Prosím o kontrolu logu Vyřešeno

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: memphisto, Mods_senior, Security team

DJAdam
Level 3.5
Level 3.5
Příspěvky: 759
Registrován: únor 14
Pohlaví: Muž

Re: Prosím o kontrolu logu

Příspěvekod DJAdam » 07 čer 2018 12:26

HDD som skontroloval na chyby.. žiadne nenašlo a tak isto memtest 0 errors



Reklama
DJAdam
Level 3.5
Level 3.5
Příspěvky: 759
Registrován: únor 14
Pohlaví: Muž

Re: Prosím o kontrolu logu

Příspěvekod DJAdam » 07 čer 2018 12:26

----------------------------------------------------------------------------
CrystalDiskInfo 7.0.5 (C) 2008-2016 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 8.1 [6.3 Build 9600] (x64)
Date : 2018/06/07 12:26:47

-- Controller Map ----------------------------------------------------------
+ Standard SATA AHCI Controller [ATA]
- HL-DT-ST DVDRAM GHB0N
- ST1000DM003-1SB102
- Microsoft Storage Spaces Controller [SCSI]
- DAEMON Tools Lite Virtual SCSI Bus [SCSI]

-- Disk List ---------------------------------------------------------------
(1) ST1000DM003-1SB102 : 1000,2 GB [0/0/0, pd1] - st

----------------------------------------------------------------------------
(1) ST1000DM003-1SB102
----------------------------------------------------------------------------
Model : ST1000DM003-1SB102
Firmware : CC43
Serial Number : W9A42BHS
Disk Size : 1000,2 GB (8,4/137,4/1000,2/1000,2)
Buffer Size : Unknown
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : SATA/300 | SATA/600
Power On Hours : 4228 hours
Power On Count : 834 count
Temperature : 31 C (87 F)
Health Status : Good
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 8080h [ON]
AAM Level : ----
Drive Letter : C: D:

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 _83 _63 __6 00000C7CF980 Read Error Rate
03 _97 _97 __0 000000000000 Spin-Up Time
04 100 100 _20 000000000380 Start/Stop Count
05 100 100 _10 000000000000 Reallocated Sectors Count
07 _81 _60 _45 0000095E705A Seek Error Rate
09 _96 _96 __0 000000001084 Power-On Hours
0A 100 100 _97 000000000000 Spin Retry Count
0C 100 100 _20 000000000342 Power Cycle Count
B7 100 100 __0 000000000000 Vendor Specific
B8 100 100 _99 000000000000 End-to-End Error
BB 100 100 __0 000000000000 Reported Uncorrectable Errors
BC 100 _99 __0 000000000003 Command Timeout
BD 100 100 __0 000000000000 High Fly Writes
BE _69 _60 _40 00001F18001F Airflow Temperature
C1 100 100 __0 000000000382 Load/Unload Cycle Count
C2 _31 _17 __0 00110000001F Temperature
C3 __1 __1 __0 00000C7CF980 Hardware ECC recovered
C5 100 100 __0 000000000000 Current Pending Sector Count
C6 100 100 __0 000000000000 Uncorrectable Sector Count
C7 200 200 __0 000000000000 UltraDMA CRC Error Count
F0 100 253 __0 F1EA00001062 Head Flying Hours
F1 100 253 __0 00057766B353 Total Host Writes
F2 100 253 __0 0009B806B27D Total Host Reads

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 2020 5739 4134 3242 4853
020: 0000 0000 0000 4343 3433 2020 2020 5354 3130 3030
030: 444D 3030 332D 3153 4231 3032 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 850E 0004 00CC 0000
080: 01F0 0029 346B 7D69 4163 3469 BC49 4163 207F 0034
090: 0034 8080 FFFE 0000 D0D0 0000 0000 0000 0000 0000
100: 6DB0 7470 0000 0000 0000 0000 6003 0000 5000 C500
110: 9CAF 6AD5 0000 0000 0000 0000 0000 0000 0000 401E
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 6DB0
130: 7470 6DB0 7470 2020 0002 0140 0100 5000 3C06 3C0A
140: 0000 003C 0000 0008 0000 0000 FDFF 0280 0000 0000
150: 0008 0000 0000 0000 0000 8000 0000 0184 9400 8000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0002 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 1085 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 1020 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 98A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 0A 00 01 0F 00 53 3F 80 F9 7C 0C 00 00 00 03 03
010: 00 61 61 00 00 00 00 00 00 00 04 32 00 64 64 80
020: 03 00 00 00 00 00 05 33 00 64 64 00 00 00 00 00
030: 00 00 07 0F 00 51 3C 5A 70 5E 09 00 00 00 09 32
040: 00 60 60 84 10 00 00 00 00 00 0A 13 00 64 64 00
050: 00 00 00 00 00 00 0C 32 00 64 64 42 03 00 00 00
060: 00 00 B7 32 00 64 64 00 00 00 00 00 00 00 B8 32
070: 00 64 64 00 00 00 00 00 00 00 BB 32 00 64 64 00
080: 00 00 00 00 00 00 BC 32 00 64 63 03 00 00 00 00
090: 00 00 BD 3A 00 64 64 00 00 00 00 00 00 00 BE 22
0A0: 00 45 3C 1F 00 18 1F 00 00 00 C1 32 00 64 64 82
0B0: 03 00 00 00 00 00 C2 22 00 1F 11 1F 00 00 00 11
0C0: 00 00 C3 1A 00 01 01 80 F9 7C 0C 00 00 00 C5 12
0D0: 00 64 64 00 00 00 00 00 00 00 C6 10 00 64 64 00
0E0: 00 00 00 00 00 00 C7 3E 00 C8 C8 00 00 00 00 00
0F0: 00 00 F0 00 00 64 FD 62 10 00 00 EA F1 23 F1 00
100: 00 64 FD 53 B3 66 77 05 00 00 F2 00 00 64 FD 7D
110: B2 06 B8 09 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 73
170: 03 00 01 00 01 67 02 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 78 00 00 00 00 03 03 03 03 03 03 03
190: 03 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 2C 2D 80 65 D8 0D 00 00
1B0: 00 00 00 00 01 00 88 01 53 B3 66 77 05 00 00 00
1C0: 7D B2 06 B8 09 00 00 00 00 00 00 00 36 B4 D9 11
1D0: 00 00 00 00 00 00 00 00 80 07 00 00 06 00 00 00
1E0: 00 00 00 00 E6 0D 00 00 00 00 00 00 00 00 00 06
1F0: 00 00 00 00 00 00 00 00 00 00 14 17 00 00 00 35

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 01 00 01 06 00 00 00 00 00 00 00 00 00 00 03 00
010: 00 00 00 00 00 00 00 00 00 00 04 14 00 00 00 00
020: 00 00 00 00 00 00 05 0A 00 00 00 00 00 00 00 00
030: 00 00 07 2D 00 00 00 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 61 00 00 00 00
050: 00 00 00 00 00 00 0C 14 00 00 00 00 00 00 00 00
060: 00 00 B7 00 00 00 00 00 00 00 00 00 00 00 B8 63
070: 00 00 00 00 00 00 00 00 00 00 BB 00 00 00 00 00
080: 00 00 00 00 00 00 BC 00 00 00 00 00 00 00 00 00
090: 00 00 BD 00 00 00 00 00 00 00 00 00 00 00 BE 28
0A0: 00 00 00 00 00 00 00 00 00 00 C1 00 00 00 00 00
0B0: 00 00 00 00 00 00 C2 00 00 00 00 00 00 00 00 00
0C0: 00 00 C3 00 00 00 00 00 00 00 00 00 00 00 C5 00
0D0: 00 00 00 00 00 00 00 00 00 00 C6 00 00 00 00 00
0E0: 00 00 00 00 00 00 C7 00 00 00 00 00 00 00 00 00
0F0: 00 00 F0 00 00 00 00 00 00 00 00 00 00 00 F1 00
100: 00 00 00 00 00 00 00 00 00 00 F2 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 AF

DJAdam
Level 3.5
Level 3.5
Příspěvky: 759
Registrován: únor 14
Pohlaví: Muž

Re: Prosím o kontrolu logu

Příspěvekod DJAdam » 07 čer 2018 12:31

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 12:27:55, on 7.6.2018
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18817)


Boot mode: Normal

Running processes:
C:\Users\Hanus-PC\Desktop\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKCU\..\Run: [GalaxyClient] D:\GOG Galaxy\GalaxyClient.exe /launchViaAutoStart
O4 - HKCU\..\Run: [Gaijin.Net Agent] "C:\Users\Hanus-PC\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "D:\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [World of Tanks] "D:\World of Tanks\WargamingGameUpdater.exe"
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAM Controller Service (ZAMSvc) - Copyright 2017. - C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe

--
End of file - 5518 bytes

DJAdam
Level 3.5
Level 3.5
Příspěvky: 759
Registrován: únor 14
Pohlaví: Muž

Re: Prosím o kontrolu logu

Příspěvekod DJAdam » 07 čer 2018 12:35

Všimol som si že PC mi o niečo rýchlejšie štartuje.. za to vám Ďakujem :)
A aj systém je o niečo svižnejší. A zdá sa mi že aj v hrách nejaké to FPS pribudlo.
Ak by sa to ešte dalo nejak zrýchliť resp. vymazať ešte nejaké dočasné súbory,registre a ja neviem čo všetko tak by som bol nesmierne rád..nech mam komplet prečistený PC po tom 1 roku :)

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 38602
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Prosím o kontrolu logu

Příspěvekod jaro3 » 07 čer 2018 19:00

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost


000000000003 Command Timeout
Časový limit - príkaz Command Timeout Počet operací, které byly přerušené kvůli časovému limitu pro pevný disk. Za normálních okolností by se tato hodnota měla rovnat nule. Jestliže je hodnota vyšší než nula, pravděpodobně jsou nějaké problémy s napájením, nebo je datový kabel zoxidovaný.

Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

DJAdam
Level 3.5
Level 3.5
Příspěvky: 759
Registrován: únor 14
Pohlaví: Muž

Re: Prosím o kontrolu logu

Příspěvekod DJAdam » 07 čer 2018 19:11

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06.06.2018 01
Ran by Hanus-PC (administrator) on HANUSPC (07-06-2018 19:09:11)
Running from C:\Users\Hanus-PC\Desktop
Loaded Profiles: Hanus-PC (Available Profiles: Hanus-PC)
Platform: Windows 8.1 (Update) (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Copyright 2017.) C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Disc Soft Ltd) D:\DAEMON Tools Lite\DTShellHlp.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKLM\...\Run: [ZAM] => C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [15775888 2017-08-09] (Copyright 2017.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1273448 2012-04-03] (CANON INC.)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [449168 2012-03-26] (CANON INC.)
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\Run: [GalaxyClient] => D:\GOG Galaxy\GalaxyClient.exe [6448712 2018-05-01] (GOG.com)
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\Run: [Gaijin.Net Agent] => C:\Users\Hanus-PC\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2116168 2018-01-26] (Gaijin Entertainment)
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\Run: [DAEMON Tools Lite Automount] => D:\DAEMON Tools Lite\DTAgent.exe [5263040 2018-01-12] (Disc Soft Ltd)
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\Run: [World of Tanks] => D:\World of Tanks\WargamingGameUpdater.exe [3139872 2018-01-05] (Wargaming.net)
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {487d2ad1-fdc6-11e6-8268-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {64414355-4da9-11e7-82da-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {64414373-4da9-11e7-82da-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {6441437a-4da9-11e7-82da-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {66f18f3a-0800-11e8-83f1-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {66f18f63-0800-11e8-83f1-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {66f18f6d-0800-11e8-83f1-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {904423b4-80d3-11e7-832c-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {904423d2-80d3-11e7-832c-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {def8ff9f-e23a-11e7-83ba-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {e98ee506-03fb-11e8-83ec-448a5b9b27f4} - "F:\setup.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {e98ee51f-03fb-11e8-83ec-448a5b9b27f4} - "G:\setup.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {efe674f4-f207-11e6-824f-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {efe67501-f207-11e6-824f-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{C236E9A8-604E-47BE-B3F6-B45AD523C81B}: [DhcpNameServer] 192.168.1.1 0.0.0.0

Internet Explorer:
==================
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
SearchScopes: HKU\S-1-5-21-64186151-2691123905-3617468610-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)

