Dobrý den, mohu poprosit o preventivní kontrolu logu? Děkuji.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 05-02-2022
Ran by Petr (administrator) on DESKTOP-MQ5PIOV (11-02-2022 14:03:01)
Running from C:\Users\Petr\Desktop
Loaded Profiles: Petr
Platform: Microsoft Windows 10 Pro Version 21H1 19043.1466 (X64) Language: Čeština (Česko)
Default browser: Opera
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Windows\DAODx.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0376032.inf_amd64_1a2e19f1369fd940\B375758\atieclxx.exe
(Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0376032.inf_amd64_1a2e19f1369fd940\B375758\atiesrxx.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\EpicWebHelper.exe <2>
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(Even Balance, Inc. -> ) C:\Windows\System32\PnkBstrA.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.122\GoogleCrashHandler64.exe
(HP) [File not signed] C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\avp.exe
(Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\avpui.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Opera Software AS -> Opera Software) C:\Users\Petr\AppData\Local\Programs\Opera\83.0.4254.27\opera_crashreporter.exe
(Opera Software AS -> Opera Software) C:\Users\Petr\AppData\Local\Programs\Opera\opera.exe <32>
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtWebEngineProcess.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11102832 2021-07-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [StatusAlerts] => C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe [330176 2014-08-19] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35320448 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3145920 2021-12-02] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [14858824 2020-12-23] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\Run: [iFunBox] => C:\Program Files (x86)\i-Funbox DevTeam\iFunBox.exe [7754240 2019-08-08] (i-Funbox.com) [File not signed]
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\Run: [CCleanerBrowserAutoLaunch_5A829DFA1AFA7F676ABE6FB5CF72AD00] => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2572072 2022-01-20] (Piriform Software Ltd -> Piriform Software)
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33648608 2022-02-09] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\Run: [DeepL] => C:\Users\Petr\AppData\Local\DeepL\app-3.2.3939\DeepL.exe [141872 2022-01-30] (DeepL GmbH -> DeepL GmbH)
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\Run: [Opera Browser Assistant] => C:\Users\Petr\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4105424 2021-10-14] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\MountPoints2: {54c26ecf-1097-11ea-ba65-107b44f19dfb} - "J:\setup.exe"
HKLM\...\Windows x64\Print Processors\hpcpp117: C:\Windows\System32\spool\prtprocs\x64\hpcpp117.DLL [467456 2013-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\EPSON PX730 Series 64MonitorBE: C:\WINDOWS\system32\E_ILMHQE.DLL [120320 2011-04-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [558592 2012-11-12] (SEIKO EPSON CORPORATION) [File not signed]
HKLM\...\Print\Monitors\HP Standard TCP/IP Port: C:\WINDOWS\system32\HpTcpMon.dll [331264 2009-09-16] (Hewlett Packard) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\97.0.13836.102\Installer\chrmstp.exe [2022-01-27] (Piriform Software Ltd -> Piriform Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\98.0.4758.82\Installer\chrmstp.exe [2022-02-09] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.92\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0078BC36-4613-4DDB-A0CC-72862D8867B5} - System32\Tasks\ASUS\RunDAOD => C:\Windows\DAODx.exe [32768 2009-03-30] () [File not signed]
Task: {03B14CE9-D6FC-4BF6-8C4A-901F6CE9555C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-04] (Google LLC -> Google LLC)
Task: {22CA1C79-A822-4215-9D7D-447374F199E0} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe [743488 2021-05-02] (Kaspersky Lab JSC -> AO Kaspersky Lab)
Task: {2D7E6EB7-AEF2-4869-AAB2-FCDCA436F2BE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {357BAEB5-0366-4793-85D0-D55D3320C9C8} - System32\Tasks\Opera scheduled assistant Autoupdate 1580107984 => C:\Users\Petr\AppData\Local\Programs\Opera\launcher.exe [2333904 2022-01-26] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Petr\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {4001D54D-D799-451C-A7B1-B27E3E1B19E0} - System32\Tasks\kpm_tray.exe => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_tray.exe [622168 2021-03-11] (Kaspersky Lab JSC -> AO Kaspersky Lab)
Task: {48AEF44A-366E-498A-BB8A-3B3955E0AF2E} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-02-05] (Piriform Software Ltd -> Piriform Software)
Task: {5557CC41-D883-4E6C-B2FB-0D6992968923} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709048 2022-01-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {63F5CF10-6311-4363-8C11-14B836C54DFF} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-02-05] (Piriform Software Ltd -> Piriform Software)
Task: {6BF10C59-555A-4C25-9F3C-B398F201651E} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [55288 2022-01-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {7D3D71EE-3D24-487E-97E9-4AC0CD21CCE7} - System32\Tasks\Opera scheduled Autoupdate 1567089129 => C:\Users\Petr\AppData\Local\Programs\Opera\launcher.exe [2333904 2022-01-26] (Opera Software AS -> Opera Software)
Task: {861E2FD5-BBF5-4044-9DA8-277721BABEF4} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709048 2022-01-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {8756346F-0772-4728-B81E-AEB9AA43DCA3} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {8C8EC371-19A2-4939-BF45-953086A95465} - System32\Tasks\CCleanerSkipUAC - Petr => C:\Program Files\CCleaner\CCleaner.exe [29453952 2022-01-25] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {906997E9-4C07-4FEA-AC5E-D717C2670974} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1790184 2021-04-29] (Avast Software s.r.o. -> Avast Software)
Task: {96FCB781-7E11-407D-8747-4FDD0802ED97} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [260600 2022-01-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {9DB74141-53E6-484C-A201-8E6E64D145F6} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-01-25] (Piriform Software Ltd -> Piriform)
Task: {A3374768-BE5C-4D8B-9955-458E118087A6} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2572072 2022-01-20] (Piriform Software Ltd -> Piriform Software)
Task: {AC4302E4-841E-400B-92CB-A6A28B234CE0} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2572072 2022-01-20] (Piriform Software Ltd -> Piriform Software)
Task: {BA4EEA76-3212-4002-B131-2EBDC0914466} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [862 2019-04-30] () [File not signed]
Task: {C2A1A89D-4115-4D8A-B596-274822F19895} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-04] (Google LLC -> Google LLC)
Task: {D94F3E2F-FFCB-48B1-A03A-48D8DB2BB455} - System32\Tasks\HPLJCustParticipation => C:\Program Files (x86)\HP\HPLJUT\HPLJUTSCH.exe [89840 2014-10-19] (Hewlett-Packard Company -> Hewlett Packard)
Task: {DAEC6F55-3FD5-4062-8DFE-CD69B6EC2547} - System32\Tasks\AMD ThankingURL => C:\Program Files\AMD\CIM\Bin64\Setup.exe [1118200 2022-01-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {E84585DE-E469-4697-AE97-407BE32A50AF} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1709048 2022-01-18] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{59f1904d-f80a-439d-815e-b3875d5fa31f}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{853c0339-6f19-4842-b28f-9ea2a152e32b}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Petr\AppData\Local\Microsoft\Edge\User Data\Default [2022-02-11]
Edge Extension: (Ochrana Kaspersky) - C:\Users\Petr\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2022-01-04]
Edge Profile: C:\Users\Petr\AppData\Local\Microsoft\Edge\User Data\Guest Profile [2022-02-11]
Edge HKU\S-1-5-21-1509276542-816349280-2872763448-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
FireFox:
========
FF DefaultProfile: rfpgykbk.default
FF ProfilePath: C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\rfpgykbk.default [2021-05-02]
FF ProfilePath: C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\w62eji53.default-release-1625304406484 [2022-02-11]
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\FFExt\light_plugin_firefox\addon.xpi => not found
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\FFExt\light_plugin_firefox\addon.xpi => not found
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [File not signed]
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2021-02-05] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2021-02-05] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2021-07-03] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2021-07-03] <==== ATTENTION
