Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o preventivní kontrolu

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Jayden
Návštěvník
Návštěvník
Příspěvky: 30
Registrován: 05 kvě 2007 16:20

Prosím o preventivní kontrolu

#1 Příspěvek od Jayden »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 01-12-2021
Ran by jakub (administrator) on ROCKET (Micro-Star International Co., Ltd. MS-7B93) (04-12-2021 16:57:30)
Running from E:\10_General\10_Temp\01_Download
Loaded Profiles: jakub
Platform: Microsoft Windows 11 Pro Version 21H2 22000.348 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(A-Volute SAS -> A-Volute) C:\Users\jakub\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe
(A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.CpuIdRemote64.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.DisplayAdapter.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE.exe
(Electronic Arts, Inc. -> Electronic Arts) D:\Program Files\EA Desktop\EA Desktop\EABackgroundService.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\96.0.1054.43\msedgewebview2.exe <6>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) C:\Windows\System32\CorsairGamingAudioCfgService64.exe
(Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20045.455.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe
(Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_b7184c0e1c94c102\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_01042bb7f11c17c4\RtkAudUService64.exe <2>
(Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe <4>
(Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\jakub\AppData\Local\Vivaldi\Application\vivaldi.exe <14>

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_01042bb7f11c17c4\RtkAudUService64.exe [1256824 2021-04-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [167496 2021-11-04] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [CORSAIR iCUE Software] => C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE Launcher.exe [409760 2021-03-05] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\96.0.1054.43\Installer\setup.exe [2873728 2021-12-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1796763630-3206443035-2838120226-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [136443968 2021-11-18] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [100352 2007-05-23] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\PDF-XChange Lite Port Monitor: C:\Windows\system32\pxcpmL.dll [2155776 2020-11-18] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\96.0.4664.45\Installer\chrmstp.exe [2021-11-16] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\Users\jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2021-08-12]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0C50D97F-5356-4DDE-9E5C-321B162539E7} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138600 2021-11-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {127A6811-6510-45F9-ACFF-FF79BAF6D75F} - System32\Tasks\Mozilla\Firefox Nightly Background Update 6F193CCC56814779 => C:\Program Files\Firefox Nightly\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\6F193CCC56814779\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {310CE97D-DAAE-410E-8EDE-44E1B6A75D6A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-19] (Google LLC -> Google LLC)
Task: {3F152E4B-D11D-40C2-BDEA-4A8F948633A9} - System32\Tasks\CCleaner Update => E:\20_Application\00_Portable\ccsetup578\CCUpdate.exe [684976 2021-09-10] (Piriform Software Ltd -> Piriform)
Task: {4FD7BCC6-AB0E-4864-A645-9E634F782740} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138600 2021-11-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {601583B9-A881-474A-B451-6D87B0E49782} - System32\Tasks\Mozilla\Firefox Nightly Default Browser Agent 6F193CCC56814779 => C:\Program Files\Firefox Nightly\default-browser-agent.exe do-task "6F193CCC56814779"
Task: {6D09B3CA-2525-4377-B719-4C5121F57500} - System32\Tasks\VivaldiUpdateCheck-702a37733f6c0727 => C:\Users\jakub\AppData\Local\Vivaldi\Application\update_notifier.exe [3058064 2021-12-01] (Vivaldi Technologies AS -> Vivaldi Technologies AS)
Task: {7408AFEE-24BF-4099-B767-397EEBA93967} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22654872 2021-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {776E14C5-459F-49A3-B436-D44FA255F02A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8314824 2021-11-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {983D81AC-129C-40F9-A43D-6B823689DA00} - System32\Tasks\MSISW_Host => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {98D31746-69BA-4E0F-BC7C-9FC040EE4CF6} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1796763630-3206443035-2838120226-500 => C:\Users\jakub\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Task: {A31C8D46-9E7A-43AF-BE36-2FE9B82B9E8C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8314824 2021-11-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {A88797B6-4A5B-42CE-97AF-D114CB997B2F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {AB90510C-EC55-4FA1-8995-330F13AF37A6} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [110660344 2021-09-16] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (No File)
Task: {E4B9EB1F-F03D-45E8-9528-55A6EDA53C57} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-19] (Google LLC -> Google LLC)
Task: {F0E63CAA-4EA1-4498-BEF5-0F5FEDFE58DE} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22654872 2021-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {F542018B-D04F-4E06-8A16-4D7FD79BAAC2} - System32\Tasks\CCleanerSkipUAC => E:\20_Application\00_Portable\ccsetup578\CCleaner.exe [29155968 2021-09-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {FDDB841C-66D1-446E-ACA1-6F899702890D} - System32\Tasks\CCleanerSkipUAC - jakub => E:\20_Application\00_Portable\ccsetup578\CCleaner.exe [29155968 2021-09-10] (Piriform Software Ltd -> Piriform Software Ltd)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{8a1c7802-49bb-4331-9548-2786bdae4e13}: [DhcpNameServer] 62.129.50.20 85.135.32.100

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\jakub\AppData\Local\Microsoft\Edge\User Data\Default [2021-11-24]
Edge DownloadDir: Default -> E:\10_General\10_Temp\01_Download
Edge HomePage: Default -> hxxps://duckduckgo.com/
Edge StartupUrls: Default -> "hxxps://duckduckgo.com/"
Edge DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}
Edge DefaultSearchKeyword: Default -> duckduckgo.com
Edge DefaultNewTabURL: Default -> hxxps://duckduckgo.com/chrome_newtab
Edge DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list
Edge Extension: (DuckDuckGo) - C:\Users\jakub\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caoacbimdbbljakfhgikoodekdnlcgpk [2021-11-18]
Edge Extension: (New Tab DuckDuckGo Redirect) - C:\Users\jakub\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\eimldjabijllelicbnieiomiaeekbodl [2021-11-18]
Edge Extension: (Privacy Badger) - C:\Users\jakub\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mkejgcgkdlddbggjhhflekkondicpnop [2021-11-18]
Edge Extension: (uBlock Origin) - C:\Users\jakub\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2021-11-18]

FireFox:
========
FF DefaultProfile: tde24y34.default
FF ProfilePath: C:\Users\jakub\AppData\Roaming\Mozilla\Firefox\Profiles\tde24y34.default [2021-03-05]
FF ProfilePath: C:\Users\jakub\AppData\Roaming\Mozilla\Firefox\Profiles\ac9wssnx.default-nightly [2021-12-04]
FF Extension: (Honey) - C:\Users\jakub\AppData\Roaming\Mozilla\Firefox\Profiles\ac9wssnx.default-nightly\Extensions\jid1-93CWPmRbVPjRQA@jetpack.xpi [2021-06-26]
FF Extension: (Privacy Badger) - C:\Users\jakub\AppData\Roaming\Mozilla\Firefox\Profiles\ac9wssnx.default-nightly\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2021-11-29]
FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\jakub\AppData\Roaming\Mozilla\Firefox\Profiles\ac9wssnx.default-nightly\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2021-10-06]
FF Extension: (uBlock Origin) - C:\Users\jakub\AppData\Roaming\Mozilla\Firefox\Profiles\ac9wssnx.default-nightly\Extensions\uBlock0@raymondhill.net.xpi [2021-12-04]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-11-18] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-11-18] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
StartMenuInternet: Firefox-6F193CCC56814779 - C:\Program Files\Firefox Nightly\firefox.exe

