Na pár sekund zamrzající PC, prosím o kontrolu logu

[A-Tom]

PC mi začalo občas na pár vteřin zamrzat, tak prosím o kontrolu logu jestli se mi tam nedostal nějaký bordel. Předem díky za pomoc

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-02-2022 01
Ran by TM (administrator) on DESKTOP-Q3V9AV9 (MSI MS-7971) (22-02-2022 04:17:25)
Running from C:\Users\TM\Downloads
Loaded Profiles: TM
Platform: Microsoft Windows 10 Pro Version 21H2 19044.1526 (X64) Language: English (United States)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ->) (uTorrent.CZ -> BitTorrent, Inc.) [File not signed] C:\_utility\uTorrent\utorrent.exe
(C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\wpCtrl.exe ->) (Portrait Displays, Inc. -> ) C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Floater.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtWebEngineProcess.exe
(C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\55.0.3.0\crashpad_handler.exe <2>
(C:\Program Files\Logitech Gaming Software\LCore.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech Gaming Software\LAClient\laclient.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MpCopyAccelerator.exe
(cmd.exe ->) (UiPath, Inc. -> UiPath) C:\Users\TM\AppData\Local\UiPath\app-21.4.4\UiPath\BrowserExtension\ChromeNativeMessaging.exe
(Discord Inc. -> Discord Inc.) C:\Users\TM\AppData\Local\Discord\app-1.0.9004\Discord.exe <6>
(DriverStore\FileRepository\u0376032.inf_amd64_1a2e19f1369fd940\B375758\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0376032.inf_amd64_1a2e19f1369fd940\B375758\atieclxx.exe
(E:\_hry\Epic\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe ->) (Epic Games Inc. -> Epic Games, Inc.) E:\_hry\Epic\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2>
(Epic Games Inc. -> Epic Games, Inc.) E:\_hry\Epic\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <84>
(Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe <7>
(Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Microsoft Corporation) [File not signed] C:\Windows\Microsoft.NET\Framework\v3.5\mscorsvw.exe <4>
(Portrait Displays, Inc. -> ) C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\wpCtrl.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(services.exe ->) (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0376032.inf_amd64_1a2e19f1369fd940\B375758\atiesrxx.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Blizzard\Bonjour Service\mDNSResponder.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.62.4001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.62.4001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\NisSrv.exe
(services.exe ->) (PORTRAIT DISPLAYS, INC. -> Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DTSRVC.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\_utility\TeamViewer_Service.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (UiPath, Inc. -> UiPath) C:\Users\TM\AppData\Local\UiPath\app-21.4.4\UiPath.RobotJS.UserHost.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8811776 2016-12-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18727048 2018-10-05] (Logitech Inc -> Logitech Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2383040 2016-10-25] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [PivotSoftware] => C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Pivot_startup.exe [112424 2013-06-18] (Portrait Displays, Inc. -> )
HKLM-x32\...\RunOnce: [GrpConv] => grpconv -o (No File)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-620132082-3391121035-1361035170-1001\...\Run: [GoogleChromeAutoLaunch_FC0F44980CACD355ADD5959B520CB7F0] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
HKU\S-1-5-21-620132082-3391121035-1361035170-1001\...\Run: [uTorrent] => C:\_utility\uTorrent\utorrent.exe [416168 2015-02-22] (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
HKU\S-1-5-21-620132082-3391121035-1361035170-1001\...\Run: [Spotify] => C:\Users\TM\AppData\Roaming\Spotify\Spotify.exe [24261704 2021-04-06] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-620132082-3391121035-1361035170-1001\...\Run: [Steam] => E:\_hry\Steam\steam.exe [4268456 2022-01-16] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-620132082-3391121035-1361035170-1001\...\Run: [Discord] => C:\Users\TM\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub)
HKU\S-1-5-21-620132082-3391121035-1361035170-1001\...\Run: [Opera Browser Assistant] => C:\Users\TM\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4105424 2021-10-14] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-620132082-3391121035-1361035170-1001\...\Run: [EpicGamesLauncher] => E:\_hry\Epic\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33650656 2022-02-16] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-620132082-3391121035-1361035170-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\55.0.3.0\GoogleDriveFS.exe [55334232 2022-01-25] (Google LLC -> Google, Inc.)
HKLM\...\Print\Monitors\IppMon: C:\WINDOWS\system32\IPPMon.dll [251392 2018-04-12] (Microsoft Corporation) [File not signed]
HKLM\Software\...\AppCompatFlags\Custom\B2NMSRV.EXE: [{6d0534ce-a9a0-4495-9bad-4f956700b5c9}.sdb] -> GOG.com Blood 2
HKLM\Software\...\AppCompatFlags\Custom\Blood2.exe: [{6d0534ce-a9a0-4495-9bad-4f956700b5c9}.sdb] -> GOG.com Blood 2
HKLM\Software\...\AppCompatFlags\Custom\Blood2Sv.exe: [{6d0534ce-a9a0-4495-9bad-4f956700b5c9}.sdb] -> GOG.com Blood 2
HKLM\Software\...\AppCompatFlags\Custom\Client.exe: [{6d0534ce-a9a0-4495-9bad-4f956700b5c9}.sdb] -> GOG.com Blood 2
HKLM\Software\...\AppCompatFlags\InstalledSDB\{6d0534ce-a9a0-4495-9bad-4f956700b5c9}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{6d0534ce-a9a0-4495-9bad-4f956700b5c9}.sdb [2013-11-27]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\98.0.4758.102\Installer\chrmstp.exe [2022-02-14] (Google LLC -> Google LLC)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {06E9B98B-940E-45EF-8A4B-4AB60A10D26D} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709048 2022-01-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {092C2BA5-7338-404D-8BE8-E89F174F028E} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [260600 2022-01-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {32EB2D1B-B452-437D-8249-D47415114C8A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {3CA23523-8DF2-4980-BA09-D77814630B0D} - System32\Tasks\Opera scheduled Autoupdate 1550345711 => C:\Users\TM\AppData\Local\Programs\Opera\launcher.exe [2333904 2022-02-15] (Opera Software AS -> Opera Software)
Task: {45F07D2A-BAA7-4F46-AF95-69196C32EDAA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MpCmdRun.exe [925848 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5105487F-BF40-4B98-A14F-830500935CC9} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [55288 2022-01-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {5489D903-A6E9-45D0-8137-4D59C062F5A2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-12-07] (Google Inc -> Google Inc.)
Task: {57D4EE91-7F04-4DAF-BC90-518D94B8B8AA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {61161051-51F2-4803-9ADE-24F312113312} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709048 2022-01-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {7E15D139-87F5-4750-8010-786949E6E25B} - System32\Tasks\Microsoft\Windows\NetFramework\Microsoft .NET Framework => C:\Windows\Microsoft.NET\Framework\v3.5\mscorsvw.exe [7885824 2022-02-17] (Microsoft Corporation) [File not signed] <==== ATTENTION
Task: {862CF029-7537-4931-A3B3-6829D7896F62} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2206488 2016-08-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {8D38AF74-34E9-4B0B-A4E2-D5A22F6E36D1} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2225952 2016-08-15] (Microsoft Corporation -> Microsoft)
Task: {90E8F680-3F74-49EA-A6B5-8E7A6A5542EA} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation)
Task: {943D892A-83CA-484C-8872-49A92436C448} - System32\Tasks\Opera scheduled assistant Autoupdate 1553616341 => C:\Users\TM\AppData\Local\Programs\Opera\launcher.exe [2333904 2022-02-15] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\TM\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {AC95C6DE-A9B9-41CA-A78F-02E5EF02A8EB} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3426560 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {B28A8431-2C4B-494F-AF46-2521A4B8B2E4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MpCmdRun.exe [925848 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B3EB92E9-515E-46BA-8796-9E49B5C58DE2} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1665312 2016-08-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {B5B97911-0A29-420F-AD3F-C15D7A5A9882} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {B9C18DF0-90FD-4D5E-B894-76F6599C3D1E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MpCmdRun.exe [925848 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D8423173-2D06-42C4-8B84-A84B474F4826} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2206488 2016-08-15] (Microsoft Corporation -> Microsoft Corporation)
Task: {D8E3A6CE-DAC1-4629-B714-356FC7310B12} - System32\Tasks\{153DC116-67C9-4886-BB69-ACD441DA1E94} => C:\WINDOWS\system32\pcalua.exe -a "C:\_hry\Fallout New Vegas\FalloutNVLauncher.exe" -d "C:\_hry\Fallout New Vegas"
Task: {DA1E7E32-42C0-43CC-A13B-763CADEE819D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MpCmdRun.exe [925848 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E311481E-BB51-4ABF-8732-2B4849CB1527} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [754472 2021-04-05] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {E3C98F49-3A49-463D-AF53-B6ECE0A32ABF} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709048 2022-01-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {E3F4F2D2-A74D-46FD-A83B-4EB218F34318} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2016-12-07] (Google Inc -> Google Inc.)
Task: {E648763D-306B-4C80-A564-B0F9BC2D9BA4} - System32\Tasks\UiPath RobotJS => C:\Users\TM\AppData\Local\UiPath\app-21.4.4\UiPath.RobotJS.UserHost.exe [187288 2021-08-01] (UiPath, Inc. -> UiPath)
Task: {F7E31A29-B28B-4F22-A24B-26624334411A} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1665312 2016-08-15] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 86.49.5.221 86.49.5.222
Tcpip\..\Interfaces\{5beb6021-9b95-47f3-974c-8cdd611e5fc2}: [DhcpNameServer] 86.49.5.221 86.49.5.222

Edge:
=======
Edge Profile: C:\Users\TM\AppData\Local\Microsoft\Edge\User Data\Default [2022-02-20]
Edge HomePage: Default -> hxxp://www.google.com/

FireFox:
========
FF DefaultProfile: ui0bxjey.default
FF ProfilePath: C:\Users\TM\AppData\Roaming\Mozilla\Firefox\Profiles\ui0bxjey.default [2021-10-27]
FF Homepage: Mozilla\Firefox\Profiles\ui0bxjey.default -> hxxps://500px.com/
FF Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\TM\AppData\Roaming\Mozilla\Firefox\Profiles\ui0bxjey.default\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2021-10-11]
FF Extension: (No Name) - C:\Users\TM\AppData\Roaming\Mozilla\Firefox\Profiles\ui0bxjey.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-09-06]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-10-25] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\_utility\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\_utility\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\_utility\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-06-14] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-10-25] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin HKU\S-1-5-21-620132082-3391121035-1361035170-1001: jpl.nasa.gov/NASAEyes -> C:\_utility\NASA's Eyes\npNASAEyes.dll [2017-03-09] (NASA Jet Propulsion Laboratory -> Jet Propulsion Laboratory)

Chrome:
=======
CHR Profile: C:\Users\TM\AppData\Local\Google\Chrome\User Data\Default [2022-02-22]
CHR Notifications: Default -> hxxps://calendar.google.com
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxps://www.facebook.com/lists/3621985320418"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Překladač Google) - C:\Users\TM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2022-01-19]
CHR Extension: (Prezentace) - C:\Users\TM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-09-23]
CHR Extension: (Popup Blocker (strict)) - C:\Users\TM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aefkmifgmaafnojlojpnekbpbmjiiogg [2021-08-30]
CHR Extension: (Dokumenty) - C:\Users\TM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-09-23]
CHR Extension: (Disk Google) - C:\Users\TM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22]
CHR Extension: (Pop up blocker for Chrome™ - Poper Blocker) - C:\Users\TM\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkkbcggnhapdmkeljlodobbkopceiche [2022-02-04]
CHR Extension: (TabZolo) - C:\Users\TM\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkpcjokmnekbnkjldkiechmphnadngoj [2021-07-18]
CHR Extension: (YouTube) - C:\Users\TM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-09-23]
CHR Extension: (Disable HTML5 Autoplay (Reloaded)) - C:\Users\TM\AppData\Local\Google\Chrome\User Data\Default\Extensions\cafckninonjkogajnihihlnnimmkndgf [2021-01-14]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\TM\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-01-12]
CHR Extension: (No Redirections) - C:\Users\TM\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgomnihmblecbdpbgkdioejojmfejlfh [2022-01-03]
CHR Extension: (UiPath Web Automation) - C:\Users\TM\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkgencfabioofgdmhhjljpkbbchbikbh [2020-10-02]
CHR Extension: (BlockSite: Block Websites & Stay Focused) - C:\Users\TM\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiimnmioipafcokbfikbljfdeojpcgbh [2022-01-31]
CHR Extension: (Tabulky) - C:\Users\TM\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-09-23]
CHR Extension: (Dokumenty Google offline) - C:\Users\TM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-02-19]
CHR Extension: (feedly) - C:\Users\TM\AppData\Local\Google\Chrome\User Data\Default\Extensions\hipbfijinpcgfogaopmgehiegacbhmob [2018-09-23]
CHR Extension: (Google Keep – poznámky a seznamy) - C:\Users\TM\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2022-02-19]
CHR Extension: (Page Blocker) - C:\Users\TM\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdgjekklmfmgeddhoammojjniklfepmi [2022-01-03]
CHR Extension: (Bulk Image Downloader) - C:\Users\TM\AppData\Local\Google\Chrome\User Data\Default\Extensions\lamfengpphafgjdgacmmnpakdphmjlji [2020-11-26]
CHR Extension: (Behind The Overlay) - C:\Users\TM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljipkdpcjbmhkdjjmbbaggebcednbbme [2021-07-20]
CHR Extension: (TabBlock) - C:\Users\TM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljmkpdhploeaohmnljbbkohmmfkikklj [2022-01-03]
CHR Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\TM\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-01-29]
CHR Extension: (SponsorBlock pro YouTube - Přeskoč sponzorství) - C:\Users\TM\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnjggcdmjocbbbhaepdhchncahnbgone [2022-02-12]
CHR Extension: (Save to Pocket) - C:\Users\TM\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2022-02-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\TM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Site blocker) - C:\Users\TM\AppData\Local\Google\Chrome\User Data\Default\Extensions\offfjidagceabmodhpcngpemnnlojnhn [2021-06-04]
CHR Extension: (Gmail) - C:\Users\TM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR HKU\S-1-5-21-620132082-3391121035-1361035170-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dkgencfabioofgdmhhjljpkbbchbikbh] - C:\Users\TM\AppData\Local\UiPath\app-21.4.4\UiPath\BrowserExtension\uipath_extension_for_chrome.crx [2021-08-01]
CHR HKU\S-1-5-21-620132082-3391121035-1361035170-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]