FireFox:
========
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-04-22] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-04-22] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-19] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-05-11] (Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\Hanus-PC\AppData\Local\Google\Chrome\User Data\Default [2018-06-07]
CHR Extension: (Prezentácie) - C:\Users\Hanus-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-06-06]
CHR Extension: (Dokumenty) - C:\Users\Hanus-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-06-06]
CHR Extension: (Disk Google) - C:\Users\Hanus-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-06-06]
CHR Extension: (YouTube) - C:\Users\Hanus-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-06-06]
CHR Extension: (Dark Theme v3) - C:\Users\Hanus-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\djlgdeklopcjagknhlchbdjekgpgenad [2018-06-07]
CHR Extension: (Adobe Acrobat) - C:\Users\Hanus-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2018-06-06]
CHR Extension: (Tabuľky) - C:\Users\Hanus-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-06-06]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Hanus-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-06-07]
CHR Extension: (AdBlock) - C:\Users\Hanus-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-06-06]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Hanus-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-06-06]
CHR Extension: (Gmail) - C:\Users\Hanus-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-06-06]
CHR Extension: (Chrome Media Router) - C:\Users\Hanus-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-06-06]
CHR HKU\S-1-5-21-64186151-2691123905-3617468610-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6076936 2018-03-27] ()
S4 Disc Soft Lite Bus Service; D:\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3480768 2018-01-12] (Disc Soft Ltd)
S4 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [776832 2018-05-01] (EasyAntiCheat Ltd)
S4 GalaxyClientService; D:\GOG Galaxy\GalaxyClientService.exe [665160 2018-05-01] (GOG.com)
S4 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [8109640 2018-05-01] (GOG.com)
S4 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S4 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140456 2012-03-28] ()
S4 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-09] (Malwarebytes)
S4 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-24] (NVIDIA Corporation)
S4 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-24] (NVIDIA Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)
R2 ZAMSvc; C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe [15775888 2017-08-09] (Copyright 2017.)
S4 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
S4 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 athur; C:\Windows\system32\DRIVERS\athuw8x.sys [2919936 2013-06-02] (Qualcomm Atheros Communications, Inc.)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2018-01-28] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2018-01-28] (Disc Soft Ltd)
R1 MpKsldb808435; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{6998BE42-E9B2-4109-B148-6A6D84CAAB9A}\MpKsldb808435.sys [58120 2018-06-07] (Microsoft Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [31168 2018-03-24] (NVIDIA Corporation)
R3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [56256 2018-04-23] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [59240 2018-03-24] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [58816 2018-03-24] (NVIDIA Corporation)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] ()
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [11376 2003-12-02] () [File not signed]
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)
R1 ZAM; C:\Windows\System32\drivers\zam64.sys [203680 2018-06-07] (Zemana Ltd.)
R1 ZAM_Guard; C:\Windows\System32\drivers\zamguard64.sys [203680 2018-06-07] (Zemana Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-06-07 19:09 - 2018-06-07 19:09 - 000013249 _____ C:\Users\Hanus-PC\Desktop\FRST.txt
2018-06-07 19:09 - 2018-06-07 19:09 - 000000000 ____D C:\FRST
2018-06-07 19:08 - 2018-06-07 19:08 - 002413056 _____ (Farbar) C:\Users\Hanus-PC\Desktop\FRST64.exe
2018-06-07 12:12 - 2018-06-07 19:09 - 000146574 _____ C:\Windows\ZAM.krnl.trace
2018-06-07 12:12 - 2018-06-07 19:09 - 000144168 _____ C:\Windows\ZAM_Guard.krnl.trace
2018-06-07 12:11 - 2018-06-07 12:11 - 006625600 _____ (Zemana Ltd. ) C:\Users\Hanus-PC\Downloads\Zemana.AntiMalware.Setup.exe
2018-06-07 12:11 - 2018-06-07 12:11 - 000203680 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\zamguard64.sys
2018-06-07 12:11 - 2018-06-07 12:11 - 000203680 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\zam64.sys
2018-06-07 12:11 - 2018-06-07 12:11 - 000000000 ____D C:\Users\Hanus-PC\AppData\Local\Zemana
2018-06-07 12:11 - 2018-06-07 12:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiMalware
2018-06-07 12:11 - 2018-06-07 12:11 - 000000000 ____D C:\Program Files (x86)\Zemana AntiMalware
2018-06-06 20:59 - 2014-02-13 23:59 - 000024064 _____ C:\Windows\zoek-delete.exe
2018-06-06 20:48 - 2018-06-06 20:57 - 000000000 ____D C:\zoek_backup
2018-06-06 16:20 - 2018-06-06 20:29 - 000028272 _____ C:\Windows\system32\Drivers\TrueSight.sys
2018-06-06 16:20 - 2018-06-06 16:40 - 000000000 ____D C:\ProgramData\RogueKiller
2018-06-06 16:20 - 2018-06-06 16:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2018-06-06 16:20 - 2018-06-06 16:20 - 000000000 ____D C:\Program Files\RogueKiller
2018-06-06 16:09 - 2018-06-06 16:09 - 000000037 _____ C:\Users\Hanus-PC\Downloads\file-not-found.txt
2018-06-06 15:54 - 2018-06-06 15:54 - 000000000 ____D C:\ProgramData\Sophos
2018-06-06 15:54 - 2018-06-06 15:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
2018-06-06 15:54 - 2018-06-06 15:54 - 000000000 ____D C:\Program Files (x86)\Sophos
2018-06-05 20:51 - 2018-06-05 20:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-06-05 20:51 - 2018-06-05 20:51 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-06-05 20:51 - 2018-06-05 20:51 - 000000000 ____D C:\Program Files\Malwarebytes
2018-06-05 20:51 - 2018-04-26 05:36 - 000152184 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2018-06-05 20:49 - 2018-06-05 20:51 - 077239112 _____ (Malwarebytes ) C:\Users\Hanus-PC\Downloads\mb3-setup-consumer-3.5.1.2522-1.0.365-1.0.5354.exe
2018-06-05 20:45 - 2018-06-05 20:46 - 000000000 ____D C:\AdwCleaner
2018-06-05 20:37 - 2018-06-05 20:37 - 000050688 _____ (Atribune.org) C:\Users\Hanus-PC\Downloads\ATF-Cleaner.exe
2018-06-05 14:47 - 2018-06-05 14:47 - 000093696 _____ C:\Users\Hanus-PC\Downloads\Plán dovoleniek August 2018-NR TETA.xls
2018-06-05 12:15 - 2018-06-07 19:07 - 000000000 ____D C:\Users\Hanus-PC\Desktop\HijackThis
2018-05-31 17:57 - 2018-05-31 17:57 - 000005379 _____ C:\Users\Hanus-PC\Downloads\02F764C400F349AEEE116CA981FDD6E4DEADE4D2.torrent
2018-05-28 16:30 - 2018-05-28 16:31 - 000000041 _____ C:\Users\Hanus-PC\Desktop\Heslo na Uplay.txt
2018-05-27 15:13 - 2018-06-05 12:56 - 000000000 ____D C:\Users\Hanus-PC\Desktop\GTA V Cheaty
2018-05-27 15:11 - 2018-05-27 15:11 - 000542720 _____ C:\Users\Hanus-PC\Desktop\Loader.zip
2018-05-26 15:06 - 2018-05-26 15:06 - 000000000 ____D C:\Users\Hanus-PC\Documents\Klei
2018-05-26 08:33 - 2018-05-26 08:33 - 000000000 ____D C:\ProgramData\Age of Empires 3
2018-05-24 18:52 - 2018-05-24 19:09 - 000000000 ____D C:\Users\Hanus-PC\Documents\AncestorsLegacy
2018-05-24 18:52 - 2018-05-24 18:52 - 000000000 ____D C:\Users\Hanus-PC\Documents\UnrealEngine
2018-05-17 17:43 - 2018-05-17 17:43 - 000000000 ____D C:\Users\Hanus-PC\Documents\CPY_SAVES
2018-05-09 15:38 - 2018-04-22 11:02 - 000803696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2018-05-09 15:38 - 2018-04-22 10:06 - 000612600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2018-05-09 15:38 - 2018-04-22 10:04 - 025744896 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-05-09 15:38 - 2018-04-22 09:40 - 002902016 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-05-09 15:38 - 2018-04-22 09:38 - 000578048 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-05-09 15:38 - 2018-04-22 09:32 - 005779456 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-05-09 15:38 - 2018-04-22 09:26 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-05-09 15:38 - 2018-04-22 09:26 - 000794624 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-05-09 15:38 - 2018-04-22 09:24 - 020286464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-05-09 15:38 - 2018-04-22 09:04 - 000499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2018-05-09 15:38 - 2018-04-22 09:00 - 002295296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2018-05-09 15:38 - 2018-04-22 08:57 - 001033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2018-05-09 15:38 - 2018-04-22 08:54 - 000661504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2018-05-09 15:38 - 2018-04-22 08:51 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2018-05-09 15:38 - 2018-04-22 08:49 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2018-05-09 15:38 - 2018-04-22 08:48 - 015283200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-05-09 15:38 - 2018-04-22 08:46 - 002135552 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2018-05-09 15:38 - 2018-04-22 08:33 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-05-09 15:38 - 2018-04-22 08:32 - 000880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2018-05-09 15:38 - 2018-04-22 08:31 - 004496896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-05-09 15:38 - 2018-04-22 08:29 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2018-05-09 15:38 - 2018-04-22 08:27 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2018-05-09 15:38 - 2018-04-22 08:27 - 000333312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2018-05-09 15:38 - 2018-04-22 08:26 - 013679616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2018-05-09 15:38 - 2018-04-22 08:26 - 002059776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2018-05-09 15:38 - 2018-04-22 08:22 - 001546240 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-05-09 15:38 - 2018-04-22 08:08 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-05-09 15:38 - 2018-04-22 08:04 - 001314304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-05-09 15:38 - 2018-04-15 18:55 - 000669696 _____ (Microsoft Corporation) C:\Windows\system32\hhctrl.ocx
2018-05-09 15:38 - 2018-04-15 18:16 - 000536576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hhctrl.ocx
2018-05-09 15:38 - 2018-04-11 03:03 - 007406936 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-05-09 15:38 - 2018-04-11 03:02 - 001676056 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2018-05-09 15:38 - 2018-04-11 03:02 - 001536112 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2018-05-09 15:38 - 2018-04-10 20:51 - 004169216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2018-05-09 15:38 - 2018-04-10 20:27 - 000205312 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2018-05-09 15:38 - 2018-04-10 20:13 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2018-05-09 15:38 - 2018-04-10 19:01 - 000165376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itircl.dll
2018-05-09 15:38 - 2018-04-10 18:50 - 000151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2018-05-09 15:38 - 2018-04-07 18:17 - 000445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2018-05-09 15:38 - 2018-04-07 17:49 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2018-05-09 15:38 - 2018-04-07 17:41 - 000109056 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2018-05-09 15:38 - 2018-04-07 17:23 - 000084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2018-05-09 15:38 - 2018-04-07 17:20 - 001707008 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2018-05-09 15:38 - 2018-04-07 17:10 - 001344512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2018-05-09 15:38 - 2018-04-07 17:06 - 000522752 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2018-05-09 15:38 - 2018-04-07 17:01 - 000414720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2018-05-09 15:38 - 2018-04-06 23:27 - 000376656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2018-05-09 15:38 - 2018-03-24 17:57 - 001101824 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2018-05-09 15:38 - 2018-03-24 17:40 - 001171456 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2018-05-09 15:38 - 2018-03-24 17:34 - 000856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2018-05-09 15:38 - 2018-03-24 17:22 - 001086976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2018-05-09 15:38 - 2018-03-24 16:56 - 007033344 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2018-05-09 15:38 - 2018-03-24 16:54 - 006214144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2018-05-09 15:38 - 2018-03-16 00:29 - 000136904 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2018-05-09 15:38 - 2018-03-10 22:55 - 000137968 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2018-05-09 15:38 - 2018-03-10 21:04 - 000120376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2018-05-09 15:38 - 2018-03-10 19:51 - 000685568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2018-05-09 15:38 - 2018-03-10 19:47 - 000066048 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2018-05-09 15:38 - 2018-03-10 19:47 - 000052224 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2018-05-09 15:38 - 2018-03-10 19:43 - 000015360 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2018-05-09 15:38 - 2018-03-10 18:46 - 000840192 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2018-05-09 15:38 - 2018-03-10 18:44 - 000435200 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2018-05-09 15:38 - 2018-03-10 18:35 - 000696832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2018-05-09 15:38 - 2018-03-10 18:35 - 000359424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2018-05-09 15:38 - 2018-03-10 18:33 - 003717632 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2018-05-09 15:38 - 2018-03-10 18:18 - 000726528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2018-05-09 15:38 - 2018-03-10 18:18 - 000409088 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2018-05-09 15:38 - 2018-03-10 18:18 - 000095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2018-05-09 15:38 - 2018-03-10 18:18 - 000081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2018-05-09 15:38 - 2018-03-10 18:17 - 002240512 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2018-05-09 15:38 - 2018-03-10 18:17 - 000897024 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2018-05-09 15:38 - 2018-03-09 20:57 - 000276816 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2018-05-09 15:38 - 2018-03-03 18:24 - 001725952 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2018-05-09 15:38 - 2018-03-03 18:18 - 000894976 _____ (Microsoft Corporation) C:\Windows\system32\msdtcprx.dll
2018-05-09 15:38 - 2018-03-03 18:18 - 000322048 _____ (Microsoft Corporation) C:\Windows\system32\msdtcuiu.dll
2018-05-09 15:38 - 2018-03-03 18:15 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xolehlp.dll
2018-05-09 15:38 - 2018-03-03 18:04 - 000741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdtcprx.dll
2018-05-09 15:38 - 2018-03-03 18:04 - 000265728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdtcuiu.dll
2018-05-09 15:38 - 2018-02-14 23:45 - 001308336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2018-05-09 15:38 - 2018-02-14 16:47 - 000747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2018-05-09 15:37 - 2018-04-22 08:53 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2018-05-09 15:37 - 2018-04-22 08:11 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2018-05-09 15:37 - 2018-04-22 08:03 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2018-05-09 15:37 - 2018-03-10 18:22 - 000035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2018-05-09 15:37 - 2018-03-10 18:21 - 000140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2018-05-09 15:37 - 2018-03-10 18:21 - 000029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2018-05-09 15:37 - 2018-03-10 18:20 - 000124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-06-07 18:26 - 2017-02-17 16:32 - 000000000 ____D C:\Users\Hanus-PC\AppData\Roaming\TS3Client
2018-06-07 17:03 - 2017-02-13 18:58 - 000000000 ____D C:\ProgramData\NVIDIA
2018-06-07 12:25 - 2017-02-20 19:49 - 000000000 ____D C:\Users\Hanus-PC\AppData\Local\CrashDumps
2018-06-07 12:21 - 2017-02-14 21:22 - 001021440 ___SH C:\Users\Hanus-PC\Desktop\Thumbs.db
2018-06-07 12:19 - 2017-02-13 18:26 - 000003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-64186151-2691123905-3617468610-1001
2018-06-07 12:13 - 2017-02-13 18:20 - 000000000 ____D C:\Users\Hanus-PC
2018-06-07 12:07 - 2013-08-22 15:36 - 000000000 ____D C:\Windows\Inf
2018-06-07 12:06 - 2013-08-22 16:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-06-06 20:57 - 2013-08-22 17:36 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2018-06-06 15:42 - 2013-08-22 17:20 - 000000000 ____D C:\Windows\CbsTemp
2018-06-06 15:36 - 2017-03-06 16:20 - 000000000 ____D C:\Users\Hanus-PC\AppData\Local\NVIDIA Corporation
2018-06-02 19:28 - 2013-08-22 15:25 - 000262144 ___SH C:\Windows\system32\config\BBI
2018-05-31 20:05 - 2017-10-15 10:53 - 000000000 ___RD C:\Users\Hanus-PC\Desktop\Hry
2018-05-31 18:53 - 2017-07-11 11:31 - 000000000 ____D C:\Users\Hanus-PC\AppData\Roaming\uTorrent
2018-05-26 11:14 - 2017-03-16 17:33 - 000000000 ____D C:\Users\Hanus-PC\AppData\Local\Ubisoft Game Launcher
2018-05-26 10:02 - 2017-02-15 17:40 - 000000000 ____D C:\ProgramData\AVAST Software
2018-05-24 18:37 - 2018-04-07 11:05 - 000004146 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-05-24 18:37 - 2018-04-07 11:05 - 000003922 _____ C:\Windows\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-05-24 18:37 - 2018-04-07 11:05 - 000003814 _____ C:\Windows\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-05-24 18:37 - 2018-04-07 11:05 - 000003798 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-05-24 18:37 - 2018-04-07 11:05 - 000003738 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-05-24 18:37 - 2018-04-07 11:05 - 000003738 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-05-24 18:37 - 2018-04-07 11:05 - 000003730 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-05-24 18:37 - 2018-04-07 11:05 - 000003494 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2018-05-24 18:37 - 2017-04-09 19:21 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2018-05-24 18:37 - 2017-02-13 19:05 - 000003370 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2018-05-24 18:37 - 2017-02-13 19:05 - 000003242 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2018-05-21 16:20 - 2017-02-14 19:28 - 000051136 _____ C:\Windows\system32\perfh01B.dat
2018-05-21 16:20 - 2017-02-14 19:28 - 000013706 _____ C:\Windows\system32\perfc01B.dat
2018-05-21 16:20 - 2014-11-21 03:39 - 000914312 _____ C:\Windows\system32\PerfStringBackup.INI
2018-05-19 11:00 - 2017-12-18 18:19 - 000160256 ___SH C:\Users\Hanus-PC\Downloads\Thumbs.db
2018-05-18 14:39 - 2017-02-20 18:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2018-05-18 14:39 - 2017-02-13 18:38 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2018-05-18 14:31 - 2017-04-09 19:20 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-05-17 17:43 - 2017-03-10 16:16 - 000000000 ____D C:\Users\Hanus-PC\Documents\My Games
2018-05-17 13:18 - 2017-02-13 19:07 - 000002263 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-05-17 13:18 - 2017-02-13 19:07 - 000002222 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-05-09 17:30 - 2013-08-22 17:36 - 000000000 ____D C:\Windows\rescache
2018-05-09 15:46 - 2013-08-22 16:44 - 000354088 _____ C:\Windows\system32\FNTCACHE.DAT
2018-05-09 15:40 - 2017-02-14 18:17 - 000000000 ____D C:\Windows\system32\MRT
2018-05-09 15:38 - 2017-10-11 17:41 - 141696960 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2018-05-09 15:38 - 2017-02-14 18:17 - 141696960 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-05-08 17:32 - 2017-09-30 15:12 - 000000000 ____D C:\ProgramData\Epic

