Users\Javurek\Desktop\angličtina.xlsx
2022-10-28 16:20 - 2020-10-03 09:24 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-10-28 10:36 - 2019-06-02 12:52 - 000000000 ____D C:\Users\Javurek\AppData\Local\BitTorrentHelper
2022-10-27 21:10 - 2017-06-11 11:12 - 000000000 ____D C:\Users\Javurek\AppData\Roaming\obs-studio
2022-10-27 00:27 - 2021-10-09 21:49 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-10-27 00:27 - 2017-03-02 19:00 - 000001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-10-26 23:08 - 2022-08-15 19:59 - 000000000 ____D C:\Users\Javurek\AppData\Roaming\Code
2022-10-25 22:19 - 2022-05-29 19:26 - 000001392 _____ C:\Users\Javurek\AppData\Roaming\CascView.ini
2022-10-25 16:57 - 2020-10-03 09:24 - 000002383 _____ C:\Users\Javurek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-10-23 20:56 - 2018-05-23 19:20 - 000000000 ____D C:\Users\Javurek\AppData\Local\D3DSCache
2022-10-22 08:04 - 2017-03-02 21:41 - 000000000 ____D C:\Program Files (x86)\Battle.net
2022-10-20 00:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2022-10-20 00:49 - 2017-03-11 10:12 - 000000000 ____D C:\Users\Javurek\AppData\Local\ElevatedDiagnostics
2022-10-19 22:57 - 2022-08-15 19:59 - 000000000 ____D C:\Users\Javurek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Visual Studio Code
2022-10-18 23:10 - 2022-09-02 19:35 - 000076969 _____ C:\Users\Javurek\Desktop\DIABLO 2 Resurrected.xlsx
2022-10-14 16:59 - 2019-12-07 11:15 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2022-10-14 16:59 - 2019-12-07 11:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2022-10-14 16:57 - 2020-10-03 09:28 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-10-12 16:58 - 2017-03-02 21:24 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-10-12 16:56 - 2017-03-02 21:24 - 147398024 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-10-02 16:11 - 2017-03-03 01:03 - 000000000 ____D C:\Users\Javurek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2022-10-01 00:33 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-10-01 00:33 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-10-01 00:33 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-10-01 00:33 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-10-01 00:33 - 2017-08-08 19:54 - 000000000 ____D C:\Program Files\CCleaner
2022-09-29 19:52 - 2022-09-04 23:15 - 000000000 ____D C:\Users\Javurek\Desktop\Terror Zones

==================== Files in the root of some directories ========

2022-05-29 19:26 - 2022-10-25 22:19 - 000001392 _____ () C:\Users\Javurek\AppData\Roaming\CascView.ini
2021-06-11 20:58 - 2021-06-11 20:58 - 000000000 _____ () C:\Users\Javurek\AppData\Local\D28A30.tmp
2021-06-11 21:10 - 2021-06-11 21:10 - 000000000 _____ () C:\Users\Javurek\AppData\Local\D2D708.tmp
2018-05-08 23:12 - 2018-05-08 23:12 - 000000095 _____ () C:\Users\Javurek\AppData\Local\fusioncache.dat
2017-03-02 20:31 - 2017-03-02 20:31 - 000000017 _____ () C:\Users\Javurek\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

