Prosím o kontrolu logu - Blue Screen po updatu GK Vyřešeno

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: memphisto, Mods_senior, Security team

R.P.
Level 1.5
Level 1.5
Příspěvky: 108
Registrován: listopad 07
Pohlaví: Nespecifikováno

Re: Prosím o kontrolu logu - Blue Screen po updatu GK

Příspěvekod R.P. » 13 pro 2020 23:55

Memtest proběhl bez chyb



Reklama
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 41314
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Prosím o kontrolu logu - Blue Screen po updatu GK

Příspěvekod jaro3 » 14 pro 2020 16:36

Vypni antivir i firewall.
Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
další odkaz:
http://www.bleepingcomputer.com/downloa ... scan-tool/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

R.P.
Level 1.5
Level 1.5
Příspěvky: 108
Registrován: listopad 07
Pohlaví: Nespecifikováno

Re: Prosím o kontrolu logu - Blue Screen po updatu GK

Příspěvekod R.P. » 14 pro 2020 17:28

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-12-2020
Ran by Roman Pícha (administrator) on DOMA (MSI MS-7816) (14-12-2020 17:26:36)
Running from C:\Users\Roman Pícha\Desktop
Loaded Profiles: Roman Pícha
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) D:\Programy\Adobe\Elements 14 Organizer\PhotoshopElementsFileAgent.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe
(Disc Soft Ltd -> Disc Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
(Epic Games Inc. -> Epic Games, Inc.) D:\Hry\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2>
(Epic Games Inc. -> Epic Games, Inc.) D:\Hry\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\egui.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(geek software GmbH -> geek software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe <2>
(Intel CASE -> ) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Intel CASE -> Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MICRO-STAR INTERNATIONAL CO., LTD.) C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\MSI\MSIRegister\MSIRegisterService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\Live Update.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe <11>
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Sony) [File not signed] C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanionAgent.exe
(Sony) [File not signed] C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe
(Wargaming.net Limited -> Wargaming.net) D:\Hry\Wargaming.net\GameCenter\dlls\wgc_renderer.exe <3>
(Wargaming.net Limited -> Wargaming.net) D:\Hry\Wargaming.net\GameCenter\wargamingerrormonitor.exe
(Wargaming.net Limited -> Wargaming.net) D:\Hry\Wargaming.net\GameCenter\wgc.exe
(ZONER software, a.s. -> ZONER software) C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAAnotif] => C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-04] (Intel Corporation -> Intel Corporation)
HKLM\...\Run: [ISCT Tray] => C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe [5860656 2014-08-25] (Intel CASE -> Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508104 2015-07-29] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9228800 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmdS.exe [175504 2020-10-29] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2014-06-27] (Intel Corporation - Software and Firmware Products -> Intel Corporation)
HKLM-x32\...\Run: [Super Charger] => C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [1014736 2014-11-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [486464 2020-10-01] (geek software GmbH -> geek software GmbH)
HKLM-x32\...\Run: [Live Update] => C:\Program Files (x86)\MSI\Live Update\Live Update.exe [26310800 2020-05-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [MSIRegister] => C:\MSI\MSIRegister\MSIRegister.exe [1266872 2019-03-08] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKU\S-1-5-21-3787924664-1021992385-2885581842-1001\...\Run: [OscarEditor] => C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe [3340288 2012-03-20] () [File not signed]
HKU\S-1-5-21-3787924664-1021992385-2885581842-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-3787924664-1021992385-2885581842-1001\...\Run: [EpicGamesLauncher] => D:\Hry\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32711056 2020-12-12] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3787924664-1021992385-2885581842-1001\...\Run: [Wargaming.net Game Center] => D:\Hry\Wargaming.net\GameCenter\wgc.exe [2481016 2020-12-03] (Wargaming.net Limited -> Wargaming.net)
HKU\S-1-5-21-3787924664-1021992385-2885581842-1001\...\Run: [XperiaCompanionAgent] => C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanionAgent.exe [1684480 2020-09-02] (Sony) [File not signed]
HKU\S-1-5-21-3787924664-1021992385-2885581842-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\PROGRAM FILES\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE [563416 2015-07-12] (ZONER software, a.s. -> ZONER software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.88\Installer\chrmstp.exe [2020-12-02] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2020-05-04] (Adobe Inc. -> Adobe Systems, Inc.)
AppInit_DLLs-x32:  => No File

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0F230279-5EC0-4973-8DD5-9BBF3F24FF28} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {12CD5AFE-BE4D-481C-B3D0-E015D519239B} - System32\Tasks\GoogleUpdateTaskMachineUA1d08f47ceca45d7 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {18F5D580-3268-4AD8-B003-49F78F25583F} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-08] (Adobe Inc. -> Adobe)
Task: {2FEE98A5-DEA8-47AA-85F0-83843D486398} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [73568 2019-08-19] (Microsoft Corporation -> Microsoft)
Task: {3D8844CF-0090-43EF-A5FA-533A26C869BC} - \AutoKMS -> No File <==== ATTENTION
Task: {42CCB4E7-5BCE-410D-B893-6BB84A602621} - System32\Tasks\{0C5D3B98-718A-449B-943A-B991DE68258D} => F:\Stahování\XperiaCompanion.exe [51897696 2019-05-05] (Sony Mobile Communications AB -> Sony)
Task: {4498C4A7-24B3-442F-B46D-6A5EEE34C87C} - System32\Tasks\{D8DDD1DC-4861-459E-A115-144AE01F3518} => C:\Windows\system32\pcalua.exe -a F:\Stahování\XperiaCompanion.exe -d F:\Stahování
Task: {483DEE8E-A484-435F-A01A-410DBAB3F9E0} - System32\Tasks\AMHelper => C:\Program Files (x86)\Zemana\AntiMalware\AntiMalware.exe [658808 2020-07-29] (Zemana D.O.O. Sarajevo -> Zemana Ltd.)
Task: {4A1960FF-7B3B-4254-8BC1-79FE2E570A0A} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3301176 2020-11-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5513FC15-354B-4305-8CE6-6E7CBA2151BB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {58625BDA-1E8D-496F-8D4E-AC5DD4288D08} - System32\Tasks\GoogleUpdateTaskMachineCore1d1aba82bffcbd2 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {588C472A-8F5B-4DEA-9C69-4B03483D41C7} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-11-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5EBA358B-8A84-4EF4-BDB6-11A71B3237C6} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-11-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {656638C8-367B-4ABE-91FC-5AB407F01164} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-11-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6993353D-DEA9-43A5-AD6D-C8150F81A56D} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-11-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7D31A9F1-81D8-4E83-B108-86D354E7F6A2} - System32\Tasks\MSI_Toast_Server => C:\Program Files (x86)\MSI\MSI Toast Server\MSIToastServer.exe [31904 2019-03-05] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
Task: {893465B3-16FF-441B-81CF-569C8816A73D} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-11-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9CAA40D5-3B07-4FF3-9EEF-231DE7EF5590} - System32\Tasks\GoogleUpdateTaskMachineUA1d0f1512a715eff => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {A2201E27-56ED-4A8C-9FD9-2182F6F21758} - System32\Tasks\GoogleUpdateTaskMachineUA1d15dd3828c2dcc => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {A95963E4-672A-47AF-ABEC-A356CAFCA7A9} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-11-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B3FD2EFF-7664-4BDB-8A35-E881CA3FCBE5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {B9ED66D0-100C-40FC-83AC-C641B7DACBA5} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [670928 2020-11-21] (Mozilla Corporation -> Mozilla Foundation)
Task: {BA160259-8534-4614-ADE2-13544B94A93A} - System32\Tasks\AdobeAAMUpdater-1.0-Doma-Roman Pícha => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508104 2015-07-29] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {C33B2AD6-43F2-4111-92FE-5FC09D4F02CF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
Task: {CD28B067-22A6-4C1A-85B1-A6AA31C09A7F} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-11-22] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {D21EFA18-8A60-41CA-905C-9F5741ED1459} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-11-22] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {D378712F-129C-416A-895E-28D838F8695A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [3497240 2013-03-25] (Piriform Ltd -> Piriform Ltd)
Task: {EAC9A247-2678-4420-97FF-724B003DAC45} - System32\Tasks\GoogleUpdateTaskMachineCore1d08f47ceb11828 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {F73132CD-20AB-4979-91DE-A9D143FB9A91} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-11-22] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d08f47ceb11828.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d08f47ceca45d7.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0f1512a715eff.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [152864 2010-10-07] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 07 C:\Program Files\Bonjour\mdnsNSP.dll [193824 2010-10-07] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 100.64.0.2 100.64.0.3
Tcpip\..\Interfaces\{ADF1A68A-E884-4C80-9E80-C20DBD14C87E}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{F556B5C0-C371-415D-B0F5-8FF5BD04A45F}: [DhcpNameServer] 100.64.0.2 100.64.0.3

