Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Preventivka

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Lanther
Návštěvník
Návštěvník
Příspěvky: 58
Registrován: 27 bře 2008 12:24

Preventivka

#1 Příspěvek od Lanther »

Prosím o preventivní kontrolu, problémy nejsou.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-06-2021
Ran by J-Veleba_PC (administrator) on DESKTOP-F5TPPFU (Micro-Star International Co., Ltd. MS-7B23) (29-06-2021 13:58:28)
Running from C:\Users\J-Veleba_PC\Downloads
Loaded Profiles: J-Veleba_PC
Platform: Windows 10 Home Version 21H1 19043.1052 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0368764.inf_amd64_e28d3b9d143c5eb9\B368707\atieclxx.exe
(Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0368764.inf_amd64_e28d3b9d143c5eb9\B368707\atiesrxx.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(ICEpower a/s -> ICEpower) C:\Windows\System32\ICEsoundService64.exe
(Intel Corporation) [File not signed] C:\Windows\System32\IPROSetMonitor.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.53.17003.0_x64__8wekyb3d8bbwe\GamingServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_2.53.17003.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\NisSrv.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Scans\MsMpEngCP.exe
(PostgreSQL Global Development Group) [File not signed] C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe
(PostgreSQL Global Development Group) [File not signed] C:\Program Files\PostgreSQL\9.3\bin\postgres.exe <7>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine.exe
(SteelSeries ApS -> SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesGG.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9279432 2018-08-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesGG.exe [15181136 2021-06-17] (SteelSeries ApS -> SteelSeries ApS)
HKU\S-1-5-21-2684733211-2404065564-3958040817-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22515488 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2684733211-2404065564-3958040817-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\J-Veleba_PC\AppData\Local\Microsoft\Teams\Update.exe [2452664 2020-11-05] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\91.0.4472.114\Installer\chrmstp.exe [2021-06-21] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {18E6C518-5C12-4323-B7EE-27F5B180454E} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [63448 2021-06-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {251B7B22-D0FC-4764-A68C-58E7F58508D6} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {319E5240-DFBC-4DC8-8C56-339A782854FC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {38A314AE-D25D-4423-B5EC-585C3D6EBCA3} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {42F26A49-36F5-4577-BFC4-0AE36C01B278} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-09-19] (Google Inc -> Google Inc.)
Task: {4B8070D6-06D8-4E71-9409-61BE057C241F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {66C9A06D-73B1-4347-86FD-5D8517C9BD1F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [118104 2021-06-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {8A135B55-D246-4D92-8E09-CF2D535A1678} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16509040 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {961B6843-E163-44AD-8064-85DC5AFA8488} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23124896 2021-06-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {96CCBF3C-F532-4D31-AA82-B8397225409A} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1715672 2021-06-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {A415566C-A245-46E4-92E2-979CFF4C8CB6} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1715672 2021-06-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {A7080BF5-5F37-403D-9933-DDE7EF190370} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {B71E1231-5BBE-4FD4-86BD-AEC1A44C8489} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BC93A04F-43E9-4239-B7D2-2E42C48F142B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [118104 2021-06-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {C84FCE05-C8CF-46D6-97EA-2736FE533335} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1715672 2021-06-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {C8C7CFFD-D677-464D-AC15-15ABFFFC8E5E} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [269272 2021-06-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {CDA15391-F345-48AE-BF04-84A459AB2F64} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3953096 2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {CDA6DBEE-5E07-46C2-B5F8-912E1D2087D8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [3953096 2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {E1CC8665-85BE-4770-90DD-8A60328A666E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-09-19] (Google Inc -> Google Inc.)
Task: {E2AEC191-C4E5-4A8C-AF8C-56E1E3417CA1} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23124896 2021-06-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {F4A75F76-2268-4589-9B39-555F089A2DB4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MpCmdRun.exe [644888 2021-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{f2ad41c7-a976-402c-8cba-d552dd19887c}: [DhcpNameServer] 192.168.0.1

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge Profile: C:\Users\J-Veleba_PC\AppData\Local\Microsoft\Edge\User Data\Default [2021-06-29]

FireFox:
========
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-05-28] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2684733211-2404065564-3958040817-1001: @acestream.net/acestreamplugin,version=3.1.32 -> C:\Users\J-Veleba_PC\AppData\Roaming\ACEStream\player\npace_plugin.dll [No File]