a addition log


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-10-2022
Ran by Javurek (29-10-2022 13:37:32)
Running from C:\Users\Javurek\Downloads
Microsoft Windows 10 Home Version 22H2 19045.2130 (X64) (2020-10-03 07:31:18)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-4085835496-1999825555-791825568-500 - Administrator - Disabled)
ASPNET (S-1-5-21-4085835496-1999825555-791825568-1003 - Limited - Enabled)
DefaultAccount (S-1-5-21-4085835496-1999825555-791825568-503 - Limited - Disabled)
Guest (S-1-5-21-4085835496-1999825555-791825568-501 - Limited - Disabled)
Javurek (S-1-5-21-4085835496-1999825555-791825568-1002 - Administrator - Enabled) => C:\Users\Javurek
WDAGUtilityAccount (S-1-5-21-4085835496-1999825555-791825568-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\uTorrent) (Version: 3.5.5.46514 - BitTorrent Inc.)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.387 - Adobe)
ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.030 - ASUSTek Computer Inc.)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 22.9.6034 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 106.0.18815.119 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1065.0 - AVAST Software) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bethesda.net Launcher (HKLM-x32\...\{3448917E-E4FE-4E30-9502-9FD52EABB6F5}_is1) (Version: 1.43.4 - Bethesda Softworks)
BIG-IP Edge Client (HKLM-x32\...\{6D4839CB-28B4-4070-8CA7-612CA92CA3D0}) (Version: 72.22.0308.1349 - F5 Networks, Inc.)
BIG-IP Edge Client Components (All Users) (HKLM-x32\...\F5 Networks Client Components) (Version: 72.2022.0308.1349 - F5 Networks, Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.46 - Piriform)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.6.0.0275 - Disc Soft Ltd)
Diablo II Resurrected (HKLM-x32\...\Diablo II Resurrected) (Version: - Blizzard Entertainment)
Discord (HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\Discord) (Version: 0.0.309 - Discord Inc.)
f.lux (HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\Flux) (Version: - f.lux Software LLC)
Fallout Mod Manager 0.13.21 (HKLM-x32\...\Generic Mod Manager_is1) (Version: - Q, Timeslip)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 106.0.5249.119 - Google LLC)
Hero Editor V0.96 (HKLM-x32\...\ST6UNST #1) (Version: - )
Hero Editor V1.04 (HKLM-x32\...\ST6UNST #2) (Version: - )
HWiNFO32 Version 5.42 (HKLM-x32\...\HWiNFO32_is1) (Version: 5.42 - Martin Malík - REALiX)
I.CA Maintenance (HKLM-x32\...\{A26EE07C-9196-4BB9-BB81-1608D0A99887}) (Version: 1.3.2.0 - První certifikační autorita, a.s.) Hidden
I.CA Maintenance (HKLM-x32\...\I.CA Maintenance 1.3.2.0) (Version: 1.3.2.0 - První certifikační autorita, a.s.)
I.CA PKIServiceHost (HKLM\...\{FD9738DF-7B85-4FFA-8F92-C2FA75ED1210}) (Version: 2.0.6.0 - První certifikační autorita, a.s.) Hidden
I.CA PKIServiceHost (HKLM-x32\...\I.CA PKIServiceHost 2.0.6.0) (Version: 2.0.6.0 - První certifikační autorita, a.s.)
I.CA SecureStore 4.9.4 (HKLM\...\{8855EC65-7774-47F6-B785-3464B0BA5A99}) (Version: 4.9.4 - První certifikační autorita, a.s.)
InputMapper (HKLM-x32\...\{026D2025-A7FA-4F5C-AF8C-A6F7A9B917FC}) (Version: 1.6.10.19991 - DSDCS)
Intel(R) Chipset Device Software (HKLM\...\{8C91A5EB-2C62-4A6D-8802-CC79FD2ED390}) (Version: 10.1.1.7 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1163 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{A5536A08-5A7F-4330-8947-0372B500A3BD}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{C6C06C9F-B452-4C7A-AB83-F5931AB9B372}) (Version: 11.0.0.1163 - Intel Corporation) Hidden
Intel(R) ME UninstallLegacy (HKLM\...\{94BC10B9-159A-44E8-BEA1-34BF765FEA58}) (Version: 1.0.1.0 - Intel Corporation) Hidden
Intel(R) Network Connections 20.5.150.0 (HKLM\...\{73C1A9AA-A4C3-432F-B862-429C9EA3B360}) (Version: 20.5.150.0 - Intel) Hidden
Intel(R) Network Connections 20.5.150.0 (HKLM\...\PROSetDX) (Version: 20.5.150.0 - Intel)
Intel® Chipset Device Software (HKLM-x32\...\{60c073df-e736-4210-9c3a-5fc2b651cef3}) (Version: 10.1.1.7 - Intel(R) Corporation) Hidden
Intel® RealSense™ SDK 2014 Runtime (x64): Core (HKLM\...\{37D41A97-6B02-4C30-8753-85107BE1D674}) (Version: 3.1.0.25181 - Intel Corporation) Hidden
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{7D84E343-A23D-451C-B123-0195B2D903A6}) (Version: 1.42.17.0 - Intel Corporation) Hidden
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2022.10.326382 - Logitech)
Logitech Gaming Software 9.00 (HKLM\...\Logitech Gaming Software) (Version: 9.00.42 - Logitech Inc.)
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 107.0.1418.24 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 106.0.1370.52 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft HEVC Media Extension Installation for Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe (x64) (HKLM\...\{B0169E83-757B-EF66-E2F0-391944D785BC}) (Version: 1.0.0.0 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (English) 2010 (HKLM-x32\...\{90140000-0015-0409-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (HKLM-x32\...\{90140000-0117-0409-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (HKLM-x32\...\{90140000-0016-0409-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (English) 2010 (HKLM-x32\...\{90140000-00BA-0409-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2010 (HKLM-x32\...\{90140000-0044-0409-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (HKLM\...\{90140000-002A-0000-1000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (HKLM-x32\...\{90140000-00A1-0409-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2010 (HKLM-x32\...\{90140000-001A-0409-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (HKLM-x32\...\{90140000-0018-0409-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4734.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2010 (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (HKLM-x32\...\{90140000-001F-0C0A-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (HKLM-x32\...\{90140000-002C-0409-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (HKLM-x32\...\{90140000-0019-0409-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2010 (HKLM\...\{90140000-002A-0409-1000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (HKLM\...\{90140000-0116-0409-1000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (HKLM-x32\...\{90140000-006E-0409-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (HKLM-x32\...\{90140000-0115-0409-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (HKLM-x32\...\{90140000-001B-0409-0000-0000000FF1CE}) (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\OneDriveSetup.exe) (Version: 22.207.1002.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.28.29334 (HKLM\...\{2E11EF4E-901F-4B2D-B68E-3DB2A566C857}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.28.29334 (HKLM\...\{8A3F7D5B-422D-49D9-84F7-8DC1B7782967}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.28.29334 (HKLM-x32\...\{14C49FC8-3E9B-4F29-8526-26629B5CF30B}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.28.29334 (HKLM-x32\...\{0D01A812-82A1-481F-8546-8E28E976F8DF}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}) (Version: 10.0.50908 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Code (User) (HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.72.2 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 106.0.2 (x64 cs)) (Version: 106.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 106.0.2.8333 - Mozilla)
Mumble 1.2.18 (HKLM-x32\...\{E231CF81-6E94-4CBD-A9D0-1017670E598B}) (Version: 1.2.18 - Thorvald Natvig)
NVIDIA FrameView SDK 1.1.4923.29968894 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29968894 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.60 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 472.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 472.12 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 19.0.2 - OBS Project)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 10.5.84.43868 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Paradox Launcher v2 (HKLM\...\{F0072197-FCF6-41BF-9D38-832B145922DC}) (Version: 2.0.0.0 - Paradox Interactive)
PeerBlock 1.2 (r693) (HKLM\...\{015C5B35-B678-451C-9AEE-821E8D69621C}_is1) (Version: 1.2.0.693 - PeerBlock, LLC)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7661 - Realtek Semiconductor Corp.)
REDlauncher (HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\{7258BA11-600C-430E-A759-27E2C691A335}-REDlauncher_is1) (Version: - GOG.com)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.17.199 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.4.3 - Rockstar Games)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries Engine 3.11.4 (HKLM\...\SteelSeries Engine 3) (Version: 3.11.4 - SteelSeries ApS)
The Sims 4 (HKLM-x32\...\The Sims 4_is1) (Version: - )
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)