Opera:
=======
OPR Profile: C:\Users\TM\AppData\Roaming\Opera Software\Opera Stable [2022-01-19]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\TM\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-01-19]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\TM\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-01-19]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-25] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3849472 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3617024 2021-11-23] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1547200 2017-11-05] (Epic Games Inc. -> )
R2 Bonjour Service; C:\Program Files (x86)\Blizzard\Bonjour Service\mDNSResponder.exe [390504 2017-09-25] (Apple Inc. -> Apple Inc.)
R2 DTSRVC; C:\Program Files (x86)\Common Files\Portrait Displays\Shared\dtsrvc.exe [141576 2016-04-22] (PORTRAIT DISPLAYS, INC. -> Portrait Displays, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803952 2020-10-08] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2021-10-01] (Epic Games Inc. -> Epic Games, Inc.)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206472 2018-10-05] (Logitech Inc -> Logitech Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6136536 2022-02-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\_utility\TeamViewer_Service.exe [14770472 2021-09-15] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\NisSrv.exe [2909208 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe [128376 2022-02-10] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [33216 2021-12-02] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_edd3335a4253bf6d\amdsafd.sys [109520 2021-11-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0376032.inf_amd64_1a2e19f1369fd940\B375758\amdkmdag.sys [82950024 2022-01-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [65168 2021-08-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S3 athur; C:\WINDOWS\System32\drivers\athuw8x.sys [2919936 2013-06-02] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros Communications, Inc.)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-10-04] (Bluestack Systems, Inc -> Bluestack System Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R3 DroidCam; C:\WINDOWS\System32\drivers\droidcam.sys [33592 2015-05-24] (DEV47 APPS -> Dev47Apps)
R3 DroidCamVideo; C:\WINDOWS\System32\drivers\droidcamvideo.sys [230712 2015-05-24] (DEV47 APPS -> Windows (R) Win 7 DDK provider)
R1 googledrivefs3688; C:\WINDOWS\System32\DRIVERS\googledrivefs3688.sys [381456 2022-01-25] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2018-10-05] (Logitech Inc -> Logitech Inc.)
R3 LGSHidFilt; C:\WINDOWS\system32\DRIVERS\LGSHidFilt.Sys [64280 2018-10-05] (Logitech -> Logitech Inc.)
R3 MpKslb7b6f3d9; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{EB47B4E6-9827-4E10-BC4F-B146D95A2199}\MpKslDrv.sys [135440 2022-02-21] (Microsoft Windows -> Microsoft Corporation)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 uvhid; C:\WINDOWS\System32\drivers\uvhid.sys [28128 2017-05-20] (Unified Intents AB -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2022-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [438520 2022-02-10] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90360 2022-02-10] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz149; \??\C:\WINDOWS\temp\cpuz149\cpuz149_x64.sys [X]
S3 GPU-Z-v2; \??\C:\Users\TM\AppData\Local\Temp\GPU-Z-v2.sys [X] <==== ATTENTION

