Zdravím, když zapnu pokaždé hru PUBG, tak se mi sekne pc, ukáže bluescreen a restartuje se pc. Počítač je lehce pomalý.
Prosím o kontrolu logu.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19.04.2024 01
Ran by micha (administrator) on PETR (ASUS System Product Name) (08-05-2024 14:46:58)
Running from C:\Users\micha\OneDrive\Plocha\FRST64.exe
Loaded Profiles: micha
Platform: Microsoft Windows 11 Home Version 23H2 22631.3447 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Program Files (x86)\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmpl.exe
() [File not signed] C:\Program Files (x86)\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmw.exe
() [File not signed] C:\Program Files (x86)\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmwj.exe
(C:\G-Menu\G-Menu.exe ->) (TOP VICTORY ELECTRONICS (TAIWAN) CO., LTD. -> Zeasn) C:\G-Menu\resources\bin\G_Menu.exe
(C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzAppManager
(C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzBTLEManager
(C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzDeviceManager
(C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzDiagnostic
(C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzIoTDeviceManager
(C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSmartlightingDeviceManager
(C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Razer\Razer Services\GMS\SteamCmd\steamcmd.exe
(C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe ->) (Razer USA Ltd. -> The CefSharp Authors) C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.BrowserSubprocess.exe <5>
(C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe
(C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe ->) (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\AudioVisualizer\ChromaVisualizer.exe
(C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe ->) (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
(C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe ->) (Razer USA Ltd. -> Razer Inc) C:\ProgramData\Razer\Synapse3\Service\Bin\RzLightingEngineHelper.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <8>
(C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\Program Files\Softdeluxe\Free Download Manager\wenativehost.exe ->) (Softdeluxe) [File not signed] C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.450.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\124.0.2478.80\msedgewebview2.exe <6>
(C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\Application\brave.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(cmd.exe ->) (Softdeluxe) [File not signed] C:\Program Files\Softdeluxe\Free Download Manager\wenativehost.exe
(Discord Inc. -> Discord Inc.) C:\Users\micha\AppData\Local\Discord\app-1.0.9146\Discord.exe <6>
(DriverStore\FileRepository\u0401992.inf_amd64_46fb5d1d0dd76dfd\B401180\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0401992.inf_amd64_46fb5d1d0dd76dfd\B401180\atieclxx.exe
(explorer.exe ->) (Brave Software, Inc. -> Brave Software, Inc.) C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\Application\brave.exe <15>
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
(explorer.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe
(explorer.exe ->) (Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe
(explorer.exe ->) (TOP VICTORY ELECTRONICS (TAIWAN) CO., LTD. -> AOC) C:\G-Menu\G-Menu.exe <5>
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(services.exe ->) () [File not signed] C:\Program Files (x86)\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmdb.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Program Files\AMD\Performance Profile Client\AUEPDU.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0401992.inf_amd64_46fb5d1d0dd76dfd\B401180\atiesrxx.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Driver Updater\DriverUpdSvc.exe
(services.exe ->) (CyberGhost S.R.L. -> CyberGhost S.R.L.) C:\Program Files\CyberGhost 8\Dashboard.Service.exe
(services.exe ->) (eVenture Limited -> eVenture Limited) C:\Program Files (x86)\hide.me VPN\hidemesvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\TPMProvisioningService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(services.exe ->) (LogMeIn, Inc. -> LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe
(services.exe ->) (nordvpn s.a. -> nordvpn S.A.) C:\Program Files\NordUpdater\NordUpdateService.exe
(services.exe ->) (nordvpn s.a. -> nordvpn S.A.) C:\Program Files\NordVPN\nordvpn-service.exe
(services.exe ->) (Novabench Inc. -> Novabench Inc.) C:\Program Files\Novabench\resources\NovabenchService.exe
(services.exe ->) (PALTALK, INC. -> AVM Software) C:\Program Files (x86)\Paltalk\update\pt_update_service.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzChromaStreamServer.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(services.exe ->) (Windscribe Limited -> Windscribe Limited) C:\Program Files\Windscribe\WindscribeService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.450.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.22621.3522_none_e93c247a42e7cbb6\TiWorker.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [DriverUpdUI.exe] => C:\Program Files\AVG\Driver Updater\DriverUpdUI.exe [11121088 2024-03-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [3023152 2024-04-24] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM-x32\...\Run: [Launcher6015B] => C:\Program Files (x86)\Xerox Office Printing\WorkCentre SSW\Launcher\xrlaunch.exe [2569728 2011-04-28] (Xerox) [File not signed]
HKLM-x32\...\Run: [6015B RUN] => C:\Program Files (x86)\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmRun.exe [355840 2012-07-16] () [File not signed]
HKLM-x32\...\Run: [StatusAutoRun6015B] => "C:\Program Files (x86)\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmpl.exe" Xerox WorkCentre 6015B,hide,\S (No File)
HKLM-x32\...\Run: [YKB 3400 PANZER] => C:\Program Files\FAST\PANZER\YKB 3400 PANZER.exe [1828864 2019-08-01] (TODO: <Company name>) [File not signed]
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [7811960 2024-03-25] (LogMeIn, Inc. -> LogMeIn Inc.)
HKU\S-1-5-21-756127909-4058986209-260929036-1001\...\Run: [MicrosoftEdgeAutoLaunch_ED02E366447D09E4F124EF89B233D989] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4081192 2024-05-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-756127909-4058986209-260929036-1001\...\Run: [BraveSoftware Update] => C:\Users\micha\AppData\Local\BraveSoftware\Update\1.3.361.149\BraveUpdateCore.exe [199192 2024-04-08] (Brave Software, Inc. -> BraveSoftware Inc.)
HKU\S-1-5-21-756127909-4058986209-260929036-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4379496 2024-05-04] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-756127909-4058986209-260929036-1001\...\Run: [Opera GX Stable] => C:\Users\micha\AppData\Local\Programs\Opera GX\launcher.exe [2304416 2024-04-12] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-756127909-4058986209-260929036-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37495272 2024-04-29] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-756127909-4058986209-260929036-1001\...\Run: [Discord] => C:\Users\micha\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub)
HKU\S-1-5-21-756127909-4058986209-260929036-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [46056704 2024-03-08] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-756127909-4058986209-260929036-1001\...\Run: [Opera GX Browser Assistant] => C:\Users\micha\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-756127909-4058986209-260929036-1001\...\Run: [G-Menu] => C:\G-Menu\G-Menu.exe [110791608 2024-04-24] (TOP VICTORY ELECTRONICS (TAIWAN) CO., LTD. -> AOC)
HKU\S-1-5-21-756127909-4058986209-260929036-1001\...\Run: [Free Download Manager] => C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe [7489536 2023-12-18] (Softdeluxe) [File not signed]
HKU\S-1-5-21-756127909-4058986209-260929036-1001\...\Run: [RiotClient] => C:\Riot Games\Riot Client\RiotClientServices.exe [71898448 2024-04-30] (Riot Games, Inc. -> Riot Games, Inc.)
HKU\S-1-5-21-756127909-4058986209-260929036-1001\...\Run: [com.blitz.app] => C:\Users\micha\AppData\Local\Programs\Blitz\Blitz.exe [166163360 2024-04-30] (Swift Media Entertainment, Inc. -> Blitz, Inc.)
HKU\S-1-5-21-756127909-4058986209-260929036-1001\...\Run: [uTorrent] => C:\Program Files (x86)\uTorrent\uTorrent.exe [399736 2024-01-28] (BitTorrent Inc -> BitTorrent, Inc.)
HKU\S-1-5-21-756127909-4058986209-260929036-1001\...\Run: [PaltalkLauncher] => C:\Program Files (x86)\Paltalk\PaltalkLauncher.exe [1310288 2023-12-29] (PALTALK, INC. -> Paltalk, Inc.)
HKU\S-1-5-21-756127909-4058986209-260929036-1001\...\Run: [ProtonVPN] => C:\Program Files\Proton\VPN\ProtonVPN.Launcher.exe (No File)
HKU\S-1-5-21-756127909-4058986209-260929036-1001\...\Run: [Windscribe] => C:\Program Files\Windscribe\Windscribe.exe [8521576 2024-03-12] (Windscribe Limited -> Windscribe Limited)
HKU\S-1-5-21-756127909-4058986209-260929036-1001\...\Run: [CyberGhost] => "C:\Program Files\CyberGhost 6\CyberGhost.exe" /autostart /min (No File)
HKU\S-1-5-21-756127909-4058986209-260929036-1001\...\Run: [NordVPN] => C:\Program Files\NordVPN\NordVPN.exe [263256 2023-09-25] (nordvpn s.a. -> nordvpn S.A.)
HKU\S-1-5-21-756127909-4058986209-260929036-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3593992 2024-04-22] (Razer USA Ltd. -> Razer Inc.)
HKU\S-1-5-21-756127909-4058986209-260929036-1001\...\Run: [Battle.net] => D:\Battle.net\Battle.net.exe [981640 2024-04-20] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
HKU\S-1-5-21-756127909-4058986209-260929036-1001\...\Run: [AMDNoiseSuppression] => C:\Windows\system32\AMD\ANR\AMDNoiseSuppression.exe [145336 2023-08-10] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-756127909-4058986209-260929036-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [2736744 2024-04-30] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-756127909-4058986209-260929036-1001\...\Run: [electron.app.BlueStacks Services] => C:\Users\micha\AppData\Local\Programs\bluestacks-services\BlueStacksServices.exe [162219656 2024-01-25] (Now.gg, INC -> now.gg, Inc.)
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3593992 2024-04-22] (Razer USA Ltd. -> Razer Inc.)
HKLM\...\Windows x64\Print Processors\xrhk1apps: C:\Windows\System32\spool\prtprocs\x64\xrhk1apps.dll [33280 2012-03-15] (Microsoft Windows Hardware Compatibility Publisher -> Xerox)
HKLM\...\Print\Monitors\Xerox WorkCentre 6015B Language Monitor: C:\Windows\system32\xrhk1alm.dll [22528 2012-03-09] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\124.0.6367.119\Installer\chrmstp.exe [2024-05-03] (Google LLC -> Google LLC)
Startup: C:\Users\micha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hide.me VPN.lnk [2024-05-07]
ShortcutTarget: hide.me VPN.lnk -> C:\Program Files (x86)\hide.me VPN\Hide.me.exe (eVenture Limited -> eVenture Limited)
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {028567A1-562B-44B2-98FE-1F06D6662225} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030584 2024-03-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {13AD62B8-906A-41AD-A0C9-BBB8E0C0908B} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030584 2024-03-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {1CC508F2-2CEA-4175-B350-1A3E8EF97637} - System32\Tasks\AVG\AVG Driver Updater BugReport => C:\Program Files\AVG\Driver Updater\AvBugReport.exe [4979136 2024-03-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) -> --send "dumps|report" --silent --product 149 --programpath "C:\Program Files\AVG\Driver Updater\Setup\.." --configpath "C:\Program Files\AVG\Driver Updater\Setup" --path "C:\ProgramData\AVG\Driver Updater\log" --path "C:\ProgramData\AVG\Icarus\Logs" --logpath "C:\ProgramData\AVG\Driver Updater\log" (the data entry has 44 more characters).