==================== Files in the root of some directories =======

2017-03-03 16:55 - 2017-03-03 16:56 - 000007598 _____ () C:\Users\Hanus-PC\AppData\Local\Resmon.ResmonCfg

Some files in TEMP:
====================
2018-06-07 17:03 - 2018-06-07 17:03 - 000000000 _____ () C:\Users\Hanus-PC\AppData\Local\Temp\00e481b5e22dbe1f649fcddd505d3eb7.dll
2018-06-07 17:03 - 2018-06-07 17:03 - 000000017 _____ () C:\Users\Hanus-PC\AppData\Local\Temp\58eabe09b8d33d19090cf2f8beadfd63.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-06-07 15:39

==================== End of FRST.txt ============================

DJAdam
Level 3.5
Level 3.5
Příspěvky: 759
Registrován: únor 14
Pohlaví: Muž

Re: Prosím o kontrolu logu

Příspěvekod DJAdam » 07 čer 2018 19:11

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06.06.2018 01
Ran by Hanus-PC (07-06-2018 19:09:49)
Running from C:\Users\Hanus-PC\Desktop
Windows 8.1 (Update) (X64) (2017-02-13 16:20:28)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-64186151-2691123905-3617468610-500 - Administrator - Disabled)
Guest (S-1-5-21-64186151-2691123905-3617468610-501 - Limited - Disabled)
Hanus-PC (S-1-5-21-64186151-2691123905-3617468610-1001 - Administrator - Enabled) => C:\Users\Hanus-PC
HomeGroupUser$ (S-1-5-21-64186151-2691123905-3617468610-1003 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\uTorrent) (Version: 3.5.3.44396 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 18.011.20040 - Adobe Systems Incorporated)
Age of Empires II HD The Forgotten (HKLM-x32\...\QWdlb2ZFbXBpcmVzSUlIRFRoZUZvcmdvdHRlbg==_is1) (Version: 1 - )
Age of Empires II: HD Edition - Slovenčina (HKLM-x32\...\{9E8F3F5F-6067-4578-B2A8-97DD49B918AB}_is1) (Version: 4.5.0 - Miro "Valec" Valko)
Age of Chivalry Hegemony 2.02 (HKLM-x32\...\Age of Chivalry Hegemony) (Version: 2.02 - )
Aktualizácie NVIDIA 31.1.10.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.1.10.0 - NVIDIA Corporation) Hidden
Ancestors Legacy (HKLM-x32\...\Ancestors Legacy_is1) (Version: - )
Assassin's Creed IV Black Flag version 1.07 (HKLM-x32\...\{0616F772-5099-41A0-A20F-339C74FDAE95}_is1) (Version: 1.07 - Ubisoft)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - ‪Canon Inc.‬)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - ‪Canon Inc.‬)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.0.0 - Canon Inc.)
Canon MG4200 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG4200_series) (Version: 1.01 - Canon Inc.)
Canon MG4200 series On-screen Manual (HKLM-x32\...\Canon MG4200 series On-screen Manual) (Version: 7.5.0 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 1.1.2 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 1.0.1 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.0.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.0.0 - Canon Inc.)
CPUID CPU-Z 1.78 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) <==== ATTENTION
CPUID HWMonitor 1.31 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
CrystalDiskInfo 7.0.5 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.0.5 - Crystal Dew World)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.7.0.0337 - Disc Soft Ltd)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 397.31 - NVIDIA Corporation) Hidden
Epic Games Launcher (HKLM-x32\...\{9F55B4DA-23ED-44FA-910E-BDDBD6D942CF}) (Version: 1.1.123.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Far Cry Primal (HKLM-x32\...\{80BD47AF-CF13-49B2-99BF-7E78FBA26124}_is1) (Version: - Ubisoft)
GameRanger (HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\GameRanger) (Version: - GameRanger Technologies)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 66.0.3359.181 - Spoločnosť Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{5454083B-1308-4485-BF17-1110000D8301}) (Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{5454083B-1308-4485-BF17-1110000D8302}) (Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes verzia 3.5.1.2522 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
MiniTool Partition Wizard Free 9.1 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Solution Ltd.)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
NVIDIA 3D Vision radič ovládača 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.13.1.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.13.1.30 - NVIDIA Corporation)
NVIDIA Grafický ovládač 397.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 397.31 - NVIDIA Corporation)
NVIDIA Ovládač 3D Vision 397.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 397.31 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.37.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.1 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
NVIDIA Virtuálny zvuk Miracast 397.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 397.31 - NVIDIA Corporation)
Ovládací panel NVIDIA 397.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 397.31 - NVIDIA Corporation) Hidden
Registrácia používateľa produktu Canon MG4200 series (HKLM-x32\...\Registrácia používateľa produktu Canon MG4200 series) (Version: - Canon Inc.‎)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.3.8 - Rockstar Games)
RogueKiller version 12.12.20.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12.12.20.0 - Adlice Software)
Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.6.1 - Sophos Limited)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.1 - TeamSpeak Systems GmbH)
The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.31.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Blood and Wine (HKLM-x32\...\Blood and Wine_is1) (Version: 1.24.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Free DLC program (16 DLC) (HKLM-x32\...\Free DLC program (16 DLC)_is1) (Version: 1.24.0.0 - GOG.com)
The Witcher 3: Wild Hunt - Hearts of Stone (HKLM-x32\...\Hearts of Stone_is1) (Version: 1.24.0.0 - GOG.com)
Total War - Attila (HKLM-x32\...\Total War - Attila_is1) (Version: - )
TP-LINK TL-WN721N_TL-WN722N Driver (HKLM-x32\...\{86A7EED0-02D0-4D91-8183-8D2F23F5E6AE}) (Version: 1.3.1 - TP-LINK)
Uplay (HKLM-x32\...\Uplay) (Version: 29.1 - Ubisoft)
Vulkan Run Time Libraries 1.1.70.0 (HKLM\...\VulkanRT1.1.70.0) (Version: 1.1.70.0 - LunarG, Inc.) Hidden
War Thunder Launcher 1.0.3.35 (HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
WinRAR 5.40 (64-bitová verzia) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
World of Tanks (HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)
World of Warships (HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version: - Wargaming.net)
Zemana AntiMalware (HKLM-x32\...\{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.74.0.150 - Zemana Ltd.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll [2018-06-07] ()
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\WinRar\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\WinRar\rarext32.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => D:\DAEMON Tools Lite\DTShl64.dll [2018-01-12] (Disc Soft Ltd)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => D:\DAEMON Tools Lite\DTShl64.dll [2018-01-12] (Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2018-04-22] (NVIDIA Corporation)
ContextMenuHandlers6: [2.0 Zemana AntiMalware] -> {6ABB1C11-E261-4CEA-BBB5-3836225689DD} => C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll [2018-06-07] ()
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\WinRar\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\WinRar\rarext32.dll [2016-08-15] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {19A380AE-9D10-4B85-B99A-79FA56C62A30} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-02-09] (Adobe Systems Incorporated)
Task: {1FC904B1-CF2F-41BE-8FF7-3DA50109F0C9} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-03-24] (NVIDIA Corporation)
Task: {27FE880D-E6ED-4692-AB75-CFDD7386AAD4} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-03-24] (NVIDIA Corporation)
Task: {2B828D56-2978-49DC-965E-38E94DAC1782} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-13] (Google Inc.)
Task: {4CF55725-60CA-41C9-BBC3-F7C3B0A531FB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-01-12] (Microsoft Corporation)
Task: {62FC8551-756A-4015-B8C1-4EA18E7D342E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-01-12] (Microsoft Corporation)
Task: {7651964F-1375-4736-A379-845DBD1CD12E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-03-24] (NVIDIA Corporation)
Task: {88E1EB55-A7A5-4514-848A-2F0CD7113894} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-03-24] (NVIDIA Corporation)
Task: {8DA95F52-9CA8-416E-9F0F-3FE431EB40CC} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-03-24] (NVIDIA Corporation)
Task: {8FE0F83A-E206-4062-BA0B-44850AE02821} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-01-12] (Microsoft Corporation)
Task: {9A78845F-4407-4CEE-A99E-FE4BCEFD0DC1} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-03-24] (NVIDIA Corporation)
Task: {A43EAC17-119E-4808-A2C1-FBB2EAA46631} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-03-24] (NVIDIA Corporation)