Chrome:
=======
CHR Profile: C:\Users\jakub\AppData\Local\Google\Chrome\User Data\Default [2021-12-03]
CHR DownloadDir: E:\10_General\10_Temp\01_Download
CHR DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}
CHR DefaultSearchKeyword: Default -> duckduckgo.com
CHR DefaultNewTabURL: Default -> hxxps://duckduckgo.com/chrome_newtab
CHR DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list
CHR Extension: (Just Black) - C:\Users\jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2021-11-15]
CHR Extension: (Disk Google) - C:\Users\jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-12-19]
CHR Extension: (DuckDuckGo) - C:\Users\jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2021-10-01]
CHR Extension: (YouTube) - C:\Users\jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-12-19]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-12-01]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-12-19]
CHR Extension: (Privacy Badger) - C:\Users\jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkehgijcmpdhfbdbbnkijodmdjhbjlgp [2021-11-29]

Vivaldi:
=======
VIV Profile: C:\Users\jakub\AppData\Local\Vivaldi\User Data\Default [2021-12-04]
VIV DownloadDir: E:\10_General\10_Temp\01_Download
VIV HomePage: Default -> hxxps://duckduckgo.com/
VIV DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}
VIV DefaultSearchKeyword: Default -> duckduckgo.com
VIV DefaultNewTabURL: Default -> hxxps://duckduckgo.com/chrome_newtab
VIV DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list
VIV Extension: (DuckDuckGo) - C:\Users\jakub\AppData\Local\Vivaldi\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2021-11-19]
VIV Extension: (Adblock Plus - free ad blocker) - C:\Users\jakub\AppData\Local\Vivaldi\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-12-01]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12034464 2021-11-04] (Microsoft Corporation -> Microsoft Corporation)
R2 CorsairGamingAudioConfig; C:\Windows\System32\CorsairGamingAudioCfgService64.exe [616344 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe [421536 2021-03-05] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CorsairService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe [80544 2021-03-05] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 EABackgroundService; D:\Program Files\EA Desktop\EA Desktop\EABackgroundService.exe [10013848 2021-12-02] (Electronic Arts, Inc. -> Electronic Arts)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3139904 2021-11-04] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3139904 2021-11-04] (ESET, spol. s r.o. -> ESET)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11162688 2021-11-18] (Logitech Inc -> Logitech, Inc.)
S3 MagicianSVC; C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe [348728 2021-09-16] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 NahimicService; C:\WINDOWS\system32\NahimicService.exe [1675392 2021-05-27] (A-Volute SAS -> Nahimic)
S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [62464 2006-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard)
R2 SamsungMagicianSVC; C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe [348728 2021-09-16] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6078544 2021-11-23] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [2599312 2021-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [128376 2021-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_b7184c0e1c94c102\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_b7184c0e1c94c102\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [180224 2021-06-05] (Microsoft Corporation) [File not signed]
S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [60312 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAccess3B84E98236B28D4E075D5737DF9F567A1FB76E8A; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CorsairLLAccess64.sys [21752 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [45984 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [21920 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 cpuz150; C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [44832 2021-11-25] (CPUID S.A.R.L.U. -> CPUID)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [183408 2021-10-29] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [124496 2021-10-29] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15824 2021-03-15] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [201984 2021-10-29] (ESET, spol. s r.o. -> ESET)
R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [19968 2019-10-17] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [107456 2021-10-29] (ESET, spol. s r.o. -> ESET)
S3 Hsp; C:\WINDOWS\System32\drivers\Hsp.sys [110904 2021-11-23] (Microsoft Windows -> Microsoft Corporation)
R3 logi_audio_surround; C:\WINDOWS\system32\drivers\logi_audio_surround.sys [44488 2021-11-02] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [37200 2021-09-15] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [25928 2021-09-15] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66896 2021-09-15] (Logitech Inc -> Logitech)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [18448 2019-10-17] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 Nahimic_Mirroring; C:\WINDOWS\System32\drivers\Nahimic_Mirroring.sys [85592 2020-06-16] (A-Volute -> Windows (R) Win 7 DDK provider)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [49560 2021-06-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [421112 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [73960 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S4 e1rexpress; \SystemRoot\System32\drivers\e1r68x64.sys [X]
R3 NAL; \??\C:\Windows\system32\Drivers\iqvsw64e.sys [X]
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-12-04 16:57 - 2021-12-04 16:57 - 000000000 ____D C:\FRST
2021-12-04 01:27 - 2021-12-04 15:21 - 000000000 ____D C:\Program Files\Firefox Nightly
2021-12-03 16:10 - 2021-12-03 16:10 - 000000000 ____D C:\Users\jakub\AppData\LocalLow\Adobe
2021-12-03 16:10 - 2021-12-03 16:10 - 000000000 ____D C:\Users\jakub\AppData\Local\SolidDocuments
2021-12-03 16:09 - 2021-12-03 16:11 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-12-03 16:09 - 2021-12-03 16:11 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2021-12-03 16:09 - 2021-12-03 16:09 - 000000000 ____D C:\Program Files\Common Files\Adobe
2021-12-03 16:09 - 2021-12-03 16:09 - 000000000 ____D C:\Program Files\Adobe
2021-12-03 16:08 - 2021-12-03 16:10 - 000000000 ____D C:\ProgramData\Adobe
2021-12-03 16:07 - 2021-12-03 16:10 - 000000000 ____D C:\Users\jakub\AppData\Local\Adobe
2021-12-03 16:02 - 2021-12-03 16:17 - 000000000 ____D C:\Users\jakub\Desktop\Hypo
2021-12-02 17:01 - 2021-12-02 17:01 - 000000000 ____D C:\AMD
2021-11-27 18:06 - 2021-11-27 18:06 - 000000874 _____ C:\Users\jakub\Desktop\World of Tanks EU.lnk
2021-11-27 18:04 - 2021-11-27 18:06 - 000000000 ____D C:\Users\jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net
2021-11-23 18:11 - 2021-11-23 18:11 - 000040960 _____ C:\WINDOWS\system32\prxyqry.dll
2021-11-23 18:11 - 2021-11-23 18:11 - 000015040 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-11-23 18:11 - 2021-11-23 18:11 - 000013824 _____ C:\WINDOWS\SysWOW64\prxyqry.dll
2021-11-23 18:10 - 2021-11-23 18:10 - 000215552 _____ C:\WINDOWS\system32\CloudIdWxhExtension.dll
2021-11-23 18:08 - 2021-11-23 18:08 - 000000000 ___HD C:\$WinREAgent
2021-11-19 07:10 - 2021-11-19 07:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2021-11-19 07:10 - 2021-11-19 07:10 - 000000000 ____D C:\Program Files\LGHUB
2021-11-18 21:32 - 2021-12-04 14:51 - 000000528 _____ C:\Users\jakub\.vivaldi_reporting_data
2021-11-18 21:32 - 2021-12-02 17:14 - 000002389 _____ C:\Users\jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vivaldi.lnk
2021-11-18 21:32 - 2021-12-02 17:14 - 000002352 _____ C:\Users\jakub\Desktop\Vivaldi.lnk
2021-11-18 21:32 - 2021-12-02 17:14 - 000000000 ____D C:\Users\jakub\AppData\Local\Vivaldi
2021-11-18 21:32 - 2021-11-18 21:32 - 000003822 _____ C:\WINDOWS\system32\Tasks\VivaldiUpdateCheck-702a37733f6c0727
2021-11-16 21:15 - 2021-11-16 21:15 - 000000000 ____D C:\Users\jakub\AppData\Roaming\NVIDIA
2021-11-16 17:58 - 2021-11-16 17:58 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2021-11-16 17:55 - 2021-11-11 03:36 - 001874664 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-11-16 17:55 - 2021-11-11 03:36 - 001874664 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-11-16 17:55 - 2021-11-11 03:36 - 001464960 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-11-16 17:55 - 2021-11-11 03:36 - 001450216 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-11-16 17:55 - 2021-11-11 03:36 - 001450216 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-11-16 17:55 - 2021-11-11 03:36 - 001208248 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-11-16 17:55 - 2021-11-11 03:36 - 001111272 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-11-16 17:55 - 2021-11-11 03:36 - 001111272 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-11-16 17:55 - 2021-11-11 03:36 - 000965352 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-11-16 17:55 - 2021-11-11 03:36 - 000965352 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-11-16 17:55 - 2021-11-11 03:33 - 002116536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2021-11-16 17:55 - 2021-11-11 03:33 - 001597568 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2021-11-16 17:55 - 2021-11-11 03:33 - 001523328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2021-11-16 17:55 - 2021-11-11 03:33 - 001174456 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2021-11-16 17:55 - 2021-11-11 03:33 - 000802232 _____ C:\WINDOWS\system32\nvofapi64.dll
2021-11-16 17:55 - 2021-11-11 03:33 - 000709560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2021-11-16 17:55 - 2021-11-11 03:33 - 000678328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2021-11-16 17:55 - 2021-11-11 03:33 - 000656512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2021-11-16 17:55 - 2021-11-11 03:33 - 000635008 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2021-11-16 17:55 - 2021-11-11 03:33 - 000564352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2021-11-16 17:55 - 2021-11-11 03:32 - 008725944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2021-11-16 17:55 - 2021-11-11 03:32 - 007845816 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2021-11-16 17:55 - 2021-11-11 03:32 - 005730224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2021-11-16 17:55 - 2021-11-11 03:32 - 004940728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2021-11-16 17:55 - 2021-11-11 03:32 - 002850432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2021-11-16 17:55 - 2021-11-11 03:32 - 000981120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2021-11-16 17:55 - 2021-11-11 03:32 - 000792192 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2021-11-16 17:55 - 2021-11-11 03:32 - 000452224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2021-11-16 17:55 - 2021-11-11 03:31 - 000850872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2021-11-16 17:55 - 2021-11-11 03:30 - 007582144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2021-11-16 17:55 - 2021-11-11 03:30 - 006432960 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2021-11-16 17:55 - 2021-11-09 23:27 - 000085718 _____ C:\WINDOWS\system32\nvinfo.pb
2021-11-15 21:15 - 2021-11-15 21:15 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2021-11-15 21:15 - 2021-11-15 21:15 - 000000000 ____D C:\Program Files (x86)\Microsoft SDKs
2021-11-13 20:08 - 2021-11-13 20:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Corsair
2021-11-13 20:08 - 2021-11-13 20:08 - 000000000 ____D C:\Program Files (x86)\Corsair
2021-11-11 21:17 - 2020-10-07 13:33 - 000047232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll
2021-11-11 21:16 - 2021-11-11 21:16 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-11-11 01:13 - 2021-11-11 01:13 - 000286720 _____ C:\WINDOWS\system32\AggregatorHost.exe
2021-11-11 01:13 - 2021-11-11 01:13 - 000077824 _____ C:\WINDOWS\system32\runexehelper.exe
2021-11-10 19:36 - 2021-11-19 19:56 - 000217536 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll.0
2021-11-10 19:36 - 2021-11-19 19:56 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2021-11-10 19:31 - 2021-11-10 19:31 - 000000000 ____D C:\Users\jakub\AppData\Local\INetHistory
2021-11-10 19:31 - 2021-11-10 19:31 - 000000000 ____D C:\Users\jakub\AppData\Local\EAConnect_microsoft
2021-11-07 21:00 - 2021-11-07 21:07 - 000000000 ____D C:\Users\jakub\AppData\Local\Opera Software
2021-11-07 20:59 - 2021-11-07 21:07 - 000000000 ____D C:\Users\jakub\AppData\Roaming\Opera Software