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default [2022-02-11]
CHR Extension: (Prezentace) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-08-29]
CHR Extension: (Ochrana Kaspersky) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2022-01-27]
CHR Extension: (Dokumenty) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-08-29]
CHR Extension: (Disk Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-04]
CHR Extension: (YouTube) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-08-29]
CHR Extension: (Vyhledávání Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2019-08-29]
CHR Extension: (Tabulky) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-08-29]
CHR Extension: (Dokumenty Google offline) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-01-27]
CHR Extension: (EPUBReader) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhhclmfgfllimlhabjkgkeebkbiadflb [2021-05-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-10]
CHR Extension: (Gmail) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-04]
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
Opera:
=======
OPR Profile: C:\Users\Petr\AppData\Roaming\Opera Software\Opera Stable [2022-02-11]
OPR DownloadDir: D:\down
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Petr\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-01-27]
OPR Extension: (Youtube Downloader) - C:\Users\Petr\AppData\Roaming\Opera Software\Opera Stable\Extensions\enpmcplhdgmglcikkcgoeepoalooagbg [2021-06-26]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\Petr\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2021-08-13]
OPR Extension: (Video oDownloader) - C:\Users\Petr\AppData\Roaming\Opera Software\Opera Stable\Extensions\khieimlonldpclgmgpadhhbggikgfkab [2021-06-26]
OPR Extension: (Install Chrome Extensions) - C:\Users\Petr\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2021-05-04]
OPR Extension: (Adblock Plus - free ad blocker) - C:\Users\Petr\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2022-01-12]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\avp.exe [184768 2021-06-10] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8628224 2020-06-13] (BattlEye Innovations e.K. -> )
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-02-05] (Piriform Software Ltd -> Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\97.0.13836.102\elevation_service.exe [1798360 2022-01-20] (Piriform Software Ltd -> Piriform Software)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2021-02-05] (Piriform Software Ltd -> Piriform Software)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4452456 2019-11-30] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [781440 2021-10-17] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1741384 2020-12-23] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6821960 2020-12-23] (GOG Sp. z o.o. -> GOG.com)
R2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [176128 2014-06-24] (HP) [File not signed]
S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [357272 2021-03-11] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 KSDE4.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe [619752 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2011-04-13] (Hewlett-Packard) [File not signed]
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2559704 2021-12-02] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3477728 2021-12-02] (Electronic Arts, Inc. -> Electronic Arts)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2011-04-13] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2021-06-22] (Even Balance, Inc. -> )
S3 Rockstar Service; D:\hry\Nová složka\Launcher\RockstarService.exe [2017072 2021-11-25] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6137040 2022-01-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182128 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-03] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-03] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [33216 2021-12-02] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_edd3335a4253bf6d\amdsafd.sys [109520 2021-11-05] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0376032.inf_amd64_1a2e19f1369fd940\B375758\amdkmdag.sys [82950024 2022-01-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [65168 2021-08-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AsrSetupDrv3_0_38; C:\Windows\SysWOW64\Drivers\AsrSetupDrv3_0_38.sys [23304 2019-08-29] (ASROCK Incorporation -> RW-Everything) [File not signed]
R2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [314016 2020-04-13] (Tages SA -> )
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [237288 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159864 2021-06-29] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-11-30] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-11-30] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [105280 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [206600 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [119568 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [522504 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [689976 2021-11-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [1507648 2021-11-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [272168 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1049864 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [90896 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [104728 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [107328 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [78088 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [88328 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [48592 2018-03-16] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [287904 2022-01-12] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [319720 2022-01-12] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [115968 2022-01-12] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [229248 2022-01-13] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [150280 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [325400 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [294680 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [43680 2020-04-13] (Tages SA -> )
S3 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [69952 2020-02-03] (Insecure.Com LLC -> Insecure.Com LLC.)
R2 npf; C:\WINDOWS\system32\drivers\npf.sys [36600 2019-07-16] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43376 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-03] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-03] (Microsoft Windows -> Microsoft Corporation)
S2 AODDriver4.3.0; \??\C:\Program Files\AMD\Performance Profile Client\amd64\AODDriver2.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-02-11 14:03 - 2022-02-11 14:03 - 000030912 _____ C:\Users\Petr\Desktop\FRST.txt
2022-02-11 14:02 - 2022-02-11 14:02 - 000000000 ____D C:\Users\Petr\Desktop\FRST-OlderVersion
2022-02-10 15:42 - 2022-02-10 15:42 - 000000000 ___HD C:\$WinREAgent
2022-01-31 11:26 - 2022-01-31 11:26 - 000000167 _____ C:\Users\Petr\Desktop\adr.TXT
2022-01-27 11:53 - 2022-01-27 11:53 - 000000000 ____D C:\Users\Petr\AppData\LocalLow\AMD
2022-01-27 11:25 - 2022-02-11 08:50 - 000003116 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2022-01-27 11:20 - 2022-02-11 08:50 - 000003076 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2022-01-27 11:20 - 2022-01-27 11:20 - 000003488 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2022-01-27 11:20 - 2022-01-27 11:20 - 000003080 _____ C:\WINDOWS\system32\Tasks\StartDVR
2022-01-27 11:20 - 2022-01-27 11:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Software
2022-01-27 11:20 - 2022-01-27 11:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Link For Windows
2022-01-27 11:20 - 2022-01-27 11:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool
2022-01-27 11:18 - 2022-01-25 01:04 - 001885640 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-01-27 11:18 - 2022-01-25 01:04 - 001885640 _____ C:\WINDOWS\system32\vulkaninfo.exe
2022-01-27 11:18 - 2022-01-25 01:04 - 001460672 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-01-27 11:18 - 2022-01-25 01:04 - 001460672 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2022-01-27 11:18 - 2022-01-25 01:04 - 001123424 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-01-27 11:18 - 2022-01-25 01:04 - 001123424 _____ C:\WINDOWS\system32\vulkan-1.dll
2022-01-27 11:18 - 2022-01-25 01:04 - 000976592 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2022-01-27 11:18 - 2022-01-25 01:04 - 000976592 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2022-01-27 11:18 - 2022-01-25 01:04 - 000856992 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2022-01-27 11:18 - 2022-01-25 01:04 - 000797600 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2022-01-27 11:18 - 2022-01-25 01:04 - 000673656 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2022-01-27 11:18 - 2022-01-25 01:04 - 000559528 _____ C:\WINDOWS\system32\GameManager64.dll