Packages:
=========
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_3.1.0.0_neutral__6e5tt8cgb93ep [2021-02-18] (Canon Inc.)
Homescapes -> C:\Program Files\WindowsApps\PLRWorldwideSales.Homescapes_5.7.4.0_x64__1feq88045d2v2 [2022-10-18] (Playrix)
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.19.4002.0_x64__8wekyb3d8bbwe [2022-10-26] (Microsoft Studios)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.963.0_x64__56jybvy8sckqj [2022-10-17] (NVIDIA Corp.)
Zip Extractor Pro -> C:\Program Files\WindowsApps\38526MediaLife.ZipPlus_2.0.4.0_x86__1crh1k73ty8mg [2020-06-06] (Media Life)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-4085835496-1999825555-791825568-1002_Classes\CLSID\{5EA43877-C6D8-4885-B77A-C0BB27E94372}\InprocServer32 -> C:\Users\Javurek\AppData\Local\Microsoft\EdgeUpdate\1.3.169.31\psuser_64.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4085835496-1999825555-791825568-1002_Classes\CLSID\{7A5B1FF1-1B52-4AED-9A5C-4CE445F780C4}\InprocServer32 -> C:\Program Files (x86)\Mozilla Firefox\notificationserver.dll (Mozilla Corporation -> Mozilla Foundation)
CustomCLSID: HKU\S-1-5-21-4085835496-1999825555-791825568-1002_Classes\CLSID\{81093D63-7825-417B-BFC8-ADC63FA4E53D}\InprocServer32 -> C:\Users\Javurek\AppData\Local\Microsoft\EdgeUpdate\1.3.169.31\psuser_64.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4085835496-1999825555-791825568-1002_Classes\CLSID\{997809F3-33FD-4FD6-A2ED-CEF50F3263B1}\InprocServer32 -> C:\Users\Javurek\AppData\Local\Microsoft\EdgeUpdate\1.3.169.31\psuser_64.dll (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6723984 2010-01-21] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4222864 2010-01-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-26] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-26] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-26] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2014-06-24] (Safer Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2014-06-24] (Safer Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-26] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_3c7cc22001913661\nvshext.dll [2021-09-16] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-26] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2014-06-24] (Safer Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2014-06-24] (Safer Networking Ltd. -> Safer-Networking Ltd.)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.LWLR] => C:\Windows\SysWOW64\RGBACodec.dll [37488 2017-04-03] (EditShare EMEA (X-Edit Limited) -> )

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2020-08-14 22:23 - 2020-08-14 22:23 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2020-08-14 22:23 - 2020-08-14 22:23 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2020-08-14 22:23 - 2020-08-14 22:23 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2020-09-22 23:30 - 2020-08-14 22:23 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2020-09-22 23:30 - 2020-08-14 22:23 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2020-09-22 23:30 - 2020-08-14 22:23 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2020-09-22 23:30 - 2020-08-14 22:23 - 000146432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2020-09-22 23:30 - 2020-08-14 22:23 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2020-09-22 23:30 - 2020-08-14 22:23 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-01-21] (Microsoft Corporation -> Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-01-21] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-01-16] (Microsoft Corporation -> Microsoft Corporation)
DPF: HKLM-x32 {00627E89-A19D-4A2B-938B-059CB7B1B493} C:\WINDOWS\TEMP\F5_TMP_242184151615360187103\f5certchk.cab
DPF: HKLM-x32 {2A0B9B82-D5C8-4D3D-8338-AD55B23662B1} file://C:/Program Files (x86)/F5 VPN/F5_TMP/cachecleaner.cab
DPF: HKLM-x32 {2BCDB465-81F9-41CB-832C-8037A4064446} C:\WINDOWS\TEMP\F5_TMP_146250431261907713354\urxvpn.cab
DPF: HKLM-x32 {2c8ffa64-e3f7-49ae-87c2-49018fde3aea} C:\WINDOWS\TEMP\F5_TMP_09015281_00007640\OesisInspector.cab
DPF: HKLM-x32 {41EF3CD2-D8CC-4438-84B1-280BB4E77C8E} C:\WINDOWS\TEMP\F5_TMP_1291372261561331722679\f5tunsrv.cab
DPF: HKLM-x32 {45B69029-F3AB-4204-92DE-D5140C3E8E74} file://C:/Program Files (x86)/F5 VPN/F5_TMP/InstallerControl.cab
DPF: HKLM-x32 {57C76689-F052-487B-A19F-855AFDDF28EE} C:\WINDOWS\TEMP\F5_TMP_4010922595772145206\f5InspectionHost.cab
DPF: HKLM-x32 {7E73BE8F-FD87-44EC-8E22-023D5FF960FF} file://C:/Program Files (x86)/F5 VPN/F5_TMP/vdeskctrl.cab
DPF: HKLM-x32 {A83FB16F-F96A-4724-A5B1-AC999860A218} C:\WINDOWS\TEMP\F5_TMP_09015281_00007640\OesisInspector.cab
DPF: HKLM-x32 {CC85ACDF-B277-486F-8C70-2C9B2ED2A4E7} file://C:/Program Files (x86)/F5 VPN/F5_TMP/urxshost.cab
DPF: HKLM-x32 {E0FF21FA-B857-45C5-8621-F120A0C17FF2} C:\WINDOWS\TEMP\F5_TMP_1332497820837107228117\urxhost.cab
DPF: HKLM-x32 {E615C9EA-AD69-4AE9-83C9-9D906A0ACA6D} file://C:/Program Files (x86)/F5 VPN/F5_TMP/f5syschk.cab