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-02-22 04:17 - 2022-02-22 04:18 - 000031629 _____ C:\Users\TM\Downloads\FRST.txt
2022-02-22 04:16 - 2022-02-22 04:17 - 000000000 ____D C:\FRST
2022-02-22 04:16 - 2022-02-22 04:16 - 002312192 _____ (Farbar) C:\Users\TM\Downloads\FRST64.exe
2022-02-21 18:01 - 2022-02-22 00:18 - 691528004 _____ C:\Users\TM\Downloads\190622-01.mp4
2022-02-21 15:53 - 2022-02-21 18:04 - 240828746 _____ C:\Users\TM\Downloads\190730-04.mp4
2022-02-21 08:12 - 2022-02-21 11:09 - 323093366 _____ C:\Users\TM\Downloads\190809-06.mp4
2022-02-21 06:09 - 2022-02-21 08:02 - 206944368 _____ C:\Users\TM\Downloads\190831-03.mp4
2022-02-21 04:41 - 2022-02-21 05:30 - 000000281 _____ C:\Users\TM\Downloads\Anais_Riya-MakeMeCum.rar
2022-02-21 04:01 - 2022-02-21 04:01 - 000026438 _____ C:\Users\TM\Downloads\Kite(0000107325).srt
2022-02-21 04:00 - 2022-02-21 04:00 - 000011726 _____ C:\Users\TM\Downloads\Kite(0000107326).zip
2022-02-21 02:09 - 2022-02-21 02:09 - 000011522 _____ C:\Users\TM\Downloads\id401291.torrent
2022-02-21 02:09 - 2022-02-21 02:09 - 000007561 _____ C:\Users\TM\Downloads\id407965.torrent
2022-02-21 02:08 - 2022-02-21 02:08 - 000007726 _____ C:\Users\TM\Downloads\id411987.torrent
2022-02-21 02:07 - 2022-02-21 02:07 - 000013948 _____ C:\Users\TM\Downloads\id382573.torrent
2022-02-21 01:59 - 2022-02-21 01:59 - 000078052 _____ C:\Users\TM\Downloads\2801169.torrent
2022-02-21 01:58 - 2022-02-21 01:58 - 000023145 _____ C:\Users\TM\Downloads\2802618.torrent
2022-02-21 01:56 - 2022-02-21 01:56 - 000203173 _____ C:\Users\TM\Downloads\2802863.torrent
2022-02-21 01:55 - 2022-02-21 01:55 - 000006840 _____ C:\Users\TM\Downloads\2846320.torrent
2022-02-21 01:54 - 2022-02-21 01:54 - 000018464 _____ C:\Users\TM\Downloads\2846671.torrent
2022-02-21 01:54 - 2022-02-21 01:54 - 000016313 _____ C:\Users\TM\Downloads\2846482.torrent
2022-02-21 01:53 - 2022-02-21 01:53 - 000011716 _____ C:\Users\TM\Downloads\2846940.torrent
2022-02-21 01:52 - 2022-02-21 01:52 - 000022938 _____ C:\Users\TM\Downloads\2847269.torrent
2022-02-21 01:40 - 2022-02-21 01:40 - 000001116 _____ C:\Users\TM\Downloads\Siberian_mouse_19gb_torrent_ torrent_torrent_tor.torrent
2022-02-21 01:38 - 2022-02-21 01:38 - 000023788 _____ C:\Users\TM\Downloads\id410919.torrent
2022-02-21 01:37 - 2022-02-21 01:37 - 000014452 _____ C:\Users\TM\Downloads\id399714.torrent
2022-02-21 01:37 - 2022-02-21 01:37 - 000007649 _____ C:\Users\TM\Downloads\id409020.torrent
2022-02-21 01:37 - 2022-02-21 01:37 - 000007065 _____ C:\Users\TM\Downloads\id408247.torrent
2022-02-21 01:27 - 2022-02-21 01:27 - 000171912 _____ C:\Users\TM\Downloads\id413495.torrent
2022-02-21 01:27 - 2022-02-21 01:27 - 000017468 _____ C:\Users\TM\Downloads\id413219.torrent
2022-02-21 01:26 - 2022-02-21 01:26 - 000008426 _____ C:\Users\TM\Downloads\id413509.torrent
2022-02-20 23:46 - 2022-02-20 23:46 - 000521304 _____ C:\Users\TM\Downloads\My Computer (1)-20220220T224638Z-001.zip
2022-02-20 23:26 - 2022-02-22 03:04 - 000000000 ____D C:\_Google Drive
2022-02-20 23:25 - 2022-02-20 23:25 - 000002057 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2022-02-20 23:25 - 2022-02-20 23:25 - 000001935 ____C C:\Users\TM\Desktop\Google Drive.lnk
2022-02-20 23:25 - 2022-02-20 23:25 - 000001899 ____C C:\Users\TM\Desktop\Google Slides.lnk
2022-02-20 23:25 - 2022-02-20 23:25 - 000001899 ____C C:\Users\TM\Desktop\Google Sheets.lnk
2022-02-20 23:25 - 2022-02-20 23:25 - 000001887 ____C C:\Users\TM\Desktop\Google Docs.lnk
2022-02-20 23:24 - 2022-02-20 23:24 - 000000000 ____D C:\Program Files\Google
2022-02-20 23:24 - 2022-01-25 13:23 - 000381456 _____ (Google, Inc.) C:\WINDOWS\system32\Drivers\googledrivefs3688.sys
2022-02-20 23:21 - 2022-02-20 23:24 - 290031960 _____ (Google, Inc.) C:\Users\TM\Downloads\GoogleDriveSetup.exe
2022-02-20 23:14 - 2022-02-20 23:14 - 030750832 _____ (Wide Angle Software) C:\Users\TM\Downloads\DroidTransferSetup (2).exe
2022-02-20 23:10 - 2022-02-20 23:10 - 030750832 _____ (Wide Angle Software) C:\Users\TM\Downloads\DroidTransferSetup (1).exe
2022-02-20 22:56 - 2022-02-20 22:58 - 027901003 _____ C:\Users\TM\Downloads\Droid Transfer v1.51 Multilingual Portable [15.6.2021].7z
2022-02-20 22:54 - 2022-02-20 23:15 - 000000000 ____D C:\Users\TM\AppData\Local\Wide_Angle_Software_Ltd
2022-02-20 22:54 - 2022-02-20 23:15 - 000000000 ____D C:\Users\TM\AppData\Local\Wide Angle Software
2022-02-20 22:54 - 2022-02-20 22:54 - 000000000 ____D C:\Users\TM\AppData\Roaming\{EAB5B9AF-BFFC-47DC-A3BD-EC652A5EBC12}
2022-02-20 22:53 - 2022-02-20 22:53 - 030750832 _____ (Wide Angle Software) C:\Users\TM\Downloads\DroidTransferSetup.exe
2022-02-20 20:37 - 2022-02-20 22:40 - 2261987234 _____ C:\Users\TM\Downloads\Oznamuje se láskám vašim-91m-1988-ČR-HD-1080p-I.avi
2022-02-20 06:14 - 2022-02-20 06:14 - 000000000 ___DC C:\Users\TM\Desktop\cvč
2022-02-20 01:05 - 2022-02-20 01:05 - 000002197 ____C C:\Users\TM\Desktop\Heroes.lnk
2022-02-19 23:50 - 2022-02-19 23:50 - 000000000 ____D C:\Users\TM\AppData\Local\Tempzxpsign08bfe0aecf399150
2022-02-18 00:00 - 2022-02-18 00:23 - 000008884 _____ C:\Users\TM\Desktop\conquest maul.xlsx
2022-02-17 17:37 - 2022-02-17 17:37 - 000000000 ____D C:\Users\TM\AppData\Local\Tempzxpsign960f79d71a1a5bd8
2022-02-17 17:37 - 2022-02-17 17:37 - 000000000 ____D C:\Users\TM\AppData\Local\Tempzxpsign3b8ecfd1d7de4113
2022-02-13 04:47 - 2022-02-13 04:47 - 000306669 _____ C:\Users\TM\Downloads\webp_64.zip
2022-02-10 02:56 - 2022-02-10 02:56 - 000018374 _____ C:\Users\TM\Downloads\17dec769b05f252dbbb5633be62a6907c78b8b45.torrent
2022-02-10 02:51 - 2022-02-10 03:02 - 195797467 _____ C:\Users\TM\Downloads\Deine_Lakaien-Dual-Limited_Boxset-3CD-2021-FWYH.rar
2022-02-09 23:43 - 2022-02-09 23:43 - 015221925 _____ C:\Users\TM\Downloads\Grand_Arena_Meta_Report_by_Skelturix_-_Season_23 (1).pdf
2022-02-09 23:21 - 2022-02-09 23:21 - 015221925 _____ C:\Users\TM\Downloads\Grand_Arena_Meta_Report_by_Skelturix_-_Season_23.pdf
2022-02-09 02:30 - 2022-02-09 02:30 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2022-02-09 02:30 - 2022-02-09 02:30 - 000011813 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-02-09 02:29 - 2022-02-09 02:29 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-02-09 02:29 - 2022-02-09 02:29 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2022-02-09 02:29 - 2022-02-09 02:29 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-02-09 02:23 - 2022-02-09 02:23 - 000000000 ___HD C:\$WinREAgent
2022-02-08 16:04 - 2022-02-08 16:04 - 000079758 _____ C:\Users\TM\Desktop\vh140ndgj5l0.webp
2022-02-07 11:10 - 2022-02-07 11:10 - 027229696 _____ C:\Users\TM\Downloads\HistoryoftheHuguenotEmigrationtoAmerica_10027348.pdf
2022-02-06 14:37 - 2022-02-06 14:37 - 000000000 ___DC C:\Users\TM\Documents\DyingLight
2022-02-06 14:22 - 2022-02-06 14:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dying Light Platinum Edition
2022-01-31 00:04 - 2022-01-31 00:04 - 000000000 ___DC C:\Users\TM\AppData\LocalLow\AMD
2022-01-31 00:04 - 2022-01-25 01:03 - 000109880 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdkmpfd.sys
2022-01-31 00:02 - 2022-02-20 11:48 - 000003112 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2022-01-31 00:02 - 2022-02-20 11:48 - 000003072 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2022-01-31 00:02 - 2022-01-31 00:02 - 000003488 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2022-01-31 00:02 - 2022-01-31 00:02 - 000003160 _____ C:\WINDOWS\system32\Tasks\StartCN
2022-01-31 00:02 - 2022-01-31 00:02 - 000003080 _____ C:\WINDOWS\system32\Tasks\StartDVR
2022-01-31 00:02 - 2022-01-31 00:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Software
2022-01-31 00:02 - 2022-01-31 00:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Link For Windows
2022-01-31 00:02 - 2022-01-31 00:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool
2022-01-28 00:05 - 2022-01-28 00:05 - 000000000 ____D C:\Users\TM\AppData\Local\Tempzxpsignbdeacde877a09916
2022-01-25 01:04 - 2022-01-25 01:04 - 001885640 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-01-25 01:04 - 2022-01-25 01:04 - 001885640 _____ C:\WINDOWS\system32\vulkaninfo.exe
2022-01-25 01:04 - 2022-01-25 01:04 - 001460672 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-01-25 01:04 - 2022-01-25 01:04 - 001460672 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2022-01-25 01:04 - 2022-01-25 01:04 - 001403768 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2022-01-25 01:04 - 2022-01-25 01:04 - 001403768 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2022-01-25 01:04 - 2022-01-25 01:04 - 001123424 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-01-25 01:04 - 2022-01-25 01:04 - 001123424 _____ C:\WINDOWS\system32\vulkan-1.dll
2022-01-25 01:04 - 2022-01-25 01:04 - 000976592 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2022-01-25 01:04 - 2022-01-25 01:04 - 000976592 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2022-01-25 01:04 - 2022-01-25 01:04 - 000856992 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2022-01-25 01:04 - 2022-01-25 01:04 - 000797600 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2022-01-25 01:04 - 2022-01-25 01:04 - 000673656 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2022-01-25 01:04 - 2022-01-25 01:04 - 000559528 _____ C:\WINDOWS\system32\GameManager64.dll
2022-01-25 01:04 - 2022-01-25 01:04 - 000526240 _____ C:\WINDOWS\system32\atieah64.exe
2022-01-25 01:04 - 2022-01-25 01:04 - 000501128 _____ C:\WINDOWS\system32\dgtrayicon.exe
2022-01-25 01:04 - 2022-01-25 01:04 - 000492936 _____ C:\WINDOWS\system32\EEURestart.exe
2022-01-25 01:04 - 2022-01-25 01:04 - 000469408 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2022-01-25 01:04 - 2022-01-25 01:04 - 000420800 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2022-01-25 01:04 - 2022-01-25 01:04 - 000393080 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2022-01-25 01:04 - 2022-01-25 01:04 - 000344968 _____ C:\WINDOWS\system32\clinfo.exe
2022-01-25 01:04 - 2022-01-25 01:04 - 000262568 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2022-01-25 01:04 - 2022-01-25 01:04 - 000220552 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2022-01-25 01:04 - 2022-01-25 01:04 - 000202512 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2022-01-25 01:04 - 2022-01-25 01:04 - 000194952 _____ C:\WINDOWS\system32\mantle64.dll
2022-01-25 01:04 - 2022-01-25 01:04 - 000179080 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2022-01-25 01:04 - 2022-01-25 01:04 - 000178080 _____ C:\WINDOWS\system32\mantleaxl64.dll
2022-01-25 01:04 - 2022-01-25 01:04 - 000167304 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2022-01-25 01:04 - 2022-01-25 01:04 - 000165880 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2022-01-25 01:04 - 2022-01-25 01:04 - 000156040 _____ C:\WINDOWS\SysWOW64\mantle32.dll
2022-01-25 01:04 - 2022-01-25 01:04 - 000142768 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2022-01-25 01:04 - 2022-01-25 01:04 - 000141704 _____ C:\WINDOWS\SysWOW64\mantleaxl32.dll
2022-01-25 01:04 - 2022-01-25 01:04 - 000141224 _____ C:\WINDOWS\system32\atidxx64.dll
2022-01-25 01:04 - 2022-01-25 01:04 - 000113016 _____ C:\WINDOWS\SysWOW64\atidxx32.dll
2022-01-25 01:04 - 2022-01-25 01:04 - 000091552 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mcl64.dll
2022-01-25 01:04 - 2022-01-25 01:04 - 000076192 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mcl32.dll
2022-01-25 01:04 - 2022-01-25 01:04 - 000047520 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2022-01-25 01:04 - 2022-01-25 01:04 - 000044448 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2022-01-25 01:04 - 2022-01-25 01:04 - 000028968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2022-01-25 01:04 - 2022-01-25 01:04 - 000028968 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2022-01-25 01:03 - 2022-01-25 01:03 - 088761224 _____ C:\WINDOWS\system32\amd_comgr.dll
2022-01-25 01:03 - 2022-01-25 01:03 - 073128856 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll
2022-01-25 01:03 - 2022-01-25 01:03 - 001538480 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiacm64.dll
2022-01-25 01:03 - 2022-01-25 01:03 - 000943512 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2022-01-25 01:03 - 2022-01-25 01:03 - 000770968 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2022-01-25 01:03 - 2022-01-25 01:03 - 000468368 _____ C:\WINDOWS\system32\amdlogum.exe
2022-01-25 01:03 - 2022-01-25 01:03 - 000178264 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdihk32.dll
2022-01-25 01:03 - 2022-01-25 01:03 - 000150920 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2022-01-25 01:03 - 2022-01-25 01:03 - 000138632 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2022-01-25 01:03 - 2022-01-25 01:03 - 000135064 _____ C:\WINDOWS\system32\amdxc64.dll
2022-01-25 01:03 - 2022-01-25 01:03 - 000133016 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2022-01-25 01:03 - 2022-01-25 01:03 - 000114568 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2022-01-25 01:03 - 2022-01-25 01:03 - 000109976 _____ C:\WINDOWS\SysWOW64\amdxc32.dll
2022-01-25 01:03 - 2022-01-25 01:03 - 000072112 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll
2022-01-25 01:02 - 2022-01-25 01:02 - 069075376 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdhip64.dll
2022-01-25 01:02 - 2022-01-25 01:02 - 001713208 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll
2022-01-25 01:02 - 2022-01-25 01:02 - 001389216 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll
2022-01-25 01:02 - 2022-01-25 01:02 - 000558984 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2022-01-25 01:02 - 2022-01-25 01:02 - 000550880 _____ C:\WINDOWS\system32\amdmiracast.dll
2022-01-25 01:02 - 2022-01-25 01:02 - 000422304 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2022-01-25 01:02 - 2022-01-25 01:02 - 000161024 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2022-01-25 01:02 - 2022-01-25 01:02 - 000150616 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2022-01-25 01:02 - 2022-01-25 01:02 - 000150592 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2022-01-25 01:02 - 2022-01-25 01:02 - 000135800 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2022-01-25 01:02 - 2022-01-25 01:02 - 000121688 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2022-01-25 01:02 - 2022-01-25 01:02 - 000121688 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2022-01-25 00:38 - 2022-01-25 00:38 - 056256608 _____ C:\WINDOWS\system32\amdxc64.so
2022-01-25 00:38 - 2022-01-25 00:38 - 003471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2022-01-25 00:38 - 2022-01-25 00:38 - 003437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2022-01-25 00:38 - 2022-01-25 00:38 - 000569200 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2022-01-25 00:38 - 2022-01-25 00:38 - 000569200 _____ C:\WINDOWS\system32\atiapfxx.blb
2022-01-25 00:38 - 2022-01-25 00:38 - 000010622 _____ C:\WINDOWS\system32\atiacmLocalisation.ini

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-02-22 04:17 - 2018-04-23 17:46 - 000000000 ___DC C:\Users\TM\AppData\Roaming\discord
2022-02-22 04:16 - 2021-09-29 21:39 - 000000000 ____D C:\Users\TM\AppData\Local\Discord
2022-02-22 03:53 - 2016-12-07 01:58 - 000000000 ____D C:\Program Files (x86)\Google
2022-02-22 03:52 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-02-22 02:21 - 2020-09-29 10:09 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-02-21 22:15 - 2019-01-06 23:17 - 000000000 ___DC C:\Users\TM\AppData\Roaming\vlc
2022-02-21 18:19 - 2019-10-03 16:20 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2022-02-21 15:57 - 2020-02-21 02:21 - 000000000 ____D C:\Users\Public\Logi
2022-02-21 15:56 - 2020-09-29 19:48 - 000716754 _____ C:\WINDOWS\system32\perfh005.dat
2022-02-21 15:56 - 2020-09-29 19:48 - 000144952 _____ C:\WINDOWS\system32\perfc005.dat
2022-02-21 15:56 - 2020-09-29 10:22 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-02-21 15:56 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-02-20 23:28 - 2021-05-14 18:00 - 000000000 ____D C:\Users\TM\AppData\Local\D3DSCache
2022-02-20 23:25 - 2018-05-20 10:12 - 000000000 ___DC C:\Users\TM\AppData\Local\Google
2022-02-20 23:14 - 2016-12-07 08:56 - 000000000 ____D C:\_utility
2022-02-20 21:40 - 2016-12-08 00:01 - 000000000 ___DC C:\Users\TM\AppData\Local\CaptureOne
2022-02-20 19:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-02-20 13:07 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-02-20 11:48 - 2020-09-29 10:21 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-02-20 06:20 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-02-20 06:20 - 2017-06-29 04:43 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2022-02-20 06:14 - 2016-12-09 01:37 - 000000000 ___DC C:\Users\TM\Desktop\_text
2022-02-20 01:02 - 2021-10-07 13:02 - 000000000 ___DC C:\Users\TM\Desktop\swgoh
2022-02-19 13:59 - 2020-09-01 11:09 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-02-19 13:59 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-02-18 11:00 - 2020-08-23 18:09 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-02-17 19:48 - 2021-09-29 21:39 - 000002212 ____C C:\Users\TM\Desktop\Discord.lnk
2022-02-16 19:46 - 2021-12-13 02:24 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-620132082-3391121035-1361035170-1001
2022-02-16 19:46 - 2020-09-29 10:21 - 000003372 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-620132082-3391121035-1361035170-1001
2022-02-16 19:46 - 2020-09-29 10:11 - 000002370 ____C C:\Users\TM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-02-16 13:30 - 2020-09-29 10:21 - 000004186 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1550345711
2022-02-16 13:30 - 2019-02-16 20:35 - 000001396 ____C C:\Users\TM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera Browser.lnk
2022-02-14 23:21 - 2017-12-15 09:22 - 000000000 ___DC C:\Users\TM\AppData\Local\Packages
2022-02-14 21:55 - 2018-09-23 19:50 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-02-13 04:46 - 2016-12-20 02:19 - 000000000 ___DC C:\Users\TM\AppData\Local\CrashDumps
2022-02-11 13:09 - 2020-09-29 10:09 - 005162464 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-02-11 05:52 - 2019-12-07 10:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-02-11 05:52 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-02-11 05:52 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-02-11 05:52 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-02-11 05:52 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-02-11 05:52 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-02-11 05:52 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-02-11 05:52 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-02-11 05:52 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-02-11 05:52 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-02-11 05:52 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2022-02-10 09:53 - 2018-03-02 11:45 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-02-10 02:13 - 2021-11-19 15:49 - 000120296 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2022-02-10 02:13 - 2020-04-21 09:27 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2022-02-10 02:13 - 2019-12-12 22:33 - 000337360 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2022-02-10 02:13 - 2019-10-26 09:52 - 002237928 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2022-02-10 02:13 - 2019-10-26 09:52 - 000217536 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2022-02-10 02:13 - 2019-10-26 09:52 - 000198096 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2022-02-10 02:13 - 2019-10-26 09:52 - 000061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe
2022-02-09 02:32 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-02-09 02:29 - 2020-09-29 10:17 - 002877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-02-09 02:18 - 2016-12-07 02:26 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-02-09 02:16 - 2016-12-07 02:26 - 149611728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-02-03 10:18 - 2017-02-01 18:00 - 000000000 ___DC C:\Users\TM\AppData\Local\ElevatedDiagnostics
2022-02-02 17:26 - 2020-10-12 16:24 - 000000000 ____D C:\WINDOWS\Minidump
2022-01-31 23:53 - 2017-08-30 23:56 - 000000000 ___DC C:\Users\TM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2022-01-31 00:06 - 2021-05-14 08:51 - 000000000 ____D C:\Users\TM\AppData\Local\AMD
2022-01-31 00:04 - 2021-05-14 08:44 - 000000000 ____D C:\Program Files\AMD
2022-01-31 00:04 - 2020-02-21 17:56 - 000000000 ____D C:\WINDOWS\system32\AMD
2022-01-31 00:02 - 2017-06-29 04:44 - 000000000 ____D C:\ProgramData\Package Cache
2022-01-30 23:59 - 2021-05-14 17:56 - 000000000 ____D C:\AMD
2022-01-30 23:35 - 2020-09-29 10:11 - 000000000 ____D C:\Users\TM
2022-01-28 04:53 - 2020-09-29 10:21 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-01-28 04:53 - 2020-09-29 10:21 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-01-25 01:03 - 2021-05-14 17:57 - 001867680 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2022-01-25 01:03 - 2021-05-14 17:57 - 000210704 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdihk64.dll