2022-01-27 11:18 - 2022-01-25 01:04 - 000526240 _____ C:\WINDOWS\system32\atieah64.exe
2022-01-27 11:18 - 2022-01-25 01:04 - 000501128 _____ C:\WINDOWS\system32\dgtrayicon.exe
2022-01-27 11:18 - 2022-01-25 01:04 - 000492936 _____ C:\WINDOWS\system32\EEURestart.exe
2022-01-27 11:18 - 2022-01-25 01:04 - 000469408 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2022-01-27 11:18 - 2022-01-25 01:04 - 000420800 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2022-01-27 11:18 - 2022-01-25 01:04 - 000393080 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2022-01-27 11:18 - 2022-01-25 01:04 - 000344968 _____ C:\WINDOWS\system32\clinfo.exe
2022-01-27 11:18 - 2022-01-25 01:04 - 000262568 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2022-01-27 11:18 - 2022-01-25 01:04 - 000220552 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2022-01-27 11:18 - 2022-01-25 01:04 - 000202512 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2022-01-27 11:18 - 2022-01-25 01:04 - 000194952 _____ C:\WINDOWS\system32\mantle64.dll
2022-01-27 11:18 - 2022-01-25 01:04 - 000179080 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2022-01-27 11:18 - 2022-01-25 01:04 - 000178080 _____ C:\WINDOWS\system32\mantleaxl64.dll
2022-01-27 11:18 - 2022-01-25 01:04 - 000167304 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2022-01-27 11:18 - 2022-01-25 01:04 - 000165880 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2022-01-27 11:18 - 2022-01-25 01:04 - 000156040 _____ C:\WINDOWS\SysWOW64\mantle32.dll
2022-01-27 11:18 - 2022-01-25 01:04 - 000142768 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2022-01-27 11:18 - 2022-01-25 01:04 - 000141704 _____ C:\WINDOWS\SysWOW64\mantleaxl32.dll
2022-01-27 11:18 - 2022-01-25 01:04 - 000141224 _____ C:\WINDOWS\system32\atidxx64.dll
2022-01-27 11:18 - 2022-01-25 01:04 - 000113016 _____ C:\WINDOWS\SysWOW64\atidxx32.dll
2022-01-27 11:18 - 2022-01-25 01:04 - 000091552 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mcl64.dll
2022-01-27 11:18 - 2022-01-25 01:04 - 000076192 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mcl32.dll
2022-01-27 11:18 - 2022-01-25 01:04 - 000047520 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2022-01-27 11:18 - 2022-01-25 01:04 - 000044448 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2022-01-27 11:18 - 2022-01-25 01:04 - 000028968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2022-01-27 11:18 - 2022-01-25 01:04 - 000028968 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2022-01-27 11:18 - 2022-01-25 01:03 - 001538480 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiacm64.dll
2022-01-27 11:18 - 2022-01-25 01:03 - 000943512 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2022-01-27 11:18 - 2022-01-25 01:03 - 000770968 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2022-01-27 11:18 - 2022-01-25 01:03 - 000468368 _____ C:\WINDOWS\system32\amdlogum.exe
2022-01-27 11:18 - 2022-01-25 01:03 - 000178264 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdihk32.dll
2022-01-27 11:18 - 2022-01-25 01:03 - 000150920 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2022-01-27 11:18 - 2022-01-25 01:03 - 000135064 _____ C:\WINDOWS\system32\amdxc64.dll
2022-01-27 11:18 - 2022-01-25 01:03 - 000133016 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2022-01-27 11:18 - 2022-01-25 01:03 - 000109976 _____ C:\WINDOWS\SysWOW64\amdxc32.dll
2022-01-27 11:18 - 2022-01-25 01:03 - 000072112 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll
2022-01-27 11:18 - 2022-01-25 01:02 - 069075376 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdhip64.dll
2022-01-27 11:18 - 2022-01-25 01:02 - 001713208 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll
2022-01-27 11:18 - 2022-01-25 01:02 - 001389216 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll
2022-01-27 11:18 - 2022-01-25 01:02 - 000558984 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2022-01-27 11:18 - 2022-01-25 01:02 - 000550880 _____ C:\WINDOWS\system32\amdmiracast.dll
2022-01-27 11:18 - 2022-01-25 01:02 - 000422304 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2022-01-27 11:18 - 2022-01-25 01:02 - 000161024 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2022-01-27 11:18 - 2022-01-25 01:02 - 000150616 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2022-01-27 11:18 - 2022-01-25 01:02 - 000150592 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2022-01-27 11:18 - 2022-01-25 01:02 - 000135800 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2022-01-27 11:18 - 2022-01-25 01:02 - 000121688 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2022-01-27 11:18 - 2022-01-25 01:02 - 000121688 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2022-01-27 11:17 - 2022-01-25 01:03 - 088761224 _____ C:\WINDOWS\system32\amd_comgr.dll
2022-01-27 11:17 - 2022-01-25 01:03 - 073128856 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll
2022-01-27 11:08 - 2022-01-27 11:08 - 000000000 ____D C:\Users\Petr\AppData\Roaming\AMD
2022-01-27 11:08 - 2022-01-27 11:08 - 000000000 ____D C:\Users\Petr\AppData\Local\setup
2022-01-27 11:06 - 2022-01-27 11:06 - 000026754 _____ C:\Users\Petr\Documents\cc_20220127_110559.reg
2022-01-27 10:53 - 2022-01-27 10:53 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2022-01-27 10:53 - 2022-01-27 10:53 - 000000000 ____D C:\WINDOWS\system32\DAX3
2022-01-27 10:53 - 2022-01-27 10:53 - 000000000 ____D C:\WINDOWS\system32\DAX2
2022-01-27 10:53 - 2022-01-27 10:53 - 000000000 ____D C:\Program Files\Realtek
2022-01-27 10:53 - 2022-01-27 10:53 - 000000000 _____ C:\WINDOWS\system32\fpfftResultsFile.txt
2022-01-21 22:03 - 2022-01-21 22:05 - 000000443 _____ C:\Users\Petr\Desktop\chilli2022 list.TXT
2022-01-20 23:10 - 2022-01-20 23:10 - 049653130 _____ C:\Users\Petr\Desktop\Elektrotechnická SCHÉMATA a ZAPOJENÍ (Štěpán Berka).pdf
2022-01-19 07:56 - 2022-01-19 07:56 - 000000000 ____D C:\ProgramData\Propagation
2022-01-18 17:53 - 2022-01-18 17:53 - 000000620 _____ C:\Users\Petr\Desktop\chilli list.TXT
2022-01-18 06:54 - 2022-01-18 06:54 - 003471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2022-01-18 06:54 - 2022-01-18 06:54 - 003437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2022-01-18 06:45 - 2022-01-18 06:45 - 000569200 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2022-01-18 06:45 - 2022-01-18 06:45 - 000569200 _____ C:\WINDOWS\system32\atiapfxx.blb
2022-01-18 06:38 - 2022-01-18 06:38 - 056256608 _____ C:\WINDOWS\system32\amdxc64.so
2022-01-18 05:40 - 2022-01-18 05:40 - 001396824 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2022-01-18 05:40 - 2022-01-18 05:40 - 001396824 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2022-01-18 05:40 - 2022-01-18 05:40 - 000106584 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2022-01-18 03:55 - 2022-01-18 03:55 - 000010622 _____ C:\WINDOWS\system32\atiacmLocalisation.ini
2022-01-16 11:38 - 2022-01-16 11:38 - 000000000 ____D C:\Users\Petr\Documents\BioshockHD
2022-01-16 11:38 - 2022-01-16 11:38 - 000000000 ____D C:\Users\Petr\AppData\Roaming\BioshockHD
2022-01-16 11:16 - 2022-01-16 11:16 - 000000222 _____ C:\Users\Petr\Desktop\BioShock Remastered.url
2022-01-13 09:10 - 2022-01-13 09:10 - 000523776 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-01-13 09:10 - 2022-01-13 09:10 - 000464384 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-01-13 09:10 - 2022-01-13 09:10 - 000011797 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-01-12 09:47 - 2022-01-12 09:47 - 000319720 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys
2022-01-12 09:46 - 2022-01-13 15:11 - 000229248 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys
2022-01-12 09:46 - 2022-01-12 09:46 - 000287904 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys
2022-01-12 09:46 - 2022-01-12 09:46 - 000115968 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-02-11 14:03 - 2019-12-27 10:32 - 000000000 ____D C:\FRST
2022-02-11 14:02 - 2019-12-27 10:29 - 002311680 _____ (Farbar) C:\Users\Petr\Desktop\FRST64.exe
2022-02-11 13:58 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-02-11 13:42 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-02-11 13:41 - 2019-08-29 17:09 - 000000000 ____D C:\Program Files (x86)\Google
2022-02-11 13:29 - 2020-11-26 17:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-02-11 12:07 - 2019-08-31 19:11 - 000000000 ____D C:\Users\Petr\AppData\Roaming\vlc
2022-02-11 11:12 - 2019-11-24 19:56 - 000000000 ____D C:\Program Files (x86)\Steam
2022-02-11 11:11 - 2019-12-11 18:05 - 000000000 ____D C:\Program Files\CCleaner