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\J-Veleba_PC\AppData\Local\Google\Chrome\User Data\Default [2021-06-29]
CHR DefaultSearchKeyword: Default -> google.cz_
CHR Extension: (Prezentace) - C:\Users\J-Veleba_PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-06-07]
CHR Extension: (Dokumenty) - C:\Users\J-Veleba_PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-06-07]
CHR Extension: (Disk Google) - C:\Users\J-Veleba_PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25]
CHR Extension: (YouTube) - C:\Users\J-Veleba_PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-06-07]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\J-Veleba_PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-11-09]
CHR Extension: (Tabulky) - C:\Users\J-Veleba_PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-06-07]
CHR Extension: (Dokumenty Google offline) - C:\Users\J-Veleba_PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-25]
CHR Extension: (Avast Online Security) - C:\Users\J-Veleba_PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2021-02-17]
CHR Extension: (Super Netflix) - C:\Users\J-Veleba_PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\iakpdiefpdniabbekcbofaanjcpjkloe [2020-06-21]
CHR Extension: (Ace Script) - C:\Users\J-Veleba_PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2019-06-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\J-Veleba_PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Extension: (Gmail) - C:\Users\J-Veleba_PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\J-Veleba_PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-06-02]
CHR HKU\S-1-5-21-2684733211-2404065564-3958040817-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8469592 2020-03-08] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11279752 2021-06-17] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2019-01-06] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 GalaxyClientService; D:\Hry\GOG Galaxy\GalaxyClientService.exe [1874272 2021-04-10] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6840672 2021-04-10] (GOG Sp. z o.o. -> GOG.com)
R2 Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [505856 2018-05-02] (Intel Corporation) [File not signed]
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2523448 2020-12-02] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3478336 2020-12-02] (Electronic Arts, Inc. -> Electronic Arts)
R2 postgresql-x64-9.3; C:\Program Files\PostgreSQL\9.3\bin\pg_ctl.exe [92672 2017-05-09] (PostgreSQL Global Development Group) [File not signed]
S3 Rockstar Service; D:\Hry\Launcher\RockstarService.exe [1347464 2021-02-26] (Rockstar Games, Inc. -> Rockstar Games)
S3 SteelSeriesUpdateService; C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesUpdateService.exe [31568 2021-06-17] (SteelSeries ApS -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\NisSrv.exe [2644776 2021-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2105.5-0\MsMpEng.exe [136656 2021-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [40512 2021-06-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_8e2568524f674315\amdsafd.sys [100768 2021-03-29] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0368764.inf_amd64_e28d3b9d143c5eb9\B368707\amdkmdag.sys [81589776 2021-06-21] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [53904 2020-12-02] (AVAST Software s.r.o. -> The OpenVPN Project)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 MpKsl210b776d; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{FCA498BD-15DF-43C5-80F1-5175BBDC3A3B}\MpKslDrv.sys [107744 2021-06-29] (Microsoft Windows -> Microsoft Corporation)
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [46776 2018-12-21] (SteelSeries ApS -> )
R3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [57440 2020-11-02] (SteelSeries ApS -> SteelSeries ApS)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49568 2021-06-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [425184 2021-06-13] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [76000 2021-06-13] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-06-29 13:58 - 2021-06-29 13:59 - 000019406 _____ C:\Users\J-Veleba_PC\Downloads\FRST.txt
2021-06-29 13:58 - 2021-06-29 13:58 - 000000000 ____D C:\FRST
2021-06-29 13:56 - 2021-06-29 13:56 - 002300416 _____ (Farbar) C:\Users\J-Veleba_PC\Downloads\FRST64.exe
2021-06-29 13:38 - 2021-06-29 13:38 - 000003130 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2021-06-29 13:37 - 2021-06-29 13:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Software
2021-06-29 13:37 - 2021-06-29 13:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Link For Windows
2021-06-29 13:37 - 2021-06-29 13:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool
2021-06-29 13:36 - 2021-06-21 03:45 - 001863176 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-06-29 13:36 - 2021-06-21 03:45 - 001863176 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-06-29 13:36 - 2021-06-21 03:45 - 001443336 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-06-29 13:36 - 2021-06-21 03:45 - 001443336 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-06-29 13:36 - 2021-06-21 03:45 - 001097920 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-06-29 13:36 - 2021-06-21 03:45 - 001097920 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-06-29 13:36 - 2021-06-21 03:45 - 000951080 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-06-29 13:36 - 2021-06-21 03:45 - 000951080 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-06-29 13:36 - 2021-06-21 03:45 - 000737296 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2021-06-29 13:36 - 2021-06-21 03:45 - 000047120 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2021-06-29 13:36 - 2021-06-21 03:45 - 000044048 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2021-06-29 13:36 - 2021-06-21 03:44 - 000621584 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2021-06-29 13:36 - 2021-06-21 03:44 - 000500208 _____ C:\WINDOWS\system32\dgtrayicon.exe
2021-06-29 13:36 - 2021-06-21 03:44 - 000497144 _____ C:\WINDOWS\system32\GameManager64.dll
2021-06-29 13:36 - 2021-06-21 03:44 - 000433136 _____ C:\WINDOWS\system32\EEURestart.exe
2021-06-29 13:36 - 2021-06-21 03:44 - 000380408 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2021-06-29 13:36 - 2021-06-21 03:44 - 000347128 _____ C:\WINDOWS\system32\clinfo.exe
2021-06-29 13:36 - 2021-06-21 03:44 - 000187392 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2021-06-29 13:36 - 2021-06-21 03:44 - 000166896 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2021-06-29 13:36 - 2021-06-21 03:44 - 000157184 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2021-06-29 13:36 - 2021-06-21 03:44 - 000142840 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2021-06-29 13:36 - 2021-06-21 03:44 - 000091136 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mcl64.dll
