Kontrola logu (PUP.Optional.Spigot) Vyřešeno

[jaro3]

Vyčisti systém CCleanerem
http://www.piriform.com/ccleaner/download/standard


. spusť znovu Malwarebytes' Anti-Malware a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény(smazat vybrané)“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.

Vypni antivir i firewall.
Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
další odkaz:
http://www.bleepingcomputer.com/downloa ... scan-tool/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.

[Reklama]

[zik9]

Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 10.01.21
Čas skenování: 18:37
Logovací soubor: 80ca4484-536a-11eb-8ec6-2cf05daee931.json

-Informace o softwaru-
Verze: 4.3.0.98
Verze komponentů: 1.0.1130
Aktualizovat verzi balíku komponent: 1.0.35517
Licence: Zkušební

-Systémová informace-
OS: Windows 10 (Build 19041.685)
CPU: x64
Systém souborů: NTFS
Uživatel: DESKTOP-0L989GH\Luci

-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 293462
Zjištěné hrozby: 0
Hrozby umístěné do karantény: 0
Uplynulý čas: 0 min, 23 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)

Soubor: 0
(Nebyly zjištěny žádné škodlivé položky)

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)

WMI: 0
(Nebyly zjištěny žádné škodlivé položky)


(end)

[zik9]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09-01-2021
Ran by Luci (administrator) on DESKTOP-0L989GH (Micro-Star International Co., Ltd. MS-7C75) (10-01-2021 18:39:10)
Running from C:\Users\Luci\Desktop
Loaded Profiles: Luci
Platform: Windows 10 Pro Version 20H2 19042.685 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adlice -> ) C:\Program Files\RogueKiller\RogueKiller64.exe
(Adlice -> ) C:\Program Files\RogueKiller\RogueKillerSvc.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryWebBrowser.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <2>
(ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe
(ASUSTEK COMPUTER INCORPORATION -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe
(ASUSTEK COMPUTER INCORPORATION -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.UserSessionHelper.exe
(cFos Software GmbH -> cFos Software GmbH) C:\Program Files\cFosSpeed\spd.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <18>
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_9c1ec18c04feca8d\LMS.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.BingWeather_4.46.23383.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2011.16.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20112.10111.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\NisSrv.exe
(MICRO-STAR INTERNATIONAL CO., LTD) C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.DragonCenter_2.0.98.0_x64__kzh8wxbdkxb8p\DCv2\DCv2.exe
(Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\FoundationService\MSIAPService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\MSI_Companion_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\MSI.CentralServer.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\True Color\MSI.True Color.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControl_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControlEngine.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\One Dragon Center\CC_Engine_x64.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_a51067c0ac557884\Display.NvContainer\NVDisplay.Container.exe <2>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_c759ff49aef8a7cf\RtkAudUService64.exe <2>
(Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_c759ff49aef8a7cf\RtkAudUService64.exe [1208560 2020-11-25] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [68822328 2020-12-30] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-3840382349-3675330343-4074381882-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3411232 2020-12-21] (Valve -> Valve Corporation)
HKU\S-1-5-21-3840382349-3675330343-4074381882-1001\...\Run: [Discord] => C:\Users\Luci\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-3840382349-3675330343-4074381882-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32414392 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3840382349-3675330343-4074381882-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32712080 2020-12-31] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-3840382349-3675330343-4074381882-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-10-22] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3840382349-3675330343-4074381882-1001\...\MountPoints2: {d6faf093-29f9-11eb-953f-2cf05daee931} - "D:\DVDSetup.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{43F137B0-8F4D-463B-AB83-ADEAD4F15096}] -> C:\Program Files (x86)\Microsoft\Edge Beta\Application\88.0.705.29\Installer\setup.exe [2021-01-04] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\87.0.4280.141\Installer\chrmstp.exe [2021-01-08] (Google LLC -> Google LLC)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {02B8E27F-A9CC-44F2-8478-9D502BBE7BD3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-30] (Google LLC -> Google LLC)
Task: {18F37266-4524-4C5D-8588-F317B4DCA3C5} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {222CF16A-BDAA-4B93-80E2-432BC5A8D08F} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {24809D47-34FA-4DD0-AAF5-5E28898935AB} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2AFB6AE6-34E7-42FA-84D1-61B56CAFFA7D} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {2C8034FA-EBC5-42A2-9D8C-DE343AFDC48F} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2CAB7344-5C09-4CA5-95CC-19BBC4763D96} - System32\Tasks\MSI Task Host - DisplayID => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [74384 2020-07-31] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {2F0BEE1F-C7FE-4D1B-92C8-393DFCA4963F} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3301176 2020-10-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {33C4CA0C-DFE6-411B-8D26-13E84D3497A9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2021-01-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {390C34BB-FD2A-4874-8465-FEEDFF17BDC0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2021-01-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4864A531-265E-4598-B400-181A35DF0235} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [168520 2020-12-31] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {4B0906F5-C5A2-434A-8550-08BD777C876B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-30] (Google LLC -> Google LLC)
Task: {4E51230C-FA3B-4AC7-AE75-9147169B05E3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2021-01-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4E57F667-80D7-4462-B330-DAA54798A61B} - System32\Tasks\MSI Task Host - LEDKeeper2_Host => C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LEDKeeper2.exe [1559728 2020-09-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {56520D5E-E896-402D-A5ED-F256276B07BA} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {5FBD4042-E6E1-4B68-91E3-882BB923BDD3} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6220CEB6-032F-4E3A-8127-1CB8E6A3AAE2} - System32\Tasks\NahimicAPISvc32Run => C:\Program Files\NahimicAPI\x86\NahimicAPISvc32.exe
Task: {66ECC45B-AFDD-489A-8B14-FDD2C376A115} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4071344 2021-01-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {71F330D2-1697-4EC8-B568-0D2688CDEBAC} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116584 2021-01-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {758ABC73-B85F-4740-8B81-3050601640FE} - System32\Tasks\MSI Task Host - Detect_Monitor => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [74384 2020-07-31] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {953767CC-1B9A-4035-81F3-4CD79B2FC3B8} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [693456 2020-12-21] (Mozilla Corporation -> Mozilla Foundation)
Task: {959BA5D3-91A5-4FF8-8698-FAF7D10B1A2E} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {98EDA429-8ADD-4C10-98A1-BD0CD23BE8B3} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [168520 2020-12-31] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {A06E61B6-6C2A-4BE0-8B96-206E60562BBC} - System32\Tasks\MSI Task Host - MSI.True Color => C:\Program Files (x86)\MSI\One Dragon Center\True Color\MSI.True Color.exe [44720 2020-05-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {A45294CC-7E2A-4006-A53C-22AE594AAB0B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116584 2021-01-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {A4C4F96D-3697-4107-80B9-9022514EAB8E} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {B2671360-5FEF-47CC-8BB5-6A352C7351D8} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe [56784 2020-08-27] (ASUSTeK Computer Inc. -> )
Task: {C1E3B6D4-81C8-4261-B1BD-CEBC0F366B6A} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23061920 2020-12-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {C9D4EA08-E1F5-4703-A6FB-F12CE39395A1} - System32\Tasks\AMHelper => C:\Program Files (x86)\Zemana\AntiMalware\AntiMalware.exe [658808 2020-07-29] (Zemana D.O.O. Sarajevo -> Zemana Ltd.)
Task: {CF16BE26-C564-48F1-9684-6CB41EBEDEC1} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23061920 2020-12-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {CF93BB68-CD22-402A-8F16-2D6B135D5080} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {D5F7E918-5EAE-40F3-8952-F2E9C93C40F2} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [45320880 2020-11-12] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {D95126A2-EA1F-4FE0-AAA8-D52640E5C4F1} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E034E9C3-B416-4A9B-A1ED-D851B8209421} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [1899656 2020-11-25] (ASUSTeK Computer Inc. -> ASUS)
Task: {E2E5DDEB-4170-4488-8071-00AFAC318C99} - System32\Tasks\MonitorMysticLight => C:\Program Files\GamingOSD\MysticLight\MysticLightController.exe
Task: {EE5070C2-9E3C-48CE-A819-30EC7A4F5078} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4071344 2021-01-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {F16D3F86-1622-490D-BAA8-547E6235D6A5} - System32\Tasks\Intel PTT EK Recertification => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {F323A27B-CEC8-406B-903C-0244E2A401FE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2021-01-08] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F5E600DF-69BB-4FC4-9C03-9D05F9D0D798} - System32\Tasks\NahimicAPISvc64Run => C:\Program Files\NahimicAPI\NahimicAPISvc64.exe
Task: {FE4CE94B-5199-4947-828A-40A7B382CE0D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26896568 2020-12-08] (Piriform Software Ltd -> Piriform Software Ltd)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{65acdeaf-7cf0-4395-9f94-62574b24f75d}: [DhcpNameServer] 192.168.0.1

Edge:
======
StartMenuInternet: Microsoft Edge Beta - C:\Program Files (x86)\Microsoft\Edge Beta\Application\msedge.exe

FireFox:
========
FF DefaultProfile: 4yrq45px.default
FF ProfilePath: C:\Users\Luci\AppData\Roaming\Mozilla\Firefox\Profiles\4yrq45px.default [2020-12-31]
FF ProfilePath: C:\Users\Luci\AppData\Roaming\Mozilla\Firefox\Profiles\2mxbl6fr.default-release [2021-01-10]
FF Homepage: Mozilla\Firefox\Profiles\2mxbl6fr.default-release -> about:home
FF NewTab: Mozilla\Firefox\Profiles\2mxbl6fr.default-release -> about:newtab
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-12-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\Luci\AppData\Local\Google\Chrome\User Data\Default [2021-01-10]
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/?clid=13415"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Prezentace) - C:\Users\Luci\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-01-10]
CHR Extension: (Dokumenty) - C:\Users\Luci\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-01-10]
CHR Extension: (Disk Google) - C:\Users\Luci\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-10]
CHR Extension: (YouTube) - C:\Users\Luci\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-01-10]
CHR Extension: (Tabulky) - C:\Users\Luci\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-01-10]
CHR Extension: (Dokumenty Google offline) - C:\Users\Luci\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-01-10]
CHR Extension: (Grammarly for Chrome) - C:\Users\Luci\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2021-01-10]
CHR Extension: (Video Converter) - C:\Users\Luci\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcjjnhgakghmggnimjkldjmmpabhnhne [2021-01-10]
CHR Extension: (MP3 Cutter) - C:\Users\Luci\AppData\Local\Google\Chrome\User Data\Default\Extensions\najmoifnphdjfpiegfgakilfgkhjdkeh [2021-01-10]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Luci\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-10]
CHR Extension: (Gmail) - C:\Users\Luci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-10]
CHR Extension: (Chrome Media Router) - C:\Users\Luci\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-10]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
R2 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe [345232 2020-10-22] (ASUSTEK COMPUTER INCORPORATION -> ASUSTeK COMPUTER INC.)
S3 ArmouryLiveUpdate; C:\Windows\System32\DriverStore\FileRepository\rogms.inf_amd64_40324b01c4bf3e47\ArmouryLiveUpdate.exe [122752 2020-11-25] (ASUSTeK Computer Inc. -> )
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [168520 2020-12-31] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [168520 2020-12-31] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S2 AsusROGLSLService; C:\Program Files (x86)\ASUS\AsusROGLSLService\AsusROGLSLService.exe [590360 2020-12-31] (ASUSTeK Computer Inc. -> )
R2 cFosSpeedS; C:\Program Files\cFosSpeed\spd.exe [613128 2020-09-10] (cFos Software GmbH -> cFos Software GmbH)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8960904 2020-12-25] (Microsoft Corporation -> Microsoft Corporation)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2020-12-08] (FUTUREMARK INC -> Futuremark)
S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [287720 2020-10-19] (NVIDIA Corporation -> NVIDIA)
R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [2999296 2020-10-14] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R2 LightKeeperService; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe [88720 2020-09-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2020-12-30] (Malwarebytes Inc -> Malwarebytes)
S3 MicrosoftEdgeBetaElevationService; C:\Program Files (x86)\Microsoft\Edge Beta\Application\88.0.705.29\elevation_service.exe [1523600 2020-12-19] (Microsoft Corporation -> Microsoft Corporation)
R2 MSI Foundation Service; C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\FoundationService\MSIAPService.exe [61392 2020-07-21] (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.)
R2 MSI_Central_Service; C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe [147088 2020-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 MSI_Companion_Service; C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\MSI_Companion_Service.exe [115856 2020-08-27] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 Mystic_Light_Service; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe [35504 2020-07-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2523448 2020-12-31] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3478336 2020-12-31] (Electronic Arts, Inc. -> Electronic Arts)
R2 rkrtservice; C:\Program Files\RogueKiller\RogueKillerSvc.exe [13684792 2020-12-28] (Adlice -> )
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1631360 2020-12-02] (Rockstar Games, Inc. -> Rockstar Games)
R2 ROG Live Service; C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe [2726912 2020-11-02] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 RtkAudioUniversalService; C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_c759ff49aef8a7cf\RtkAudUService64.exe [1208560 2020-11-25] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5197552 2021-01-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 VoiceControlService; C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControl_Service.exe [32400 2020-07-06] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2021-01-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2021-01-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_a51067c0ac557884\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_a51067c0ac557884\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 amsdk; C:\Windows\system32\drivers\amsdk.sys [232792 2021-01-10] (Zemana D.O.O. Sarajevo -> Copyright 2018.)
R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [33832 2019-05-02] (ASUSTeK Computer Inc. -> )
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
R1 cFosSpeed; C:\Windows\system32\DRIVERS\cfosspeed6.sys [1748256 2020-09-10] (cFos Software GmbH -> cFos Software GmbH)
R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 GLCKIO2; C:\Windows\system32\drivers\GLCKIO2.sys [29368 2019-04-24] (ASUSTeK Computer Inc. -> )
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [220160 2020-12-30] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [19912 2020-12-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-12-30] (Malwarebytes Inc -> Malwarebytes)
R3 MpKsl78f88db9; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C8A42F07-D071-4885-AC79-5BC4B0EE7A49}\MpKslDrv.sys [91376 2021-01-10] (Microsoft Windows -> Microsoft Corporation)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 NTIOLib_CC_COMM; C:\Program Files (x86)\MSI\One Dragon Center\Lib\SYS\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_MysticLight; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Lib\NTIOLib_X64.sys [14288 2017-07-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 ROGMS; C:\Windows\System32\DriverStore\FileRepository\rogms.inf_amd64_40324b01c4bf3e47\ROGMS.sys [33920 2020-11-25] (ASUSTeK Computer Inc. -> )
U3 TrueSight; C:\Windows\System32\drivers\truesight.sys [38032 2021-01-10] (Adlice -> )
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [48536 2021-01-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [429296 2021-01-08] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [70896 2021-01-08] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz150; \??\C:\Windows\temp\cpuz150\cpuz150_x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