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-12-04 16:54 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-12-04 16:53 - 2020-12-20 23:08 - 000000000 ____D C:\Users\jakub\AppData\LocalLow\Mozilla
2021-12-04 16:45 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2021-12-04 16:45 - 2021-06-05 13:09 - 000000000 ____D C:\WINDOWS\INF
2021-12-04 16:37 - 2020-12-20 20:03 - 000000000 ____D C:\Users\jakub\AppData\Local\D3DSCache
2021-12-04 16:26 - 2020-12-19 23:10 - 000000000 ____D C:\Program Files (x86)\Google
2021-12-04 16:22 - 2020-12-30 18:42 - 000000000 ____D C:\Users\jakub\AppData\Local\LGHUB
2021-12-04 15:41 - 2021-10-05 20:18 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-12-04 09:22 - 2021-03-05 14:15 - 000000000 ____D C:\ProgramData\Mozilla
2021-12-04 09:21 - 2021-10-05 20:22 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-12-04 09:21 - 2021-03-05 14:15 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Nightly.lnk
2021-12-04 09:11 - 2021-10-01 20:06 - 000000000 ____D C:\Users\jakub\AppData\Roaming\Samsung Magician
2021-12-04 09:11 - 2020-12-30 18:42 - 000000000 ____D C:\Users\jakub\AppData\Roaming\LGHUB
2021-12-04 02:30 - 2020-12-20 09:59 - 000000000 ____D C:\ProgramData\NVIDIA
2021-12-03 22:29 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-12-03 22:23 - 2020-12-28 19:03 - 000000000 ____D C:\Users\jakub\AppData\Roaming\vlc
2021-12-03 19:31 - 2021-06-05 13:10 - 000000000 ___HD C:\Program Files\WindowsApps
2021-12-03 18:51 - 2021-02-02 19:55 - 000000000 ____D C:\Users\jakub\AppData\Local\CrashDumps
2021-12-03 16:10 - 2020-12-19 20:52 - 000000000 ____D C:\Users\jakub\AppData\Roaming\Adobe
2021-12-03 16:10 - 2020-12-19 20:52 - 000000000 ____D C:\Users\jakub\AppData\Local\Packages
2021-12-02 17:11 - 2021-10-05 20:23 - 001714894 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-12-02 17:11 - 2021-06-05 18:22 - 000724600 _____ C:\WINDOWS\system32\perfh005.dat
2021-12-02 17:11 - 2021-06-05 18:22 - 000150562 _____ C:\WINDOWS\system32\perfc005.dat
2021-12-02 14:28 - 2020-11-19 00:48 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-11-27 18:04 - 2020-12-31 18:05 - 000000000 ____D C:\Users\jakub\AppData\Roaming\Wargaming.net
2021-11-27 17:00 - 2019-10-27 20:12 - 000000802 _____ C:\Users\jakub\Desktop\Stahovani.txt
2021-11-26 22:49 - 2021-10-13 18:02 - 000000000 ____D C:\Program Files\EA Games
2021-11-25 16:31 - 2021-03-05 14:15 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-11-25 16:25 - 2021-10-05 20:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-11-25 16:25 - 2021-06-05 13:01 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2021-11-25 16:25 - 2020-12-20 03:43 - 000012288 ___SH C:\DumpStack.log.tmp
2021-11-23 18:18 - 2021-10-05 20:18 - 000470184 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-11-23 18:17 - 2021-06-05 18:31 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemResources
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\id-ID
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-11-23 18:17 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\servicing
2021-11-23 18:15 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-11-23 18:10 - 2021-10-05 20:19 - 003086336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-11-20 21:09 - 2020-12-30 18:41 - 000000000 ____D C:\ProgramData\LGHUB
2021-11-20 10:02 - 2021-02-22 15:33 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-11-19 22:20 - 2020-12-21 08:31 - 000000000 ____D C:\Program Files (x86)\Steam
2021-11-19 18:46 - 2020-12-20 09:24 - 000000000 ____D C:\Users\jakub\AppData\Local\NVIDIA
2021-11-19 15:39 - 2021-11-03 19:07 - 000000000 ____D C:\Users\jakub\Desktop\Bazar
2021-11-18 21:32 - 2021-10-05 20:10 - 000000000 ____D C:\Users\jakub
2021-11-18 21:08 - 2020-12-20 09:36 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-11-18 17:44 - 2021-10-10 14:09 - 000003490 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7ba1de7f5b8dc
2021-11-18 17:44 - 2021-10-05 20:22 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-11-16 17:58 - 2020-12-19 20:52 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-11-16 17:14 - 2020-12-19 23:10 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-11-15 21:22 - 2020-12-24 11:01 - 000000000 ____D C:\WINDOWS\system32\appmgmt
2021-11-15 21:15 - 2020-12-20 09:24 - 000000000 ____D C:\ProgramData\Package Cache
2021-11-12 21:19 - 2020-12-28 16:40 - 000000000 ____D C:\Program Files\Microsoft Office
2021-11-11 19:28 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-11-11 19:28 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-11-11 15:48 - 2020-12-19 20:54 - 000000000 ____D C:\Users\jakub\AppData\Local\PlaceholderTileLogoFolder
2021-11-10 23:59 - 2020-11-19 00:50 - 000000000 ____D C:\ProgramData\Packages
2021-11-10 19:41 - 2021-10-05 18:36 - 000000000 ____D C:\Users\jakub\AppData\Local\ElevatedDiagnostics
2021-11-10 19:18 - 2020-12-19 20:57 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-11-10 19:17 - 2020-12-19 20:57 - 141529560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-11-06 23:07 - 2020-12-20 18:54 - 000000000 ____D C:\Users\jakub\AppData\Local\Battle.net