Task: {4A23D69E-5CF9-42ED-A89C-293693D2BCFB} - System32\Tasks\AVG\AVG Driver Updater Update => C:\Program Files\Common Files\AVG\Icarus\avg-du\icarus.exe [7811512 2024-03-14] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {FAF65858-FD79-4556-A1AB-837072EC4CD5} - System32\Tasks\BraveSoftwareUpdateTaskUserS-1-5-21-756127909-4058986209-260929036-1001Core{FD184149-DAB6-4E84-85F3-97E5AB39A029} => C:\Users\micha\AppData\Local\BraveSoftware\Update\BraveUpdate.exe [175424 2024-01-04] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {3F39FB94-DE41-4102-BB8A-829734EA9AC7} - System32\Tasks\BraveSoftwareUpdateTaskUserS-1-5-21-756127909-4058986209-260929036-1001UA{56264D92-785A-4548-8265-64123CCC1F93} => C:\Users\micha\AppData\Local\BraveSoftware\Update\BraveUpdate.exe [175424 2024-01-04] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {0E2AFA7F-E936-4DF1-9D3B-26ACEFDFF1E1} - System32\Tasks\FreeDownloadManagerHelperService => C:\Program Files\Softdeluxe\Free Download Manager\helperservice.exe [137216 2023-12-18] (Softdeluxe) [File not signed]
Task: {FBE1772C-B767-4FE7-9341-EF640D180ED2} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem125.0.6407.0{F29BAF4A-C758-4E34-BC33-B1A7D3D4864C} => C:\Program Files (x86)\Google\GoogleUpdater\125.0.6407.0\updater.exe [4782880 2024-04-08] (Google LLC -> Google LLC)
Task: {62266308-A382-4A7A-A1F8-08EDF1A1CD9C} - System32\Tasks\iTop Screenshot SkipUAC (micha) => C:\Program Files (x86)\iTop Screenshot\iScrShot.exe [7622400 2023-05-11] (ORANGE VIEW LIMITED -> iTop Inc.) -> C:\Program Files (x86)\iTop Screenshot\\/skipuac
Task: {E3EAD2AC-F085-4A38-BD75-637B32BF1C9E} - System32\Tasks\iTop Screenshot Startup => C:\Program Files (x86)\iTop Screenshot\iScrShot.exe [7622400 2023-05-11] (ORANGE VIEW LIMITED -> iTop Inc.) -> C:\Program Files (x86)\iTop Screenshot\\/autorun
Task: {08038785-058A-4615-B290-9B987C6330AF} - System32\Tasks\iTop Screenshot Update => C:\Program Files (x86)\iTop Screenshot\AutoUpdate.exe [3081472 2023-05-17] (ORANGE VIEW LIMITED -> iTop Inc.) -> C:\Program Files (x86)\iTop Screenshot\\/auto
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {779E7433-69BE-4F74-A2CB-3B92EEFF6B6B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {29B566B0-B0D8-4DBA-B0B2-614AFE2D5EA9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {25465CA9-768E-41CA-8C79-1689A48254A2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A1A1D22C-BFF4-4D93-ADBB-A95A5BE39B50} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D2DF98C6-D139-4710-93E8-57DB4C7A9C50} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030584 2024-03-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {EFB03987-CA59-4995-A401-F85DDE2E767F} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1704714885 => C:\Users\micha\AppData\Local\Programs\Opera GX\launcher.exe [2304416 2024-04-12] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\micha\AppData\Local\Programs\Opera GX\assistant" $(Arg0)
Task: {E944F8E3-3705-465B-8EA9-EBF0CD2D4637} - System32\Tasks\Opera GX scheduled Autoupdate 1704393290 => C:\Users\micha\AppData\Local\Programs\Opera GX\launcher.exe [2304416 2024-04-12] (Opera Norway AS -> Opera Software)
Task: {4DEE0240-0838-40A6-8A48-CE93081F570A} - System32\Tasks\StartAUEP => C:\Program Files\AMD\Performance Profile Client\AUEPMaster.exe [781752 2024-03-13] (Advanced Micro Devices Inc. -> AMD)
Task: {4BC80F1C-B0CB-4425-916F-B388824B3518} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [58704 2024-03-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {7C8A9A8D-C80B-434F-A723-E60C075D9902} - System32\Tasks\StartCNBM => C:\Program Files\AMD\CNext\CNext\cncmd.exe [58704 2024-03-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {AA09764B-6664-4714-8C3C-F89020AA765E} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [322384 2024-03-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\BlueStacksHelper_nxt.job => C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{480e8216-87c5-4707-8b2e-e3736a4aba0a}: [DhcpNameServer] 192.168.100.94
Tcpip\..\Interfaces\{480e8216-87c5-4707-8b2e-e3736a4aba0a}\44F6D616: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{e67aeefe-697c-4139-8886-ee4400bbf4b8}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\micha\AppData\Local\Microsoft\Edge\User Data\Default [2024-05-08]
Edge Extension: (Dokumenty Google offline) - C:\Users\micha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-31]
Edge Extension: (Edge relevant text changes) - C:\Users\micha\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
Chrome:
=======
CHR Profile: C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default [2024-01-12]
CHR StartupUrls: Default -> "hxxp://mystart.incredibar.com/?a=6R906EYcyS&loc=skw","hxxp://www2.delta-search.com/?babsrc=HP_ss&mntrId=3C0D0025225507B2&affID=120007&tt=160913_c3&tsp=5011","hxxp://www.search.ask.com/?tpid=ATU3-SAT&o=APN ... g=EN&cc=CZ"
CHR Extension: (The FFZ Add-On Pack) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiimboljphncldaakcnapfolgnjonlea [2024-01-04]
CHR Extension: (BetterTTV) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2024-01-12]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2024-01-12]
CHR Extension: (Steam Inventory Helper) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2024-01-12]
CHR Extension: (Black green shards) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\cojkleigdijnbfecdhjigpgalhfhkdee [2024-01-04]
CHR Extension: (FrankerFaceZ) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\fadndhdgpmmaapbmfcknlfgcflmmmieb [2024-01-04]
CHR Extension: (Dokumenty Google offline) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-04]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-01-12]
CHR Extension: (Repeek (formerly FACEIT Enhancer)) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\mokknliiomknodkdmpcellamkopbdmao [2024-01-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\micha\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-01-04]
CHR Profile: C:\Users\micha\AppData\Local\Google\Chrome\User Data\System Profile [2024-01-04]
Opera:
=======
StartMenuInternet: (HKU\S-1-5-21-756127909-4058986209-260929036-1001) Opera GXStable - "C:\Users\micha\AppData\Local\Programs\Opera GX\Launcher.exe"
Brave:
=======
BRA Profile: C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2024-05-08]
BRA Extension: (Free Download Manager) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ahmpjcflkgiildlgicmcieglgoilbfdp [2024-04-08]
BRA Extension: (The FFZ Add-On Pack) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\aiimboljphncldaakcnapfolgnjonlea [2024-01-04]
BRA Extension: (AHA Music - Hledač písní pro prohlížeč) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\dpacanjfikmhoddligfbehkpomnbgblf [2024-01-08]
BRA Extension: (FrankerFaceZ) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\fadndhdgpmmaapbmfcknlfgcflmmmieb [2024-01-04]
BRA Extension: (Turbo Download Manager (Classic)) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\kemfccojgjoilhfmcblgimbggikekjip [2024-03-16]
BRA Extension: (Video DownloadHelper) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2024-03-19]
BRA Extension: (Turbo Download Manager (3rd edition)) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\pabnknalmhfecdheflmcaehlepmhjlaa [2024-03-16]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block First Party Filters (plaintext))) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2024-05-08]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2024-05-08]
BRA Extension: (Brave NTP background images) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2024-01-31]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2024-05-08]
BRA Extension: (Wallet Data Files Updater) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2024-01-22]
BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2024-05-08]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2024-01-28]
BRA Extension: (Brave NTP sponsored images) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\efkihffiamafhbhefjaljejgdpkelpal [2024-05-08]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2024-04-23]
BRA Extension: (Brave Ads Resources) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\iejekkikpddbbockoldagmfcdbffomfc [2024-05-08]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2024-05-08]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2024-05-02]
BRA Extension: (Brave Ad Block Updater (EasyList Czech and Slovak (plaintext))) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\oegebjahecghlckbhkmojgnpcgdeajdi [2024-01-25]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\micha\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2024-01-04]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [842128 2024-05-08] (ASUSTeK Computer Inc. -> )
R2 AUEPLauncher; C:\Program Files\AMD\CIM\..\Performance Profile Client\AUEPDU.exe [529848 ] (Advanced Micro Devices Inc. -> AMD)
S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [2567304 2024-05-03] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [15737128 2024-04-30] (BattlEye Innovations e.K. -> )
R2 CyberGhost8Service; C:\Program Files\CyberGhost 8\Dashboard.Service.exe [82680 2024-03-20] (CyberGhost S.R.L. -> CyberGhost S.R.L.)
R2 DriverUpdSvc; C:\Program Files\AVG\Driver Updater\DriverUpdSvc.exe [16925624 2024-03-18] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [12107880 2024-04-30] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1137576 2024-02-02] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [955816 2024-03-29] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [375248 2024-04-12] (Epic Games Inc. -> Epic Games, Inc.)
S3 FACEITService; C:\Program Files\FACEIT AC\faceitservice.exe [78576328 2024-04-23] (ESL Gaming GmbH -> )
S2 GoogleUpdaterInternalService125.0.6407.0; C:\Program Files (x86)\Google\GoogleUpdater\125.0.6407.0\updater.exe [4782880 2024-04-08] (Google LLC -> Google LLC)
S2 GoogleUpdaterService125.0.6407.0; C:\Program Files (x86)\Google\GoogleUpdater\125.0.6407.0\updater.exe [4782880 2024-04-08] (Google LLC -> Google LLC)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [4920184 2024-03-25] (LogMeIn, Inc. -> LogMeIn Inc.)
R2 hmevpnsvc; C:\Program Files (x86)\hide.me VPN\hidemesvc.exe [125504 2023-12-18] (eVenture Limited -> eVenture Limited)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10994432 2024-03-08] (Logitech Inc -> Logitech, Inc.)
S3 LiveStudioElevationService; C:\Program Files\TikTok LIVE Studio\0.54.0\elevation_service.exe [4169248 2024-03-27] (TikTok Pte. Ltd. -> The Chromium Authors)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpDefenderCoreService.exe [1459968 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 NGS; C:\ProgramData\Nexon\NGS\NGService.exe [3189352 2024-03-20] (NEXON Korea Corporation. -> NEXON Korea Corporation)
S3 nordsec-threatprotection-service; C:\Program Files\NordVPN\NordSec ThreatProtection\nordsec-threatprotection-service.exe [320088 2023-09-25] (nordvpn s.a. -> nordvpn S.A.)
R2 NordUpdaterService; C:\Program Files\NordUpdater\NordUpdateService.exe [297848 2022-12-21] (nordvpn s.a. -> nordvpn S.A.)
R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [263256 2023-09-25] (nordvpn s.a. -> nordvpn S.A.)
R2 NovabenchService5; C:\Program Files\Novabench\resources\NovabenchService.exe [41979096 2023-12-09] (Novabench Inc. -> Novabench Inc.)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [13142392 2024-03-03] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
R2 paltalk_update_service; C:\Program Files (x86)\Paltalk\update\pt_update_service.exe [1336624 2023-04-25] (PALTALK, INC. -> AVM Software)
R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [1878448 2024-04-19] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [231856 2024-04-19] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Chroma Stream Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzChromaStreamServer.exe [1361360 2023-03-06] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [256264 2023-02-10] (Razer USA Ltd. -> Razer Inc)
R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [298248 2024-04-22] (Razer USA Ltd. -> Razer Inc.)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [4505072 2024-01-06] (Rockstar Games, Inc. -> Rockstar Games)
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [538424 2023-11-09] (Razer USA Ltd. -> Razer Inc.)
S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\Wellbia.com\ucldr_battlegrounds_gl.exe [5084200 2024-05-01] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [9649288 2024-04-24] (Riot Games, Inc. -> Riot Games, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WindscribeService; C:\Program Files\Windscribe\WindscribeService.exe [1062248 2024-03-12] (Windscribe Limited -> Windscribe Limited)
R2 XRNADB; C:\Program Files (x86)\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmdb.exe [96768 2012-07-16] () [File not signed]
S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [12458336 2024-05-01] (KRAFTON, Inc. -> KRAFTON, Inc)
S2 CG6Service; "C:\Program Files\CyberGhost 6\CyberGhost.Service.exe" [X]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdfendrmgr; C:\Windows\System32\drivers\amdfendrmgr.sys [25688 2024-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 AMDSAFD; C:\Windows\System32\DriverStore\FileRepository\amdsafd.inf_amd64_54807f69fe156f14\amdsafd.sys [113088 2023-04-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 amduw23g; C:\Windows\System32\DriverStore\FileRepository\u0401992.inf_amd64_46fb5d1d0dd76dfd\B401180\amdkmdag.sys [100125088 2024-04-11] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [61888 2023-05-24] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S3 atvi-brynhildr; C:\ProgramData\Battle.net_components\brynhildr_odin\brynhildr.sys [2336008 2024-03-30] (Activision Publishing Inc -> Activision Blizzard, Inc.)
S3 atvi-randgrid; C:\ProgramData\Battle.net_components\randgridauks\randgrid.sys [3223448 2024-03-30] (Activision Publishing Inc -> Activision Blizzard, Inc.)
S3 BEDaisy; C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys [5146376 2024-05-08] (Microsoft Windows Hardware Compatibility Publisher -> )
R2 BlueStacksDrv_nxt; C:\Program Files\BlueStacks_nxt\BstkDrv_nxt.sys [310672 2024-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Bluestack System Inc.)
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [188416 2023-12-04] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [File not signed]
S3 camodriver; C:\Windows\System32\DriverStore\FileRepository\camodriver.inf_amd64_99bad0a66e30f6f3\x64\camodriver.sys [36912 2024-01-02] (Microsoft Windows Hardware Compatibility Publisher -> Reincubate Ltd.)
R3 cpuz158; C:\Windows\temp\cpuz158\cpuz158_x64.sys [44576 2024-05-08] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ATTENTION
R1 FACEIT; C:\Program Files\FACEIT AC\FACEIT_AC.sys [88969384 2024-04-22] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2023-11-06] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
R1 hideFirewall; C:\Windows\System32\drivers\hideFirewall.sys [102928 2023-07-02] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 iaLPSS2_GPIO2_TGL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_2546dafe2183e972\iaLPSS2_GPIO2_TGL.sys [131208 2021-07-15] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C_TGL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_i2c_tgl.inf_amd64_1308f85f1b0adf27\iaLPSS2_I2C_TGL.sys [204440 2021-07-20] (Intel Corporation -> Intel Corporation)
R3 iriuna0; C:\Windows\system32\drivers\iriuna0.sys [46976 2021-04-06] (Iriun Oy -> Windows (R) Win 7 DDK provider)
R3 logi_audio_surround; C:\Windows\system32\drivers\logi_audio_surround.sys [54776 2024-03-09] (Logitech Inc -> Logitech, Inc.)
R3 logi_joy_bus_enum; C:\Windows\system32\drivers\logi_joy_bus_enum.sys [44880 2024-01-05] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [32080 2024-01-05] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\Windows\system32\drivers\logi_joy_xlcore.sys [73040 2024-01-05] (Logitech Inc -> Logitech)
S3 ManyCam; C:\Windows\system32\DRIVERS\mcvidrv.sys [65448 2023-01-17] (ManyCam ULC -> ManyCam ULC)
S3 mcaudrv_simple; C:\Windows\system32\drivers\mcaudrv_x64.sys [35960 2014-12-29] (ManyCam -> Visicom Media Inc.)