[zik9]

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-10 18:39 - 2021-01-10 18:39 - 000031216 _____ C:\Users\Luci\Desktop\FRST.txt
2021-01-10 18:39 - 2021-01-10 18:39 - 000000000 ____D C:\FRST
2021-01-10 18:38 - 2021-01-10 18:38 - 002281472 _____ (Farbar) C:\Users\Luci\Desktop\FRST64.exe
2021-01-10 18:38 - 2021-01-10 18:38 - 000001673 _____ C:\Users\Luci\Desktop\mb.txt
2021-01-10 18:15 - 2021-01-10 18:15 - 000000234 _____ C:\Users\Luci\Desktop\Discovery Tour Ancient Greece by Ubisoft.url
2021-01-10 17:55 - 2021-01-10 17:55 - 000000000 ____D C:\Users\Luci\AppData\Local\PeerDistRepub
2021-01-10 17:45 - 2021-01-10 17:45 - 000003932 _____ C:\Users\Luci\Desktop\malwarebyte.txt
2021-01-10 17:29 - 2021-01-10 17:29 - 000232792 _____ (Copyright 2018.) C:\Windows\system32\Drivers\amsdk.sys
2021-01-10 17:29 - 2021-01-10 17:29 - 000003556 _____ C:\Windows\system32\Tasks\AMHelper
2021-01-10 17:29 - 2021-01-10 17:29 - 000001333 _____ C:\Users\Public\Desktop\Zemana AntiMalware.lnk
2021-01-10 17:29 - 2021-01-10 17:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiMalware
2021-01-10 17:29 - 2021-01-10 17:29 - 000000000 ____D C:\Program Files (x86)\Zemana
2021-01-10 17:27 - 2021-01-10 17:27 - 000038032 _____ C:\Windows\system32\Drivers\truesight.sys
2021-01-10 17:27 - 2021-01-10 17:27 - 000000000 ____D C:\Users\Luci\AppData\Local\VirtualStore
2021-01-10 17:27 - 2014-02-13 23:59 - 000024064 _____ C:\Windows\zoek-delete.exe
2021-01-10 17:12 - 2021-01-10 17:24 - 000000000 ____D C:\zoek_backup
2021-01-09 19:20 - 2021-01-09 19:25 - 000000000 ____D C:\ProgramData\RogueKiller
2021-01-09 19:20 - 2021-01-09 19:20 - 000000899 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2021-01-09 19:20 - 2021-01-09 19:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2021-01-09 19:20 - 2021-01-09 19:20 - 000000000 ____D C:\Program Files\RogueKiller
2021-01-08 21:14 - 2021-01-08 21:15 - 000000000 ____D C:\Windows\system32\MRT
2021-01-08 20:14 - 2021-01-08 20:14 - 000002775 _____ C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk
2021-01-08 20:14 - 2021-01-08 20:14 - 000000000 ____D C:\ProgramData\Sophos
2021-01-08 20:14 - 2021-01-08 20:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
2021-01-08 20:14 - 2021-01-08 20:14 - 000000000 ____D C:\Program Files (x86)\Sophos
2021-01-08 20:10 - 2021-01-08 20:10 - 008447152 _____ (Malwarebytes) C:\Users\Luci\Desktop\AdwCleaner.exe
2021-01-08 20:07 - 2021-01-08 20:07 - 000448512 _____ (OldTimer Tools) C:\Users\Luci\Desktop\TFC.exe
2021-01-08 18:37 - 2021-01-08 18:37 - 000388608 _____ (Trend Micro Inc.) C:\Users\Luci\Desktop\HijackThis.exe
2021-01-08 18:06 - 2021-01-10 18:39 - 000973514 _____ C:\Windows\ZAM.krnl.trace
2021-01-08 18:06 - 2021-01-10 17:39 - 000000000 ____D C:\Users\Luci\AppData\Local\AMSDK
2021-01-08 18:06 - 2021-01-08 18:06 - 012795472 _____ (Zemana Ltd. ) C:\Users\Luci\Downloads\AntiMalware_Setup (1).exe
2021-01-08 18:06 - 2021-01-08 18:06 - 000000000 ____D C:\Users\Luci\AppData\Local\Zemana
2021-01-08 18:05 - 2021-01-08 18:06 - 012795472 _____ (Zemana Ltd. ) C:\Users\Luci\Downloads\AntiMalware_Setup.exe
2021-01-08 18:03 - 2021-01-08 18:05 - 000000000 ____D C:\ProgramData\HitmanPro
2021-01-08 18:02 - 2021-01-08 18:02 - 011431000 _____ (SurfRight B.V.) C:\Users\Luci\Downloads\HitmanPro_x64.exe
2021-01-08 17:58 - 2021-01-08 17:58 - 000000000 ____D C:\AdwCleaner
2021-01-08 17:57 - 2021-01-08 17:57 - 002086424 _____ (Malwarebytes) C:\Users\Luci\Downloads\MBSetup.exe
2021-01-08 17:50 - 2021-01-08 17:52 - 000000000 ____D C:\Users\Luci\AppData\Roaming\Notepad++
2021-01-08 17:50 - 2021-01-08 17:50 - 004133472 _____ (Don HO don.h@free.fr) C:\Users\Luci\Downloads\npp.7.9.2.Installer.x64.exe
2021-01-08 17:50 - 2021-01-08 17:50 - 000000877 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk
2021-01-08 17:50 - 2021-01-08 17:50 - 000000000 ____D C:\Program Files\Notepad++
2021-01-08 11:48 - 2021-01-10 18:36 - 000000000 ____D C:\Windows\Minidump
2021-01-04 18:08 - 2021-01-04 18:08 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2021-01-04 18:08 - 2021-01-04 18:08 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2021-01-04 18:07 - 2021-01-04 18:07 - 002260480 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2021-01-04 18:07 - 2021-01-04 18:07 - 001822272 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2021-01-04 18:07 - 2021-01-04 18:07 - 001393496 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2021-01-04 18:07 - 2021-01-04 18:07 - 001333248 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll
2021-01-04 18:07 - 2021-01-04 18:07 - 000363520 _____ C:\Windows\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2021-01-04 18:07 - 2021-01-04 18:07 - 000287232 _____ C:\Windows\system32\CoreMas.dll
2021-01-04 18:07 - 2021-01-04 18:07 - 000266240 _____ C:\Windows\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2021-01-04 18:07 - 2021-01-04 18:07 - 000240640 _____ C:\Windows\SysWOW64\CoreMas.dll
2021-01-04 18:07 - 2021-01-04 18:07 - 000165376 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2021-01-04 18:07 - 2021-01-04 18:07 - 000102912 _____ (Microsoft Corporation) C:\Windows\system32\ncpa.cpl
2021-01-04 18:07 - 2021-01-04 18:07 - 000100864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncpa.cpl
2021-01-04 18:07 - 2021-01-04 18:07 - 000089088 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2021-01-04 18:07 - 2021-01-04 18:07 - 000073216 _____ C:\Windows\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2021-01-04 18:07 - 2021-01-04 18:07 - 000060928 _____ C:\Windows\system32\runexehelper.exe
2021-01-04 18:07 - 2021-01-04 18:07 - 000048640 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2021-01-04 18:07 - 2021-01-04 18:07 - 000039936 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2021-01-04 18:07 - 2021-01-04 18:07 - 000013312 _____ C:\Windows\system32\agentactivationruntimestarter.exe
2021-01-04 18:07 - 2021-01-04 18:07 - 000010912 _____ C:\Windows\system32\DrtmAuthTxt.wim
2021-01-04 18:07 - 2021-01-04 18:07 - 000010752 _____ C:\Windows\SysWOW64\agentactivationruntimestarter.exe
2021-01-04 18:07 - 2021-01-04 18:07 - 000001370 _____ C:\Windows\system32\ThirdPartyNoticesBySHS.txt
2020-12-31 20:17 - 2020-12-31 20:17 - 000001609 _____ C:\Users\Luci\Desktop\ARMOURY CRATE.lnk
2020-12-31 20:13 - 2020-12-31 20:13 - 000000000 ____D C:\Users\Luci\AppData\Local\ASUS
2020-12-31 20:12 - 2021-01-04 18:14 - 000002355 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge Beta.lnk
2020-12-31 20:12 - 2021-01-04 18:10 - 000000000 ____D C:\Program Files\ASUS
2020-12-31 20:12 - 2020-12-31 20:13 - 000000000 ____D C:\Program Files (x86)\LightingService
2020-12-31 20:12 - 2020-12-31 20:12 - 000000000 ____D C:\Program Files\PHISON
2020-12-31 20:12 - 2020-12-31 20:12 - 000000000 ____D C:\Program Files\PD
2020-12-31 20:12 - 2020-12-31 20:12 - 000000000 ____D C:\Program Files\Patriot
2020-12-31 20:12 - 2019-04-24 11:25 - 000029368 _____ C:\Windows\system32\Drivers\GLCKIO2.sys
2020-12-31 20:11 - 2020-12-31 20:12 - 000000000 ____D C:\Users\Luci\AppData\Local\AcSdkInsLog
2020-12-31 20:11 - 2020-12-31 20:11 - 000000000 ____D C:\Users\Luci\AppData\Local\ArmouryLiveUpdate
2020-12-31 20:10 - 2021-01-04 18:26 - 000000000 ____D C:\ProgramData\ASUS
2020-12-31 20:10 - 2020-12-31 20:10 - 001348212 _____ C:\Users\Luci\Downloads\SetupROGLSLService.zip
2020-12-31 18:56 - 2020-12-31 20:14 - 000000000 ____D C:\Windows\system32\Tasks\ASUS
2020-12-31 18:55 - 2021-01-04 18:10 - 000000000 ____D C:\Program Files (x86)\ASUS
2020-12-31 18:37 - 2020-12-31 18:37 - 000002204 _____ C:\Users\Public\Desktop\MAD CATZ R.A.T. 4+.lnk
2020-12-31 18:37 - 2020-12-31 18:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Madcatz Global
2020-12-31 18:37 - 2020-12-31 18:37 - 000000000 ____D C:\Program Files (x86)\Mad catz
2020-12-31 18:35 - 2020-12-31 18:36 - 012979460 _____ C:\Users\Luci\Downloads\MAD_CATZ_R.A.T._4+_V1.0007.zip
2020-12-31 18:28 - 2020-12-31 18:28 - 237376857 _____ C:\Users\Luci\Downloads\ROG_Armoury_v30044.zip
2020-12-31 18:23 - 2020-12-31 18:23 - 000000000 ____D C:\Users\Luci\AppData\Local\mbam
2020-12-31 18:15 - 2020-12-31 18:19 - 000000000 ____D C:\Users\Luci\Documents\NEMAZAT
2020-12-31 18:11 - 2020-12-31 18:11 - 000425304 _____ (Secure By Design Inc.) C:\Users\Luci\Downloads\Ninite Revo Installer.exe
2020-12-31 18:11 - 2020-12-31 18:11 - 000001079 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2020-12-31 18:11 - 2020-12-31 18:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2020-12-31 18:11 - 2020-12-31 18:11 - 000000000 ____D C:\Program Files\VS Revo Group
2020-12-31 17:16 - 2020-12-31 17:16 - 000000000 ____D C:\ProgramData\Blizzard Entertainment
2020-12-31 17:02 - 2020-12-31 17:02 - 000000000 ____D C:\ProgramData\Ubisoft
2020-12-31 16:25 - 2020-12-31 16:25 - 000000000 ____D C:\Users\Luci\AppData\Local\Wacom
2020-12-31 16:06 - 2021-01-10 18:36 - 000000000 ____D C:\Users\Luci\AppData\Local\CrashDumps
2020-12-31 16:06 - 2021-01-10 17:27 - 000000000 ____D C:\Users\Luci\AppData\Roaming\WTablet
2020-12-31 16:03 - 2020-12-31 16:03 - 000001064 _____ C:\Users\Luci\Desktop\Adobe Photoshop 2020.lnk
2020-12-31 16:02 - 2020-12-31 20:14 - 000000000 ____D C:\Program Files\NahimicAPI
2020-12-31 16:02 - 2020-12-31 16:02 - 000003188 _____ C:\Windows\system32\Tasks\NahimicAPISvc32Run
2020-12-31 16:02 - 2020-12-31 16:02 - 000003180 _____ C:\Windows\system32\Tasks\NahimicAPISvc64Run
2020-12-31 16:02 - 2020-12-31 16:02 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wacom Tablet
2020-12-31 16:02 - 2020-12-31 16:02 - 000000000 ____D C:\Program Files\Tablet
2020-12-31 16:02 - 2019-03-05 20:33 - 002625992 _____ (Wacom Technology, Corp.) C:\Windows\system32\Wacom_Tablet.dll
2020-12-31 16:02 - 2019-03-05 20:33 - 002619336 _____ (Wacom Technology, Corp.) C:\Windows\system32\Wacom_Touch_Tablet.dll
2020-12-31 16:02 - 2019-03-05 20:33 - 002497992 _____ (Wacom Technology, Corp.) C:\Windows\system32\WacomMT.dll
2020-12-31 16:02 - 2019-03-05 20:33 - 002453448 _____ (Wacom Technology, Corp.) C:\Windows\system32\Wintab32.dll
2020-12-31 16:02 - 2019-03-05 20:33 - 002039752 _____ (Wacom Technology, Corp.) C:\Windows\SysWOW64\Wacom_Tablet.dll
2020-12-31 16:02 - 2019-03-05 20:33 - 002033096 _____ (Wacom Technology, Corp.) C:\Windows\SysWOW64\Wacom_Touch_Tablet.dll
2020-12-31 16:02 - 2019-03-05 20:33 - 001892296 _____ (Wacom Technology, Corp.) C:\Windows\SysWOW64\WacomMT.dll
2020-12-31 16:02 - 2019-03-05 20:33 - 001861064 _____ (Wacom Technology, Corp.) C:\Windows\SysWOW64\Wintab32.dll
2020-12-31 16:01 - 2020-03-31 16:43 - 002217256 _____ C:\Users\Public\Documents\EzULIB_UFB.dll
2020-12-31 16:01 - 2020-03-31 16:43 - 001264312 _____ () C:\Users\Public\Documents\ArmouryUpdate.exe
2020-12-31 16:01 - 2020-03-31 16:43 - 000175400 _____ () C:\Users\Public\Documents\AsZip.dll
2020-12-31 16:01 - 2020-03-31 16:43 - 000122744 _____ C:\Users\Public\Documents\ArmouryLiveUpdate.exe
2020-12-31 16:01 - 2020-03-31 16:43 - 000033912 _____ C:\Windows\system32\Drivers\ROGMS.sys
2020-12-31 16:01 - 2020-03-31 16:43 - 000022872 _____ C:\Users\Public\Documents\killproc.exe
2020-12-31 16:01 - 2019-05-02 15:48 - 000120880 _____ C:\Windows\system32\AsIO2.dll
2020-12-31 16:01 - 2019-05-02 15:48 - 000095280 _____ C:\Windows\SysWOW64\AsIO2.dll
2020-12-31 16:01 - 2019-05-02 15:48 - 000033832 _____ C:\Windows\system32\Drivers\AsIO2.sys
2020-12-31 16:00 - 2020-12-31 16:00 - 000000837 _____ C:\Users\Luci\Desktop\PureRef.lnk
2020-12-31 16:00 - 2020-12-31 16:00 - 000000000 ____D C:\Program Files\PureRef
2020-12-31 15:41 - 2020-12-31 15:41 - 000000000 ____D C:\Users\Luci\AppData\Roaming\NVIDIA
2020-12-31 15:41 - 2020-12-31 15:41 - 000000000 ____D C:\Users\Luci\AppData\Local\UXP
2020-12-31 15:40 - 2020-12-31 15:41 - 000000000 ____D C:\Users\Luci\Documents\Adobe
2020-12-31 15:40 - 2020-12-31 15:40 - 000001064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2020.lnk
2020-12-31 15:39 - 2020-12-31 15:40 - 000000000 ____D C:\Program Files\Common Files\Adobe
2020-12-31 15:39 - 2020-12-31 15:39 - 000000000 ____D C:\Program Files\Adobe
2020-12-31 15:14 - 2020-12-31 18:30 - 000000000 ____D C:\Users\Luci\AppData\Roaming\Origin
2020-12-31 15:14 - 2020-12-31 18:30 - 000000000 ____D C:\ProgramData\Origin
2020-12-31 15:14 - 2020-12-31 17:18 - 000000000 ____D C:\Users\Luci\AppData\Local\Origin
2020-12-31 15:14 - 2020-12-31 15:14 - 000001066 _____ C:\Users\Public\Desktop\Origin.lnk
2020-12-31 15:14 - 2020-12-31 15:14 - 000000000 ____D C:\Users\Luci\.QtWebEngineProcess
