Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

kontrola logu, diky moc!

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Shag
Návštěvník
Návštěvník
Příspěvky: 35
Registrován: 08 led 2013 13:21

kontrola logu, diky moc!

#1 Příspěvek od Shag »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-09-2021
Ran by garan (administrator) on IVO (19-09-2021 21:48:53)
Running from C:\Users\garan\Desktop
Loaded Profiles: garan
Platform: Windows 10 Pro Version 21H1 19043.1237 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
(DTS, Inc. -> DTS) C:\Program Files\Realtek\Audio\HDA\DTSAudioService64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <11>
(Microsoft Corporation -> Microsoft Corporation) C:\Users\garan\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2108.25001.0_x64__8wekyb3d8bbwe\Cortana.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\NisSrv.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9277520 2021-01-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_DTS] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506168 2021-01-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\Run: [QIP Internet Guardian] => C:\Users\garan\AppData\Roaming\QipGuard\QipGuard.exe [436224 2013-12-05] (OOO Media Mir -> QIP.ru)
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\Run: [DAEMON Tools Lite Automount] => D:\Program Files\DAEMON Tools Lite\DTAgent.exe [4836032 2017-08-14] (Disc Soft Ltd -> Disc Soft Ltd)
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\Run: [MiPhoneManager] => C:\Users\garan\AppData\Local\MiPhoneManager\main\MiPhoneHelper.exe [157624 2016-03-11] (Xiaomi Technology Inc -> )
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\Run: [小米云服务] => C:\Users\garan\AppData\Local\MiCloudPC\update.exe [1524136 2017-11-23] (Xiaomi Technology Inc -> GitHub)
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\Run: [GalaxyClient] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [7606344 2019-05-07] (GOG Sp. z o.o. -> GOG.com)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\93.0.4577.82\Installer\chrmstp.exe [2021-09-14] (Google LLC -> Google LLC)
Startup: C:\Users\garan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2019-11-23]
ShortcutTarget: Twitch.lnk -> C:\Users\garan\AppData\Roaming\Twitch\Bin\Twitch.exe (Twitch Interactive, Inc. -> Twitch Interactive, Inc.)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1AF7FC50-3E59-4C47-AD94-61314ADC1493} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {1BBACE3B-D764-477F-8CF4-D6B7F7CBA5A4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1D7B0BBA-8629-41D1-B457-47734CA3EF44} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2A866B5A-8DFC-4035-A29C-442306DB5DBC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2B3F2346-3A30-4B3C-98AB-20A6FE609171} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-10-01] (Google Inc -> Google Inc.)
Task: {31113324-773F-4D2B-AA11-8F016A406645} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-10-01] (Google Inc -> Google Inc.)
Task: {3485F486-F4A6-4696-AF46-94381942C1B7} - System32\Tasks\MSIAfterburner => D:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [725288 2017-12-15] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {3AA8A191-D454-4664-9B09-257C2A85195B} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3C643B40-4BD0-4E9D-9A2B-BD9B6FE934D1} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4DFFBD04-251B-4FB9-97E8-AE3C02B11980} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [1145 2020-12-04] () [File not signed]
Task: {4EEABD8E-7A04-4D4D-B67D-A965A5B5BDB5} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {666320F2-1A76-4FEF-8487-6D69CA48CE0F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B458F4BD-9FDE-4497-B273-6B3D47E773C6} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B9BDC508-9712-44BE-8EA7-B66585ECD42B} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D64FD9E8-3D12-4AA2-91E7-FC900E5092B0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MpCmdRun.exe [851472 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DFCC202A-F441-4373-B10A-85C28FB2FA17} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {E9F25643-F30C-4BF0-ADA9-2D1647F53D7D} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F0BC285E-EA3B-45C9-A937-A5953C4722AB} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{43a252f2-1af8-4cb5-b60f-8d2dc780462f}: [DhcpNameServer] 192.168.0.1 0.0.0.0

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge Profile: C:\Users\garan\AppData\Local\Microsoft\Edge\User Data\Default [2021-09-16]