S3 MpKsl2c25af63; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{49E52824-902A-4908-94A0-E7FEE0CF4F69}\MpKslDrv.sys [271648 2024-05-08] (Microsoft Windows -> Microsoft Corporation)
R3 MpKsl9a3572a3; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{49E52824-902A-4908-94A0-E7FEE0CF4F69}\MpKslDrv.sys [271648 2024-05-08] (Microsoft Windows -> Microsoft Corporation)
S3 MpKsle85ea4ef; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{49E52824-902A-4908-94A0-E7FEE0CF4F69}\MpKslDrv.sys [271648 2024-05-08] (Microsoft Windows -> Microsoft Corporation)
S3 navagio; C:\Program Files\Common Files\PUBG\navagio.sys [8246296 2024-05-08] (Microsoft Windows Hardware Compatibility Publisher -> )
R2 NDivert; C:\Program Files\NordVPN\7.23.1.0\Drivers\NDivert.sys [131472 2024-04-08] (nordvpn s.a. -> Nordvpn S.A.)
R1 nordlwf; C:\Windows\system32\DRIVERS\nordlwf.sys [44928 2024-01-18] (nordvpn s.a. -> TEFINCOM S.A.)
S3 rt25cx21; C:\Windows\System32\DriverStore\FileRepository\rt25cx21x64.inf_amd64_44eaf8324075f31c\rt25cx21x64.sys [779736 2023-12-05] (Realtek Semiconductor Corp. -> Realtek)
S3 rtcx21; C:\Windows\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
R3 RzCommon; C:\Windows\System32\drivers\RzCommon.sys [64168 2022-08-18] (Razer USA Ltd. -> Razer Inc)
R3 RzDev_0084; C:\Windows\System32\drivers\RzDev_0084.sys [54152 2020-08-24] (Razer USA Ltd. -> Razer Inc)
R3 SteamStreamingMicrophone; C:\Windows\system32\drivers\SteamStreamingMicrophone.sys [40736 2020-06-01] (Valve Corp. -> )
R3 SteamStreamingSpeakers; C:\Windows\system32\drivers\SteamStreamingSpeakers.sys [40736 2020-06-01] (Valve Corp. -> )
S3 tap0901; C:\Windows\System32\drivers\tap0901.sys [37360 2019-04-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R3 tapnordvpn; C:\Windows\System32\drivers\tapnordvpn.sys [49744 2024-01-29] (nordvpn s.a. -> The OpenVPN Project)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [21935504 2024-04-24] (Riot Games, Inc. -> Riot Games, Inc.)
R0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [20936 2024-04-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [601376 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
S3 WindscribeSplitTunnel; C:\Windows\system32\DRIVERS\WindscribeSplitTunnel.sys [38152 2024-03-12] (Windscribe Limited -> )
S3 WireGuard; C:\Windows\System32\drivers\wireguard.sys [489368 2024-02-11] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 xhunter1; C:\Windows\xhunter1.sys [215864 2024-05-08] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 cpuz148; \??\C:\Windows\temp\cpuz148\cpuz148_x64.sys [X] <==== ATTENTION
S3 PDFWKRNL; \??\C:\Users\micha\AppData\Local\Temp\USBCPDFW\pdfwkrnl.sys [X] <==== ATTENTION
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-05-08 14:46 - 2024-05-08 14:47 - 000043309 _____ C:\Users\micha\OneDrive\Plocha\FRST.txt
2024-05-08 14:46 - 2024-05-08 14:47 - 000000000 ____D C:\FRST
2024-05-08 14:44 - 2024-05-08 14:44 - 000725758 _____ C:\Windows\system32\perfh005.dat
2024-05-08 14:44 - 2024-05-08 14:44 - 000151026 _____ C:\Windows\system32\perfc005.dat
2024-05-08 14:43 - 2024-05-08 14:43 - 002394112 _____ (Farbar) C:\Users\micha\OneDrive\Plocha\FRST64.exe
2024-05-08 14:39 - 2024-05-08 14:40 - 000000000 ___HD C:\$WinREAgent
2024-05-08 14:37 - 2024-05-08 14:36 - 001180120 ____N C:\Windows\Minidump\050824-21156-01.dmp
2024-05-08 14:28 - 2024-05-08 14:28 - 000917250 ____N C:\Windows\Minidump\050824-16718-01.dmp
2024-05-08 14:25 - 2024-05-08 14:25 - 000895668 ____N C:\Windows\Minidump\050824-17312-01.dmp
2024-05-08 14:23 - 2024-05-08 14:23 - 000892766 ____N C:\Windows\Minidump\050824-17578-01.dmp
2024-05-08 14:20 - 2024-05-08 14:20 - 002146554 ____N C:\Windows\Minidump\050824-19343-01.dmp
2024-05-07 12:13 - 2024-05-07 12:13 - 000001009 _____ C:\Users\micha\OneDrive\Plocha\Manor Lords.lnk
2024-05-07 12:13 - 2024-05-07 12:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Manor Lords
2024-05-07 11:50 - 2024-05-07 11:50 - 441417728 _____ C:\Users\micha\Downloads\Manor.Lords.v0.7.955-Repack.iso
2024-05-06 14:48 - 2024-05-06 16:18 - 3727284038 _____ C:\Users\micha\Downloads\A.Dirty.Carnival.2006.720p.BluRay.x264-EbP [PublicHD].mkv
2024-05-02 20:37 - 2024-05-02 20:37 - 000000000 ____D C:\Users\micha\AppData\Local\EACrashReporter
2024-05-01 21:07 - 2024-05-01 21:07 - 000000000 ____D C:\Users\micha\AppData\Local\TslGame
2024-05-01 20:50 - 2024-05-08 14:33 - 000215864 _____ (Wellbia.com Co., Ltd.) C:\Windows\xhunter1.sys
2024-05-01 20:50 - 2024-05-08 14:33 - 000000000 ____D C:\Program Files\Common Files\PUBG
2024-05-01 20:50 - 2024-05-01 20:50 - 000000000 ____D C:\Users\micha\AppData\Local\WELLBIA
2024-05-01 20:50 - 2024-05-01 20:50 - 000000000 ____D C:\Program Files\Common Files\Wellbia.com
2024-04-29 23:33 - 2024-04-29 23:33 - 000000000 ____D C:\Users\micha\AppData\Local\ManorLords
2024-04-29 22:55 - 2024-04-29 22:56 - 552965303 _____ C:\Users\micha\Downloads\a90HmWFZPH2eiBOf4bFvYFxKu2ysl8uWYudkSKDi87SNKHVDH3EIjbtDWt7xsjaf0ghZzTbVtNRUzdsa9txmilOiX7f9xfNwfxMTrKhwesmWTbyt0DTO4.mp4
2024-04-29 22:42 - 2024-04-29 22:45 - 898932436 _____ C:\Users\micha\Downloads\L1mIMEUpRuwVsRgCEet8eUjzcErT0YCmVHZKcmBfZ8uezTE4Io1sZBc6Kfoxu3Pfn4cMNCejT4jCaYIr8HzliMVCezu0BTZ4I0GSlzIPRu65c4YudohNb.mp4
2024-04-29 17:23 - 2022-08-05 10:17 - 000000000 ____D C:\Users\micha\OneDrive\Plocha\ph
2024-04-29 17:23 - 2022-08-05 10:15 - 000000000 ____D C:\Users\micha\OneDrive\Plocha\engine
2024-04-29 17:12 - 2024-04-29 17:12 - 000000000 ____D C:\Users\Public\mod.io
2024-04-29 17:12 - 2024-04-29 17:12 - 000000000 ____D C:\Users\micha\AppData\Local\mod.io
2024-04-29 16:35 - 2024-04-29 16:35 - 002059886 _____ C:\Users\micha\Downloads\Czech (1).rar
2024-04-29 16:35 - 2024-04-29 16:35 - 000000000 ____D C:\Users\micha\Downloads\Czech (1)
2024-04-29 15:06 - 2024-04-29 15:06 - 000061808 _____ C:\Users\micha\Downloads\RB_potvrzeni_20240429150621.pdf
2024-04-29 00:44 - 2024-04-29 00:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ManorLords [GOG.com]
2024-04-29 00:44 - 2024-04-29 00:44 - 000000000 ____D C:\ProgramData\GOG.com
2024-04-28 20:30 - 2024-04-28 20:30 - 000137885 _____ C:\Users\micha\Downloads\Sound Effects - Cartoon Wheel Squeaking.mp4
2024-04-28 20:30 - 2024-04-28 20:30 - 000137885 _____ C:\Users\micha\Downloads\Sound Effects - Cartoon Wheel Squeaking (1).mp4
2024-04-27 02:39 - 2024-04-27 02:40 - 200377076 _____ C:\Users\micha\Downloads\202404270055 (2).mp4
2024-04-27 02:09 - 2024-04-27 02:13 - 323354003 _____ C:\Users\micha\Downloads\KG FINAL VERZE 2k.mp4
2024-04-27 02:06 - 2024-04-27 02:13 - 654203292 _____ C:\Users\micha\Downloads\KG FINAL VERZE.mp4
2024-04-27 01:08 - 2024-04-27 01:10 - 287730504 _____ C:\Users\micha\Downloads\202404270055.mp4
2024-04-27 01:08 - 2024-04-27 01:10 - 287730504 _____ C:\Users\micha\Downloads\202404270055 (1).mp4
2024-04-26 23:17 - 2024-04-26 23:17 - 000056652 _____ C:\Users\micha\Downloads\Každodenní gamer (2).mp3.mid
2024-04-26 23:01 - 2024-04-27 00:21 - 000000000 ____D C:\Users\micha\OneDrive\Plocha\PROJEKT KG
2024-04-26 22:54 - 2024-04-26 22:54 - 000000000 ____D C:\Users\micha\OneDrive\Dokumenty\Blackmagic Design
2024-04-26 22:54 - 2024-04-26 22:54 - 000000000 ____D C:\Users\micha\AppData\Roaming\Blackmagic Design
2024-04-26 22:54 - 2024-04-26 22:54 - 000000000 ____D C:\Users\micha\AppData\Local\DaVinci Resolve Welcome
2024-04-26 22:52 - 2024-04-26 22:53 - 000000000 ____D C:\Users\micha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blackmagic Design
2024-04-26 22:52 - 2024-04-26 22:52 - 000000000 ____D C:\ProgramData\Blackmagic Design
2024-04-26 22:51 - 2024-04-26 22:51 - 000000000 ____D C:\Program Files\Blackmagic Design
2024-04-26 22:50 - 2024-04-26 22:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blackmagic Design
2024-04-26 22:50 - 2024-04-26 22:50 - 000000000 ____D C:\Program Files (x86)\Blackmagic Design
2024-04-24 21:05 - 2024-04-24 21:05 - 000088568 _____ C:\Users\micha\Downloads\videoplayback.weba
2024-04-24 16:05 - 2024-04-24 16:05 - 000000000 ____D C:\Users\micha\AppData\Local\OPP
2024-04-24 14:48 - 2024-04-24 14:57 - 000000000 ____D C:\ProgramData\TrackMania
2024-04-24 14:40 - 2024-04-24 14:57 - 000000000 ____D C:\Users\micha\OneDrive\Dokumenty\TrackMania
2024-04-24 11:58 - 2024-04-24 11:58 - 000000000 ____D C:\Users\micha\AppData\Local\ProjectCoop
2024-04-24 09:45 - 2024-04-24 09:45 - 000000022 _____ C:\Users\micha\Downloads\Lunch Lady.zip
2024-04-22 17:15 - 2024-04-22 17:21 - 1558509568 _____ C:\Users\micha\Downloads\Videl-Jsem-Dabla-CZ-TIT.avi
2024-04-21 21:08 - 2024-04-21 21:08 - 000000000 ____D C:\Users\micha\AppData\Local\HD-Player
2024-04-21 21:06 - 2024-05-03 23:37 - 000000000 ____D C:\ProgramData\bst_boost_interprocess
2024-04-21 21:06 - 2024-05-03 23:37 - 000000000 ____D C:\ProgramData\BlueStacks_nxt
2024-04-21 21:06 - 2024-05-03 21:06 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks 5.lnk
2024-04-21 21:06 - 2024-05-03 21:06 - 000002087 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks Multi-Instance Manager.lnk
2024-04-21 21:06 - 2024-04-21 21:06 - 000007003 _____ C:\Users\micha\-1.14-windows.xml
2024-04-21 21:06 - 2024-04-21 21:06 - 000000314 _____ C:\Windows\Tasks\BlueStacksHelper_nxt.job
2024-04-21 21:05 - 2024-05-02 20:36 - 000000000 ____D C:\Users\micha\AppData\Roaming\bluestacks-services
2024-04-21 21:05 - 2024-04-21 21:05 - 000002438 _____ C:\Users\micha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BlueStacks Services.lnk
2024-04-21 21:05 - 2024-04-21 21:05 - 000000000 ____D C:\Users\micha\AppData\Local\bluestacks-services-updater
2024-04-21 21:05 - 2024-04-21 21:05 - 000000000 ____D C:\Program Files\BlueStacks_nxt
2024-04-21 21:04 - 2024-04-21 21:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks X
2024-04-21 21:04 - 2024-04-21 21:04 - 000000000 ____D C:\Program Files (x86)\BlueStacks X
2024-04-21 21:02 - 2024-04-21 21:07 - 000000000 ____D C:\Users\micha\AppData\Local\BlueStacksSetup
2024-04-21 21:02 - 2024-04-21 21:05 - 000000000 ____D C:\Users\micha\AppData\Local\Bluestacks
2024-04-21 21:02 - 2024-04-21 21:03 - 000000000 ____D C:\Users\Public\BlueStacks
2024-04-21 21:02 - 2024-04-21 21:02 - 000932800 _____ (now.gg, Inc.) C:\Users\micha\Downloads\BlueStacks10Installer_10.40.0.1007_native_ce4f1e7ef62f1499a5908ca144720332_MzsxNSwwOzUsMTsxNSw0OzE1.exe
2024-04-21 18:49 - 2024-04-21 18:49 - 000017227 _____ C:\Users\micha\Downloads\[SkT]Kdo_s_koho___Am_zin_(1999)(CZ)[TvRip]_=_CSFD_77%.torrent
2024-04-21 18:40 - 2024-04-21 18:41 - 000000000 ____D C:\Users\micha\Downloads\City On Fire (1987) [720p] [BluRay] [YTS.MX]
2024-04-21 16:53 - 2024-04-21 16:53 - 000000000 ____D C:\Users\micha\AppData\Local\EALaunchHelper
2024-04-21 16:38 - 2024-04-21 16:38 - 000000000 ____D C:\Users\micha\OneDrive\Dokumenty\STAR WARS Battlefront II
2024-04-21 16:38 - 2024-04-21 16:38 - 000000000 ____D C:\Users\micha\AppData\Local\STAR WARS Battlefront II
2024-04-21 16:38 - 2024-04-21 16:38 - 000000000 ____D C:\Users\micha\AppData\Local\Link2EA
2024-04-21 16:32 - 2024-04-21 16:32 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2024-04-21 16:32 - 2024-04-21 16:32 - 000000000 ____D C:\ProgramData\Origin
2024-04-21 16:32 - 2024-04-21 16:32 - 000000000 ____D C:\ProgramData\Electronic Arts
2024-04-21 13:34 - 2024-04-30 21:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA
2024-04-21 13:34 - 2024-04-30 21:21 - 000000000 ____D C:\ProgramData\EA Desktop
2024-04-21 13:34 - 2024-04-22 13:43 - 000000000 ____D C:\Users\micha\AppData\Local\Origin
2024-04-21 13:34 - 2024-04-21 13:34 - 000000000 ____D C:\Users\micha\AppData\Local\Electronic Arts
2024-04-21 13:34 - 2024-04-21 13:34 - 000000000 ____D C:\Users\micha\AppData\Local\EADesktop
2024-04-21 13:34 - 2024-04-21 13:34 - 000000000 ____D C:\Program Files\Electronic Arts
2024-04-21 13:34 - 2024-04-21 13:34 - 000000000 ____D C:\Program Files\EA Games