2020-12-31 15:14 - 2020-12-31 15:14 - 000000000 ____D C:\Users\Luci\.Origin
2020-12-31 15:14 - 2020-12-31 15:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2020-12-31 15:14 - 2020-12-31 15:14 - 000000000 ____D C:\Program Files (x86)\Origin
2020-12-31 15:13 - 2020-12-31 17:17 - 000000000 ____D C:\Users\Luci\AppData\Local\Battle.net
2020-12-31 15:13 - 2020-12-31 17:16 - 000000000 ____D C:\Users\Luci\AppData\Roaming\Battle.net
2020-12-31 15:13 - 2020-12-31 15:14 - 063645448 _____ (Electronic Arts) C:\Users\Luci\Downloads\OriginThinSetup.exe
2020-12-31 15:13 - 2020-12-31 15:13 - 000000940 _____ C:\Users\Public\Desktop\Battle.net.lnk
2020-12-31 15:13 - 2020-12-31 15:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2020-12-31 15:12 - 2020-12-31 17:16 - 000000000 ____D C:\Program Files (x86)\Battle.net
2020-12-31 15:12 - 2020-12-31 15:12 - 000000000 ____D C:\Users\Luci\AppData\Local\Blizzard Entertainment
2020-12-31 15:11 - 2020-12-31 15:11 - 004951024 _____ (Blizzard Entertainment) C:\Users\Luci\Downloads\Battle.net-Setup.exe
2020-12-31 15:11 - 2020-12-31 15:11 - 000000000 ____D C:\ProgramData\Battle.net
2020-12-31 15:09 - 2021-01-10 18:36 - 000000000 ____D C:\Users\Luci\AppData\Local\Ubisoft Game Launcher
2020-12-31 15:09 - 2020-12-31 15:09 - 119486896 _____ (Ubisoft) C:\Users\Luci\Downloads\UbisoftConnectInstaller.exe
2020-12-31 15:09 - 2020-12-31 15:09 - 000001327 _____ C:\Users\Luci\Desktop\Ubisoft Connect.lnk
2020-12-31 15:09 - 2020-12-31 15:09 - 000001008 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2020-12-31 15:09 - 2020-12-31 15:09 - 000000970 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2020-12-31 15:09 - 2020-12-31 15:09 - 000000000 ____D C:\Users\Luci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2020-12-31 15:09 - 2020-12-31 15:09 - 000000000 ____D C:\Program Files\TeamSpeak 3 Client
2020-12-31 15:09 - 2020-12-31 15:09 - 000000000 ____D C:\Program Files (x86)\Ubisoft
2020-12-31 15:08 - 2020-12-31 15:08 - 090699776 _____ (TeamSpeak Systems GmbH) C:\Users\Luci\Downloads\TeamSpeak3-Client-win64-3.5.6.exe
2020-12-31 15:08 - 2020-12-31 15:08 - 000001976 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Streamlabs OBS.lnk
2020-12-31 15:08 - 2020-12-31 15:08 - 000001964 _____ C:\Users\Public\Desktop\Streamlabs OBS.lnk
2020-12-31 15:08 - 2020-12-31 15:08 - 000000000 ____D C:\Users\Luci\AppData\Local\slobs-client-updater
2020-12-31 15:07 - 2020-12-31 15:08 - 000000000 ____D C:\Program Files\Streamlabs OBS
2020-12-31 15:05 - 2020-12-31 15:05 - 239403912 _____ (General Workings, Inc.) C:\Users\Luci\Downloads\Streamlabs+OBS+Setup+0.26.0-SraavgRla7xtOZP.exe
2020-12-31 14:16 - 2021-01-04 18:22 - 000003378 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3840382349-3675330343-4074381882-1001
2020-12-31 14:16 - 2021-01-04 18:22 - 000002362 _____ C:\Users\Luci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-12-31 14:15 - 2021-01-09 19:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2020-12-31 14:15 - 2020-12-31 14:15 - 000002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk
2020-12-31 14:15 - 2020-12-31 14:15 - 000002493 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2020-12-31 14:15 - 2020-12-31 14:15 - 000002492 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2020-12-31 14:15 - 2020-12-31 14:15 - 000002456 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2020-12-31 14:15 - 2020-12-31 14:15 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2020-12-31 14:15 - 2020-12-31 14:15 - 000002449 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2020-12-31 14:15 - 2020-12-31 14:15 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2020-12-31 14:15 - 2020-12-31 14:15 - 000002435 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2020-12-31 14:14 - 2021-01-09 19:25 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-12-31 14:14 - 2020-12-31 14:14 - 000000000 ____D C:\Program Files\Microsoft Office 15
2020-12-31 14:03 - 2020-12-31 14:03 - 000002079 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Luminar 4.lnk
2020-12-31 14:03 - 2020-12-31 14:03 - 000002073 _____ C:\Users\Public\Desktop\Luminar 4.lnk
2020-12-31 14:03 - 2020-12-31 14:03 - 000000000 ____D C:\Users\Luci\AppData\Local\Epic Games
2020-12-31 14:03 - 2020-12-31 14:03 - 000000000 ____D C:\Users\Luci\AppData\Local\ddzzq
2020-12-31 14:03 - 2020-12-31 14:03 - 000000000 ____D C:\Users\Luci\AppData\Local\CrashReportClient
2020-12-31 14:03 - 2020-12-31 14:03 - 000000000 ____D C:\Users\Luci\AppData\Local\ACPhoenix
2020-12-31 14:03 - 2020-12-31 14:03 - 000000000 ____D C:\Program Files\Skylum
2020-12-31 14:00 - 2020-12-31 14:43 - 000000000 ____D C:\Users\Luci\AppData\Roaming\Luminar 4
2020-12-31 14:00 - 2020-12-31 14:00 - 003111016 _____ () C:\Users\Luci\Downloads\Luminar4Setup.exe
2020-12-31 14:00 - 2020-12-31 14:00 - 000000000 ____D C:\ProgramData\Luminar 4
2020-12-31 13:55 - 2020-12-31 13:55 - 000000000 ____D C:\Program Files\Epic Games
2020-12-31 13:52 - 2020-12-31 13:56 - 000000000 ____D C:\Users\Luci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mirillis
2020-12-31 13:51 - 2020-12-31 14:03 - 000000000 ____D C:\Users\Luci\AppData\Local\UnrealEngine
2020-12-31 13:51 - 2020-12-31 13:52 - 000000000 ____D C:\ProgramData\Epic
2020-12-31 13:51 - 2020-12-31 13:51 - 044568576 _____ C:\Users\Luci\Downloads\EpicInstaller-10.19.2.msi
2020-12-31 13:51 - 2020-12-31 13:51 - 000001270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2020-12-31 13:51 - 2020-12-31 13:51 - 000001258 _____ C:\Users\Public\Desktop\Epic Games Launcher.lnk
2020-12-31 13:51 - 2020-12-31 13:51 - 000000000 ____D C:\Users\Luci\AppData\Local\UnrealEngineLauncher
2020-12-31 13:51 - 2020-12-31 13:51 - 000000000 ____D C:\Users\Luci\AppData\Local\EpicGamesLauncher
2020-12-31 13:51 - 2020-12-31 13:51 - 000000000 ____D C:\Program Files (x86)\Epic Games
2020-12-31 13:50 - 2020-12-31 13:50 - 095023848 _____ (Mirillis Ltd.) C:\Users\Luci\Downloads\action_4_10_5_setup.exe
2020-12-31 13:46 - 2020-12-31 13:46 - 000622496 _____ (Intel Corporation) C:\Users\Luci\Downloads\Intel_HST_7baecaa1-6d94-4a2a-96d9-d240ea0361ed.exe
2020-12-31 13:39 - 2021-01-08 20:07 - 000000000 ____D C:\Users\Luci\AppData\LocalLow\Mozilla
2020-12-31 13:39 - 2020-12-31 13:39 - 000000000 ____D C:\Users\Luci\AppData\Roaming\Mozilla
2020-12-31 13:39 - 2020-12-31 13:39 - 000000000 ____D C:\Users\Luci\AppData\Local\Mozilla
2020-12-31 13:35 - 2021-01-04 18:24 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2020-12-31 13:35 - 2021-01-04 18:24 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-12-31 13:35 - 2020-12-31 15:39 - 000000000 ____D C:\Program Files (x86)\Adobe
2020-12-31 13:35 - 2020-12-31 13:36 - 000000000 ____D C:\Users\Luci\AppData\LocalLow\Adobe
2020-12-31 13:34 - 2020-12-31 16:21 - 000000000 ____D C:\ProgramData\Adobe
2020-12-31 13:34 - 2020-12-31 13:38 - 3598501888 _____ C:\Users\Luci\Downloads\ProPlus2019Retail.img
2020-12-31 13:33 - 2021-01-04 18:23 - 000000000 ____D C:\Users\Luci\AppData\Local\Adobe
2020-12-31 12:57 - 2020-12-31 20:05 - 000000000 ____D C:\Luci
2020-12-31 01:00 - 2020-12-31 01:00 - 000000000 ____D C:\Users\Luci\AppData\Roaming\Blender Foundation
2020-12-31 00:59 - 2020-12-31 00:59 - 000001065 _____ C:\Users\Luci\Desktop\Rockstar Games Launcher.lnk
2020-12-31 00:59 - 2020-12-31 00:59 - 000000000 ____D C:\Users\Luci\Documents\Rockstar Games
2020-12-31 00:59 - 2020-12-31 00:59 - 000000000 ____D C:\Users\Luci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2020-12-31 00:59 - 2020-12-31 00:59 - 000000000 ____D C:\Users\Luci\AppData\Local\Rockstar Games
2020-12-31 00:59 - 2020-12-31 00:59 - 000000000 ____D C:\Users\Luci\.thumbnails
2020-12-31 00:59 - 2020-12-31 00:59 - 000000000 ____D C:\ProgramData\Rockstar Games
2020-12-31 00:59 - 2020-12-31 00:59 - 000000000 ____D C:\Program Files\Rockstar Games
2020-12-31 00:59 - 2020-12-31 00:59 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2020-12-31 00:51 - 2020-12-31 00:51 - 000000000 ____D C:\Users\Luci\Documents\Frontier Developments
2020-12-31 00:51 - 2020-12-31 00:51 - 000000000 ____D C:\Users\Luci\AppData\Local\Frontier Developments
2020-12-31 00:51 - 2020-12-31 00:51 - 000000000 ____D C:\ProgramData\Frontier Developments
2020-12-31 00:31 - 2020-12-31 00:31 - 000000000 ___HD C:\$WinREAgent
2020-12-31 00:09 - 2020-12-31 00:26 - 000000000 ____D C:\Users\Luci\Documents\3Dmark
2020-12-31 00:09 - 2020-12-31 00:09 - 000000000 ____D C:\Users\Luci\AppData\Local\UL
2020-12-31 00:09 - 2020-12-31 00:09 - 000000000 ____D C:\ProgramData\UL
2020-12-31 00:09 - 2020-12-31 00:09 - 000000000 ____D C:\Program Files (x86)\Futuremark
2020-12-30 23:55 - 2020-12-31 00:38 - 000000000 ____D C:\Users\Luci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2020-12-30 23:54 - 2020-12-30 23:54 - 000000000 ____D C:\Users\Luci\AppData\Local\Steam
2020-12-30 23:12 - 2020-12-12 14:50 - 001786584 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2020-12-30 23:12 - 2020-12-12 14:50 - 001786584 _____ C:\Windows\system32\vulkaninfo.exe
2020-12-30 23:12 - 2020-12-12 14:50 - 001454488 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2020-12-30 23:12 - 2020-12-12 14:50 - 001382616 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-12-30 23:12 - 2020-12-12 14:50 - 001382616 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2020-12-30 23:12 - 2020-12-12 14:50 - 001193880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2020-12-30 23:12 - 2020-12-12 14:50 - 001087704 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2020-12-30 23:12 - 2020-12-12 14:50 - 001087704 _____ C:\Windows\system32\vulkan-1.dll
2020-12-30 23:12 - 2020-12-12 14:50 - 000940760 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2020-12-30 23:12 - 2020-12-12 14:50 - 000940760 _____ C:\Windows\SysWOW64\vulkan-1.dll
2020-12-30 23:12 - 2020-12-12 14:48 - 001512856 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2020-12-30 23:12 - 2020-12-12 14:48 - 001164528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2020-12-30 23:12 - 2020-12-12 14:48 - 000685976 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2020-12-30 23:12 - 2020-12-12 14:48 - 000680856 _____ C:\Windows\system32\nvofapi64.dll
2020-12-30 23:12 - 2020-12-12 14:48 - 000672496 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2020-12-30 23:12 - 2020-12-12 14:48 - 000609688 _____ C:\Windows\system32\nvml.dll
2020-12-30 23:12 - 2020-12-12 14:48 - 000559000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2020-12-30 23:12 - 2020-12-12 14:48 - 000547056 _____ C:\Windows\SysWOW64\nvofapi.dll
2020-12-30 23:12 - 2020-12-12 14:47 - 008261360 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2020-12-30 23:12 - 2020-12-12 14:47 - 007391984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2020-12-30 23:12 - 2020-12-12 14:47 - 004612504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2020-12-30 23:12 - 2020-12-12 14:47 - 002731928 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2020-12-30 23:12 - 2020-12-12 14:47 - 002103024 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2020-12-30 23:12 - 2020-12-12 14:47 - 001589144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2020-12-30 23:12 - 2020-12-12 14:47 - 000812784 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2020-12-30 23:12 - 2020-12-12 14:47 - 000657816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2020-12-30 23:12 - 2020-12-12 14:47 - 000447384 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2020-12-30 23:12 - 2020-12-12 14:46 - 000849648 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2020-12-30 23:12 - 2020-12-12 05:01 - 000084008 _____ C:\Windows\system32\nvinfo.pb
2020-12-30 23:12 - 2020-12-12 05:01 - 000038640 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhdap64.dll
2020-12-30 23:07 - 2021-01-10 17:29 - 000000000 ____D C:\ProgramData\NVIDIA
2020-12-30 23:07 - 2020-12-31 18:41 - 000000000 ____D C:\Users\Luci\AppData\Local\NVIDIA Corporation
2020-12-30 23:07 - 2020-12-31 00:59 - 000000000 ____D C:\Users\Luci\AppData\Local\NVIDIA