2021-06-29 13:36 - 2021-06-21 03:44 - 000075776 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mcl32.dll
2021-06-29 13:36 - 2021-06-21 03:44 - 000019912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2021-06-29 13:36 - 2021-06-21 03:44 - 000019912 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2021-06-29 13:36 - 2021-06-08 12:10 - 000040512 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdfendrmgr.sys
2021-06-29 13:35 - 2021-06-21 03:44 - 001337344 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2021-06-29 13:35 - 2021-06-21 03:44 - 001337344 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2021-06-29 13:35 - 2021-06-21 03:44 - 000832000 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2021-06-29 13:35 - 2021-06-21 03:44 - 000468976 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2021-06-29 13:35 - 2021-06-21 03:44 - 000456696 _____ C:\WINDOWS\system32\atieah64.exe
2021-06-29 13:35 - 2021-06-21 03:44 - 000352248 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2021-06-29 13:35 - 2021-06-21 03:44 - 000245752 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2021-06-29 13:35 - 2021-06-21 03:44 - 000213496 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2021-06-29 13:35 - 2021-06-21 03:44 - 000182640 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2021-06-29 13:35 - 2021-06-21 03:44 - 000167416 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2021-06-29 13:35 - 2021-06-21 03:44 - 000166904 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2021-06-29 13:35 - 2021-06-21 03:44 - 000158896 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2021-06-29 13:35 - 2021-06-21 03:44 - 000141304 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2021-06-29 13:35 - 2021-06-21 03:44 - 000125952 _____ C:\WINDOWS\system32\atidxx64.dll
2021-06-29 13:35 - 2021-06-21 03:44 - 000108032 _____ C:\WINDOWS\SysWOW64\atidxx32.dll
2021-06-29 13:35 - 2021-06-21 03:43 - 083184128 _____ C:\WINDOWS\system32\amd_comgr.dll
2021-06-29 13:35 - 2021-06-21 03:43 - 072865288 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdhip64.dll
2021-06-29 13:35 - 2021-06-21 03:43 - 068436480 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll
2021-06-29 13:35 - 2021-06-21 03:43 - 001537528 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiacm64.dll
2021-06-29 13:35 - 2021-06-21 03:43 - 000941584 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2021-06-29 13:35 - 2021-06-21 03:43 - 000769032 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2021-06-29 13:35 - 2021-06-21 03:43 - 000490000 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2021-06-29 13:35 - 2021-06-21 03:43 - 000466936 _____ C:\WINDOWS\system32\amdlogum.exe
2021-06-29 13:35 - 2021-06-21 03:43 - 000380432 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2021-06-29 13:35 - 2021-06-21 03:43 - 000170248 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdihk32.dll
2021-06-29 13:35 - 2021-06-21 03:43 - 000150528 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-06-29 13:35 - 2021-06-21 03:43 - 000137216 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2021-06-29 13:35 - 2021-06-21 03:43 - 000133616 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll
2021-06-29 13:35 - 2021-06-21 03:43 - 000131072 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-06-29 13:35 - 2021-06-21 03:43 - 000130392 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2021-06-29 13:35 - 2021-06-21 03:43 - 000113664 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2021-06-29 13:35 - 2021-06-21 03:43 - 000113664 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll
2021-06-29 13:35 - 2021-06-21 03:43 - 000108408 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2021-06-29 13:35 - 2021-06-21 03:43 - 000070648 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll
2021-06-29 13:35 - 2021-06-21 03:42 - 001686272 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll
2021-06-29 13:35 - 2021-06-21 03:42 - 001365624 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll
2021-06-29 13:35 - 2021-06-21 03:42 - 000546928 _____ C:\WINDOWS\system32\amdmiracast.dll
2021-06-29 13:35 - 2021-06-21 03:42 - 000136080 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2021-06-29 13:35 - 2021-06-21 03:42 - 000130392 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2021-06-29 13:35 - 2021-06-21 03:42 - 000120400 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2021-06-29 13:35 - 2021-06-21 03:42 - 000108384 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2021-06-29 13:35 - 2021-06-18 01:52 - 003471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2021-06-29 13:35 - 2021-06-18 01:52 - 003437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2021-06-29 13:35 - 2021-06-18 01:40 - 059811928 _____ C:\WINDOWS\system32\amdxc64.so
2021-06-29 13:35 - 2021-06-18 01:38 - 000561080 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2021-06-29 13:35 - 2021-06-18 01:38 - 000561080 _____ C:\WINDOWS\system32\atiapfxx.blb
2021-06-09 18:28 - 2021-06-09 18:28 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-06-09 18:28 - 2021-06-09 18:28 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-06-09 18:28 - 2021-06-09 18:28 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2021-06-09 18:28 - 2021-06-09 18:28 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-06-09 18:28 - 2021-06-09 18:28 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-06-09 18:28 - 2021-06-09 18:28 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-06-09 18:28 - 2021-06-09 18:28 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-06-09 18:28 - 2021-06-09 18:28 - 000011353 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-06-09 18:27 - 2021-06-09 18:27 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2021-06-09 18:27 - 2021-06-09 18:27 - 001823792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-06-09 18:27 - 2021-06-09 18:27 - 001393496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-06-09 18:27 - 2021-06-09 18:27 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-06-09 18:27 - 2021-06-09 18:27 - 000563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-06-09 18:27 - 2021-06-09 18:27 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-06-09 18:27 - 2021-06-09 18:27 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2021-06-09 18:27 - 2021-06-09 18:27 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-06-09 18:27 - 2021-06-09 18:27 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-06-09 18:27 - 2021-06-09 18:27 - 000097280 _____ C:\WINDOWS\system32\Drivers\cimfs.sys