Edge:
======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Roman Pícha\AppData\Local\Microsoft\Edge\User Data\Default [2020-11-09]

FireFox:
========
FF DefaultProfile: 36hoq3mk.starý-1607897219581
FF ProfilePath: C:\Users\Roman Pícha\AppData\Roaming\Mozilla\Firefox\Profiles\36hoq3mk.starý-1607897219581 [2020-12-14]
FF DownloadDir: F:\Stahování
FF Homepage: Mozilla\Firefox\Profiles\36hoq3mk.starý-1607897219581 -> hxxps://www.seznam.cz/
FF Session Restore: Mozilla\Firefox\Profiles\36hoq3mk.starý-1607897219581 -> is enabled.
FF Extension: (Exif Viewer) - C:\Users\Roman Pícha\AppData\Roaming\Mozilla\Firefox\Profiles\36hoq3mk.starý-1607897219581\Extensions\exif_viewer@mozilla.doslash.org.xpi [2020-12-13]
FF Extension: (No Name) - C:\Users\Roman Pícha\AppData\Roaming\Mozilla\Firefox\Profiles\36hoq3mk.starý-1607897219581\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-12-13]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-09-19] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> )
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-20] (Google Inc -> Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-11-10] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-11-10] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-09-19] (Adobe Systems Incorporated -> Adobe Systems)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-12-14]

Chrome:
=======
CHR Profile: C:\Users\Roman Pícha\AppData\Local\Google\Chrome\User Data\Default [2020-12-13]
CHR Notifications: Default -> hxxps://www.facebook.com
CHR Extension: (Prezentace) - C:\Users\Roman Pícha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-01-16]
CHR Extension: (Dokumenty) - C:\Users\Roman Pícha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-01-16]
CHR Extension: (Disk Google) - C:\Users\Roman Pícha\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-09]
CHR Extension: (YouTube) - C:\Users\Roman Pícha\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-01-16]
CHR Extension: (Tabulky) - C:\Users\Roman Pícha\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-01-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\Roman Pícha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-12-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Roman Pícha\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-17]
CHR Extension: (Gmail) - C:\Users\Roman Pícha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-09]
CHR Extension: (Chrome Media Router) - C:\Users\Roman Pícha\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-13]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeActiveFileMonitor14.0; D:\Programy\Adobe\Elements 14 Organizer\PhotoshopElementsFileAgent.exe [226016 2015-08-27] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
R2 CIJSRegister; C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe [144784 2018-04-18] (Canon Inc. -> CANON INC.)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2595360 2020-10-29] (ESET, spol. s r.o. -> ESET)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [399296 2019-11-28] (Canon Inc. -> )
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [209712 2014-08-25] (Intel CASE -> )
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2020-12-13] (Malwarebytes Inc -> Malwarebytes)
R2 MSIREGISTER_MR; C:\MSI\MSIRegister\MSIRegisterService.exe [2020024 2019-01-03] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2333328 2020-05-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [162768 2014-11-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [30240 2013-09-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> MICRO-STAR INTERNATIONAL CO., LTD.)
R2 PDF24; C:\Program Files (x86)\PDF24\pdf24.exe [486464 2020-10-01] (geek software GmbH -> geek software GmbH)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-02-25] (Even Balance, Inc. -> )
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 XperiaCompanionService; C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [2575360 2020-09-02] (Sony) [File not signed]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 amsdk; C:\Windows\system32\drivers\amsdk.sys [232792 2020-12-13] (Zemana D.O.O. Sarajevo -> Copyright 2018.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-03-22] (Disc Soft Ltd -> Disc Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [160992 2020-10-26] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [109360 2020-10-26] (ESET, spol. s r.o. -> ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [190464 2020-10-26] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [43720 2020-10-26] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [70048 2020-10-26] (ESET, spol. s r.o. -> ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [56152 2020-10-26] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [107784 2020-10-26] (ESET, spol. s r.o. -> ESET)
S3 ggsomc; C:\Windows\System32\DRIVERS\ggsomc.sys [32384 2018-03-14] (Sony Mobile Communications AB -> Sony Mobile Communications)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-12-13] (Malwarebytes Inc -> Malwarebytes)
S3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15680 2006-10-31] (ASUSTeK Computer Inc. -> )
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [13368 2012-10-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R0 PxHlpa64; C:\Windows\System32\drivers\PxHlpa64.sys [56336 2013-09-03] (Corel Corporation -> Corel Corporation)
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\Legacy\RTCore64.sys [14496 2019-10-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
S0 sptd; C:\Windows\System32\Drivers\sptd.sys [867064 2013-02-19] (Duplex Secure Ltd -> Duplex Secure Ltd.)
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [59904 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz144; \??\C:\Windows\temp\cpuz144\cpuz144_x64.sys [X]
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-12-14 17:26 - 2020-12-14 17:26 - 000027025 _____ C:\Users\Roman Pícha\Desktop\FRST.txt
2020-12-14 17:26 - 2020-12-14 17:26 - 000000000 ____D C:\FRST
2020-12-14 17:25 - 2020-12-14 17:25 - 002286592 _____ (Farbar) C:\Users\Roman Pícha\Desktop\FRST64.exe
2020-12-13 23:29 - 2020-12-14 17:26 - 000094090 _____ C:\Windows\ZAM.krnl.trace
2020-12-13 23:29 - 2020-12-13 23:32 - 000000000 ____D C:\Users\Roman Pícha\AppData\Local\AMSDK
2020-12-13 23:29 - 2020-12-13 23:29 - 000232792 _____ (Copyright 2018.) C:\Windows\system32\Drivers\amsdk.sys
2020-12-13 23:29 - 2020-12-13 23:29 - 000003486 _____ C:\Windows\system32\Tasks\AMHelper
2020-12-13 23:29 - 2020-12-13 23:29 - 000001266 _____ C:\Users\Public\Desktop\Zemana AntiMalware.lnk
2020-12-13 23:29 - 2020-12-13 23:29 - 000001266 _____ C:\ProgramData\Desktop\Zemana AntiMalware.lnk
2020-12-13 23:29 - 2020-12-13 23:29 - 000000000 ____D C:\Users\Roman Pícha\AppData\Local\Zemana
2020-12-13 23:29 - 2020-12-13 23:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiMalware
2020-12-13 23:29 - 2020-12-13 23:29 - 000000000 ____D C:\Program Files (x86)\Zemana
2020-12-13 23:26 - 2020-12-13 23:26 - 000000000 ____D C:\Users\Roman Pícha\AppData\Local\CEF
2020-12-13 23:26 - 2020-12-13 23:26 - 000000000 ____D C:\ProgramData\CanonIJPLM
2020-12-13 23:26 - 2014-02-13 23:59 - 000024064 _____ C:\Windows\zoek-delete.exe
2020-12-13 23:12 - 2020-12-13 23:24 - 000000000 ____D C:\zoek_backup
2020-12-13 23:12 - 2020-12-13 23:12 - 000000000 ____D C:\Users\Roman Pícha\Downloads\zoek1
2020-12-13 23:11 - 2020-12-13 23:11 - 001800862 _____ C:\Users\Roman Pícha\Downloads\zoek1.rar
2020-12-13 23:00 - 2020-12-14 15:30 - 000000000 ____D C:\Users\Roman Pícha\AppData\Local\Adobe
2020-12-13 18:56 - 2020-12-13 18:57 - 000017671 _____ C:\Users\Roman Pícha\Downloads\MemTest.zip
2020-12-13 17:43 - 2020-12-13 17:43 - 000001081 _____ C:\Users\Roman Pícha\Desktop\SSD-Z.lnk
2020-12-13 16:10 - 2020-12-13 16:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WhoCrashed
2020-12-13 16:10 - 2020-12-13 16:10 - 000000000 ____D C:\Program Files\WhoCrashed
2020-12-13 16:05 - 2020-12-13 16:05 - 000001966 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-12-13 16:05 - 2020-12-13 16:05 - 000000000 ____D C:\Users\Roman Pícha\AppData\Local\mbam
2020-12-13 16:04 - 2020-12-13 16:04 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2020-12-13 15:59 - 2020-12-13 16:01 - 000000000 ____D C:\AdwCleaner
2020-12-10 18:09 - 2020-12-10 18:09 - 000003270 _____ C:\Windows\system32\Tasks\MSI_Toast_Server
2020-12-10 18:09 - 2020-12-10 18:09 - 000002041 _____ C:\Users\Public\Desktop\MSI Live Update 6.lnk
2020-12-10 18:09 - 2020-12-10 18:09 - 000002041 _____ C:\ProgramData\Desktop\MSI Live Update 6.lnk
2020-12-10 18:09 - 2014-04-30 16:23 - 000011248 _____ (Windows (R) Win 7 DDK provider) C:\Windows\acpimof.dll
2020-12-09 20:00 - 2020-12-09 20:00 - 000001398 _____ C:\Users\Roman Pícha\Desktop\GeForce Experience.lnk
2020-12-09 19:55 - 2020-12-05 03:31 - 001786584 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2020-12-09 19:55 - 2020-12-05 03:31 - 001786584 _____ C:\Windows\system32\vulkaninfo.exe
2020-12-09 19:55 - 2020-12-05 03:31 - 001382616 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-12-09 19:55 - 2020-12-05 03:31 - 001382616 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2020-12-09 19:55 - 2020-12-05 03:31 - 001087704 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2020-12-09 19:55 - 2020-12-05 03:31 - 001087704 _____ C:\Windows\system32\vulkan-1.dll
2020-12-09 19:55 - 2020-12-05 03:31 - 000940760 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2020-12-09 19:55 - 2020-12-05 03:31 - 000940760 _____ C:\Windows\SysWOW64\vulkan-1.dll
2020-12-09 19:55 - 2020-12-05 03:31 - 000452504 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2020-12-09 19:55 - 2020-12-05 03:31 - 000450456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2020-12-09 19:55 - 2020-12-05 03:31 - 000350960 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2020-12-09 19:55 - 2020-12-05 03:30 - 158399384 _____ (NVIDIA Corporation) C:\Windows\system32\nvoptix.dll
2020-12-09 19:55 - 2020-12-05 03:30 - 062434544 _____ (NVIDIA Corporation) C:\Windows\system32\nvrtum64.dll
2020-12-09 19:55 - 2020-12-05 03:30 - 018703600 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl64.dll
2020-12-09 19:55 - 2020-12-05 03:30 - 016245656 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl32.dll
2020-12-09 19:55 - 2020-12-05 03:30 - 008387992 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler64.dll
2020-12-09 19:55 - 2020-12-05 03:30 - 007411952 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler32.dll
2020-12-09 19:55 - 2020-12-05 03:29 - 042932120 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2020-12-09 19:55 - 2020-12-05 03:29 - 033654680 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2020-12-09 19:55 - 2020-12-05 03:29 - 032180120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2020-12-09 19:55 - 2020-12-05 03:29 - 001512856 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2020-12-09 19:55 - 2020-12-05 03:29 - 001165208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2020-12-09 19:55 - 2020-12-05 03:29 - 000673688 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2020-12-09 19:55 - 2020-12-05 03:29 - 000559000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2020-12-09 19:55 - 2020-12-05 03:29 - 000431000 _____ C:\Windows\system32\nvofapi64.dll
2020-12-09 19:55 - 2020-12-05 03:29 - 000384920 _____ C:\Windows\SysWOW64\nvofapi.dll
2020-12-09 19:55 - 2020-12-05 03:29 - 000220056 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2020-12-09 19:55 - 2020-12-05 03:29 - 000199576 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2020-12-09 19:55 - 2020-12-05 03:29 - 000187800 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2020-12-09 19:55 - 2020-12-05 03:29 - 000168344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2020-12-09 19:55 - 2020-12-05 03:28 - 040704920 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler64.dll
2020-12-09 19:55 - 2020-12-05 03:28 - 022683376 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2020-12-09 19:55 - 2020-12-05 03:28 - 019799280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2020-12-09 19:55 - 2020-12-05 03:28 - 007848856 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2020-12-09 19:55 - 2020-12-05 03:28 - 007091952 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2020-12-09 19:55 - 2020-12-05 03:28 - 001733016 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6446079.dll
2020-12-09 19:55 - 2020-12-05 03:28 - 001588632 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2020-12-09 19:55 - 2020-12-05 03:28 - 001492376 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6446079.dll
2020-12-09 19:55 - 2020-12-05 03:28 - 000544496 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2020-12-09 19:55 - 2020-12-05 03:28 - 000474008 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2020-12-09 19:55 - 2020-12-05 03:27 - 035556248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler32.dll
2020-12-09 19:55 - 2020-12-05 03:27 - 000682736 _____ (NVIDIA Corporation) C:\Windows\system32\nvcbl64.dll
2020-12-09 19:55 - 2020-12-04 03:41 - 000135592 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2020-12-09 19:55 - 2020-12-04 03:41 - 000038640 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2020-12-09 19:55 - 2020-12-04 03:41 - 000000671 _____ C:\Windows\SysWOW64\nv-vk32.json
2020-12-09 19:55 - 2020-12-04 03:41 - 000000671 _____ C:\Windows\system32\nv-vk64.json
2020-12-09 16:48 - 2020-12-09 16:48 - 000003157 _____ C:\Users\Roman Pícha\Desktop\DesktopOK – zástupce.lnk
2020-12-09 11:37 - 2020-12-05 03:31 - 000522480 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2020-12-09 11:37 - 2020-12-05 03:28 - 002104728 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2020-12-09 11:37 - 2020-12-05 03:26 - 029604112 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2020-12-09 11:37 - 2020-12-05 03:26 - 006184784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2020-12-09 11:37 - 2020-12-04 03:41 - 000058450 _____ C:\Windows\system32\nvinfo.pb
2020-12-09 11:37 - 2020-11-23 15:33 - 001733016 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6445751.dll
2020-12-09 11:37 - 2020-11-23 15:33 - 001482992 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6445751.dll
2020-12-03 16:33 - 2020-12-03 17:19 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2020-11-30 18:49 - 2020-11-30 18:49 - 000001806 _____ C:\Users\Roman Pícha\Desktop\CrystalDiskMark 8.lnk
2020-11-30 18:49 - 2020-11-30 18:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskMark8
2020-11-30 18:49 - 2020-11-30 18:49 - 000000000 ____D C:\Program Files\CrystalDiskMark8
2020-11-28 13:23 - 2020-12-10 17:37 - 000000000 ____D C:\Program Files\HWiNFO64
2020-11-28 13:23 - 2020-12-10 16:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64
2020-11-28 13:20 - 2020-11-28 13:20 - 000000936 _____ C:\Users\Public\Desktop\CPUID HWMonitor.lnk
2020-11-28 13:20 - 2020-11-28 13:20 - 000000936 _____ C:\ProgramData\Desktop\CPUID HWMonitor.lnk
2020-11-28 13:20 - 2020-11-28 13:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2020-11-28 13:20 - 2020-11-28 13:20 - 000000000 ____D C:\Program Files\CPUID
2020-11-22 06:58 - 2020-11-22 06:58 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2020-11-21 09:15 - 2020-11-23 16:19 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2020-11-15 17:48 - 2020-11-15 17:48 - 000000000 ____D C:\Users\Roman Pícha\AppData\Roaming\DesktopOK