2020-12-30 23:07 - 2020-12-30 23:13 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-12-30 23:07 - 2020-12-30 23:07 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-30 23:07 - 2020-12-30 23:07 - 000004106 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-30 23:07 - 2020-12-30 23:07 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-30 23:07 - 2020-12-30 23:07 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-30 23:07 - 2020-12-30 23:07 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-30 23:07 - 2020-12-30 23:07 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-30 23:07 - 2020-12-30 23:07 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-30 23:07 - 2020-12-30 23:07 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-30 23:07 - 2020-12-30 23:07 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-30 23:07 - 2020-12-30 23:07 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-12-30 23:07 - 2020-12-30 23:07 - 000001447 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2020-12-30 23:07 - 2020-12-30 23:07 - 000000000 ____D C:\Users\Luci\AppData\Local\CEF
2020-12-30 23:07 - 2020-12-30 23:07 - 000000000 ____D C:\Users\Luci\ansel
2020-12-30 23:07 - 2020-12-30 23:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2020-12-30 23:07 - 2020-10-20 13:56 - 002797552 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2020-12-30 23:07 - 2020-10-20 13:56 - 002154984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2020-12-30 23:07 - 2020-10-20 13:56 - 001294832 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll
2020-12-30 23:07 - 2020-10-19 06:42 - 000069608 _____ C:\Windows\system32\FvSDK_x64.dll
2020-12-30 23:07 - 2020-10-19 06:42 - 000058344 _____ C:\Windows\SysWOW64\FvSDK_x86.dll
2020-12-30 23:07 - 2020-10-17 16:01 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
2020-12-30 23:07 - 2020-08-10 16:20 - 000169272 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2020-12-30 23:07 - 2020-08-10 16:20 - 000145208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2020-12-30 23:07 - 2020-03-11 20:26 - 000067456 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys
2020-12-30 23:07 - 2020-03-06 11:03 - 000069840 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2020-12-30 23:07 - 2020-03-04 13:54 - 000050592 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\NvModuleTracker.sys
2020-12-30 22:52 - 2020-11-25 16:13 - 005954144 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2020-12-30 22:52 - 2020-11-25 16:03 - 043252949 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2020-12-30 22:46 - 2020-12-30 22:46 - 000000000 ____D C:\Users\Luci\AppData\Roaming\WinRAR
2020-12-30 22:44 - 2021-01-08 18:22 - 000000000 ____D C:\Users\Luci\AppData\Local\Google
2020-12-30 22:40 - 2021-01-10 18:36 - 000000000 ____D C:\Program Files\CCleaner
2020-12-30 22:40 - 2020-12-30 22:40 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-12-30 22:40 - 2020-12-30 22:40 - 000002886 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-12-30 22:40 - 2020-12-30 22:40 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-12-30 22:40 - 2020-12-30 22:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2020-12-30 22:39 - 2020-12-30 22:39 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2020-12-30 22:39 - 2020-12-30 22:39 - 000220160 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2020-12-30 22:39 - 2020-12-30 22:39 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2020-12-30 22:39 - 2020-12-30 22:39 - 000019912 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2020-12-30 22:39 - 2020-12-30 22:39 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-12-30 22:39 - 2020-12-30 22:39 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-12-30 22:39 - 2020-12-30 22:39 - 000000946 _____ C:\Users\Public\Desktop\GIMP 2.10.22.lnk
2020-12-30 22:39 - 2020-12-30 22:39 - 000000946 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.10.22.lnk
2020-12-30 22:39 - 2020-12-30 22:39 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-12-30 22:39 - 2020-12-30 22:39 - 000000000 ____D C:\Program Files\Malwarebytes
2020-12-30 22:37 - 2020-12-30 22:37 - 000002226 _____ C:\Users\Luci\Desktop\Discord.lnk
2020-12-30 22:37 - 2020-12-30 22:37 - 000001383 _____ C:\Users\Public\Desktop\Skype.lnk
2020-12-30 22:37 - 2020-12-30 22:37 - 000001192 _____ C:\Users\Public\Desktop\blender.lnk
2020-12-30 22:37 - 2020-12-30 22:37 - 000000000 ____D C:\Users\Luci\AppData\Roaming\Skype
2020-12-30 22:37 - 2020-12-30 22:37 - 000000000 ____D C:\Users\Luci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2020-12-30 22:37 - 2020-12-30 22:37 - 000000000 ____D C:\Users\Luci\AppData\Roaming\discord
2020-12-30 22:37 - 2020-12-30 22:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2020-12-30 22:37 - 2020-12-30 22:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blender
2020-12-30 22:37 - 2020-12-30 22:37 - 000000000 ____D C:\Program Files\GIMP 2
2020-12-30 22:37 - 2020-12-30 22:37 - 000000000 ____D C:\Program Files\Blender Foundation
2020-12-30 22:36 - 2021-01-10 18:36 - 000000000 ____D C:\Program Files (x86)\Steam
2020-12-30 22:36 - 2021-01-08 20:07 - 000000000 ____D C:\ProgramData\Mozilla
2020-12-30 22:36 - 2021-01-08 11:48 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-12-30 22:36 - 2020-12-30 22:42 - 000003472 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-12-30 22:36 - 2020-12-30 22:42 - 000003348 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-12-30 22:36 - 2020-12-30 22:37 - 000000000 ____D C:\Users\Luci\AppData\Local\SquirrelTemp
2020-12-30 22:36 - 2020-12-30 22:37 - 000000000 ____D C:\Users\Luci\AppData\Local\Discord
2020-12-30 22:36 - 2020-12-30 22:36 - 000001036 _____ C:\Users\Public\Desktop\Steam.lnk
2020-12-30 22:36 - 2020-12-30 22:36 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-12-30 22:36 - 2020-12-30 22:36 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2020-12-30 22:36 - 2020-12-30 22:36 - 000000000 ____D C:\Users\Luci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-12-30 22:36 - 2020-12-30 22:36 - 000000000 ____D C:\ProgramData\SquirrelMachineInstalls
2020-12-30 22:36 - 2020-12-30 22:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-12-30 22:36 - 2020-12-30 22:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2020-12-30 22:36 - 2020-12-30 22:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2020-12-30 22:36 - 2020-12-30 22:36 - 000000000 ____D C:\Program Files\WinRAR
2020-12-30 22:36 - 2020-12-30 22:36 - 000000000 ____D C:\Program Files\VideoLAN
2020-12-30 22:36 - 2020-12-30 22:36 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-12-30 22:36 - 2020-12-30 22:36 - 000000000 ____D C:\Program Files\Google
2020-12-30 22:36 - 2020-12-30 22:36 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-12-30 22:36 - 2020-12-30 22:36 - 000000000 ____D C:\Program Files (x86)\Google
2020-12-30 22:27 - 2020-12-30 22:27 - 000001650 _____ C:\Users\Luci\Desktop\Dragon Center.lnk
2020-12-30 22:26 - 2020-12-30 22:26 - 000000000 ____D C:\ProgramData\IsolatedStorage
2020-12-30 22:25 - 2020-12-30 22:25 - 000003216 _____ C:\Windows\system32\Tasks\MSI Task Host - MSI.True Color
2020-12-30 22:25 - 2020-12-30 22:25 - 000000000 ____D C:\ProgramData\cFos
2020-12-30 22:25 - 2020-12-30 22:25 - 000000000 ____D C:\Program Files\cFosSpeed
2020-12-30 22:25 - 2020-09-10 10:59 - 001748256 _____ (cFos Software GmbH) C:\Windows\system32\Drivers\cfosspeed6.sys
2020-12-30 22:24 - 2020-12-31 20:12 - 000000000 ____D C:\Program Files\ENE
2020-12-30 22:24 - 2020-12-30 22:24 - 000003190 _____ C:\Windows\system32\Tasks\MSI Task Host - LEDKeeper2_Host
2020-12-30 22:24 - 2020-12-30 22:24 - 000000000 ____D C:\Program Files (x86)\ENE
2020-12-30 22:24 - 2020-12-30 22:24 - 000000000 ____D C:\MSI
2020-12-30 22:24 - 2020-05-12 01:28 - 000020992 _____ C:\Windows\system32\Drivers\ene.sys
2020-12-30 22:24 - 2020-01-19 19:49 - 000017424 _____ (MICSYS Technology Co., LTd) C:\Windows\system32\Drivers\MsIo64.sys
2020-12-30 22:24 - 2019-10-17 02:29 - 000018448 ____N (MICSYS Technology Co., LTd) C:\Windows\system32\Drivers\MsIo64.old
2020-12-30 22:24 - 2015-08-18 09:51 - 001692840 _____ (MSI) C:\Windows\SysWOW64\muachost.exe
2020-12-30 22:17 - 2020-12-30 22:28 - 000000000 ____D C:\ProgramData\MSI
2020-12-30 22:17 - 2020-12-30 22:17 - 000003092 _____ C:\Windows\system32\Tasks\MonitorMysticLight
2020-12-30 22:17 - 2014-04-30 16:23 - 000011248 _____ (Windows (R) Win 7 DDK provider) C:\Windows\acpimof.dll
2020-12-30 22:16 - 2020-12-30 22:16 - 000003284 _____ C:\Windows\system32\Tasks\MSI Task Host - Detect_Monitor
2020-12-30 22:16 - 2020-12-30 22:16 - 000003268 _____ C:\Windows\system32\Tasks\MSI Task Host - DisplayID
2020-12-30 22:13 - 2021-01-04 18:57 - 000000000 ____D C:\Users\Luci\AppData\Local\D3DSCache
2020-12-30 22:13 - 2020-12-30 22:13 - 000003840 _____ C:\Windows\system32\Tasks\Intel PTT EK Recertification
2020-12-30 22:10 - 2020-12-30 22:49 - 000000000 ____D C:\ProgramData\Intel
2020-12-30 22:10 - 2020-12-30 22:10 - 000000000 ____D C:\Users\Luci\Intel
2020-12-30 22:10 - 2020-12-30 22:10 - 000000000 ____D C:\Program Files (x86)\Intel
2020-12-30 22:09 - 2020-12-30 22:09 - 000000000 ____D C:\Users\Luci\AppData\Local\Comms
2020-12-30 22:08 - 2020-12-30 22:52 - 000000000 ___HD C:\Program Files (x86)\Temp
2020-12-30 22:08 - 2019-12-19 08:07 - 002877104 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2020-12-30 22:07 - 2020-12-31 20:12 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-12-30 22:07 - 2020-12-30 22:50 - 000000000 ____D C:\Program Files (x86)\Realtek
2020-12-30 22:07 - 2020-12-30 22:07 - 000000000 ____D C:\Program Files\Intel
2020-12-30 22:07 - 2020-07-21 16:10 - 001146456 _____ (Realtek ) C:\Windows\system32\Drivers\rt640x64.sys
2020-12-30 22:06 - 2020-12-30 22:16 - 000000000 ____D C:\Program Files (x86)\MSI
2020-12-30 22:03 - 2020-12-31 14:52 - 000000000 ____D C:\Users\Luci\AppData\Local\PlaceholderTileLogoFolder
2020-12-30 22:02 - 2021-01-04 18:22 - 000000000 ___RD C:\Users\Luci\OneDrive
2020-12-30 22:01 - 2021-01-07 15:06 - 000000000 ____D C:\Users\Luci\AppData\Local\Packages
2020-12-30 22:01 - 2020-12-31 15:57 - 000000000 ____D C:\Users\Luci\AppData\Roaming\Adobe
2020-12-30 22:01 - 2020-12-30 22:12 - 000006573 _____ C:\ProgramData\DisplaySessionContainer2.log_backup1
2020-12-30 22:01 - 2020-12-30 22:01 - 000000000 ___RD C:\Users\Luci\3D Objects
2020-12-30 22:01 - 2020-12-30 22:01 - 000000000 ____D C:\Users\Luci\AppData\Local\Publishers
2020-12-30 22:01 - 2020-12-30 22:01 - 000000000 ____D C:\Users\Luci\AppData\Local\ConnectedDevicesPlatform
2020-12-30 21:59 - 2020-12-31 14:51 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-12-30 21:59 - 2020-12-30 23:12 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-12-30 21:59 - 2020-12-30 22:55 - 000017260 _____ C:\ProgramData\NVDisplayContainerWatchdog.log_backup1
2020-12-30 21:59 - 2020-12-30 22:55 - 000012652 _____ C:\ProgramData\NVDisplay.ContainerLocalSystem.log_backup1
2020-12-30 21:59 - 2020-12-30 22:55 - 000006586 _____ C:\ProgramData\DisplaySessionContainer1.log_backup1
2020-12-30 21:59 - 2020-12-30 21:59 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation
2020-12-30 21:59 - 2020-12-12 14:45 - 007114256 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2020-12-30 21:59 - 2020-12-12 14:45 - 006070008 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2020-12-30 21:59 - 2020-12-12 05:01 - 000135408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2020-12-30 21:59 - 2019-10-04 16:13 - 005443976 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2020-12-30 21:58 - 2021-01-10 17:24 - 000000000 ____D C:\Users\Luci
2020-12-30 21:58 - 2020-12-30 21:58 - 000000020 ___SH C:\Users\Luci\ntuser.ini
2020-12-30 21:58 - 2020-12-30 21:58 - 000000000 _SHDL C:\Users\Luci\Šablony
2020-12-30 21:58 - 2020-12-30 21:58 - 000000000 _SHDL C:\Users\Luci\Soubory cookie
2020-12-30 21:58 - 2020-12-30 21:58 - 000000000 _SHDL C:\Users\Luci\Poslední
2020-12-30 21:58 - 2020-12-30 21:58 - 000000000 _SHDL C:\Users\Luci\Okolní tiskárny
2020-12-30 21:58 - 2020-12-30 21:58 - 000000000 _SHDL C:\Users\Luci\Okolní síť
2020-12-30 21:58 - 2020-12-30 21:58 - 000000000 _SHDL C:\Users\Luci\Nabídka Start
2020-12-30 21:58 - 2020-12-30 21:58 - 000000000 _SHDL C:\Users\Luci\Dokumenty
2020-12-30 21:58 - 2020-12-30 21:58 - 000000000 _SHDL C:\Users\Luci\Documents\Obrázky
2020-12-30 21:58 - 2020-12-30 21:58 - 000000000 _SHDL C:\Users\Luci\Documents\Hudba
2020-12-30 21:58 - 2020-12-30 21:58 - 000000000 _SHDL C:\Users\Luci\Documents\Filmy
2020-12-30 21:58 - 2020-12-30 21:58 - 000000000 _SHDL C:\Users\Luci\Data aplikací
2020-12-30 21:58 - 2020-12-30 21:58 - 000000000 _SHDL C:\Users\Luci\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2020-12-30 21:58 - 2020-12-30 21:58 - 000000000 _SHDL C:\Users\Luci\AppData\Local\Data aplikací