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-12-2021
Ran by jakub (04-12-2021 16:58:31)
Running from E:\10_General\10_Temp\01_Download
Microsoft Windows 11 Pro Version 21H2 22000.348 (X64) (2021-10-05 19:22:39)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1796763630-3206443035-2838120226-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1796763630-3206443035-2838120226-503 - Limited - Disabled)
Guest (S-1-5-21-1796763630-3206443035-2838120226-501 - Limited - Disabled)
jakub (S-1-5-21-1796763630-3206443035-2838120226-1001 - Administrator - Enabled) => C:\Users\jakub
WDAGUtilityAccount (S-1-5-21-1796763630-3206443035-2838120226-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 20.02 alpha (x64) (HKLM\...\7-Zip) (Version: 20.02 alpha - Igor Pavlov)
Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 21.007.20099 - Adobe)
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 3.10.22.706 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{cf77cf6b-71ff-4a71-802d-43adb9b271b7}) (Version: 3.10.22.706 - Advanced Micro Devices, Inc.) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Burning Crusade Classic (HKLM-x32\...\Burning Crusade Classic) (Version: - Blizzard Entertainment)
Capture NX-D (HKLM\...\{2D088846-B670-47AF-91C3-76E0B3E887C3}) (Version: 1.6.4 - Nikon Corporation)
CORSAIR iCUE Software (HKLM-x32\...\{3D350B22-542B-4FB4-B3AC-EA760941C319}) (Version: 3.38.61 - Corsair)
DaVinci Resolve (HKLM\...\{F0F6711A-202E-44EA-A192-B859A198AABF}) (Version: 16.0.0060 - Blackmagic Design)
DaVinci Resolve Panels (HKLM\...\{B1782967-E600-4BBD-B2F1-AEF3F2FE0A12}) (Version: 1.2.1.0 - Blackmagic Design)
Diablo II Resurrected (HKLM-x32\...\Diablo II Resurrected) (Version: - Blizzard Entertainment)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 12.0.169.5058 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{a19a5853-9933-440e-bcbe-408655f0f398}) (Version: 12.0.169.5058 - Electronic Arts)
ENE_DRAM_RGB_AURA42 (HKLM\...\{BC5E0A82-C638-44CB-8129-20C8ED70DE7A}) (Version: 1.00.02 - Ene Tech.) Hidden
ENE_DRAM_RGB_AURA42 (HKLM-x32\...\{f3d7fb09-b93f-4c01-a765-0b0adc5bc746}) (Version: 1.00.02 - Ene Tech.) Hidden
ESET Security (HKLM\...\{3B47BDC5-99BF-4F5C-A303-1F0F9DBC74F6}) (Version: 15.0.18.0 - ESET, spol. s r.o.)
Far Cry 6 (HKLM-x32\...\Uplay Install 5266) (Version: - Ubisoft)
FIFA 21 (HKLM-x32\...\{A918ACE7-A83B-41F4-8746-AEF8DC821879}) (Version: 1.0.72.32477 - Electronic Arts)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 96.0.4664.45 - Google LLC)
IrfanView 4.56 (64-bit) (HKLM\...\IrfanView64) (Version: 4.56 - Irfan Skiljan)
Kinect for Windows Speech Recognition Language Pack (en-AU) (HKLM-x32\...\{48CEC0A3-AE10-4EE3-AC62-76D3D58792E5}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-CA) (HKLM-x32\...\{9C5505DA-F9C1-46CB-9F8F-AC38F8EA518A}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-GB) (HKLM-x32\...\{A0186231-0A8B-455A-8A25-B64AABCC11A6}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-IE) (HKLM-x32\...\{998D5259-3BED-4710-98FF-D63387B5429E}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-NZ) (HKLM-x32\...\{07FC9CAD-FCEC-4186-BB83-EF7CCC9372BA}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-US) (HKLM-x32\...\{8AAA44BB-487E-4D01-AF76-484ACB90DBFE}) (Version: 11.0.7400.336 - Microsoft Corporation)
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2021.12.4779 - Logitech)
Microsoft .NET Framework 4.6.2 SDK (HKLM-x32\...\{5F01B3C4-9BEC-465D-9C68-BB97D381FFAD}) (Version: 4.6.01590 - Microsoft Corporation)
Microsoft .NET Framework 4.6.2 Targeting Pack (ENU) (HKLM-x32\...\{C80951BD-6904-474F-BBC5-03A6C777F37C}) (Version: 4.6.01590 - Microsoft Corporation)
Microsoft .NET Framework 4.6.2 Targeting Pack (HKLM-x32\...\{A18D4C2A-07A8-40E4-9797-DD324E6EA4FC}) (Version: 4.6.01590 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 96.0.1054.41 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 96.0.1054.43 - Microsoft Corporation)
Microsoft Office Professional Plus 2019 - cs-cz (HKLM\...\ProPlus2019Retail - cs-cz) (Version: 16.0.14527.20276 - Microsoft Corporation)
Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (en-IN) (HKLM-x32\...\{3B06AC90-DE68-44A9-95EB-0A3C1AF1514F}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{2FA9DAAC-895B-4E99-99D9-DC2965FBE79C}) (Version: 2.87.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 88.0a1 - Mozilla)
NEF Codec (HKLM-x32\...\{D6506521-0959-4FA3-875F-E2E28830B0D2}) (Version: 1.31.0 - Nikon Corporation)
Nightly (x64 cs) (HKLM\...\Nightly 96.0a1 (x64 cs)) (Version: 96.0a1 - Mozilla)
NVIDIA Ovladače grafiky 496.76 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 496.76 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14527.20276 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14527.20276 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
PDF-XChange Editor (HKLM\...\{29487948-D54A-4EE4-800D-E205919659C8}) (Version: 8.0.343.0 - Tracker Software Products (Canada) Ltd.) Hidden
PDF-XChange Editor (HKLM-x32\...\{911b790c-3fcf-4ecc-b0d4-8a573a6004b0}) (Version: 8.0.343.0 - Tracker Software Products (Canada) Ltd.)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9071.1 - Realtek Semiconductor Corp.)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 7.0.0.510 - Samsung Electronics)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 2.6.3.0 - Zenimax Online Studios)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 126.0.10593 - Ubisoft)
UE4 Prerequisites (x64) (HKLM\...\{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
Vivaldi (HKU\S-1-5-21-1796763630-3206443035-2838120226-1001\...\Vivaldi) (Version: 5.0.2497.24 - Vivaldi Technologies AS.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
Warcraft III (HKLM-x32\...\Warcraft III) (Version: - Blizzard Entertainment)
Wargaming.net Game Center (HKU\S-1-5-21-1796763630-3206443035-2838120226-1001\...\Wargaming.net Game Center) (Version: 21.8.1.7292 - Wargaming.net)
World of Tanks EU (HKU\S-1-5-21-1796763630-3206443035-2838120226-1001\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
World of Warcraft Classic (HKLM-x32\...\World of Warcraft Classic) (Version: - Blizzard Entertainment)