==================== Files in the root of some directories ========

2021-04-16 22:56 - 2021-04-17 00:12 - 000038275 _____ () C:\Users\TM\AppData\Local\digikamrc
2021-04-16 23:18 - 2021-04-16 23:18 - 000000080 _____ () C:\Users\TM\AppData\Local\digikam_systemrc
2020-01-06 22:49 - 2020-01-06 22:49 - 000000000 ___SH () C:\Users\TM\AppData\Local\LumaEmu
2018-09-29 00:05 - 2018-09-29 00:05 - 000000000 ____C () C:\Users\TM\AppData\Local\oobelibMkey.log
2020-11-24 20:14 - 2020-11-24 20:14 - 000008812 _____ () C:\Users\TM\AppData\Local\recently-used.xbel
2020-02-21 02:22 - 2021-05-14 22:27 - 000007602 _____ () C:\Users\TM\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-02-2022 01
Ran by TM (22-02-2022 04:19:24)
Running from C:\Users\TM\Downloads
Microsoft Windows 10 Pro Version 21H2 19044.1526 (X64) (2020-09-29 09:21:28)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-620132082-3391121035-1361035170-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-620132082-3391121035-1361035170-503 - Limited - Disabled)
Guest (S-1-5-21-620132082-3391121035-1361035170-501 - Limited - Disabled)
TM (S-1-5-21-620132082-3391121035-1361035170-1001 - Administrator - Enabled) => C:\Users\TM
WDAGUtilityAccount (S-1-5-21-620132082-3391121035-1361035170-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 18.05 (HKLM-x32\...\7-Zip) (Version: 18.05 - Igor Pavlov)
Adobe Bridge CC 2017 (HKLM-x32\...\KBRG_7_0) (Version: 7.0 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.9.1.335 - Adobe Systems Incorporated)
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: 7.6.0.52 - Adobe Inc.)
Adobe Lightroom (HKLM-x32\...\{8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D}) (Version: 6.0 - Adobe Systems Incorporated)
Adobe Photoshop CC 2017 (HKLM-x32\...\PHSP_18_0) (Version: 18.0.0 - Adobe Systems Incorporated)
Adobe Premiere (HKLM\...\{C1CB876C-A08E-4692-B525-42848BD154D7}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
Adobe Premiere Pro CC 2017 (HKLM-x32\...\PPRO_11_0_1) (Version: 11.0.1 - Adobe Systems Incorporated)
Age of Empires II Definitive Edition (HKLM-x32\...\Age of Empires II Definitive Edition_is1) (Version: - )
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 22.1.2 - Advanced Micro Devices, Inc.)
AviSynth+ 3.5.1 (HKLM-x32\...\{AC78780F-BACA-4805-8D4F-AE1B52B7E7D3}_is1) (Version: 3.5.1.3106 - The Public)
Baldur's Gate - Enhanced Edition (HKLM-x32\...\Baldur's Gate - Enhanced Edition_is1) (Version: - )
Batman: Arkham Asylum (HKLM-x32\...\{4E79A60F-15D2-4BEC-91AD-E41EC42E61B0}) (Version: 1.0.0.0 - Eidos Interactive Limited)
Blizzard App (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Blood II - The Chosen (HKLM-x32\...\GOGPACKBLOOD2_is1) (Version: 2.0.0.5 - GOG.com)
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.280.0.1022 - BlueStack Systems, Inc.)
Branding64 (HKLM\...\{FDD2A246-039F-4941-A3F0-B3E8B8144E54}) (Version: 1.00.0009 - Advanced Micro Devices, Inc.) Hidden
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.69.1079 - AB Team, d.o.o.)
Capture One 10 (HKLM\...\Capture One 10 10.2.0.74) (Version: 10.2.0.74 - Phase One)
Capture One 11 (HKLM\...\Capture One 11 11.0.0.266) (Version: 11.0.0.266 - Phase One)
Capture One 11 (HKLM-x32\...\Capture One 11 11.0.1.30) (Version: 11.0.1.30 - Phase One)
Capture One 20 (HKLM\...\CaptureOne13_is1) (Version: 13.1.0.162 - Capture One A/S)
CDisplayEx 1.10.33 (HKLM\...\CDisplayEx_is1) (Version: - Progdigy Software S.A.R.L.)
DeepSkyStacker (64 bit) 4.2.5 (64 bit - remove only) (HKLM-x32\...\DeepSkyStacker64) (Version: 4.2.5 - The DeepSkyStacker Team)
Discord (HKU\S-1-5-21-620132082-3391121035-1361035170-1001\...\Discord) (Version: 1.0.9003 - Discord Inc.)
Display Pilot (HKLM-x32\...\{6DD25D67-4339-47A1-950E-EEFC321CBB24}) (Version: 2.52.005 - Portrait Displays, Inc.)
Dying Light Platinum Edition (HKLM-x32\...\Dying Light Platinum Edition_is1) (Version: - )
Epic Games Launcher (HKLM-x32\...\{209F4B4B-3DF2-4825-9906-D4D6A80EC09E}) (Version: 1.3.0.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{32C68D93-D32F-4B01-8250-61642BFC22F8}) (Version: 2.0.28.0 - Epic Games, Inc.)
Far Cry 3 (HKLM-x32\...\{E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88}) (Version: 1.01 - Ubisoft)
ffdshow x64 v1.3.4533 [2014-09-29] (HKLM\...\ffdshow64_is1) (Version: 1.3.4533.0 - )
Foxit Reader (HKLM-x32\...\Foxit Reader) (Version: - )
Fraps (HKLM-x32\...\Fraps) (Version: - )
GameInput Redistributable (HKLM-x32\...\{5FAD63E8-8F1C-6687-0325-3BBF64B4FD89}) (Version: 10.1.19041.3918 - Microsoft Corporation)
GOG.com Blood 2 (HKLM\...\{6d0534ce-a9a0-4495-9bad-4f956700b5c9}.sdb) (Version: - )
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 55.0.3.0 - Google LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 98.0.4758.102 - Google LLC)
Heavy Metal - FAKK2 (HKLM-x32\...\Heavy Metal - FAKK2_is1) (Version: - )
Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
IrfanView 4.58 (64-bit) (HKLM\...\IrfanView64) (Version: 4.58 - Irfan Skiljan)
Java(TM) SE Development Kit 15.0.2 (64-bit) (HKLM\...\{2041CF7D-1F63-5C58-9F35-C445251E39C9}) (Version: 15.0.2.0 - Oracle Corporation)
K-Lite Codec Pack 13.7.5 Basic (HKLM-x32\...\KLiteCodecPack_is1) (Version: 13.7.5 - KLCP)
Kontrola stavu osobního počítače s Windows (HKLM\...\{88EC8D4A-54AB-4A7F-BDE9-4AD906D9D11F}) (Version: 3.2.2110.14001 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech Gaming Software 9.02 (HKLM\...\Logitech Gaming Software) (Version: 9.02.65 - Logitech Inc.)
LOOT version 0.13.4 (HKLM-x32\...\{BF634210-A0D4-443F-A657-0DCE38040374}_is1) (Version: 0.13.4 - LOOT Team)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 98.0.1108.56 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 98.0.1108.56 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.8.106.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-620132082-3391121035-1361035170-1001\...\OneDriveSetup.exe) (Version: 22.012.0117.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{16E50919-B07A-4B4E-994A-476D4773F5BF}) (Version: 3.65.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.27.29016 (HKLM-x32\...\{1aaa01ad-3069-4288-9c6f-37a140a8f6c7}) (Version: 14.27.29016.0 - Microsoft Corporation)
Microsoft Visual Studio Code (User) (HKU\S-1-5-21-620132082-3391121035-1361035170-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.49.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
MPC-HC 1.9.13.21 (a603010d3) Nightly (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.9.13.21 - MPC-HC Team)
Nik Collection (HKLM-x32\...\Nik Collection) (Version: 1.2.11 - Google)
NMM (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.82.0 - DuskDweller)
NVIDIA PhysX (HKLM-x32\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation)
One Unit Whole Blood (HKLM-x32\...\GOGPACKONEUNITWHOLEBLOOD_is1) (Version: 2.0.0.21 - GOG.com)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Opera Stable 83.0.4254.62 (HKU\S-1-5-21-620132082-3391121035-1361035170-1001\...\Opera 83.0.4254.62) (Version: 83.0.4254.62 - Opera Software)
Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM\...\{90160000-001F-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Pivot Pro Plugin (HKLM-x32\...\{0217E1D1-BCEF-4A61-AF6D-F7740F65A066}) (Version: 9.61.004 - Portrait Displays, Inc.) Hidden
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: 5.0.3.377 - Jan Fiala)
Quake Enhanced (HKLM-x32\...\Quake Enhanced_is1) (Version: - )
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.370.102 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7811 - Realtek Semiconductor Corp.)
Resilio Sync (HKU\S-1-5-21-620132082-3391121035-1361035170-1001\...\Resilio Sync) (Version: 2.7.2 - Resilio, Inc.)
Spotify (HKU\S-1-5-21-620132082-3391121035-1361035170-1001\...\Spotify) (Version: 1.1.56.595.g2d2da0de - Spotify AB)
Star Wars Galactic Battlegrounds: Expanding Fronts (HKLM-x32\...\Expanding Fronts) (Version: 1.2 - )
STAR WARS® - Knights of the Old Republic™ (HKLM-x32\...\1207666283_is1) (Version: 2.0.0.3 - GOG.com)
STAR WARS® - Knights of the Old Republic™ II - The Sith Lords (HKLM-x32\...\1421404581_is1) (Version: 2.0.0.3 - GOG.com)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stellar Data Recovery (HKLM\...\Stellar Data Recovery_is1) (Version: 10.1.0.0 - Stellar Information Technology Pvt Ltd.)
SVP 4 Pro (HKU\S-1-5-21-620132082-3391121035-1361035170-1001\...\{9e94c07a-3164-42ac-8268-bf8fd20c2767}) (Version: 4.3 - SVP Team)
TeamViewer (HKLM\...\TeamViewer) (Version: 15.22.3 - TeamViewer)
TP-LINK TL-WN721N_TL-WN722N Driver (HKLM-x32\...\{86A7EED0-02D0-4D91-8183-8D2F23F5E6AE}) (Version: 1.3.1 - TP-LINK)
UE4 Prerequisites (x64) (HKLM-x32\...\{015c4bb9-d16e-4b38-9394-a186c0de22a4}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
UiPath Studio (HKU\S-1-5-21-620132082-3391121035-1361035170-1001\...\UiPath) (Version: 21.4.4 - UiPath)
Update for Skype for Business 2016 (KB3115268) 64-Bit Edition (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{5D633E34-0FA8-4C3F-8A16-D1A6C33C7015}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB3115268) 64-Bit Edition (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}_Office16.PROPLUS_{5D633E34-0FA8-4C3F-8A16-D1A6C33C7015}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB3115268) 64-Bit Edition (HKLM\...\{90160000-012B-0409-1000-0000000FF1CE}_Office16.PROPLUS_{5D633E34-0FA8-4C3F-8A16-D1A6C33C7015}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.5 - VideoLAN)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Windows 10 Update Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22899 - Microsoft Corporation)
Windows Driver Package - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.)
WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
Zoner Photo Studio X (HKLM\...\ZonerPhotoStudioX_EN_is1) (Version: 19.1610.2.5 - ZONER software)