FireFox:
========
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> D:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> D:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default [2021-09-19]
CHR Extension: (Prezentace) - C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-12]
CHR Extension: (Dokumenty) - C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Disk Google) - C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21]
CHR Extension: (YouTube) - C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-10-01]
CHR Extension: (Tabulky) - C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-12]
CHR Extension: (Dokumenty Google offline) - C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-06-22]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-09-09]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\garan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Profile: C:\Users\garan\AppData\Local\Google\Chrome\User Data\System Profile [2019-04-10]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-08-04] (Advanced Micro Devices, Inc.) [File not signed]
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2015-05-08] (ASUSTeK Computer Inc. -> )
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-04-24] (ASUSTeK Computer Inc. -> ) [File not signed]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8914856 2021-07-03] (BattlEye Innovations e.K. -> )
S3 Disc Soft Lite Bus Service; D:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291904 2017-08-14] (Disc Soft Ltd -> Disc Soft Ltd)
R2 DTSAudioService; C:\Program Files\Realtek\Audio\HDA\DTSAudioService64.exe [225992 2021-01-24] (DTS, Inc. -> DTS)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2020-08-10] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [791112 2019-05-07] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7172680 2019-05-07] (GOG Sp. z o.o. -> GOG.com)
S3 Microsoft SharePoint Workspace Audit Service; D:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [30814400 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5394872 2021-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe [7374576 2021-08-17] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\NisSrv.exe [2772856 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2108.7-0\MsMpEng.exe [136640 2021-09-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppService.exe [495840 2018-01-26] (Wondershare Technology Co.,Ltd -> Wondershare)
S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [7568072 2021-08-18] (PUBG CORPORATION -> PUBG Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [31992 2015-06-03] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2015-05-08] (ASUSTeK Computer Inc. -> )
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-10-21] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-10-21] (Disc Soft Ltd -> Disc Soft Ltd)
R3 MpKslca3c836a; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{E0FCECC3-E5F9-4459-B772-394279609044}\MpKslDrv.sys [130296 2021-09-19] (Microsoft Windows -> Microsoft Corporation)
R1 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [75240 2021-03-06] (Insecure.Com LLC -> Insecure.Com LLC.)
S3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [46408 2017-06-02] (SteelSeries ApS -> SteelSeries ApS)
R3 SteamStreamingMicrophone; C:\WINDOWS\system32\drivers\SteamStreamingMicrophone.sys [40736 2017-07-28] (Valve Corp. -> )
R3 SteamStreamingSpeakers; C:\WINDOWS\system32\drivers\SteamStreamingSpeakers.sys [40736 2017-07-21] (Valve Corp. -> )
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2021-09-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [433384 2021-09-09] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-09-09] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [2729456 2021-08-18] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
U4 npcap_wifi; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-09-19 21:48 - 2021-09-19 21:49 - 000018671 _____ C:\Users\garan\Desktop\FRST.txt
2021-09-19 21:46 - 2021-09-19 21:46 - 002304000 _____ (Farbar) C:\Users\garan\Desktop\FRST64.exe
2021-09-18 08:18 - 2021-09-18 08:18 - 001313608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-09-18 08:18 - 2021-09-18 08:18 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-09-18 08:18 - 2021-09-18 08:18 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-09-18 08:18 - 2021-09-18 08:18 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-09-18 08:18 - 2021-09-18 08:18 - 000170496 _____ C:\WINDOWS\system32\DeviceUpdateCenterCsp.dll
2021-09-18 08:18 - 2021-09-18 08:18 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshom.ocx
2021-09-18 08:18 - 2021-09-18 08:18 - 000011355 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-09-18 08:17 - 2021-09-18 08:17 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll
2021-09-18 08:17 - 2021-09-18 08:17 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-09-18 08:17 - 2021-09-18 08:17 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll
2021-09-18 08:17 - 2021-09-18 08:17 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-09-18 08:17 - 2021-09-18 08:17 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-09-18 08:17 - 2021-09-18 08:17 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-09-18 08:17 - 2021-09-18 08:17 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-09-18 08:17 - 2021-09-18 08:17 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-09-18 08:17 - 2021-09-18 08:17 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-09-18 08:17 - 2021-09-18 08:17 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-09-18 08:17 - 2021-09-18 08:17 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-09-18 08:17 - 2021-09-18 08:17 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-09-18 08:17 - 2021-09-18 08:17 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2021-09-18 08:17 - 2021-09-18 08:17 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-09-18 08:08 - 2021-09-18 08:08 - 000000000 ___HD C:\$WinREAgent
2021-09-16 14:59 - 2021-09-16 14:59 - 000090275 _____ C:\Users\garan\Downloads\CV Boorová.pdf
2021-09-15 23:43 - 2021-09-16 22:06 - 000000000 ____D C:\Users\garan\Downloads\cundr 2021
2021-09-02 10:29 - 2021-06-03 15:56 - 000043408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\NvModuleTracker.sys
2021-08-23 09:35 - 2021-08-23 09:36 - 000000000 ____D C:\Users\garan\Desktop\fotky čížov
2021-08-23 09:19 - 2021-08-23 09:20 - 304938516 _____ C:\Users\garan\Downloads\zasilka-OZ3J5R8P6DRFX8D5.zip