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

There are 7934 more sites.

IE trusted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\*.capgemini.com -> hxxp://*.capgemini.com
IE trusted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\*.capgemini.com -> hxxps://*.capgemini.com
IE trusted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\*.cnb.cz -> hxxp://*.cnb.cz
IE trusted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\*.cnb.cz -> hxxps://*.cnb.cz
IE trusted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\*.csob.cz -> hxxps://*.csob.cz
IE trusted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\*.csob.sk -> hxxps://*.csob.sk
IE trusted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\*.erasvet.cz -> hxxps://*.erasvet.cz
IE trusted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\*.ica.cz -> hxxp://*.ica.cz
IE trusted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\*.ica.cz -> hxxps://*.ica.cz
IE trusted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\*.postovnisporitelna.cz -> hxxps://*.postovnisporitelna.cz
IE trusted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\*.proebiz.com -> hxxp://*.proebiz.com
IE trusted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\*.proebiz.com -> hxxps://*.proebiz.com
IE trusted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\*.sbcz.cz -> hxxp://*.sbcz.cz
IE trusted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\*.sbcz.cz -> hxxps://*.sbcz.cz
IE trusted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\*.sberbank.cz -> hxxp://*.sberbank.cz
IE trusted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\*.sberbank.cz -> hxxps://*.sberbank.cz
IE trusted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\*.trysbcz.cz -> hxxp://*.trysbcz.cz
IE trusted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\*.trysbcz.cz -> hxxps://*.trysbcz.cz
IE trusted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\sukl.cz -> hxxps://vpna.sukl.cz
IE restricted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\123simsen.com -> www.123simsen.com

There are 7935 more sites.


==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-10-30 09:24 - 2022-10-29 12:32 - 000454376 ____R C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
109.94.209.70 fitgirlrepacks.in
109.94.209.70 www.fitgirlrepacks.in
109.94.209.70 fitgirlrepacks.co
109.94.209.70 fitgirl-repacks.cc
109.94.209.70 fitgirl-repacks.to
109.94.209.70 fitgirl-repack.com
109.94.209.70 fitgirl-repacks.website
109.94.209.70 fitgirlrepack.games
109.94.209.70 www.fitgirlrepacks.co
109.94.209.70 www.fitgirl-repacks.cc
109.94.209.70 www.fitgirl-repacks.to
109.94.209.70 www.fitgirl-repack.com
109.94.209.70 www.fitgirl-repacks.website
109.94.209.70 ww9.fitgirl-repacks.xyz
109.94.209.70 www.fitgirlrepack.games
109.94.209.70 *.fitgirl-repacks.xyz
109.94.209.70 fitgirl-repacks.xyz
109.94.209.70 fitgirl-repack.net
109.94.209.70 www.fitgirl-repack.net
109.94.209.70 fitgirlpack.site
109.94.209.70 www.fitgirlpack.site
109.94.209.70 www.fitgirl-repack.org
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com

There are 15619 more lines.