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-12-14 17:10 - 2015-09-17 15:00 - 000000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0f1512a715eff.job
2020-12-14 17:05 - 2015-05-15 20:46 - 000000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d08f47ceca45d7.job
2020-12-14 16:58 - 2009-07-14 05:45 - 000034800 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-12-14 16:58 - 2009-07-14 05:45 - 000034800 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-12-14 16:51 - 2014-11-16 09:34 - 000000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2020-12-14 15:55 - 2013-02-19 11:55 - 000000000 ____D C:\ProgramData\NVIDIA
2020-12-14 15:38 - 2014-06-29 11:08 - 000000000 ____D C:\Users\Roman Pícha\AppData\Roaming\uTorrent
2020-12-14 14:51 - 2013-02-25 10:38 - 000000000 ____D C:\Users\Roman Pícha\AppData\Roaming\vlc
2020-12-14 14:49 - 2010-11-21 10:27 - 000671796 _____ C:\Windows\system32\perfh005.dat
2020-12-14 14:49 - 2010-11-21 10:27 - 000142392 _____ C:\Windows\system32\perfc005.dat
2020-12-14 14:49 - 2009-07-14 06:13 - 001591814 _____ C:\Windows\system32\PerfStringBackup.INI
2020-12-14 14:49 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2020-12-14 14:44 - 2013-02-19 11:59 - 000000000 ____D C:\ProgramData\Mozilla
2020-12-14 14:43 - 2016-11-18 16:54 - 000000000 ____D C:\Users\Roman Pícha\AppData\LocalLow\Mozilla
2020-12-14 14:43 - 2015-05-15 20:46 - 000000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d08f47ceb11828.job
2020-12-14 14:43 - 2014-11-16 09:34 - 000000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2020-12-14 14:43 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-12-13 21:16 - 2014-10-29 17:08 - 000003978 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{96A5A893-4541-4057-B5D0-B3573AE89590}
2020-12-13 18:59 - 2014-02-09 08:50 - 000000000 ____D C:\Windows\Minidump
2020-12-13 16:05 - 2020-08-12 19:20 - 000001954 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-12-13 16:05 - 2020-08-12 19:20 - 000001954 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-12-13 16:04 - 2020-08-12 19:20 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2020-12-12 21:00 - 2014-09-07 11:18 - 000000096 _____ C:\Users\Roman Pícha\AppData\Roaming\LauncherSettings_live.cfg
2020-12-12 15:05 - 2019-07-27 19:33 - 000000000 ____D C:\Users\Roman Pícha\Desktop\Foto stativák
2020-12-12 11:28 - 2020-04-24 19:44 - 000014579 _____ C:\Users\Roman Pícha\Desktop\Ptáci.xlsx
2020-12-11 21:40 - 2013-04-27 10:28 - 000007598 _____ C:\Users\Roman Pícha\AppData\Local\Resmon.ResmonCfg
2020-12-11 17:15 - 2019-12-03 22:17 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2020-12-10 21:49 - 2017-05-26 21:12 - 000002065 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-12-10 18:09 - 2015-09-07 01:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2020-12-10 18:09 - 2015-09-07 01:42 - 000000000 ____D C:\MSI
2020-12-10 18:09 - 2015-09-07 01:33 - 000000000 ____D C:\Program Files (x86)\MSI
2020-12-10 17:51 - 2013-02-19 12:53 - 000000000 ____D C:\Users\Roman Pícha\AppData\Roaming\Winamp
2020-12-10 17:38 - 2014-03-21 22:09 - 000000000 ____D C:\Users\Roman Pícha\AppData\Local\NVIDIA
2020-12-09 19:54 - 2013-02-19 11:55 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-12-09 19:49 - 2014-06-29 09:20 - 000000000 ____D C:\Users\Roman Pícha\AppData\Local\NVIDIA Corporation
2020-12-09 18:16 - 2019-05-06 18:25 - 000000049 _____ C:\Users\Roman Pícha\AppData\Roaming\TheHunterSettings_steam_live.cfg
2020-12-09 17:20 - 2013-10-18 14:43 - 000016596 _____ C:\Users\Roman Pícha\AppData\Roaming\TheHunterSettings_live.bin
2020-12-09 12:04 - 2019-06-02 07:42 - 000004146 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-09 12:04 - 2019-06-02 07:42 - 000003940 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-09 12:04 - 2019-06-02 07:42 - 000003798 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-09 12:04 - 2019-06-02 07:42 - 000003790 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-09 12:04 - 2019-06-02 07:42 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-09 12:04 - 2019-06-02 07:42 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-09 12:04 - 2019-06-02 07:42 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-09 12:04 - 2019-06-02 07:42 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-09 12:04 - 2014-03-21 22:03 - 000000000 ____D C:\NVIDIA
2020-12-09 12:04 - 2013-02-19 11:55 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-12-09 12:04 - 2013-02-19 11:54 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-12-09 12:03 - 2019-06-02 07:42 - 000003738 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-09 12:03 - 2019-06-02 07:42 - 000003494 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-09 10:11 - 2013-08-30 16:12 - 000000000 ____D C:\Users\Roman Pícha\Documents\4A Games
2020-12-08 15:35 - 2018-03-13 16:20 - 000004532 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-12-08 15:35 - 2013-02-19 12:00 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-12-08 15:35 - 2013-02-19 12:00 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-12-08 15:35 - 2013-02-19 12:00 - 000004396 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-12-08 15:35 - 2013-02-19 12:00 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-12-08 15:35 - 2013-02-19 12:00 - 000000000 ____D C:\Windows\system32\Macromed
2020-12-07 20:19 - 2019-12-15 17:43 - 000000000 ____D C:\Users\Roman Pícha\Desktop\Karty
2020-12-05 03:27 - 2019-08-13 15:55 - 037676424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2020-12-05 03:27 - 2016-08-28 22:09 - 076849584 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2020-12-05 03:26 - 2019-08-13 15:55 - 024803584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2020-12-05 03:26 - 2015-09-06 21:22 - 007312272 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2020-12-04 16:03 - 2016-05-11 18:11 - 000003258 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore1d1aba82bffcbd2
2020-12-04 16:03 - 2016-02-02 17:05 - 000003386 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA1d15dd3828c2dcc
2020-12-04 16:02 - 2013-02-19 11:59 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-12-04 03:41 - 2015-09-06 20:26 - 001682376 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2020-12-04 00:04 - 2016-03-30 18:52 - 000992232 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2020-12-04 00:04 - 2016-03-30 18:52 - 000084456 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2020-12-04 00:04 - 2013-02-19 11:55 - 005623272 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2020-12-04 00:04 - 2013-02-19 11:55 - 002636776 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2020-12-04 00:04 - 2013-02-19 11:55 - 001760232 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2020-12-04 00:04 - 2013-02-19 11:55 - 000121144 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2020-12-02 21:51 - 2019-01-16 19:50 - 000002230 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-12-02 21:51 - 2019-01-16 19:50 - 000002189 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-12-02 21:51 - 2019-01-16 19:50 - 000002189 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-12-02 05:35 - 2013-02-19 11:55 - 009371667 _____ C:\Windows\system32\nvcoproc.bin
2020-11-24 23:21 - 2017-05-26 21:12 - 000004476 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2020-11-22 14:08 - 2019-06-02 07:42 - 002797552 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2020-11-22 14:08 - 2019-06-02 07:42 - 002154984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2020-11-22 14:08 - 2019-06-02 07:42 - 001294832 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll
2020-11-22 14:08 - 2019-06-02 07:42 - 000169272 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2020-11-22 14:08 - 2019-06-02 07:42 - 000145208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2020-11-22 10:45 - 2013-02-19 11:55 - 000194360 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2020-11-15 19:45 - 2019-12-03 22:18 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server