Packages:
=========
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-01-17] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-13] (Microsoft Corporation)
Forza Horizon 5 -> C:\Program Files\WindowsApps\Microsoft.624F8B84B80_3.414.967.0_x64__8wekyb3d8bbwe [2021-12-03] (Microsoft Studios)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa [2021-10-29] (Apple Inc.) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-11-16] (NVIDIA Corp.)
Příslušenství pro Xbox -> C:\Program Files\WindowsApps\Microsoft.XboxDevices_300.2110.13001.0_x64__8wekyb3d8bbwe [2021-10-20] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1796763630-3206443035-2838120226-1001_Classes\CLSID\{65DC3795-BC1B-4E70-A3C6-FDFFDE61D148} -> [Fotky na iCloudu] => C:\Users\jakub\Pictures\iCloud Photos\Photos
CustomCLSID: HKU\S-1-5-21-1796763630-3206443035-2838120226-1001_Classes\CLSID\{80172dde-4e20-4df0-81a2-0a48553e80bb}\localserver32 -> C:\Users\jakub\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe (A-Volute SAS -> A-Volute)
CustomCLSID: HKU\S-1-5-21-1796763630-3206443035-2838120226-1001_Classes\CLSID\{B66F012A-D18A-4CF8-9147-BE7ED9357F4C} -> [iCloud Drive] => C:\Users\jakub\iCloudDrive
CustomCLSID: HKU\S-1-5-21-1796763630-3206443035-2838120226-1001_Classes\CLSID\{BCA9D37C-CA60-4160-9115-97A00F24702D}\localserver32 -> C:\Users\jakub\AppData\Local\Vivaldi\Application\5.0.2497.24\notification_helper.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2020-08-08] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2021-11-04] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2021-11-04] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2020-08-08] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_b7184c0e1c94c102\nvshext.dll [2021-11-11] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2020-08-08] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2021-11-04] (ESET, spol. s r.o. -> ESET)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Nightly.lnk -> C:\Program Files\Firefox Nightly\firefox.exe (Mozilla Corporation)

==================== Loaded Modules (Whitelisted) =============

2021-11-19 07:10 - 2021-11-18 19:29 - 000635904 _____ () [File not signed] \\?\C:\Program Files\LGHUB\resources\app.asar.unpacked\node_modules\keytar\build\Release\keytar.node
2021-03-05 18:44 - 2021-03-05 18:44 - 000209408 _____ () [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\quazip.dll
2021-03-05 18:44 - 2021-03-05 18:44 - 000101376 _____ () [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\zlib.dll
2021-10-01 19:32 - 2021-09-16 09:46 - 002661888 _____ () [File not signed] C:\Program Files (x86)\Samsung\Samsung Magician\ffmpeg.dll
2021-10-01 19:32 - 2021-09-16 09:46 - 000367104 _____ () [File not signed] C:\Program Files (x86)\Samsung\Samsung Magician\libegl.dll
2021-10-01 19:32 - 2021-09-16 09:46 - 006631936 _____ () [File not signed] C:\Program Files (x86)\Samsung\Samsung Magician\libglesv2.dll
2021-10-01 19:32 - 2021-09-16 09:46 - 000458752 _____ () [File not signed] C:\Program Files (x86)\Samsung\Samsung Magician\resources\app\dist\magutils-napi.node
2021-10-01 19:32 - 2021-09-16 09:46 - 000445440 _____ () [File not signed] C:\Program Files (x86)\Samsung\Samsung Magician\resources\app\dist\magvibrancy-napi.node
2021-10-01 19:32 - 2021-09-16 09:46 - 001411072 _____ () [File not signed] C:\Program Files (x86)\Samsung\Samsung Magician\resources\app\dist\uimpewrapper-napi.node
2020-12-28 14:15 - 2020-08-08 20:00 - 000076800 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2021-11-06 08:56 - 2021-11-06 08:56 - 000137184 _____ (Microsoft Windows -> Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20045.455.0_x64__cw5n1h2txyewy\Dashboard\WebView2Loader.dll
2020-12-16 09:26 - 2020-12-16 09:26 - 000090112 _____ (Silicon Laboratories, Inc.) [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\SiUSBXp.dll
2021-12-02 19:13 - 2021-12-02 19:13 - 002815488 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:\Program Files\EA Desktop\EA Desktop\libcrypto-1_1-x64.dll
2021-12-02 19:13 - 2021-12-02 19:13 - 000678400 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:\Program Files\EA Desktop\EA Desktop\libssl-1_1-x64.dll
2021-03-05 18:43 - 2021-03-05 18:43 - 002516992 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\libcrypto-1_1.dll
2021-03-05 18:43 - 2021-03-05 18:43 - 000530944 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\libssl-1_1.dll
2021-12-02 19:13 - 2021-12-02 19:13 - 000046592 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\EA Desktop\EA Desktop\bearer\qgenericbearer.dll
2021-12-02 19:13 - 2021-12-02 19:13 - 006270976 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\EA Desktop\EA Desktop\Qt5Core.dll
2021-12-02 19:13 - 2021-12-02 19:13 - 001389568 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\EA Desktop\EA Desktop\Qt5Network.dll
2021-12-02 19:13 - 2021-12-02 19:13 - 000157184 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\EA Desktop\EA Desktop\Qt5WebSockets.dll
2021-12-02 19:13 - 2021-12-02 19:13 - 000210432 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\EA Desktop\EA Desktop\Qt5Xml.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