==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
HKU\S-1-5-21-4085835496-1999825555-791825568-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Javurek\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
DNS Servers: 31.30.90.11 - 31.30.90.12
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\StartupFolder: => "SteelSeries Engine 3.lnk"
HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-4085835496-1999825555-791825568-1002\...\StartupApproved\Run: => "AvastBrowserAutoLaunch_09D3A15F54798255550A80F54B4890A8"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{DE9F5EE8-DF8D-4DFF-979D-046E26271A38}D:\steam\steamapps\common\mass effect andromeda\masseffectandromeda.exe] => (Allow) D:\steam\steamapps\common\mass effect andromeda\masseffectandromeda.exe => No File
FirewallRules: [TCP Query User{50EA1707-3222-486C-BF90-147638A7CE97}D:\steam\steamapps\common\mass effect andromeda\masseffectandromeda.exe] => (Allow) D:\steam\steamapps\common\mass effect andromeda\masseffectandromeda.exe => No File
FirewallRules: [UDP Query User{74D8F8F8-5D3E-4AAD-A519-030075C16116}D:\steam\steamapps\common\mass effect 3\binaries\win32\masseffect3.exe] => (Allow) D:\steam\steamapps\common\mass effect 3\binaries\win32\masseffect3.exe => No File
FirewallRules: [TCP Query User{45AF7E04-4D9C-4210-B558-A10C37E1229E}D:\steam\steamapps\common\mass effect 3\binaries\win32\masseffect3.exe] => (Allow) D:\steam\steamapps\common\mass effect 3\binaries\win32\masseffect3.exe => No File
FirewallRules: [UDP Query User{25E615D9-1987-4E65-9B72-807888ED28E0}D:\steam\steamapps\common\dead space 3\deadspace3.exe] => (Block) D:\steam\steamapps\common\dead space 3\deadspace3.exe => No File
FirewallRules: [TCP Query User{B2001727-8FE9-4718-9B0D-4AE7D7FAFA09}D:\steam\steamapps\common\dead space 3\deadspace3.exe] => (Block) D:\steam\steamapps\common\dead space 3\deadspace3.exe => No File
FirewallRules: [{A4F447B2-5C4B-43DE-91D8-2490EDFA3AD7}] => (Allow) D:\STEAM\steamapps\common\Sega Classics\SEGAGenesisClassics.exe (Sega Europe Limited -> )
FirewallRules: [{797F3B6C-3459-448A-B07C-A50F013FFD25}] => (Allow) D:\STEAM\steamapps\common\Sega Classics\SEGAGenesisClassics.exe (Sega Europe Limited -> )
FirewallRules: [{A1F3CFCF-1714-40FE-A6EF-FAD7EAB7424B}] => (Allow) D:\STEAM\steamapps\common\Sega Classics\SEGAGameRoom.exe () [File not signed]
FirewallRules: [{95D94564-F101-499E-885F-0537FDDC449F}] => (Allow) D:\STEAM\steamapps\common\Sega Classics\SEGAGameRoom.exe () [File not signed]
FirewallRules: [UDP Query User{52C6E314-F749-478F-8EA2-211C2C456428}D:\steam\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) D:\steam\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [TCP Query User{EFCA5DE9-F987-4800-82C6-8A672DF3B8F4}D:\steam\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) D:\steam\steamapps\common\red dead redemption 2\rdr2.exe => No File
FirewallRules: [UDP Query User{7BA19A97-502B-41D2-A307-67BE577D036C}D:\battle net\diablo iii\x64\diablo iii64.exe] => (Allow) D:\battle net\diablo iii\x64\diablo iii64.exe => No File
FirewallRules: [TCP Query User{C2FA7483-4115-4825-8EA1-2DE38D679A79}D:\battle net\diablo iii\x64\diablo iii64.exe] => (Allow) D:\battle net\diablo iii\x64\diablo iii64.exe => No File
FirewallRules: [{848FEC17-0640-4166-8094-0DE7D9CC40D2}] => (Allow) D:\STEAM\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [File not signed]
FirewallRules: [{AAD7F5D3-BD36-4F55-AB61-F743881F0EBA}] => (Allow) D:\STEAM\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [File not signed]
FirewallRules: [{43D23B7B-2DB3-4BFD-9E3D-3519BA9716C9}] => (Allow) D:\STEAM\steamapps\common\Stellaris\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [{D62626F7-30A7-432D-A5EE-CC62C6CA5EDC}] => (Allow) D:\STEAM\steamapps\common\Stellaris\dowser.exe (Paradox Interactive AB (publ) -> )
FirewallRules: [UDP Query User{F965EBCD-7F86-444E-934A-4946615E20ED}D:\hry\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\hry\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe => No File
FirewallRules: [TCP Query User{F1BD5A22-485E-4173-9BE4-17C3726DB8C6}D:\hry\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\hry\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe => No File
FirewallRules: [{44C64E16-F023-42D0-8365-BE83CF9AE17A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{68A82C7E-3D37-4E8B-842F-6C3821CEC85B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{B0F4BCD9-3E60-4EB3-A7E3-F145EC926DD5}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe => No File
FirewallRules: [UDP Query User{1D927DB5-B93F-40B0-A429-960F6342336E}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe => No File
FirewallRules: [{C6FFD8D1-DBBC-4B50-A86F-F881DDC9DBA0}] => (Allow) D:\STEAM\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{20ED2202-8683-4A8A-AB65-E3C36968AB92}] => (Allow) D:\STEAM\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{9FE5C48A-9383-4CD2-8B1E-E0D7E3EF7F3D}] => (Allow) D:\STEAM\steamapps\common\Stellaris\stellaris.exe (Paradox Interactive AB (publ) -> Paradox Interactive)
FirewallRules: [{423650B6-6B30-4F6B-945B-45411B4BED37}] => (Allow) D:\STEAM\steamapps\common\Stellaris\stellaris.exe (Paradox Interactive AB (publ) -> Paradox Interactive)
FirewallRules: [TCP Query User{BB03BD5E-26F0-4877-B61E-0D5C78BCF061}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [UDP Query User{ADF3804D-D05A-4389-B43F-2FF16099EA2F}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [TCP Query User{1E306D50-ECB7-4F37-AE81-463FB2658619}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe => No File
FirewallRules: [UDP Query User{C3D1D1E5-B372-4FF3-9052-A2E06DCF5143}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe => No File
FirewallRules: [{B712EFAB-E0B6-457C-A0B5-B4E8C278A8ED}] => (Allow) C:\Users\Javurek\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{0C0DD2FB-BC84-4AF0-838F-EE443FA26CC2}] => (Allow) C:\Users\Javurek\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{B3CDC0AF-43D2-44B0-B4C4-1CAE96782B99}] => (Allow) C:\Users\Javurek\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{BA6AD4CC-9A26-4360-A8ED-98C0AB35DF5E}] => (Allow) C:\Users\Javurek\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{2E96CD8A-DF18-438F-ACD6-2AD673227C48}] => (Allow) C:\Users\Javurek\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{17B9246B-0A68-4609-B444-95574C0F31E1}] => (Allow) C:\Users\Javurek\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{AFB059DC-5267-4F9E-8CF2-F81D2DC6E262}C:\program files\logitech gaming software\lcore.exe] => (Block) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [UDP Query User{51C35C41-280F-4A6B-8C4A-6FD6D48F6C4E}C:\program files\logitech gaming software\lcore.exe] => (Block) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [TCP Query User{6DEDC656-B274-4900-AF2D-B4020A9A46EF}D:\steam\steamapps\common\conarium\conarium\binaries\win64\conarium-win64-shipping.exe] => (Allow) D:\steam\steamapps\common\conarium\conarium\binaries\win64\conarium-win64-shipping.exe => No File
FirewallRules: [UDP Query User{4B7D5816-90E9-4CC9-96D1-3EB4E33C59B4}D:\steam\steamapps\common\conarium\conarium\binaries\win64\conarium-win64-shipping.exe] => (Allow) D:\steam\steamapps\common\conarium\conarium\binaries\win64\conarium-win64-shipping.exe => No File
FirewallRules: [TCP Query User{218F0C0C-2F71-4EEB-8B95-512102811467}C:\program files (x86)\overwatch\overwatch.exe] => (Block) C:\program files (x86)\overwatch\overwatch.exe => No File
FirewallRules: [UDP Query User{04D9F194-91FB-417E-AF29-8215EE5B1438}C:\program files (x86)\overwatch\overwatch.exe] => (Block) C:\program files (x86)\overwatch\overwatch.exe => No File
FirewallRules: [TCP Query User{9A4E32CF-4335-42B2-970A-E12F11D81792}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Block) C:\program files (x86)\diablo iii\x64\diablo iii64.exe => No File
FirewallRules: [UDP Query User{AFC1F54E-4C96-42E1-9F84-90E84CDFF15C}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Block) C:\program files (x86)\diablo iii\x64\diablo iii64.exe => No File