==================== Files in the root of some directories ========

2014-09-07 11:18 - 2020-12-12 21:00 - 000000096 _____ () C:\Users\Roman Pícha\AppData\Roaming\LauncherSettings_live.cfg
2013-10-18 14:43 - 2020-12-09 17:20 - 000016596 _____ () C:\Users\Roman Pícha\AppData\Roaming\TheHunterSettings_live.bin
2013-02-19 14:45 - 2018-02-13 16:17 - 000000046 _____ () C:\Users\Roman Pícha\AppData\Roaming\TheHunterSettings_live.cfg
2019-05-06 18:25 - 2020-12-09 18:16 - 000000049 _____ () C:\Users\Roman Pícha\AppData\Roaming\TheHunterSettings_steam_live.cfg
2013-04-27 10:28 - 2020-12-11 21:40 - 000007598 _____ () C:\Users\Roman Pícha\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2020-12-13 14:31
==================== End of FRST.txt ========================

R.P.
Level 1.5
Level 1.5
Příspěvky: 108
Registrován: listopad 07
Pohlaví: Nespecifikováno

Re: Prosím o kontrolu logu - Blue Screen po updatu GK

Příspěvekod R.P. » 14 pro 2020 17:28

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-12-2020
Ran by Roman Pícha (14-12-2020 17:27:05)
Running from C:\Users\Roman Pícha\Desktop
Windows 7 Professional Service Pack 1 (X64) (2013-02-19 10:48:16)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3787924664-1021992385-2885581842-500 - Administrator - Disabled)
Guest (S-1-5-21-3787924664-1021992385-2885581842-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3787924664-1021992385-2885581842-1002 - Limited - Enabled)
Roman Pícha (S-1-5-21-3787924664-1021992385-2885581842-1001 - Administrator - Enabled) => C:\Users\Roman Pícha