2024-04-19 19:45 - 2024-04-19 19:45 - 005920276 _____ C:\Users\micha\OneDrive\Plocha\LoL Logs.zip
2024-04-19 19:42 - 2024-04-19 19:42 - 077705216 _____ C:\Users\micha\Downloads\Hextech Repair Tool.msi
2024-04-19 17:40 - 2024-04-19 17:47 - 000000000 ____D C:\Users\micha\AppData\Roaming\CitizenFX
2024-04-19 17:35 - 2024-04-19 17:41 - 000000000 ____D C:\Users\micha\AppData\Local\DigitalEntitlements
2024-04-19 17:35 - 2024-04-19 17:35 - 000000000 ____D C:\Users\micha\AppData\Local\FiveM
2024-04-19 17:34 - 2024-04-19 17:34 - 005200936 _____ (Cfx.re) C:\Users\micha\Downloads\FiveM.exe
2024-04-19 12:36 - 2024-04-19 12:36 - 000000436 _____ C:\Users\micha\OneDrive\Plocha\Tento počítač – zástupce.lnk
2024-04-19 12:36 - 2024-04-19 12:36 - 000000279 _____ C:\Users\micha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tento počítač.lnk
2024-04-19 04:10 - 2024-04-19 04:10 - 000351664 _____ (Razer Inc.) C:\Windows\system32\RzChromaSDK64.dll
2024-04-19 04:10 - 2024-04-19 04:10 - 000048560 _____ (Razer Inc.) C:\Windows\system32\RzChromatic64.dll
2024-04-19 04:09 - 2024-04-19 04:09 - 000043440 _____ (Razer Inc.) C:\Windows\SysWOW64\RzChromatic.dll
2024-04-19 04:04 - 2024-04-19 04:04 - 000312752 _____ (Razer Inc.) C:\Windows\SysWOW64\RzChromaSDK.dll
2024-04-18 20:24 - 2024-04-18 21:22 - 000000000 ____D C:\Users\Default\AppData\Local\LogMeIn Hamachi
2024-04-18 20:24 - 2024-04-18 20:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2024-04-18 20:24 - 2024-04-18 20:24 - 000000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2024-04-18 10:42 - 2024-04-18 10:47 - 000000000 ____D C:\Users\micha\Downloads\City On Fire (1987) [1080p] [BluRay] [5.1] [YTS.MX]
2024-04-18 00:15 - 2024-04-18 00:15 - 005538497 _____ C:\Users\micha\Downloads\Každodenní gamer (2).mp4
2024-04-17 09:50 - 2024-04-19 12:43 - 000003096 _____ C:\Windows\system32\Tasks\AMDInstallLauncher
2024-04-17 09:50 - 2024-04-17 09:50 - 000003302 _____ C:\Windows\system32\Tasks\StartCNBM
2024-04-17 09:50 - 2024-04-17 09:50 - 000003192 _____ C:\Windows\system32\Tasks\StartAUEP
2024-04-17 09:46 - 2024-04-19 12:43 - 000003088 _____ C:\Windows\system32\Tasks\AMDLinkUpdate
2024-04-17 09:46 - 2024-04-17 09:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Software꞉ Adrenalin Edition
2024-04-17 09:46 - 2024-04-17 09:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool
2024-04-17 09:45 - 2024-04-11 05:54 - 002100752 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2024-04-17 09:45 - 2024-04-11 05:54 - 002100752 _____ C:\Windows\system32\vulkaninfo.exe
2024-04-17 09:45 - 2024-04-11 05:54 - 001658896 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-04-17 09:45 - 2024-04-11 05:54 - 001658896 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2024-04-17 09:45 - 2024-04-11 05:54 - 001465888 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2024-04-17 09:45 - 2024-04-11 05:54 - 001465888 _____ C:\Windows\system32\vulkan-1.dll
2024-04-17 09:45 - 2024-04-11 05:54 - 001307232 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2024-04-17 09:45 - 2024-04-11 05:54 - 001307232 _____ C:\Windows\SysWOW64\vulkan-1.dll
2024-04-17 09:45 - 2024-04-11 05:54 - 000731152 _____ C:\Windows\system32\hiprt0200064.dll
2024-04-17 09:45 - 2024-04-11 05:54 - 000607760 _____ C:\Windows\system32\GameManager64.dll
2024-04-17 09:45 - 2024-04-11 05:54 - 000502288 _____ C:\Windows\system32\EEURestart.exe
2024-04-17 09:45 - 2024-04-11 05:54 - 000460816 _____ C:\Windows\SysWOW64\GameManager32.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 011526376 _____ C:\Windows\system32\amdsmi.exe
2024-04-17 09:45 - 2024-04-11 05:53 - 007559592 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdadlx64.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 007339432 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdadlx32.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 002222208 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdsasrv64.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 002130448 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 001725640 _____ (AMD) C:\Windows\system32\amf-mft-mjpeg-decoder64.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 001640976 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 001640976 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 001400096 _____ (AMD) C:\Windows\SysWOW64\amf-mft-mjpeg-decoder32.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 001314720 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdsacli64.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 001254416 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 001055248 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 001039264 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdsacli32.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 000998416 _____ (AMD) C:\Windows\system32\atieclxx.exe
2024-04-17 09:45 - 2024-04-11 05:53 - 000801192 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Rapidfire64.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 000678416 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\Rapidfire.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 000568224 _____ C:\Windows\system32\amdgfxinfo64.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 000535568 _____ C:\Windows\system32\atieah64.exe
2024-04-17 09:45 - 2024-04-11 05:53 - 000473000 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 000432040 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 000404392 _____ C:\Windows\SysWOW64\atieah32.exe
2024-04-17 09:45 - 2024-04-11 05:53 - 000266256 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 000226832 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 000196112 _____ (AMD) C:\Windows\system32\atimuixx.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 000183712 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 000167144 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 000159672 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 000146960 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 000142240 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amfrt64.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 000138664 _____ C:\Windows\system32\amdxc64.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 000136576 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 000131360 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 000118288 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amfrt32.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 000114816 _____ C:\Windows\SysWOW64\amdxc32.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 000074872 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ati2erec.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 000051104 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\RapidFireServer64.dll
2024-04-17 09:45 - 2024-04-11 05:53 - 000048032 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\RapidFireServer.dll
2024-04-17 09:45 - 2024-04-11 05:52 - 105804816 _____ C:\Windows\system32\amd_comgr_2.dll
2024-04-17 09:45 - 2024-04-11 05:52 - 105432696 _____ C:\Windows\system32\amd_comgr.dll
2024-04-17 09:45 - 2024-04-11 05:52 - 089173520 _____ C:\Windows\SysWOW64\amd_comgr32.dll
2024-04-17 09:45 - 2024-04-11 05:52 - 021762176 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdhip64.dll
2024-04-17 09:45 - 2024-04-11 05:52 - 018444416 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdhip64_6.dll
2024-04-17 09:45 - 2024-04-11 05:52 - 000567840 _____ C:\Windows\system32\amdmiracast.dll
2024-04-17 09:45 - 2024-04-11 05:52 - 000543248 _____ C:\Windows\system32\dgtrayicon.exe
2024-04-17 09:45 - 2024-04-11 05:52 - 000524920 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2024-04-17 09:45 - 2024-04-11 05:52 - 000471056 _____ C:\Windows\system32\amdlogum.exe
2024-04-17 09:45 - 2024-04-11 05:52 - 000389760 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2024-04-17 09:45 - 2024-04-11 05:52 - 000361080 _____ C:\Windows\system32\clinfo.exe
2024-04-17 09:45 - 2024-04-11 05:52 - 000177056 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2024-04-17 09:45 - 2024-04-11 05:52 - 000176656 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2024-04-17 09:45 - 2024-04-11 05:52 - 000167240 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2024-04-17 09:45 - 2024-04-11 05:52 - 000151208 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2024-04-17 09:45 - 2024-04-11 05:52 - 000145424 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl.dll
2024-04-17 09:45 - 2024-04-11 05:52 - 000136688 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2024-04-17 09:45 - 2024-04-11 05:01 - 105728848 _____ C:\Windows\system32\amdxc64.so
2024-04-17 09:45 - 2023-05-24 13:42 - 000061888 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdxe.sys
2024-04-17 09:43 - 2024-04-17 09:43 - 045553272 _____ (AMD Inc.) C:\Users\micha\Downloads\amd-software-adrenalin-edition-24.3.1-minimalsetup-240320_web (1).exe
2024-04-17 09:41 - 2024-04-17 09:42 - 045553272 _____ (AMD Inc.) C:\Users\micha\Downloads\amd-software-adrenalin-edition-24.3.1-minimalsetup-240320_web.exe
2024-04-16 20:05 - 2024-04-16 20:05 - 005310427 _____ C:\Users\micha\Downloads\Každodenní gamer (1).mp4
2024-04-15 22:07 - 2024-04-15 22:07 - 000003056 _____ C:\Windows\system32\Drivers\etc\hosts.rollback
2024-04-15 22:07 - 2024-04-15 22:07 - 000000000 ____D C:\Users\micha\AppData\LocalLow\GeekonGames
2024-04-15 22:07 - 2022-05-07 07:22 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts.backup
2024-04-15 20:10 - 2024-04-15 20:10 - 002185886 _____ C:\Users\micha\Downloads\Každodenní gamer.mp4
2024-04-12 22:04 - 2024-04-12 22:04 - 000000000 ____D C:\Users\micha\AppData\Local\EpicOnlineServicesUIHelper
2024-04-12 09:08 - 2024-04-12 09:08 - 000000000 ____D C:\Windows\SysWOW64\DDFs
2024-04-12 00:59 - 2024-04-12 00:59 - 000024320 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-04-12 00:59 - 2024-04-12 00:59 - 000024320 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2024-04-11 21:57 - 2024-04-11 21:57 - 000000000 ____D C:\Users\micha\AppData\Local\MidnightGhostHunt
2024-04-10 16:04 - 2024-04-10 16:04 - 000215239 _____ C:\Users\micha\OneDrive\Plocha\update platinum bundle.jpeg
2024-04-09 21:07 - 2024-04-09 21:07 - 000000000 ____D C:\Users\micha\AppData\Local\PropHunt
2024-04-09 10:21 - 2024-04-09 10:21 - 000174808 _____ C:\Users\micha\OneDrive\Plocha\platinum bundle.jpeg
2024-04-08 22:35 - 2024-05-08 14:36 - 000000000 ____D C:\Users\micha\AppData\Local\LogMeIn Hamachi
2024-04-08 22:35 - 2024-04-08 22:35 - 000000000 ____D C:\Users\micha\AppData\Local\LogMeIn
2024-04-08 22:35 - 2024-04-08 22:35 - 000000000 ____D C:\ProgramData\LogMeIn
2024-04-08 22:34 - 2024-04-08 22:34 - 012394496 _____ C:\Users\micha\Downloads\hamachi.msi
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-05-08 14:47 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SystemTemp
2024-05-08 14:44 - 2024-01-04 19:25 - 001718036 _____ C:\Windows\system32\PerfStringBackup.INI
2024-05-08 14:44 - 2022-05-07 07:22 - 000000000 ____D C:\Windows\INF
2024-05-08 14:42 - 2024-01-04 20:26 - 000000000 ____D C:\Program Files (x86)\Steam
2024-05-08 14:42 - 2022-05-07 07:17 - 000000000 ____D C:\Windows\CbsTemp
2024-05-08 14:39 - 2024-01-15 22:02 - 000000001 _____ C:\Windows\vgkbootstatus.dat
2024-05-08 14:38 - 2024-01-05 15:23 - 000000000 ____D C:\Users\micha\AppData\Roaming\discord
2024-05-08 14:37 - 2024-01-06 00:48 - 000000000 ____D C:\Windows\Minidump
2024-05-08 14:37 - 2024-01-05 15:23 - 000000000 ____D C:\Users\micha\AppData\Local\Discord
2024-05-08 14:37 - 2024-01-04 19:22 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-05-08 14:37 - 2024-01-04 19:21 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-05-08 14:37 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ServiceState