2020-12-31 18:01 - 2020-12-31 18:06 - 000000436 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1796763630-3206443035-2838120226-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\jakub\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\1ee12ad49bfa9e7ed84a47a1d97593bd.jpg
DNS Servers: 62.129.50.20 - 85.135.32.100
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKU\S-1-5-21-1796763630-3206443035-2838120226-1001\...\StartupApproved\StartupFolder: => "Poslat do aplikace OneNote.lnk"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{C74CEE48-2325-4F0E-962B-7BD4BDFC0067}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5293BED0-9034-4005-BCA4-603344F90369}] => (Allow) D:\Program Files\Steam\steamapps\common\NieRAutomata\NieRAutomata.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.)
FirewallRules: [{AB143E53-A770-4F29-907F-CC606E41C960}] => (Allow) D:\Program Files\Steam\steamapps\common\NieRAutomata\NieRAutomata.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.)
FirewallRules: [UDP Query User{48FCEEC4-6B97-4A4F-B806-04646945175C}D:\program files (x86)\fifa 21\fifa21.exe] => (Allow) D:\program files (x86)\fifa 21\fifa21.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [TCP Query User{72C2189E-18BC-45B8-954C-4FEEF51378E3}D:\program files (x86)\fifa 21\fifa21.exe] => (Allow) D:\program files (x86)\fifa 21\fifa21.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{92FB49C1-1E6B-4352-8D36-9514B352C48C}] => (Allow) D:\Program Files\Steam\steamapps\common\ACE COMBAT 7\Ace7Game.exe (BANDAI NAMCO Entertainment Inc.) [File not signed]
FirewallRules: [{FC5BBCBD-E380-4FA0-A127-5A06C544E371}] => (Allow) D:\Program Files\Steam\steamapps\common\ACE COMBAT 7\Ace7Game.exe (BANDAI NAMCO Entertainment Inc.) [File not signed]
FirewallRules: [{186A0ED7-E8D9-45AB-AF0B-F64C67158E18}] => (Allow) E:\20_Application\Steam\steamapps\common\Empire Total War\Empire.exe (Sega Europe Limited -> The Creative Assembly Ltd)
FirewallRules: [{971D8274-83DC-4C42-B7C0-38F4CD676766}] => (Allow) E:\20_Application\Steam\steamapps\common\Empire Total War\Empire.exe (Sega Europe Limited -> The Creative Assembly Ltd)
FirewallRules: [{B6D06D0B-891F-4068-A303-09EB3539E967}] => (Allow) LPort=32682
FirewallRules: [{7612A27A-DC2F-4FA5-AC2A-8E1FF0A93A96}] => (Allow) E:\20_Application\Steam\steamapps\common\Zenimax Online\zosSteamStarter.exe (Zenimax Media Inc. -> Zenimax Online Studios)
FirewallRules: [{45FCD11C-C34B-4354-ABAA-7E0DF4730C3D}] => (Allow) E:\20_Application\Steam\steamapps\common\Zenimax Online\zosSteamStarter.exe (Zenimax Media Inc. -> Zenimax Online Studios)
FirewallRules: [{E6760DE9-0533-4141-8301-095FC863613C}] => (Allow) C:\Program Files\Firefox Nightly\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C1A6C5D5-6741-4B23-B4FD-E2EC426DA4A8}] => (Allow) C:\Program Files\Firefox Nightly\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{21630480-153D-4C6D-984D-5A20380D7C49}E:\20_application\davinci resolve\fuscript.exe] => (Block) E:\20_application\davinci resolve\fuscript.exe (Blackmagic Design Pty. Ltd.) [File not signed]
FirewallRules: [TCP Query User{7DFE4F40-EBA0-4B03-B59D-9DB31BF4A49A}E:\20_application\davinci resolve\fuscript.exe] => (Block) E:\20_application\davinci resolve\fuscript.exe (Blackmagic Design Pty. Ltd.) [File not signed]
FirewallRules: [UDP Query User{5DB7B640-49F0-4AA4-8B95-E65A0CD9B6B1}E:\20_application\davinci resolve\resolve.exe] => (Block) E:\20_application\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [TCP Query User{6DC042AE-269B-4F63-8CFD-A9F4CC593E0F}E:\20_application\davinci resolve\resolve.exe] => (Block) E:\20_application\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [UDP Query User{F7B7F58C-85E8-4863-AD55-8C4AC4817993}E:\20_application\davinci resolve\dpdecoder.exe] => (Block) E:\20_application\davinci resolve\dpdecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [TCP Query User{2A29956B-AA35-455A-8F65-FCCCE9706E93}E:\20_application\davinci resolve\dpdecoder.exe] => (Block) E:\20_application\davinci resolve\dpdecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [UDP Query User{B1390EB7-FBA0-4911-B33E-0B3492E3B687}E:\10_general\10_temp\01_download\torrent\utorrent.exe] => (Allow) E:\10_general\10_temp\01_download\torrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{FFF79345-D26A-4BEA-BC13-FAD0AF60F43E}E:\10_general\10_temp\01_download\torrent\utorrent.exe] => (Allow) E:\10_general\10_temp\01_download\torrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{920D3903-48BA-477C-BF99-7AED4CBF93A0}] => (Allow) E:\20_Application\DaVinci Resolve\DPDecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{3330FFDD-6072-4E89-99CC-D529DD250CA2}] => (Allow) E:\20_Application\DaVinci Resolve\TangentPanelDaemon.exe () [File not signed]
FirewallRules: [{C8E89CEB-56CD-4478-AE3E-52A50ADB3053}] => (Allow) E:\20_Application\DaVinci Resolve\EuphonixPanelDaemon.exe () [File not signed]
FirewallRules: [{7EFEEF76-4362-45CA-A5F6-4692E0139EEC}] => (Allow) E:\20_Application\DaVinci Resolve\JLCooperPanelDaemon.exe () [File not signed]
FirewallRules: [{12A1C3CC-A829-45E6-80DE-4F900236D57E}] => (Allow) E:\20_Application\DaVinci Resolve\DaVinciPanelDaemon.exe () [File not signed]
FirewallRules: [{BD001661-F817-4C4B-8C0F-787C020BB07C}] => (Allow) E:\20_Application\DaVinci Resolve\bmdpaneld.exe () [File not signed]
FirewallRules: [{135948A8-63E7-42EA-AEB0-9704564EA163}] => (Allow) E:\20_Application\DaVinci Resolve\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [UDP Query User{F473C5AC-4FD2-41E4-BA8B-94348D34A3C9}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{28F67CF6-601E-4703-91DE-575F2AD17A5A}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{0D980D6C-7623-413B-9F1F-FF29BC67092D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{47E32E13-3D1B-4BA0-B44C-79BA4EA56F90}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{37644AAF-A621-49BD-A630-F66C3ADE0D39}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{F1B3087B-55DE-4CE4-A55B-B91349AE2DD3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{72FD2D19-A7AC-4F84-8788-C5207D883543}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AFAB7E57-3592-48F4-8F90-30EFB4C26BD3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BEC06667-459F-4B89-9AC8-BAE4DCFA96CA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DB42990F-5C0F-4E98-8FBF-153C7F48B87E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{ABFF7D18-AE5A-4B92-BDFF-9A37150E800D}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21253.510.996.1465_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4948E92A-DC6C-4A95-9C41-B7A09FAA895A}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21253.510.996.1465_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AE1FD820-CECD-4140-97DE-4BE152DDDDAB}] => (Allow) D:\Program Files\Ubisoft Game Launcher\games\Far Cry 6\bin\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{6E727A70-9119-4C91-8747-2E7A519984EC}] => (Allow) D:\Program Files\Ubisoft Game Launcher\games\Far Cry 6\bin\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{558683B5-84E6-4010-9155-D0A668F8DB30}] => (Allow) D:\Program Files\Ubisoft Game Launcher\games\Far Cry 6\bin_plus\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{547274AA-736F-4641-9ECB-8CB2226F8AC7}] => (Allow) D:\Program Files\Ubisoft Game Launcher\games\Far Cry 6\bin_plus\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{02B776D3-0A05-4289-A99F-2E700EDF6874}] => (Allow) D:\Program Files (x86)\FIFA 21\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{08411D47-0E47-4F2C-8E7B-C69E45343CBB}] => (Allow) D:\Program Files (x86)\FIFA 21\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{D5A44B19-8A06-4C6A-B7FD-2121D44A1E04}] => (Allow) D:\Program Files\Steam\steamapps\common\RailWorks\RailWorks.exe () [File not signed]