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Security (Disabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AS: ESET Security (Disabled - Up to date) {32D4BD20-1EBB-773C-2B52-7CE89BB0522B}
AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Disabled) {B18EDDE1-72EE-79EA-3ABD-EEAF1EE45FED}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.22beta (HKLM-x32\...\7-Zip) (Version: - )
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.465 - Adobe)
Adobe Lightroom (HKLM-x32\...\{8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D}) (Version: 6.5.1 - Adobe Systems Incorporated)
Adobe Photoshop Elements 14 (HKLM-x32\...\{49F8D229-3E0E-4F43-8429-EB8F2583DB19}) (Version: 14.0 - Adobe Systems Incorporated)
Adobe Premiere Elements 14 (HKLM-x32\...\{18EF738B-56F0-4370-8FEA-93FC9EC51DFA}) (Version: 14.0 - Adobe Systems Incorporated)
Aktualizace NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden
Apple Application Support (HKLM-x32\...\{F5266D28-E0B2-4130-BFC5-EE155AD514DC}) (Version: 2.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Audacity 2.4.1 (HKLM-x32\...\Audacity_is1) (Version: 2.4.1 - Audacity Team)
Avidemux 2.6 (32-bit) (HKLM-x32\...\Avidemux 2.6) (Version: 2.6.7.8981 - )
Balíček ovladače systému Windows - Sony Mobile Communications (ggsomc) SOMCFlashDevice (12/06/2017 3.2.0.0) (HKLM\...\7AA77B236196DB9A6C04257060560ACDBB626F30) (Version: 12/06/2017 3.2.0.0 - Sony Mobile Communications)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bonjour (HKLM\...\{E4F5E48E-7155-4CF9-88CD-7F377EC9AC54}) (Version: 2.0.4.0 - Apple Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.5.0.69 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 6.2.0 - Canon Inc.)
CanoScan LiDE 400 Scanner Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ4813S) (Version: 1.00 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.00 - Piriform)
CPUID HWMonitor 1.43 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.43 - CPUID, Inc.)
CrystalDiskInfo 8.3.2 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.3.2 - Crystal Dew World)
CrystalDiskMark 8.0.0a (HKLM\...\CrystalDiskMark8_is1) (Version: 8.0.0a - Crystal Dew World)
D:\Programy\Adobe\Adobe Lightroom\LRcestina_uninstall.exe (HKLM-x32\...\CZ Lokalizace pro Lightroom CC 2015.3 a 6.3_is1) (Version: 1.1 - )
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Epic Games Launcher (HKLM-x32\...\{5B340CD5-07E3-41AA-9117-0A0EC863E454}) (Version: 1.1.220.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
ESET Security (HKLM\...\{B489BC2D-0079-4631-97BF-CA2378299D43}) (Version: 14.0.22.0 - ESET, spol. s r.o.)
FF File Time (HKLM-x32\...\{0597E547-B7C8-42F0-9C69-2A77F7E2CE35}) (Version: 1.1.0 - Fast Forward Projects)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Google Drive (HKLM-x32\...\{A8DC81F2-D365-4248-892A-FA3B5951F731}) (Version: 2.34.9392.7803 - Google, Inc.)
Google Earth Plug-in (HKLM-x32\...\{57BB4801-61C8-4E74-9672-2160728A461E}) (Version: 7.1.5.1557 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.88 - Google LLC)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Helium (HKLM-x32\...\{9A781940-AC41-4D5E-8E1E-76A04B916FB9}) (Version: 1.0.0 - ClockworkMod)
HWiNFO64 Version 6.40 (HKLM\...\HWiNFO64_is1) (Version: 6.40 - Martin Malik - REALiX)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.31.1000 - Intel Corporation)
Intel(R) Smart Connect Technology (HKLM\...\{20F70BB1-9240-43D2-985C-A8F5C6AAA1C7}) (Version: 5.0.10.2907 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.34 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{d370215a-d003-43ae-a3b6-1028af64d5a1}) (Version: 10.0.20 - Intel(R) Corporation) Hidden
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes)
Marvell Miniport Driver (HKLM-x32\...\Marvell Miniport Driver) (Version: 11.10.5.3 - Marvell)
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 83.0.478.50 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.129.37 - )
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61135 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61135 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61135 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61135 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40660 (HKLM\...\{5740BD44-B58D-321A-AFC0-6D3D4556DD6C}) (Version: 12.0.40660 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40660 (HKLM\...\{CB0836EC-B072-368D-82B2-D3470BF95707}) (Version: 12.0.40660 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40660 (HKLM-x32\...\{7DAD0258-515C-3DD4-8964-BD714199E0F7}) (Version: 12.0.40660 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40660 (HKLM-x32\...\{E30D8B21-D82D-3211-82CC-0F0A5D1495E8}) (Version: 12.0.40660 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 2.2.3073.701 - Microsoft Corporation)
Mozilla Firefox 83.0 (x64 cs) (HKLM\...\Mozilla Firefox 83.0 (x64 cs)) (Version: 83.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.0 - Mozilla)
Mozilla Thunderbird 78.5.1 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 78.5.1 (x86 cs)) (Version: 78.5.1 - Mozilla)
Mp3tag v2.95 (HKLM-x32\...\Mp3tag) (Version: 2.95 - Florian Heidenreich)
MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.2.0.69 - MSI)
MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.2.027 - MSI)
MSIRegister (HKLM-x32\...\{80B995A4-3A86-4690-98A6-563F1A788835}_is1) (Version: 2.0.0.19 - MSI)
Neat Image v7.6.0 Pro plug-in for Photoshop (64-bit) (HKLM\...\Neat Image plug-in for Photoshop_is1) (Version: - Neat Image team, ABSoft)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.27 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.5.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.5.70 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.40 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 460.79 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 460.79 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NvModuleTracker (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Version: 6.14.24033.38719 - NVIDIA Corporation) Hidden
OSCAR Editor (HKLM-x32\...\{3C2379D2-337A-4FFA-9017-BDFB80EC0931}) (Version: 12.03.0004 - A4TECH) Hidden
Ovládací panel NVIDIA 460.79 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 460.79 - NVIDIA Corporation) Hidden
PDF24 Creator 9.2.2 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: 9.2.2 - PDF24.org)
Pro Evolution Soccer 2011 (HKLM-x32\...\{9773450C-E2F3-46C3-9464-1D7EDE5EFB63}) (Version: 1.01.0000 - KONAMI)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
QuickTime (HKLM-x32\...\{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}) (Version: 7.73.80.64 - Apple Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.90.826.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8186 - Realtek Semiconductor Corp.)
Revo Uninstaller Pro 4.2.3 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 4.2.3 - VS Revo Group, Ltd.)
RivaTuner Statistics Server 7.2.3 (HKLM-x32\...\RTSS) (Version: 7.2.3 - Unwinder)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Služba Xperia Companion (HKLM\...\{077C43DC-63BC-4080-803E-605B181CDFAF}) (Version: 2.10.3.0 - Sony) Hidden
Sony Mobile Software Update Drivers (HKLM\...\{4872001F-F67C-4C54-BC92-281C6A165251}) (Version: 3.2.0.3 - Sony Mobile Communications)
Sony Mobile Update Engine (HKU\S-1-5-21-3787924664-1021992385-2885581842-1001\...\Update Engine) (Version: 2.19.6.201905031205 - Sony Mobile Communications Inc.)
Sublime Text 2.0.2 (HKLM\...\Sublime Text 2_is1) (Version: - )
theHunter Launcher (HKLM-x32\...\FBDFBE7F-2DB8-47E2-B88E-32F4A2A74AA8_is1) (Version: 825 - Expansive Worlds)
Topaz DeNoise AI (HKLM\...\Topaz DeNoise AI 2.0.0.3) (Version: 2.0.0.3 - Topaz Labs LLC)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 8.51 - Ghisler Software GmbH)
tpsdig2w32 version 2.30 (HKLM-x32\...\tpsdig2w32_is1) (Version: 2.30 - F. James Rohlf)
Uplay (HKLM-x32\...\Uplay) (Version: 43.1 - Ubisoft)
VGA Boost (HKLM-x32\...\{809ACFAE-9A4D-4C60-9223-D8B615CD8CBA}}_is1) (Version: 1.0.0.8 - MSI)
Visual Studio Community 2019 (HKLM-x32\...\4fcd2705) (Version: 16.2.29209.62 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)
vs_filehandler_amd64 (HKLM-x32\...\{19A2A8BC-4971-415D-84BF-11FD94BC7C30}) (Version: 16.2.29012 - Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM-x32\...\{B6302FE7-B486-490B-AEE8-CB7858DD1B6F}) (Version: 16.2.29012 - Microsoft Corporation) Hidden
vs_FileTracker_Singleton (HKLM-x32\...\{7E846069-BA07-434B-9037-ECDCFFFEEF97}) (Version: 16.2.29006 - Microsoft Corporation) Hidden
vs_minshellmsi (HKLM-x32\...\{9DB417AD-0662-44E9-989F-E7102C5CC386}) (Version: 16.2.29111 - Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32\...\{DA2B1838-3B2E-4220-8B2E-796F4624D463}) (Version: 16.0.28329 - Microsoft Corporation) Hidden
Wargaming.net Game Center (HKU\S-1-5-21-3787924664-1021992385-2885581842-1001\...\Wargaming.net Game Center) (Version: 20.7.2.2851 - Wargaming.net)
WhoCrashed 6.70 (HKLM\...\WhoCrashed_is1) (Version: - Resplendence Software Projects Sp.)
Winamp (HKLM-x32\...\Winamp) (Version: 5.63 - Nullsoft, Inc)
Winamp Detector Plug-in (HKU\S-1-5-21-3787924664-1021992385-2885581842-1001\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
WinDirStat 1.1.2 (HKU\S-1-5-21-3787924664-1021992385-2885581842-1001\...\WinDirStat) (Version: - )
WinRAR 5.80 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.80.0 - win.rar GmbH)
World of Tanks EU (HKU\S-1-5-21-3787924664-1021992385-2885581842-1001\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)
X7 Oscar Editor (HKLM-x32\...\InstallShield_{3C2379D2-337A-4FFA-9017-BDFB80EC0931}) (Version: 12.03.0004 - A4TECH)
Xperia Companion (HKLM-x32\...\{01f03aa8-2b9f-4428-8f58-f92b558439b8}) (Version: 2.10.3.0 - Sony)
Xperia Companion (HKLM-x32\...\{8FA9603B-0706-4229-A6D3-C16B64D97C9D}) (Version: 2.10.3.0 - Sony) Hidden
Zemana AntiMalware verze 3.2.27 (HKLM-x32\...\{4E1F3677-C72E-4F7D-B66E-85467B1A289E}_is1) (Version: 3.2.27 - Zemana)
Zoner Photo Studio 17 (HKLM\...\ZonerPhotoStudio17_CZ_is1) (Version: 17.0.1.12 - ZONER software)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6671064 2013-12-18] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google)
ContextMenuHandlers1: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana\AntiMalware\AM_ShellExt64.dll [2020-07-29] (Zemana D.O.O. Sarajevo -> Advanced Malware Protection. Copyright 2019.)
ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2011-04-18] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-29] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google Inc -> Google)
ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2019-04-18] (Florian Heidenreich) [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-29] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2019-04-18] (Florian Heidenreich) [File not signed]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2011-04-18] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google Inc -> Google)
ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2019-04-18] (Florian Heidenreich) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2020-12-04] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana\AntiMalware\AM_ShellExt64.dll [2020-07-29] (Zemana D.O.O. Sarajevo -> Advanced Malware Protection. Copyright 2019.)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2020-10-29] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2019-03-29] (VS Revo Group Ltd. -> VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsv64.dll [71680 2012-08-30] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2012-08-30] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) =============