Packages:
=========
AdBlock -> C:\Program Files\WindowsApps\BetaFish.AdBlock_2.13.0.0_neutral__c1wakc4j0nefm [2020-01-11] (BetaFish)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-01-21] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Ovládací centrum grafiky Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3407.0_x64__8j3eq9eme6ctt [2021-12-04] (INTEL CORP) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-620132082-3391121035-1361035170-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-A3AD8789AEEA} -> [Creative Cloud Files] => C:\Users\TM\Creative Cloud Files [2016-12-07 20:56]
CustomCLSID: HKU\S-1-5-21-620132082-3391121035-1361035170-1001_Classes\CLSID\{581FFA00-FC33-0002-0702-95003A5CDE89}\InprocServer32 -> C:\Users\TM\AppData\Roaming\Resilio Sync\ShellExtensionPath64_55F.dll () [File not signed]
CustomCLSID: HKU\S-1-5-21-620132082-3391121035-1361035170-1001_Classes\CLSID\{581FFA01-FC33-0002-0702-95003A5CDE89}\InprocServer32 -> C:\Users\TM\AppData\Roaming\Resilio Sync\ShellExtensionPath64_55F.dll () [File not signed]
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\55.0.3.0\drivefsext.dll [2022-01-25] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\55.0.3.0\drivefsext.dll [2022-01-25] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\55.0.3.0\drivefsext.dll [2022-01-25] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\55.0.3.0\drivefsext.dll [2022-01-25] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ !Resilio Sync 2.7.2Done] -> {581FFA04-FC33-0002-0702-95003A5CDE89} => C:\ProgramData\Resilio Sync\ShellExtensionOverlay64_55F.dll [2021-07-30] () [File not signed]
ShellIconOverlayIdentifiers: [ !Resilio Sync 2.7.2RO] -> {581FFA03-FC33-0002-0702-95003A5CDE89} => C:\ProgramData\Resilio Sync\ShellExtensionOverlay64_55F.dll [2021-07-30] () [File not signed]
ShellIconOverlayIdentifiers: [ !Resilio Sync 2.7.2RW] -> {581FFA02-FC33-0002-0702-95003A5CDE89} => C:\ProgramData\Resilio Sync\ShellExtensionOverlay64_55F.dll [2021-07-30] () [File not signed]
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers-x32: [ !Resilio Sync 2.7.2Done] -> {581FFA04-FC33-0002-0702-95003A5CDE89} => C:\ProgramData\Resilio Sync\ShellExtensionOverlay64_55F.dll [2021-07-30] () [File not signed]
ShellIconOverlayIdentifiers-x32: [ !Resilio Sync 2.7.2RO] -> {581FFA03-FC33-0002-0702-95003A5CDE89} => C:\ProgramData\Resilio Sync\ShellExtensionOverlay64_55F.dll [2021-07-30] () [File not signed]
ShellIconOverlayIdentifiers-x32: [ !Resilio Sync 2.7.2RW] -> {581FFA02-FC33-0002-0702-95003A5CDE89} => C:\ProgramData\Resilio Sync\ShellExtensionOverlay64_55F.dll [2021-07-30] () [File not signed]
ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\55.0.3.0\drivefsext.dll [2022-01-25] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\_utility\WinRAR\rarext.dll [2016-02-04] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\_utility\WinRAR\rarext32.dll [2016-02-04] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\55.0.3.0\drivefsext.dll [2022-01-25] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\WINDOWS\System32\atiacm64.dll [2022-01-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\55.0.3.0\drivefsext.dll [2022-01-25] (Google LLC -> Google, Inc.)
ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\_utility\WinRAR\rarext.dll [2016-02-04] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\_utility\WinRAR\rarext32.dll [2016-02-04] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-620132082-3391121035-1361035170-1001: [Resilio Sync 2.7.2] -> {581FFA00-FC33-0002-0702-95003A5CDE89} => C:\Users\TM\AppData\Roaming\Resilio Sync\ShellExtensionPath64_55F.dll [2021-07-30] () [File not signed]
ContextMenuHandlers4_S-1-5-21-620132082-3391121035-1361035170-1001: [Resilio Sync 2.7.2] -> {581FFA00-FC33-0002-0702-95003A5CDE89} => C:\Users\TM\AppData\Roaming\Resilio Sync\ShellExtensionPath64_55F.dll [2021-07-30] () [File not signed]

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.FPS1] => C:\WINDOWS\system32\frapsv64.dll [105984 2015-09-05] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [94208 2015-09-05] (Beepa P/L) [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\TM\Desktop\Google Drive.lnk -> C:\Program Files\Google\Drive File Stream\launch.bat ()
ShortcutWithArgument: C:\Users\TM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Google Keep – poznámky a seznamy.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=hmjkmjkepdijhoojdojkdfohbdgmmhki

==================== Loaded Modules (Whitelisted) =============

2021-04-21 02:30 - 2021-04-21 02:30 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2018-10-05 09:13 - 2018-10-05 09:13 - 000144896 _____ () [File not signed] C:\Program Files\Logitech Gaming Software\LAClient\libssh2.dll
2018-10-05 09:13 - 2018-10-05 09:13 - 000077824 _____ () [File not signed] C:\Program Files\Logitech Gaming Software\LAClient\zlib.dll
2021-07-30 16:40 - 2021-07-30 16:40 - 002584064 _____ () [File not signed] C:\ProgramData\Resilio Sync\ShellExtensionOverlay64_55F.dll
2021-07-30 16:40 - 2021-07-30 16:40 - 003047424 _____ () [File not signed] C:\Users\TM\AppData\Roaming\Resilio Sync\ShellExtensionPath64_55F.dll
2022-01-18 00:45 - 2022-01-18 00:45 - 001717248 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\WVR\OpenVR\bin\win64\driver_amdwvr.dll
2018-03-12 04:59 - 2013-06-18 12:24 - 000372736 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\ijl15.dll
2017-09-04 23:15 - 2017-09-04 23:15 - 004396032 _____ (Microsoft Corporation) [File not signed] C:\Program Files\AMD\CNext\CNext\D3DCompiler_47.dll
2018-04-12 00:34 - 2018-04-12 00:34 - 000251392 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\System32\IPPMon.dll
2018-10-05 09:13 - 2018-10-05 09:13 - 000355840 _____ (The cURL library, hxxp://curl.haxx.se/) [File not signed] C:\Program Files\Logitech Gaming Software\LAClient\LIBCURL.dll
2018-10-05 09:13 - 2018-10-05 09:13 - 002286747 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\LAClient\LIBEAY32.dll
2018-10-05 09:13 - 2018-10-05 09:13 - 000416627 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\LAClient\SSLEAY32.dll
2018-04-06 19:29 - 2018-04-06 19:29 - 002286747 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\LIBEAY32.dll
2018-04-06 19:29 - 2018-04-06 19:29 - 000416627 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\ssleay32.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000057856 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\audio\qtaudio_windows.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000039424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000031232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000415232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000532992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 001455104 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 001227776 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000135680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 006270976 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 006947328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000740352 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Multimedia.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000123392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5MultimediaQuick.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 001110528 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000326656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 003798528 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000440832 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000054784 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlWorkerScript.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 004255744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000171520 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 001128448 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000206336 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000334336 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000396800 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 102854656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000133120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 005611008 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000463360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000210432 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 002877440 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000056832 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000267776 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtMultimedia\declarative_multimedia.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000017408 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQml\qmlplugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000290816 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000336896 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000134144 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000106496 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000325120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000045568 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000093184 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MSIServer => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2016-06-14] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2016-06-15] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2016-06-15] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2016-06-14] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2016-06-14] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2016-06-14] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2016-06-14] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-07-10 12:04 - 2020-11-10 06:08 - 000000063 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 activation.phaseone.com

2017-12-30 03:00 - 2021-02-10 17:27 - 000000448 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
172.27.144.1 DESKTOP-Q3V9AV9.mshome.net # 2026 2 1 9 16 27 21 117