FirewallRules: [{1E0A2D3E-923A-4C1E-A668-C119F622C011}] => (Allow) D:\STEAM\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{327D945B-0DAC-4A38-A544-F5F02B52B3FA}] => (Allow) D:\STEAM\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{FAA73CD9-1D9F-4F62-BF7D-C62EEA6E1844}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{3B55C58A-ABEC-42FB-8D6F-13B76C8B4667}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [TCP Query User{7C9B905C-3CCF-4382-B51D-622633F469B8}D:\hry\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Block) D:\hry\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe => No File
FirewallRules: [UDP Query User{6755C00A-1B9A-40F6-8179-564DCCBF2E7F}D:\hry\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe] => (Block) D:\hry\minecraft\runtime\jre-x64\1.8.0_51\bin\javaw.exe => No File
FirewallRules: [TCP Query User{7F124AB9-A601-46AA-A843-99B4710C57A4}D:\steam\steamapps\common\conarium\conarium\binaries\win64\conarium-win64-shipping.exe] => (Block) D:\steam\steamapps\common\conarium\conarium\binaries\win64\conarium-win64-shipping.exe => No File
FirewallRules: [UDP Query User{50B45A59-2C36-4C18-B9B2-03E146D2FBBB}D:\steam\steamapps\common\conarium\conarium\binaries\win64\conarium-win64-shipping.exe] => (Block) D:\steam\steamapps\common\conarium\conarium\binaries\win64\conarium-win64-shipping.exe => No File
FirewallRules: [TCP Query User{5AAE2535-0A99-4CDA-B7E4-9AB75F4BE4D5}C:\program files (x86)\overwatch\_retail_\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\_retail_\overwatch.exe => No File
FirewallRules: [UDP Query User{706D3DF2-4158-4945-9FC4-74E6689E6988}C:\program files (x86)\overwatch\_retail_\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\_retail_\overwatch.exe => No File
FirewallRules: [TCP Query User{22710A27-7527-45AC-ADF2-0D2420A03231}D:\battle net\overwatch test\_ptr_\overwatch.exe] => (Allow) D:\battle net\overwatch test\_ptr_\overwatch.exe => No File
FirewallRules: [UDP Query User{3FC6FC6A-73B7-4D2D-A274-4E57D25BE021}D:\battle net\overwatch test\_ptr_\overwatch.exe] => (Allow) D:\battle net\overwatch test\_ptr_\overwatch.exe => No File
FirewallRules: [TCP Query User{C90F3B7B-27DE-4D0D-A482-2A6AC0DE52CA}D:\hry\minecraft\runtime\jre-x64\bin\javaw.exe] => (Block) D:\hry\minecraft\runtime\jre-x64\bin\javaw.exe
FirewallRules: [UDP Query User{F5862225-1378-488B-8CC1-7527CEA8BA2B}D:\hry\minecraft\runtime\jre-x64\bin\javaw.exe] => (Block) D:\hry\minecraft\runtime\jre-x64\bin\javaw.exe
FirewallRules: [{8BCA06B7-8A29-4FB3-A324-C890E796C8C4}] => (Allow) D:\STEAM\steamapps\common\Pixel Dungeon\PD.exe () [File not signed]
FirewallRules: [{955C2E8E-A9C6-4A6E-AA07-F57609AD2EAA}] => (Allow) D:\STEAM\steamapps\common\Pixel Dungeon\PD.exe () [File not signed]
FirewallRules: [TCP Query User{4049C41D-0CCA-437D-8B6A-94651BE240D2}D:\steam\steamapps\common\cyberpunk 2077\bin\x64\cyberpunk2077.exe] => (Allow) D:\steam\steamapps\common\cyberpunk 2077\bin\x64\cyberpunk2077.exe => No File
FirewallRules: [UDP Query User{2FA65903-298C-406D-AE09-58DB5EA172C2}D:\steam\steamapps\common\cyberpunk 2077\bin\x64\cyberpunk2077.exe] => (Allow) D:\steam\steamapps\common\cyberpunk 2077\bin\x64\cyberpunk2077.exe => No File
FirewallRules: [{D24825E1-2AA0-4CD2-BC92-581A3E0BDCBB}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C91D62AC-5BDA-43E3-9BA3-40DC8B7D9CCC}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5E2D8396-C1B9-4CE2-A306-69FEB2A30C3B}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{EDA16CCB-3B53-4A84-90E1-59540BEC41DA}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E3F1B24B-CEEF-400C-998F-D26FF5EF31BC}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{38895836-DEB4-47C6-BA71-B5E045BCB025}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{741786D4-6E83-4548-9F71-0ED9D646E7E9}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{4AC0E3F2-8768-4022-8548-F8E8D2E6971D}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C89F426A-C39D-4076-8BDF-E899F11E4BE1}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E5EA290F-DE9D-46EF-8D53-A721E5B9BC84}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{6A64E349-8536-4ECF-9E15-EF400CE2BDBE}] => (Allow) D:\STEAM\steamapps\common\Noita\noita.exe () [File not signed]
FirewallRules: [{1E87B0EC-CE8C-4BA9-868C-845743B4795C}] => (Allow) D:\STEAM\steamapps\common\Noita\noita.exe () [File not signed]
FirewallRules: [TCP Query User{10FE5959-C553-4633-AD1C-14F1B4442C7C}C:\program files (x86)\battle.net\overwatch\_retail_\overwatch.exe] => (Allow) C:\program files (x86)\battle.net\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{D60C0B90-E3DC-47D8-86D4-D0B5643D94FC}C:\program files (x86)\battle.net\overwatch\_retail_\overwatch.exe] => (Allow) C:\program files (x86)\battle.net\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{363C8BC7-AC6D-42EF-8F44-644DFAECE961}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{2809A17E-BF2A-4851-A39E-52AFA51E921F}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B9245F3D-14E5-4A8B-B732-ECA580227C2B}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5A6D26FE-E502-4C00-B94B-F480B1F4FDC6}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{73C5A797-B958-477B-B6C1-077431FBDFC7}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{B3CDA320-448C-41A0-80AA-B2D818B8E6E7}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{CB7603C6-05E1-489F-851A-4C2401100090}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{584E47FD-9052-4A84-9B0A-83D14A189E2D}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{303C32DD-5614-4236-8FBB-C96564F99358}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{E57CDE1B-2B07-45FA-99E7-F337C97B5BB2}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [TCP Query User{85F4582B-3AE0-4969-966D-8DB84376ED52}C:\program files (x86)\battle.net\overwatch\_beta_\overwatch.exe] => (Allow) C:\program files (x86)\battle.net\overwatch\_beta_\overwatch.exe => No File
FirewallRules: [UDP Query User{0E82D651-6A5D-4DC1-992B-E20D82ED0AB0}C:\program files (x86)\battle.net\overwatch\_beta_\overwatch.exe] => (Allow) C:\program files (x86)\battle.net\overwatch\_beta_\overwatch.exe => No File
FirewallRules: [{BF1CAE3F-731E-4B51-BEA2-EFC77F9E25B7}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{AB7729D1-F704-474A-B961-F22F9E566BB0}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{8413593E-DD35-486C-BFE9-16299A438918}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{8D8E9B51-093F-4CB5-89B1-5F7597B136DF}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{0218A168-AB28-4BE9-9EEE-F6126A052396}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{57FBD763-9B20-4D7C-BD68-CFDD3EE28EBB}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [TCP Query User{D0359CB2-EE57-4BCF-89AB-94F9114D640F}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{9B1885BA-1002-4DA2-BF24-003F4B435E05}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{4607F234-7DC0-47CD-8E41-93ED06F7FE77}] => (Allow) D:\STEAM\steamapps\common\Trine 3\trine3_launcher.exe () [File not signed]
FirewallRules: [{566B5586-B39B-4963-A530-A14D8014E3F2}] => (Allow) D:\STEAM\steamapps\common\Trine 3\trine3_launcher.exe () [File not signed]
FirewallRules: [{965E7F3E-2CDE-4D1F-B5C3-88C088568177}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{A9E5B545-FA1F-4A64-803A-3F8679E8FC6B}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{29DBF0B6-8644-4C50-AA32-B3CCEF2D02FE}] => (Allow) D:\STEAM\steamapps\common\Trine 4 The Nightmare Prince\trine4.exe () [File not signed]
FirewallRules: [{1C74CD2A-9B50-402A-A7A2-4E4CF5821444}] => (Allow) D:\STEAM\steamapps\common\Trine 4 The Nightmare Prince\trine4.exe () [File not signed]
FirewallRules: [{90658325-87BD-42F7-BD9B-B730DD177735}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{C86CDE47-6717-48A9-877B-512C43BB59DE}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\106.0.1370.52\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{56A03785-D2BC-4739-9570-6B1880E5B3E3}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{EF820726-D39E-49FA-A15A-2420E6F8F9BE}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{1F0A5C95-3D88-461C-A970-A4035243EE4F}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Restore Points =========================