FirewallRules: [{33EF8B68-046E-46D8-B25B-8FDB1A23A1FF}] => (Allow) D:\Program Files\Steam\steamapps\common\RailWorks\RailWorks.exe () [File not signed]
FirewallRules: [{030718BD-4671-4D92-BEFB-E1E81802CB79}] => (Allow) D:\Program Files\Steam\steamapps\common\RailWorks\RailWorks64.exe () [File not signed]
FirewallRules: [{E0FCA254-1613-4636-AB56-BDDF3B7F0E73}] => (Allow) D:\Program Files\Steam\steamapps\common\RailWorks\RailWorks64.exe () [File not signed]
FirewallRules: [TCP Query User{806EB279-E245-423F-80C5-84BD9E328796}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{0A450762-5386-4483-9866-DD429212E612}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{36592921-EA02-4E66-B5AD-D1C52A6EED0D}] => (Allow) D:\Program Files\Steam\steamapps\common\Valheim\valheim.exe () [File not signed]
FirewallRules: [{081D4D13-1EE9-4585-8B8F-AD5A7EEDA187}] => (Allow) D:\Program Files\Steam\steamapps\common\Valheim\valheim.exe () [File not signed]
FirewallRules: [{C5355470-6975-4961-8EFB-C79FC53041A2}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6C6F2533-8ECB-4635-B167-574D9235FB54}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0CFC42E2-F9BC-448E-A9F8-F3BB944D9211}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{13FB758B-5084-483B-AB5E-54E6822AEC73}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{60C021CE-7A61-4745-B8BF-A023F464230B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{88E60F9B-8F66-457D-A614-8A3A43D5725F}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0784DAA1-AD5F-4816-BDB5-C700A2063FA5}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2DC673AB-05A7-46EF-ADD6-00FF628AE8B8}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{075962EB-6BD8-4F5F-A350-0D3F8D3AF347}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E26EE392-30DA-4318-9F51-34E78D1D123A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{438906EF-0F26-450D-9C6A-FB238002A91A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2BB5B5FE-3C2C-4FFA-8392-CFB5338FAF4C}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{928C3456-BDA0-4E4B-86C5-3081A9B6D66D}F:1\forzahorizon5.exe] => (Allow) F:1\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{C6F624D5-EA8D-4B9E-94B8-4859CCF5B03F}F:1\forzahorizon5.exe] => (Allow) F:1\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{7EA74219-C3C7-4957-B14E-138EA0067EBF}F:0\forzahorizon5.exe] => (Allow) F:0\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{0CAF4F9F-1741-4EE3-AD6A-CDB656A758CC}F:0\forzahorizon5.exe] => (Allow) F:0\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{3A7638AE-296E-46BA-8E4F-F4E47A9F9865}F:4\forzahorizon5.exe] => (Allow) F:4\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{E91FBBA2-E4AE-427E-B088-73DA8AAE1750}F:4\forzahorizon5.exe] => (Allow) F:4\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{245049FF-7059-4BA8-B3E7-D39C293B98F3}F:5\forzahorizon5.exe] => (Allow) F:5\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{0D8192DA-657F-427E-BECE-0AC7F96E96FD}F:5\forzahorizon5.exe] => (Allow) F:5\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{49D3E684-6AAB-4537-B6F9-59E0C3692B04}F:6\forzahorizon5.exe] => (Allow) F:6\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{5C31AAC7-AAE7-4657-9F03-8D7CC186CA83}F:6\forzahorizon5.exe] => (Allow) F:6\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{06E35EEF-00DB-4648-AEFE-30CADA9965D0}F:8\forzahorizon5.exe] => (Allow) F:8\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{39F24610-1407-42AF-905B-99D5A148D722}F:8\forzahorizon5.exe] => (Allow) F:8\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{C823FB01-7ECB-4275-862C-C9F661A84CA8}F:9\forzahorizon5.exe] => (Allow) F:9\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{E9C697E7-6A4B-4073-BB5E-CBAB6E9E5B88}F:9\forzahorizon5.exe] => (Allow) F:9\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{A8BE5D2D-9686-4B3B-832D-52EEA44EE03F}C:0\forzahorizon5.exe] => (Allow) C:0\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{8B6D5244-B7E1-4D86-BFC9-0FFD747FF38D}C:0\forzahorizon5.exe] => (Allow) C:0\forzahorizon5.exe => No File
FirewallRules: [{CEE99125-F19A-42B2-9F19-CF732A394C94}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{370B5D9E-4753-4124-BD0D-4D3510EE9487}F:3\forzahorizon5.exe] => (Allow) F:3\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{3C770CDB-85FF-44C7-948D-BAAE15A449AB}F:3\forzahorizon5.exe] => (Allow) F:3\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{5F0EA64D-360A-41D9-A96F-547271D57FF8}F:2\forzahorizon5.exe] => (Allow) F:2\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{303D7214-4172-4D2C-BA25-D51E078400B2}F:2\forzahorizon5.exe] => (Allow) F:2\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{F6FE90ED-67DC-4C86-96AD-827860A3FDF8}F:7\forzahorizon5.exe] => (Allow) F:7\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{665EBD6B-10E6-46D6-A0DC-9EA08C5ADEF2}F:7\forzahorizon5.exe] => (Allow) F:7\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{EB77B3F2-AA7F-470E-B654-58034E9B761A}D:\program files (x86)\wargaming.net\gamecenter\wgc.exe] => (Allow) D:\program files (x86)\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{78BFCEDF-47B5-4427-9EC0-5A26E3E5C281}D:\program files (x86)\wargaming.net\gamecenter\wgc.exe] => (Allow) D:\program files (x86)\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{339203A9-8809-480B-9182-E989192D3727}C:1\forzahorizon5.exe] => (Allow) C:1\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{DAC671BB-770C-4E86-868C-28434944B739}C:1\forzahorizon5.exe] => (Allow) C:1\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{14CA5732-9F2F-4A97-8A79-7BBFE0B2D070}C:\users\jakub\appdata\local\vivaldi\application\vivaldi.exe] => (Allow) C:\users\jakub\appdata\local\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
FirewallRules: [UDP Query User{9DCCAB27-8A14-459A-A5D4-6AF596AB1D26}C:\users\jakub\appdata\local\vivaldi\application\vivaldi.exe] => (Allow) C:\users\jakub\appdata\local\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
FirewallRules: [{325E821F-D211-4AA7-B8CA-C02407748A90}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\96.0.1054.43\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{6B61647F-207C-41A5-9B8B-F86DF71D8D2A}C:6\forzahorizon5.exe] => (Allow) C:6\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{1D0AD97B-31A1-4627-8E03-F001FFA9EB5D}C:6\forzahorizon5.exe] => (Allow) C:6\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{2ECC5316-ECBB-46E6-ADAE-68B8799A8C3E}C:7\forzahorizon5.exe] => (Allow) C:7\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{384899AA-06C9-42CD-9348-1D36114FD92D}C:7\forzahorizon5.exe] => (Allow) C:7\forzahorizon5.exe => No File