2020-12-10 18:09 - 2005-07-18 13:43 - 000160256 _____ () [File not signed] C:\Program Files (x86)\MSI\Live Update\unrar.dll
2010-12-02 16:56 - 2010-12-02 16:56 - 000815104 _____ () [File not signed] C:\Program Files (x86)\OSCAR Editor X7\Data\X7\Forms\OSD_Text\OSD_Text.dll
2012-02-07 10:20 - 2012-02-07 10:20 - 002413568 _____ () [File not signed] C:\Program Files (x86)\OSCAR Editor X7\Data\X7\Forms\ScreenCapture\ScreenCapture.dll
2011-03-21 18:33 - 2011-03-21 18:33 - 000999424 _____ () [File not signed] C:\Program Files (x86)\OSCAR Editor X7\Data\X7\Forms\TrayIconWebAdvertisement\TrayIconWebAdvertisement.dll
2010-11-01 19:16 - 2010-11-01 19:16 - 000062976 _____ () [File not signed] C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_AnalyzeGesturesInOne.dll
2011-04-12 14:14 - 2011-04-12 14:14 - 000063488 _____ () [File not signed] C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_AnalyzeGesturesInRight.dll
2011-01-09 19:45 - 2011-01-09 19:45 - 000088064 _____ () [File not signed] C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_MouseDeviceManager.dll
2010-09-20 13:18 - 2010-09-20 13:18 - 000054272 _____ () [File not signed] C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_ScrollbarControl.dll
2011-08-10 12:43 - 2011-08-10 12:43 - 000118272 _____ () [File not signed] C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_Wheel4D.dll
2010-09-20 13:18 - 2010-09-20 13:18 - 000085504 _____ () [File not signed] C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_ZoomControl.dll
2015-04-29 18:57 - 2014-09-09 12:30 - 000603648 _____ () [File not signed] C:\Program Files\Zoner\Photo Studio 17\Program32\SpiderMonkey.dll
2009-11-24 05:04 - 2009-11-24 05:04 - 001141248 _____ (Embarcadero Technologies Inc.) [File not signed] C:\Program Files (x86)\OSCAR Editor X7\CC32100MT.DLL
2009-11-03 05:02 - 2009-11-03 05:02 - 000040448 _____ (Embarcadero Technologies, Inc.) [File not signed] C:\Program Files (x86)\OSCAR Editor X7\BORLNDMM.DLL
2019-04-18 09:31 - 2019-04-18 09:31 - 000424448 _____ (Florian Heidenreich) [File not signed] C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll
2014-03-25 16:49 - 2009-06-04 19:05 - 000073728 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CSY\IAAMon_CSY.dll
2014-03-25 16:49 - 2009-06-04 19:04 - 000118784 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CSY\PlugInRAID_CSY.dll
2014-03-25 16:49 - 2009-06-04 18:55 - 000208896 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ISDI.dll
2015-09-07 01:41 - 2014-06-27 04:30 - 000074240 ____R (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll
2020-09-02 13:03 - 2020-09-02 13:03 - 000736256 _____ (The curl library, hxxps://curl.haxx.se/) [File not signed] C:\Program Files (x86)\Sony\Xperia Companion\libcurl.dll
2020-09-02 13:03 - 2020-09-02 13:03 - 002749952 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files (x86)\Sony\Xperia Companion\libcrypto-3.dll
2020-09-02 13:03 - 2020-09-02 13:03 - 000872960 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files (x86)\Sony\Xperia Companion\libssl-3.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Version 11) (Whitelisted) ==========

HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-3787924664-1021992385-2885581842-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dl ... r=iesearch
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3787924664-1021992385-2885581842-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-18] (Microsoft Corporation -> Microsoft Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-28] (Google Inc -> Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc -> Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-28] (Google Inc -> Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-28] (Google Inc -> Google Inc.)
Toolbar: HKU\S-1-5-21-3787924664-1021992385-2885581842-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-04-28] (Google Inc -> Google Inc.)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2020-12-13 23:14 - 000000841 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\system32\wbem;C:\Windows\System32\WindowsPowerShell\v1.0;C:\Program Files (x86)\QuickTime\QTSystem;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-3787924664-1021992385-2885581842-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Roman Pícha\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 100.64.0.2 - 100.64.0.3
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: WinampAgent => "C:\Program Files (x86)\Winamp\winampa.exe"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{206BB86E-09C6-459C-8636-5AFA409B16FF}C:\program files (x86)\winamp\winamp.exe] => (Block) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [UDP Query User{620EE305-FA24-43BD-947A-D3140D27ACB2}C:\program files (x86)\winamp\winamp.exe] => (Block) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{8124C17D-6957-4157-9566-71FC69678511}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{E1BAAFB5-8C07-4B99-9A98-1F931B3A23AA}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{9DF0BE27-7153-4401-9DD9-AE3615501F9D}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{CAA846CB-861C-4B9A-951E-B7C8AED7D0EB}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{08685DB1-1047-41DC-AE7A-3A3F66C58792}] => (Allow) LPort=20951
FirewallRules: [{76D746A0-73C7-400A-AF13-8F28AE808376}] => (Allow) LPort=20951
FirewallRules: [{70CAA5D3-77E3-49F6-9566-0C60D2E3199F}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9A4FC189-C428-4EDE-B922-EF577295B526}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{23F00DF1-935F-412A-9AF2-D966AC802A9E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{809C0DB5-BE9D-4F2B-A08B-1F0F79BF2454}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{33DE54FE-85C8-4475-8F9A-BAC37C55C6AF}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{4E0F0A6F-C872-44C5-B7AC-BA670703A9BB}] => (Allow) C:\Users\Roman Pícha\AppData\Roaming\uTorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{57A54F34-4270-4460-A358-12874F1A6368}] => (Allow) C:\Users\Roman Pícha\AppData\Roaming\uTorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{BB37F66A-1B2D-42E3-809A-8A92E6D6BE34}] => (Allow) C:\Program Files\Zoner\Photo Studio 17\Program32\MediaServer.exe (ZONER software, a.s. -> ZONER software)
FirewallRules: [{B6AFA659-2B00-4290-BFF5-186BFF977B72}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{51B12190-5675-4956-BC01-5AFDD5944FE3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D7258046-C01A-43FF-A420-95868E5387E1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{12677FAC-C9F5-410E-9324-E9FE45367B81}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{A5FA9A0F-EE79-42BF-87B5-60F47C84D673}] => (Allow) D:\Hry\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{56EB2CF1-10FA-43C9-AB63-DA9A055A0FCF}] => (Allow) D:\Hry\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{D699CD2D-34CD-4364-8699-55913DA1FB3E}] => (Allow) D:\Hry\Steam\SteamApps\common\MGS_TPP\mgsvtpp.exe (Konami Digital Entertainment) [File not signed]
FirewallRules: [{F09B2522-0223-4D71-B180-6A00D3C35595}] => (Allow) D:\Hry\Steam\SteamApps\common\MGS_TPP\mgsvtpp.exe (Konami Digital Entertainment) [File not signed]
FirewallRules: [{B0C8AE26-5A6A-406D-8ED7-FD9DC50094B1}] => (Allow) D:\Hry\theHunter\launcher\launcher.exe (Expansive Worlds AB -> Expansive Worlds) [File not signed]
FirewallRules: [{B16054D4-8CCB-4E0F-9EB0-08490C0C2095}] => (Allow) D:\Hry\theHunter\launcher\launcher.exe (Expansive Worlds AB -> Expansive Worlds) [File not signed]
FirewallRules: [{77E69EF3-D698-42CB-BBD7-C0C54F22ECFF}] => (Allow) D:\Hry\theHunter\launcher\launcher.exe (Expansive Worlds AB -> Expansive Worlds) [File not signed]
FirewallRules: [{89E0145B-FA52-47B9-809E-9365AFEFDE51}] => (Allow) D:\Hry\theHunter\launcher\launcher.exe (Expansive Worlds AB -> Expansive Worlds) [File not signed]
FirewallRules: [{C38E664D-DE4A-4C97-97BD-2F6057CAFF0C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{45B33AB5-FF96-4662-BA25-8F30114A852D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D9A02384-AE22-4FFA-8354-4C149017FA30}] => (Allow) D:\Hry\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{7D028FEA-1E18-4694-886B-91C1AD40AC78}] => (Allow) D:\Hry\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{A1ADE013-6AF8-4CD1-9F90-3707D7AFDAE1}] => (Allow) C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanion.exe (Sony Mobile Communications AB -> Sony)
FirewallRules: [{15453F17-9E3B-4689-AE1E-3C9568EF7F0B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{FE667AEB-5BCC-4463-A61C-2C449AE7F37C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A22495FD-AC54-48D8-A943-ABEFB8F831DE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{DB814B62-0AC3-4E89-B188-A89D5FEA3FFA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{AFC0808D-1E70-4548-8C9D-EBCA967DB2F4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{DA4E70FA-437C-48B0-B4A9-514D10FF3C19}] => (Allow) D:\Hry\Steam\SteamApps\common\theHunter\launcher\launcher.exe (Expansive Worlds AB -> Expansive Worlds)
FirewallRules: [{6BBFC181-A6E9-4B57-A983-4C0B003FDF67}] => (Allow) D:\Hry\Steam\SteamApps\common\theHunter\launcher\launcher.exe (Expansive Worlds AB -> Expansive Worlds)