Task: {C6918BB4-BC65-4FF7-B37C-95B353910184} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-13] (Google Inc.)
Task: {E19DA2C4-CCE7-4CAA-9ADC-FC8C02AD3253} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-03-24] (NVIDIA Corporation)
Task: {EA6DEBDA-5E31-422A-967E-190E83B5D90D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-01-12] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2018-06-07 12:11 - 2018-06-07 12:11 - 000155504 _____ () C:\Program Files (x86)\Zemana AntiMalware\ZAMShellExt64.dll
2017-02-13 20:11 - 2017-02-13 20:12 - 000183296 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\ErrorReporting.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Public\AppData:CSM [466]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2018-06-07 19:07 - 000000813 _____ C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-64186151-2691123905-3617468610-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Hanus-PC\Downloads\lamborghini_47-wallpaper-1920x1080.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: BEService => 3
MSCONFIG\Services: Disc Soft Lite Bus Service => 3
MSCONFIG\Services: EasyAntiCheat => 3
MSCONFIG\Services: GalaxyClientService => 3
MSCONFIG\Services: GalaxyCommunication => 3
MSCONFIG\Services: IDriverT => 3
MSCONFIG\Services: IJPLMSVC => 2
MSCONFIG\Services: MBAMService => 2
MSCONFIG\Services: NvContainerLocalSystem => 2
MSCONFIG\Services: NvContainerNetworkService => 3
MSCONFIG\Services: NVDisplay.ContainerLocalSystem => 2
MSCONFIG\Services: NVIDIA Wireless Controller Service => 2
MSCONFIG\Services: NvTelemetryContainer => 2
MSCONFIG\Services: Origin Client Service => 3
MSCONFIG\Services: Origin Web Helper Service => 2
MSCONFIG\Services: Steam Client Service => 3
HKLM\...\StartupApproved\Run32: => "IJNetworkScannerSelectorEX"
HKLM\...\StartupApproved\Run32: => "CanonQuickMenu"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\StartupApproved\Run: => "GalaxyClient"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\StartupApproved\Run: => "Bloody2"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\StartupApproved\Run: => "Gaijin.Net Agent"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\StartupApproved\Run: => "World of Tanks"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\StartupApproved\Run: => "WarThunderLauncher"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{73489C28-2D08-4772-B223-366B12DA0E8C}] => (Allow) B:\Steam\Steam.exe
FirewallRules: [{82D111BE-11D3-44D0-A2F8-CCD324AEF2A3}] => (Allow) B:\Steam\Steam.exe
FirewallRules: [{0AD46A52-35C7-4E10-8946-15716827536F}] => (Allow) B:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{F79AB4A6-4C2D-459F-AC3A-1D09ACA38CDF}] => (Allow) B:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{DC42ACF3-9293-498C-A04B-1CD7DF367EDB}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{67698F9E-A665-46A7-BE51-5DA7727A05A4}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{2CCE36A1-3D77-486E-BDD2-2C8DCE350D5D}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{D6513D55-D15E-4236-844A-27D5E87DAC99}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{CC0B3FDC-118A-4D2E-A62F-1B73E5CE5EA4}] => (Allow) D:\Steam\steamapps\common\Rust\Rust.exe
FirewallRules: [{B22FBF7A-A832-4FA2-B07D-3A7120164825}] => (Allow) D:\Steam\steamapps\common\Rust\Rust.exe
FirewallRules: [{98777A62-4221-4982-A934-AFC200C65787}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{56350BE4-756E-4FA0-B207-CF418E234C01}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{B9848167-CDC6-4ED9-B31D-1F0113E7E59E}] => (Allow) D:\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe
FirewallRules: [{A17740F3-0C31-4573-BCEB-83AAAE2C94CF}] => (Allow) D:\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe
FirewallRules: [{6D9A777D-9913-439A-A80E-18AF90E25C0A}] => (Allow) D:\Steam\steamapps\common\Half-Life\hl.exe
FirewallRules: [{2A2C06B3-0578-4DFB-9091-B36B57D3D361}] => (Allow) D:\Steam\steamapps\common\Half-Life\hl.exe
FirewallRules: [TCP Query User{C60572BA-EE06-43C2-9A88-F86EDC14E208}D:\v1.05_raft_win64\v1.05_raft_win64.exe] => (Allow) D:\v1.05_raft_win64\v1.05_raft_win64.exe
FirewallRules: [UDP Query User{66E74ABF-0B44-4E7F-B787-F47B4807D838}D:\v1.05_raft_win64\v1.05_raft_win64.exe] => (Allow) D:\v1.05_raft_win64\v1.05_raft_win64.exe
FirewallRules: [{2A064480-824E-49B3-BB2B-99807C96D26D}] => (Allow) D:\World OF Warships\WoWSLauncher.exe
FirewallRules: [{226AA4AB-7D77-4981-AF4C-A60755AC17D5}] => (Allow) D:\World OF Warships\WoWSLauncher.exe
FirewallRules: [{1FD9C593-E9F5-4C56-9826-C31AEA8FE640}] => (Allow) D:\World OF Warships\worldofwarships.exe
FirewallRules: [{47E4EE3F-C59D-4DB7-8651-429EDE83F85E}] => (Allow) D:\World OF Warships\worldofwarships.exe
FirewallRules: [TCP Query User{F5B2AD94-6373-4F74-8805-59FEF3A2B400}D:\rockstar games v\grand theft auto v\gta5.exe] => (Allow) D:\rockstar games v\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{3B6857B4-180B-4A08-9C2F-29E46D34747C}D:\rockstar games v\grand theft auto v\gta5.exe] => (Allow) D:\rockstar games v\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{B31DA357-DEC1-4FAD-99DA-7BC9D2726EAD}D:\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Allow) D:\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
FirewallRules: [UDP Query User{A91A31F8-2243-4CAA-9926-289AFD5C21D3}D:\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Allow) D:\steam\steamapps\common\h1z1 king of the kill\h1z1.exe
FirewallRules: [{B447EC85-99C7-4D9B-9FFB-FEEF112B0946}] => (Allow) D:\Steam\steamapps\common\Stronghold Crusader 2\bin\win32_release\Crusader2.exe
FirewallRules: [{2D9687BB-DD3F-4806-94F5-9F62CFA9C3EB}] => (Allow) D:\Steam\steamapps\common\Stronghold Crusader 2\bin\win32_release\Crusader2.exe
FirewallRules: [TCP Query User{6DF55662-C08B-4561-A46C-9EF065741B77}D:\steam\steamapps\common\insurgency2\insurgency.exe] => (Allow) D:\steam\steamapps\common\insurgency2\insurgency.exe
FirewallRules: [UDP Query User{F8B0BB5D-F726-49E3-8D0D-41AB5BEE2C12}D:\steam\steamapps\common\insurgency2\insurgency.exe] => (Allow) D:\steam\steamapps\common\insurgency2\insurgency.exe
FirewallRules: [{71F51155-C555-48F8-8091-7B27FA47ABFC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{EC6F9FF5-B6A3-4409-B39B-54B75EDBC97C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{B2BBF429-F0C8-4226-89AD-C6E64D1A5ECC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{371BF0D0-313A-4C8E-B4FB-E7A59072BBBF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{E261969E-8ACA-4D91-822C-D1DEF4E96C54}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{D31F130C-C2F1-4460-BE16-E1D1507919D1}D:\steam\steamapps\common\project argo (prototype)\argo.exe] => (Allow) D:\steam\steamapps\common\project argo (prototype)\argo.exe
FirewallRules: [UDP Query User{18572A05-86A4-496F-A284-CF04A1914A4D}D:\steam\steamapps\common\project argo (prototype)\argo.exe] => (Allow) D:\steam\steamapps\common\project argo (prototype)\argo.exe
FirewallRules: [TCP Query User{51D4089F-7F0E-4AD7-8CA3-7617D87BCB67}D:\steam\steamapps\common\project argo (prototype)\argo_x64.exe] => (Allow) D:\steam\steamapps\common\project argo (prototype)\argo_x64.exe
FirewallRules: [UDP Query User{FB1B0C94-855D-47DF-99B1-7FCA0DB47B36}D:\steam\steamapps\common\project argo (prototype)\argo_x64.exe] => (Allow) D:\steam\steamapps\common\project argo (prototype)\argo_x64.exe
FirewallRules: [{D09B55B8-B0A4-46C8-9704-5309A1ACB1F2}] => (Allow) D:\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe
FirewallRules: [{5FF7AB93-7898-4C3F-BFFE-555F0683940A}] => (Allow) D:\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe
FirewallRules: [TCP Query User{03520A72-A863-4933-B5E7-5E1CA6CE9632}D:\steam\steamapps\common\argo\argo_x64.exe] => (Allow) D:\steam\steamapps\common\argo\argo_x64.exe
FirewallRules: [UDP Query User{8016BEAD-1A47-4F14-858F-6FD37513C232}D:\steam\steamapps\common\argo\argo_x64.exe] => (Allow) D:\steam\steamapps\common\argo\argo_x64.exe
FirewallRules: [TCP Query User{2EC2D69D-B612-4A97-89D1-81162F287903}C:\users\hanus-pc\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\hanus-pc\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{FF9287BC-8D79-4567-AB84-93C30F1D1EA5}C:\users\hanus-pc\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\hanus-pc\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{D3804A30-672D-46F5-92B9-C1FC85D97D37}] => (Allow) D:\Steam\steamapps\common\Miscreated\Miscreated.exe
FirewallRules: [{C6F7EF5F-C770-4928-814A-EC0259A77CD6}] => (Allow) D:\Steam\steamapps\common\Miscreated\Miscreated.exe
FirewallRules: [{98E9B4CD-6E49-426F-BFEB-EE775776E0A0}] => (Allow) D:\Steam\steamapps\common\Miscreated\Bin64\Miscreated.exe
FirewallRules: [{BC6B8C23-2E51-4413-A77F-3AEDDA402144}] => (Allow) D:\Steam\steamapps\common\Miscreated\Bin64\Miscreated.exe
FirewallRules: [{8F463666-EE59-4126-9349-72313CEDB4F2}] => (Allow) D:\Steam\steamapps\common\Miscreated\EasyAntiCheat\EasyAntiCheat_x64.dll