==================== Restore Points =========================

23-11-2021 18:03:36 Instalační služba modulů systému Windows
30-11-2021 20:26:05 Naplánovaný kontrolní bod
02-12-2021 17:04:10 Installed AMD_Chipset_Drivers.
04-12-2021 16:41:45 Removed Intel(R) Wireless Bluetooth(R)

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (12/03/2021 06:51:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: GamingServicesUI.exe, verze: 3.59.2111.11001, časové razítko: 0x618d4205
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.22000.1, časové razítko: 0x00e78ce9
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000007c648
ID chybujícího procesu: 0x113c
Čas spuštění chybující aplikace: 0x01d7e86e41062131
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe\GamingServicesUI\GamingServicesUI.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: 8f7b65b0-c0f3-4318-9fe9-0450178cfd0f
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/01/2021 04:43:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: GamingServices.exe, verze: 10.0.22000.2339, časové razítko: 0x911f46d6
Název chybujícího modulu: GamingServices.DLL, verze: 10.0.22000.2339, časové razítko: 0xe4231246
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000224567
ID chybujícího procesu: 0x3238
Čas spuštění chybující aplikace: 0x01d7e6067d101776
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe\GamingServices.exe
Cesta k chybujícímu modulu: C:\Program Files\WindowsApps\Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe\GamingServices.DLL
ID zprávy: 9c15ba56-671c-42b2-b0ba-98d7e096cc9d
Úplný název chybujícího balíčku: Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: GamingServices

Error: (11/30/2021 05:20:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: GamingServices.exe, verze: 10.0.22000.2339, časové razítko: 0x911f46d6
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.22000.1, časové razítko: 0x00e78ce9
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000007dd7e
ID chybujícího procesu: 0x1854
Čas spuštění chybující aplikace: 0x01d7e210aefe0b79
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe\GamingServices.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: 5460dcc1-ac59-4b16-9ed7-557b52d5dc87
Úplný název chybujícího balíčku: Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: GamingServices

Error: (11/25/2021 04:25:38 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\ROCKET$ přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Thu, 25 Nov 2021 15:25:39 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 22ae2dc5-c29a-48fc-805a-141e84719541

Metoda: GET(187ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)

Error: (11/25/2021 04:25:37 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro Místní systém přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Thu, 25 Nov 2021 15:25:38 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: dcc905e0-4ced-47ae-814e-a694cf86633d

Metoda: GET(328ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)

Error: (11/24/2021 05:09:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: GamingServices.exe, verze: 10.0.22000.2339, časové razítko: 0x911f46d6
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.22000.1, časové razítko: 0x00e78ce9
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000007dd7e
ID chybujícího procesu: 0x14dc
Čas spuštění chybující aplikace: 0x01d7e08e2239f022
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe\GamingServices.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: d45251a0-e902-416a-9fdd-628d55d6d55d
Úplný název chybujícího balíčku: Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: GamingServices

Error: (11/23/2021 06:18:34 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\ROCKET$ přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Tue, 23 Nov 2021 17:18:34 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: a1e7cccf-9726-4411-8c4d-f922cbf8e410

Metoda: GET(187ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)

Error: (11/23/2021 06:18:34 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro Místní systém přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Tue, 23 Nov 2021 17:18:34 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 2435f45b-b6e6-4bdf-81d9-90302b471492

Metoda: GET(250ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)


System errors:
=============
Error: (12/04/2021 09:11:23 AM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{4973BC1F-71C2-4643-B6F6-59D7E56A0947}, protože jiný počítač v síti má stejný název. Server nelze spustit.

Error: (12/03/2021 01:52:14 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{4973BC1F-71C2-4643-B6F6-59D7E56A0947}, protože jiný počítač v síti má stejný název. Server nelze spustit.

Error: (12/03/2021 12:36:20 PM) (Source: DCOM) (EventID: 10010) (User: ROCKET)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.

Error: (12/03/2021 12:36:20 PM) (Source: DCOM) (EventID: 10010) (User: ROCKET)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.

Error: (12/03/2021 12:36:20 PM) (Source: DCOM) (EventID: 10010) (User: ROCKET)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.

Error: (12/03/2021 12:36:20 PM) (Source: DCOM) (EventID: 10010) (User: ROCKET)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.

Error: (12/03/2021 08:24:24 AM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{4973BC1F-71C2-4643-B6F6-59D7E56A0947}, protože jiný počítač v síti má stejný název. Server nelze spustit.

Error: (12/02/2021 02:28:13 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{4973BC1F-71C2-4643-B6F6-59D7E56A0947}, protože jiný počítač v síti má stejný název. Server nelze spustit.


CodeIntegrity:
===============
Date: 2021-12-04 16:42:33
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Intel\Wired Networking\NCS2\Agent\Coinstaller.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ਍


==================== Memory info ===========================

BIOS: American Megatrends Inc. 1.80 08/07/2020
Motherboard: Micro-Star International Co., Ltd. MPG X570 GAMING PRO CARBON WIFI (MS-7B93)
Processor: AMD Ryzen 7 2700 Eight-Core Processor
Percentage of memory in use: 35%
Total physical RAM: 16309.99 MB
Available physical RAM: 10546.41 MB
Total Virtual: 19893.99 MB
Available Virtual: 11672.4 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:445.89 GB) (Free:289.14 GB) NTFS
Drive d: (App) (Fixed) (Total:931.5 GB) (Free:525.55 GB) NTFS
Drive e: (Data) (Fixed) (Total:3726.01 GB) (Free:2515.56 GB) NTFS
Drive f: (Rezervováno systémem) (Fixed) (Total:0.05 GB) (Free:0.04 GB) NTFS

\\?\Volume{6d35cf61-32e0-4514-8f81-f959818e374b}\ () (Fixed) (Total:0.6 GB) (Free:0.08 GB) NTFS
\\?\Volume{acf96615-25f4-11ec-9579-ac12039b51a3}\ () (Fixed) (Total:0.49 GB) (Free:0.47 GB) NTFS
\\?\Volume{f5b2cb1e-107e-a4ea-1b52-3ed1d603aec9}\ () (Fixed) (Total:101.92 GB) (Free:0 GB) NTFS
\\?\Volume{acf96614-25f4-11ec-9579-ac12039b51a3}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 3726 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Size: 447.1 GB) (Disk ID: 918013BA)

Partition: GPT.

==========================================================
Disk: 2 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 3.

==================== End of Addition.txt =======================

Uživatelský avatar
Diallix
Rádce
Rádce
Příspěvky: 2760
Registrován: 27 dub 2008 10:34
Kontaktovat uživatele:

Re: Prosím o preventivní kontrolu

#2 Příspěvek od Diallix »

Dobry den.

:arrow: Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: https://toolslib.net/downloads/finish/1/
Pred spustenim nastroja povypinajte vsetke beziace okna programov, to su vsetke beziace programy pod desktopom.
Kliknite pravym tlacidlom mysi na program -> spustit ako Administrator.
Pokracujte kliknutim na tlacidlo Prehladaj teraz (Scan now) a pockajte, kym sa system doskenuje.
Po skene nechajte oznacene vsetky chlieviky, pripadne najdene hrozieby a pokracujte v dolnom pravom rohu tlacidlom Vycistit Teraz (Clean and Repair).
Po restartovani PC sa spusti nastroj AdwCleaner, kliknite na Zobrazit soubor protokolu.
Spusti sa log, jeho obsah skopirujte sem.
Vyšla moja nová kniha BOTNETY! :173: Informácie o nej nájdete tu: >> BOTNETY <<

¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky

Odpovědět