2022-02-10 15:58 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-02-10 11:25 - 2021-01-02 10:04 - 000000000 ____D C:\Users\Petr\AppData\Local\AMD_Common
2022-02-10 11:09 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-02-10 10:19 - 2021-02-19 20:09 - 000150280 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klwfp.sys
2022-02-10 10:19 - 2021-02-19 20:08 - 000090896 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klim6.sys
2022-02-10 10:19 - 2020-10-21 23:12 - 000088328 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klpnpflt.sys
2022-02-10 10:19 - 2020-10-21 23:11 - 000105280 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klbackupdisk.sys
2022-02-10 10:19 - 2020-01-06 13:01 - 001049864 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klif.sys
2022-02-10 10:19 - 2020-01-06 13:01 - 000522504 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klflt.sys
2022-02-10 10:19 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-02-10 10:19 - 2019-10-29 15:13 - 000206600 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klbackupflt.sys
2022-02-10 10:19 - 2019-03-19 02:31 - 000294680 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\kneps.sys
2022-02-10 10:19 - 2019-03-18 02:11 - 000104728 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klkbdflt.sys
2022-02-10 10:19 - 2019-03-18 01:50 - 000107328 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klmouflt.sys
2022-02-10 10:19 - 2019-03-13 03:34 - 000325400 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klwtp.sys
2022-02-10 10:19 - 2019-03-13 01:45 - 000078088 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klpd.sys
2022-02-10 10:19 - 2019-03-12 23:23 - 000119568 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\kldisk.sys
2022-02-10 10:18 - 2021-02-19 20:08 - 000237288 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\cm_km.sys
2022-02-09 16:39 - 2019-08-29 14:13 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-02-09 16:37 - 2019-08-29 14:13 - 149611728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-02-09 09:07 - 2021-01-04 17:47 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-02-09 09:07 - 2021-01-04 17:47 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-02-07 21:22 - 2019-08-29 16:53 - 000000000 ____D C:\Users\Petr\AppData\Local\D3DSCache
2022-02-07 01:29 - 2020-11-26 17:48 - 000000000 ____D C:\Users\Petr
2022-02-06 20:25 - 2020-11-26 17:52 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-02-06 20:25 - 2019-12-07 15:43 - 000716770 _____ C:\WINDOWS\system32\perfh005.dat
2022-02-06 20:25 - 2019-12-07 15:43 - 000144948 _____ C:\WINDOWS\system32\perfc005.dat
2022-02-06 20:18 - 2020-11-26 17:55 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-02-06 20:18 - 2020-11-26 17:46 - 000008192 ___SH C:\DumpStack.log.tmp
2022-02-05 19:48 - 2020-06-03 23:44 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-02-05 19:48 - 2020-06-03 23:44 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-02-04 19:24 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-02-01 12:09 - 2020-11-26 17:55 - 000004198 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1567089129
2022-02-01 12:09 - 2019-08-29 15:32 - 000001447 _____ C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2022-01-30 09:18 - 2021-08-17 19:23 - 000002205 _____ C:\Users\Petr\Desktop\DeepL.lnk
2022-01-30 09:18 - 2021-08-17 19:23 - 000000000 ____D C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DeepL GmbH
2022-01-30 09:18 - 2021-08-17 19:23 - 000000000 ____D C:\Users\Petr\AppData\Local\DeepL
2022-01-28 09:16 - 2020-11-30 07:22 - 000003490 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6c41473c44a33
2022-01-28 09:16 - 2020-11-26 17:55 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-01-27 18:58 - 2021-02-05 09:53 - 000002387 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk
2022-01-27 18:58 - 2021-02-05 09:53 - 000002352 _____ C:\Users\Public\Desktop\CCleaner Browser.lnk
2022-01-27 18:58 - 2021-02-05 09:52 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser
2022-01-27 11:25 - 2020-12-19 09:47 - 000000000 ____D C:\Users\Petr\AppData\Local\AMD
2022-01-27 11:20 - 2021-07-10 18:30 - 000003160 _____ C:\WINDOWS\system32\Tasks\StartCN
2022-01-27 11:20 - 2019-08-29 16:53 - 000000000 ____D C:\Program Files\AMD
2022-01-27 11:16 - 2019-08-29 14:01 - 000000000 ____D C:\AMD
2022-01-27 11:08 - 2019-08-29 16:54 - 000000000 ____D C:\Program Files (x86)\AMD
2022-01-27 11:04 - 2020-11-26 17:55 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-01-27 10:58 - 2020-09-20 13:47 - 000000000 ____D C:\WINDOWS\system32\AMD
2022-01-26 22:15 - 2020-11-26 17:55 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1509276542-816349280-2872763448-1001
2022-01-26 22:15 - 2020-11-26 17:48 - 000002419 _____ C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-01-25 01:03 - 2020-12-19 09:41 - 000210704 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdihk64.dll
2022-01-21 14:27 - 2021-02-05 21:58 - 000003474 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2022-01-21 14:27 - 2021-02-05 21:58 - 000003350 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2022-01-20 09:20 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-01-20 09:20 - 2019-08-29 14:01 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2022-01-18 07:07 - 2021-05-26 18:38 - 002413576 _____ (AMD Inc.) C:\WINDOWS\SysWOW64\AMDBugReportTool.exe
2022-01-18 05:40 - 2021-11-12 11:56 - 001858600 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2022-01-18 05:40 - 2021-11-12 11:56 - 000130648 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2022-01-18 05:39 - 2021-07-10 18:31 - 000100824 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdkmpfd.sys
2022-01-14 22:19 - 2019-08-29 15:36 - 000000000 ____D C:\Users\Petr\AppData\Roaming\Origin
2022-01-14 22:19 - 2019-08-29 15:36 - 000000000 ____D C:\ProgramData\Origin
2022-01-14 22:18 - 2019-08-29 15:37 - 000000000 ____D C:\Program Files (x86)\Origin
2022-01-14 22:18 - 2019-08-29 15:36 - 000000000 ____D C:\Users\Petr\AppData\Local\Origin
2022-01-14 21:31 - 2021-10-05 11:42 - 000001385 _____ C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2022-01-14 21:31 - 2021-10-05 11:42 - 000000000 ___RD C:\Users\Petr\AppData\Local\PCHealthCheck
2022-01-14 20:15 - 2021-12-12 20:56 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1509276542-816349280-2872763448-1001
2022-01-13 16:47 - 2019-08-31 14:32 - 000000000 ____D C:\Users\Petr\AppData\Local\Adobe
2022-01-13 15:34 - 2020-11-26 17:46 - 000267672 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-01-13 15:33 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-01-13 15:33 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-01-13 15:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-01-13 15:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-01-13 15:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-01-13 15:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-01-13 15:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-01-13 15:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-01-13 12:45 - 2020-11-26 17:55 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-01-13 12:45 - 2020-04-09 20:13 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
==================== Files in the root of some directories ========
2020-05-15 17:44 - 2020-05-15 18:16 - 042886902 _____ () C:\Users\Petr\AppData\Roaming\gta5_patch.bin
2020-05-15 17:44 - 2020-05-15 17:44 - 000332800 _____ () C:\Users\Petr\AppData\Roaming\patcher.dll
2020-06-01 15:24 - 2020-06-03 12:31 - 000007602 _____ () C:\Users\Petr\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-02-2022
Ran by Petr (11-02-2022 14:05:46)
Running from C:\Users\Petr\Desktop
Microsoft Windows 10 Pro Version 21H1 19043.1466 (X64) (2020-11-26 16:56:02)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-1509276542-816349280-2872763448-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1509276542-816349280-2872763448-503 - Limited - Disabled)
Guest (S-1-5-21-1509276542-816349280-2872763448-501 - Limited - Disabled)
Petr (S-1-5-21-1509276542-816349280-2872763448-1001 - Administrator - Enabled) => C:\Users\Petr
WDAGUtilityAccount (S-1-5-21-1509276542-816349280-2872763448-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Internet Security (Enabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23}
AV: Kaspersky Anti-Virus (Enabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}
FW: Kaspersky Internet Security (Enabled) {774D7037-0984-41B0-3A87-5E88E680AD58}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
64 Bit HP CIO Components Installer (HKLM\...\{BC741628-0AFC-405C-8946-DD46D1005A0A}) (Version: 8.2.4 - Hewlett-Packard) Hidden
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 21.011.20039 - Adobe Systems Incorporated)
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.)