FirewallRules: [{AEF15543-3752-4C72-BA58-BA6B3943414A}] => (Allow) D:\Steam\steamapps\common\Miscreated\EasyAntiCheat\EasyAntiCheat_x64.dll
FirewallRules: [TCP Query User{3BDB4942-135E-444D-A66D-F3AB78924D82}D:\warthunder\launcher.exe] => (Allow) D:\warthunder\launcher.exe
FirewallRules: [UDP Query User{CDACAEE4-62C7-4E55-BE00-9F10CC45064C}D:\warthunder\launcher.exe] => (Allow) D:\warthunder\launcher.exe
FirewallRules: [TCP Query User{8B44A003-1CFB-42D0-B8A4-E79353B5BD95}D:\warthunder\win64\aces.exe] => (Allow) D:\warthunder\win64\aces.exe
FirewallRules: [UDP Query User{241990FB-C9FC-4362-A462-069046C960A9}D:\warthunder\win64\aces.exe] => (Allow) D:\warthunder\win64\aces.exe
FirewallRules: [TCP Query User{5FD0C88A-7778-408E-8FAB-4EB91006B11A}D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [UDP Query User{3CD68B57-0C91-4C3E-887D-9234688D46D6}D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [TCP Query User{4D6F97CF-68CE-4442-9282-C64640E4EC37}D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{412DEA8F-AB1D-4169-833B-B2E0FDA83D34}D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{1899EE41-7F24-4AA9-AE82-5DA2F696A457}D:\age of empires 2 the conquerors\age of empires ii\age2_x1\age2_x1.exe] => (Allow) D:\age of empires 2 the conquerors\age of empires ii\age2_x1\age2_x1.exe
FirewallRules: [UDP Query User{D9FCC164-507C-4D83-B5BA-8748A97881AA}D:\age of empires 2 the conquerors\age of empires ii\age2_x1\age2_x1.exe] => (Allow) D:\age of empires 2 the conquerors\age of empires ii\age2_x1\age2_x1.exe
FirewallRules: [{CE607FF9-5182-4CAB-8F01-B955E035D78C}] => (Allow) C:\Windows\SysWOW64\dplaysvr.exe
FirewallRules: [{4649B275-D396-42A6-9959-AC20FEED04B5}] => (Allow) C:\Windows\SysWOW64\dplaysvr.exe
FirewallRules: [{3455A468-13FC-41FB-950B-7A616C5E1A82}] => (Allow) D:\Age of Empires 2 The Conquerors\Age of Empires II\Age2_x1\aoc.exe
FirewallRules: [{A5F722D4-7F26-4C80-8B1E-F758D39E4AB3}] => (Allow) D:\Age of Empires 2 The Conquerors\Age of Empires II\Age2_x1\aoc.exe
FirewallRules: [TCP Query User{20F5C192-B98F-437D-8BEB-F070FA073335}D:\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [UDP Query User{B5D50CD1-CE0A-45DA-8A53-160144CD5644}D:\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [{8291F9E8-1FEC-48F6-834E-D536B08B76B6}] => (Allow) D:\Steam\steamapps\common\DiRT Rally\drt.exe
FirewallRules: [{61D68380-0F6A-41BA-BB07-4C17F8257BE4}] => (Allow) D:\Steam\steamapps\common\DiRT Rally\drt.exe
FirewallRules: [{AD9F4828-E525-4789-9024-020609AA1F7C}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe
FirewallRules: [{388B0DBD-3A3C-41FB-AF24-E9B1394CBBF2}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe
FirewallRules: [{73DCCA1E-B435-49FE-BAAC-801F993E03A5}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe
FirewallRules: [{083AB9DC-91F6-4FD3-8D2B-300A1217BBF1}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe
FirewallRules: [{5CFA90EE-C977-499F-8576-60B84350C50A}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe
FirewallRules: [{62093952-14AD-4A79-AE04-E8252144E48C}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe
FirewallRules: [{43F37F0B-D218-4802-BBD2-F595F55C8C09}] => (Allow) D:\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
FirewallRules: [TCP Query User{D6B9392B-5C91-4162-B457-C77D08C1BB3D}D:\age of empires iii - complete collection\bin\age3s.exe] => (Allow) D:\age of empires iii - complete collection\bin\age3s.exe
FirewallRules: [UDP Query User{44B90549-34A6-43B5-9BED-722B425BAD22}D:\age of empires iii - complete collection\bin\age3s.exe] => (Allow) D:\age of empires iii - complete collection\bin\age3s.exe
FirewallRules: [TCP Query User{E64E7273-D40E-4603-9F9D-63D2D70D7F8D}D:\age of empires iii - complete collection\bin\age3x.exe] => (Allow) D:\age of empires iii - complete collection\bin\age3x.exe
FirewallRules: [UDP Query User{EAADA8E6-CDFD-4AA0-88A5-E644327728D2}D:\age of empires iii - complete collection\bin\age3x.exe] => (Allow) D:\age of empires iii - complete collection\bin\age3x.exe
FirewallRules: [{CA2BA797-E067-4F08-9929-D0782C39A857}] => (Allow) D:\Steam\steamapps\common\the witcher 2\Launcher.exe
FirewallRules: [{A98630D8-4E62-4F7B-A8EA-5680B3757D92}] => (Allow) D:\Steam\steamapps\common\the witcher 2\Launcher.exe
FirewallRules: [TCP Query User{88CC45A2-EAE3-4FF0-8CA3-AECE905074AD}D:\kingdom come - deliverance\bin\win64\kingdomcome.exe] => (Allow) D:\kingdom come - deliverance\bin\win64\kingdomcome.exe
FirewallRules: [UDP Query User{2089B9C9-399B-4F48-BBE3-3EA9F9F59C83}D:\kingdom come - deliverance\bin\win64\kingdomcome.exe] => (Allow) D:\kingdom come - deliverance\bin\win64\kingdomcome.exe
FirewallRules: [TCP Query User{4E1EBA13-64DC-4E80-A810-5098398385D7}D:\kingdom come - deliverance\bin\win64\kingdomcome.exe] => (Allow) D:\kingdom come - deliverance\bin\win64\kingdomcome.exe
FirewallRules: [UDP Query User{CC5EF244-82E1-4317-8A84-B6C207BA13AF}D:\kingdom come - deliverance\bin\win64\kingdomcome.exe] => (Allow) D:\kingdom come - deliverance\bin\win64\kingdomcome.exe
FirewallRules: [{B96F32F7-428C-4D27-A356-2D6EABA85E77}] => (Allow) D:\World of Tanks\WoTLauncher.exe
FirewallRules: [{27F660DE-D0B9-4F62-AB96-9637A102C068}] => (Allow) D:\World of Tanks\WoTLauncher.exe
FirewallRules: [{A1FC43DC-22F3-4FAA-AF4B-E246D6A31BEF}] => (Allow) D:\World of Tanks\worldoftanks.exe
FirewallRules: [{832ABD52-5A17-484F-A343-F7FF7793AF70}] => (Allow) D:\World of Tanks\worldoftanks.exe
FirewallRules: [TCP Query User{9714919B-4240-4E1B-86A4-8E800A80C72E}D:\steam\steamapps\common\h1z1\h1z1.exe] => (Allow) D:\steam\steamapps\common\h1z1\h1z1.exe
FirewallRules: [UDP Query User{6425AE83-CF5D-44B8-9F10-5FBC72C171CF}D:\steam\steamapps\common\h1z1\h1z1.exe] => (Allow) D:\steam\steamapps\common\h1z1\h1z1.exe
FirewallRules: [{031914AC-476F-4EE0-95D0-5010652A5928}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{99F706E2-23DE-4E44-B008-6FC35591BE64}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{94804E71-3E1B-49A3-AF8F-1C95F1D81B28}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{AEB1D0B9-F4EB-4119-95D1-DE81AD36D6C4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{23D1BAE9-283C-4CFC-9697-EC142A154C3F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{C6DD000B-D0A2-46DD-BC03-D8F5C70A7F8A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{15347EAB-99C8-4098-A28A-AD855C82D6E0}D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe
FirewallRules: [UDP Query User{3BE2E59C-3C21-4974-AF91-4919B2481A6D}D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe
FirewallRules: [{E711B340-6072-4394-85FA-97ED4E46075F}] => (Allow) D:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe
FirewallRules: [{D2717838-E7BC-4F72-8EE3-00C5909E3B7B}] => (Allow) D:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe
FirewallRules: [TCP Query User{D475EFE5-3180-41C6-8B57-A59204A34C97}C:\users\hanus-pc\appdata\roaming\gameranger\gameranger\gameranger.exe] => (Allow) C:\users\hanus-pc\appdata\roaming\gameranger\gameranger\gameranger.exe
FirewallRules: [UDP Query User{7899841B-448A-4085-9BE7-A71A85CAED9A}C:\users\hanus-pc\appdata\roaming\gameranger\gameranger\gameranger.exe] => (Allow) C:\users\hanus-pc\appdata\roaming\gameranger\gameranger\gameranger.exe
FirewallRules: [TCP Query User{CEF282FF-08E4-4813-BAF6-FA75CC15212E}D:\age of empires iii - complete collection\bin\age3.exe] => (Allow) D:\age of empires iii - complete collection\bin\age3.exe
FirewallRules: [UDP Query User{931D597A-2346-4C98-AA14-34D63434634B}D:\age of empires iii - complete collection\bin\age3.exe] => (Allow) D:\age of empires iii - complete collection\bin\age3.exe
FirewallRules: [TCP Query User{4417E6DA-C2ED-4D93-9C88-85AC96C447C0}D:\age of empires iii - complete collection\bin\age3y.exe] => (Allow) D:\age of empires iii - complete collection\bin\age3y.exe
FirewallRules: [UDP Query User{ECD50BCC-77D2-46C3-A8FB-A25D4AD13189}D:\age of empires iii - complete collection\bin\age3y.exe] => (Allow) D:\age of empires iii - complete collection\bin\age3y.exe
FirewallRules: [TCP Query User{4E6609DE-82E3-4E8D-85F8-ACDAAF1FEEEF}D:\total war attila\total war - attila\attila.exe] => (Allow) D:\total war attila\total war - attila\attila.exe
FirewallRules: [UDP Query User{C812E15D-D4B0-4BDF-9635-03190EC371C3}D:\total war attila\total war - attila\attila.exe] => (Allow) D:\total war attila\total war - attila\attila.exe
FirewallRules: [{989D6430-3EF9-42B7-80AE-405E243B81D0}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{AFD0808B-48C1-4CA3-BA5E-283CC1B15013}D:\far cry primal\bin\fcprimal.exe] => (Allow) D:\far cry primal\bin\fcprimal.exe
FirewallRules: [UDP Query User{C14F2FF3-3CC7-4E6F-8144-825FECA5F88E}D:\far cry primal\bin\fcprimal.exe] => (Allow) D:\far cry primal\bin\fcprimal.exe
FirewallRules: [{8A93D348-7306-47C4-A7C3-5E1E800ACDE4}] => (Allow) D:\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{828460C1-3BF8-4454-88B9-98FBAF1A0765}] => (Allow) D:\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe

==================== Restore Points =========================

07-06-2018 15:52:12 Scheduled Checkpoint

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/07/2018 12:25:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: DTShellHlp.exe, verzia: 10.7.0.337, časová značka: 0x5a58e247
Názov chybujúceho modulu: DTShellHlp.exe, verzia: 10.7.0.337, časová značka: 0x5a58e247
Kód výnimky: 0xc0000005
Odstup chyby: 0x000000000000c7dd
Identifikácia chybujúceho procesu: 0xda8
Čas spustenia chybujúcej aplikácie: 0x01d3fe49d0af9421
Cesta chybujúcej aplikácie: D:\DAEMON Tools Lite\DTShellHlp.exe
Cesta chybujúceho modulu: D:\DAEMON Tools Lite\DTShellHlp.exe
Identifikácia hlásenia: 183bfa59-6a3d-11e8-8476-448a5b9b27f4
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (06/07/2018 12:23:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: DTShellHlp.exe, verzia: 10.7.0.337, časová značka: 0x5a58e247
Názov chybujúceho modulu: DTShellHlp.exe, verzia: 10.7.0.337, časová značka: 0x5a58e247
Kód výnimky: 0xc0000005
Odstup chyby: 0x000000000000c7dd
Identifikácia chybujúceho procesu: 0xcc8
Čas spustenia chybujúcej aplikácie: 0x01d3fe498fc5e91a
Cesta chybujúcej aplikácie: D:\DAEMON Tools Lite\DTShellHlp.exe
Cesta chybujúceho modulu: D:\DAEMON Tools Lite\DTShellHlp.exe
Identifikácia hlásenia: ce149583-6a3c-11e8-8476-448a5b9b27f4
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (06/07/2018 12:22:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: DTShellHlp.exe, verzia: 10.7.0.337, časová značka: 0x5a58e247
Názov chybujúceho modulu: DTShellHlp.exe, verzia: 10.7.0.337, časová značka: 0x5a58e247
Kód výnimky: 0xc0000005
Odstup chyby: 0x000000000000c7dd
Identifikácia chybujúceho procesu: 0x12a8
Čas spustenia chybujúcej aplikácie: 0x01d3fe477cb23570
Cesta chybujúcej aplikácie: D:\DAEMON Tools Lite\DTShellHlp.exe
Cesta chybujúceho modulu: D:\DAEMON Tools Lite\DTShellHlp.exe
Identifikácia hlásenia: b1c5367f-6a3c-11e8-8476-448a5b9b27f4
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (06/06/2018 08:29:02 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT AUTHORITY)
Description: There was an error with the Windows Location Provider database

Error: (06/01/2018 05:04:39 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT AUTHORITY)
Description: There was an error with the Windows Location Provider database

Error: (05/28/2018 11:38:44 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: run.exe, verzia: 1.0.0.0, časová značka: 0x5ababe7c
Názov chybujúceho modulu: unknown, verzia: 0.0.0.0, časová značka: 0x00000000
Kód výnimky: 0xc0000005
Odstup chyby: 0x00007ffdff794c7c
Identifikácia chybujúceho procesu: 0x448
Čas spustenia chybujúcej aplikácie: 0x01d3f65e79d5122d
Cesta chybujúcej aplikácie: C:\Users\Hanus-PC\Desktop\GTA V Cheaty\GTA 5\run.exe
Cesta chybujúceho modulu: unknown
Identifikácia hlásenia: e943986b-625a-11e8-846a-448a5b9b27f4
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (05/28/2018 11:38:44 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: run.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.NullReferenceException
at (\] kTXX$0CdEw\,vB{uCb\&RpR!.‮‪‏​‬‬‬‎‮‬‎‌‫‬‍‏‮‬‪‍‮‬‪‭‫‫‎‌‌‮()
at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Threading.ThreadHelper.ThreadStart()

Error: (05/28/2018 09:55:06 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Cryptographic Services zlyhala pri spracovávaní volania OnIdentity() v objekte System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary MpKsl35ed0977.

System Error:
Systém nemôže nájsť zadaný súbor.
.


System errors:
=============
Error: (06/07/2018 03:40:07 PM) (Source: DCOM) (EventID: 10010) (User: HanusPC)
Description: The server {1B1F472E-3221-4826-97DB-2C2324D389AE} did not register with DCOM within the required timeout.

Error: (06/07/2018 03:39:36 PM) (Source: DCOM) (EventID: 10010) (User: HanusPC)
Description: The server {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} did not register with DCOM within the required timeout.

Error: (06/07/2018 03:36:15 PM) (Source: DCOM) (EventID: 10010) (User: HanusPC)
Description: The server {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} did not register with DCOM within the required timeout.

Error: (06/07/2018 03:35:45 PM) (Source: DCOM) (EventID: 10010) (User: HanusPC)
Description: The server {1B1F472E-3221-4826-97DB-2C2324D389AE} did not register with DCOM within the required timeout.

Error: (06/07/2018 12:40:49 PM) (Source: DCOM) (EventID: 10010) (User: HanusPC)
Description: The server {1B1F472E-3221-4826-97DB-2C2324D389AE} did not register with DCOM within the required timeout.

Error: (06/07/2018 12:40:19 PM) (Source: DCOM) (EventID: 10010) (User: HanusPC)
Description: The server {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} did not register with DCOM within the required timeout.

Error: (06/07/2018 12:20:39 PM) (Source: DCOM) (EventID: 10010) (User: HanusPC)
Description: The server {1B1F472E-3221-4826-97DB-2C2324D389AE} did not register with DCOM within the required timeout.

Error: (06/07/2018 12:20:09 PM) (Source: DCOM) (EventID: 10010) (User: HanusPC)
Description: The server {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} did not register with DCOM within the required timeout.


Windows Defender:
===================================
Date: 2018-06-07 12:40:33.701
Description:
Windows Defender scan has been stopped before completion.
Scan ID: {B49BE105-D966-4ACF-98BC-8115ED551AC0}
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2018-06-07 12:19:56.432
Description:
Windows Defender scan has been stopped before completion.
Scan ID: {AAFC21F1-087A-40C8-8334-ACD191F54A0A}
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2018-06-06 21:15:44.494
Description:
Windows Defender has detected malware or other potentially unwanted software.
For more information please see the following:
http://go.microsoft.com/fwlink/?linkid= ... terprise=0
Name: Trojan:Win32/Tiggre!plock
ID: 2147723626
Severity: Závažná
Category: Trójsky kôň
Path: file:_C:\Users\Hanus-PC\Desktop\zoek.exe
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: Real-Time Protection
Process Name: C:\Windows\explorer.exe
Signature Version: AV: 1.269.761.0, AS: 1.269.761.0, NIS: 119.0.0.0
Engine Version: AM: 1.1.14901.4, NIS: 2.1.14600.4

Date: 2018-06-06 20:47:45.455
Description:
Windows Defender has detected malware or other potentially unwanted software.
For more information please see the following:
http://go.microsoft.com/fwlink/?linkid= ... terprise=0
Name: Trojan:Win32/Tiggre!plock
ID: 2147723626
Severity: Závažná
Category: Trójsky kôň
Path: file:_C:\Users\Hanus-PC\Downloads\zoek.exe;webfile:_C:\Users\Hanus-PC\Downloads\zoek.exe|http://download.bleepingcomputer.com/smeenk/zoek.exe|chrome.exe
Detection Origin: Internet
Detection Type: FastPath
Detection Source: Downloads and attachments
Process Name: Unknown
Signature Version: AV: 1.269.761.0, AS: 1.269.761.0, NIS: 0.0.0.0
Engine Version: AM: 1.1.14901.4, NIS: 0.0.0.0

Date: 2018-06-06 20:46:56.541
Description:
Windows Defender has detected malware or other potentially unwanted software.
For more information please see the following:
http://go.microsoft.com/fwlink/?linkid= ... terprise=0
Name: Trojan:Win32/Tiggre!plock
ID: 2147723626
Severity: Závažná
Category: Trójsky kôň
Path: file:_C:\Users\Hanus-PC\Downloads\zoek.exe
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: Real-Time Protection
Process Name: C:\Windows\System32\SearchProtocolHost.exe
Signature Version: AV: 1.269.761.0, AS: 1.269.761.0, NIS: 119.0.0.0
Engine Version: AM: 1.1.14901.4, NIS: 2.1.14600.4

Date: 2018-05-26 10:02:03.129
Description:
Windows Defender has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 0.0.0.0
Update Source: Microsoft Malware Protection Center
Signature Type: Network Inspection System
Update Type: Full
Current Engine Version:
Previous Engine Version: 0.0.0.0
Error code: 0x80072f8f
Error description: A security error occurred

Date: 2018-05-26 10:02:02.645
Description:
Windows Defender has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.235.2880.0
Update Source: Microsoft Malware Protection Center
Signature Type: AntiSpyware
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.13407.0
Error code: 0x80072f8f
Error description: A security error occurred

Date: 2018-05-26 10:02:02.645
Description:
Windows Defender has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.235.2880.0
Update Source: Microsoft Malware Protection Center
Signature Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.13407.0
Error code: 0x80072f8f
Error description: A security error occurred

Date: 2018-05-26 10:02:01.598
Description:
Windows Defender has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.235.2880.0
Update Source: Microsoft Update Server
Signature Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.13407.0
Error code: 0x8024001e
Error description: Počas vyhľadávania aktualizácií sa vyskytol neočakávaný problém. Informácie o inštalácii aktualizácií a riešení problémov s aktualizáciami nájdete v Pomoci a technickej podpore.

Date: 2018-05-26 10:02:01.535
Description:
Windows Defender has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 1.235.2880.0
Update Source: Microsoft Update Server
Signature Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.13407.0
Error code: 0x8024001e
Error description: Počas vyhľadávania aktualizácií sa vyskytol neočakávaný problém. Informácie o inštalácii aktualizácií a riešení problémov s aktualizáciami nájdete v Pomoci a technickej podpore.

CodeIntegrity:
===================================

Date: 2018-05-25 19:50:03.079
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-05-25 19:50:02.936
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-05-25 19:50:02.793
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-05-25 19:50:02.651
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-05-25 19:50:02.510
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-05-25 19:50:02.362
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-05-25 19:50:02.218
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

Date: 2018-05-25 19:50:02.074
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-4460 CPU @ 3.20GHz
Percentage of memory in use: 18%
Total physical RAM: 8131.32 MB
Available physical RAM: 6661.68 MB
Total Virtual: 9539.32 MB
Available Virtual: 7632.11 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:51.3 GB) (Free:15.88 GB) NTFS
Drive d: (Dáta) (Fixed) (Total:879.69 GB) (Free:296.97 GB) NTFS

\\?\Volume{d9a66746-4d57-4eb0-b932-ea6dea8800b9}\ (Obnovenie) (Fixed) (Total:0.29 GB) (Free:0.28 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt ============================

DJAdam
Level 3.5
Level 3.5
Příspěvky: 759
Registrován: únor 14
Pohlaví: Muž

Re: Prosím o kontrolu logu

Příspěvekod DJAdam » 07 čer 2018 19:12

Čo znamená ked je datový kabel zoxidovaný ?