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-01-10 18:36 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2021-01-10 18:36 - 2019-12-07 07:56 - 000000000 ____D C:\Windows\Panther
2021-01-10 18:05 - 2020-11-18 23:46 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-01-10 17:55 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-10 17:55 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2021-01-10 17:27 - 2020-11-19 00:56 - 000008192 ___SH C:\DumpStack.log.tmp
2021-01-10 17:27 - 2020-11-19 00:46 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-01-10 17:27 - 2019-12-07 10:03 - 000262144 _____ C:\Windows\system32\config\BBI
2021-01-08 20:09 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-08 20:09 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2021-01-08 18:01 - 2020-11-19 00:46 - 000000000 ____D C:\Windows\system32\Drivers\wd
2021-01-08 18:01 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-01-08 13:08 - 2020-11-19 00:48 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-06 21:32 - 2020-11-19 00:55 - 001605602 _____ C:\Windows\system32\PerfStringBackup.INI
2021-01-06 21:32 - 2019-12-07 15:43 - 000682184 _____ C:\Windows\system32\perfh005.dat
2021-01-06 21:32 - 2019-12-07 15:43 - 000137000 _____ C:\Windows\system32\perfc005.dat
2021-01-06 21:25 - 2020-11-18 23:46 - 000438944 _____ C:\Windows\system32\FNTCACHE.DAT
2021-01-06 21:24 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-01-06 21:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2021-01-06 21:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2021-01-06 21:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\migwiz
2021-01-06 21:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2021-01-06 21:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-01-06 21:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2021-01-06 21:24 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-01-06 21:22 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing
2021-01-04 18:14 - 2020-11-19 00:50 - 000000000 ____D C:\ProgramData\Packages
2020-12-31 20:12 - 2020-11-19 00:50 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-12-31 18:32 - 2019-12-07 10:03 - 000032768 _____ C:\Windows\system32\config\ELAM
2020-12-31 15:14 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-12-31 13:00 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\appcompat
2020-12-31 00:13 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\LiveKernelReports
2020-12-30 22:39 - 2019-12-07 10:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2020-12-30 22:23 - 2019-12-07 15:45 - 000000000 ____D C:\Windows\OCR
2020-12-30 21:58 - 2020-11-19 00:48 - 000003584 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-12-30 21:58 - 2020-11-19 00:48 - 000003460 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-12-30 21:57 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