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-06-29 13:58 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-06-29 13:56 - 2018-10-31 17:26 - 000000000 ___DC C:\Users\J-Veleba_PC\AppData\Local\Spotify
2021-06-29 13:53 - 2018-10-31 17:25 - 000000000 ___DC C:\Users\J-Veleba_PC\AppData\Roaming\Spotify
2021-06-29 13:45 - 2020-07-17 17:47 - 001693346 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-06-29 13:45 - 2019-12-07 16:41 - 000716764 _____ C:\WINDOWS\system32\perfh005.dat
2021-06-29 13:45 - 2019-12-07 16:41 - 000144942 _____ C:\WINDOWS\system32\perfc005.dat
2021-06-29 13:44 - 2018-09-19 20:40 - 000000000 ___DC C:\Users\J-Veleba_PC\AppData\Local\AMD
2021-06-29 13:39 - 2018-09-20 15:45 - 000000000 ___DC C:\Users\J-Veleba_PC\AppData\LocalLow\AMD
2021-06-29 13:38 - 2020-10-15 16:07 - 000003090 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2021-06-29 13:38 - 2020-07-17 17:48 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-06-29 13:38 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-06-29 13:38 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-06-29 13:38 - 2018-09-19 20:40 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2021-06-29 13:37 - 2020-10-15 16:07 - 000003488 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2021-06-29 13:37 - 2020-10-15 16:06 - 000003160 _____ C:\WINDOWS\system32\Tasks\StartCN
2021-06-29 13:37 - 2020-10-15 16:06 - 000003080 _____ C:\WINDOWS\system32\Tasks\StartDVR
2021-06-29 13:37 - 2018-09-19 20:40 - 000000000 ____D C:\Program Files\AMD
2021-06-29 13:36 - 2018-09-19 20:40 - 000000000 ____D C:\AMD
2021-06-29 13:34 - 2020-12-24 01:14 - 000000000 ____D C:\Users\J-Veleba_PC\AppData\Local\AMD_Common
2021-06-29 13:34 - 2018-09-19 21:53 - 000000000 ___DC C:\Users\J-Veleba_PC\AppData\Local\Battle.net
2021-06-29 12:08 - 2020-07-17 17:44 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-06-28 17:00 - 2020-07-17 17:48 - 000003392 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2684733211-2404065564-3958040817-1001
2021-06-28 17:00 - 2020-07-17 13:11 - 000002399 ____C C:\Users\J-Veleba_PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-06-28 17:00 - 2018-09-19 20:27 - 000000000 ___RD C:\Users\J-Veleba_PC\OneDrive
2021-06-26 21:41 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-06-26 21:41 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-06-26 10:45 - 2020-06-07 20:02 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-06-26 10:45 - 2020-06-07 20:02 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-06-26 10:45 - 2020-06-07 20:02 - 000002274 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2021-06-21 21:38 - 2018-09-19 20:34 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-06-21 21:38 - 2018-09-19 20:34 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2021-06-21 21:38 - 2018-09-19 20:34 - 000002260 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2021-06-21 16:19 - 2020-11-02 22:13 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-06-21 03:44 - 2020-09-29 15:11 - 001756152 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2021-06-21 03:43 - 2020-09-29 15:11 - 000202696 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdihk64.dll
2021-06-18 02:05 - 2021-04-10 10:30 - 002444240 _____ (AMD Inc.) C:\WINDOWS\SysWOW64\AMDBugReportTool.exe
2021-06-13 19:17 - 2019-04-22 17:12 - 000000000 ___DC C:\Users\J-Veleba_PC\AppData\Local\PokerStars.CZ
2021-06-13 10:56 - 2018-09-19 20:05 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-06-10 20:50 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-06-10 20:50 - 2018-09-19 21:51 - 000000000 ____D C:\Program Files (x86)\Battle.net
2021-06-09 21:20 - 2020-07-17 17:44 - 000446320 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-06-09 21:19 - 2020-07-17 12:48 - 000000000 ____D C:\WINDOWS\system32\Drivers\en-GB
2021-06-09 21:19 - 2020-07-17 12:48 - 000000000 ____D C:\WINDOWS\en-GB
2021-06-09 21:19 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-06-09 21:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-06-09 21:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-06-09 21:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-06-09 21:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-06-09 21:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-06-09 21:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-06-09 21:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-06-09 21:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-06-09 21:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-06-09 21:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-06-09 18:30 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-06-09 18:20 - 2018-09-20 01:39 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-06-09 18:19 - 2018-09-20 01:39 - 132447432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-06-08 21:01 - 2019-04-08 17:39 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-06-08 12:10 - 2020-09-23 16:43 - 000585136 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdfendrsr.exe
2021-06-08 12:10 - 2020-09-23 16:43 - 000151616 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdfendr.sys
2021-06-06 00:02 - 2020-07-17 17:44 - 000008192 ___SH C:\DumpStack.log.tmp
2021-06-05 17:17 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2021-06-02 17:26 - 2020-11-20 09:29 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-05-30 19:23 - 2018-09-19 20:56 - 000000000 ___DC C:\Users\J-Veleba_PC\AppData\Local\D3DSCache
2021-05-30 11:37 - 2019-09-26 17:59 - 000000000 ____D C:\Users\J-Veleba_PC\AppData\Roaming\Discord
2021-05-30 11:35 - 2018-09-23 16:58 - 000000000 ___DC C:\Users\J-Veleba_PC\AppData\Local\Discord
2021-05-30 11:34 - 2018-09-23 16:58 - 000002261 ____C C:\Users\J-Veleba_PC\Desktop\Discord.lnk
2021-05-30 11:34 - 2018-09-23 16:58 - 000000000 ___DC C:\Users\J-Veleba_PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-06-2021