10-10-2022 15:40:33 Naplánovaný kontrolní bod
14-10-2022 16:52:40 Instalační služba modulů systému Windows
22-10-2022 09:14:01 Naplánovaný kontrolní bod
29-10-2022 09:12:20 Instalační služba modulů systému Windows

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (10/29/2022 12:01:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: adwcleaner(2).exe, verze: 8.4.0.0, časové razítko: 0x630e3eb8
Název chybujícího modulu: adwcleaner(2).exe, verze: 8.4.0.0, časové razítko: 0x630e3eb8
Kód výjimky: 0xc0000005
Posun chyby: 0x00a3aa08
ID chybujícího procesu: 0x2324
Čas spuštění chybující aplikace: 0x01d8eb7d58f014b4
Cesta k chybující aplikaci: C:\Users\Javurek\Downloads\adwcleaner(2).exe
Cesta k chybujícímu modulu: C:\Users\Javurek\Downloads\adwcleaner(2).exe
ID zprávy: 8f59131e-52b3-4363-9a9a-4ae77072df61
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (10/29/2022 12:53:33 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (10/29/2022 12:53:33 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (10/29/2022 12:53:33 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (10/29/2022 12:53:33 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (10/26/2022 08:49:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: D2R.exe, verze: 1.4.5974.0, časové razítko: 0x6336f641
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.1949, časové razítko: 0xfe96c48e
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000063466
ID chybujícího procesu: 0x10d8
Čas spuštění chybující aplikace: 0x01d8e96b9b8ab6c6
Cesta k chybující aplikaci: C:\Program Files (x86)\Battle.net\Diablo II Resurrected\D2R.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 5b761977-e3f3-4935-a6bb-143e37f5cec8
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (10/23/2022 04:51:18 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (10/23/2022 07:58:53 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]