[zik9]

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-01-2021
Ran by Luci (10-01-2021 18:40:08)
Running from C:\Users\Luci\Desktop
Windows 10 Pro Version 20H2 19042.685 (X64) (2020-11-18 23:57:53)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3840382349-3675330343-4074381882-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3840382349-3675330343-4074381882-503 - Limited - Disabled)
Guest (S-1-5-21-3840382349-3675330343-4074381882-501 - Limited - Disabled)
Luci (S-1-5-21-3840382349-3675330343-4074381882-1001 - Administrator - Enabled) => C:\Users\Luci
WDAGUtilityAccount (S-1-5-21-3840382349-3675330343-4074381882-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_0_1) (Version: 21.0.1 - Adobe Systems Incorporated)
Aktualizace NVIDIA 38.0.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.5.0 - NVIDIA Corporation) Hidden
ARMOURY CRATE Lite Service (HKLM\...\{EF3944FF-2501-4568-B15C-5701E726719E}) (Version: 3.2.4 - ASUS)
ASUS AURA Extension Card HAL (HKLM\...\{2C39FF80-1BB2-42C5-A58D-DC90EFF048F6}) (Version: 1.0.24 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM-x32\...\{a75323e1-f1a4-4aff-a7ce-3858cbc1c0d2}) (Version: 1.0.24 - ASUSTeK COMPUTER INC.) Hidden
ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.03.58 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA VGA Component (HKLM\...\{71BB96A6-EAC4-45AE-A17D-D3ED43FF1D14}) (Version: 0.0.3.0 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA VGA Component (HKLM-x32\...\{4e2ab86c-b539-4b1d-bacd-a434371143fb}) (Version: 0.0.3.0 - ASUSTek COMPUTER INC. ) Hidden
ASUS Framework Service (HKLM-x32\...\{4c055a49-90c0-439e-a699-517cefdabf07}) (Version: 2.0.1.6 - ASUSTek COMPUTER INC.)
ASUS Framework Service (HKLM-x32\...\{EA6A87BE-8AD3-40D2-944C-9DF5FBFF4332}) (Version: 2.0.1.6 - ASUSTek COMPUTER INC.) Hidden
ASUS GLCKIO2 Driver (HKLM-x32\...\{3507c756-a80f-4b0e-8475-975d8b432176}) (Version: 1.0.20 - ASUSTeK Computer Inc.) Hidden
ASUS GLCKIO2 Driver (HKLM-x32\...\{5960FD0F-BB3B-49AF-B175-F77DC91E995A}) (Version: 1.0.20 - ASUSTeK Computer Inc.) Hidden
ASUS Keyboard HAL (HKLM\...\{0FA0CDEE-5DC8-421E-A97D-C74FA6E66FC3}) (Version: 1.1.41.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Keyboard HAL (HKLM-x32\...\{d08bf14a-b40b-40e3-ae73-ae60a6b60ee0}) (Version: 1.1.41.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.35 - ASUSTeK Computer Inc.) Hidden
AURA DRAM Component (HKLM\...\{3881F403-B6B7-4D2F-BDAC-7901EB677F52}) (Version: 1.0.54 - ASUS) Hidden
AURA DRAM Component (HKLM-x32\...\{db73e7a9-d4ff-4857-a29c-4f6414eb8aca}) (Version: 1.0.54 - ASUS) Hidden
AURA lighting effect add-on (HKLM-x32\...\{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.13 - ASUS)
AURA lighting effect add-on x64 (HKLM\...\{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.13 - ASUS)
AURA Service (HKLM-x32\...\{0E536061-3B55-4D45-BF58-0BDA261C94B0}) (Version: 3.04.24 - ASUSTeK Computer Inc.) Hidden
AURA Service (HKLM-x32\...\{af3f5fef-4152-4f2a-a932-1df532a9a697}) (Version: 3.04.24 - ASUSTeK Computer Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Blender (HKLM\...\{64FCD268-AF5F-403D-B51B-00BC2D47DD0B}) (Version: 2.91.0 - Blender Foundation)
CCleaner (HKLM\...\CCleaner) (Version: 5.75 - Piriform)
cFosSpeed 11.05 (HKLM\...\cFosSpeed) (Version: 11.05 - cFos Software GmbH, Bonn)
Discord (HKU\S-1-5-21-3840382349-3675330343-4074381882-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
Discovery Tour Ancient Greece by Ubisoft (HKLM-x32\...\Uplay Install 5404) (Version: - Ubisoft)
Dynamic Application Loader Host Interface Service (HKLM\...\{A0644A25-DE8B-4776-A1AB-B5BD5AB71C1A}) (Version: 1.0.0.0 - Intel Corporation) Hidden
ENE IO Driver (HKLM-x32\...\{D0512FFD-6194-4D2E-967E-25B82A3322FF}) (Version: 3.3.0 - ENE TECHNOLOGY INC.) Hidden
ENE RGB HAL (HKLM\...\{E050E98C-5524-4AFB-9E53-97700BEF2C02}) (Version: 1.1.28.0 - Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32\...\{d22b5310-9f1e-43a8-8547-58fa44742994}) (Version: 1.1.28.0 - Ene Tech.) Hidden
ENE_DRAM_RGB_AURA42 (HKLM\...\{978E8FD1-5778-47EF-91A4-F891DA415DDE}) (Version: 1.0.4.0 - Ene Tech.) Hidden
ENE_DRAM_RGB_AURA42 (HKLM-x32\...\{587316c6-4804-4857-af01-1f2f78d4a0e5}) (Version: 1.0.4.0 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.6.0 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{d8516682-de60-4332-ad6f-49373754b677}) (Version: 1.0.6.0 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_SSS_HAL (HKLM\...\{CF703694-01C6-4062-B797-84DB215662BC}) (Version: 1.0.1.0 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_SSS_HAL (HKLM-x32\...\{20610ecc-e094-423e-af0c-7d0bcfe117e9}) (Version: 1.0.1.0 - ENE TECHNOLOGY INC.) Hidden
Epic Games Launcher (HKLM-x32\...\{FEF3A9BA-A962-4469-AD62-04839D4BB847}) (Version: 1.1.298.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Futuremark SystemInfo (HKLM-x32\...\{F608ED5F-3818-4F87-A277-E52E8790C039}) (Version: 5.35.871.0 - Futuremark)
GIMP 2.10.22 (HKLM\...\GIMP-2_is1) (Version: 2.10.22 - The GIMP Team)
Google Chrome (HKLM\...\{56CF9805-415B-3B7A-A1BD-DC14F7E8FAB6}) (Version: 87.0.4280.141 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{afad3740-3061-4b48-a9ab-6f1435cb3dd6}) (Version: 10.1.18383.8213 - Intel(R) Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2027.14.0.1684 - Intel Corporation)
Kingston AURA DRAM Component (HKLM\...\{6D2D2DAF-BFE4-45A6-BF40-8A9F7FF54F42}) (Version: 1.0.28 - KINGSTON COMPONENTS INC.) Hidden
Kingston AURA DRAM Component (HKLM-x32\...\{511a62a9-1ff0-4cc5-adfe-4a5bd044a3c0}) (Version: 1.0.28 - KINGSTON COMPONENTS INC.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Luminar 4 (HKLM\...\Luminar 4) (Version: 4.3.0.7119 - Skylum)
MAD CATZ R.A.T. 4+ (HKLM-x32\...\{21303862-C52E-4B0A-85C5-36853720F7A7}) (Version: 1.00.07 - Madcatz Global) Hidden
MAD CATZ R.A.T. 4+ (HKLM-x32\...\InstallShield_{21303862-C52E-4B0A-85C5-36853720F7A7}) (Version: 1.00.07 - Madcatz Global)
Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.75 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.59 - )
Microsoft Office Professional Plus 2019 - cs-cz (HKLM\...\ProPlus2019Retail - cs-cz) (Version: 16.0.13530.20316 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3840382349-3675330343-4074381882-1001\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{8e24fb65-31aa-446d-9c3e-35c5e11cb367}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.23.27820 (HKLM-x32\...\{852adda4-4c78-4a38-b583-c0b360a329d6}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Mozilla Firefox 84.0.1 (x64 cs) (HKLM\...\Mozilla Firefox 84.0.1 (x64 cs)) (Version: 84.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 84.0.1 - Mozilla)
MSI SDK (HKLM-x32\...\{EE7D557C-3AE7-4348-8DCA-3A89790D0002}}_is1) (Version: 1.0.0.56 - MSI)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.9.2 - Notepad++ Team)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.27 - NVIDIA Corporation) Hidden
NVIDIA FrameView SDK 1.1.4923.29214634 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29214634 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.5.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.5.70 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.40 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 460.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 460.89 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NvModuleTracker (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvModuleTracker.Driver) (Version: 6.14.24033.38719 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13530.20218 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13530.20218 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13530.20218 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.13530.20218 - Microsoft Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.5.90.45798 - Electronic Arts, Inc.)
Patriot Viper DRAM RGB (HKLM\...\{1F9C282E-CCB4-4D8E-A5CB-7B74DFCD8C95}) (Version: 1.0.9.1 - Patriot Memory) Hidden
Patriot Viper DRAM RGB (HKLM-x32\...\{e38442c0-a433-48c2-84e2-51ac0b30c3ab}) (Version: 1.0.9.1 - Patriot Memory)
Patriot Viper M2 SSD RGB (HKLM\...\{8B4C0A3D-C135-4E1F-98D8-3926494B4D61}) (Version: 1.0.6.3 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{8839fbd5-69f9-41c5-a1cf-cdfbec966d66}) (Version: 1.0.6.3 - Patriot Memory)
PHISON HAL (HKLM\...\{966E33F0-6786-4B38-AA29-C1B3F6C1955D}) (Version: 1.0.6.0 - PHISON Electronics Corp.) Hidden
PHISON HAL (HKLM-x32\...\{c8f7044c-7f48-404a-9a5d-9f038f28a789}) (Version: 1.0.6.0 - PHISON Electronics Corp.) Hidden
PureRef (HKLM-x32\...\PureRef) (Version: 1.11.1 - Idyllic Pixel)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9071.1 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.42.526.2020 - Realtek)
Revo Uninstaller 2.2.0 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.2.0 - VS Revo Group, Ltd.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.33.319 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.7.5 - Rockstar Games)
ROG CLAYMORE (HKLM-x32\...\{2f076320-a5f2-4e51-84f6-ac0bb9b587d1}) (Version: 1.01.36 - ASUSTek Computer Inc.)
ROG Live Service (HKLM-x32\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 1.1.10.0 - ASUSTek COMPUTER INC.)
RogueKiller version 14.8.2.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 14.8.2.0 - Adlice Software)
Skype verze 8.67 (HKLM-x32\...\Skype_is1) (Version: 8.67 - Skype Technologies S.A.)
Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.7.0 - Sophos Limited)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Streamlabs OBS 0.26.0 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 0.26.0 - General Workings, Inc.)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 117.0.10324 - Ubisoft)
Universal Holtek RGB DRAM (HKLM\...\{826388E4-E31F-4514-948B-3BB954FB3EAF}) (Version: 1.0.0.1 - PD) Hidden
Universal Holtek RGB DRAM (HKLM-x32\...\{68fb2ff9-0618-4948-b68f-9f95e5687067}) (Version: 1.0.0.1 - PD)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.3.33-3 - Wacom Technology Corp.)
WD_BLACK AN1500 (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.12.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK AN1500 (HKLM-x32\...\{9c94735f-73fd-4b0f-9ddb-8be7b3cc4681}) (Version: 1.0.12.0 - ENE TECHNOLOGY INC.) Hidden
WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
Zemana AntiMalware verze 3.2.27 (HKLM-x32\...\{4E1F3677-C72E-4F7D-B66E-85467B1A289E}_is1) (Version: 3.2.27 - Zemana)