AMD Product Verification Tool version 1.0.4.8 (HKLM\...\{4242685A-EF3E-45FF-B4AE-758E49020936}}_is1) (Version: 1.0.4.8 - AMD)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 22.1.2 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{aebb22c8-1fcb-4e7d-92ae-98f1012da7a2}) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.) Hidden
Anno 1404 - History Edition (HKLM-x32\...\Uplay Install 16232) (Version: - Ubisoft)
ANNO 1404 (HKLM-x32\...\{3D9CF3CA-3AB0-4A82-9853-D7C43FD1D775}) (Version: 1.00.0000 - Ubisoft)
Apowersoft Video Konvertor V4.8.6.4 (HKLM-x32\...\{195E8D7F-292B-4B04-A6E7-E96CAF04C767}_is1) (Version: 4.8.6.4 - APOWERSOFT LIMITED)
Assassin's Creed Syndicate (HKLM-x32\...\Uplay Install 1875) (Version: - Ubisoft)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.8.2.48475 - Electronic Arts)
Battlefield™ 1 (HKLM-x32\...\{335B50BC-6130-4BAF-9A6A-F1561270587B}) (Version: 1.0.57.44284 - Electronic Arts)
Battlefield™ Hardline (HKLM-x32\...\{CB4AC3DA-8CC1-4516-86DA-4078B57DB229}) (Version: 1.4.0.10 - Electronic Arts)
Battlefield™ V (HKLM-x32\...\{e26b382f-e945-4f70-9318-121b683f1d61}) (Version: 1.0.64.43202 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
Bloody6 (HKLM-x32\...\Bloody3) (Version: 19.06.0006 - Bloody)
Branding64 (HKLM\...\{FDD2A246-039F-4941-A3F0-B3E8B8144E54}) (Version: 1.00.0009 - Advanced Micro Devices, Inc.) Hidden
Call of Juarez® Gunslinger Czech (HKLM-x32\...\{C68D6AF3-D89B-4FA2-A13F-034758AB42BD}_is1) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.89 - Piriform)
CCleaner Browser (HKLM-x32\...\CCleaner Browser) (Version: 97.0.13836.102 - Autoři prohlížeče CCleaner Browser)
Creaks (HKLM-x32\...\Creaks_is1) (Version: - )
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.11.0.1001 - Disc Soft Ltd)
DeepL (HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\DeepL) (Version: 3.2.3939 - DeepL GmbH)
Discord (HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\Discord) (Version: 0.0.305 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{DCE27B29-200D-491A-BBC5-98ECEFEC0843}) (Version: 1.1.257.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
EPSON PX730 Series Printer Uninstall (HKLM\...\EPSON PX730 Series) (Version: - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.6.0 - SEIKO EPSON CORPORATION)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Far Cry 3 (HKLM-x32\...\Uplay Install 46) (Version: - Ubisoft)
FastStone Image Viewer 7.4 (HKLM-x32\...\FastStone Image Viewer) (Version: 7.4 - FastStone Soft)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 98.0.4758.82 - Google LLC)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.24.15 - Google Inc.) Hidden
Heroes of Might and Magic V (HKLM-x32\...\Uplay Install 87) (Version: - Ubisoft)
HP LaserJet 200 color M251 (HKLM-x32\...\{6682B5C4-530A-4FB8-ACAC-80DB5CCC68DD}) (Version: 15.0.15188.1774 - Hewlett-Packard)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPLaserJet200color-M251_HelpLearnCenter_SI (HKLM-x32\...\{DDEBEA89-2B5A-4E5B-8702-369882BB3F52}) (Version: 1.01.0000 - Hewlett-Packard)
HPLJUTCore (HKLM-x32\...\{B445502B-2F83-4873-90F1-06059F71A46A}) (Version: 014.000.0001 - HP) Hidden
HPLJUTM251 (HKLM-x32\...\{663A3950-CA55-4541-8B46-646BD548641D}) (Version: 3.00.0003 - HP) Hidden
hppM251LaserJetService (HKLM-x32\...\{09C0DA15-AB94-43BC-9B02-57DF3FEB469F}) (Version: 001.019.00639 - Hewlett-Packard) Hidden
hpStatusAlerts (HKLM-x32\...\{E35D0ED5-716B-4E1F-8477-54DD746DF527}) (Version: 140.040.00231 - Hewlett Packard) Hidden
hpStatusAlertsM251 (HKLM-x32\...\{A1EF28FB-74A8-4157-91E9-9C164CAB10F8}) (Version: 050.034.00131 - Hewlett-Packard) Hidden
iFunbox (v4.1.4338.2105) (HKLM-x32\...\iFunbox_is1) (Version: v4.1.4338.2105 - iFunbox DevTeam)
Kaspersky Anti-Virus (HKLM-x32\...\{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky) Hidden
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky)
Kaspersky Password Manager (HKLM-x32\...\{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab) Hidden
Kaspersky Password Manager (HKLM-x32\...\InstallWIX_{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab)
Kaspersky Secure Connection (HKLM-x32\...\{145AE349-477A-45E5-A57C-5F5BF2BB5775}) (Version: 20.0.14.1085 - Kaspersky) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{145AE349-477A-45E5-A57C-5F5BF2BB5775}) (Version: 20.0.14.1085 - Kaspersky)
Kontrola stavu osobního počítače s Windows (HKLM\...\{E496AFB7-CB04-46CF-8FBB-5D665BC8811B}) (Version: 3.3.2110.22002 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 98.0.1108.43 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\OneDriveSetup.exe) (Version: 22.002.0103.0004 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Mozilla Firefox 89.0.2 (x64 cs) (HKLM\...\Mozilla Firefox 89.0.2 (x64 cs)) (Version: 89.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 89.0.2 - Mozilla)
Naviextras Toolbox (HKLM-x32\...\Naviextras Toolbox) (Version: 3.18.5.761538 - NNG Llc.)
Naviextras Toolbox Prerequesities (HKLM-x32\...\{537575D6-3B96-474C-BD8F-DFF667363DBD}) (Version: 1.0.0 - NNG Llc.)
Neighbours From Hell Compilation (HKLM-x32\...\InstallShield_{5C81E5B5-15C0-4196-8FEC-BE56FFAB9437}) (Version: 1.00.0000 - CD Projekt)
Npcap OEM (HKLM-x32\...\NpcapInst) (Version: 0.9987 - Nmap Project)
NVIDIA PhysX (Legacy) (HKLM-x32\...\{6F9D5A0B-202C-4161-BC7F-0664EA39E7E7}) (Version: 9.12.1031 - NVIDIA Corporation)
Opera Stable 83.0.4254.27 (HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\Opera 83.0.4254.27) (Version: 83.0.4254.27 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.5.108.49699 - Electronic Arts, Inc.)
PhotoFiltre (HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\PhotoFiltre) (Version: - )
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9205.1 - Realtek Semiconductor Corp.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.53.576 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.9.3 - Rockstar Games)
SimpleTransfer Desktop 2.1.0 (HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\{8f296dc3-4e37-59db-b7d3-915d72db3b68}) (Version: 2.1.0 - Rambax, LLC)
STAR WARS™ Battlefront™ II (HKLM-x32\...\{8a882ce0-0c0b-4eb2-850c-28ebadab4f50}) (Version: 1.1.8.16162 - Electronic Arts)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Tom Clancy's The Division (HKLM-x32\...\Uplay Install 568) (Version: - Ubisoft)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 104.0 - Ubisoft)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
Vortex (HKLM\...\57979c68-f490-55b8-8fed-8b017a5af2fe) (Version: 1.3.22 - Black Tree Gaming Ltd.)
Vulkan Run Time Libraries 1.1.70.0 (HKLM\...\VulkanRT1.1.70.0) (Version: 1.1.70.0 - LunarG, Inc.) Hidden
Wargaming.net Game Center (HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\Wargaming.net Game Center) (Version: 21.0.0.3580 - Wargaming.net)
WarThunder (HKLM-x32\...\WarThunder) (Version: - ) <==== ATTENTION
WATCH_DOGS2 (HKLM-x32\...\Uplay Install 2688) (Version: - Ubisoft)
WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
WinX MediaTrans (HKLM-x32\...\WinX MediaTrans) (Version: 7.2 - Digiarty Software, Inc.)
Wise Auto Shutdown 2.0.1 (HKLM-x32\...\Wise Auto Shutdown_is1) (Version: 2.0.1 - WiseCleaner.com, Inc.)
World of Tanks EU (HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)
Packages:
=========
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.13.66.0_x86__kgqvnymyfvs32 [2022-01-12] (king.com)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.73.1.0_x86__kgqvnymyfvs32 [2022-02-02] (king.com)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-01-25] (Microsoft Corporation)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa [2021-10-29] (Apple Inc.) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-08-29] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-08-29] (Microsoft Corporation) [MS Ad]
Microsoft Jigsaw -> C:\Program Files\WindowsApps\Microsoft.MicrosoftJigsaw_2.3.10281.0_x86__8wekyb3d8bbwe [2021-11-11] (Microsoft Studios)
Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_4.1.11220.0_x64__8wekyb3d8bbwe [2021-12-03] (Microsoft Studios) [MS Ad]
Microsoft Minesweeper -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMinesweeper_3.1.9160.0_x86__8wekyb3d8bbwe [2021-02-12] (Microsoft Studios) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.12.1050.0_x64__8wekyb3d8bbwe [2022-01-12] (Microsoft Studios) [MS Ad]
Neat Office -> C:\Program Files\WindowsApps\15191PeakPlayer.NeatOffice_3.3.2.0_x86__y5c4dfz5b21fm [2021-11-13] (Any DVD & Office App)
OverDrive - Library eBooks & Audiobooks -> C:\Program Files\WindowsApps\2FA138F6.OverDriveMediaConsole_3.8.0.5_neutral__daecb9042jmvt [2021-05-04] (OverDrive Inc.)