System errors:
=============
Error: (10/29/2022 12:41:27 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-V0E6AN9)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě:
2147942767
při provádění příkazu:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (10/29/2022 12:39:51 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Security Assist byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (10/29/2022 12:39:51 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Dynamic Application Loader Host Interface Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (10/29/2022 12:39:51 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Steam Client Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (10/29/2022 12:39:51 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Spybot-S&D 2 Updating Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (10/29/2022 12:39:51 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba LGHUB Updater Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.

Error: (10/29/2022 12:39:51 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) PROSet Monitoring Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (10/29/2022 12:39:51 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba ASUS Com Service byla neočekávaně ukončena. Tento stav nastal již 1krát.


Windows Defender:
================Event[0]:

Date: 2022-10-29 12:09:19
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.299.3059.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16200.1
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2022-10-29 12:09:19
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.299.3059.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16200.1
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2022-10-29 12:09:19
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.299.3059.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16200.1
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2022-10-29 12:09:19
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.299.3059.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16200.1
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2022-10-29 12:09:19
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.299.3059.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16200.1
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

CodeIntegrity:
===============
Date: 2022-10-29 13:37:04
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2022-10-29 13:36:51
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Mozilla Firefox\mozavcodec.dll that did not meet the Microsoft signing level requirements.

Date: 2022-10-29 13:36:51
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Mozilla Firefox\mozavutil.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends Inc. 0501 10/03/2016
Motherboard: ASUSTeK COMPUTER INC. B150M PRO GAMING
Processor: Intel(R) Core(TM) i7-7700 CPU @ 3.60GHz
Percentage of memory in use: 31%
Total physical RAM: 16325.85 MB
Available physical RAM: 11244.33 MB
Total Virtual: 21189.85 MB
Available Virtual: 14500.32 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:231.83 GB) (Free:99.23 GB) (Model: Samsung SSD 850 EVO 250GB) NTFS
Drive d: () (Fixed) (Total:931.5 GB) (Free:141.18 GB) (Model: ST1000DM010-2EP102) NTFS

\\?\Volume{50d757a6-c569-43c4-8bb6-0b7399944eab}\ (Obnovení) (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{cf5e5f77-c725-4507-a4e7-ec875b2198cf}\ () (Fixed) (Total:0.5 GB) (Free:0.07 GB) NTFS
\\?\Volume{e052dbbc-34e3-4b31-8fd3-2eb285e1441f}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 232.9 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15193
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosím o preventivní kontrolu logu po dlouhé době (FRST)

#2 Příspěvek od JaRon »

Ahoj,
Spybot vidim ako zbytocny SW - odinstaluj ho
Vycisti registre Ccleanerom restart PC
Prescanuj s Adwcleanerom
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

Odpovědět