Ran by J-Veleba_PC (29-06-2021 14:00:16)
Running from C:\Users\J-Veleba_PC\Downloads
Windows 10 Home Version 21H1 19043.1052 (X64) (2020-07-17 15:48:10)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2684733211-2404065564-3958040817-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2684733211-2404065564-3958040817-503 - Limited - Disabled)
Guest (S-1-5-21-2684733211-2404065564-3958040817-501 - Limited - Disabled)
J-Veleba_PC (S-1-5-21-2684733211-2404065564-3958040817-1001 - Administrator - Enabled) => C:\Users\J-Veleba_PC
WDAGUtilityAccount (S-1-5-21-2684733211-2404065564-3958040817-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2684733211-2404065564-3958040817-1001\...\uTorrent) (Version: 3.5.5.45574 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 21.005.20048 - Adobe Systems Incorporated)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 21.6.1 - Advanced Micro Devices, Inc.)
Assassin's Creed Odyssey (HKLM-x32\...\Uplay Install 5059) (Version: - Ubisoft)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Branding64 (HKLM\...\{C871FC62-0186-40ED-BAEA-7C65BE367755}) (Version: 1.00.0006 - Advanced Micro Devices, Inc.) Hidden
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.73.1083 - AB Team, d.o.o.)
Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.56 - Piriform)
Combonator version 1.75 (HKLM-x32\...\{1E8A5FB7-0573-4083-823B-B4E31962F0BC}_is1) (Version: 1.75 - Fuse Media LLC)
Discord (HKU\S-1-5-21-2684733211-2404065564-3958040817-1001\...\Discord) (Version: 0.0.310 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{0E63B233-DC24-442C-BD38-0B91D90FEC5B}) (Version: 1.1.167.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
FIFA 21 (HKLM-x32\...\{A918ACE7-A83B-41F4-8746-AEF8DC821879}) (Version: 1.0.67.42655 - Electronic Arts)
FormatFactory 5.1.0.0 (HKLM-x32\...\FormatFactory) (Version: 5.1.0.0 - Free Time)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 91.0.4472.114 - Google LLC)
ICMIZER (HKU\S-1-5-21-2684733211-2404065564-3958040817-1001\...\98ae6a83-32ab-5b3d-925e-62223f2568a9) (Version: 3.6.0 - Valentin Kuzub)
Intel(R) Network Connections 23.2.0.1006 (HKLM\...\PROSetDX) (Version: 23.2.0.1006 - Intel)
Intel® Chipset Device Software (HKLM-x32\...\{eb0d4a41-3065-42b0-a868-c60d42d3ea98}) (Version: 10.1.17695.8086 - Intel(R) Corporation) Hidden
Kingdom Come: Deliverance – From the Ashes (HKLM-x32\...\1201995925_is1) (Version: 1.7.2.1010 - GOG.com)
Kingdom Come: Deliverance - HD Sound Pack (HKLM-x32\...\1929089326_is1) (Version: 1.7.2.1010 - GOG.com)
Kingdom Come: Deliverance - HD Texture Pack (HKLM-x32\...\1597510471_is1) (Version: 1.7.2.1010 - GOG.com)
Kingdom Come: Deliverance - HD Voice Pack - English (HKLM-x32\...\2020258726_is1) (Version: 1.7.2.1010 - GOG.com)
Kingdom Come: Deliverance – The Amorous Adventures of Bold Sir Hans Capon (HKLM-x32\...\1336069439_is1) (Version: 1.7.2.1010 - GOG.com)
Kingdom Come: Deliverance (HKLM-x32\...\1719198803_is1) (Version: 1.7.2.1010 - GOG.com)
Kingdom Come: Deliverance Treasures of the Past DLC (HKLM-x32\...\1300320746_is1) (Version: 1.7.2.1010 - GOG.com)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 91.0.864.59 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 91.0.864.59 - Microsoft Corporation)
Microsoft Office Professional Plus 2019 - cs-cz (HKLM\...\ProPlus2019Retail - cs-cz) (Version: 16.0.14026.20308 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2684733211-2404065564-3958040817-1001\...\OneDriveSetup.exe) (Version: 21.109.0530.0001 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2684733211-2404065564-3958040817-1001\...\Teams) (Version: 1.3.00.26064 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{E5A95BC5-81DF-4F0C-B910-B59DD012F037}) (Version: 2.81.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29913 (HKLM-x32\...\{03d1453c-7d5c-479c-afea-8482f406e036}) (Version: 14.28.29913.0 - Microsoft Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 25.0.8 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14026.20308 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14026.20246 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14026.20308 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.14026.20246 - Microsoft Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.5.90.45798 - Electronic Arts, Inc.)
PartyCaption version v1.96l (HKLM-x32\...\PartyCaption_is1) (Version: v1.96l - )
partypoker Czech (HKU\S-1-5-21-2684733211-2404065564-3958040817-1001\...\PartyPokerCZ) (Version: - PartyCzech)
PokerSnowie (HKLM-x32\...\PokerSnowie_is1) (Version: - Snowie Games Ltd)
PokerStars.cz (HKLM-x32\...\PokerStars.cz) (Version: - PokerStars.cz)
PokerTracker 4 (remove only) (HKLM-x32\...\PokerTracker4) (Version: - )
PostgreSQL 9.3 (HKLM\...\PostgreSQL 9.3) (Version: 9.3 - PostgreSQL Global Development Group)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8522 - Realtek Semiconductor Corp.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.35.340 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.7.9 - Rockstar Games)
SimplePreflopHoldem version 1.0 (HKLM-x32\...\{A86DE49F-63A9-4C14-9CB0-78E02FD42741}_is1) (Version: 1.0 - Simple Poker, LP)
Spotify (HKU\S-1-5-21-2684733211-2404065564-3958040817-1001\...\Spotify) (Version: 1.1.48.625.g1c87c7f7 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries GG 4.0.0 (HKLM\...\SteelSeries Engine 3) (Version: 4.0.0 - SteelSeries ApS)
The Witcher 3: Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.32 - GOG.com)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 71.0 - Ubisoft)
Vulkan Run Time Libraries 1.1.70.0 (HKLM\...\VulkanRT1.1.70.0) (Version: 1.1.70.0 - LunarG, Inc.) Hidden
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
World of Warcraft Classic (HKLM-x32\...\World of Warcraft Classic) (Version: - Blizzard Entertainment)