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-09-19 21:49 - 2019-04-07 18:25 - 000000000 ____D C:\FRST
2021-09-19 21:48 - 2021-07-12 09:04 - 000000000 ____D C:\Orion Launcher
2021-09-19 21:48 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-09-19 21:48 - 2017-10-01 15:56 - 000000000 ____D C:\Users\garan\AppData\Roaming\discord
2021-09-19 21:39 - 2017-10-01 15:56 - 000000000 ____D C:\Users\garan\AppData\Local\Discord
2021-09-19 21:39 - 2017-10-01 14:32 - 000000000 ____D C:\Steam
2021-09-19 21:32 - 2017-11-11 21:26 - 000000000 ____D C:\Users\garan\AppData\Roaming\TS3Client
2021-09-19 21:20 - 2017-10-09 14:50 - 000000000 ____D C:\ProgramData\NVIDIA
2021-09-19 21:19 - 2017-10-01 14:28 - 000000000 ____D C:\Program Files (x86)\Google
2021-09-19 21:18 - 2020-08-12 21:27 - 000003118 _____ C:\WINDOWS\system32\Tasks\MSIAfterburner
2021-09-19 16:09 - 2020-08-12 21:20 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-09-19 10:01 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-09-19 09:58 - 2020-08-12 21:24 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-09-19 09:58 - 2019-12-07 16:43 - 000716770 _____ C:\WINDOWS\system32\perfh005.dat
2021-09-19 09:58 - 2019-12-07 16:43 - 000144948 _____ C:\WINDOWS\system32\perfc005.dat
2021-09-19 09:51 - 2020-08-12 21:27 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-09-19 09:51 - 2020-08-12 21:20 - 000008192 ___SH C:\DumpStack.log.tmp
2021-09-18 15:26 - 2020-08-12 21:20 - 000295448 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-09-18 15:26 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-09-18 15:25 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-09-18 15:25 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-09-18 15:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-09-18 15:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-09-18 15:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-09-18 15:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-09-18 15:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-09-18 15:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-09-18 15:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-09-18 15:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-09-18 15:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-09-18 15:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2021-09-18 15:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-09-18 15:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-09-18 15:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-09-18 15:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-09-18 15:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-09-18 15:25 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2021-09-18 08:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-09-18 08:23 - 2017-09-21 18:31 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-09-18 08:21 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-09-18 08:21 - 2017-09-21 18:31 - 135637312 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-09-18 08:09 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-09-18 08:08 - 2020-06-04 12:23 - 000002446 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-09-17 08:22 - 2017-12-23 09:21 - 000000000 ____D C:\Users\garan\AppData\Local\CrashDumps
2021-09-16 11:10 - 2018-05-24 22:08 - 000000000 ____D C:\Users\garan\AppData\Local\D3DSCache
2021-09-14 07:53 - 2017-10-01 14:29 - 000002311 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-09-12 13:11 - 2020-11-22 13:49 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-09-12 11:04 - 2019-07-19 21:38 - 000000000 ____D C:\Users\garan\AppData\Roaming\ICQ
2021-09-11 21:50 - 2020-08-12 21:27 - 000003354 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2552266715-2026576898-945052103-1002
2021-09-11 21:50 - 2020-08-12 20:23 - 000002387 _____ C:\Users\garan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-09-09 19:34 - 2018-02-28 08:38 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-09-02 10:37 - 2017-11-01 09:06 - 000000000 ____D C:\Users\garan\AppData\Local\NVIDIA Corporation
2021-09-02 10:29 - 2020-08-12 21:27 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-09-02 10:29 - 2020-08-12 21:27 - 000004106 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-09-02 10:29 - 2020-08-12 21:27 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-09-02 10:29 - 2020-08-12 21:27 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-09-02 10:29 - 2020-08-12 21:27 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-09-02 10:29 - 2020-08-12 21:27 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-09-02 10:29 - 2020-08-12 21:27 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-09-02 10:29 - 2020-08-12 21:27 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-09-02 10:29 - 2020-08-12 21:27 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-09-02 10:29 - 2020-08-12 21:27 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-09-02 10:29 - 2017-10-09 14:50 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-09-02 10:29 - 2017-10-09 14:50 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-09-02 10:29 - 2017-10-09 14:50 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2021-08-31 13:01 - 2017-09-21 18:32 - 000803176 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe

==================== Files in the root of some directories ========

2009-09-04 18:00 - 2009-09-04 18:00 - 001347354 _____ () C:\Program Files (x86)\Apr2005_d3dx9_25_x64.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 001078954 _____ () C:\Program Files (x86)\Apr2005_d3dx9_25_x86.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 001397822 _____ () C:\Program Files (x86)\Apr2006_d3dx9_30_x64.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 001115221 _____ () C:\Program Files (x86)\Apr2006_d3dx9_30_x86.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 000916430 _____ () C:\Program Files (x86)\Apr2006_MDX1_x86.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 004162630 _____ () C:\Program Files (x86)\Apr2006_MDX1_x86_Archive.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 000179125 _____ () C:\Program Files (x86)\Apr2006_XACT_x64.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 000133095 _____ () C:\Program Files (x86)\Apr2006_XACT_x86.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 000087101 _____ () C:\Program Files (x86)\Apr2006_xinput_x64.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 000046002 _____ () C:\Program Files (x86)\Apr2006_xinput_x86.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 000698612 _____ () C:\Program Files (x86)\APR2007_d3dx10_33_x64.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 000695857 _____ () C:\Program Files (x86)\APR2007_d3dx10_33_x86.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 001607358 _____ () C:\Program Files (x86)\APR2007_d3dx9_33_x64.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 001606031 _____ () C:\Program Files (x86)\APR2007_d3dx9_33_x86.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 000195758 _____ () C:\Program Files (x86)\APR2007_XACT_x64.cab
2009-09-04 18:00 - 2009-09-04 18:00 - 000151225 _____ () C:\Program Files (x86)\APR2007_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000096817 _____ () C:\Program Files (x86)\APR2007_xinput_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000053294 _____ () C:\Program Files (x86)\APR2007_xinput_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001350534 _____ () C:\Program Files (x86)\Aug2005_d3dx9_27_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001077644 _____ () C:\Program Files (x86)\Aug2005_d3dx9_27_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000182903 _____ () C:\Program Files (x86)\AUG2006_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000137235 _____ () C:\Program Files (x86)\AUG2006_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000087142 _____ () C:\Program Files (x86)\AUG2006_xinput_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000046058 _____ () C:\Program Files (x86)\AUG2006_xinput_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000852286 _____ () C:\Program Files (x86)\AUG2007_d3dx10_35_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000796859 _____ () C:\Program Files (x86)\AUG2007_d3dx10_35_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001800152 _____ () C:\Program Files (x86)\AUG2007_d3dx9_35_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001708144 _____ () C:\Program Files (x86)\AUG2007_d3dx9_35_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000198088 _____ () C:\Program Files (x86)\AUG2007_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000153004 _____ () C:\Program Files (x86)\AUG2007_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000867604 _____ () C:\Program Files (x86)\Aug2008_d3dx10_39_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000849167 _____ () C:\Program Files (x86)\Aug2008_d3dx10_39_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001794076 _____ () C:\Program Files (x86)\Aug2008_d3dx9_39_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001464664 _____ () C:\Program Files (x86)\Aug2008_d3dx9_39_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000121764 _____ () C:\Program Files (x86)\Aug2008_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000092996 _____ () C:\Program Files (x86)\Aug2008_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000271404 _____ () C:\Program Files (x86)\Aug2008_XAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000271038 _____ () C:\Program Files (x86)\Aug2008_XAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000919036 _____ () C:\Program Files (x86)\Aug2009_D3DCompiler_42_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000900598 _____ () C:\Program Files (x86)\Aug2009_D3DCompiler_42_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 003112103 _____ () C:\Program Files (x86)\Aug2009_d3dcsx_42_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 003319732 _____ () C:\Program Files (x86)\Aug2009_d3dcsx_42_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000232635 _____ () C:\Program Files (x86)\Aug2009_d3dx10_42_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000192131 _____ () C:\Program Files (x86)\Aug2009_d3dx10_42_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000136301 _____ () C:\Program Files (x86)\Aug2009_d3dx11_42_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000105036 _____ () C:\Program Files (x86)\Aug2009_d3dx11_42_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000930108 _____ () C:\Program Files (x86)\Aug2009_d3dx9_42_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000728456 _____ () C:\Program Files (x86)\Aug2009_d3dx9_42_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000122408 _____ () C:\Program Files (x86)\Aug2009_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000093098 _____ () C:\Program Files (x86)\Aug2009_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000273264 _____ () C:\Program Files (x86)\Aug2009_XAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000272634 _____ () C:\Program Files (x86)\Aug2009_XAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001155483 _____ () C:\Program Files (x86)\BDANT.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000975148 _____ () C:\Program Files (x86)\BDAXP.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001357968 _____ () C:\Program Files (x86)\Dec2005_d3dx9_28_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001079448 _____ () C:\Program Files (x86)\Dec2005_d3dx9_28_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000212799 _____ () C:\Program Files (x86)\DEC2006_d3dx10_00_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000191712 _____ () C:\Program Files (x86)\DEC2006_d3dx10_00_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001571154 _____ () C:\Program Files (x86)\DEC2006_d3dx9_32_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001574376 _____ () C:\Program Files (x86)\DEC2006_d3dx9_32_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000192467 _____ () C:\Program Files (x86)\DEC2006_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000145591 _____ () C:\Program Files (x86)\DEC2006_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000094024 _____ (Microsoft Corporation) C:\Program Files (x86)\DSETUP.dll
2009-09-04 18:01 - 2009-09-04 18:01 - 001691464 _____ (Microsoft Corporation) C:\Program Files (x86)\dsetup32.dll
2009-09-04 18:01 - 2009-09-04 18:01 - 000044440 _____ () C:\Program Files (x86)\dxdllreg_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 013264168 _____ () C:\Program Files (x86)\dxnt.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000525656 _____ (Microsoft Corporation) C:\Program Files (x86)\DXSETUP.exe
2009-09-04 18:01 - 2009-09-04 18:01 - 000095637 _____ () C:\Program Files (x86)\dxupdate.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001247499 _____ () C:\Program Files (x86)\Feb2005_d3dx9_24_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001013225 _____ () C:\Program Files (x86)\Feb2005_d3dx9_24_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001362796 _____ () C:\Program Files (x86)\Feb2006_d3dx9_29_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001084712 _____ () C:\Program Files (x86)\Feb2006_d3dx9_29_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000178359 _____ () C:\Program Files (x86)\Feb2006_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000132409 _____ () C:\Program Files (x86)\Feb2006_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000194667 _____ () C:\Program Files (x86)\FEB2007_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000147983 _____ () C:\Program Files (x86)\FEB2007_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001336002 _____ () C:\Program Files (x86)\Jun2005_d3dx9_26_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001064925 _____ () C:\Program Files (x86)\Jun2005_d3dx9_26_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000180777 _____ () C:\Program Files (x86)\JUN2006_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000133663 _____ () C:\Program Files (x86)\JUN2006_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000699044 _____ () C:\Program Files (x86)\JUN2007_d3dx10_34_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000698464 _____ () C:\Program Files (x86)\JUN2007_d3dx10_34_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001607766 _____ () C:\Program Files (x86)\JUN2007_d3dx9_34_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001607278 _____ () C:\Program Files (x86)\JUN2007_d3dx9_34_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000197114 _____ () C:\Program Files (x86)\JUN2007_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000152901 _____ () C:\Program Files (x86)\JUN2007_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000867828 _____ () C:\Program Files (x86)\JUN2008_d3dx10_38_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000849919 _____ () C:\Program Files (x86)\JUN2008_d3dx10_38_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001792600 _____ () C:\Program Files (x86)\JUN2008_d3dx9_38_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001463878 _____ () C:\Program Files (x86)\JUN2008_d3dx9_38_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000055154 _____ () C:\Program Files (x86)\JUN2008_X3DAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000021905 _____ () C:\Program Files (x86)\JUN2008_X3DAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000121054 _____ () C:\Program Files (x86)\JUN2008_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000093128 _____ () C:\Program Files (x86)\JUN2008_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000269620 _____ () C:\Program Files (x86)\JUN2008_XAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000269016 _____ () C:\Program Files (x86)\JUN2008_XAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000844884 _____ () C:\Program Files (x86)\Mar2008_d3dx10_37_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000818260 _____ () C:\Program Files (x86)\Mar2008_d3dx10_37_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001769862 _____ () C:\Program Files (x86)\Mar2008_d3dx9_37_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001443274 _____ () C:\Program Files (x86)\Mar2008_d3dx9_37_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000055050 _____ () C:\Program Files (x86)\Mar2008_X3DAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000021867 _____ () C:\Program Files (x86)\Mar2008_X3DAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000122336 _____ () C:\Program Files (x86)\Mar2008_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000093726 _____ () C:\Program Files (x86)\Mar2008_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000251186 _____ () C:\Program Files (x86)\Mar2008_XAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000226242 _____ () C:\Program Files (x86)\Mar2008_XAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001067160 _____ () C:\Program Files (x86)\Mar2009_d3dx10_41_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001040737 _____ () C:\Program Files (x86)\Mar2009_d3dx10_41_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001973702 _____ () C:\Program Files (x86)\Mar2009_d3dx9_41_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001612446 _____ () C:\Program Files (x86)\Mar2009_d3dx9_41_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000054600 _____ () C:\Program Files (x86)\Mar2009_X3DAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000021298 _____ () C:\Program Files (x86)\Mar2009_X3DAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000121506 _____ () C:\Program Files (x86)\Mar2009_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000092732 _____ () C:\Program Files (x86)\Mar2009_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000275036 _____ () C:\Program Files (x86)\Mar2009_XAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000273010 _____ () C:\Program Files (x86)\Mar2009_XAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000864600 _____ () C:\Program Files (x86)\Nov2007_d3dx10_36_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000803876 _____ () C:\Program Files (x86)\Nov2007_d3dx10_36_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001802058 _____ () C:\Program Files (x86)\Nov2007_d3dx9_36_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001709360 _____ () C:\Program Files (x86)\Nov2007_d3dx9_36_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000046144 _____ () C:\Program Files (x86)\NOV2007_X3DAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000018496 _____ () C:\Program Files (x86)\NOV2007_X3DAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000196754 _____ () C:\Program Files (x86)\NOV2007_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000148264 _____ () C:\Program Files (x86)\NOV2007_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000994154 _____ () C:\Program Files (x86)\Nov2008_d3dx10_40_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000965421 _____ () C:\Program Files (x86)\Nov2008_d3dx10_40_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001906870 _____ () C:\Program Files (x86)\Nov2008_d3dx9_40_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001550796 _____ () C:\Program Files (x86)\Nov2008_d3dx9_40_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000054522 _____ () C:\Program Files (x86)\Nov2008_X3DAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000021843 _____ () C:\Program Files (x86)\Nov2008_X3DAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000121786 _____ () C:\Program Files (x86)\Nov2008_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000092676 _____ () C:\Program Files (x86)\Nov2008_XACT_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000273960 _____ () C:\Program Files (x86)\Nov2008_XAudio_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000272603 _____ () C:\Program Files (x86)\Nov2008_XAudio_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000086029 _____ () C:\Program Files (x86)\Oct2005_xinput_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000045351 _____ () C:\Program Files (x86)\Oct2005_xinput_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001412894 _____ () C:\Program Files (x86)\OCT2006_d3dx9_31_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 001127209 _____ () C:\Program Files (x86)\OCT2006_d3dx9_31_x86.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000182361 _____ () C:\Program Files (x86)\OCT2006_XACT_x64.cab
2009-09-04 18:01 - 2009-09-04 18:01 - 000138009 _____ () C:\Program Files (x86)\OCT2006_XACT_x86.cab
2018-01-02 11:05 - 2018-01-02 11:05 - 000000017 _____ () C:\Users\garan\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================








Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-09-2021
Ran by garan (19-09-2021 21:50:48)
Running from C:\Users\garan\Desktop
Windows 10 Pro Version 21H1 19043.1237 (X64) (2020-08-12 19:27:59)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-2552266715-2026576898-945052103-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2552266715-2026576898-945052103-503 - Limited - Disabled)
garan (S-1-5-21-2552266715-2026576898-945052103-1002 - Administrator - Enabled) => C:\Users\garan
Guest (S-1-5-21-2552266715-2026576898-945052103-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2552266715-2026576898-945052103-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Albion Online (HKLM-x32\...\SandboxAlbionOnline) (Version: - Sandbox Interactive GmbH)
Albion Online Stats (HKLM\...\Albion Online Stats) (Version: 0.11.10 - )
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
AMD Catalyst Install Manager (HKLM\...\{66AFB595-BC05-2913-7696-6D58F9B733E1}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.6.0.0283 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\Discord) (Version: 0.0.309 - Discord Inc.)
Geeks3D FurMark 1.20.5.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: - Geeks3D)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 93.0.4577.82 - Google LLC)
ICQ New (verze 10.0.45564) (HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\icq.desktop) (Version: 10.0.45564 - Mail.ru LLC)
Mi PC Suite (HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\MiPhoneManager) (Version: - Xiaomi Inc.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 93.0.961.52 - Microsoft Corporation)
Microsoft Office Language Pack 2010 - Czech/èeština (HKLM-x32\...\Office14.OMUI.cs-cz) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\OneDriveSetup.exe) (Version: 21.160.0808.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B981965-2FBC-433C-B4B3-E183EE97CD29}) (Version: 2.83.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29112 (HKLM-x32\...\{0f770e99-3916-4b0c-8f9b-83822826bcbf}) (Version: 14.27.29112.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.27.29112 (HKLM-x32\...\{be826f5f-eda5-45a2-a3fe-c2cb5c1b9842}) (Version: 14.27.29112.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mount and Blade: Warband (HKLM-x32\...\1207666913_is1) (Version: 2.036_(1.172) - GOG.com)
MSI Afterburner 4.4.2 (HKLM-x32\...\Afterburner) (Version: 4.4.2 - MSI Co., LTD)
Npcap (HKLM-x32\...\NpcapInst) (Version: 1.20 - Nmap Project)
NVIDIA FrameView SDK 1.1.4923.29968894 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29968894 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.23.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.23.0.74 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.40 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 465.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 465.89 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Pidgin (HKLM-x32\...\Pidgin) (Version: 2.12.0 - )
QIP Internet Guardian (HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\QipGuard) (Version: - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8746.1 - Realtek Semiconductor Corp.)
RivaTuner Statistics Server 7.0.2 (HKLM-x32\...\RTSS) (Version: 7.0.2 - Unwinder)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 Language Pack (KB2687449) 32-Bit Edition (HKLM-x32\...\{90140000-0100-0405-0000-0000000FF1CE}_Office14.OMUI.cs-cz_{1FCBAAF2-0321-4986-8DAE-5F2891EC6E8E}) (Version: - Microsoft)
Sony Media Manager 2.2 (HKLM-x32\...\{878D2EB2-2D55-42A9-955E-1E08F28529FD}) (Version: 2.2.136 - Sony)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.6 - TeamSpeak Systems GmbH)
Twitch (HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Uninstall Orion Launcher (HKLM-x32\...\{9759746F-CA20-4A89-AD9B-F82E122D67D5}_is1) (Version: 2.0.0.0 - )
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 29.0 - Ubisoft)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
World of Warcraft Classic (HKLM-x32\...\World of Warcraft Classic) (Version: - Blizzard Entertainment)

Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-07] (Autodesk Inc.)
IrfanView64 -> C:\Program Files\WindowsApps\30067IrfanSkiljanIrfanVie.IrfanView64_4.5.8.0_x64__psgec73n2n7ne [2021-06-10] (Irfan Skiljan (IrfanView))
Keeper - Password Manager & Secure File Storage -> C:\Program Files\WindowsApps\KeeperSecurityInc.Keeper_14.0.33.0_x64__kejf07qmg0jnm [2019-07-30] (Keeper Security Inc)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-27] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-27] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.7290.0_x64__8wekyb3d8bbwe [2021-08-05] (Microsoft Studios) [MS Ad]
Plex -> C:\Program Files\WindowsApps\CAF9E577.Plex_3.2.20.0_x64__aam28m9va5cke [2017-09-21] (Plex)
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.42152.0_x64__8wekyb3d8bbwe [2021-08-25] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6671064 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - D:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\atiacm64.dll [2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2021-03-25] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2017-10-04 20:33 - 2015-05-08 14:26 - 000104448 _____ () [File not signed] C:\Program Files (x86)\ASUS\AXSP\1.02.00\ATKEX.dll
2017-10-04 20:33 - 2021-09-19 09:51 - 000033280 _____ () [File not signed] C:\Program Files (x86)\ASUS\AXSP\1.02.00\PEbiosinterface32.dll
2018-07-17 14:28 - 2016-07-21 10:54 - 000137728 _____ () [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2018-07-17 14:28 - 2017-09-12 10:34 - 001506304 _____ () [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 000817152 _____ () [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Device.dll
2015-08-04 00:25 - 2015-08-04 00:25 - 000214528 _____ () [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 003650560 _____ () [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Platform.dll
2015-08-04 00:14 - 2015-08-04 00:14 - 000005120 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\atiamcsy.dll
2018-05-04 17:09 - 2017-09-27 17:30 - 000489984 _____ (Newtonsoft) [File not signed] [File is in use] C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\Newtonsoft.Json.dll
2018-05-04 17:09 - 2018-01-26 17:08 - 000088064 _____ (Wondershare) [File not signed] [File is in use] C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppCollect.dll
2018-05-04 17:09 - 2018-01-26 17:08 - 000200192 _____ (Wondershare) [File not signed] [File is in use] C:\Program Files (x86)\Wondershare\WAF\2.4.3.236\WsAppCommon.dll
2018-07-17 14:28 - 2017-09-12 10:36 - 000708608 _____ (Wondershare) [File not signed] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSProducstInfo.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\garan\Data aplikací:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\garan\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> D:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> D:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-03-18 23:03 - 2017-03-18 23:01 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2552266715-2026576898-945052103-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\garan\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{179d9455-7326-4233-a182-f594b3f90c83}.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\StartupApproved\Run: => "QIP Internet Guardian"
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\StartupApproved\Run: => "MiPhoneManager"
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\StartupApproved\Run: => "小米云服务"
HKU\S-1-5-21-2552266715-2026576898-945052103-1002\...\StartupApproved\Run: => "GalaxyClient"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{11D52E68-8089-47EB-AD19-DF347BBEBD6A}C:\program files (x86)\google\chrome\application\chrome.exe] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{18C6C733-01C0-419C-B1B9-09D47B6A571E}C:\program files (x86)\google\chrome\application\chrome.exe] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{6743EA4D-0475-4CF2-9B97-170A176BFC68}] => (Allow) D:\Steam\steam.exe (Valve -> Valve Corporation)
FirewallRules: [{67C5544F-89C4-4F49-BC53-87A5725B741F}] => (Allow) D:\Steam\steam.exe (Valve -> Valve Corporation)
FirewallRules: [{2B53C929-EAAF-4DA4-A1D1-3642E845EB82}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{F319636E-7CDA-4E25-8620-1B5D83F782A4}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{7D355A2A-8EA4-4FD3-9FF7-45248EC3FDFB}] => (Allow) D:\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )
FirewallRules: [{497CB709-3042-47D7-ABDD-F4E1AA9BCE45}] => (Allow) D:\Steam\SteamApps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )
FirewallRules: [{2368539B-23E9-49DE-9E97-D1354A267D58}] => (Allow) C:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG CORPORATION -> PUBG Corporation)
FirewallRules: [{39C99BCB-6FE4-455F-AB83-0166BA4FB51C}] => (Allow) C:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG CORPORATION -> PUBG Corporation)
FirewallRules: [{157C8D35-17D5-46CA-ADEE-CF4EC9C811F0}] => (Allow) C:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{8420A209-0E8B-4527-A3B9-C5E8AFBDB06A}] => (Allow) C:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [TCP Query User{B7E489BA-4285-455D-BB92-4777932EBDC4}C:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (PUBG CORPORATION -> Bluehole GinnoGames, Inc.)
FirewallRules: [UDP Query User{CB3FD395-0007-4224-BC83-D0DCFB145303}C:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (PUBG CORPORATION -> Bluehole GinnoGames, Inc.)
FirewallRules: [{352552F3-E02A-46F6-9DD4-4606FBE8CF49}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{05BE623E-95E3-4BD0-8D8F-C8DF1F37F460}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{06BB4E0C-9093-43C0-B354-780A1EE4D182}D:\sracky\fotky_mobil\1311774701_1311841815_uoam\uoam.exe] => (Allow) D:\sracky\fotky_mobil\1311774701_1311841815_uoam\uoam.exe () [File not signed]
FirewallRules: [UDP Query User{813264B6-A51A-47ED-9ADD-2E752CE29678}D:\sracky\fotky_mobil\1311774701_1311841815_uoam\uoam.exe] => (Allow) D:\sracky\fotky_mobil\1311774701_1311841815_uoam\uoam.exe () [File not signed]
FirewallRules: [{1E8D1E7F-160C-42F8-9444-075F1A0B46DE}] => (Allow) D:\Steam\SteamApps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe => No File
FirewallRules: [{A7016027-5FE2-4C24-9616-262B084415F1}] => (Allow) D:\Steam\SteamApps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe => No File
FirewallRules: [{680E53E1-793E-4E8E-BAFB-DDEBE2C74F4E}] => (Allow) D:\Steam\SteamApps\common\Day of Defeat Source\hl2.exe (Valve -> )
FirewallRules: [{0E950436-07BB-4B16-AE46-FBBDD07CC807}] => (Allow) D:\Steam\SteamApps\common\Day of Defeat Source\hl2.exe (Valve -> )
FirewallRules: [{D576CE79-CC4A-4069-B8FF-AD060E390BD5}] => (Allow) D:\Steam\SteamApps\common\Half-Life 2 Deathmatch\hl2.exe (Valve -> )
FirewallRules: [{7D16F7C4-9749-44C1-BA57-3A4B450AA3BA}] => (Allow) D:\Steam\SteamApps\common\Half-Life 2 Deathmatch\hl2.exe (Valve -> )
FirewallRules: [{87219C59-E995-4307-8387-220FECCDB6E8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D10C4B71-E1CC-4030-873E-5F41222BC029}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{3DCA79D8-DBD0-4AD7-B14F-E3446802A144}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B54F83F0-2272-4CA6-943A-67AA26743E8E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{ABF58DE2-A334-4EFF-8B50-0C2CB17DF223}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