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 38602
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Prosím o kontrolu logu

Příspěvekod jaro3 » 07 čer 2018 21:03

že špatně přenáší el. proud , kontakty jsou zněčištěné , nebo je kabel vadný , přerušený , příp. je vadný konektor SATA ( dát do jiného).

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CloseProcesses:
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {487d2ad1-fdc6-11e6-8268-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {64414355-4da9-11e7-82da-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {64414373-4da9-11e7-82da-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {6441437a-4da9-11e7-82da-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {66f18f3a-0800-11e8-83f1-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {66f18f63-0800-11e8-83f1-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {66f18f6d-0800-11e8-83f1-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {904423b4-80d3-11e7-832c-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {904423d2-80d3-11e7-832c-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {def8ff9f-e23a-11e7-83ba-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {e98ee506-03fb-11e8-83ec-448a5b9b27f4} - "F:\setup.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {e98ee51f-03fb-11e8-83ec-448a5b9b27f4} - "G:\setup.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {efe674f4-f207-11e6-824f-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {efe67501-f207-11e6-824f-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
SearchScopes: HKU\S-1-5-21-64186151-2691123905-3617468610-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
CHR HKU\S-1-5-21-64186151-2691123905-3617468610-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Hanus-PC\AppData\Local\Temp\00e481b5e22dbe1f649fcddd505d3eb7.dll
C:\Users\Hanus-PC\AppData\Local\Temp\58eabe09b8d33d19090cf2f8beadfd63.dll
C:\ProgramData\AVAST Software
CPUID CPU-Z 1.78 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) <==== ATTENTION
Task: {2B828D56-2978-49DC-965E-38E94DAC1782} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-13] (Google Inc.)
Task: {C6918BB4-BC65-4FF7-B37C-95B353910184} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-13] (Google Inc.)

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

DJAdam
Level 3.5
Level 3.5
Příspěvky: 759
Registrován: únor 14
Pohlaví: Muž

Re: Prosím o kontrolu logu

Příspěvekod DJAdam » 08 čer 2018 16:40

Nejde mi to..
Urobil som presne to čo ste mi napísali a ked dám FIX tak ukáže toto
Nemáte oprávnění prohlížet přiložené soubory.

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 38602
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Prosím o kontrolu logu

Příspěvekod jaro3 » 08 čer 2018 18:36

Ulož jej na na plochu jako fixlist.txt
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

DJAdam
Level 3.5
Level 3.5
Příspěvky: 759
Registrován: únor 14
Pohlaví: Muž

Re: Prosím o kontrolu logu

Příspěvekod DJAdam » 08 čer 2018 20:23

Aha... ja som nemal ten FRST na prac.ploche :D

Fix result of Farbar Recovery Scan Tool (x64) Version: 06.06.2018 01
Ran by Hanus-PC (08-06-2018 20:19:57) Run:1
Running from C:\Users\Hanus-PC\Desktop
Loaded Profiles: Hanus-PC (Available Profiles: Hanus-PC)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {487d2ad1-fdc6-11e6-8268-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {64414355-4da9-11e7-82da-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {64414373-4da9-11e7-82da-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {6441437a-4da9-11e7-82da-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {66f18f3a-0800-11e8-83f1-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {66f18f63-0800-11e8-83f1-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {66f18f6d-0800-11e8-83f1-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {904423b4-80d3-11e7-832c-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {904423d2-80d3-11e7-832c-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {def8ff9f-e23a-11e7-83ba-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {e98ee506-03fb-11e8-83ec-448a5b9b27f4} - "F:\setup.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {e98ee51f-03fb-11e8-83ec-448a5b9b27f4} - "G:\setup.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {efe674f4-f207-11e6-824f-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-64186151-2691123905-3617468610-1001\...\MountPoints2: {efe67501-f207-11e6-824f-448a5b9b27f4} - "F:\HiSuiteDownLoader.exe"
SearchScopes: HKU\S-1-5-21-64186151-2691123905-3617468610-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
CHR HKU\S-1-5-21-64186151-2691123905-3617468610-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\Hanus-PC\AppData\Local\Temp\00e481b5e22dbe1f649fcddd505d3eb7.dll
C:\Users\Hanus-PC\AppData\Local\Temp\58eabe09b8d33d19090cf2f8beadfd63.dll
C:\ProgramData\AVAST Software
CPUID CPU-Z 1.78 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) <==== ATTENTION
Task: {2B828D56-2978-49DC-965E-38E94DAC1782} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-13] (Google Inc.)
Task: {C6918BB4-BC65-4FF7-B37C-95B353910184} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-13] (Google Inc.)

EmptyTemp:
End
*****************

Processes closed successfully.
"HKU\S-1-5-21-64186151-2691123905-3617468610-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{487d2ad1-fdc6-11e6-8268-448a5b9b27f4}" => removed successfully
HKLM\Software\Classes\CLSID\{487d2ad1-fdc6-11e6-8268-448a5b9b27f4} => not found
"HKU\S-1-5-21-64186151-2691123905-3617468610-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{64414355-4da9-11e7-82da-448a5b9b27f4}" => removed successfully
HKLM\Software\Classes\CLSID\{64414355-4da9-11e7-82da-448a5b9b27f4} => not found
"HKU\S-1-5-21-64186151-2691123905-3617468610-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{64414373-4da9-11e7-82da-448a5b9b27f4}" => removed successfully
HKLM\Software\Classes\CLSID\{64414373-4da9-11e7-82da-448a5b9b27f4} => not found
"HKU\S-1-5-21-64186151-2691123905-3617468610-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6441437a-4da9-11e7-82da-448a5b9b27f4}" => removed successfully
HKLM\Software\Classes\CLSID\{6441437a-4da9-11e7-82da-448a5b9b27f4} => not found
"HKU\S-1-5-21-64186151-2691123905-3617468610-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{66f18f3a-0800-11e8-83f1-448a5b9b27f4}" => removed successfully
HKLM\Software\Classes\CLSID\{66f18f3a-0800-11e8-83f1-448a5b9b27f4} => not found
"HKU\S-1-5-21-64186151-2691123905-3617468610-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{66f18f63-0800-11e8-83f1-448a5b9b27f4}" => removed successfully
HKLM\Software\Classes\CLSID\{66f18f63-0800-11e8-83f1-448a5b9b27f4} => not found
"HKU\S-1-5-21-64186151-2691123905-3617468610-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{66f18f6d-0800-11e8-83f1-448a5b9b27f4}" => removed successfully
HKLM\Software\Classes\CLSID\{66f18f6d-0800-11e8-83f1-448a5b9b27f4} => not found
"HKU\S-1-5-21-64186151-2691123905-3617468610-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{904423b4-80d3-11e7-832c-448a5b9b27f4}" => removed successfully
HKLM\Software\Classes\CLSID\{904423b4-80d3-11e7-832c-448a5b9b27f4} => not found
"HKU\S-1-5-21-64186151-2691123905-3617468610-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{904423d2-80d3-11e7-832c-448a5b9b27f4}" => removed successfully
HKLM\Software\Classes\CLSID\{904423d2-80d3-11e7-832c-448a5b9b27f4} => not found
"HKU\S-1-5-21-64186151-2691123905-3617468610-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{def8ff9f-e23a-11e7-83ba-448a5b9b27f4}" => removed successfully
HKLM\Software\Classes\CLSID\{def8ff9f-e23a-11e7-83ba-448a5b9b27f4} => not found
"HKU\S-1-5-21-64186151-2691123905-3617468610-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e98ee506-03fb-11e8-83ec-448a5b9b27f4}" => removed successfully
HKLM\Software\Classes\CLSID\{e98ee506-03fb-11e8-83ec-448a5b9b27f4} => not found
"HKU\S-1-5-21-64186151-2691123905-3617468610-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e98ee51f-03fb-11e8-83ec-448a5b9b27f4}" => removed successfully
HKLM\Software\Classes\CLSID\{e98ee51f-03fb-11e8-83ec-448a5b9b27f4} => not found
"HKU\S-1-5-21-64186151-2691123905-3617468610-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{efe674f4-f207-11e6-824f-448a5b9b27f4}" => removed successfully
HKLM\Software\Classes\CLSID\{efe674f4-f207-11e6-824f-448a5b9b27f4} => not found
"HKU\S-1-5-21-64186151-2691123905-3617468610-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{efe67501-f207-11e6-824f-448a5b9b27f4}" => removed successfully
HKLM\Software\Classes\CLSID\{efe67501-f207-11e6-824f-448a5b9b27f4} => not found
"HKU\S-1-5-21-64186151-2691123905-3617468610-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}" => removed successfully
HKLM\Software\Classes\CLSID\{012E1000-F331-11DB-8314-0800200C9A66} => not found
"HKU\S-1-5-21-64186151-2691123905-3617468610-1001\SOFTWARE\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\Users\Hanus-PC\AppData\Local\Temp\00e481b5e22dbe1f649fcddd505d3eb7.dll => moved successfully
C:\Users\Hanus-PC\AppData\Local\Temp\58eabe09b8d33d19090cf2f8beadfd63.dll => moved successfully
C:\ProgramData\AVAST Software => moved successfully
CPUID CPU-Z 1.78 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) <==== ATTENTION => Error: No automatic fix found for this entry.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2B828D56-2978-49DC-965E-38E94DAC1782}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2B828D56-2978-49DC-965E-38E94DAC1782}" => removed successfully
"C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C6918BB4-BC65-4FF7-B37C-95B353910184}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C6918BB4-BC65-4FF7-B37C-95B353910184}" => removed successfully
"C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 15973208 B
Java, Flash, Steam htmlcache => 256057099 B
Windows/system/drivers => 31310 B
Edge => 0 B
Chrome => 303432275 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 560 B
LocalService => 0 B
NetworkService => 7334 B
Hanus-PC => 214235830 B

RecycleBin => 0 B
EmptyTemp: => 761.2 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 20:20:32 ====


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: CommonCrawl [Bot] a 0 hostů