Packages:
=========
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.8.1108.0_x64__rz1tebttyb220 [2021-05-28] (Dolby Laboratories)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-13] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-13] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.6151.0_x64__8wekyb3d8bbwe [2021-06-21] (Microsoft Studios) [MS Ad]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2684733211-2404065564-3958040817-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\J-Veleba_PC\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2684733211-2404065564-3958040817-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\J-Veleba_PC\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files\FormatFactory\ShellEx_108.dll [2020-03-19] (Free Time) [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files\FormatFactory\ShellEx_108.dll [2020-03-19] (Free Time) [File not signed]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\WINDOWS\System32\atiacm64.dll [2021-06-21] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2021-01-06 12:26 - 2021-01-06 12:26 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2018-05-02 11:10 - 2018-05-02 11:10 - 000419328 ____R () [File not signed] C:\Program Files\Intel\Wired Networking\NCS2\Agent\AdapterAgnt.DLL
2019-04-22 17:43 - 2017-05-09 06:59 - 000178688 _____ () [File not signed] C:\Program Files\PostgreSQL\9.3\bin\LIBPQ.dll
2019-04-22 17:43 - 2016-08-02 12:40 - 002257408 _____ () [File not signed] C:\Program Files\PostgreSQL\9.3\bin\libxml2.dll
2021-06-17 19:40 - 2021-06-17 19:40 - 001704960 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\WVR\OpenVR\bin\win64\driver_amdwvr.dll
2019-04-22 17:43 - 2011-01-10 17:16 - 000240862 _____ (Free Software Foundation) [File not signed] C:\Program Files\PostgreSQL\9.3\bin\libintl-8.dll
2020-01-09 23:50 - 2020-01-09 23:50 - 002146304 _____ (Holtek Semiconductor Inc.) [File not signed] C:\Program Files\SteelSeries\SteelSeries Engine 3\HIDDLL.dll
2020-01-09 23:50 - 2020-01-09 23:50 - 002284032 _____ (Holtek) [File not signed] C:\Program Files\SteelSeries\SteelSeries Engine 3\ISPDLL.dll
2018-05-02 11:08 - 2018-05-02 11:08 - 001620480 ____R (Intel(R) Corporation) [File not signed] C:\Program Files\Intel\Wired Networking\NCS2\Agent\CoreAgnt.dll
2018-05-02 11:09 - 2018-05-02 11:09 - 000411136 _____ (Intel(R) Corporation) [File not signed] C:\Program Files\Intel\Wired Networking\NCS2\Agent\Rule.DLL
2018-05-02 11:10 - 2018-05-02 11:10 - 000902144 ____R (Intel(R) Corporation) [File not signed] C:\Program Files\Intel\Wired Networking\NCS2\Agent\VlanAgent.dll
2018-05-03 11:30 - 2018-05-03 11:30 - 000349696 _____ (Intel(R) Corporation) [File not signed] C:\Windows\system32\NCS2Setp.dll
2018-05-02 11:07 - 2018-05-02 11:07 - 004749824 _____ (Intel(R) Corporation) [File not signed] C:\WINDOWS\SYSTEM32\NcsColib.dll
2020-10-26 00:14 - 2020-11-01 17:27 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2020-10-26 00:14 - 2020-11-01 17:27 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2019-04-22 17:43 - 2017-01-31 08:35 - 001662976 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\PostgreSQL\9.3\bin\LIBEAY32.dll
2019-04-22 17:43 - 2017-01-31 08:35 - 000353280 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\PostgreSQL\9.3\bin\SSLEAY32.dll
2020-10-26 00:14 - 2020-11-01 17:27 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2020-12-17 16:57 - 2020-11-01 17:27 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2020-12-17 16:57 - 2020-11-01 17:27 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2020-12-17 16:57 - 2020-11-01 17:27 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2020-12-17 16:57 - 2020-11-01 17:27 - 000146432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2020-12-17 16:57 - 2020-11-01 17:27 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2020-12-17 16:57 - 2020-11-01 17:27 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000057856 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\audio\qtaudio_windows.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000039424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000414720 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000532992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 001441792 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 001189888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000134656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 006184448 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 006867456 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 000735232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Multimedia.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 000120832 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5MultimediaQuick.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 001104896 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 000325120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 003668480 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 000517120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 000051712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlWorkerScript.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 004228608 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 000171008 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 001085440 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 000480256 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5RemoteObjects.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 000205824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 000329728 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 000390656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 095598080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2021-01-06 12:25 - 2021-01-06 12:25 - 000127488 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 005587968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000462848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000188928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 002878464 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000055808 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000262144 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtMultimedia\declarative_multimedia.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQml\qmlplugin.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000284160 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000333824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000136704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000090112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000313856 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2021-01-06 12:26 - 2021-01-06 12:26 - 000091648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [476]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