18-09-2021 08:07:37 Instalační služba modulů systému Windows

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (09/18/2021 11:17:09 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Data (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (09/18/2021 09:03:50 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Data (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (09/17/2021 08:22:21 AM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program MSIAfterburner.exe.

Program: MSIAfterburner.exe
Soubor:

Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.

Další údaje
Hodnota chyby: C000026E
Typ disku: 0

Error: (09/17/2021 08:22:21 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MSIAfterburner.exe, verze: 0.0.0.0, časové razítko: 0x5a32bb91
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.1110, časové razítko: 0x8a32a22a
Kód výjimky: 0xc0000006
Posun chyby: 0x00039f6f
ID chybujícího procesu: 0x35dc
Čas spuštění chybující aplikace: 0x01d7ab8c5df26487
Cesta k chybující aplikaci: D:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 34ceabdd-18d1-4d06-84fc-c3eebd3579b9
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (09/04/2021 01:44:52 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Data (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (09/04/2021 09:33:26 AM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program MSIAfterburner.exe.

Program: MSIAfterburner.exe
Soubor:

Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.

Další údaje
Hodnota chyby: C000026E
Typ disku: 0

Error: (09/04/2021 09:33:26 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MSIAfterburner.exe, verze: 0.0.0.0, časové razítko: 0x5a32bb91
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.1110, časové razítko: 0x8a32a22a
Kód výjimky: 0xc0000006
Posun chyby: 0x00039f6f
ID chybujícího procesu: 0x2128
Čas spuštění chybující aplikace: 0x01d7a15f244c5f6f
Cesta k chybující aplikaci: D:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 1787ee38-07af-4218-bb1f-b8eca1f35e6c
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (09/04/2021 09:33:23 AM) (Source: SideBySide) (EventID: 59) (User: )
Description: Generování kontextu aktivace pro D:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe se nezdařilo. Chyba v souboru manifestu nebo zásady D:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe na řádku 0.
Neplatná syntaxe XML.


System errors:
=============
Error: (09/19/2021 09:52:20 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba SysMain byla ukončena s následující chybou:
Parametr není správný.

Error: (09/17/2021 10:02:48 AM) (Source: DCOM) (EventID: 10010) (User: IVO)
Description: Server Microsoft.Windows.ContentDeliveryManager_10.0.19041.1023_neutral_neutral_cw5n1h2txyewy!App.AppXwdz8g2fxr36xz0tdtagygnvemf85s7gg.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (09/17/2021 08:53:47 AM) (Source: DCOM) (EventID: 10010) (User: IVO)
Description: Server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} se v daném časovém limitu neregistroval u služby DCOM.

Error: (09/17/2021 08:53:47 AM) (Source: DCOM) (EventID: 10010) (User: IVO)
Description: Server Microsoft.AAD.BrokerPlugin_1000.19041.1023.0_neutral_neutral_cw5n1h2txyewy!Windows.Security.Authentication.Web.Core.BackgroundGetTokenTask.ClassId.WebAccountProvider se v daném časovém limitu neregistroval u služby DCOM.