==================== Restore Points =========================


==================== Faulty Device Manager Devices ============

Name: Řadič USB (Universal Serial Bus)
Description: Řadič USB (Universal Serial Bus)
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Zařízení PCI
Description: Zařízení PCI
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: ========================

Application errors:
==================
Error: (12/14/2020 03:09:51 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: GetLargeResourceRecord: opt 65001 optlen 5 wrong

Error: (12/14/2020 03:09:47 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: GetLargeResourceRecord: opt 65001 optlen 5 wrong

Error: (12/14/2020 03:09:45 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: GetLargeResourceRecord: opt 65001 optlen 5 wrong

Error: (12/14/2020 03:09:44 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: GetLargeResourceRecord: opt 65001 optlen 5 wrong

Error: (12/14/2020 02:44:57 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (12/13/2020 11:28:41 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (12/13/2020 09:37:01 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Chyba služby Stínová kopie svazků: Při dotazu na rozhraní IVssWriterCallback došlo k neočekávané chybě. hr = 0x80070005, Přístup byl odepřen.
.
To je často způsobeno nesprávným nastavením zabezpečení v modulu pro zápis nebo žadateli.


Operace:
Shromažďování dat modulu pro zápis

Kontext:
ID třídy modulu pro zápis: {e8132975-6f93-4464-a53e-1050253ae220}
Název modulu pro zápis: System Writer
ID instance modulu pro zápis: {83a7014f-f012-4af0-b44d-11451da3095e}

Error: (12/13/2020 09:36:51 PM) (Source: MsiInstaller) (EventID: 11606) (User: Doma)
Description: Product: Sophos Virus Removal Tool -- Error 1606.Could not access network location data.


System errors:
=============
Error: (12/14/2020 03:29:51 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (12/14/2020 03:29:51 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (12/14/2020 03:29:30 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (12/14/2020 03:29:30 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (12/14/2020 02:43:09 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
sptd

Error: (12/14/2020 02:42:59 PM) (Source: sptd) (EventID: 4) (User: )
Description: Ovladač zjistil interní chybu ve vlastní struktuře dat u .

Error: (12/14/2020 12:23:31 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.

Error: (12/14/2020 12:23:31 AM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: Byla přijata následující výstraha o závažné chybě: 70.


Windows Defender:
===================================
Date: 2020-02-06 03:08:00.666
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{4C46EBDB-01CB-496A-9474-EE36C08F2756}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE

Date: 2019-12-26 03:08:18.774
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{A8DD1E70-8CD5-42D3-B61B-35A1FF509C61}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE

Date: 2018-04-05 23:01:48.976
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{C176D992-A330-483F-8E84-D8529E3E253B}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:Doma\Roman Pícha

Date: 2020-10-31 18:06:30.012
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.17600.5
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2020-10-30 21:53:56.639
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.17600.5
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2020-10-30 21:51:13.506
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.17600.5
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2020-10-29 21:53:17.642
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.17500.4
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

Date: 2020-10-29 21:26:58.082
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.17500.4
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:Doma\Roman Pícha
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.

CodeIntegrity:
===================================

Date: 2017-10-17 21:32:24.928
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\ESET\ESET Smart Security\Drivers\eelam\eelam.sys because the set of per-page image hashes could not be found on the system.

Date: 2017-10-17 21:32:24.928
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\ESET\ESET Smart Security\Drivers\eelam\eelam.sys because the set of per-page image hashes could not be found on the system.

Date: 2017-10-17 21:32:24.928
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\ESET\ESET Smart Security\Drivers\eelam\eelam.sys because the set of per-page image hashes could not be found on the system.

Date: 2017-10-16 17:13:51.503
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\ESET\ESET Smart Security\Drivers\eelam\eelam.sys because the set of per-page image hashes could not be found on the system.

Date: 2017-10-16 17:13:51.503
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\ESET\ESET Smart Security\Drivers\eelam\eelam.sys because the set of per-page image hashes could not be found on the system.

Date: 2017-10-16 17:13:51.503
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\ESET\ESET Smart Security\Drivers\eelam\eelam.sys because the set of per-page image hashes could not be found on the system.

Date: 2017-10-15 20:47:13.344
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\ESET\ESET Smart Security\Drivers\eelam\eelam.sys because the set of per-page image hashes could not be found on the system.

Date: 2017-10-15 20:47:13.344
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\ESET\ESET Smart Security\Drivers\eelam\eelam.sys because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

BIOS: American Megatrends Inc. V3.10 04/01/2015
Motherboard: MSI B85-G43 (MS-7816)
Processor: Intel(R) Xeon(R) CPU E3-1231 v3 @ 3.40GHz
Percentage of memory in use: 49%
Total physical RAM: 16310.41 MB
Available physical RAM: 8160.8 MB
Total Virtual: 16708.56 MB
Available Virtual: 6816.53 MB

==================== Drives ================================

Drive c: (Systém) (Fixed) (Total:119.14 GB) (Free:16.82 GB) NTFS
Drive d: (Programy) (Fixed) (Total:232.88 GB) (Free:59.25 GB) NTFS
Drive f: (Data) (Fixed) (Total:931.51 GB) (Free:100.53 GB) NTFS

\\?\Volume{f8df151a-7a80-11e2-9ea4-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: A3CD8612)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 1373832A)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: 3BC8F56F)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=119.1 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 41314
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Prosím o kontrolu logu - Blue Screen po updatu GK

Příspěvekod jaro3 » 14 pro 2020 19:28

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CreateRestorePoint:
CloseProcesses:
AppInit_DLLs-x32:   => No File
Task: {0F230279-5EC0-4973-8DD5-9BBF3F24FF28} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {12CD5AFE-BE4D-481C-B3D0-E015D519239B} - System32\Tasks\GoogleUpdateTaskMachineUA1d08f47ceca45d7 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {3D8844CF-0090-43EF-A5FA-533A26C869BC} - \AutoKMS -> No File <==== ATTENTION
Task: {5513FC15-354B-4305-8CE6-6E7CBA2151BB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {58625BDA-1E8D-496F-8D4E-AC5DD4288D08} - System32\Tasks\GoogleUpdateTaskMachineCore1d1aba82bffcbd2 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {9CAA40D5-3B07-4FF3-9EEF-231DE7EF5590} - System32\Tasks\GoogleUpdateTaskMachineUA1d0f1512a715eff => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {A2201E27-56ED-4A8C-9FD9-2182F6F21758} - System32\Tasks\GoogleUpdateTaskMachineUA1d15dd3828c2dcc => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {EAC9A247-2678-4420-97FF-724B003DAC45} - System32\Tasks\GoogleUpdateTaskMachineCore1d08f47ceb11828 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d08f47ceb11828.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d08f47ceca45d7.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0f1512a715eff.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
FF Extension: (No Name) - C:\Users\Roman Pícha\AppData\Roaming\Mozilla\Firefox\Profiles\36hoq3mk.starý-1607897219581\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-12-13]
S3 cpuz144; \??\C:\Windows\temp\cpuz144\cpuz144_x64.sys [X]
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]
C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0f1512a715eff.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d08f47ceca45d7.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d08f47ceb11828.job
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore1d1aba82bffcbd2
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA1d15dd3828c2dcc
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3787924664-1021992385-2885581842-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