2024-05-08 14:37 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-05-08 14:36 - 2024-01-04 19:21 - 000880672 _____ C:\Windows\system32\wpbbin.exe
2024-05-08 14:36 - 2024-01-04 19:21 - 000842128 _____ C:\Windows\system32\AsusUpdateCheck.exe
2024-05-08 14:29 - 2024-01-08 15:29 - 000000000 ____D C:\Users\micha\AppData\Roaming\G-Menu
2024-05-08 14:20 - 2024-01-04 19:30 - 000000000 ____D C:\Users\micha
2024-05-08 12:45 - 2024-01-04 19:40 - 000000000 ____D C:\Users\micha\AppData\Local\D3DSCache
2024-05-08 10:15 - 2024-01-05 20:37 - 000000000 ____D C:\Users\micha\AppData\Local\LGHUB
2024-05-07 22:33 - 2024-02-02 01:34 - 000000000 ____D C:\Users\micha\AppData\Roaming\EasyAntiCheat
2024-05-07 22:33 - 2024-01-04 23:45 - 000000000 ____D C:\ProgramData\Packer
2024-05-07 19:39 - 2024-01-04 20:27 - 000000000 ____D C:\Users\micha\AppData\Local\Steam
2024-05-06 18:19 - 2024-01-28 14:26 - 000000000 ____D C:\Users\micha\AppData\Roaming\uTorrent
2024-05-06 18:19 - 2024-01-04 23:59 - 000000000 ____D C:\Users\micha\AppData\Local\CrashDumps
2024-05-06 15:59 - 2024-03-16 18:57 - 000000000 ____D C:\Users\micha\AppData\Roaming\Movavi Video Converter 22 Premium
2024-05-06 14:28 - 2024-03-16 19:42 - 000000000 ____D C:\Users\micha\dwhelper
2024-05-04 15:31 - 2024-02-01 11:47 - 000000000 ____D C:\Users\micha\AppData\Roaming\Telegram Desktop
2024-05-03 21:06 - 2024-03-30 19:35 - 000002079 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TikTok LIVE Studio.lnk
2024-05-03 21:06 - 2024-03-16 18:57 - 000012794 _____ C:\ProgramData\tyvfcquz.wxt
2024-05-03 21:06 - 2024-03-04 15:49 - 000000016 _____ C:\ProgramData\mntemp
2024-05-03 21:06 - 2024-01-15 20:52 - 000000000 ____D C:\ProgramData\Riot Games
2024-05-03 21:06 - 2024-01-12 19:11 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-05-03 21:06 - 2024-01-09 18:49 - 000001976 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Streamlabs Desktop.lnk
2024-05-03 21:06 - 2024-01-07 12:47 - 000002027 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Novabench 5.lnk
2024-05-03 21:06 - 2024-01-04 19:22 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-05-03 21:03 - 2024-02-17 20:15 - 000000000 ____D C:\Users\micha\AppData\Roaming\riot-client-ux
2024-05-03 21:02 - 2024-01-04 23:12 - 000000000 ____D C:\ProgramData\AVG
2024-05-03 21:02 - 2022-05-07 07:17 - 000524288 _____ C:\Windows\system32\config\BBI
2024-05-03 17:54 - 2024-01-04 19:42 - 000000000 ____D C:\Users\micha\OneDrive\Plocha\Games
2024-05-03 16:49 - 2024-03-30 10:26 - 000000000 ____D C:\Users\micha\AppData\Local\Battle.net
2024-05-03 09:32 - 2024-03-15 19:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec
2024-05-03 09:32 - 2024-03-15 19:55 - 000000000 ____D C:\Program Files\NordVPN
2024-05-01 21:07 - 2024-01-04 23:06 - 000000000 ____D C:\Users\micha\AppData\Local\UnrealEngine
2024-05-01 20:50 - 2024-03-29 16:32 - 000000000 ____D C:\Users\micha\AppData\Local\BattlEye
2024-05-01 10:16 - 2024-03-23 19:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2024-05-01 10:16 - 2024-03-23 19:21 - 000000000 ____D C:\Program Files (x86)\Razer Chroma SDK
2024-05-01 10:15 - 2024-01-08 15:29 - 000000000 ____D C:\G-Menu
2024-05-01 10:14 - 2024-01-15 20:54 - 000000000 ____D C:\Program Files\Riot Vanguard
2024-05-01 10:14 - 2024-01-04 19:35 - 000000000 ____D C:\Program Files\AMD
2024-05-01 03:24 - 2024-01-15 23:56 - 000000000 ____D C:\Users\micha\AppData\Roaming\Blitz
2024-04-30 23:19 - 2024-01-15 23:56 - 000000032 _____ C:\Users\micha\AppData\Roaming\.machineId
2024-04-30 16:52 - 2024-01-05 20:37 - 000000000 ____D C:\Users\micha\AppData\Roaming\G HUB
2024-04-29 20:42 - 2024-01-04 23:44 - 000000000 ____D C:\Program Files\FACEIT AC
2024-04-29 16:48 - 2024-02-11 14:55 - 000000000 ____D C:\Users\micha\OneDrive\Dokumenty\Korra
2024-04-29 00:44 - 2024-01-04 21:42 - 000000000 ____D C:\ProgramData\Package Cache
2024-04-28 02:11 - 2024-03-30 19:36 - 000000000 ____D C:\Users\micha\AppData\Roaming\TikTok LIVE Studio
2024-04-28 02:10 - 2024-01-17 01:47 - 000000000 ____D C:\Users\micha\AppData\Roaming\.minecraft
2024-04-24 14:41 - 2022-05-07 07:20 - 000520192 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2024-04-24 14:41 - 2022-05-07 07:20 - 000400896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2024-04-24 14:41 - 2022-05-07 07:20 - 000228352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplayx.dll
2024-04-24 14:41 - 2022-05-07 07:20 - 000090112 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll
2024-04-24 14:41 - 2022-05-07 07:20 - 000063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll
2024-04-24 14:41 - 2022-05-07 07:20 - 000049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpwsockx.dll
2024-04-24 14:41 - 2022-05-07 07:20 - 000049152 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2024-04-24 14:41 - 2022-05-07 07:20 - 000032768 _____ (Microsoft Corporation) C:\Windows\system32\dpnlobby.dll
2024-04-24 14:41 - 2022-05-07 07:20 - 000032768 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll
2024-04-24 14:41 - 2022-05-07 07:20 - 000032768 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll
2024-04-24 14:41 - 2022-05-07 07:20 - 000032768 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll
2024-04-24 14:41 - 2022-05-07 07:20 - 000027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpmodemx.dll
2024-04-24 14:41 - 2022-05-07 07:20 - 000023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe
2024-04-24 14:41 - 2022-05-07 07:20 - 000023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplaysvr.exe
2024-04-24 14:41 - 2022-05-07 07:20 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll
2024-04-24 14:41 - 2022-05-07 07:20 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll
2024-04-24 14:41 - 2022-05-07 07:20 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnlobby.dll
2024-04-24 14:41 - 2022-05-07 07:20 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll
2024-04-24 14:36 - 2024-01-04 20:28 - 000000000 ____D C:\Users\micha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2024-04-21 13:34 - 2024-01-04 19:31 - 000000000 ____D C:\Users\micha\AppData\Local\PlaceholderTileLogoFolder
2024-04-19 15:07 - 2024-03-15 19:55 - 000000000 ____D C:\Program Files\NordUpdater
2024-04-19 13:30 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\AppReadiness
2024-04-19 12:42 - 2022-05-07 07:24 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-04-18 21:24 - 2024-03-12 13:56 - 000000000 ____D C:\Program Files\Windscribe
2024-04-18 17:32 - 2024-03-16 11:41 - 000000068 _____ C:\Users\micha\OneDrive\Plocha\gold bundle.txt
2024-04-18 17:32 - 2024-03-14 10:41 - 000000000 _____ C:\Users\micha\OneDrive\Plocha\Nový Text Document (3).txt
2024-04-18 17:32 - 2024-03-12 19:45 - 000000000 _____ C:\Users\micha\OneDrive\Plocha\atlanta mountain.txt
2024-04-18 17:32 - 2024-03-09 10:28 - 000000142 _____ C:\Users\micha\OneDrive\Plocha\Nový Text Document (2).txt
2024-04-18 17:32 - 2024-03-09 10:28 - 000000039 _____ C:\Users\micha\OneDrive\Plocha\super credits.txt
2024-04-18 17:32 - 2024-03-08 16:22 - 000000024 _____ C:\Users\micha\OneDrive\Plocha\345311.txt
2024-04-18 17:32 - 2024-03-04 20:28 - 000000065 _____ C:\Users\micha\OneDrive\Plocha\hell divers 2.txt
2024-04-18 17:32 - 2024-02-24 16:59 - 000000000 _____ C:\Users\micha\OneDrive\Plocha\Nový Text Document.txt
2024-04-18 17:32 - 2024-02-03 18:06 - 000158218 _____ C:\Users\micha\OneDrive\Plocha\HWMonitor.txt
2024-04-18 17:32 - 2024-02-03 18:06 - 000000292 _____ C:\Users\micha\OneDrive\Plocha\glitch.bat
2024-04-18 17:27 - 2024-01-04 21:29 - 000000000 ____D C:\Users\micha\AppData\Local\AMD_Common
2024-04-18 10:30 - 2024-01-04 19:23 - 000000000 ____D C:\ProgramData\Packages
2024-04-18 10:30 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-04-18 01:23 - 2024-01-04 20:07 - 000002619 _____ C:\Users\micha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2024-04-17 18:32 - 2024-01-04 19:41 - 000003584 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-756127909-4058986209-260929036-1001
2024-04-17 18:32 - 2024-01-04 19:41 - 000003354 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-756127909-4058986209-260929036-1001
2024-04-17 18:32 - 2024-01-04 19:41 - 000002377 _____ C:\Users\micha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-04-17 14:18 - 2024-01-04 20:34 - 000004152 _____ C:\Windows\system32\Tasks\Opera GX scheduled Autoupdate 1704393290
2024-04-17 14:18 - 2024-01-04 20:34 - 000001434 _____ C:\Users\micha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera GX.lnk
2024-04-17 09:53 - 2024-01-04 19:40 - 000000000 ____D C:\Users\micha\AppData\Local\AMD
2024-04-17 09:46 - 2024-01-05 15:41 - 000003484 _____ C:\Windows\system32\Tasks\ModifyLinkUpdate
2024-04-17 09:46 - 2024-01-05 15:41 - 000003072 _____ C:\Windows\system32\Tasks\StartDVR
2024-04-17 09:46 - 2024-01-04 21:43 - 000003152 _____ C:\Windows\system32\Tasks\StartCN
2024-04-17 09:46 - 2024-01-04 21:29 - 000000000 ____D C:\AMD
2024-04-17 09:46 - 2024-01-04 19:39 - 000000000 ____D C:\Users\micha\AppData\Local\Packages
2024-04-15 22:07 - 2024-01-07 11:26 - 000000000 ____D C:\Windows\SysWOW64\directx
2024-04-15 01:16 - 2024-03-13 17:30 - 000000000 ____D C:\Program Files\dotnet
2024-04-12 09:24 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-04-12 09:09 - 2024-01-04 19:21 - 000295696 _____ C:\Windows\system32\FNTCACHE.DAT
2024-04-12 09:08 - 2023-12-04 08:25 - 000000000 ____D C:\Windows\system32\Microsoft-Edge-WebView
2024-04-12 09:08 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2024-04-12 09:08 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SystemResources
2024-04-12 09:08 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\WinMetadata
2024-04-12 09:08 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\ShellExperiences
2024-04-12 09:08 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\Sgrm
2024-04-12 09:08 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2024-04-12 09:08 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\oobe
2024-04-12 09:08 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\HealthAttestationClient
2024-04-12 09:08 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\DDFs
2024-04-12 09:08 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ShellComponents
2024-04-12 09:08 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\Provisioning
2024-04-12 09:08 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\bcastdvr
2024-04-12 01:03 - 2024-01-04 20:09 - 000000000 ____D C:\Windows\system32\MRT
2024-04-12 01:01 - 2024-01-04 20:09 - 192651728 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-04-12 00:59 - 2024-01-04 19:24 - 003213824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2024-04-11 11:46 - 2024-01-04 19:30 - 000000000 ___SD C:\Users\micha\AppData\Roaming\Microsoft\Protect
2024-04-11 10:25 - 2024-03-15 19:56 - 000000000 ____D C:\Users\micha\AppData\Local\NordVPN
2024-04-10 00:53 - 2024-01-04 19:22 - 000000000 ____D C:\Windows\system32\Drivers\wd
2024-04-08 19:18 - 2024-01-04 20:07 - 000004122 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskUserS-1-5-21-756127909-4058986209-260929036-1001UA{56264D92-785A-4548-8265-64123CCC1F93}
2024-04-08 19:18 - 2024-01-04 20:07 - 000003854 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskUserS-1-5-21-756127909-4058986209-260929036-1001Core{FD184149-DAB6-4E84-85F3-97E5AB39A029}
==================== Files in the root of some directories ========
2024-01-15 23:56 - 2024-04-30 23:19 - 000000032 _____ () C:\Users\micha\AppData\Roaming\.machineId
2024-01-14 20:36 - 2024-01-14 20:36 - 000000016 _____ () C:\Users\micha\AppData\Roaming\obs-virtualcam.txt
2024-01-08 15:30 - 2024-01-08 15:30 - 000000044 _____ () C:\Users\micha\AppData\Roaming\Screen+.data
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Pomalý pc a modrá smrt
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Pomalý pc a modrá smrt
Posílám addition do přílohy, jelikož se to nevešlo do zprávy.