Error: (09/17/2021 08:22:19 AM) (Source: disk) (EventID: 15) (User: )
Description: Zařízení \Device\Harddisk1\DR4 ještě není připraveno pro přístup.

Error: (09/17/2021 08:22:19 AM) (Source: disk) (EventID: 15) (User: )
Description: Zařízení \Device\Harddisk1\DR4 ještě není připraveno pro přístup.

Error: (09/17/2021 08:22:19 AM) (Source: disk) (EventID: 15) (User: )
Description: Zařízení \Device\Harddisk1\DR4 ještě není připraveno pro přístup.

Error: (09/17/2021 08:22:19 AM) (Source: disk) (EventID: 15) (User: )
Description: Zařízení \Device\Harddisk1\DR4 ještě není připraveno pro přístup.


Windows Defender:
================
Date: 2021-09-19 12:35:14
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {B881371F-5EE2-44AB-9242-D57E507AF4F5}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-09-16 11:09:51
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {939766B8-6D70-4717-A3CE-159E045E638B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-09-15 00:03:08
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {CD93EE34-7C15-4C5B-A639-F402EF53CC8B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-09-04 13:44:20
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {EF659338-DBE5-42CE-9BCA-D9F7003B7CAF}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2021-09-03 09:53:45
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {BF837103-023E-4BAD-8DC4-D63784D17420}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

==================== Memory info ===========================

BIOS: American Megatrends Inc. 1708 04/10/2013
Motherboard: ASUSTeK COMPUTER INC. M5A99X EVO
Processor: AMD FX(tm)-8300 Eight-Core Processor
Percentage of memory in use: 18%
Total physical RAM: 24521.33 MB
Available physical RAM: 19917.66 MB
Total Virtual: 28105.33 MB
Available Virtual: 21753.55 MB

==================== Drives ================================

Drive c: (System SSD) (Fixed) (Total:231.83 GB) (Free:56.95 GB) NTFS
Drive d: (Data) (Fixed) (Total:232.88 GB) (Free:33.46 GB) NTFS

\\?\Volume{5e0ce63e-0d13-4fe8-9310-05c095af23aa}\ (Obnovení) (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{d8f99050-8726-4dc2-a8cc-9455ec05db4b}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS
\\?\Volume{9dd90eb0-d383-4f45-8adc-edd4267e3174}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 232.9 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 26312631)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=42)

==================== End of Addition.txt =======================

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15193
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: kontrola logu, diky moc!

#2 Příspěvek od JaRon »

ahoj,
citat:
Tvorba fixlistu pro FRST
•Spustte poznamkovy blok (Start-spustit-notepad)
•Zkopirujte skript >>

Kód: Vybrat vše

Start
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
U4 npcap_wifi; no ImagePath
AlternateDataStreams: C:\Users\garan\Data aplikací:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\garan\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
FirewallRules: [{1E8D1E7F-160C-42F8-9444-075F1A0B46DE}] => (Allow) D:\Steam\SteamApps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe => No File
FirewallRules: [{A7016027-5FE2-4C24-9616-262B084415F1}] => (Allow) D:\Steam\SteamApps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe => No File



EmptyTemp:
Reboot:
End
•Ulozte vytvoreny TXT jako fixlist.txt
•Presunte vytvoreny fixlist vedle FRST

:arrow: Spustte znovu FRST.exe
•Kliknete na Fix
•Probehne oprava a vytvori log Fixlog.txt

:arrow: Restart PC a dejte mi sem fixlog.txt
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

Shag
Návštěvník
Návštěvník
Příspěvky: 35
Registrován: 08 led 2013 13:21

Re: kontrola logu, diky moc!

#3 Příspěvek od Shag »

Fix result of Farbar Recovery Scan Tool (x64) Version: 15-09-2021
Ran by garan (20-09-2021 11:41:07) Run:3
Running from C:\Users\garan\Desktop
Loaded Profiles: garan
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
U4 npcap_wifi; no ImagePath
AlternateDataStreams: C:\Users\garan\Data aplikací:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\garan\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
FirewallRules: [{1E8D1E7F-160C-42F8-9444-075F1A0B46DE}] => (Allow) D:\Steam\SteamApps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe => No File
FirewallRules: [{A7016027-5FE2-4C24-9616-262B084415F1}] => (Allow) D:\Steam\SteamApps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe => No File



EmptyTemp:
Reboot:
End
*****************

HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully
HKLM\System\CurrentControlSet\Services\npcap_wifi => removed successfully
npcap_wifi => service removed successfully
C:\Users\garan\Data aplikací => ":00e481b5e22dbe1f649fcddd505d3eb7" ADS removed successfully
"C:\Users\garan\AppData\Roaming" => ":00e481b5e22dbe1f649fcddd505d3eb7" ADS not found.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1E8D1E7F-160C-42F8-9444-075F1A0B46DE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A7016027-5FE2-4C24-9616-262B084415F1}" => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 10248192 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 957999461 B
Java, Flash, Steam htmlcache => 558108794 B
Windows/system/drivers => 3727313 B
Edge => 1365325 B
Chrome => 1164936854 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 722896 B
garan => 0 B

RecycleBin => 76099 B
EmptyTemp: => 2.5 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 11:44:03 ====

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15193
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: kontrola logu, diky moc!

#4 Příspěvek od JaRon »

pokial nie su problemy, tak hotovo :)
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

Shag
Návštěvník
Návštěvník
Příspěvky: 35
Registrován: 08 led 2013 13:21

Re: kontrola logu, diky moc!

#5 Příspěvek od Shag »

DIKY MOC! Muzete lock ;)

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15193
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: kontrola logu, diky moc!

#6 Příspěvek od JaRon »

Rado sa stalo :)
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

Zamčeno