paint.net -> C:\Program Files\WindowsApps\dotPDNLLC.paint.net_4.307.8039.0_x64__h55e3w7q8jbva [2022-01-10] (dotPDN LLC)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0 [2022-02-04] (Spotify AB) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ContextMenuHandlers1: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\shellex.dll [2022-02-10] (AO Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-11-30] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers2: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\shellex.dll [2022-02-10] (AO Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-11-30] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers4: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\shellex.dll [2022-02-10] (AO Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\WINDOWS\System32\atiacm64.dll [2022-01-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\shellex.dll [2022-02-10] (AO Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2021-04-21 02:30 - 2021-04-21 02:30 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2022-01-18 00:45 - 2022-01-18 00:45 - 001717248 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\WVR\OpenVR\bin\win64\driver_amdwvr.dll
2009-09-16 17:44 - 2009-09-16 17:44 - 000153088 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\hptcpmib.dll
2009-09-16 17:45 - 2009-09-16 17:45 - 000331264 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\HpTcpMon.dll
2009-09-16 10:44 - 2009-09-16 10:44 - 000132096 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\hpzjrd01.dll
2014-06-24 22:31 - 2014-06-24 22:31 - 000041472 _____ (Hewlett-Packard Company) [File not signed] [File is in use] C:\Program Files (x86)\HP\HPLaserJetService\HPHTTPProxy.dll
2014-06-24 22:31 - 2014-06-24 22:31 - 000073728 _____ (Hewlett-Packard Company) [File not signed] [File is in use] C:\Program Files (x86)\HP\HPLaserJetService\HPTools.dll
2014-06-24 22:31 - 2014-06-24 22:31 - 001222656 _____ (Hewlett-Packard Company) [File not signed] [File is in use] C:\Program Files (x86)\HP\HPLaserJetService\LEDMXMLObjects.dll
2014-06-24 22:31 - 2014-06-24 22:31 - 000034816 _____ (HP) [File not signed] [File is in use] C:\Program Files (x86)\HP\HPLaserJetService\HPServiceCommunicator.dll
2017-09-04 23:15 - 2017-09-04 23:15 - 004396032 _____ (Microsoft Corporation) [File not signed] C:\Program Files\AMD\CNext\CNext\D3DCompiler_47.dll
2009-09-16 17:45 - 2009-09-16 17:45 - 000317440 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\System32\HPTcpMUI.dll
2019-10-10 16:07 - 2012-11-12 14:15 - 000558592 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\WINDOWS\System32\enppmon.dll
2019-10-10 16:07 - 2012-10-22 16:19 - 000219648 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\WINDOWS\System32\enpres.dll
2021-02-11 09:30 - 2020-03-16 14:05 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2019-08-29 15:37 - 2020-03-16 14:06 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2021-02-11 09:30 - 2020-01-28 15:11 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2022-01-14 22:18 - 2020-01-28 15:11 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2022-01-14 22:18 - 2020-01-28 15:11 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2022-01-14 22:18 - 2020-01-28 15:11 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2022-01-14 22:18 - 2020-01-28 15:11 - 000146432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2022-01-14 22:18 - 2020-01-28 15:11 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2022-01-14 22:18 - 2020-01-28 15:11 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000057856 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\audio\qtaudio_windows.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000039424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000031232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000415232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000532992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 001455104 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 001227776 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000135680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 006270976 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 006947328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000740352 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Multimedia.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000123392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5MultimediaQuick.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 001110528 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000326656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 003798528 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000440832 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000054784 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlWorkerScript.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 004255744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000171520 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 001128448 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000206336 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000334336 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000396800 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 102854656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000133120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 005611008 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000463360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000210432 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 002877440 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000056832 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000267776 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtMultimedia\declarative_multimedia.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000017408 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQml\qmlplugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000290816 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000336896 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000134144 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000106496 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000325120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000045568 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000093184 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Petr\Pictures\img031.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
Network Binding:
=============
Ethernet: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled)
Ethernet 2: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled)
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "Start WingMan Profiler"
HKLM\...\StartupApproved\Run32: => "StatusAlerts"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\StartupApproved\Run: => "Bloody2"
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_99DE362BF37F05AF23B8D5CFF8AAB751"
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\StartupApproved\Run: => "Chromium"
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\StartupApproved\Run: => "iFunBox"
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\StartupApproved\Run: => "GogGalaxy"
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\StartupApproved\Run: => "Wargaming.net Game Center"
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\StartupApproved\Run: => "CCleanerBrowserAutoLaunch_5A829DFA1AFA7F676ABE6FB5CF72AD00"
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\StartupApproved\Run: => "EADM"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{FC2BE042-69AC-4882-BD29-5ACFD3141DEF}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{53C070A5-A158-4161-B616-E3362AC98961}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1417889F-1F82-4436-95FA-58EB5E2AB73F}] => (Allow) D:\hry\Battlefield 4\BFLauncher_x86.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{2B937FA7-4A81-483F-8C90-31DCF6423DC9}] => (Allow) D:\hry\Battlefield 4\BFLauncher_x86.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{C1B02EB9-175A-4580-B0D2-29589AB6AB57}] => (Allow) D:\hry\Battlefield 4\BFLauncher.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{5159DB15-13B0-4908-8110-BAD60EDC9DB7}] => (Allow) D:\hry\Battlefield 4\BFLauncher.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{E806E2BD-6FC6-4749-9B73-E3D568E5F606}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{6AE797DA-D1A1-4DDA-BC0C-3D9A8167FA5E}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{D04AA49F-91DF-4DEE-92C4-C5FFDE0D5755}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3A6D23C1-B480-4561-94AD-FCC6C7F86685}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{492CAD26-AB2C-4A64-9498-961B54883E6B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7D27EBF7-1C7D-4404-880D-538A8A7EE5EE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FA2C5A52-D0DC-47D8-97F8-CEEEB2B8919C}] => (Allow) D:\hry\SteamLibrary\steamapps\common\This War of Mine\Storyteller.exe () [File not signed]
FirewallRules: [{74E1CEFE-1032-4D31-B497-E3A44E08DEC2}] => (Allow) D:\hry\SteamLibrary\steamapps\common\This War of Mine\Storyteller.exe () [File not signed]