- Přílohy
-
- Addition.rar
- (19.61 KiB) Staženo 4 x
-
Rudy
- Site Admin
- Příspěvky: 118314
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý pc a modrá smrt
Zdravím!
Musím vás upozornit předem, že problematika PC her není přednětem tohoto fóra. Na to jsou odborníci na jiných fórech. My vám PC vyčistíme, popř se podíváme, kde by mohl problém být. Otevřte poznámkový blok a zkopírujte do něj:
Musím vás upozornit předem, že problematika PC her není přednětem tohoto fóra. Na to jsou odborníci na jiných fórech. My vám PC vyčistíme, popř se podíváme, kde by mohl problém být. Otevřte poznámkový blok a zkopírujte do něj:
Uložte do C:\Users\micha\OneDrive\Plocha jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKLM-x32\...\Run: [StatusAutoRun6015B] => "C:\Program Files (x86)\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmpl.exe" Xerox WorkCentre 6015B,hide,\S (No File)
HKU\S-1-5-21-756127909-4058986209-260929036-1001\...\Run: [ProtonVPN] => C:\Program Files\Proton\VPN\ProtonVPN.Launcher.exe (No File)
Task: {FBE1772C-B767-4FE7-9341-EF640D180ED2} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem125.0.6407.0{F29BAF4A-C758-4E34-BC33-B1A7D3D4864C} => C:\Program Files (x86)\Google\GoogleUpdater\125.0.6407.0\updater.exe [4782880 2024-04-08] (Google LLC -> Google LLC)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
R3 cpuz158; C:\Windows\temp\cpuz158\cpuz158_x64.sys [44576 2024-05-08] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ATTENTION
S3 cpuz148; \??\C:\Windows\temp\cpuz148\cpuz148_x64.sys [X] <==== ATTENTION
S3 PDFWKRNL; \??\C:\Users\micha\AppData\Local\Temp\USBCPDFW\pdfwkrnl.sys [X] <==== ATTENTION
C:\Users\micha\AppData\Local\Temp
CustomCLSID: HKU\S-1-5-21-756127909-4058986209-260929036-1001_Classes\CLSID\{2611B500-C92D-4949-B04B-9B7039C47E03}\InprocServer32 -> C:\Users\micha\AppData\Local\BraveSoftware\Update\1.3.361.147\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-756127909-4058986209-260929036-1001_Classes\CLSID\{50726f74-6f6e-2e56-504e-000000000000}\localserver32 -> "C:\Program Files\Proton\VPN\v3.2.10\ProtonVPN.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-756127909-4058986209-260929036-1001_Classes\CLSID\{5C4D8D77-5B87-40CA-884E-F56858227E5C}\localserver32 -> C:\Program Files\TeamSpeak\notification_helper.exe => No File
CustomCLSID: HKU\S-1-5-21-756127909-4058986209-260929036-1001_Classes\CLSID\{E5C657EF-6BB1-4852-A192-2EF1DE230B6F}\InprocServer32 -> C:\Users\micha\AppData\Local\BraveSoftware\Update\1.3.361.143\psuser_64.dll => No File
AlternateDataStreams: C:\ProgramData\mntemp:8EAD8B3507 [3442]
AlternateDataStreams: C:\ProgramData\tyvfcquz.wxt:B63721167D [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\µTorrent.lnk:27CED3D9D4 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Driver Updater.lnk:837EB8C671 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks 5.lnk:088221F38A [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks Multi-Instance Manager.lnk:FE00AE19CB [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini:41964AA945 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk:BE32D07BC5 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FACEIT AC.lnk:550995E265 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk:8096E45125 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk:E77773B271 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Novabench 5.lnk:B68549C808 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Streamlabs Desktop.lnk:578370639A [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak.lnk:DBB58A0286 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TikTok LIVE Studio.lnk:1DE7D35192 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WireGuard.lnk:1C027AF69D [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WireGuard.lnk:EF9F19812A [3442]
AlternateDataStreams: C:\Users\micha\Data aplikací:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\micha\OneDrive\Plocha\a.dirty.carnival.(2006).cze.1cd.(5529686).zip:shield [125]
AlternateDataStreams: C:\Users\micha\OneDrive\Plocha\a.dirty.carnival.(2006).cze.2cd.(4019880).zip:shield [125]
AlternateDataStreams: C:\Users\micha\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [9636]
FirewallRules: [TCP Query User{5CC7EFAB-2A76-4C35-A3C2-DE07B71B9086}C:\users\micha\appdata\local\webtorrent\app-0.24.0\webtorrent.exe] => (Allow) C:\users\micha\appdata\local\webtorrent\app-0.24.0\webtorrent.exe => No File
FirewallRules: [UDP Query User{61512821-A882-4F81-A73E-EA793CCCFE19}C:\users\micha\appdata\local\webtorrent\app-0.24.0\webtorrent.exe] => (Allow) C:\users\micha\appdata\local\webtorrent\app-0.24.0\webtorrent.exe => No File
FirewallRules: [{07DE6518-0576-43F1-A612-55A8BAC5CAF4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\911 Operator\911.exe => No File
FirewallRules: [{4403A881-7C0D-4826-9D74-B8DAE5877EFA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\911 Operator\911.exe => No File
FirewallRules: [{DC14EACF-F224-483C-AB65-425D239883B9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\911 Operator\CallEditor.exe => No File
FirewallRules: [{C800CCFA-96CE-492E-9E25-FC18C717FC02}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\911 Operator\CallEditor.exe => No File
FirewallRules: [{101D19CD-52A9-4BF3-B5FF-DA899BD30F73}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Finals\Discovery.exe => No File
FirewallRules: [{B3AB68A4-1E8F-41C0-91BC-8208E1F75B1E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Finals\Discovery.exe => No File
FirewallRules: [TCP Query User{3A9A0F5B-A92F-48D3-B6FB-7C0B2D4F64AB}D:\call of duty modern warfare\call of duty\_retail_\cod.exe] => (Allow) D:\call of duty modern warfare\call of duty\_retail_\cod.exe => No File
FirewallRules: [UDP Query User{DCFDEB75-AA39-4423-BEA5-AD4F5F68FE85}D:\call of duty modern warfare\call of duty\_retail_\cod.exe] => (Allow) D:\call of duty modern warfare\call of duty\_retail_\cod.exe => No File
FirewallRules: [TCP Query User{EB2D5D7D-38C0-4C04-A7E6-2B8FE16ECE85}C:\program files\tiktok live studio\0.53.4\tiktok live studio.exe] => (Allow) C:\program files\tiktok live studio\0.53.4\tiktok live studio.exe => No File
FirewallRules: [UDP Query User{A8A791BC-9118-4018-ABB2-8850487CF74C}C:\program files\tiktok live studio\0.53.4\tiktok live studio.exe] => (Allow) C:\program files\tiktok live studio\0.53.4\tiktok live studio.exe => No File
FirewallRules: [TCP Query User{304AB9F1-2DC3-4278-B36E-A9629042A8C7}D:\prop hunt\prophunt\binaries\win64\prophunt-win64-shipping.exe] => (Allow) D:\prop hunt\prophunt\binaries\win64\prophunt-win64-shipping.exe => No File
FirewallRules: [UDP Query User{AF184620-EB38-444F-ADFE-941285B426AC}D:\prop hunt\prophunt\binaries\win64\prophunt-win64-shipping.exe] => (Allow) D:\prop hunt\prophunt\binaries\win64\prophunt-win64-shipping.exe => No File
FirewallRules: [TCP Query User{9F3169CB-DA92-4499-8119-D188EDF6ED7E}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_authbrowser] => (Allow) C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_authbrowser => No File
FirewallRules: [UDP Query User{A15C4DFC-E5C5-47D8-96F7-B6895718D229}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_authbrowser] => (Allow) C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_authbrowser => No File
FirewallRules: [TCP Query User{F8E9540E-07BA-42FB-B2E2-2A908C3FD442}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b2699_gtaprocess.exe] => (Allow) C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b2699_gtaprocess.exe => No File
FirewallRules: [UDP Query User{43757C62-253C-4226-9F9B-0DA08B7870BD}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b2699_gtaprocess.exe] => (Allow) C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b2699_gtaprocess.exe => No File
FirewallRules: [TCP Query User{C9F29B00-6B37-44E0-99E1-F5E0EE9DE92D}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_steamchild.exe] => (Allow) C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_steamchild.exe => No File
FirewallRules: [UDP Query User{B6D2DD90-39EB-4141-9302-05AE7E7C2B1E}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_steamchild.exe] => (Allow) C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_steamchild.exe => No File
FirewallRules: [TCP Query User{49EBBBFC-0171-46B4-AF8E-C135364EECFF}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b3095_gtaprocess.exe] => (Allow) C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b3095_gtaprocess.exe => No File
FirewallRules: [UDP Query User{0A052E5C-07A3-4744-A20F-910A9F3B7281}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b3095_gtaprocess.exe] => (Allow) C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b3095_gtaprocess.exe => No File
EmptyTemp:
Hosts:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalý pc a modrá smrt
Fix result of Farbar Recovery Scan Tool (x64) Version: 19.04.2024 01
Ran by micha (13-05-2024 14:18:02) Run:1
Running from C:\Users\micha\OneDrive\Plocha
Loaded Profiles: micha
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM-x32\...\Run: [StatusAutoRun6015B] => "C:\Program Files (x86)\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmpl.exe" Xerox WorkCentre 6015B,hide,\S (No File)
HKU\S-1-5-21-756127909-4058986209-260929036-1001\...\Run: [ProtonVPN] => C:\Program Files\Proton\VPN\ProtonVPN.Launcher.exe (No File)
Task: {FBE1772C-B767-4FE7-9341-EF640D180ED2} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem125.0.6407.0{F29BAF4A-C758-4E34-BC33-B1A7D3D4864C} => C:\Program Files (x86)\Google\GoogleUpdater\125.0.6407.0\updater.exe [4782880 2024-04-08] (Google LLC -> Google LLC)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
R3 cpuz158; C:\Windows\temp\cpuz158\cpuz158_x64.sys [44576 2024-05-08] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ATTENTION
S3 cpuz148; \??\C:\Windows\temp\cpuz148\cpuz148_x64.sys [X] <==== ATTENTION
S3 PDFWKRNL; \??\C:\Users\micha\AppData\Local\Temp\USBCPDFW\pdfwkrnl.sys [X] <==== ATTENTION
C:\Users\micha\AppData\Local\Temp
CustomCLSID: HKU\S-1-5-21-756127909-4058986209-260929036-1001_Classes\CLSID\{2611B500-C92D-4949-B04B-9B7039C47E03}\InprocServer32 -> C:\Users\micha\AppData\Local\BraveSoftware\Update\1.3.361.147\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-756127909-4058986209-260929036-1001_Classes\CLSID\{50726f74-6f6e-2e56-504e-000000000000}\localserver32 -> "C:\Program Files\Proton\VPN\v3.2.10\ProtonVPN.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-756127909-4058986209-260929036-1001_Classes\CLSID\{5C4D8D77-5B87-40CA-884E-F56858227E5C}\localserver32 -> C:\Program Files\TeamSpeak\notification_helper.exe => No File
CustomCLSID: HKU\S-1-5-21-756127909-4058986209-260929036-1001_Classes\CLSID\{E5C657EF-6BB1-4852-A192-2EF1DE230B6F}\InprocServer32 -> C:\Users\micha\AppData\Local\BraveSoftware\Update\1.3.361.143\psuser_64.dll => No File
AlternateDataStreams: C:\ProgramData\mntemp:8EAD8B3507 [3442]
AlternateDataStreams: C:\ProgramData\tyvfcquz.wxt:B63721167D [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\µTorrent.lnk:27CED3D9D4 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Driver Updater.lnk:837EB8C671 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks 5.lnk:088221F38A [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks Multi-Instance Manager.lnk:FE00AE19CB [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini:41964AA945 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk:BE32D07BC5 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FACEIT AC.lnk:550995E265 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk:8096E45125 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk:E77773B271 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Novabench 5.lnk:B68549C808 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Streamlabs Desktop.lnk:578370639A [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak.lnk:DBB58A0286 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TikTok LIVE Studio.lnk:1DE7D35192 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WireGuard.lnk:1C027AF69D [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WireGuard.lnk:EF9F19812A [3442]
AlternateDataStreams: C:\Users\micha\Data aplikací:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\micha\OneDrive\Plocha\a.dirty.carnival.(2006).cze.1cd.(5529686).zip:shield [125]
AlternateDataStreams: C:\Users\micha\OneDrive\Plocha\a.dirty.carnival.(2006).cze.2cd.(4019880).zip:shield [125]
AlternateDataStreams: C:\Users\micha\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [9636]
FirewallRules: [TCP Query User{5CC7EFAB-2A76-4C35-A3C2-DE07B71B9086}C:\users\micha\appdata\local\webtorrent\app-0.24.0\webtorrent.exe] => (Allow) C:\users\micha\appdata\local\webtorrent\app-0.24.0\webtorrent.exe => No File
FirewallRules: [UDP Query User{61512821-A882-4F81-A73E-EA793CCCFE19}C:\users\micha\appdata\local\webtorrent\app-0.24.0\webtorrent.exe] => (Allow) C:\users\micha\appdata\local\webtorrent\app-0.24.0\webtorrent.exe => No File
FirewallRules: [{07DE6518-0576-43F1-A612-55A8BAC5CAF4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\911 Operator\911.exe => No File
FirewallRules: [{4403A881-7C0D-4826-9D74-B8DAE5877EFA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\911 Operator\911.exe => No File
FirewallRules: [{DC14EACF-F224-483C-AB65-425D239883B9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\911 Operator\CallEditor.exe => No File
FirewallRules: [{C800CCFA-96CE-492E-9E25-FC18C717FC02}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\911 Operator\CallEditor.exe => No File
FirewallRules: [{101D19CD-52A9-4BF3-B5FF-DA899BD30F73}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Finals\Discovery.exe => No File
FirewallRules: [{B3AB68A4-1E8F-41C0-91BC-8208E1F75B1E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Finals\Discovery.exe => No File