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Users\TM\AppData\Local\Microsoft\WindowsApps;C:\adb;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-620132082-3391121035-1361035170-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 86.49.5.221 - 86.49.5.222
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "AdobeGCInvoker-1.0"
HKU\S-1-5-21-620132082-3391121035-1361035170-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-620132082-3391121035-1361035170-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-620132082-3391121035-1361035170-1001\...\StartupApproved\Run: => "Opera Browser Assistant"
HKU\S-1-5-21-620132082-3391121035-1361035170-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-620132082-3391121035-1361035170-1001\...\StartupApproved\Run: => "Spotify"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{CCB34BEF-E9C4-4B3B-B44F-9D4410725EC8}E:\_hry\borderlandz 3\oakgame\binaries\win64\borderlands3.exe] => (Allow) E:\_hry\borderlandz 3\oakgame\binaries\win64\borderlands3.exe => No File
FirewallRules: [TCP Query User{9CC37269-291E-40DC-8E88-9B3A7E305BF7}E:\_hry\borderlandz 3\oakgame\binaries\win64\borderlands3.exe] => (Allow) E:\_hry\borderlandz 3\oakgame\binaries\win64\borderlands3.exe => No File
FirewallRules: [{7D195508-F22A-4FF1-B52A-635EDCD2E0E5}] => (Block) E:\_hry\Borderlands 3\OakGame\Binaries\Win64\Borderlands3.exe => No File
FirewallRules: [{F7457695-D5EF-4B1E-9156-E0B0DCB235E7}] => (Block) E:\_hry\Borderlands 3\Borderlands3.exe => No File
FirewallRules: [{2BCA9633-711A-41C8-B270-38243876B665}] => (Block) E:\_hry\Assassin's Creed Rogue\ACC.exe => No File
FirewallRules: [{01918829-DDF0-40ED-B7F2-BD2BB9F64883}] => (Allow) E:\_hry\Assassin's Creed Rogue\ACC.exe => No File
FirewallRules: [{177199EF-E146-4184-A181-E62074B12A20}] => (Allow) E:\_hry\Assassin's Creed Rogue\ACC.exe => No File
FirewallRules: [UDP Query User{6FD5A115-A6B1-4294-80B6-2A9D0246D211}E:\program files\modifiablewindowsapps\fallout 76\project76_gamepass.exe] => (Allow) E:\program files\modifiablewindowsapps\fallout 76\project76_gamepass.exe => No File
FirewallRules: [TCP Query User{E37BADC3-816D-4B6B-A0E9-40EF3729CAF5}E:\program files\modifiablewindowsapps\fallout 76\project76_gamepass.exe] => (Allow) E:\program files\modifiablewindowsapps\fallout 76\project76_gamepass.exe => No File
FirewallRules: [UDP Query User{23405400-A344-4737-958B-32B8F40B3393}F:9\maine\binaries\winanvil\maine-winanvil-shipping.exe] => (Allow) F:9\maine\binaries\winanvil\maine-winanvil-shipping.exe => No File
FirewallRules: [TCP Query User{D1FF9A41-729B-465C-860B-EC631C4EA4D9}F:9\maine\binaries\winanvil\maine-winanvil-shipping.exe] => (Allow) F:9\maine\binaries\winanvil\maine-winanvil-shipping.exe => No File
FirewallRules: [UDP Query User{5D65A7D3-257B-45C5-BB8C-6C4300DDC991}F:0\maine\binaries\winanvil\maine-winanvil-shipping.exe] => (Allow) F:0\maine\binaries\winanvil\maine-winanvil-shipping.exe => No File
FirewallRules: [TCP Query User{CBE671E2-696A-40C3-9794-318EBFB771B2}F:0\maine\binaries\winanvil\maine-winanvil-shipping.exe] => (Allow) F:0\maine\binaries\winanvil\maine-winanvil-shipping.exe => No File
FirewallRules: [{0C3124D2-74DA-4B10-8B44-FC9B6A0E2A6B}] => (Allow) C:\Program Files (x86)\Blizzard\Bonjour Service\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2FB43333-F832-47B3-AE0B-7203C1B996A1}] => (Allow) C:\Program Files (x86)\Blizzard\Bonjour Service\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [UDP Query User{38C1CD7F-FA77-4935-BCED-4105AD4E867A}E:\_hry\arksurvivalevolved\shootergame\binaries\win64\shootergame.exe] => (Allow) E:\_hry\arksurvivalevolved\shootergame\binaries\win64\shootergame.exe => No File
FirewallRules: [TCP Query User{B7FD44E7-F340-4103-B4E6-4C3631F5BBA6}E:\_hry\arksurvivalevolved\shootergame\binaries\win64\shootergame.exe] => (Allow) E:\_hry\arksurvivalevolved\shootergame\binaries\win64\shootergame.exe => No File
FirewallRules: [UDP Query User{F5D266B6-EE7B-4F23-823D-A879CE58CFB0}E:\program files\modifiablewindowsapps\halomcc\mcc\binaries\win64\mcc-win64-shipping-winstore.exe] => (Allow) E:\program files\modifiablewindowsapps\halomcc\mcc\binaries\win64\mcc-win64-shipping-winstore.exe => No File
FirewallRules: [TCP Query User{45B58512-5D93-4DE6-B171-742EC00ECC05}E:\program files\modifiablewindowsapps\halomcc\mcc\binaries\win64\mcc-win64-shipping-winstore.exe] => (Allow) E:\program files\modifiablewindowsapps\halomcc\mcc\binaries\win64\mcc-win64-shipping-winstore.exe => No File
FirewallRules: [UDP Query User{898C2A78-CC5B-4DCC-BDEB-B2C24D26D36E}E:\_hry\gtav\gta5.exe] => (Allow) E:\_hry\gtav\gta5.exe => No File
FirewallRules: [TCP Query User{8469C087-AF38-4E8C-9F6C-B1A835A89113}E:\_hry\gtav\gta5.exe] => (Allow) E:\_hry\gtav\gta5.exe => No File
FirewallRules: [{234DDB67-A684-43BA-B11F-EF36D64BD379}] => (Block) E:\_hry\GTA-IV\GTAIV.exe => No File
FirewallRules: [{196F50AC-13F9-403B-BD55-618993F2B946}] => (Block) E:\_hry\GTA-IV\LaunchGTAIV.exe => No File
FirewallRules: [{178CCCE4-629A-4569-AD0B-3B6C4072B5E7}] => (Block) E:\_hry\GTA-IV\LaunchGTAIV.exe => No File
FirewallRules: [{68C74B14-F418-4807-A114-98EA6F2A62E3}] => (Block) E:\_hry\GTA-IV\GTAIV.exe => No File
FirewallRules: [UDP Query User{586A7603-8C30-4164-A759-7790D4BBA22F}E:\_hry\gta-iv\gtaiv.exe] => (Block) E:\_hry\gta-iv\gtaiv.exe => No File
FirewallRules: [TCP Query User{1A85C69E-34F3-4993-A5C1-3A19555FD1E6}E:\_hry\gta-iv\gtaiv.exe] => (Block) E:\_hry\gta-iv\gtaiv.exe => No File
FirewallRules: [UDP Query User{E63D94B1-3FA7-4047-AB31-A78BA35E8EE9}E:\_hry\heavy metal - fakk2\fakk2.exe] => (Allow) E:\_hry\heavy metal - fakk2\fakk2.exe (Ritual Entertainment) [File not signed]
FirewallRules: [TCP Query User{6EAEE5B4-1899-4C46-B80F-D68F7F4B1490}E:\_hry\heavy metal - fakk2\fakk2.exe] => (Allow) E:\_hry\heavy metal - fakk2\fakk2.exe (Ritual Entertainment) [File not signed]
FirewallRules: [UDP Query User{9B8B0AC7-789A-4224-AFA5-3BDD7FC62019}E:\_hry\age.of.empires.definitive.edition.build.35199.repack-kaos\battleserver.exe] => (Block) E:\_hry\age.of.empires.definitive.edition.build.35199.repack-kaos\battleserver.exe => No File
FirewallRules: [TCP Query User{DAA52058-9AD1-423F-9C62-7EB7B0957E06}E:\_hry\age.of.empires.definitive.edition.build.35199.repack-kaos\battleserver.exe] => (Block) E:\_hry\age.of.empires.definitive.edition.build.35199.repack-kaos\battleserver.exe => No File
FirewallRules: [UDP Query User{5091FBF9-B9B1-4E7F-96F0-EB468DCA7645}E:\_hry\age.of.empires.definitive.edition.build.35199.repack-kaos\aoede_s.exe] => (Block) E:\_hry\age.of.empires.definitive.edition.build.35199.repack-kaos\aoede_s.exe => No File
FirewallRules: [TCP Query User{F19DC9CF-611A-45FC-9B5B-35793E0408C5}E:\_hry\age.of.empires.definitive.edition.build.35199.repack-kaos\aoede_s.exe] => (Block) E:\_hry\age.of.empires.definitive.edition.build.35199.repack-kaos\aoede_s.exe => No File
FirewallRules: [UDP Query User{CAAA6AD1-EF07-4179-A8B3-F51EC4F2DA69}D:\games\besiege\besiege.exe] => (Block) D:\games\besiege\besiege.exe => No File
FirewallRules: [TCP Query User{103183D2-5AB8-4B4A-AB11-6B200E490984}D:\games\besiege\besiege.exe] => (Block) D:\games\besiege\besiege.exe => No File
FirewallRules: [{A394A4B4-63B5-40D1-AEFB-254DA8B3114B}] => (Block) %ProgramFiles%\Phase One\Capture One 20\CaptureOne.exe => No File
FirewallRules: [{8FDC62A3-3A07-45C7-A89C-873C09E45096}] => (Block) %ProgramFiles%\Phase One\Capture One 20\CaptureOne.exe => No File
FirewallRules: [{CAC75935-A79A-47BF-913B-F483ADC6944F}] => (Allow) C:\Program Files\Phase One\Capture One 20\CaptureOne.exe => No File
FirewallRules: [{A50889E9-715C-4DAC-972C-24709A63ED01}] => (Allow) C:\Program Files\Phase One\Capture One 20\CaptureOne.exe => No File
FirewallRules: [{CC585FA1-D7E6-4109-B2AE-115CE8C1B417}] => (Allow) C:\Program Files\Phase One\Capture One 20\CaptureOne.exe => No File
FirewallRules: [{2B8F8FA6-194E-46DE-8CF7-03DEA1979F66}] => (Allow) C:\Program Files\Phase One\Capture One 20\CaptureOne.exe => No File
FirewallRules: [{BF56397F-DBD0-482C-82CB-A42A70356F7E}] => (Allow) C:\_utility\RescueTime\RescueTime.exe => No File
FirewallRules: [{66371FAB-1731-456F-8403-8F2B32B08B9A}] => (Allow) C:\_utility\RescueTime\RescueTime.exe => No File
FirewallRules: [{8AE9A577-9367-40AF-8529-14175CE79BBB}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe => No File
FirewallRules: [UDP Query User{4D75EF55-E21F-4B4E-B1BF-403AA0B56B4A}C:\_utility\utorrent\utorrent.exe] => (Allow) C:\_utility\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{01608452-DB09-44EC-B40C-24145EAFC8D2}C:\_utility\utorrent\utorrent.exe] => (Allow) C:\_utility\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{31D666A3-9C9C-489C-A908-4A641752A96F}C:\_utility\utorrent\utorrent.exe] => (Allow) C:\_utility\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{AB60AA5F-8F61-456C-9AF9-7BEDCB3A179F}C:\_utility\utorrent\utorrent.exe] => (Allow) C:\_utility\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{CA86D26C-82CB-4844-A392-7EFE03971F1E}] => (Allow) C:\Program Files\Adobe\Adobe Photoshop CC 2017\Photoshop.exe (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
FirewallRules: [{15EF0CC7-8E84-4EAB-907E-C0EB37737695}] => (Allow) C:\Program Files\Adobe\Adobe Photoshop CC 2017\Photoshop.exe (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
FirewallRules: [{BAA55696-CE26-443C-AA79-174E864AC05A}] => (Allow) C:\Program Files\Adobe\Adobe Photoshop CC 2017\Photoshop.exe (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
FirewallRules: [{8E76CED5-8FB7-4CC7-BD0B-4B915AB98108}] => (Allow) C:\Program Files\Adobe\Adobe Photoshop CC 2017\Photoshop.exe (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
FirewallRules: [{F821E032-2EED-4C12-8686-155CCAF258A4}] => (Allow) C:\Program Files\Adobe\Adobe Premiere Pro CC 2017\Adobe Premiere Pro.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{D86876EF-5697-4CF6-9746-CE4BE36C5150}] => (Allow) C:\Program Files\Adobe\Adobe Premiere Pro CC 2017\Adobe Premiere Pro.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{3D76DC0F-1790-4A1D-BD55-CBABB167FAE2}] => (Allow) C:\Program Files\Adobe\Adobe Premiere Pro CC 2017\Adobe Premiere Pro.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{5D2C3088-00A4-4F9B-BB05-7A932672C269}] => (Allow) C:\Program Files\Adobe\Adobe Premiere Pro CC 2017\Adobe Premiere Pro.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{0D2F6EEE-47C7-40C5-B707-39CD87C07ED6}] => (Allow) C:\_utility\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{DC497800-83E9-42D1-B2C4-60A57739B5D9}] => (Allow) C:\_utility\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{5704CEBE-F3BF-4EF2-B731-7B7276220CDC}] => (Allow) C:\Program Files\Adobe\Adobe Lightroom\lightroom.exe (Adobe Systems Incorporated -> Adobe Systems)
FirewallRules: [{791862E5-396E-421D-995F-3F9B6FE41B18}] => (Allow) C:\Program Files\Adobe\Adobe Lightroom\lightroom.exe (Adobe Systems Incorporated -> Adobe Systems)
FirewallRules: [{772BE3B1-02C8-4F69-8CF2-F8ABDBFB91A8}] => (Allow) C:\Program Files\Adobe\Adobe Lightroom\lightroom.exe (Adobe Systems Incorporated -> Adobe Systems)
FirewallRules: [{2D13E693-A34C-424E-BAB4-146F6093EAF8}] => (Allow) C:\Program Files\Adobe\Adobe Lightroom\lightroom.exe (Adobe Systems Incorporated -> Adobe Systems)
FirewallRules: [{8212CE1B-A631-449E-8932-093589D7D120}] => (Allow) C:\Program Files\Adobe\Adobe Bridge CC 2017\Bridge.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{C96B9DA0-837C-4C60-BD60-189A5CDA93FF}] => (Allow) C:\Program Files\Adobe\Adobe Bridge CC 2017\Bridge.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{DCE684F8-B36C-4A29-BECF-25F358CA05CC}] => (Allow) C:\Program Files\Adobe\Adobe Bridge CC 2017\Bridge.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{C4517C2A-0DCF-48BB-AE0A-75B8003004AA}] => (Allow) C:\Program Files\Adobe\Adobe Bridge CC 2017\Bridge.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{8D0F98FA-28C2-483B-AB3B-1E1E3A24C89F}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{058AAF9C-8D20-478D-8FD4-78D8A2502C0B}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{54CDCE2D-D1C5-4EC2-9292-F643D6AB9D28}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{A4745F14-ADC0-441F-AA15-6A03C890D199}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{37954D50-0DF0-4F44-BB7C-3412FA9DA71B}] => (Allow) E:\_hry\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{82417509-17FB-4D86-A1EB-ACC7214DEE62}] => (Allow) E:\_hry\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{0157CEF4-2AF4-4970-8647-11FAD75B2F5D}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{164E3C1F-0B3F-4653-BA18-342A6C9F22F6}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6446D925-B07D-468B-87C6-AE9901343217}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A0C8F12A-5818-464A-AFB8-3685624F204F}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{C1FDBDD2-8105-446A-9170-5BF802DAF147}E:\_hry\steam\steamapps\common\elite dangerous\products\elite-dangerous-64\elitedangerous64.exe] => (Allow) E:\_hry\steam\steamapps\common\elite dangerous\products\elite-dangerous-64\elitedangerous64.exe => No File
FirewallRules: [UDP Query User{7D548C33-0021-4B5A-A0CD-95EC707CA2CC}E:\_hry\steam\steamapps\common\elite dangerous\products\elite-dangerous-64\elitedangerous64.exe] => (Allow) E:\_hry\steam\steamapps\common\elite dangerous\products\elite-dangerous-64\elitedangerous64.exe => No File
FirewallRules: [DNS Server Forward Rule - TCP - b65ef96f-36ee-4e23-b347-8684f9272b6e - 0] => (Allow) LPort=53
FirewallRules: [DNS Server Forward Rule - UDP - b65ef96f-36ee-4e23-b347-8684f9272b6e - 0] => (Allow) LPort=53
FirewallRules: [{A786F159-4835-4D89-8F2E-C46E51F8C86E}] => (Allow) E:\_hry\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{4D9DB2B7-742D-4146-8E33-7EA628E70D56}] => (Allow) E:\_hry\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{DA305825-5E9F-4FA0-8559-DA08240CBCA1}] => (Allow) C:\Program Files (x86)\DroidCam\DroidCamApp.exe (DEV47 APPS -> )
FirewallRules: [{4A4E4299-2F82-4614-839D-6D8DD2D3E141}] => (Allow) C:\Program Files (x86)\DroidCam\DroidCamApp.exe (DEV47 APPS -> )
FirewallRules: [TCP Query User{A16F7147-CED6-4ED2-B89F-AC7965F14514}E:\_hry\epic games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) E:\_hry\epic games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe => No File
FirewallRules: [UDP Query User{1103C0D6-1AB3-46E0-A72C-8C16D7A4DE99}E:\_hry\epic games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) E:\_hry\epic games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe => No File
FirewallRules: [TCP Query User{01DA56A9-10E5-44BC-B46A-9ED7D71DBA95}E:\_hry\steam\steamapps\common\star wars - galactic battlegrounds saga\game\battlegrounds_x2.exe] => (Allow) E:\_hry\steam\steamapps\common\star wars - galactic battlegrounds saga\game\battlegrounds_x2.exe => No File