FirewallRules: [{EF032C64-FD89-4441-9E65-AFE947C03D3F}] => (Allow) D:\hry\SteamLibrary\steamapps\common\This War of Mine\This War of Mine.exe () [File not signed]
FirewallRules: [{9CE235BD-BDEA-4054-8364-85CB3E475258}] => (Allow) D:\hry\SteamLibrary\steamapps\common\This War of Mine\This War of Mine.exe () [File not signed]
FirewallRules: [{BB8ACC7B-E2D1-4E88-9214-C72F3EDBE9F1}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{D7AC227F-0A37-4BE3-AF57-D36B2995251A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{CE6EEF2D-1F36-462F-AB41-88FAB44C700E}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{9AAD93C6-52C7-4FE2-B87D-5DB01CAD76C3}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{E93EC311-5E58-4E08-B98C-0235B7A73406}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{5B730B61-667C-4516-938B-EC15A9637983}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{C39B6ACE-BCAD-4E21-83B8-AB537689C860}] => (Allow) D:\hry\Battlefield 1\bf1.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{C1B9E5B8-D5BE-428B-8CB6-CE3D076087CF}] => (Allow) D:\hry\Battlefield 1\bf1.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{8F06DE42-E106-4488-A580-5027682911BF}] => (Allow) D:\hry\Battlefield 1\bf1Trial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{112F24A0-5A91-4967-993D-2FBAE5FAE76A}] => (Allow) D:\hry\Battlefield 1\bf1Trial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{1425F2D2-3F7A-47DB-BE7F-855BEF2D2045}] => (Allow) D:\hry\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{BE252FD9-8AC2-4526-A3FE-7790B0394741}] => (Allow) D:\hry\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{039E1898-DF32-4F76-B01B-D011B690E695}] => (Allow) D:\hry\Battlefield V\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{B9055174-8762-4E62-BCF8-2055A559CD41}] => (Allow) D:\hry\Battlefield V\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [TCP Query User{419682F2-C276-4CB3-9A35-93994FC2A461}D:\hry\snowrunner\en_us\sources\bin\snowrunner.exe] => (Allow) D:\hry\snowrunner\en_us\sources\bin\snowrunner.exe (Focus Home Interactive S.A -> Focus Home Interactive)
FirewallRules: [UDP Query User{44CF168D-A3FD-41F9-937E-FA651C93938B}D:\hry\snowrunner\en_us\sources\bin\snowrunner.exe] => (Allow) D:\hry\snowrunner\en_us\sources\bin\snowrunner.exe (Focus Home Interactive S.A -> Focus Home Interactive)
FirewallRules: [TCP Query User{267FD1D4-7A03-444B-8C54-AFF2D4A22C57}D:\hry\battlefield 4\bf4.exe] => (Allow) D:\hry\battlefield 4\bf4.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [UDP Query User{C7FEFF94-A4CA-43D3-8C23-EA8C54734880}D:\hry\battlefield 4\bf4.exe] => (Allow) D:\hry\battlefield 4\bf4.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [TCP Query User{229A65EB-1F02-46C8-9A59-C15C8C20A25D}D:\hry\kingdomcomedeliverance\bin\win64mastermasterepicpgo\kingdomcome.exe] => (Allow) D:\hry\kingdomcomedeliverance\bin\win64mastermasterepicpgo\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [UDP Query User{97A09218-DB57-4DC9-8861-7BBCD4CE438E}D:\hry\kingdomcomedeliverance\bin\win64mastermasterepicpgo\kingdomcome.exe] => (Allow) D:\hry\kingdomcomedeliverance\bin\win64mastermasterepicpgo\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [{AA718639-A942-4333-AFEB-F1AC21D50040}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12113.17.53090.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{423FEE19-DA11-4AEE-BF39-78BA62B4040A}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12113.17.53090.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{39A7A574-AF6E-463F-AEAC-17771FABA95E}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12113.17.53090.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B2D4B0DD-4385-4178-BF04-16F0ACA9C822}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12113.17.53090.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DDE30AB4-B3D2-4D18-BB23-76220C02165E}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12113.17.53090.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3B7D9BA2-03A5-4DF4-9801-6583DFF34CE3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12113.17.53090.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3BD7433E-4AC6-473E-89F2-9B2CC37B5C43}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12113.17.53090.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DABEAA34-D532-4266-8967-C1AE933DF32F}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12113.17.53090.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DAC3207F-5268-4CFE-8233-D4311F813CDD}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{915873F8-A402-48BC-B709-4D8F9F9784B9}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{D4873D31-4ED2-4B5D-BE3A-6E6CDF7568C0}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{65D332B4-4C82-4669-99C3-B578D6F7979D}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [TCP Query User{3E688CE8-1B32-45FF-A6C9-17618D8F6863}D:\hry\oddworldnewntasty\nnt.exe] => (Allow) D:\hry\oddworldnewntasty\nnt.exe () [File not signed]
FirewallRules: [UDP Query User{FC94920C-E83F-455D-8CF7-FEAC7E1E082F}D:\hry\oddworldnewntasty\nnt.exe] => (Allow) D:\hry\oddworldnewntasty\nnt.exe () [File not signed]
FirewallRules: [{150FD99C-74E9-43D7-BC9D-88688834A739}] => (Allow) D:\hry\SteamLibrary\steamapps\common\Resident Evil 0\re0hd.exe (CAPCOM) [File not signed]
FirewallRules: [{5BBF44AC-E157-426E-BC39-5EED05E24688}] => (Allow) D:\hry\SteamLibrary\steamapps\common\Resident Evil 0\re0hd.exe (CAPCOM) [File not signed]
FirewallRules: [{7B427EE6-09D9-42AD-A9B0-CCE1878B4F42}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Converter Studio\Video Converter Studio.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{6964CD5B-25B4-4BC4-9882-F0AD7482B7B3}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Converter Studio\Video Converter Studio.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [TCP Query User{163D6943-1A8C-48AD-A0CD-4C37BE4188A3}C:\users\petr\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\petr\appdata\local\programs\opera\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [UDP Query User{C4F3D7C1-0235-42A0-AC8F-B9AFEA1F7F4E}C:\users\petr\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\petr\appdata\local\programs\opera\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{A558215D-21F1-4B87-A214-152B9C4CE96E}] => (Allow) D:\Games\Heroes of Might and Magic V\bin\H5_Game.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{BC537377-949E-4B80-A0B5-33269161B01B}] => (Allow) D:\Games\Heroes of Might and Magic V\bin\H5_Game.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{21F8ED8E-FED1-43E9-AE6F-3AE9A239F43F}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5834A3F6-3C16-478B-8859-931B63721FF5}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{53B7E14D-8EC6-4D98-BC2C-6CFA61646E58}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{29D75E60-5ED7-4CD0-91ED-8F68710821E9}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{48E363DD-CCA7-44C7-8935-7E2B1581602B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{06C7AA72-1865-41C2-A185-BCC3B230EABE}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7D8003CA-A94A-4153-B415-CD9990650112}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DA86D20E-A516-4D84-A1DE-AF60988421C1}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{AA999D25-B8FB-4686-81BB-A7248CC4E014}D:\hry\reddeadredemption2\rdr2.exe] => (Allow) D:\hry\reddeadredemption2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{6149C200-F0D4-46DD-A701-E94AF52E82B1}D:\hry\reddeadredemption2\rdr2.exe] => (Allow) D:\hry\reddeadredemption2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{76D6D240-0AF8-4E26-9E6B-04AB0394C5D6}] => (Allow) D:\Games\Assassin's Creed Syndicate\ACS.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{323E09ED-CCDD-4989-8C08-A735AACE2033}] => (Allow) D:\hry\SteamLibrary\steamapps\common\CoJ Gunslinger\CoJGunslinger.exe (TECHLAND SP Z O O -> Techland)
FirewallRules: [{897FDB81-CA88-4ECB-9F52-33DCF4EA09C5}] => (Allow) D:\hry\SteamLibrary\steamapps\common\CoJ Gunslinger\CoJGunslinger.exe (TECHLAND SP Z O O -> Techland)
FirewallRules: [{94074F12-7469-4024-842C-8CDCB40D07DA}] => (Allow) D:\hry\SteamLibrary\steamapps\common\Dying Light\DyingLightGame.exe (Techland S.A. -> Techland)
FirewallRules: [{BED70714-4B18-4D70-B673-80D8F3B26E19}] => (Allow) D:\hry\SteamLibrary\steamapps\common\Dying Light\DyingLightGame.exe (Techland S.A. -> Techland)
FirewallRules: [{B088BBC6-8468-4928-BFFD-0247861E9576}] => (Allow) D:\hry\SteamLibrary\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland Sp. z o.o. -> Techland)
FirewallRules: [{E8A48415-B478-440C-A885-98EAC3F4C654}] => (Allow) D:\hry\SteamLibrary\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe (Techland Sp. z o.o. -> Techland)
FirewallRules: [TCP Query User{D261916E-A545-4CDA-93B9-3E58E68C156D}D:\hry\riseofthetombraider\rottr.exe] => (Allow) D:\hry\riseofthetombraider\rottr.exe (Square Enix LTD -> Eidos Inc.)
FirewallRules: [UDP Query User{7AB7F93C-BE09-44D3-9CFB-2010C51782D4}D:\hry\riseofthetombraider\rottr.exe] => (Allow) D:\hry\riseofthetombraider\rottr.exe (Square Enix LTD -> Eidos Inc.)