Drive c: (Systém) (Fixed) (Total:119.14 GB) (Free:16.82 GB) NTFS
Totální nedostatek volného místa na disku!! Něco odinstaluj , smaž. Máš mít nejméně 15-20% volného místa na syst. disku , pro zajištění bezproblémového chodu windows!!
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

R.P.
Level 1.5
Level 1.5
Příspěvky: 108
Registrován: listopad 07
Pohlaví: Nespecifikováno

Re: Prosím o kontrolu logu - Blue Screen po updatu GK

Příspěvekod R.P. » 14 pro 2020 19:49

Fix result of Farbar Recovery Scan Tool (x64) Version: 14-12-2020
Ran by Roman Pícha (14-12-2020 19:46:15) Run:1
Running from C:\Users\Roman Pícha\Desktop
Loaded Profiles: Roman Pícha
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
AppInit_DLLs-x32: => No File
Task: {0F230279-5EC0-4973-8DD5-9BBF3F24FF28} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {12CD5AFE-BE4D-481C-B3D0-E015D519239B} - System32\Tasks\GoogleUpdateTaskMachineUA1d08f47ceca45d7 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {3D8844CF-0090-43EF-A5FA-533A26C869BC} - \AutoKMS -> No File <==== ATTENTION
Task: {5513FC15-354B-4305-8CE6-6E7CBA2151BB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {58625BDA-1E8D-496F-8D4E-AC5DD4288D08} - System32\Tasks\GoogleUpdateTaskMachineCore1d1aba82bffcbd2 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {9CAA40D5-3B07-4FF3-9EEF-231DE7EF5590} - System32\Tasks\GoogleUpdateTaskMachineUA1d0f1512a715eff => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {A2201E27-56ED-4A8C-9FD9-2182F6F21758} - System32\Tasks\GoogleUpdateTaskMachineUA1d15dd3828c2dcc => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {EAC9A247-2678-4420-97FF-724B003DAC45} - System32\Tasks\GoogleUpdateTaskMachineCore1d08f47ceb11828 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d08f47ceb11828.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d08f47ceca45d7.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0f1512a715eff.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
FF Extension: (No Name) - C:\Users\Roman P�cha\AppData\Roaming\Mozilla\Firefox\Profiles\36hoq3mk.star�-1607897219581\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-12-13]
S3 cpuz144; \??\C:\Windows\temp\cpuz144\cpuz144_x64.sys [X]
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]
C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0f1512a715eff.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d08f47ceca45d7.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d08f47ceb11828.job
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore1d1aba82bffcbd2
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA1d15dd3828c2dcc
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3787924664-1021992385-2885581842-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}

EmptyTemp:
End
*****************

Restore point was successfully created.
Processes closed successfully.
" " => Value data not found.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0F230279-5EC0-4973-8DD5-9BBF3F24FF28}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0F230279-5EC0-4973-8DD5-9BBF3F24FF28}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{12CD5AFE-BE4D-481C-B3D0-E015D519239B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{12CD5AFE-BE4D-481C-B3D0-E015D519239B}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1d08f47ceca45d7 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA1d08f47ceca45d7" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{3D8844CF-0090-43EF-A5FA-533A26C869BC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3D8844CF-0090-43EF-A5FA-533A26C869BC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoKMS" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{5513FC15-354B-4305-8CE6-6E7CBA2151BB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5513FC15-354B-4305-8CE6-6E7CBA2151BB}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{58625BDA-1E8D-496F-8D4E-AC5DD4288D08}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{58625BDA-1E8D-496F-8D4E-AC5DD4288D08}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1d1aba82bffcbd2 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore1d1aba82bffcbd2" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9CAA40D5-3B07-4FF3-9EEF-231DE7EF5590}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9CAA40D5-3B07-4FF3-9EEF-231DE7EF5590}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1d0f1512a715eff => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA1d0f1512a715eff" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A2201E27-56ED-4A8C-9FD9-2182F6F21758}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A2201E27-56ED-4A8C-9FD9-2182F6F21758}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1d15dd3828c2dcc => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA1d15dd3828c2dcc" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{EAC9A247-2678-4420-97FF-724B003DAC45}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EAC9A247-2678-4420-97FF-724B003DAC45}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1d08f47ceb11828 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore1d08f47ceb11828" => removed successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d08f47ceb11828.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d08f47ceca45d7.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0f1512a715eff.job => moved successfully
"C:\Users\Roman P�cha\AppData\Roaming\Mozilla\Firefox\Profiles\36hoq3mk.star�-1607897219581\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi" => not found
HKLM\System\CurrentControlSet\Services\cpuz144 => removed successfully
cpuz144 => service removed successfully
HKLM\System\CurrentControlSet\Services\MSICDSetup => removed successfully
MSICDSetup => service removed successfully
HKLM\System\CurrentControlSet\Services\NTIOLib_1_0_C => removed successfully
NTIOLib_1_0_C => service removed successfully
"C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0f1512a715eff.job" => not found
"C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d08f47ceca45d7.job" => not found
"C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job" => not found
"C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d08f47ceb11828.job" => not found
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore1d1aba82bffcbd2" => not found
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA1d15dd3828c2dcc" => not found
"HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
"HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
"HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-3787924664-1021992385-2885581842-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 14294937 B
Java, Flash, Steam htmlcache => 172807081 B
Windows/system/drivers => 304902 B
Edge => 0 B
Chrome => 33479027 B
Firefox => 561109811 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 33058 B
Public => 33058 B
ProgramData => 33058 B
systemprofile => 66244 B
systemprofile32 => 99302 B
LocalService => 132427 B
NetworkService => 165552 B
Roman Pícha => 863411454 B
UpdatusUser => 863411454 B

RecycleBin => 0 B
EmptyTemp: => 2.3 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 19:46:44 ====

R.P.
Level 1.5
Level 1.5
Příspěvky: 108
Registrován: listopad 07
Pohlaví: Nespecifikováno

Re: Prosím o kontrolu logu - Blue Screen po updatu GK

Příspěvekod R.P. » 14 pro 2020 19:50

Jak už jsem psal, na systém je v plánu nové větší SSD někdy v lednu.

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 41314
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Prosím o kontrolu logu - Blue Screen po updatu GK

Příspěvekod jaro3 » 14 pro 2020 21:57

winows se při menším volném místě chovají nestandardně.

Problémy jsou?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

R.P.
Level 1.5
Level 1.5
Příspěvky: 108
Registrován: listopad 07
Pohlaví: Nespecifikováno

Re: Prosím o kontrolu logu - Blue Screen po updatu GK

Příspěvekod R.P. » 14 pro 2020 22:02

Trochu jsem to promazal na 30 gb volných, problém se zatím znovu neobjevil

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 41314
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Prosím o kontrolu logu - Blue Screen po updatu GK

Příspěvekod jaro3 » 14 pro 2020 23:08

Stáhni si zde DelFix
Další odkazy:
https://toolslib.net/downloads/viewdownload/2-delfix/
http://ccm.net/download/download-24087-delfix
https://www.bleepingcomputer.com/download/delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7, 8 a10 musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt

Pokud nebudou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

R.P.
Level 1.5
Level 1.5
Příspěvky: 108
Registrován: listopad 07
Pohlaví: Nespecifikováno

Re: Prosím o kontrolu logu - Blue Screen po updatu GK

Příspěvekod R.P. » 15 pro 2020 17:20

# DelFix v1.013 - Logfile created 15/12/2020 at 17:19:46
# Updated 17/04/2016 by Xplode
# Username : Roman Pícha - DOMA
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)

~ Removing disinfection tools ...

Deleted : C:\FRST
Deleted : C:\zoek_backup
Deleted : C:\AdwCleaner
Deleted : C:\zoek-results.log
Deleted : C:\Users\Roman Pícha\Desktop\Addition.txt
Deleted : C:\Users\Roman Pícha\Desktop\Fixlog.txt
Deleted : C:\Users\Roman Pícha\Desktop\FRST.txt
Deleted : C:\Users\Roman Pícha\Desktop\FRST64.exe
Deleted : C:\Users\Roman Pícha\Downloads\zoek1.rar

~ Cleaning system restore ...

Deleted : RP #872 [Revo Uninstaller Pro's restore point - Adobe Photoshop Lightroom 6.5.1 | 12/14/2020 20:38:33]
Deleted : RP #874 [Revo Uninstaller Pro's restore point - Adobe Photoshop Lightroom 6.5.1 | 12/14/2020 20:39:00]

New restore point created !

########## - EOF - ##########

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 41314
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Prosím o kontrolu logu - Blue Screen po updatu GK

Příspěvekod jaro3 » 15 pro 2020 18:27

Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: CommonCrawl [Bot] a 2 hosti