Packages:
=========
ARMOURY CRATE -> C:\Program Files\WindowsApps\B9ECED6F.ArmouryCrate_3.2.4.0_x64__qmba6cd70vzyy [2020-12-31] (ASUSTeK COMPUTER INC.)
DragonCenter -> C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.DragonCenter_2.0.98.0_x64__kzh8wxbdkxb8p [2021-01-08] (MICRO-STAR INTERNATIONAL CO., LTD) [Startup Task]
Microsoft Edge Beta -> C:\Program Files (x86)\Microsoft\Edge Beta\Application [2021-01-04] (0)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.959.0_x64__56jybvy8sckqj [2020-12-30] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.20.238.0_x64__dt26b99r8h8gj [2021-01-06] (Realtek Semiconductor Corp)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0 [2020-12-30] (Spotify AB) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana\AntiMalware\AM_ShellExt64.dll [2020-07-29] (Zemana D.O.O. Sarajevo -> Advanced Malware Protection. Copyright 2019.)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2020-12-31] (Notepad++ -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-12-30] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_a51067c0ac557884\nvshext.dll [2020-12-12] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana\AntiMalware\AM_ShellExt64.dll [2020-07-29] (Zemana D.O.O. Sarajevo -> Advanced Malware Protection. Copyright 2019.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-12-30] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-25] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2020-07-08 17:42 - 2020-07-08 17:42 - 000477696 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ffi-napi\prebuilds\win32-ia32\node.napi.node
2020-07-08 17:42 - 2020-07-08 17:42 - 000471040 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ref-napi\prebuilds\win32-ia32\node.napi.node
2020-07-14 17:16 - 2020-07-14 17:16 - 000454656 _____ () [File not signed] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\registry-js\prebuilds\win32-ia32\node.napi.node
2020-12-31 20:11 - 2019-12-23 18:51 - 000093184 _____ () [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\zlibwapi.dll
2020-12-31 20:11 - 2019-06-26 16:07 - 000094208 _____ () [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\MacroControl.dll
2020-04-22 15:35 - 2020-04-22 15:35 - 000081920 _____ () [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\WindowID\WindowID.dll
2020-05-26 17:08 - 2020-05-26 17:08 - 002831360 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\LightingService\log4cxx.dll
2020-12-31 20:11 - 2019-10-24 11:15 - 002676736 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\AURAChecker.dll
2020-12-31 20:12 - 2020-10-16 09:55 - 000966656 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\KeyboardSDK\ArmouryKbSDK.dll
2020-02-24 17:38 - 2020-02-24 17:38 - 000176128 _____ (ENE Technology inc.) [File not signed] C:\Program Files\ENE\Aac_ENE_EHD_SSS_HAL\AacHal_x86.dll
2020-12-31 20:11 - 2019-06-26 16:07 - 003394560 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\libcrypto-1_1-x64.dll
2020-12-31 20:11 - 2019-06-26 16:07 - 000679424 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\libssl-1_1-x64.dll
2020-12-31 15:14 - 2020-12-31 15:14 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2020-12-31 15:14 - 2020-12-31 15:14 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2020-12-31 15:14 - 2020-12-31 15:14 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2020-12-31 15:14 - 2020-12-31 15:14 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2020-12-31 15:14 - 2020-12-31 15:14 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2020-12-31 15:14 - 2020-12-31 15:14 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2020-12-31 15:14 - 2020-12-31 15:14 - 000146432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2020-12-31 15:14 - 2020-12-31 15:14 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2020-12-31 15:14 - 2020-12-31 15:14 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
2020-12-31 20:11 - 2019-07-31 14:48 - 000072704 _____ (TODO: <Company name>) [File not signed] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Protocol\Interrupt\InterruptTransfer.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

SearchScopes: HKU\S-1-5-21-3840382349-3675330343-4074381882-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3840382349-3675330343-4074381882-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-01-09] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2021-01-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-09] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 10:14 - 2021-01-10 17:16 - 000000841 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3840382349-3675330343-4074381882-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Luci\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is disabled.

Network Binding:
=============
Ethernet: cFosSpeed for faster Internet connections (NDIS 6) -> cfosspeed (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run32: => "Discord"
HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0"
HKU\S-1-5-21-3840382349-3675330343-4074381882-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-3840382349-3675330343-4074381882-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-3840382349-3675330343-4074381882-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-3840382349-3675330343-4074381882-1001\...\StartupApproved\Run: => "CCXProcess"
HKU\S-1-5-21-3840382349-3675330343-4074381882-1001\...\StartupApproved\Run: => "EpicGamesLauncher"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{C99C29B1-2692-44AB-9FF8-E147ED3D5410}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E4A1CFB3-5E5E-46AB-AEB7-5F86BA6239BC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{91FCA2DD-B911-4569-89A1-CCF6CB0BD9F3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9A0C8BDF-AE90-4E27-9531-6A539287ADE5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{63BF1F35-9FC0-4DF5-849A-54BAF7131DE5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{AB9E2C85-B967-45AC-A216-D5060921D436}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A69A737A-D482-466B-92A2-CF3221DD4A6F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A7099C2E-BCA4-47AC-97DB-EF69E6561ABA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.148.625.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{461B0DEA-A50F-4E9E-8437-0EB54C08300F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{08EE7D1A-B26A-4803-B5BD-DB3990BB32B3}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1AAA2CB7-E579-4991-9C50-5191DF3C3216}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{E8AB65C9-5208-4C29-8D87-9F9AE156A67C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{2065D3B8-5920-463D-AEFF-5AE822CE8318}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{982F1F23-C145-42C0-AA5C-B7377670FE58}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3D95DEC3-BC4A-4BB5-81B9-63BE2B88480E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{70AAC3A3-33E1-40C7-B7EC-0E1E3DF61B32}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{6808853D-5F50-4C4C-A1DF-5ABB473A9D19}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2E28F06C-BAD6-4D57-8B3A-C4B07ECA0A3A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CB1C0C56-3981-448C-94D0-6327A0C51B28}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FB0318B5-72EA-42C7-AE65-27536CF621BA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{6FEF4E44-8B0D-4969-BDE8-C9C966F2C00A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{4328CCD5-1166-46E5-8671-EDEEAB0E14B8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{1C3F57C6-43FC-4376-A3BA-86555DDDA643}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\3DMarkLauncher.exe (FUTUREMARK INC -> Futuremark)
FirewallRules: [{915505CB-2DA8-402E-A746-813F116407D7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\3DMarkLauncher.exe (FUTUREMARK INC -> Futuremark)
FirewallRules: [{70001AA7-3D88-4A27-B237-4C44116EB010}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planet Zoo\PlanetZoo.exe (Frontier Developments) [File not signed]
FirewallRules: [{A982E4EC-A71F-432B-B608-98008EE4350B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planet Zoo\PlanetZoo.exe (Frontier Developments) [File not signed]
FirewallRules: [{60B4BE67-FB78-4FE2-B5A4-65A73C9EAEF2}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3AEC32C4-C9C1-4772-89EB-D143C4B96FA4}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{07DBF95C-536D-4CA4-96A0-61D4789D8945}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0945067E-811C-4FDB-8E56-45A3995372EE}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5632F24E-9DDE-40D3-8CF1-FA10B726BCD4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe (FUTUREMARK INC -> )
FirewallRules: [{5EAD401A-EA50-4AD1-ABE2-8A7C39143DC6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x86\3DMark.exe (FUTUREMARK INC -> )
FirewallRules: [{DFD7E17E-2A4D-4947-8B7E-1E963B44EDE8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe (FUTUREMARK INC -> )
FirewallRules: [{F7CB895A-8853-4C8C-9F26-763D10D08B77}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\3DMark\bin\x64\3DMark.exe (FUTUREMARK INC -> )
FirewallRules: [{92C7C63E-BB8D-4445-A51F-5DCE4607ED20}] => (Allow) C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{76987A0C-17BF-4D3B-88FA-4DE57CB0A1B6}] => (Allow) C:\Program Files (x86)\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{50D28DD2-D288-4360-83D4-ABBDF75CAB1D}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
FirewallRules: [{568B84CC-8527-4CDC-80F8-32F993746185}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (ASUSTeK Computer Inc. -> ASUS)
FirewallRules: [{F5796302-DE7A-45CB-B119-4DD374A46EAB}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe (ASUSTeK Computer Inc. -> ASUS)
FirewallRules: [{8E69F806-3D70-4E83-A23A-76AD8F9A2A1D}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
FirewallRules: [{620FDEDE-B73A-4CD4-A3B4-549F5A58B4E7}] => (Allow) C:\Program Files (x86)\Microsoft\Edge Beta\Application\84.0.522.20\msedgewebview2.exe => No File
FirewallRules: [{4AD39378-1C3B-4D6D-A720-3AEC4130A3BD}] => (Allow) C:\Program Files (x86)\Microsoft\Edge Beta\Application\msedge.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{35CACE84-F2F8-45B5-B0D3-C8E0FF75FB5B}] => (Allow) C:\Program Files (x86)\Microsoft\Edge Beta\Application\88.0.705.29\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{10CBACB8-EE25-4AF8-8747-EA60693B615E}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{CFB7870C-DA65-45B2-92F4-994AC252C44D}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{83328DA4-9890-47A7-9789-B60602ADBC11}] => (Allow) LPort=32682

==================== Restore Points =========================

06-01-2021 21:19:49 Instalační služba modulů systému Windows
08-01-2021 20:14:03 Installed Sophos Virus Removal Tool.
08-01-2021 21:15:55 Instalační služba modulů systému Windows
10-01-2021 17:15:55 zoek.exe restore point
10-01-2021 17:55:37 Instalační služba modulů systému Windows

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (01/10/2021 05:28:01 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\pcie_dll_x86.dll z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program LEDKeeper2.

Program: LEDKeeper2
Soubor: C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\pcie_dll_x86.dll

Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.

Další údaje
Hodnota chyby: C0000010
Typ disku: 3

Error: (01/10/2021 05:28:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: LEDKeeper2.exe, verze: 1.0.0.87, časové razítko: 0x5f59f497
Název chybujícího modulu: pcie_dll_x86.dll, verze: 0.0.0.0, časové razítko: 0x5d54d1a1
Kód výjimky: 0xc0000006
Posun chyby: 0x00023b00
ID chybujícího procesu: 0x1704
Čas spuštění chybující aplikace: 0x01d6e76d85b82eee
Cesta k chybující aplikaci: C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LEDKeeper2.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\pcie_dll_x86.dll
ID zprávy: 5d5e5f67-b5cd-4ccc-b0db-29ad80d1f257
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/10/2021 05:28:01 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: LEDKeeper2.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.Runtime.InteropServices.SEHException
na MSI_LED.SSDEneLed.Patriot_SSD_Init()
na MSI_LED.App.Application_Startup(System.Object, System.Windows.StartupEventArgs)
na System.Windows.Application.OnStartup(System.Windows.StartupEventArgs)
na System.Windows.Application.<.ctor>b__1_0(System.Object)
na System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
na System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
na System.Windows.Threading.DispatcherOperation.InvokeImpl()
na System.Windows.Threading.DispatcherOperation.InvokeInSecurityContext(System.Object)
na MS.Internal.CulturePreservingExecutionContext.CallbackWrapper(System.Object)
na System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
na MS.Internal.CulturePreservingExecutionContext.Run(MS.Internal.CulturePreservingExecutionContext, System.Threading.ContextCallback, System.Object)
na System.Windows.Threading.DispatcherOperation.Invoke()
na System.Windows.Threading.Dispatcher.ProcessQueue()
na System.Windows.Threading.Dispatcher.WndProcHook(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
na MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
na MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
na System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
na System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
na System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
na MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
na MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
na System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
na System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
na System.Windows.Application.RunDispatcher(System.Object)
na System.Windows.Application.RunInternal(System.Windows.Window)
na System.Windows.Application.Run(System.Windows.Window)
na System.Windows.Application.Run()
na MSI_LED.App.Main()

Error: (01/10/2021 05:27:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: notepad.exe, verze: 10.0.19041.1, časové razítko: 0x02062489
Název chybujícího modulu: MSCTF.dll, verze: 10.0.19041.662, časové razítko: 0xcea35b48
Kód výjimky: 0xc000041d
Posun chyby: 0x00041075
ID chybujícího procesu: 0x21d8
Čas spuštění chybující aplikace: 0x01d6e76d869ed51a
Cesta k chybující aplikaci: C:\Windows\SysWOW64\notepad.exe
Cesta k chybujícímu modulu: C:\Windows\System32\MSCTF.dll
ID zprávy: d245f817-fb24-454c-a261-c79df9273742
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/10/2021 05:27:45 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru C:\Windows\SysWOW64\msctf.dll z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Notepad.