FirewallRules: [{6E6DC189-3FC8-41AF-AE58-AC906DBF70A0}] => (Allow) D:\hry\SteamLibrary\steamapps\common\BioShock Remastered\Build\Final\BioshockHD.exe () [File not signed]
FirewallRules: [{07022205-FF0A-4DFB-B920-337BA39F854D}] => (Allow) D:\hry\SteamLibrary\steamapps\common\BioShock Remastered\Build\Final\BioshockHD.exe () [File not signed]
FirewallRules: [{0BE7FD10-0101-4180-A1C3-DB78172144DE}] => (Allow) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe (Piriform Software Ltd -> Piriform Software)
FirewallRules: [{759A2B55-A82B-4EC3-9AB8-A5D0BB1A39B9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{81298072-2A2D-4435-87C4-F6103A04C7B3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{2F981805-095F-4B55-A402-7ABC5006E60F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1320E956-EAD1-40A0-A5F0-F48E38F9A5BC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{118EBB7E-22AF-4183-A9EB-5FE7C83B4936}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9B478A86-81DE-45CC-A092-6681ADB3158F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{950B2914-DE13-4996-A0E9-8DCC9EB122BE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{AA46C415-3E5A-4E14-BD85-7997AA05C192}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.178.765.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0FFA27E0-AECC-4E1D-B263-E51033F646D2}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:110.55 GB) (Free:28.36 GB) (26%)
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (02/10/2022 11:50:59 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Hry (H:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (02/10/2022 11:50:59 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Foto (G:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (02/10/2022 11:50:58 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Data (F:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (02/10/2022 11:50:48 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na (E:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (02/10/2022 11:50:45 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na HDD (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (02/03/2022 11:04:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: CCleaner64.exe, verze: 5.89.0.9401, časové razítko: 0x61eff15b
Název chybujícího modulu: CCleaner64.exe, verze: 5.89.0.9401, časové razítko: 0x61eff15b
Kód výjimky: 0xc0000409
Posun chyby: 0x0000000000c2c095
ID chybujícího procesu: 0x19b0
Čas spuštění chybující aplikace: 0x01d8194a10ae4804
Cesta k chybující aplikaci: C:\Program Files\CCleaner\CCleaner64.exe
Cesta k chybujícímu modulu: C:\Program Files\CCleaner\CCleaner64.exe
ID zprávy: f7c6aed4-3751-4b19-96c5-de610621cad8
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/03/2022 11:17:01 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Hry (H:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (02/03/2022 11:17:00 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Foto (G:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
System errors:
=============
Error: (02/11/2022 11:12:29 AM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-MQ5PIOV)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě:
2147942767
při provádění příkazu:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
Error: (02/10/2022 10:19:42 AM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: Volání ScRegSetValueExW skončilo neúspěšné pro Start s touto chybou:
Přístup byl odepřen.
Error: (02/06/2022 08:18:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba AODDriver4.3.0 neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedenou cestu.
Error: (02/06/2022 08:18:32 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (20:01:59, 06.02.2022) bylo neočekávané.
Error: (02/06/2022 08:02:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba AODDriver4.3.0 neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedenou cestu.
Error: (02/06/2022 08:01:59 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (19:38:59, 06.02.2022) bylo neočekávané.
Error: (02/06/2022 12:17:24 AM) (Source: Schannel) (EventID: 4103) (User: NT AUTHORITY)
Description: Při vytváření přihlašovacích údajů TLS Klient se stala závažná chyba. Stav interní chyby je 10013.
Error: (02/05/2022 05:56:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Steam Client Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
CodeIntegrity:
===============
Date: 2022-02-10 21:07:14
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.
Date: 2022-02-10 15:45:29
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 2603 06/26/2015
Motherboard: ASUSTeK COMPUTER INC. M5A97 R2.0
Processor: AMD FX(tm)-8350 Eight-Core Processor
Percentage of memory in use: 37%
Total physical RAM: 16283.51 MB
Available physical RAM: 10235.01 MB
Total Virtual: 18715.51 MB
Available Virtual: 8713.93 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:110.55 GB) (Free:28.35 GB) NTFS
Drive d: (HDD) (Fixed) (Total:931.51 GB) (Free:13.33 GB) NTFS
Drive e: () (Fixed) (Total:19.53 GB) (Free:15.3 GB) NTFS
Drive f: (Data) (Fixed) (Total:39.06 GB) (Free:1.58 GB) NTFS
Drive g: (Foto) (Fixed) (Total:14.65 GB) (Free:3.18 GB) NTFS
Drive h: (Hry) (Fixed) (Total:75.8 GB) (Free:21.39 GB) NTFS
\\?\Volume{d4618fa8-1499-48d2-9ae8-ddae5bc9040c}\ (Obnovení) (Fixed) (Total:0.52 GB) (Free:0.11 GB) NTFS
\\?\Volume{7fec1032-e377-4f4b-b3ea-078c0c0b21a4}\ () (Fixed) (Total:0.61 GB) (Free:0.08 GB) NTFS
\\?\Volume{f7d463f0-f151-40c2-8963-640aacf0b21a}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 111.8 GB) (Disk ID: 9EBFDF90)
Partition: GPT.
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 63FEE4B8)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 149.1 GB) (Disk ID: A005A005)
Partition 1: (Active) - (Size=19.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=129.5 GB) - (Type=0F Extended)
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Preventivní kontrola.
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118266
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Preventivní kontrola.
Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\MountPoints2: {54c26ecf-1097-11ea-ba65-107b44f19dfb} - "J:\setup.exe"
Task: {03B14CE9-D6FC-4BF6-8C4A-901F6CE9555C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-04] (Google LLC -> Google LLC)
Task: {C2A1A89D-4115-4D8A-B596-274822F19895} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-04] (Google LLC -> Google LLC)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2021-07-03] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2021-07-03] <==== ATTENTION
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Preventivní kontrola.
Zdravím a děkuji.
Fix result of Farbar Recovery Scan Tool (x64) Version: 05-02-2022
Ran by Petr (12-02-2022 17:00:36) Run:3
Running from C:\Users\Petr\Desktop
Loaded Profiles: Petr
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\MountPoints2: {54c26ecf-1097-11ea-ba65-107b44f19dfb} - "J:\setup.exe"
Task: {03B14CE9-D6FC-4BF6-8C4A-901F6CE9555C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-04] (Google LLC -> Google LLC)
Task: {C2A1A89D-4115-4D8A-B596-274822F19895} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-04] (Google LLC -> Google LLC)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2021-07-03] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2021-07-03] <==== ATTENTION
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
EmptyTemp:
End
*****************
Processes closed successfully.
"HKU\S-1-5-21-1509276542-816349280-2872763448-1001\Software\Microsoft\Windows\CurrentVersion\Run\\GalaxyClient" => removed successfully
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{54c26ecf-1097-11ea-ba65-107b44f19dfb} => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{03B14CE9-D6FC-4BF6-8C4A-901F6CE9555C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{03B14CE9-D6FC-4BF6-8C4A-901F6CE9555C}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C2A1A89D-4115-4D8A-B596-274822F19895}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C2A1A89D-4115-4D8A-B596-274822F19895}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js => moved successfully
C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg => moved successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
=========== EmptyTemp: ==========
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 108792336 B
Java, Flash, Steam htmlcache => 58795396 B
Windows/system/drivers => 0 B
Edge => 0 B
Chrome => 163840 B
Firefox => 10644825 B
Opera => 340395759 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
Petr => 35288270 B
RecycleBin => 0 B
EmptyTemp: => 529.7 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 17:01:03 ====
Fix result of Farbar Recovery Scan Tool (x64) Version: 05-02-2022
Ran by Petr (12-02-2022 17:00:36) Run:3
Running from C:\Users\Petr\Desktop
Loaded Profiles: Petr
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\MountPoints2: {54c26ecf-1097-11ea-ba65-107b44f19dfb} - "J:\setup.exe"
Task: {03B14CE9-D6FC-4BF6-8C4A-901F6CE9555C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-04] (Google LLC -> Google LLC)
Task: {C2A1A89D-4115-4D8A-B596-274822F19895} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-04] (Google LLC -> Google LLC)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2021-07-03] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2021-07-03] <==== ATTENTION
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
EmptyTemp:
End
*****************
Processes closed successfully.
"HKU\S-1-5-21-1509276542-816349280-2872763448-1001\Software\Microsoft\Windows\CurrentVersion\Run\\GalaxyClient" => removed successfully
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{54c26ecf-1097-11ea-ba65-107b44f19dfb} => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{03B14CE9-D6FC-4BF6-8C4A-901F6CE9555C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{03B14CE9-D6FC-4BF6-8C4A-901F6CE9555C}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C2A1A89D-4115-4D8A-B596-274822F19895}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C2A1A89D-4115-4D8A-B596-274822F19895}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js => moved successfully
C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg => moved successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
=========== EmptyTemp: ==========
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 108792336 B
Java, Flash, Steam htmlcache => 58795396 B
Windows/system/drivers => 0 B
Edge => 0 B
Chrome => 163840 B
Firefox => 10644825 B
Opera => 340395759 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
Petr => 35288270 B
RecycleBin => 0 B
EmptyTemp: => 529.7 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 17:01:03 ====
-
Rudy
- Site Admin
- Příspěvky: 118266
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Preventivní kontrola.
Smazáno, log by již měl být OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Preventivní kontrola.
Skvělé, děkuji za Váš čas a pomoc a přeji pěkný zbytek víkendu. 
-
Rudy
- Site Admin
- Příspěvky: 118266
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Preventivní kontrola.
Hezký víkend i vám a nemáte zač! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?