FirewallRules: [TCP Query User{3A9A0F5B-A92F-48D3-B6FB-7C0B2D4F64AB}D:\call of duty modern warfare\call of duty\_retail_\cod.exe] => (Allow) D:\call of duty modern warfare\call of duty\_retail_\cod.exe => No File
FirewallRules: [UDP Query User{DCFDEB75-AA39-4423-BEA5-AD4F5F68FE85}D:\call of duty modern warfare\call of duty\_retail_\cod.exe] => (Allow) D:\call of duty modern warfare\call of duty\_retail_\cod.exe => No File
FirewallRules: [TCP Query User{EB2D5D7D-38C0-4C04-A7E6-2B8FE16ECE85}C:\program files\tiktok live studio\0.53.4\tiktok live studio.exe] => (Allow) C:\program files\tiktok live studio\0.53.4\tiktok live studio.exe => No File
FirewallRules: [UDP Query User{A8A791BC-9118-4018-ABB2-8850487CF74C}C:\program files\tiktok live studio\0.53.4\tiktok live studio.exe] => (Allow) C:\program files\tiktok live studio\0.53.4\tiktok live studio.exe => No File
FirewallRules: [TCP Query User{304AB9F1-2DC3-4278-B36E-A9629042A8C7}D:\prop hunt\prophunt\binaries\win64\prophunt-win64-shipping.exe] => (Allow) D:\prop hunt\prophunt\binaries\win64\prophunt-win64-shipping.exe => No File
FirewallRules: [UDP Query User{AF184620-EB38-444F-ADFE-941285B426AC}D:\prop hunt\prophunt\binaries\win64\prophunt-win64-shipping.exe] => (Allow) D:\prop hunt\prophunt\binaries\win64\prophunt-win64-shipping.exe => No File
FirewallRules: [TCP Query User{9F3169CB-DA92-4499-8119-D188EDF6ED7E}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_authbrowser] => (Allow) C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_authbrowser => No File
FirewallRules: [UDP Query User{A15C4DFC-E5C5-47D8-96F7-B6895718D229}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_authbrowser] => (Allow) C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_authbrowser => No File
FirewallRules: [TCP Query User{F8E9540E-07BA-42FB-B2E2-2A908C3FD442}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b2699_gtaprocess.exe] => (Allow) C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b2699_gtaprocess.exe => No File
FirewallRules: [UDP Query User{43757C62-253C-4226-9F9B-0DA08B7870BD}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b2699_gtaprocess.exe] => (Allow) C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b2699_gtaprocess.exe => No File
FirewallRules: [TCP Query User{C9F29B00-6B37-44E0-99E1-F5E0EE9DE92D}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_steamchild.exe] => (Allow) C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_steamchild.exe => No File
FirewallRules: [UDP Query User{B6D2DD90-39EB-4141-9302-05AE7E7C2B1E}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_steamchild.exe] => (Allow) C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_steamchild.exe => No File
FirewallRules: [TCP Query User{49EBBBFC-0171-46B4-AF8E-C135364EECFF}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b3095_gtaprocess.exe] => (Allow) C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b3095_gtaprocess.exe => No File
FirewallRules: [UDP Query User{0A052E5C-07A3-4744-A20F-910A9F3B7281}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b3095_gtaprocess.exe] => (Allow) C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b3095_gtaprocess.exe => No File
EmptyTemp:
Hosts:
End
*****************
Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\StatusAutoRun6015B" => removed successfully
"HKU\S-1-5-21-756127909-4058986209-260929036-1001\Software\Microsoft\Windows\CurrentVersion\Run\\ProtonVPN" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{FBE1772C-B767-4FE7-9341-EF640D180ED2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FBE1772C-B767-4FE7-9341-EF640D180ED2}" => removed successfully
C:\Windows\System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem125.0.6407.0{F29BAF4A-C758-4E34-BC33-B1A7D3D4864C} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem125.0.6407.0{F29BAF4A-C758-4E34-BC33-B1A7D3D4864C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E0F10DCF-44AD-40E8-9370-FB5DA59F93FB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E0F10DCF-44AD-40E8-9370-FB5DA59F93FB}" => removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => removed successfully
cpuz158 => Service stopped successfully.
HKLM\System\CurrentControlSet\Services\cpuz158 => removed successfully
cpuz158 => service removed successfully
HKLM\System\CurrentControlSet\Services\cpuz148 => removed successfully
cpuz148 => service removed successfully
HKLM\System\CurrentControlSet\Services\PDFWKRNL => removed successfully
PDFWKRNL => service removed successfully
"C:\Users\micha\AppData\Local\Temp" Folder move:
C:\Users\micha\AppData\Local\Temp => moved successfully
HKU\S-1-5-21-756127909-4058986209-260929036-1001_Classes\CLSID\{2611B500-C92D-4949-B04B-9B7039C47E03} => removed successfully
HKU\S-1-5-21-756127909-4058986209-260929036-1001_Classes\CLSID\{50726f74-6f6e-2e56-504e-000000000000} => removed successfully
HKU\S-1-5-21-756127909-4058986209-260929036-1001_Classes\CLSID\{5C4D8D77-5B87-40CA-884E-F56858227E5C} => removed successfully
HKU\S-1-5-21-756127909-4058986209-260929036-1001_Classes\CLSID\{E5C657EF-6BB1-4852-A192-2EF1DE230B6F} => removed successfully
C:\ProgramData\mntemp => ":8EAD8B3507" ADS removed successfully
C:\ProgramData\tyvfcquz.wxt => ":B63721167D" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini => ":B1DA6C571C" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\µTorrent.lnk => ":27CED3D9D4" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Driver Updater.lnk => ":837EB8C671" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks 5.lnk => ":088221F38A" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks Multi-Instance Manager.lnk => ":FE00AE19CB" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini => ":41964AA945" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk => ":BE32D07BC5" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FACEIT AC.lnk => ":550995E265" ADS removed successfully
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk" => ":8096E45125" ADS not found.
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk" => ":E77773B271" ADS not found.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Novabench 5.lnk => ":B68549C808" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Streamlabs Desktop.lnk => ":578370639A" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak.lnk => ":DBB58A0286" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TikTok LIVE Studio.lnk => ":1DE7D35192" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WireGuard.lnk => ":1C027AF69D" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WireGuard.lnk => ":EF9F19812A" ADS removed successfully
C:\Users\micha\Data aplikací => ":00e481b5e22dbe1f649fcddd505d3eb7" ADS removed successfully
C:\Users\micha\OneDrive\Plocha\a.dirty.carnival.(2006).cze.1cd.(5529686).zip => ":shield" ADS removed successfully
C:\Users\micha\OneDrive\Plocha\a.dirty.carnival.(2006).cze.2cd.(4019880).zip => ":shield" ADS removed successfully
"C:\Users\micha\AppData\Roaming" => ":00e481b5e22dbe1f649fcddd505d3eb7" ADS not found.
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{5CC7EFAB-2A76-4C35-A3C2-DE07B71B9086}C:\users\micha\appdata\local\webtorrent\app-0.24.0\webtorrent.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{61512821-A882-4F81-A73E-EA793CCCFE19}C:\users\micha\appdata\local\webtorrent\app-0.24.0\webtorrent.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{07DE6518-0576-43F1-A612-55A8BAC5CAF4}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4403A881-7C0D-4826-9D74-B8DAE5877EFA}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DC14EACF-F224-483C-AB65-425D239883B9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C800CCFA-96CE-492E-9E25-FC18C717FC02}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{101D19CD-52A9-4BF3-B5FF-DA899BD30F73}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B3AB68A4-1E8F-41C0-91BC-8208E1F75B1E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{3A9A0F5B-A92F-48D3-B6FB-7C0B2D4F64AB}D:\call of duty modern warfare\call of duty\_retail_\cod.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{DCFDEB75-AA39-4423-BEA5-AD4F5F68FE85}D:\call of duty modern warfare\call of duty\_retail_\cod.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{EB2D5D7D-38C0-4C04-A7E6-2B8FE16ECE85}C:\program files\tiktok live studio\0.53.4\tiktok live studio.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{A8A791BC-9118-4018-ABB2-8850487CF74C}C:\program files\tiktok live studio\0.53.4\tiktok live studio.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{304AB9F1-2DC3-4278-B36E-A9629042A8C7}D:\prop hunt\prophunt\binaries\win64\prophunt-win64-shipping.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{AF184620-EB38-444F-ADFE-941285B426AC}D:\prop hunt\prophunt\binaries\win64\prophunt-win64-shipping.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{9F3169CB-DA92-4499-8119-D188EDF6ED7E}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_authbrowser" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{A15C4DFC-E5C5-47D8-96F7-B6895718D229}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_authbrowser" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{F8E9540E-07BA-42FB-B2E2-2A908C3FD442}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b2699_gtaprocess.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{43757C62-253C-4226-9F9B-0DA08B7870BD}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b2699_gtaprocess.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C9F29B00-6B37-44E0-99E1-F5E0EE9DE92D}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_steamchild.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{B6D2DD90-39EB-4141-9302-05AE7E7C2B1E}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_steamchild.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{49EBBBFC-0171-46B4-AF8E-C135364EECFF}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b3095_gtaprocess.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{0A052E5C-07A3-4744-A20F-910A9F3B7281}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b3095_gtaprocess.exe" => removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 59231659 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 660483488 B
Windows/system/drivers => 34377010 B
Edge => 0 B
Chrome => 55385960 B
Brave => 783140307 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 9538672 B
systemprofile32 => 9751672 B
LocalService => 9760939 B
NetworkService => 9924387 B
micha => 10791053 B
RecycleBin => 817 B
EmptyTemp: => 1.5 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 14:18:36 ====
Ran by micha (13-05-2024 14:18:02) Run:1
Running from C:\Users\micha\OneDrive\Plocha
Loaded Profiles: micha
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM-x32\...\Run: [StatusAutoRun6015B] => "C:\Program Files (x86)\Xerox Office Printing\WorkCentre SSW\PrintingScout\xrksmpl.exe" Xerox WorkCentre 6015B,hide,\S (No File)
HKU\S-1-5-21-756127909-4058986209-260929036-1001\...\Run: [ProtonVPN] => C:\Program Files\Proton\VPN\ProtonVPN.Launcher.exe (No File)
Task: {FBE1772C-B767-4FE7-9341-EF640D180ED2} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem125.0.6407.0{F29BAF4A-C758-4E34-BC33-B1A7D3D4864C} => C:\Program Files (x86)\Google\GoogleUpdater\125.0.6407.0\updater.exe [4782880 2024-04-08] (Google LLC -> Google LLC)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
R3 cpuz158; C:\Windows\temp\cpuz158\cpuz158_x64.sys [44576 2024-05-08] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ATTENTION
S3 cpuz148; \??\C:\Windows\temp\cpuz148\cpuz148_x64.sys [X] <==== ATTENTION
S3 PDFWKRNL; \??\C:\Users\micha\AppData\Local\Temp\USBCPDFW\pdfwkrnl.sys [X] <==== ATTENTION
C:\Users\micha\AppData\Local\Temp
CustomCLSID: HKU\S-1-5-21-756127909-4058986209-260929036-1001_Classes\CLSID\{2611B500-C92D-4949-B04B-9B7039C47E03}\InprocServer32 -> C:\Users\micha\AppData\Local\BraveSoftware\Update\1.3.361.147\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-756127909-4058986209-260929036-1001_Classes\CLSID\{50726f74-6f6e-2e56-504e-000000000000}\localserver32 -> "C:\Program Files\Proton\VPN\v3.2.10\ProtonVPN.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-756127909-4058986209-260929036-1001_Classes\CLSID\{5C4D8D77-5B87-40CA-884E-F56858227E5C}\localserver32 -> C:\Program Files\TeamSpeak\notification_helper.exe => No File
CustomCLSID: HKU\S-1-5-21-756127909-4058986209-260929036-1001_Classes\CLSID\{E5C657EF-6BB1-4852-A192-2EF1DE230B6F}\InprocServer32 -> C:\Users\micha\AppData\Local\BraveSoftware\Update\1.3.361.143\psuser_64.dll => No File
AlternateDataStreams: C:\ProgramData\mntemp:8EAD8B3507 [3442]
AlternateDataStreams: C:\ProgramData\tyvfcquz.wxt:B63721167D [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini:B1DA6C571C [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\µTorrent.lnk:27CED3D9D4 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Driver Updater.lnk:837EB8C671 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks 5.lnk:088221F38A [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks Multi-Instance Manager.lnk:FE00AE19CB [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini:41964AA945 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk:BE32D07BC5 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FACEIT AC.lnk:550995E265 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk:8096E45125 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk:E77773B271 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Novabench 5.lnk:B68549C808 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Streamlabs Desktop.lnk:578370639A [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak.lnk:DBB58A0286 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TikTok LIVE Studio.lnk:1DE7D35192 [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WireGuard.lnk:1C027AF69D [3442]
AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WireGuard.lnk:EF9F19812A [3442]
AlternateDataStreams: C:\Users\micha\Data aplikací:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\micha\OneDrive\Plocha\a.dirty.carnival.(2006).cze.1cd.(5529686).zip:shield [125]
AlternateDataStreams: C:\Users\micha\OneDrive\Plocha\a.dirty.carnival.(2006).cze.2cd.(4019880).zip:shield [125]
AlternateDataStreams: C:\Users\micha\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [9636]
FirewallRules: [TCP Query User{5CC7EFAB-2A76-4C35-A3C2-DE07B71B9086}C:\users\micha\appdata\local\webtorrent\app-0.24.0\webtorrent.exe] => (Allow) C:\users\micha\appdata\local\webtorrent\app-0.24.0\webtorrent.exe => No File
FirewallRules: [UDP Query User{61512821-A882-4F81-A73E-EA793CCCFE19}C:\users\micha\appdata\local\webtorrent\app-0.24.0\webtorrent.exe] => (Allow) C:\users\micha\appdata\local\webtorrent\app-0.24.0\webtorrent.exe => No File
FirewallRules: [{07DE6518-0576-43F1-A612-55A8BAC5CAF4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\911 Operator\911.exe => No File
FirewallRules: [{4403A881-7C0D-4826-9D74-B8DAE5877EFA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\911 Operator\911.exe => No File
FirewallRules: [{DC14EACF-F224-483C-AB65-425D239883B9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\911 Operator\CallEditor.exe => No File
FirewallRules: [{C800CCFA-96CE-492E-9E25-FC18C717FC02}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\911 Operator\CallEditor.exe => No File
FirewallRules: [{101D19CD-52A9-4BF3-B5FF-DA899BD30F73}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Finals\Discovery.exe => No File
FirewallRules: [{B3AB68A4-1E8F-41C0-91BC-8208E1F75B1E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Finals\Discovery.exe => No File
FirewallRules: [TCP Query User{3A9A0F5B-A92F-48D3-B6FB-7C0B2D4F64AB}D:\call of duty modern warfare\call of duty\_retail_\cod.exe] => (Allow) D:\call of duty modern warfare\call of duty\_retail_\cod.exe => No File
FirewallRules: [UDP Query User{DCFDEB75-AA39-4423-BEA5-AD4F5F68FE85}D:\call of duty modern warfare\call of duty\_retail_\cod.exe] => (Allow) D:\call of duty modern warfare\call of duty\_retail_\cod.exe => No File
FirewallRules: [TCP Query User{EB2D5D7D-38C0-4C04-A7E6-2B8FE16ECE85}C:\program files\tiktok live studio\0.53.4\tiktok live studio.exe] => (Allow) C:\program files\tiktok live studio\0.53.4\tiktok live studio.exe => No File
FirewallRules: [UDP Query User{A8A791BC-9118-4018-ABB2-8850487CF74C}C:\program files\tiktok live studio\0.53.4\tiktok live studio.exe] => (Allow) C:\program files\tiktok live studio\0.53.4\tiktok live studio.exe => No File
FirewallRules: [TCP Query User{304AB9F1-2DC3-4278-B36E-A9629042A8C7}D:\prop hunt\prophunt\binaries\win64\prophunt-win64-shipping.exe] => (Allow) D:\prop hunt\prophunt\binaries\win64\prophunt-win64-shipping.exe => No File
FirewallRules: [UDP Query User{AF184620-EB38-444F-ADFE-941285B426AC}D:\prop hunt\prophunt\binaries\win64\prophunt-win64-shipping.exe] => (Allow) D:\prop hunt\prophunt\binaries\win64\prophunt-win64-shipping.exe => No File
FirewallRules: [TCP Query User{9F3169CB-DA92-4499-8119-D188EDF6ED7E}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_authbrowser] => (Allow) C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_authbrowser => No File
FirewallRules: [UDP Query User{A15C4DFC-E5C5-47D8-96F7-B6895718D229}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_authbrowser] => (Allow) C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_authbrowser => No File
FirewallRules: [TCP Query User{F8E9540E-07BA-42FB-B2E2-2A908C3FD442}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b2699_gtaprocess.exe] => (Allow) C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b2699_gtaprocess.exe => No File
FirewallRules: [UDP Query User{43757C62-253C-4226-9F9B-0DA08B7870BD}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b2699_gtaprocess.exe] => (Allow) C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b2699_gtaprocess.exe => No File
FirewallRules: [TCP Query User{C9F29B00-6B37-44E0-99E1-F5E0EE9DE92D}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_steamchild.exe] => (Allow) C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_steamchild.exe => No File
FirewallRules: [UDP Query User{B6D2DD90-39EB-4141-9302-05AE7E7C2B1E}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_steamchild.exe] => (Allow) C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_steamchild.exe => No File
FirewallRules: [TCP Query User{49EBBBFC-0171-46B4-AF8E-C135364EECFF}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b3095_gtaprocess.exe] => (Allow) C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b3095_gtaprocess.exe => No File
FirewallRules: [UDP Query User{0A052E5C-07A3-4744-A20F-910A9F3B7281}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b3095_gtaprocess.exe] => (Allow) C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b3095_gtaprocess.exe => No File
EmptyTemp:
Hosts:
End
*****************
Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\StatusAutoRun6015B" => removed successfully
"HKU\S-1-5-21-756127909-4058986209-260929036-1001\Software\Microsoft\Windows\CurrentVersion\Run\\ProtonVPN" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{FBE1772C-B767-4FE7-9341-EF640D180ED2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FBE1772C-B767-4FE7-9341-EF640D180ED2}" => removed successfully
C:\Windows\System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem125.0.6407.0{F29BAF4A-C758-4E34-BC33-B1A7D3D4864C} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem125.0.6407.0{F29BAF4A-C758-4E34-BC33-B1A7D3D4864C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E0F10DCF-44AD-40E8-9370-FB5DA59F93FB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E0F10DCF-44AD-40E8-9370-FB5DA59F93FB}" => removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => removed successfully
cpuz158 => Service stopped successfully.
HKLM\System\CurrentControlSet\Services\cpuz158 => removed successfully
cpuz158 => service removed successfully
HKLM\System\CurrentControlSet\Services\cpuz148 => removed successfully
cpuz148 => service removed successfully
HKLM\System\CurrentControlSet\Services\PDFWKRNL => removed successfully
PDFWKRNL => service removed successfully
"C:\Users\micha\AppData\Local\Temp" Folder move:
C:\Users\micha\AppData\Local\Temp => moved successfully
HKU\S-1-5-21-756127909-4058986209-260929036-1001_Classes\CLSID\{2611B500-C92D-4949-B04B-9B7039C47E03} => removed successfully
HKU\S-1-5-21-756127909-4058986209-260929036-1001_Classes\CLSID\{50726f74-6f6e-2e56-504e-000000000000} => removed successfully
HKU\S-1-5-21-756127909-4058986209-260929036-1001_Classes\CLSID\{5C4D8D77-5B87-40CA-884E-F56858227E5C} => removed successfully
HKU\S-1-5-21-756127909-4058986209-260929036-1001_Classes\CLSID\{E5C657EF-6BB1-4852-A192-2EF1DE230B6F} => removed successfully
C:\ProgramData\mntemp => ":8EAD8B3507" ADS removed successfully
C:\ProgramData\tyvfcquz.wxt => ":B63721167D" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini => ":B1DA6C571C" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\µTorrent.lnk => ":27CED3D9D4" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Driver Updater.lnk => ":837EB8C671" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks 5.lnk => ":088221F38A" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks Multi-Instance Manager.lnk => ":FE00AE19CB" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini => ":41964AA945" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk => ":BE32D07BC5" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FACEIT AC.lnk => ":550995E265" ADS removed successfully
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk" => ":8096E45125" ADS not found.
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk" => ":E77773B271" ADS not found.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Novabench 5.lnk => ":B68549C808" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Streamlabs Desktop.lnk => ":578370639A" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak.lnk => ":DBB58A0286" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TikTok LIVE Studio.lnk => ":1DE7D35192" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WireGuard.lnk => ":1C027AF69D" ADS removed successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WireGuard.lnk => ":EF9F19812A" ADS removed successfully
C:\Users\micha\Data aplikací => ":00e481b5e22dbe1f649fcddd505d3eb7" ADS removed successfully
C:\Users\micha\OneDrive\Plocha\a.dirty.carnival.(2006).cze.1cd.(5529686).zip => ":shield" ADS removed successfully
C:\Users\micha\OneDrive\Plocha\a.dirty.carnival.(2006).cze.2cd.(4019880).zip => ":shield" ADS removed successfully
"C:\Users\micha\AppData\Roaming" => ":00e481b5e22dbe1f649fcddd505d3eb7" ADS not found.
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{5CC7EFAB-2A76-4C35-A3C2-DE07B71B9086}C:\users\micha\appdata\local\webtorrent\app-0.24.0\webtorrent.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{61512821-A882-4F81-A73E-EA793CCCFE19}C:\users\micha\appdata\local\webtorrent\app-0.24.0\webtorrent.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{07DE6518-0576-43F1-A612-55A8BAC5CAF4}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4403A881-7C0D-4826-9D74-B8DAE5877EFA}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DC14EACF-F224-483C-AB65-425D239883B9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C800CCFA-96CE-492E-9E25-FC18C717FC02}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{101D19CD-52A9-4BF3-B5FF-DA899BD30F73}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B3AB68A4-1E8F-41C0-91BC-8208E1F75B1E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{3A9A0F5B-A92F-48D3-B6FB-7C0B2D4F64AB}D:\call of duty modern warfare\call of duty\_retail_\cod.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{DCFDEB75-AA39-4423-BEA5-AD4F5F68FE85}D:\call of duty modern warfare\call of duty\_retail_\cod.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{EB2D5D7D-38C0-4C04-A7E6-2B8FE16ECE85}C:\program files\tiktok live studio\0.53.4\tiktok live studio.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{A8A791BC-9118-4018-ABB2-8850487CF74C}C:\program files\tiktok live studio\0.53.4\tiktok live studio.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{304AB9F1-2DC3-4278-B36E-A9629042A8C7}D:\prop hunt\prophunt\binaries\win64\prophunt-win64-shipping.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{AF184620-EB38-444F-ADFE-941285B426AC}D:\prop hunt\prophunt\binaries\win64\prophunt-win64-shipping.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{9F3169CB-DA92-4499-8119-D188EDF6ED7E}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_authbrowser" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{A15C4DFC-E5C5-47D8-96F7-B6895718D229}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_authbrowser" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{F8E9540E-07BA-42FB-B2E2-2A908C3FD442}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b2699_gtaprocess.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{43757C62-253C-4226-9F9B-0DA08B7870BD}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b2699_gtaprocess.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C9F29B00-6B37-44E0-99E1-F5E0EE9DE92D}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_steamchild.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{B6D2DD90-39EB-4141-9302-05AE7E7C2B1E}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_steamchild.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{49EBBBFC-0171-46B4-AF8E-C135364EECFF}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b3095_gtaprocess.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{0A052E5C-07A3-4744-A20F-910A9F3B7281}C:\users\micha\appdata\local\temp\scoped_dir20704_1354223518\fivem.app\data\cache\subprocess\fivem_b3095_gtaprocess.exe" => removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 59231659 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 660483488 B
Windows/system/drivers => 34377010 B
Edge => 0 B
Chrome => 55385960 B
Brave => 783140307 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 9538672 B
systemprofile32 => 9751672 B
LocalService => 9760939 B
NetworkService => 9924387 B
micha => 10791053 B
RecycleBin => 817 B
EmptyTemp: => 1.5 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 14:18:36 ====
-
Rudy
- Site Admin
- Příspěvky: 118314
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý pc a modrá smrt
Smazáno. Teď poprosím, abyste otevřel adresář c:\windows\minidump. Soubory, krteré tam nejdete, zabalte do raru a přiložte k vašemu příštímu postu. Děkuji.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalý pc a modrá smrt
Posílám do přílohy minidump. Děkuji
- Přílohy
-
- minidump.rar
- (768.08 KiB) Staženo 3 x
Re: Pomalý pc a modrá smrt
Soubor byl prý velký, tak jsem ho musel poslat na 2x. Díky
- Přílohy
-
- minidump 1.rar
- (594.96 KiB) Staženo 4 x
-
Rudy
- Site Admin
- Příspěvky: 118314
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý pc a modrá smrt
Zjistil jsem si přímo u MS, co může být příčinou vašeho problému. Jeden z nich už jsme vyloučili (vliv malware). Pokud by se problém opakoval koukněte sem: https://malwaretips-com.translate.goog/ ... _tr_pto=sc . Doporučuje se přeinstalovat ovladače hardwaru. Když to nepomůže, bude chyba v hw samotném. Pak stáhněte a spusťte CrystalDiskInfo: https://www.slunecnice.cz/sw/crystaldiskinfo/ a přes ´|Upravy>Kopírovat sem dejte log a nakonec udělejte kontrolu RAM: https://forum.viry.cz/viewtopic.php?t=106788 . Tím by se mělo zjistit vše podstatné o vašem PC.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?