SearchScopes: HKU\S-1-5-21-2684733211-2404065564-3958040817-1001 -> DefaultScope {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2684733211-2404065564-3958040817-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-04-12 01:38 - 2019-06-07 17:15 - 000000841 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2684733211-2404065564-3958040817-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\J-Veleba_PC\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\Arsenal-Wallpaper-Hd-.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-2684733211-2404065564-3958040817-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-2684733211-2404065564-3958040817-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2684733211-2404065564-3958040817-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2684733211-2404065564-3958040817-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{ADC964AD-57FB-4EE2-B305-56E46523964B}] => (Allow) D:\Hry\Steam\steamapps\common\Mafia\Mafia\Setup.exe () [File not signed]
FirewallRules: [{6FED7D9A-311B-4C52-B7DB-9A2A39360673}] => (Allow) D:\Hry\Steam\steamapps\common\Mafia\Mafia\Setup.exe () [File not signed]
FirewallRules: [{01F44A8D-C232-425F-AF10-930FE0CD686E}] => (Allow) D:\Hry\Steam\steamapps\common\Mafia\Mafia\Game.exe (Illusion Softworks) [File not signed]
FirewallRules: [{07548A41-8DE2-4E61-AC68-B22EAB26EB45}] => (Allow) D:\Hry\Steam\steamapps\common\Mafia\Mafia\Game.exe (Illusion Softworks) [File not signed]
FirewallRules: [{26414AB4-C82D-424C-A86C-B9D42F76AE1F}] => (Allow) D:\Hry\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{5F7FF304-B0C7-4777-8075-8CE639F37A1C}] => (Allow) D:\Hry\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{FE4D93C3-A46B-48A6-98F9-3AD0213657BC}] => (Allow) C:\Program Files\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [UDP Query User{90E4EA26-D6D6-4E63-9DAA-D453B058A2AB}D:\hry\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\hry\call of duty modern warfare\modernwarfare.exe => No File
FirewallRules: [TCP Query User{2BE3D397-A8C7-4203-8C2A-2F30A815B1E8}D:\hry\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\hry\call of duty modern warfare\modernwarfare.exe => No File
FirewallRules: [{75C9083B-5A5D-4405-929A-DC0AF6CADE09}] => (Allow) D:\Hry\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{07E7F9E0-EFB6-443C-B0D8-2D39AD72BB28}] => (Allow) D:\Hry\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{40E388E7-B770-49FA-BA55-CD4161166335}] => (Allow) D:\Hry\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{5CA3F406-98DE-4432-9436-25683B94ACA4}] => (Allow) D:\Hry\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{AF6F42D7-B594-4524-87EE-8D8854E21816}D:\hry\world of warcraft\_classic_\utils\wowvoiceproxy.exe] => (Allow) D:\hry\world of warcraft\_classic_\utils\wowvoiceproxy.exe => No File
FirewallRules: [TCP Query User{82F4C180-3240-46D4-BC23-25EEB4CBBDE3}D:\hry\world of warcraft\_classic_\utils\wowvoiceproxy.exe] => (Allow) D:\hry\world of warcraft\_classic_\utils\wowvoiceproxy.exe => No File
FirewallRules: [{802B9069-8FD4-4FD3-93CB-FA0B67016BF4}] => (Allow) C:\Users\J-Veleba_PC\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{2C3A5602-268F-424F-9379-7DCC0A41FF0F}] => (Allow) C:\Users\J-Veleba_PC\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{833F0ABB-FD39-4B8F-BCD8-6C1CE5223902}C:\users\j-veleba_pc\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\j-veleba_pc\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{23B96EC7-B674-4A26-B754-9CE8F5F66196}C:\users\j-veleba_pc\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\j-veleba_pc\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{3D286350-D807-4543-94B7-36259AA21AE2}C:\program files (x86)\world of warcraft\_retail_\utils\wowvoiceproxy.exe] => (Allow) C:\program files (x86)\world of warcraft\_retail_\utils\wowvoiceproxy.exe => No File
FirewallRules: [UDP Query User{4CBA3492-BDAB-4256-A193-E70B81DAAABF}C:\program files (x86)\world of warcraft\_retail_\utils\wowvoiceproxy.exe] => (Allow) C:\program files (x86)\world of warcraft\_retail_\utils\wowvoiceproxy.exe => No File
FirewallRules: [TCP Query User{7C9CDEA6-DF5A-4DA8-B899-AC09EB2D629C}D:\hry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\hry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{C5B1CD0F-8C41-4551-A0B0-0ABD7EBFCCF9}D:\hry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\hry\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{8D8601F2-3A88-4D05-9BF4-256024EFA2FB}D:\hry\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\hry\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{2A1B20AF-5FCD-419D-B68F-742F31EAFFA9}D:\hry\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\hry\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{903B4973-266A-4C8D-8EDE-C4D090FFB913}D:\hry\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) D:\hry\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [UDP Query User{5627A67F-AF8C-4FA5-8A88-8E5B0692D618}D:\hry\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) D:\hry\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [TCP Query User{349A9AC2-FC48-4B32-89D0-A3D3A637A246}C:\users\j-veleba_pc\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\j-veleba_pc\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{25DF380A-34DE-4EB4-A7EF-7C3E02EDEBBD}C:\users\j-veleba_pc\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\j-veleba_pc\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{2DF88C96-4B9B-42B0-BE96-A9D3DCAE7595}] => (Allow) D:\Hry\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{7FC3449F-2753-44D8-AE3D-5524810E6191}] => (Allow) D:\Hry\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{F6DFD50B-C2E8-4126-B2F3-C1C75B9630F4}D:\hry\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\hry\steamlibrary\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{EAFFC548-D9B8-4658-B1E6-756192DE7823}D:\hry\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\hry\steamlibrary\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{C8797389-2FE6-4F1D-B22A-9EA354C5CCB9}E:\hry\call of duty modern warfare\modernwarfare.exe] => (Allow) E:\hry\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [UDP Query User{E391427F-5B2C-44A3-8695-26C54836BD85}E:\hry\call of duty modern warfare\modernwarfare.exe] => (Allow) E:\hry\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [TCP Query User{9B39FF06-72E5-4492-AA1F-1962ABCBCD20}E:\hry\fifa 21\fifa21.exe] => (Allow) E:\hry\fifa 21\fifa21.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [UDP Query User{E50B774F-77B3-4031-A754-DF87B9D1FBCA}E:\hry\fifa 21\fifa21.exe] => (Allow) E:\hry\fifa 21\fifa21.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{1F13599A-3D94-4954-850F-301650DA53FE}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CAEA06E3-5CE5-4F8B-B047-78F70F53B88C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F05039C0-1AAE-491C-869A-C39C34112C80}] => (Allow) E:\Hry\FIFA 21\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{2679C6AE-7719-4868-BFB7-1C7D6EA46C12}] => (Allow) E:\Hry\FIFA 21\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{C802C170-F39B-49F4-A90C-47798A67EF6C}] => (Allow) D:\Hry\Steam\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{FB9B6A16-55A4-4C07-99CE-86C435604E70}] => (Allow) D:\Hry\Steam\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{F3716C0E-B184-4D6C-A8B7-C4C6FCE8AA2F}D:\hry\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\hry\steam\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{9D1CA255-BB56-488B-BDCE-20883AF9108C}D:\hry\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\hry\steam\steamapps\common\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{04EBE69C-0B21-43C9-A3E4-FA5A61A27FDE}E:\hry\call of duty modern warfare\modernwarfare.exe] => (Allow) E:\hry\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [UDP Query User{40C234D2-197B-417D-AC18-385F2771031C}E:\hry\call of duty modern warfare\modernwarfare.exe] => (Allow) E:\hry\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{60E5CA88-38E5-4765-9AAB-F0167249241F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0ECE5415-F5B7-452E-A2F6-7FAB2AE53C70}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F6A823C5-8ABB-4BC0-A17C-09A0EE418ABC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8A79D8A0-9F8E-4226-9AB3-E27A6FE03511}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5E4B6E9C-A4B7-46E3-B60A-11BE6F09552F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{87FDC0AD-7F08-46B1-AE39-5A42BF8E852E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FF2F8338-0F2A-4A10-B8F4-6CA4FF8B0A3B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C5CE3AB9-5537-4B3C-8837-3CB77B055C82}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{5E7524C1-9CAC-4943-A5F3-E831D98DD875}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\91.0.864.59\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:111.19 GB) (Free:44.08 GB) (40%)