FirewallRules: [UDP Query User{98F2EEC7-EDA5-4BF7-BC00-EFC2BF951ACF}E:\_hry\steam\steamapps\common\star wars - galactic battlegrounds saga\game\battlegrounds_x2.exe] => (Allow) E:\_hry\steam\steamapps\common\star wars - galactic battlegrounds saga\game\battlegrounds_x2.exe => No File
FirewallRules: [TCP Query User{4D584A87-95D6-4997-8FF8-1BA046DB4FDA}E:\_hry\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) E:\_hry\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe => No File
FirewallRules: [UDP Query User{339E9B20-3163-4B13-8EA0-312338B0FFF8}E:\_hry\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => (Allow) E:\_hry\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe => No File
FirewallRules: [TCP Query User{3C2712AE-5E08-46FB-8AD5-32DB9764AD1B}C:\_hry\minecraft\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\_hry\minecraft\runtime\jre-x64\bin\javaw.exe => No File
FirewallRules: [UDP Query User{7DB81D38-9902-4183-B4DD-57B9C0893CCB}C:\_hry\minecraft\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\_hry\minecraft\runtime\jre-x64\bin\javaw.exe => No File
FirewallRules: [TCP Query User{75A15E06-EEAE-496A-8369-6303E56C595E}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [UDP Query User{FD815C0A-1063-434D-8267-A0FAD6D3F366}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [TCP Query User{E16A5E99-AA91-4FDE-A9A1-0096749FDE2E}E:\_hry\star wars - battlefront 2\starwarsbattlefrontii.exe] => (Block) E:\_hry\star wars - battlefront 2\starwarsbattlefrontii.exe => No File
FirewallRules: [UDP Query User{890839C1-2C25-4296-BAE1-4C119BBEA96E}E:\_hry\star wars - battlefront 2\starwarsbattlefrontii.exe] => (Block) E:\_hry\star wars - battlefront 2\starwarsbattlefrontii.exe => No File
FirewallRules: [{9A9CFBA9-9808-41D0-AB0A-5CEDB36FD164}] => (Allow) E:\_hry\Red Dead Redemption 2\RDR2.exe => No File
FirewallRules: [{9C49B416-F774-4AFF-9908-8BFC98D89DD4}] => (Allow) E:\_hry\Red Dead Redemption 2\RDR2.exe => No File
FirewallRules: [TCP Query User{F8714AD2-F1CD-4854-843D-9DC7267CE929}E:\_hry\star wars battlefront ii\starwarsbattlefrontii.exe] => (Block) E:\_hry\star wars battlefront ii\starwarsbattlefrontii.exe => No File
FirewallRules: [UDP Query User{59B459D8-B683-41A5-B32E-6A80A720AE1C}E:\_hry\star wars battlefront ii\starwarsbattlefrontii.exe] => (Block) E:\_hry\star wars battlefront ii\starwarsbattlefrontii.exe => No File
FirewallRules: [{AF953429-CF82-40A9-AC1F-D93D84A6011B}] => (Block) C:\Program Files\Adobe\ Capture One 13.1\CaptureOne.exe (Capture One A/S -> Capture One)
FirewallRules: [{543A4811-A621-4C74-96C8-43F505D42BC9}] => (Block) C:\Program Files\Adobe\ Capture One 13.1\CaptureOne.exe (Capture One A/S -> Capture One)
FirewallRules: [TCP Query User{8799A2B6-C3BF-4E49-BA90-3F7C0703E115}D:\_hry\cyberpunk 2077\bin\x64\cyberpunk2077.exe] => (Allow) D:\_hry\cyberpunk 2077\bin\x64\cyberpunk2077.exe => No File
FirewallRules: [UDP Query User{7AC5CE5E-9443-4624-981F-11BFC6265B09}D:\_hry\cyberpunk 2077\bin\x64\cyberpunk2077.exe] => (Allow) D:\_hry\cyberpunk 2077\bin\x64\cyberpunk2077.exe => No File
FirewallRules: [TCP Query User{2AAC3CED-3DBF-4D7D-967F-A80E5E684E9A}E:\_hry\age of empires ii definitive edition\aoe2de_s.exe] => (Block) E:\_hry\age of empires ii definitive edition\aoe2de_s.exe (Microsoft Corporation -> Microsoft Corporation) [File not signed]
FirewallRules: [UDP Query User{77368DCC-F80A-4D7E-9E5D-51642A34C5D7}E:\_hry\age of empires ii definitive edition\aoe2de_s.exe] => (Block) E:\_hry\age of empires ii definitive edition\aoe2de_s.exe (Microsoft Corporation -> Microsoft Corporation) [File not signed]
FirewallRules: [TCP Query User{4E5812F0-19FA-4FDF-98C6-50AB9D38FFD4}E:\_hry\age of empires ii definitive edition\battleserver\battleserver.exe] => (Block) E:\_hry\age of empires ii definitive edition\battleserver\battleserver.exe () [File not signed]
FirewallRules: [UDP Query User{6FF00214-C95D-42F6-8EF1-D29B20FD4C36}E:\_hry\age of empires ii definitive edition\battleserver\battleserver.exe] => (Block) E:\_hry\age of empires ii definitive edition\battleserver\battleserver.exe () [File not signed]
FirewallRules: [TCP Query User{764EE790-357A-418F-9EA6-DFE50F4ED0E4}C:\_hry\minecraft\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\_hry\minecraft\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe => No File
FirewallRules: [UDP Query User{33733443-6540-47C1-9A04-F58833956672}C:\_hry\minecraft\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\_hry\minecraft\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe => No File
FirewallRules: [TCP Query User{F5C89856-473C-42ED-B08D-A459F3893568}E:\_hry\age of empires ii definitive edition lords of the west\aoe2de_s.exe] => (Block) E:\_hry\age of empires ii definitive edition lords of the west\aoe2de_s.exe => No File
FirewallRules: [UDP Query User{3AD44732-FB4B-4C8F-A206-CE99B4942A79}E:\_hry\age of empires ii definitive edition lords of the west\aoe2de_s.exe] => (Block) E:\_hry\age of empires ii definitive edition lords of the west\aoe2de_s.exe => No File
FirewallRules: [{AC55B113-C3EE-464A-A294-294E789AEE49}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
FirewallRules: [TCP Query User{FCD772FF-415D-41FE-89E9-0E7D008210ED}E:\_hry\alienisolation\ai.exe] => (Block) E:\_hry\alienisolation\ai.exe => No File
FirewallRules: [UDP Query User{1E743E28-A14D-4F24-86C6-DC58DE84A612}E:\_hry\alienisolation\ai.exe] => (Block) E:\_hry\alienisolation\ai.exe => No File
FirewallRules: [TCP Query User{BA1C04AB-1BF6-4F8A-A884-6E979E6ECA2B}C:\users\tm\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\tm\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{B86EC626-2D75-48DA-8EC4-7230D5247709}C:\users\tm\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\tm\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{5BF41BD6-650B-4742-80C3-2E35C665C93D}C:\_utility\vlc\vlc.exe] => (Block) C:\_utility\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{4A88C437-6E57-488D-87A9-CF0B6108B011}C:\_utility\vlc\vlc.exe] => (Block) C:\_utility\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{4666296D-0B0D-49A6-99EB-E30CF36750D2}] => (Allow) C:\_utility\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{8CF0C81F-C806-470E-AD56-C499A9D1BE95}] => (Allow) C:\_utility\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{E2BA3107-45DD-4A0F-B1C9-F1767EF219F0}] => (Allow) C:\_utility\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{93E57CBC-9DA3-4655-9D70-34B8D6C340EC}] => (Allow) C:\_utility\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [TCP Query User{C22263FC-8E8D-469C-8F08-1496BB658829}E:\_hry\subnauticabelowzero\subnauticazero.exe] => (Allow) E:\_hry\subnauticabelowzero\subnauticazero.exe => No File
FirewallRules: [UDP Query User{69595704-C2F1-42B1-84BE-085A8EF878EB}E:\_hry\subnauticabelowzero\subnauticazero.exe] => (Allow) E:\_hry\subnauticabelowzero\subnauticazero.exe => No File
FirewallRules: [TCP Query User{CF769E99-8945-4664-932F-CF81B9D1886E}D:\games\subnautica below zero\subnauticazero.exe] => (Block) D:\games\subnautica below zero\subnauticazero.exe => No File
FirewallRules: [UDP Query User{04FD13AC-ED05-4AD8-AAA8-FC9EF6CCA8E6}D:\games\subnautica below zero\subnauticazero.exe] => (Block) D:\games\subnautica below zero\subnauticazero.exe => No File
FirewallRules: [TCP Query User{88F12C4D-BEE2-4DBC-B836-90A081B15AAF}E:\_hry\games\subnautica below zero\subnauticazero.exe] => (Allow) E:\_hry\games\subnautica below zero\subnauticazero.exe => No File
FirewallRules: [UDP Query User{EC41A9F0-39AD-4957-A5BC-AA03D6DE71E9}E:\_hry\games\subnautica below zero\subnauticazero.exe] => (Allow) E:\_hry\games\subnautica below zero\subnauticazero.exe => No File
FirewallRules: [TCP Query User{E4CC2E40-0958-4AC1-976E-D89D38CA9802}D:\_hry\steamapps\common\elite dangerous\products\elite-dangerous-64\elitedangerous64.exe] => (Allow) D:\_hry\steamapps\common\elite dangerous\products\elite-dangerous-64\elitedangerous64.exe => No File
FirewallRules: [UDP Query User{DC41978E-FEC5-4EF7-B9E8-2D65EEC729B7}D:\_hry\steamapps\common\elite dangerous\products\elite-dangerous-64\elitedangerous64.exe] => (Allow) D:\_hry\steamapps\common\elite dangerous\products\elite-dangerous-64\elitedangerous64.exe => No File
FirewallRules: [{460B3434-B827-4C45-BE88-56ABAF8C413E}] => (Allow) C:\Users\TM\AppData\Roaming\Resilio Sync\Resilio Sync.exe (Resilio, Inc. -> Resilio, Inc.)
FirewallRules: [{5A9A0917-DFFB-4932-AE78-3C644F6DA50E}] => (Allow) C:\Users\TM\AppData\Roaming\Resilio Sync\Resilio Sync.exe (Resilio, Inc. -> Resilio, Inc.)
FirewallRules: [TCP Query User{1FD35F00-5BED-490A-BF8C-1D251EEF6494}D:\star citizen\starcitizen\live\bin64\starcitizen.exe] => (Allow) D:\star citizen\starcitizen\live\bin64\starcitizen.exe => No File
FirewallRules: [UDP Query User{CB74F368-813E-491F-81E5-12B6D9222060}D:\star citizen\starcitizen\live\bin64\starcitizen.exe] => (Allow) D:\star citizen\starcitizen\live\bin64\starcitizen.exe => No File
FirewallRules: [TCP Query User{A0EE1893-AB05-4D99-86D2-1B53452BFCE1}D:\games\quake enhanced\qwcl.exe] => (Block) D:\games\quake enhanced\qwcl.exe () [File not signed]
FirewallRules: [UDP Query User{BC333F6D-233A-4818-AAC9-7A1418FC72F2}D:\games\quake enhanced\qwcl.exe] => (Block) D:\games\quake enhanced\qwcl.exe () [File not signed]
FirewallRules: [{8093BF08-CFF4-4C92-9720-B965B0F7409F}] => (Allow) C:\_utility\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{79462CD0-4EE4-4BF7-8A32-38FEF6FFF98D}] => (Allow) C:\_utility\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{047D1172-FAB7-4CE7-930B-5366F84DE2C7}] => (Allow) C:\_utility\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{6013385A-9BA9-40EB-97E5-042896E49B4A}] => (Allow) C:\_utility\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [TCP Query User{E4468E27-40BB-462B-81C6-BC930D41B731}E:\_download\grand.theft.auto.the.trilogy.the.definitive.edition\gta vice city - definitive edition\gameface\binaries\win64\vicecity.exe] => (Block) E:\_download\grand.theft.auto.the.trilogy.the.definitive.edition\gta vice city - definitive edition\gameface\binaries\win64\vicecity.exe => No File
FirewallRules: [UDP Query User{EFB74986-A59E-4088-8BE3-EE234A6375AD}E:\_download\grand.theft.auto.the.trilogy.the.definitive.edition\gta vice city - definitive edition\gameface\binaries\win64\vicecity.exe] => (Block) E:\_download\grand.theft.auto.the.trilogy.the.definitive.edition\gta vice city - definitive edition\gameface\binaries\win64\vicecity.exe => No File
FirewallRules: [{A6CAA65E-D026-4AA4-9D7C-3A6ABBB1E2B2}] => (Allow) D:\SteamLibrary\steamapps\common\Dark Forces\DosBox\dosbox.exe => No File
FirewallRules: [{A696DF58-CE06-4E1F-AF51-15CDF8F6BF22}] => (Allow) D:\SteamLibrary\steamapps\common\Dark Forces\DosBox\dosbox.exe => No File
FirewallRules: [TCP Query User{E1C6A0C7-D683-4F02-9A9D-325EB3F5A277}D:\games\farcry 3\bin\farcry3.exe] => (Block) D:\games\farcry 3\bin\farcry3.exe => No File
FirewallRules: [UDP Query User{1B0A3218-4BD4-4293-8013-20FCF48A9835}D:\games\farcry 3\bin\farcry3.exe] => (Block) D:\games\farcry 3\bin\farcry3.exe => No File
FirewallRules: [TCP Query User{F819DFFA-7820-4308-A486-0FD25B5A24B9}D:\steamlibrary\steamapps\common\elite dangerous\products\elite-dangerous-64\elitedangerous64.exe] => (Allow) D:\steamlibrary\steamapps\common\elite dangerous\products\elite-dangerous-64\elitedangerous64.exe => No File
FirewallRules: [UDP Query User{16528E74-A228-4EDD-B2F9-473C0797D17B}D:\steamlibrary\steamapps\common\elite dangerous\products\elite-dangerous-64\elitedangerous64.exe] => (Allow) D:\steamlibrary\steamapps\common\elite dangerous\products\elite-dangerous-64\elitedangerous64.exe => No File
FirewallRules: [{04A3C02F-27B6-4023-9794-39D547F811DD}] => (Allow) D:\SteamLibrary\steamapps\common\Stalker Call of Pripyat\bin\xrEngine.exe (GSC Game World -> GSC Game World)
FirewallRules: [{D13E78AB-70BB-4F90-A289-2EFFA35301B4}] => (Allow) D:\SteamLibrary\steamapps\common\Stalker Call of Pripyat\bin\xrEngine.exe (GSC Game World -> GSC Game World)
FirewallRules: [TCP Query User{C99A197E-66B0-4F47-9270-C4FE5B556B7D}E:\_hry\epic\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) E:\_hry\epic\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{1A959554-1786-47C2-9A5F-CBC6EA07B8EF}E:\_hry\epic\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) E:\_hry\epic\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{6ACDFAD2-0032-422F-8F20-D1A8A35BC054}] => (Allow) C:\Users\TM\AppData\Local\Programs\Opera\83.0.4254.27\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [TCP Query User{ADCE88CF-C6AA-419C-82BE-67B442ADC4F7}D:\games\dying light platinum edition\dyinglightgame.exe] => (Block) D:\games\dying light platinum edition\dyinglightgame.exe (Techland Sp. z o.o. -> Techland) [File not signed]
FirewallRules: [UDP Query User{9C8385A8-B00D-42AD-934B-56F4C8F5B4BF}D:\games\dying light platinum edition\dyinglightgame.exe] => (Block) D:\games\dying light platinum edition\dyinglightgame.exe (Techland Sp. z o.o. -> Techland) [File not signed]
FirewallRules: [{A97310B3-3C9D-430D-9A0C-11F55B12E4A4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.80.194.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C1DE3FA4-03A2-40FB-A188-CD72DF7109FA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.80.194.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8EB3F7BF-C990-44F1-8AA1-3AD72479F6A6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.80.194.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8D1A6C28-121D-4C78-A359-0B24450CBA57}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.80.194.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{55488693-FB21-4AD6-8BBD-5049FC1C65CD}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{C0CAA4B8-A71D-4AAC-9F73-B778DDC37734}] => (Allow) C:\Users\TM\AppData\Local\Programs\Opera\83.0.4254.62\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{C9D0BBE9-C1EC-4031-8CE0-D5F2FBA8CCA6}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\98.0.1108.56\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{14CA504F-C350-4417-A362-078892772C58}C:\_utility\droid transfer v1.51 multilingual portable [15.6.2021]\app\droid transfer\droid transfer.exe] => (Allow) C:\_utility\droid transfer v1.51 multilingual portable [15.6.2021]\app\droid transfer\droid transfer.exe (Wide Angle Software Ltd -> Wide Angle Software Ltd)
FirewallRules: [UDP Query User{97741F7D-0515-4E09-A80D-58C7D2B6C98C}C:\_utility\droid transfer v1.51 multilingual portable [15.6.2021]\app\droid transfer\droid transfer.exe] => (Allow) C:\_utility\droid transfer v1.51 multilingual portable [15.6.2021]\app\droid transfer\droid transfer.exe (Wide Angle Software Ltd -> Wide Angle Software Ltd)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:111.24 GB) (Free:9.57 GB) (9%)