Program: Notepad
Soubor: C:\Windows\SysWOW64\msctf.dll

Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.

Další údaje
Hodnota chyby: C0000010
Typ disku: 3

Error: (01/10/2021 05:27:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: notepad.exe, verze: 10.0.19041.1, časové razítko: 0x02062489
Název chybujícího modulu: MSCTF.dll, verze: 10.0.19041.662, časové razítko: 0xcea35b48
Kód výjimky: 0xc0000006
Posun chyby: 0x00041075
ID chybujícího procesu: 0x21d8
Čas spuštění chybující aplikace: 0x01d6e76d869ed51a
Cesta k chybující aplikaci: C:\Windows\SysWOW64\notepad.exe
Cesta k chybujícímu modulu: C:\Windows\System32\MSCTF.dll
ID zprávy: 0d272251-567a-4c94-a2d4-0ee9eca8a8bc
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/10/2021 05:12:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: zoek.exe, verze: 0.0.0.0, časové razítko: 0x00000000
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.662, časové razítko: 0xe6477cce
Kód výjimky: 0xc0000409
Posun chyby: 0x0012a892
ID chybujícího procesu: 0x3a2c
Čas spuštění chybující aplikace: 0x01d6e76b673ff03d
Cesta k chybující aplikaci: C:\Users\Luci\Desktop\zoek.exe
Cesta k chybujícímu modulu: C:\Windows\System32\KERNELBASE.dll
ID zprávy: 6b31c25e-3d9a-4ca0-819b-f8abe190e15d
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/10/2021 05:06:27 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru C:\Windows\System32\windows.storage.dll z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Windows Explorer.

Program: Windows Explorer
Soubor: C:\Windows\System32\windows.storage.dll

Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.

Další údaje
Hodnota chyby: C0000010
Typ disku: 3


System errors:
=============
Error: (01/10/2021 06:36:32 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-0L989GH)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě:
2147942767
při provádění příkazu:
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (01/10/2021 05:24:51 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (01/10/2021 05:24:51 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (01/10/2021 05:24:51 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (01/10/2021 05:24:51 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (01/10/2021 05:24:50 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (01/10/2021 05:06:12 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba ARMOURY CRATE Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.

Error: (01/10/2021 05:06:07 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: Počítač byl restartován z procesu kontroly chyb. Kontrola chyb: 0x0000007a (0xffffcf87bb9b1640, 0xffffffffc0000010, 0x0000000462ec6860, 0xffffe044ff578498). Výpis byl uložen do: C:\Windows\Minidump\011021-5437-01.dmp. ID hlášení: 2467b79d-f17c-4709-b09b-fd653b587a17


Windows Defender:
===================================
Date: 2021-01-08 20:09:37.5650000Z
Description:
Modul programu Antivirová ochrana v programu Microsoft Defender byl ukončen v důsledku neočekávané chyby.
Typ chyby: Chyba
Kód výjimky: 0xc0000006
Zdroj:

Date: 2021-01-08 17:59:28.8900000Z
Description:
Modul programu Antivirová ochrana v programu Microsoft Defender byl ukončen v důsledku neočekávané chyby.
Typ chyby: Chyba
Kód výjimky: 0xc0000006
Zdroj: file:C:\Windows\System32\winrnr.dll

Date: 2021-01-08 17:59:05.4400000Z
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.329.1418.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17700.4
Kód chyby: 0x8007045b
Popis chyby: Probíhá vypnutí systému.

Date: 2020-12-31 18:32:46.3080000Z
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.329.1418.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17700.4
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.

Date: 2020-12-31 18:32:46.3080000Z
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.329.1418.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17700.4
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.

CodeIntegrity:
===================================

Date: 2021-01-08 21:17:15.8340000Z
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.

Date: 2021-01-08 21:17:15.8210000Z
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.

Date: 2021-01-08 20:09:39.4170000Z
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.

Date: 2021-01-08 20:09:39.4010000Z
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.

Date: 2021-01-08 17:59:51.6950000Z
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.

Date: 2021-01-08 17:59:31.6830000Z
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

BIOS: American Megatrends Inc. A.30 10/13/2020
Motherboard: Micro-Star International Co., Ltd. MPG Z490 GAMING PLUS (MS-7C75)
Processor: Intel(R) Core(TM) i5-10400 CPU @ 2.90GHz
Percentage of memory in use: 17%
Total physical RAM: 32687.64 MB
Available physical RAM: 26990.49 MB
Total Virtual: 34735.64 MB
Available Virtual: 27654.34 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.91 GB) (Free:671.87 GB) NTFS
Drive d: () (Fixed) (Total:223.57 GB) (Free:223.47 GB) NTFS

\\?\Volume{581be377-7bf9-4cc2-ab38-8ada985c1e32}\ () (Fixed) (Total:0.49 GB) (Free:0.08 GB) NTFS
\\?\Volume{79280a1b-4e5d-41cf-8254-7d4e0cee708c}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 3D28E9A4)
Partition 1: (Active) - (Size=223.6 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

[zik9]

Po zapnutí synchronizace v Chrome jsme tam kde jsme byli...

[zik9]

Malwarebytes
http://www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 10.01.21
Čas skenování: 18:55
Logovací soubor: fcba8ade-536c-11eb-90e2-2cf05daee931.json

-Informace o softwaru-
Verze: 4.3.0.98
Verze komponentů: 1.0.1130
Aktualizovat verzi balíku komponent: 1.0.35517
Licence: Zkušební

-Systémová informace-
OS: Windows 10 (Build 19041.685)
CPU: x64
Systém souborů: NTFS
Uživatel: DESKTOP-0L989GH\Luci

-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 293840
Zjištěné hrozby: 1
Hrozby umístěné do karantény: 1
Uplynulý čas: 0 min, 22 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)

Soubor: 1
PUP.Optional.Spigot, C:\USERS\LUCI\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Nahrazen, 1357, 454814, 1.0.35517, , ame, , 96D80ED8548D5C94451D4E8FD9E38FAF, B0950DB573175EA96958B2F550CAB423091140672CFBC52399AD207876212205

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)

WMI: 0
(Nebyly zjištěny žádné škodlivé položky)


(end)

[zik9]

Malwarebytes
http://www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 10.01.21
Čas skenování: 18:56
Logovací soubor: 3874ee3e-536d-11eb-8dbe-2cf05daee931.json

-Informace o softwaru-
Verze: 4.3.0.98
Verze komponentů: 1.0.1130
Aktualizovat verzi balíku komponent: 1.0.35519
Licence: Zkušební

-Systémová informace-
OS: Windows 10 (Build 19041.685)
CPU: x64
Systém souborů: NTFS
Uživatel: DESKTOP-0L989GH\Luci

-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 293842
Zjištěné hrozby: 1
Hrozby umístěné do karantény: 1
Uplynulý čas: 0 min, 22 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)

Soubor: 1
PUP.Optional.Spigot, C:\USERS\LUCI\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Nahrazen, 1357, 454814, 1.0.35519, , ame, , 6508EA5F113FEBE882888B2373A219BF, C8529293A4BAFC096AC941B2AC0EBB5D6196F9275BE415172974144CBEC4E640

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)

WMI: 0
(Nebyly zjištěny žádné škodlivé položky)


(end)

[jaro3]

Vyčisti systém CCleanerem
http://www.piriform.com/ccleaner/download/standard

aktualizoval si malwarebytes?


Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CreateRestorePoint:
CloseProcesses:
HKU\S-1-5-21-3840382349-3675330343-4074381882-1001\...\MountPoints2: {d6faf093-29f9-11eb-953f-2cf05daee931} - "D:\DVDSetup.exe"
Task: {02B8E27F-A9CC-44F2-8478-9D502BBE7BD3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-30] (Google LLC -> Google LLC)
Task: {4B0906F5-C5A2-434A-8550-08BD777C876B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-30] (Google LLC -> Google LLC)
SearchScopes: HKU\S-1-5-21-3840382349-3675330343-4074381882-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3840382349-3675330343-4074381882-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

[zik9]

Ccleaner zas komplet udělán. Poté spuštěn Chrome. MB poté zkotnrolován, aktuální. Scan zas s jedním nálezem (asi díky synchro z Chrome).

Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 10.01.21
Čas skenování: 19:46
Logovací soubor: 265b3e68-5374-11eb-b38d-2cf05daee931.json

-Informace o softwaru-
Verze: 4.3.0.98
Verze komponentů: 1.0.1130
Aktualizovat verzi balíku komponent: 1.0.35521
Licence: Zkušební

-Systémová informace-
OS: Windows 10 (Build 19041.685)
CPU: x64
Systém souborů: NTFS
Uživatel: DESKTOP-0L989GH\Luci

-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 293871
Zjištěné hrozby: 1
Hrozby umístěné do karantény: 1
Uplynulý čas: 0 min, 28 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)

Soubor: 1
PUP.Optional.Spigot, C:\USERS\LUCI\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Nahrazen, 1357, 454814, 1.0.35521, , ame, , C9906CAD0115764CB0839C9D2CBA3F5C, 49EE1378BC68EB1C19B78A1B83F44072CE93C608D237CDCBB159A348A4ACB994

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)

WMI: 0
(Nebyly zjištěny žádné škodlivé položky)


(end)

Fix result of Farbar Recovery Scan Tool (x64) Version: 09-01-2021
Ran by Luci (10-01-2021 19:50:15) Run:1
Running from C:\Users\Luci\Desktop
Loaded Profiles: Luci
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
HKU\S-1-5-21-3840382349-3675330343-4074381882-1001\...\MountPoints2: {d6faf093-29f9-11eb-953f-2cf05daee931} - "D:\DVDSetup.exe"
Task: {02B8E27F-A9CC-44F2-8478-9D502BBE7BD3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-30] (Google LLC -> Google LLC)
Task: {4B0906F5-C5A2-434A-8550-08BD777C876B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-30] (Google LLC -> Google LLC)
SearchScopes: HKU\S-1-5-21-3840382349-3675330343-4074381882-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3840382349-3675330343-4074381882-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}

EmptyTemp:
End
*****************

Restore point was successfully created.
Processes closed successfully.
HKU\S-1-5-21-3840382349-3675330343-4074381882-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d6faf093-29f9-11eb-953f-2cf05daee931} => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{02B8E27F-A9CC-44F2-8478-9D502BBE7BD3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{02B8E27F-A9CC-44F2-8478-9D502BBE7BD3}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4B0906F5-C5A2-434A-8550-08BD777C876B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4B0906F5-C5A2-434A-8550-08BD777C876B}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKU\S-1-5-21-3840382349-3675330343-4074381882-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-3840382349-3675330343-4074381882-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 7888896 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 8504927 B
Java, Flash, Steam htmlcache => 85768549 B
Windows/system/drivers => 967014 B
Edge => 0 B
Chrome => 9098502 B
Firefox => 196608 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 432 B
LocalService => 4610 B
NetworkService => 4610 B
Luci => 600887 B

RecycleBin => 3716 B
EmptyTemp: => 107.8 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 19:50:26 ====

[zik9]

Následně udělán další MB po spuštění Chrome a napsání předešlého příspěvku. Se spuštěným Chromem.

Malwarebytes
http://www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 10.01.21
Čas skenování: 19:52
Logovací soubor: fbd6ea74-5374-11eb-a60d-2cf05daee931.json

-Informace o softwaru-
Verze: 4.3.0.98
Verze komponentů: 1.0.1130
Aktualizovat verzi balíku komponent: 1.0.35521
Licence: Zkušební

-Systémová informace-
OS: Windows 10 (Build 19041.685)
CPU: x64
Systém souborů: NTFS
Uživatel: DESKTOP-0L989GH\Luci

-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 293380
Zjištěné hrozby: 1
Hrozby umístěné do karantény: 0
Uplynulý čas: 0 min, 19 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)

Soubor: 1
PUP.Optional.Spigot, C:\USERS\LUCI\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, Žádná uživatelská akce, 1357, 454814, 1.0.35521, , ame, , DFDDDC410AFCD0706B56ADB85F3C230C, 9E22A034EE8C3774F5A1245058E7B17946C6258709666E6157C35F885A9A5A06

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)

WMI: 0
(Nebyly zjištěny žádné škodlivé položky)


(end)

[jaro3]

udělej ještě adwcleaner.

možná je to jen falešně pozitivní.

Nebo zkusit odinstalovat Chrome , vamazat složky i nastavení , doplňky. A pak nainstalovat znovu.

ještě se podívám na net.