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (06/28/2021 07:47:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: IProsetMonitor.exe, verze: 23.2.0.1012, časové razítko: 0x5aea008f
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.1023, časové razítko: 0x7977b9de
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000063416
ID chybujícího procesu: 0x1038
Čas spuštění chybující aplikace: 0x01d766a9028fbe21
Cesta k chybující aplikaci: C:\Windows\system32\IProsetMonitor.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: b10d8b1d-a788-4239-82bd-d799918e986d
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (06/24/2021 07:56:28 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (06/17/2021 08:39:20 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (06/13/2021 02:34:27 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (06/13/2021 02:34:27 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (06/13/2021 02:34:27 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (06/13/2021 02:34:27 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (06/11/2021 04:43:54 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)


System errors:
=============
Error: (06/29/2021 01:49:03 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x8024200b): Aktualizace bezpečnostních informací pro produkt Microsoft Defender Antivirus - KB2267602 (verze 1.343.25.0).

Error: (06/13/2021 02:34:26 PM) (Source: Microsoft-Windows-Bits-Client) (EventID: 16392) (User: NT AUTHORITY)
Description: Službu BITS se nezdařilo spustit. Chyba 2147500053.

Error: (06/13/2021 12:18:44 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-F5TPPFU)
Description: Server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} se v daném časovém limitu neregistroval u služby DCOM.

Error: (06/10/2021 09:39:31 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-F5TPPFU)
Description: Server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} se v daném časovém limitu neregistroval u služby DCOM.

Error: (06/06/2021 11:04:58 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80240017): 2021-05 Kumulativní aktualizace (Preview) pro .NET Framework 3.5 a 4.8 pro Windows 10 Version 2004 pro platformu x64 (KB5003254).

Error: (06/06/2021 11:04:48 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80240017): Aktualizace, která odebírá Adobe Flash Player pro Windows 10 Version 2004 ze systémů s architekturou x64 (KB4577586).

Error: (06/05/2021 05:19:32 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x8024200b): Aktualizace bezpečnostních informací pro produkt Microsoft Defender Antivirus - KB2267602 (verze 1.341.123.0).

Error: (06/01/2021 07:27:41 PM) (Source: Microsoft-Windows-WHEA-Logger) (EventID: 1) (User: NT AUTHORITY)
Description: Došlo k závažné chybě hardwaru. Záznam chyby s popisem stavu je obsažen v datové části této události.


Windows Defender:
================
Date: 2021-06-27 16:51:12
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {5C506DC9-E815-4670-BE00-2074374BF009}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-06-26 12:33:52
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {6F7747BD-0E51-4621-827D-61F1FF3E5D7C}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-06-25 20:08:51
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {919C1210-A8F6-400B-AE30-AB415E1B3F5E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-06-24 16:23:49
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {A45C03A2-D845-4488-90B1-9B1E1F7A38CC}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-06-23 17:56:44
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {5989D624-CFC8-4F86-8481-AE772A8F0F7F}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-06-29 13:49:03
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.341.1626.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.18200.4
Kód chyby: 0x80070643
Popis chyby: Při instalaci došlo k závažné chybě.

Date: 2021-06-29 13:49:02
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.343.25.0
Předchozí verze bezpečnostních informací: 1.341.1626.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Delta
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.18300.4
Předchozí verze modulu: 1.1.18200.4
Kód chyby: 0x80070666
Popis chyby: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

Date: 2021-06-29 13:49:02
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.343.25.0
Předchozí verze bezpečnostních informací: 1.341.1626.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Delta
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.18300.4
Předchozí verze modulu: 1.1.18200.4
Kód chyby: 0x80070666
Popis chyby: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

Date: 2021-06-29 13:49:02
Description:
Program Antivirová ochrana v programu Microsoft Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu: 1.1.18300.4
Předchozí verze modulu: 1.1.18200.4
Uživatel: NT AUTHORITY\SYSTEM
Kód chyby: 0x80070666
Popis chyby: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

Date: 2021-06-05 17:19:31
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 1.341.123.0
Předchozí verze bezpečnostních informací: 1.339.1957.0
Zdroj aktualizace: Uživatel
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Delta
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 1.1.18200.4
Předchozí verze modulu: 1.1.18100.6
Kód chyby: 0x80070666
Popis chyby: Již je nainstalována jiná verze tohoto produktu. Instalaci této verze nelze dokončit. Chcete-li znovu nakonfigurovat nebo odebrat existující verzi produktu, použijte ovládací panel Přidat nebo odebrat programy.

==================== Memory info ===========================

BIOS: American Megatrends Inc. 1.10 03/30/2018
Motherboard: Micro-Star International Co., Ltd. B360M MORTAR (MS-7B23)
Processor: Intel(R) Core(TM) i5-8400 CPU @ 2.80GHz
Percentage of memory in use: 20%
Total physical RAM: 16326.66 MB
Available physical RAM: 12898.36 MB
Total Virtual: 30662.66 MB
Available Virtual: 20518.36 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.19 GB) (Free:44.08 GB) NTFS
Drive d: () (Fixed) (Total:931.5 GB) (Free:365.02 GB) NTFS
Drive e: (Nový svazek) (Fixed) (Total:465.75 GB) (Free:267.57 GB) NTFS

\\?\Volume{cedad438-42cd-4bb1-880a-7313408507d3}\ (Obnovení) (Fixed) (Total:0.49 GB) (Free:0.07 GB) NTFS
\\?\Volume{1a3ebd31-31ee-42c3-a02f-a897bb91e24d}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 111.8 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 2 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventivka

#2 Příspěvek od Conder »

Ahoj :)

:arrow: Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/
  • Uloz na plochu a ukonci vsetky programy
  • Spusti AdwCleaner ako spravca
  • Odsuhlas licencne podmienky
  • Klikni na Spustit skenovani a pockaj na dokoncenie
  • V pripade nalezov nechaj vsetky nalezy oznacene a klikni na Karantena (ak nie su ziadne nalezy, tak na Spustit zakladni opravu)
  • V pripade, ze sa detekuje aj "predinstalovany software", tieto programy mozes, ale nemusis zmazat (toto nie su skodlive programy, ale iba zbytocnosti)
  • Potvrd vyzvu, pockaj na dokoncenie a potvrd restartovanie PC
  • Po restartovani PC sa otvori AdwCleaner, klikni na Zobrazit soubor protokolu
  • Otvori sa log, jeho obsah skopiruj a vloz do dalsej odpovede
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

Odpovědět