==================== Faulty Device Manager Devices ============

Name: Intel(R) Management Engine Interface #1
Description: Intel(R) Management Engine Interface #1
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: MEIx64
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.

Name: Standard PS/2 Keyboard
Description: Standard PS/2 Keyboard
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard keyboards)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Microsoft PS/2 Mouse
Description: Microsoft PS/2 Mouse
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: ========================

Application errors:
==================
Error: (02/21/2022 04:57:26 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (02/20/2022 10:57:03 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: DESKTOP-Q3V9AV9)
Description: Application or service 'adb.exe' could not be shut down.

Error: (02/20/2022 09:30:27 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program explorer.exe version 10.0.19041.1503 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 1bc0

Start Time: 01d82647651babe1

Termination Time: 0

Application Path: C:\Windows\explorer.exe

Report Id: 041c0442-2e3d-479c-8902-15e239e339d9

Faulting package full name:

Faulting package-relative application ID:

Hang type: Unknown

Error: (02/20/2022 05:17:01 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program i_view64.exe version 4.58.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 2af8

Start Time: 01d826100d40dce4

Termination Time: 19

Application Path: C:\_utility\IrfanView\i_view64.exe

Report Id: 5ea7d795-60b1-4b6a-b70f-2ff8be2722c0

Faulting package full name:

Faulting package-relative application ID:

Hang type: Unknown

Error: (02/20/2022 02:34:17 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (02/19/2022 10:17:51 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (02/18/2022 03:12:34 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (02/17/2022 04:27:08 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0


System errors:
=============
Error: (02/20/2022 05:21:51 PM) (Source: MEIx64) (EventID: 3) (User: )
Description: Intel(R) Management Engine Interface driver has failed to perform handshake with the Firmware (FWSTS0: 0x9030405E, FWSTS1: 0x340D0006).

Error: (02/20/2022 01:01:23 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070005: 9WZDNCRFJ3P2-MICROSOFT.ZUNEVIDEO.

Error: (02/19/2022 03:47:13 PM) (Source: MEIx64) (EventID: 3) (User: )
Description: Intel(R) Management Engine Interface driver has failed to perform handshake with the Firmware (FWSTS0: 0x9030405E, FWSTS1: 0x340D0006).

Error: (02/18/2022 05:45:24 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070005: 9WZDNCRFJ3P2-MICROSOFT.ZUNEVIDEO.

Error: (02/16/2022 06:58:20 PM) (Source: MEIx64) (EventID: 3) (User: )
Description: Intel(R) Management Engine Interface driver has failed to perform handshake with the Firmware (FWSTS0: 0x9030405E, FWSTS1: 0x340D0006).

Error: (02/16/2022 01:34:36 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070005: 9WZDNCRFJ3P2-MICROSOFT.ZUNEVIDEO.

Error: (02/15/2022 03:37:32 PM) (Source: MEIx64) (EventID: 3) (User: )
Description: Intel(R) Management Engine Interface driver has failed to perform handshake with the Firmware (FWSTS0: 0x9030405E, FWSTS1: 0x340D0006).

Error: (02/14/2022 08:27:19 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070005: 9WZDNCRFJ3P2-MICROSOFT.ZUNEVIDEO.


Windows Defender:
================
Date: 2022-02-21 10:16:18
Description:
Prohledávání Microsoft Defender Antivirus bylo zastaveno před dokončením.
ID prohledávání: {A03ECA77-6FFF-40C8-92E4-6F25B26B27CB}
Typ prohledávání: Antimalware
Parametry prohledávání: Quick Scan
Uživatel: NT AUTHORITY\SYSTEM

Date: 2022-02-18 22:11:22
Description:
Prohledávání Microsoft Defender Antivirus bylo zastaveno před dokončením.
ID prohledávání: {4B3EB71A-2B9B-42D8-80BE-F9B76306DB9C}
Typ prohledávání: Antimalware
Parametry prohledávání: Quick Scan
Uživatel: NT AUTHORITY\SYSTEM

Date: 2022-02-16 01:10:56
Description:
Prohledávání Microsoft Defender Antivirus bylo zastaveno před dokončením.
ID prohledávání: {DB4DFDFF-C7A1-48E8-ACC8-78B013F64684}
Typ prohledávání: Antimalware
Parametry prohledávání: Quick Scan
Uživatel: NT AUTHORITY\SYSTEM

Date: 2022-02-14 10:22:46
Description:
Prohledávání Microsoft Defender Antivirus bylo zastaveno před dokončením.
ID prohledávání: {F10BD8C2-74A4-4DDD-87B6-0AB3BD056A6A}
Typ prohledávání: Antimalware
Parametry prohledávání: Quick Scan
Uživatel: NT AUTHORITY\SYSTEM

Date: 2022-02-13 16:10:00
Description:
Prohledávání Microsoft Defender Antivirus bylo zastaveno před dokončením.
ID prohledávání: {D5E5C6DF-E4EE-4E91-B4BD-D2A32EA9F93F}
Typ prohledávání: Antimalware
Parametry prohledávání: Quick Scan
Uživatel: NT AUTHORITY\SYSTEM

==================== Memory info ===========================

BIOS: American Megatrends Inc. C.C0 04/21/2017
Motherboard: MSI B150 PC MATE (MS-7971)
Processor: Intel(R) Core(TM) i5-6500 CPU @ 3.20GHz
Percentage of memory in use: 46%
Total physical RAM: 32732.12 MB
Available physical RAM: 17561.67 MB
Total Virtual: 40732.12 MB
Available Virtual: 17656.88 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.24 GB) (Free:9.57 GB) NTFS
Drive d: (SSD Ops) (Fixed) (Total:223.57 GB) (Free:29.52 GB) NTFS
Drive e: (Data) (Fixed) (Total:1863.02 GB) (Free:49.45 GB) NTFS
Drive f: (Backup) (Fixed) (Total:931.51 GB) (Free:35.78 GB) NTFS
Drive g: (Google Drive) (Fixed) (Total:17 GB) (Free:9.1 GB) FAT32

\\?\Volume{c66778bc-5e2e-4ae8-bc3d-39df31e6ec29}\ (Recovery) (Fixed) (Total:0.44 GB) (Free:0.43 GB) NTFS
\\?\Volume{9fb6926c-a8ca-44df-87ea-d0fa3509482d}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 88FC7762)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=0F Extended)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 43673281)
Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 3EF2CE70)
Partition 1: (Not Active) - (Size=223.6 GB) - (Type=07 NTFS)

==========================================================
Disk: 3 (Size: 111.8 GB) (Disk ID: AC1B21A2)

Partition: GPT.

==================== End of Addition.txt =======================

[JaRon]

ahoj,
1. vycisti PC s CCleanerom - vcetne registrov
restart
2. vycisti PC s AVPTool - KVRT

[A-Tom]

Díky, za pomoc - hotovo, ten Kaspersky našel nějaký trojan, ale žádný log který bych tu mohl hodit nevypsal.

[JaRon]

Mne v podstate log nechyba, pokial si trojana odstranil
Sleduj PC a napis, ak budu problemy